Vulnerability Scanning
Check if a DC is vulnerable
When you start your internal pentest, these are the first modules you should try:
Zerologon
nxc smb <ip> -u '' -p '' -M zerologonPetitPotam
nxc smb <ip> -u '' -p '' -M petitpotamnoPAC
nxc smb <ip> -u 'user' -p 'pass' -M nopac (Requires credentials)Or, try them all at once! Just list each one: -M zerologon -M petitpotam
Last updated