Thursday, August 27, 2020

Goddi (Go Dump Domain Info) - Dumps Active Directory Domain Information



Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.

Install
Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc. The goddi package also uses the below package.
go get gopkg.in/ldap.v2

Windows
Tested on Windows 10 and 8.1 (go1.10 windows/amd64).

Linux
Tested on Kali Linux (go1.10 linux/amd64).
  • umount, mount, and cifs-utils need to be installed for mapping a share for GetGPP
apt-get update
apt-get install -y mount cifs-utils
  • make sure nothing is mounted at /mnt/goddi/
  • make sure to run with sudo

Run
When run, will default to using TLS (tls.Client method) over 636. On Linux, make sure to run with sudo.
  • username: Target user. Required parameter.
  • password: Target user's password. Required parameter.
  • domain: Full domain name. Required parameter.
  • dc: DC to target. Can be either an IP or full hostname. Required parameter.
  • startTLS: Use to StartTLS over 389.
  • unsafe: Use for a plaintext connection.
PS C:\Users\Administrator\Desktop> .\godditest-windows-amd64.exe -username=testuser -password="testpass!" -domain="test.local" -dc="dc.test.local" -unsafe
[i] Begin PLAINTEXT LDAP connection to 'dc.test.local'...
[i] PLAINTEXT LDAP connection to 'dc.test.local' successful...
[i] Begin BIND...
[i] BIND with 'testuser' successful...
[i] Begin dump domain info...
[i] Domain Trusts: 1 found
[i] Domain Controllers: 1 found
[i] Users: 12 found
        [*] Warning: keyword 'pass' found!
        [*] Warning: keyword 'fall' found!
[i] Domain Admins: 4 users found
[i] Enterprise Admins: 1 users found
[i] Forest Admins: 0 users found
[i] Locked Users: 0 found
[i] Disabled Users: 2 found
[i] Groups: 45 found
[i] Domain Sites: 1 found
[i] Domain Subnets: 0 found
[i] Domain Computers: 17 found
[i] Deligated Users: 0 found
[i] Users with passwords not set to expire: 6 found
[i] Machine Accounts with passwords older than 45 days: 18 found
[i] Domain OUs: 8 found
[i] Domain Account Policy found
[i] Domain GPOs: 7 found
[i] FSMO Roles: 3 found
[i] SPNs: 122 found
[i] LAPS passwords: 0 found
[i] GPP enumeration starting. This can take a bit...
[i] GPP passwords: 7 found
[i] CSVs written to 'csv' directory in C:\Users\Administrator\Desktop
[i] Execution took 1.4217256s...
[i] Exiting...

Functionality
StartTLS and TLS (tls.Client func) connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the current working directory. Dumps:
  • Domain users. Also searches Description for keywords and prints to a seperate csv ex. "Password" was found in the domain user description.
  • Users in priveleged user groups (DA, EA, FA).
  • Users with passwords not set to expire.
  • User accounts that have been locked or disabled.
  • Machine accounts with passwords older than 45 days.
  • Domain Computers.
  • Domain Controllers.
  • Sites and Subnets.
  • SPNs and includes csv flag if domain admin (a flag to note SPNs that are DAs in the SPN CSV output).
  • Trusted domain relationships.
  • Domain Groups.
  • Domain OUs.
  • Domain Account Policy.
  • Domain deligation users.
  • Domain GPOs.
  • Domain FSMO roles.
  • LAPS passwords.
  • GPP passwords. On Windows, defaults to mapping Q. If used, will try another mapping until success R, S, etc... On Linux, /mnt/goddi is used.


Related word


  1. Hack Tools Mac
  2. Hacking Tools
  3. How To Make Hacking Tools
  4. Hacker Tools For Windows
  5. Hacks And Tools
  6. Hacking Tools For Windows Free Download
  7. Hack Tools For Pc
  8. Pentest Tools For Windows
  9. Best Hacking Tools 2020
  10. Pentest Tools Url Fuzzer
  11. Pentest Tools Nmap
  12. World No 1 Hacker Software
  13. Growth Hacker Tools
  14. Tools For Hacker
  15. Best Hacking Tools 2019
  16. Hackrf Tools
  17. Hack Rom Tools
  18. Hack Tools Online
  19. What Are Hacking Tools
  20. Hacking Tools Windows
  21. Pentest Tools
  22. Best Hacking Tools 2019
  23. Pentest Tools Online
  24. Hack Tools For Ubuntu
  25. Pentest Tools For Windows
  26. Pentest Box Tools Download
  27. Pentest Tools Framework
  28. Hacks And Tools
  29. Hacking Tools Windows 10
  30. Hacking Tools For Mac
  31. Hacking Tools Usb
  32. What Are Hacking Tools
  33. World No 1 Hacker Software
  34. Hacking Tools Windows
  35. Termux Hacking Tools 2019
  36. How To Install Pentest Tools In Ubuntu
  37. Hack Tools Download
  38. Pentest Tools Nmap
  39. Hacker Tools Mac
  40. Pentest Tools Online
  41. Nsa Hack Tools
  42. World No 1 Hacker Software
  43. Hacker Tools Free
  44. Hacker Tools Free Download
  45. Computer Hacker
  46. Hacker Tool Kit
  47. Hacking Tools For Windows Free Download
  48. Hack Tools 2019
  49. Pentest Tools Online
  50. Hacker
  51. Blackhat Hacker Tools
  52. Pentest Tools Find Subdomains
  53. Wifi Hacker Tools For Windows
  54. Hacker Tools For Pc
  55. Hack Rom Tools
  56. Pentest Tools Tcp Port Scanner
  57. Underground Hacker Sites
  58. Hacker
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)