sabato 22 agosto 2020

Goddi (Go Dump Domain Info) - Dumps Active Directory Domain Information



Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.

Install
Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc. The goddi package also uses the below package.
go get gopkg.in/ldap.v2

Windows
Tested on Windows 10 and 8.1 (go1.10 windows/amd64).

Linux
Tested on Kali Linux (go1.10 linux/amd64).
  • umount, mount, and cifs-utils need to be installed for mapping a share for GetGPP
apt-get update
apt-get install -y mount cifs-utils
  • make sure nothing is mounted at /mnt/goddi/
  • make sure to run with sudo

Run
When run, will default to using TLS (tls.Client method) over 636. On Linux, make sure to run with sudo.
  • username: Target user. Required parameter.
  • password: Target user's password. Required parameter.
  • domain: Full domain name. Required parameter.
  • dc: DC to target. Can be either an IP or full hostname. Required parameter.
  • startTLS: Use to StartTLS over 389.
  • unsafe: Use for a plaintext connection.
PS C:\Users\Administrator\Desktop> .\godditest-windows-amd64.exe -username=testuser -password="testpass!" -domain="test.local" -dc="dc.test.local" -unsafe
[i] Begin PLAINTEXT LDAP connection to 'dc.test.local'...
[i] PLAINTEXT LDAP connection to 'dc.test.local' successful...
[i] Begin BIND...
[i] BIND with 'testuser' successful...
[i] Begin dump domain info...
[i] Domain Trusts: 1 found
[i] Domain Controllers: 1 found
[i] Users: 12 found
        [*] Warning: keyword 'pass' found!
        [*] Warning: keyword 'fall' found!
[i] Domain Admins: 4 users found
[i] Enterprise Admins: 1 users found
[i] Forest Admins: 0 users found
[i] Locked Users: 0 found
[i] Disabled Users: 2 found
[i] Groups: 45 found
[i] Domain Sites: 1 found
[i] Domain Subnets: 0 found
[i] Domain Computers: 17 found
[i] Deligated Users: 0 found
[i] Users with passwords not set to expire: 6 found
[i] Machine Accounts with passwords older than 45 days: 18 found
[i] Domain OUs: 8 found
[i] Domain Account Policy found
[i] Domain GPOs: 7 found
[i] FSMO Roles: 3 found
[i] SPNs: 122 found
[i] LAPS passwords: 0 found
[i] GPP enumeration starting. This can take a bit...
[i] GPP passwords: 7 found
[i] CSVs written to 'csv' directory in C:\Users\Administrator\Desktop
[i] Execution took 1.4217256s...
[i] Exiting...

Functionality
StartTLS and TLS (tls.Client func) connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the current working directory. Dumps:
  • Domain users. Also searches Description for keywords and prints to a seperate csv ex. "Password" was found in the domain user description.
  • Users in priveleged user groups (DA, EA, FA).
  • Users with passwords not set to expire.
  • User accounts that have been locked or disabled.
  • Machine accounts with passwords older than 45 days.
  • Domain Computers.
  • Domain Controllers.
  • Sites and Subnets.
  • SPNs and includes csv flag if domain admin (a flag to note SPNs that are DAs in the SPN CSV output).
  • Trusted domain relationships.
  • Domain Groups.
  • Domain OUs.
  • Domain Account Policy.
  • Domain deligation users.
  • Domain GPOs.
  • Domain FSMO roles.
  • LAPS passwords.
  • GPP passwords. On Windows, defaults to mapping Q. If used, will try another mapping until success R, S, etc... On Linux, /mnt/goddi is used.


