Welcome To Savi Savi Nenapu

Naveen Chinthakaaya

Tuesday, August 25, 2020

Goddi (Go Dump Domain Info) - Dumps Active Directory Domain Information



Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.

Install
Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc. The goddi package also uses the below package.
go get gopkg.in/ldap.v2

Windows
Tested on Windows 10 and 8.1 (go1.10 windows/amd64).

Linux
Tested on Kali Linux (go1.10 linux/amd64).
  • umount, mount, and cifs-utils need to be installed for mapping a share for GetGPP
apt-get update
apt-get install -y mount cifs-utils
  • make sure nothing is mounted at /mnt/goddi/
  • make sure to run with sudo

Run
When run, will default to using TLS (tls.Client method) over 636. On Linux, make sure to run with sudo.
  • username: Target user. Required parameter.
  • password: Target user's password. Required parameter.
  • domain: Full domain name. Required parameter.
  • dc: DC to target. Can be either an IP or full hostname. Required parameter.
  • startTLS: Use to StartTLS over 389.
  • unsafe: Use for a plaintext connection.
PS C:\Users\Administrator\Desktop> .\godditest-windows-amd64.exe -username=testuser -password="testpass!" -domain="test.local" -dc="dc.test.local" -unsafe
[i] Begin PLAINTEXT LDAP connection to 'dc.test.local'...
[i] PLAINTEXT LDAP connection to 'dc.test.local' successful...
[i] Begin BIND...
[i] BIND with 'testuser' successful...
[i] Begin dump domain info...
[i] Domain Trusts: 1 found
[i] Domain Controllers: 1 found
[i] Users: 12 found
        [*] Warning: keyword 'pass' found!
        [*] Warning: keyword 'fall' found!
[i] Domain Admins: 4 users found
[i] Enterprise Admins: 1 users found
[i] Forest Admins: 0 users found
[i] Locked Users: 0 found
[i] Disabled Users: 2 found
[i] Groups: 45 found
[i] Domain Sites: 1 found
[i] Domain Subnets: 0 found
[i] Domain Computers: 17 found
[i] Deligated Users: 0 found
[i] Users with passwords not set to expire: 6 found
[i] Machine Accounts with passwords older than 45 days: 18 found
[i] Domain OUs: 8 found
[i] Domain Account Policy found
[i] Domain GPOs: 7 found
[i] FSMO Roles: 3 found
[i] SPNs: 122 found
[i] LAPS passwords: 0 found
[i] GPP enumeration starting. This can take a bit...
[i] GPP passwords: 7 found
[i] CSVs written to 'csv' directory in C:\Users\Administrator\Desktop
[i] Execution took 1.4217256s...
[i] Exiting...

Functionality
StartTLS and TLS (tls.Client func) connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the current working directory. Dumps:
  • Domain users. Also searches Description for keywords and prints to a seperate csv ex. "Password" was found in the domain user description.
  • Users in priveleged user groups (DA, EA, FA).
  • Users with passwords not set to expire.
  • User accounts that have been locked or disabled.
  • Machine accounts with passwords older than 45 days.
  • Domain Computers.
  • Domain Controllers.
  • Sites and Subnets.
  • SPNs and includes csv flag if domain admin (a flag to note SPNs that are DAs in the SPN CSV output).
  • Trusted domain relationships.
  • Domain Groups.
  • Domain OUs.
  • Domain Account Policy.
  • Domain deligation users.
  • Domain GPOs.
  • Domain FSMO roles.
  • LAPS passwords.
  • GPP passwords. On Windows, defaults to mapping Q. If used, will try another mapping until success R, S, etc... On Linux, /mnt/goddi is used.


