-
Notifications
You must be signed in to change notification settings - Fork 3.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
GetUserSpns.py fails when using -k option and NTLM auth is disabled #1206
Comments
A quick hacky workaround for anyone else encountering this:
Example usage: This does mean that you'll always need to specify a DC (and use the FQDN instead of IP) if you use the -k option here's the rest of the code around that area in case line numbers change in future:
Also if you're on windows and not sure where the file is, its here for me: |
Thanks for looking into it 👍 The dc-ip parameter works perfectly fine when you use it to specify a hostname instead of an IP, so I'm not sure I'd agree with requiring a separate dc-host parameter. But I guess you need some way of knowing the user specified a hostname that you can use for kebreros and not an IP. |
Who else is here for HTB Scrambled? |
😄 I really hoped it would have been fixed in the 8 months since I made the machine |
It works for me if I request the ticket first with getTGT.py instead. Then you can also use that ticket with other impacket scripts. @VbScrub Dont you think its time to update?
Nice box btw, giving me a good run for my money. |
Hi everybody! I created this PR #1363 that should address the issue. Please let me know if it works. |
Hello @vs45sharma , I had the same issue you are showing here. I solved it by updating the GetUserSPNs.py generated in this PR and using the option -dc-host option instead of the -dc-ip that you are currently using. @0xdeaddood the PR is working like a charm. Thanks for the effort! |
It's not working? |
Hi @vs45sharma What I did is get TGT first And works perfect for me. |
I got TDT but in second step it give me error every time. |
Configuration
impacket version: 0.9.24
Python version: 2.7.18
Target OS: Windows 10
Additional context
The target domain has NTLM auth disabled so I used the -k option but it fails with the above error
The text was updated successfully, but these errors were encountered: