Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.
Install
Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc. The goddi package also uses the below package.
go get gopkg.in/ldap.v2Windows
Tested on Windows 10 and 8.1 (go1.10 windows/amd64).
Linux
Tested on Kali Linux (go1.10 linux/amd64).
- umount, mount, and cifs-utils need to be installed for mapping a share for GetGPP
apt-get update
apt-get install -y mount cifs-utils- make sure nothing is mounted at /mnt/goddi/
- make sure to run with
sudo
Run
When run, will default to using TLS (tls.Client method) over 636. On Linux, make sure to run with
sudo.- username: Target user. Required parameter.
- password: Target user's password. Required parameter.
- domain: Full domain name. Required parameter.
- dc: DC to target. Can be either an IP or full hostname. Required parameter.
- startTLS: Use to StartTLS over 389.
- unsafe: Use for a plaintext connection.
PS C:\Users\Administrator\Desktop> .\godditest-windows-amd64.exe -username=testuser -password="testpass!" -domain="test.local" -dc="dc.test.local" -unsafe
[i] Begin PLAINTEXT LDAP connection to 'dc.test.local'...
[i] PLAINTEXT LDAP connection to 'dc.test.local' successful...
[i] Begin BIND...
[i] BIND with 'testuser' successful...
[i] Begin dump domain info...
[i] Domain Trusts: 1 found
[i] Domain Controllers: 1 found
[i] Users: 12 found
[*] Warning: keyword 'pass' found!
[*] Warning: keyword 'fall' found!
[i] Domain Admins: 4 users found
[i] Enterprise Admins: 1 users found
[i] Forest Admins: 0 users found
[i] Locked Users: 0 found
[i] Disabled Users: 2 found
[i] Groups: 45 found
[i] Domain Sites: 1 found
[i] Domain Subnets: 0 found
[i] Domain Computers: 17 found
[i] Deligated Users: 0 found
[i] Users with passwords not set to expire: 6 found
[i] Machine Accounts with passwords older than 45 days: 18 found
[i] Domain OUs: 8 found
[i] Domain Account Policy found
[i] Domain GPOs: 7 found
[i] FSMO Roles: 3 found
[i] SPNs: 122 found
[i] LAPS passwords: 0 found
[i] GPP enumeration starting. This can take a bit...
[i] GPP passwords: 7 found
[i] CSVs written to 'csv' directory in C:\Users\Administrator\Desktop
[i] Execution took 1.4217256s...
[i] Exiting...Functionality
StartTLS and TLS (tls.Client func) connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the current working directory. Dumps:
- Domain users. Also searches Description for keywords and prints to a seperate csv ex. "Password" was found in the domain user description.
- Users in priveleged user groups (DA, EA, FA).
- Users with passwords not set to expire.
- User accounts that have been locked or disabled.
- Machine accounts with passwords older than 45 days.
- Domain Computers.
- Domain Controllers.
- Sites and Subnets.
- SPNs and includes csv flag if domain admin (a flag to note SPNs that are DAs in the SPN CSV output).
- Trusted domain relationships.
- Domain Groups.
- Domain OUs.
- Domain Account Policy.
- Domain deligation users.
- Domain GPOs.
- Domain FSMO roles.
- LAPS passwords.
- GPP passwords. On Windows, defaults to mapping Q. If used, will try another mapping until success R, S, etc... On Linux, /mnt/goddi is used.
Related posts
- Hack Tools
- New Hacker Tools
- Hacker Tools 2020
- Pentest Tools Subdomain
- Pentest Tools Apk
- Pentest Tools Online
- Hack Tools Pc
- Hack Tools For Windows
- Pentest Automation Tools
- Hack Tools Online
- Hacking Tools For Windows
- Ethical Hacker Tools
- Install Pentest Tools Ubuntu
- Hacking Tools Online
- Hacker Tool Kit
- Best Pentesting Tools 2018
- Blackhat Hacker Tools
- Hacker Hardware Tools
- Hacking Tools For Mac
- Hacks And Tools
- Hacking Tools For Windows Free Download
- Hack Tools
- Beginner Hacker Tools
- Hacking Tools
- Hacking Tools For Games
- Tools For Hacker
- Nsa Hack Tools Download
- Pentest Tools Website Vulnerability
- Hacker Search Tools
- Hacker Tools Mac
- Pentest Tools For Windows
- Hacker Tool Kit
- Black Hat Hacker Tools
- Hacker Techniques Tools And Incident Handling
- Pentest Tools For Windows
- Pentest Tools Nmap
- Github Hacking Tools
- Pentest Tools Linux
- Hacking Tools For Beginners
- Kik Hack Tools
- Hacking Tools And Software
- Hacking Tools Free Download
- Install Pentest Tools Ubuntu
- Pentest Tools Github
- Nsa Hacker Tools
- Hak5 Tools
- Best Hacking Tools 2019
- Hacking Tools 2020
- Best Hacking Tools 2020
- Tools For Hacker
- Nsa Hacker Tools
- Hacker Tools For Ios
- Top Pentest Tools
- Pentest Tools Linux
- How To Make Hacking Tools
- Hacking Tools Pc
- New Hacker Tools
- Hack App
- Pentest Tools Open Source
- Black Hat Hacker Tools
- Pentest Tools Open Source
- Hacker Tools For Ios
- Hacker Tools 2019
- Hacking Tools Download
- Wifi Hacker Tools For Windows
- Hacker Tools Free Download
- Hacking Tools Mac
- Pentest Tools Android
- Best Hacking Tools 2020
- Top Pentest Tools
- Hacker Tools Mac
- Best Hacking Tools 2019
- Hack Tool Apk
- Pentest Tools For Ubuntu
- Hacker Tools For Mac
- Nsa Hack Tools Download
- Tools Used For Hacking
- Hacker Tools For Pc
- Hacking Tools Windows 10
- Hacking Tools Pc
- Physical Pentest Tools
- Hack Tools Pc
- Hack Tools For Ubuntu
- Hacking Tools For Windows Free Download
- Free Pentest Tools For Windows
- Hacker Search Tools
- Hacking Tools Windows
- Hacking Tools 2019
- Pentest Tools Kali Linux
- Easy Hack Tools
- Hacker Tools Linux
- Pentest Tools Linux
- Hacking Tools For Mac
- Hacker Tools
- Hacking Tools Usb
- Hacker Tools For Ios
- New Hack Tools
- Hacking Tools Windows 10
- Nsa Hacker Tools
- Hacker Tools For Pc
- Hackrf Tools
- Black Hat Hacker Tools
- Hack Tool Apk No Root
- Pentest Tools List
- Install Pentest Tools Ubuntu
- Hacking Tools 2019
- World No 1 Hacker Software
- Pentest Tools Download
- Hacker Tools Windows
- Hack Tool Apk No Root
- Hack Tools Mac
- What Is Hacking Tools
- Hacking Tools Kit
- Hacker Search Tools
- Hacker Tools For Mac
- Github Hacking Tools
- Hacking Tools 2020
- Hacker Tools Linux
- Hacker
- Pentest Reporting Tools
- Underground Hacker Sites
- Android Hack Tools Github
- Pentest Tools For Ubuntu
- Pentest Tools For Windows
- Hacking Tools For Windows 7
No comments:
Post a Comment