Referenced link: https://gist.github.com/zblurx/009633b2db25918bdbbff664a01508fc
Originally posted by Rob Fuller / @mubix@twitter.com: https://twitter.com/_zblurx/status/1658765910964948999#m

RT by @mubix: I managed to implement #LAPSv2 password extraction with #Impacket https://gist.github.com/zblurx/009633b2db25918bdbbff664a01508fc
Thanks @BoreanJordan for dpapi-ng, helped a lot on the kek computing part.
I am going to make a PR to Impacket really soon to implement MS-GKDI (and fix endpoint mapper)

Regarding the recently disclosed #impacket #psexec vulnerability, a neat tool for remotely determining installed services or if the vulnerable psexec service exists(if not cleaned up properly). It checks if certain named pipes exist which doesn’t require administrative privileges. You still need some form of basic authentication / trust / credentials (even unprivileged) like a valid domain user account. https://github.com/tothi/serviceDetector

RT @bugch3ck
Disclosed today at @Disobey_fi - psexec from #impacket expose the target system for authenticated command execution as SYSTEM. That means any user that can authenticate over the network (usually Domain Users) can run code as SYSTEM over the network.

Disclosed today at the #Disobey conference - psexec from #impacket expose the target system for authenticated command execution as SYSTEM. That means any user that can authenticate over the network (usually Domain Users) can run code as SYSTEM over the network.

So next saturday I'll be dropping some vulns in the #impacket framework as part of my
#Disobey talk. If you are using or building services around impacket, watch out for PRs in the following days.

RT @snovvcrash
🧵 (1/) Bypassing IDS DCSync Signature for #secretsdump

I’ve been asked lately to bypass a private IDS rule for #impacket’s DCSync operation and I’ve immediately remembered this Charlie’s question ⬇️ https://twitter.com/_nwodtuhs/status/1469770310077620235

Attacking Kerberos - I have just completed this room! Check it out: https://tryhackme.com/room/attackingkerberos #tryhackme #Kerberos #Active Directory #Exploitation #Windows #Privilege Escalation #mimikatz #rubeus #kerbrute #Impacket #Kerberoasting #AS-REP Roasting #Golden Ticket #Silver Ticket #Kerbrute #Pass the Ticket #Attacking Kerberos #windows #attackingkerberos via @RealTryHackMe

Impacket is back: The Impacket project has found a new home: https://0xdeaddood.rocks/2023/01/14/we-are-back/ #Impacket #pentesting

Impacket is a collection of Python classes for working with network protocols: https://github.com/fortra/impacket
#infosec #Impacket

https://github.com/fortra/impacket

https://twitter.com/0xdeaddood/status/1603145706457501698?t=Ni2YPmI2YqZbIE3GW_-dYQ&s=09

#infosec #redteam #impacket

Can't say enough about Python virtual environments for running things like impacket, etc. #python #impacket #pentesting #OSCP

@fluffybunny

impacket cheatsheet link -> https://www.13cubed.com/downloads/impacket_exec_commands_cheat_sheet_poster.pdf

#impacket #dfir #smbexec

Why do we still pick easy to guess?

#Kerberoasting with #Impacket #GetUserSPNs.py #Hashcat -m 13100 #passwords #Kerberos