From d86a0655ba5749a34022012e40a7af51bf734522 Mon Sep 17 00:00:00 2001 From: NoPurposeInLife <30126475+NoPurposeInLife@users.noreply.github.com> Date: Fri, 26 Jul 2024 03:04:39 +0800 Subject: [PATCH] Update laps.md --- windows-hardening/active-directory-methodology/laps.md | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/windows-hardening/active-directory-methodology/laps.md b/windows-hardening/active-directory-methodology/laps.md index 3f7effa0508..829a93c8dc4 100644 --- a/windows-hardening/active-directory-methodology/laps.md +++ b/windows-hardening/active-directory-methodology/laps.md @@ -114,6 +114,15 @@ crackmapexec ldap 10.10.10.10 -u user -p password --kdcHost 10.10.10.10 -M laps ``` This will dump all the passwords that the user can read, allowing you to get a better foothold with a different user. +## ** Using LAPS Password ** +``` +freerdp /v:192.168.1.1:3389 /u:Administrator +Password: 2Z@Ae)7!{9#Cq + +python psexec.py Administrator@web.example.com +Password: 2Z@Ae)7!{9#Cq +``` + ## **LAPS Persistence** ### **Expiration Date**