Building Userbase

In order to first be able to attack an active directory env and we aren't able to gather credentials through NULL sessions, we can possibly make our own naming convention with a website like how we did with the box sauna.

GitHub - urbanadventurer/username-anarchy: Username tools for penetration testingGitHub

This can be done with this script. Once the list is generated we can try to authenticate them using kerbrute.

PreviousSMBPass Change NextNTLM Relay Attack

Last updated 2 years ago