Related posts
  1. New Hacker Tools
  2. Hacker Tools For Pc
  3. Tools 4 Hack
  4. Pentest Tools Website Vulnerability
  5. Nsa Hack Tools
  6. Hacker Tools Mac
  7. Hacking Tools For Mac
  8. New Hacker Tools
  9. How To Install Pentest Tools In Ubuntu
  10. Wifi Hacker Tools For Windows
  11. Hack Tool Apk No Root
  12. Beginner Hacker Tools
  13. Hacker Tools Software
  14. Hacker Tools Hardware
  15. Hacking Tools Software
  16. Hacking Tools Windows 10
  17. Hack And Tools
  18. How To Hack
  19. Tools 4 Hack
  20. Pentest Tools Review
  21. Hacking Tools For Mac
  22. Hack Tools For Ubuntu
  23. Pentest Tools For Mac
  24. Nsa Hacker Tools
  25. Pentest Automation Tools
  26. Pentest Tools Windows
  27. Free Pentest Tools For Windows
  28. Hack Tools For Games
  29. Hacker Tools Github
  30. What Is Hacking Tools
  31. Best Hacking Tools 2019
  32. Hacking Tools For Windows 7
  33. Best Pentesting Tools 2018
  34. Hack Tools For Windows
  35. Best Hacking Tools 2020
  36. Hacker Tools Linux
  37. Hacker Tool Kit
  38. How To Hack
  39. Wifi Hacker Tools For Windows
  40. Pentest Tools For Android
  41. Game Hacking
  42. Hack Tool Apk No Root
  43. New Hack Tools
  44. Hacker Tools For Windows
  45. Best Hacking Tools 2020
  46. Hack And Tools
  47. Black Hat Hacker Tools
  48. Pentest Tools Website Vulnerability
  49. Pentest Tools For Android
  50. Pentest Tools For Ubuntu
  51. Usb Pentest Tools
  52. Hacker Tools Online
  53. World No 1 Hacker Software
  54. Hacking Tools Name
  55. Black Hat Hacker Tools
  56. Hacking Tools Online
  57. Hacker Tools Mac
  58. Pentest Tools Website
  59. Hack And Tools
  60. Hacking Tools Free Download
  61. Hacker Tool Kit
  62. Hacking Tools Github
  63. How To Install Pentest Tools In Ubuntu
  64. Hacking Tools And Software
  65. Nsa Hacker Tools
  66. Termux Hacking Tools 2019
  67. Hacking Tools Windows 10
  68. Hacking Tools Download
  69. Hackrf Tools
  70. Github Hacking Tools
  71. Pentest Tools Linux
  72. Kik Hack Tools
  73. Hacker Tools List
  74. Hacking Tools Free Download
  75. Hack Tools Pc
  76. Pentest Tools Nmap
  77. Hacking Tools For Mac
  78. Hacking Tools For Windows Free Download
  79. Hacking Tools For Windows 7
  80. Pentest Tools
  81. Android Hack Tools Github
  82. Tools 4 Hack
  83. Top Pentest Tools
  84. Pentest Tools Tcp Port Scanner
  85. Hacking Tools Kit
  86. Pentest Tools Nmap
  87. Pentest Tools Github
  88. Blackhat Hacker Tools
  89. Pentest Tools Tcp Port Scanner
  90. Hacking Apps
  91. Pentest Tools Linux
  92. Hacker Tool Kit
  93. Pentest Tools For Ubuntu
  94. Hacking Tools Usb
  95. Hacker Tools 2019
  96. Hacking Apps
  97. Computer Hacker
  98. Pentest Tools Subdomain
  99. Hack Tools Mac
  100. Beginner Hacker Tools
  101. Pentest Tools Tcp Port Scanner
  102. Hacking Tools Windows 10
  103. Android Hack Tools Github
  104. Hacker Tools
  105. Hacker Tools Github
  106. Physical Pentest Tools
  107. Beginner Hacker Tools
  108. Hacker Tools Mac
  109. Hacking Tools For Beginners
  110. Hack Tools For Games
  111. Github Hacking Tools
  112. Hacking Tools Mac
  113. Pentest Tools Github
  114. Hacker
  115. Pentest Tools Free
  116. Beginner Hacker Tools
  117. Hacking Tools Software
  118. Pentest Tools Alternative
  119. Hacking Tools Download
  120. Pentest Tools List
  121. Pentest Reporting Tools
  122. Pentest Tools For Mac
  123. Pentest Tools Windows
  124. Pentest Reporting Tools
  125. Computer Hacker
  126. Pentest Tools Free
  127. Pentest Tools Framework
  128. Hacker Tools Linux
  129. Hacking Tools Windows 10
  130. Hacking Tools Free Download
  131. Hacker Hardware Tools
  132. Pentest Tools Website Vulnerability
  133. Best Pentesting Tools 2018
  134. New Hack Tools
  135. Pentest Tools For Windows
  136. Growth Hacker Tools
  137. Hacker Tools Apk
  138. Pentest Tools For Ubuntu
  139. Hacker Tools For Pc
  140. Pentest Tools Subdomain
  141. Hack Website Online Tool
  142. Hacking Tools For Windows 7
  143. Hacking Tools For Pc
  144. Hacker Tools Free
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)