SharpHose is a C# password spraying tool designed to be fast, safe, and usable over Cobalt Strike's execute-assembly. It provides a flexible way to interact with Active Directory using domain-joined and non-joined contexts, while also being able to target specific domains and domain controllers. SharpHose takes into consideration the domain password policy, including fine grained password policies, in an attempt to avoid account lockouts. Fine grained password policies are enumerated for the users and groups that that the policy applies to. If the policy applied also to groups, the group users are captured. All enabled domain users are then classified according to their password policies, in order of precedence, and marked as safe or unsafe. The remaining users are filtered against an optional user-supplied exclude list.
Besides just spraying, red team operators can view all of the password policies for a domain, all the users affected by the policy, or just view the enabled domain users. Output can be sent directly to the console or to a user-supplied output folder.
Follow me on Twitter for some more tool releases soon! @ustayready
Nozzles
Nozzles are built-in methods of spraying. While currently only supporting one Nozzle (LDAP), it's written in a way that makes it easily extendable.
LDAP
Active Directory spraying nozzle using the LDAP protocol
- Asynchronous spraying for faster, but not too fast, results
- Domain joined and non-joined spraying
- Tight integration w/ domain password policies and fine grained password policies
- Smart lockout prevention (lockoutThreshold n-1 just to be safe)
- Optionally spray to specific domains and domain controllers
- View password policies and the affected users
Coming soon!
- MSOL
- OWA/EWS
- Lync
Compilation
- Built using Visual Studio 2019 Community Edition
- .NET Framework 4.5
Usage Examples
Cobalt Strike Users
Be sure to use the --auto to avoid the interactive prompts in SharpHose. Also, prepare your arguments locally so you can read the description before running. If you don't pass any arguments over execute-assembly, then SharpHose throws a "Missing Argument Exception" and Cobalt Strike won't return any output. You will know this is happening when you see [-] Invoke_3 on EntryPoint failed. This will be fixed eventually.
Domain Joined Spray w/o Interaction SharpHose.exe --action SPRAY_USERS --spraypassword Spring2020! --output c:\temp\ --auto
Domain Joined Spray w/ Exclusions SharpHose.exe --action SPRAY_USERS --spraypassword Spring2020! --output c:\temp\ --exclude c:\temp\exclusion_list.txt
Non-Domain Joined Spray SharpHose.exe --action SPRAY_USERS --spraypassword Spring2020! --domain lab.local --username demo --password DemoThePlanet --output c:\temp\
Domain Joined Show Policies Active Directory stores durations in negative large integer values which need to lapse after the last lockoutThreshold is exceeded. In future versions these will be formatted cleaner. SharpHose.exe --action GET_POLICIES --output c:\temp\
Domain Joined Show Policy Users SharpHose.exe --action GET_POLICY_USERS --policy lab --output c:\temp\
Domain Joined Show All Users SharpHose.exe --action GET_ENABLED_USERS --output c:\temp\
Domain Joined Spray Using Cobalt Strike execute-assembly /path/to/SharpHose.exe --action SPRAY_USERS --spraypassword Spring2020! --output c:\temp\ --auto
Shout-Outs
- CrowdStrike Red Team Labs.. Stay tuned for new hotness! https://www.crowdstrike.com/blog/author/red-team-labs/ pss.. if you didn't know, CrowdStrike offers Red Team Services and the operators have some killer tradecraft :)
via KitPloit
Related posts
- Hacker Tool Kit
- Hacker Tools Apk
- Best Pentesting Tools 2018
- Physical Pentest Tools
- Hacking Tools For Kali Linux
- Hacker Tools Linux
- Hacker Tools Software
- Tools For Hacker
- Tools 4 Hack
- Hack Rom Tools
- Hackers Toolbox
