-
Notifications
You must be signed in to change notification settings - Fork 2
Module logged_on
simondotsh edited this page Oct 27, 2021
·
1 revision
logged_on returns users logged onto a target by enumerating registry keys through the Remote Registry service.
Similarly to the sessions module, this can help to hunt privileged users.
The reported users are logged on the target, and may have authenticated using a protocol that caches their NT hash.