guardicore/monkey

In domain networks, query domain to scan machines in domain

Open

#191 aperta il 7 ott 2018

Vedi su GitHub
 (1 commento) (0 reazioni) (1 assegnatario)Python (752 fork)batch import
Complexity: MediumFeatureHelp wantedImpact: Medium

Metriche repository

Star
 (6250 star)
Metriche merge PR
 (Nessuna PR mergiata in 30 g)

Descrizione

Expected Behavior

The Monkey should have a feature (with a toggle) to query the domain controller and get a list of domain joined machines to try and attack. Since the Monkey in this case would be running in a domain machine, the credentials stolen by mimikatz will likely be valid for other domain joined machines.

We could get the data using WMI queries we're already running or by running PowerShell commands

Guida contributor