- Hack And Tools
- Hacker Security Tools
- Pentest Tools Port Scanner
- Hacking Tools Windows 10
- Hackers Toolbox
- Growth Hacker Tools
- Hackrf Tools
- Hack And Tools
- Pentest Tools Review
- Hack Tools For Mac
- Hack Tools For Windows
- Hacking App
- Tools Used For Hacking
- Pentest Tools Review
- Nsa Hack Tools
- Hacker Tools For Ios
- What Are Hacking Tools
- Hack Tools Github
- Pentest Tools Nmap
- Hack Tools 2019
- Hacker Hardware Tools
- Tools For Hacker
- Free Pentest Tools For Windows
- Hacking Tools For Mac
- Nsa Hacker Tools
- How To Install Pentest Tools In Ubuntu
- Pentest Tools For Windows
- Pentest Tools Url Fuzzer
- Hacker Tools 2019
- Pentest Tools Framework
- Hacking Tools Name
- Pentest Tools For Mac
- Hacking Tools For Windows Free Download
- Pentest Tools Find Subdomains
- Termux Hacking Tools 2019
- Pentest Tools For Mac
- Hack Tools For Pc
- Pentest Tools Review
- Hacker Tools Mac
- What Are Hacking Tools
- Pentest Tools Find Subdomains
- Hacking Tools Windows 10
- World No 1 Hacker Software
- Hack Tools Pc
- Pentest Tools Port Scanner
- Top Pentest Tools
- Pentest Tools Linux
- Hacking Tools Kit
- Hacking Tools Kit
- Github Hacking Tools
- Hacker Hardware Tools
- Pentest Tools Subdomain
- Hacker Security Tools
- Pentest Tools Android
- Blackhat Hacker Tools
- Hacking Tools For Kali Linux
- Pentest Tools Open Source
- Pentest Tools Url Fuzzer
- Pentest Tools Windows
- Pentest Tools Free
- Hacking Tools Free Download
- Hacking Tools Mac
- Hacker Tools Free Download
- Pentest Tools Website Vulnerability
- Hacker Tools For Mac
- Hack Tools
- Pentest Tools Open Source
- Kik Hack Tools
- Hack Rom Tools
- Hack Tools Online
- Hacking Tools For Mac
- Hack Tools Mac
- New Hacker Tools
- Game Hacking
- What Are Hacking Tools
- Github Hacking Tools
- Hacker Hardware Tools
- Pentest Tools Subdomain
- Github Hacking Tools
- Pentest Reporting Tools
- Pentest Tools Free
- Hacker Tools Github
- Pentest Tools List
- Black Hat Hacker Tools
- How To Install Pentest Tools In Ubuntu
- Hack And Tools
- Hacks And Tools
- Hacker Tools For Windows
- Hacker Tools Hardware
- Hack Tools
- Hacker Tools Free Download
- Pentest Tools Framework
- Hacker Tools Software
- Game Hacking
- Pentest Tools For Ubuntu
- Hacker Tools 2019
- Physical Pentest Tools
- Hackrf Tools
- Install Pentest Tools Ubuntu
- Hacking Tools And Software
- Hack Website Online Tool
- Hacker Tools For Mac
- Physical Pentest Tools
- Hacker Tools Free
- Pentest Tools Alternative
- Pentest Tools Port Scanner
- Hack Tools Github
- Pentest Tools List
- Hacker Tool Kit
- Tools Used For Hacking
- How To Hack
- Hacker Tools Apk
- Hacker Search Tools
- Pentest Tools Apk
- Hack Tools For Pc
- What Is Hacking Tools
- Top Pentest Tools
- Pentest Tools Url Fuzzer
- Hacking Tools For Mac
- Pentest Tools Open Source
- Hacking Tools Windows
- Hacking Tools Online
- Hacker Tools For Mac
- Hack Tools
- Hacker
- Hacker Tools Online
- Growth Hacker Tools
- Pentest Tools For Android
- Hacker Tools Software
- Hack Apps
- World No 1 Hacker Software
- Hacker Tools Github
- Tools 4 Hack
- Termux Hacking Tools 2019
- Pentest Tools For Android
- Hacker Tools Apk
- Hacker Security Tools
- Pentest Tools Review
- Hacker Tools 2020
- Hacking Tools For Windows Free Download
- Hacker Tools List
- Hack Tools
- Pentest Tools For Windows
- Hack And Tools
- Hack Tools
- Pentest Tools Tcp Port Scanner
- Hacking Tools Software
- Pentest Tools For Mac
- Hacker Tools Apk
- What Are Hacking Tools
- What Is Hacking Tools
- Best Hacking Tools 2020
- Hack Website Online Tool
- How To Make Hacking Tools
- Hack Tools Online
- What Is Hacking Tools
- Usb Pentest Tools
- Kik Hack Tools
- Install Pentest Tools Ubuntu
- Hacking App
- Hacker Search Tools
- Hacking Tools For Windows
- Hack Website Online Tool
- Hack Website Online Tool
No comments:
Post a Comment