Dark Mode

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings

lzzbb/Adinfo

Folders and files

NameName
Last commit message
Last commit date

Latest commit

History

9 Commits

Repository files navigation

Adinfo

Ci Wei Qu Nian Shi Xi Shi Yi Zhao goddiEr Kai De Ji Yu goDe ldapCha Xun Gong Ju

Xiu Fu Liao Lian Jie Shi Ke Neng Hui Cun Zai De bug, Yi Zhao Gong Fang Ji Yu Xin Xi Shou Ji Jing Yan dumpKuai Er You Yong De Yu Xin Xi

Gang Xue goDe Shi Hou Xie De ,Neng Pao Jiu Xing

Usage

1.Shu Chu Suo You Xin Xi

./Adinfo -d redteam.lab --dc 192.168.131.130 -u fff -H 5e95607216d9a4b7654d831beb9ee95c

./Adinfo -d redteam.lab --dc 192.168.131.130 -u fff -p Qq123456..

2.Dang Yu Hen Da Huo Zhe Mu Qian Zhi Xu Yao Te Ding Shu Xing De Zhi ,Ke Yi Zhi Ding Xia Mian De Can Shu Jin Xing Cha Xun

--getPolicy get domain Policy
--getDCandExchangeDNS get DC and Exchange DNS
--getAllDNS get all domain DNS
--getmaq get domain MAQ
--getdomainVersion get domain Version
--getMail get domain Mail
--getSID get domain SID
--getExchangeInformation get Exchange Information
--getDomainTrusts get trusts domain
--getSPN get all SPN
--getGPO get all GPO
--getDomainAdmins get all domain admins
--dclocaladministrators get dc local administrators
--BackupOperators get dc local Backup Operators
--getDC get all DomainControllers
--getAllUser get all domain user
--getUsefulUserName get all not Disabled and Locked user(only name)
--getHighlevelUser get users that admincount=1(only name)
--getNotusefulUser get not useful user(Locked or Disabled)
--getUsersNoExpire get users not expire
--getComputers get all domain computers
--getComputersName get all domain computers(only name)
--getDomainGroup get all domain group
--getCreatorSID get all CreatorSID
--getADCS get ADCS information
--getOU get domain OU
--checkLAPS get is have LAPS, If the current user has permission, all LAPS passwords will be exported.
--checkbackdoor check backdoor:MAQ, AsReproast, Kerberoast, SIDHistory, GetRBCD, UnconstrainedDeligation, ConstrainedDeligation, SensitiveDelegateAccount
--Krbtgttime get Krbtgt password last set time

Ju Yi Xia San Li Shuo Ming :

(1).Cha Kan Yu Nei ADCSXin Xi ,Bing Ju Ti De FQDNHe ip

./Adinfo_darwin -d redteam.lab --dc 192.168.131.130 -u fff -p Qq123456.. --getADCS

(2).Huo Qu Yu Nei Suo You De DNSXin Xi

./Adinfo_darwin -d redteam.lab --dc 192.168.131.130 -u fff -p Qq123456.. --getAllDNS

(3).Huo Qu Yu Nei Suo You Yong Hu Ming (Guo Lu Diao Liao disabledHe Locked user,Zhi Shu Chu Yong Hu Ming Dao Users_OnlyName.csvZhong ,Jiang csvZhong Ming Ming Wei txtJiu Neng Dui Suo You You Yong De Yu Yong Hu Jin Xing Mi Ma Pen Sa )

./Adinfo_darwin -d redteam.lab --dc 192.168.131.130 -u fff -p Qq123456.. --getUsefulUserName

Todo

1.nTSecurityDescriptorZi Duan Jie Xi Cun Zai Wen Ti ,Hou Xu Zai Jie Jue

2.Tian Jia Dui ldapZeng Shan Gai Cao Zuo

Reference

https://github.com/NetSPI/goddi

https://github.com/kgoins/go-winacl/

Mian Ze Sheng Ming

Ben Gong Ju Jin Neng Zai Qu De Zu Gou He Fa Shou Quan Qing Kuang Xia Shi Yong ,Shi Yong Ben Gong Ju De Guo Cheng Zhong Cun Zai Ren He Fei Fa Xing Wei Jiang Zi Xing Cheng Dan Suo You Hou Guo ,Ben Gong Ju Kai Fa Zhe Bu Cheng Dan Ren He Fa Lu Ji Lian Dai Ze Ren .

About

Yu Xin Xi Shou Ji Gong Ju

Resources

Readme

Stars

Watchers

Forks

Packages

Contributors

Languages