More info


  1. Hacker Tools Mac
  2. Hack Tools For Ubuntu
  3. Pentest Tools
  4. Hack Tools For Games
  5. Hackers Toolbox
  6. Hacking Tools Github
  7. Pentest Tools For Android
  8. Pentest Box Tools Download
  9. Nsa Hack Tools
  10. New Hack Tools
  11. Pentest Tools Tcp Port Scanner
  12. Underground Hacker Sites
  13. Hack Tools For Pc
  14. Hack Tools Pc
  15. Hacker Tools Apk Download
  16. Hacker Tools Apk
  17. Hacker Tools Online
  18. Hacker Tools For Windows
  19. Nsa Hack Tools
  20. Hacker Tools Online
  21. Bluetooth Hacking Tools Kali
  22. Hack Tool Apk No Root
  23. Hacking Tools For Kali Linux
  24. Hacking Tools Windows 10
  25. Github Hacking Tools
  26. Hack Tools Github
  27. Pentest Tools Kali Linux
  28. Hacker Tools Free
  29. Hacker Tools 2019
  30. Hacker Tools
  31. Pentest Tools Bluekeep
  32. Pentest Tools
  33. Hack Tools
  34. Hacking Tools
  35. Top Pentest Tools
  36. Pentest Tools Alternative
  37. Game Hacking
  38. Hacking Tools Mac
  39. Black Hat Hacker Tools
  40. Github Hacking Tools
  41. Top Pentest Tools
  42. Tools For Hacker
  43. Pentest Tools Download
  44. Hacking Tools For Windows 7
  45. Pentest Tools Website
  46. How To Hack
  47. Hacker Search Tools
  48. Hacking Tools Github
  49. Pentest Tools Website
  50. Hack Tools Pc
  51. Pentest Tools For Windows
  52. World No 1 Hacker Software
  53. Hacking Tools Mac
  54. Easy Hack Tools
  55. Hack Tools For Games
  56. Hacking Tools Windows
  57. Pentest Tools Kali Linux
  58. Pentest Tools Framework
  59. Hacker Tool Kit
  60. Pentest Tools Linux
  61. Tools For Hacker
  62. Hacking Tools For Windows Free Download
  63. Hacking Tools For Kali Linux
  64. Hacker Tools Apk Download
  65. Hacking App
  66. Pentest Tools Linux
  67. Best Hacking Tools 2020
  68. Hacker Tools For Windows
  69. Hacking Tools For Windows
  70. Hacker Techniques Tools And Incident Handling
  71. Hack Tools Online
  72. Pentest Tools Nmap
  73. Termux Hacking Tools 2019
  74. Pentest Tools Port Scanner
  75. Hacking Tools Windows
  76. Hacking App
  77. Pentest Tools Url Fuzzer
  78. Nsa Hack Tools
  79. Hacking Tools Kit
  80. Pentest Recon Tools
  81. Easy Hack Tools
  82. Hacking Tools Hardware
  83. Hacking Tools Software
  84. Android Hack Tools Github
  85. Hack Tools Mac
  86. Hacker Tools Mac
  87. Hacking Tools 2019
  88. Hacking Tools For Beginners
  89. Hacking Tools For Games
  90. Tools Used For Hacking
  91. Hacking Tools For Games
  92. Pentest Tools List
  93. Hacking Tools Usb
  94. Pentest Recon Tools
  95. Hacks And Tools
  96. Hacking Tools For Games
  97. Pentest Tools Online
  98. Hacking Tools Name
  99. Hacker Tools 2019
  100. How To Make Hacking Tools
  101. Hack Tools
  102. Hacking Tools Pc
  103. Pentest Tools Apk
  104. Pentest Tools Port Scanner
  105. Tools For Hacker
  106. Hack Tools For Windows
  107. Hacker Tools Mac
  108. Hacking Tools Mac
  109. How To Make Hacking Tools
  110. Hack Tools
  111. Hacking Tools Free Download
  112. Hacking Tools Windows
  113. Hacking Tools For Games
  114. Pentest Tools Linux
  115. Physical Pentest Tools
  116. Hacker Tools For Ios
  117. Pentest Tools Bluekeep
  118. Tools Used For Hacking
  119. Tools Used For Hacking
  120. Pentest Tools Website
  121. Hack Website Online Tool
  122. Computer Hacker
  123. Hack Tools For Games
  124. Hacking Tools For Beginners
  125. Pentest Tools For Mac
  126. Hacker Techniques Tools And Incident Handling
  127. Bluetooth Hacking Tools Kali
  128. Hacker Hardware Tools
  129. Pentest Tools For Mac
  130. Hacking Tools
  131. Ethical Hacker Tools
  132. Hacking Tools Free Download
  133. Hacking Tools Usb
  134. What Are Hacking Tools
  135. How To Hack
  136. Hacking Tools Usb
  137. Hacker Tools
  138. Hacker Tools 2020
  139. Hacker Tools For Mac
  140. Pentest Tools Bluekeep
  141. Pentest Tools For Ubuntu
  142. Hacker Tools Apk Download
  143. Hacking Tools For Kali Linux
  144. Pentest Tools Port Scanner
  145. Pentest Tools Find Subdomains
  146. Hacking Tools For Pc
  147. Top Pentest Tools
  148. Pentest Tools List
  149. Pentest Tools Open Source
  150. Hacking App
  151. Ethical Hacker Tools
  152. Hacking Tools Free Download
Pubblicato da alle

Nessun commento:

Posta un commento

Iscriviti a: Commenti sul post (Atom)