REDMED-X
f7bdbefa41
New tool update
|
пре 2 година | |
|---|---|---|
| .. | ||
| README.md | пре 2 година | |
| beacon.h | пре 2 година | |
| bofcompile.bat | пре 2 година | |
| capturenetntlm.c | пре 2 година | |
| capturenetntlm.cna | пре 2 година | |
| capturenetntlm.h | пре 2 година | |
| capturenetntlm.o | пре 2 година | |
README.md
CaptureNetNTLM
Capture the NetNTLMv2 hash of the current user. This is done by simulating a NTLM authentication exchange between a client and server to capture the NetNTLMv2 hash.
Usage
capturenetntlm
Compile
- 1. Make sure Visual Studio is installed and supports C/C++.
- 2. Open the
x64 Native Tools Command Prompt for VS <2019/2022>terminal. - 3. Run the
bofcompile.batscript to compile the object file. - 4. In Cobalt strike, use the script manager to load the .cna script to import the tool.
Credits
The code in this BOF is heaviliy based on the GetNTLMChallenge project from Lee Christensen.