Jun 8, 2017
Compromising the credentials of users in an Active Directory environment can assist in providing new possibilities for pivoting around the network. It allows for additional access to various network resources like shares, email and other systems. In this week's episode of Tradecraft Security Weekly Beau Bullock (@dafthack) discusses how to perform password spraying attacks using the PowerShell tool DomainPasswordSpray, and also the Metasploit module smb_login.
Links:
DomainPasswordSpray - https://github.com/dafthack/DomainPasswordSpray
Metasploit smb_login - https://www.rapid7.com/db/modules/auxiliary/scanner/smb/smb_login