Posts Tagged: powershell

If you have a hash for either a domain admin or a local admin on a domain controller, you can use mimikatz to exfil the entire Active Directory database. From mimikatz, run the following command to spawn a shell as the target user: sekurlsa::pth /user:<username> /domain:<domainname> /ntlm:<hash> /run:cmd.exe Now you have a few options from… Read Article →

Scroll To Top