Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update secrets dump to generate kerberos rc4 key for machine account #17756

Merged
merged 1 commit into from
Mar 9, 2023
Merged

Update secrets dump to generate kerberos rc4 key for machine account #17756

merged 1 commit into from
Mar 9, 2023

Conversation

adfoster-r7
Copy link
Contributor

Updates secrets dump to generate the Kerberos rc4 key for the machine account.

Verification

Verify the value appears when running secrets dump:

$MACHINE.ACC
DEV\DC02$:plain_password_hex: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
DEV\DC02$:aes256-cts-hmac-sha1-96:78ec2c8cc9df5f48a1cb84f5f5729524a8eb8bbf811479611e9b3a79d8ea0024
DEV\DC02$:aes128-cts-hmac-sha1-96:13fa54e3b6e4a029a39526a8522e2a1e
DEV\DC02$:des-cbc-md5:34633534663833373932343635373334
DEV\DC02$:aad3b435b51404eeaad3b435b51404ee:3fe5c54d5a34199745280a1c3210a32c:::

And if the database is connected:

msf6 auxiliary(gather/windows_secrets_dump) > creds
Credentials
===========

host        origin      service        public          private                                                                                              realm           private_type  JtR Format
----        ------      -------        ------          -------                                                                                              -----           ------------  ----------
...
10.10.11.5  10.10.11.5  445/tcp (smb)  DEV\DC02$       rc4-hmac:3fe5c54d5a34199745280a1c3210a32c                                                            dev.demo.local  Krb enc key

@dwelch-r7 dwelch-r7 self-assigned this Mar 9, 2023
@dwelch-r7
Copy link
Contributor

This works for me
image

@dwelch-r7 dwelch-r7 merged commit 9961fff into rapid7:master Mar 9, 2023
@dwelch-r7 dwelch-r7 added the rn-enhancement release notes enhancement label Mar 9, 2023
@dwelch-r7
Copy link
Contributor

Release Notes

Updates secrets dump to generate the Kerberos rc4 key for the machine account.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@dwelch-r7 dwelch-r7

Labels
rn-enhancement release notes enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@adfoster-r7 @dwelch-r7