Categories: Kali Linux

SMB AutoRelay : Automation Of SMB/NTLM Relay Technique For Pentesting & Red Teaming Exercises

SMB AutoRelay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environments.

Usage

Syntax: ./smbAutoRelay.sh -i <interface> -t <file> [-q] [-d].

Example: ./smbAutoRelay.sh -i eth0 -t ./targets.txt.

Notice that the targets file should contain just the IP addresses of each target, one per line, to which you want to try the SMB/NTLM Relay technique.

Run ./smbAutoRelay.sh [-h] to see other options.

Software which installs in the current directory [needed to run properly]
- responder
- impacket
Software which installs through apt, if not installed [needed to run properly]
- tmux
- rlwrap
- python
- python3
- netcat
- wget
- xterm
- net-tools

TODOs

Add the possibility to capture and crack the NetNTLM hashes.
Addapt it to use terminal profiles

DISCLAIMER

I AM NOT RESPONSIBLE OF THE MISUSE OF THIS TOOL. YOU RUN IT AT YOUR OWN RISK. Before running it, make sure you are in a controlled environment, and where you are allowed to perform this kind of exercise. PLEASE BE KIND 🙂

Related

NTLM Relay Gat – Automating Exploitation Of NTLM Relay Vulnerabilities

February 26, 2024

In "Exploitation Tools"

go-lsass : Remote LSASS Memory Dumping via SMB

December 6, 2024

In "Pentesting Tools"

Lsarelayx : NTLM Relaying For Windows Made Easy

February 25, 2022

In "Kali Linux"

R K

Next Asnap : Tool To Render Recon Phase Easier »

Previous « Powerglot : Encodes Offensive Powershell Scripts Using Polyglots

Share

Published by

R K

Tags: NTLMpentestingSMBSMB AutoRelay

5 years ago

Recent Posts

Database Assessment

How to Fix MyISAM Table Corruption in MySQL?

In MySQL Server 5.5 and earlier versions, the MyISAM was the default storage engine. So,…

1 day ago

Vulnerability Analysis

Microsoft Authenticator Flaw Could Leak Login Codes

A newly disclosed vulnerability in Microsoft Authenticator could expose one time sign in codes or…

1 day ago

software

Modrinth – A Comprehensive Overview of Tools and Functions

Modrinth is a modern platform that’s rapidly changing the landscape of Minecraft modding, providing an…

2 days ago

News

BlackSanta Malware A Stealthy Threat Targeting Recruiters and HR Teams

A new, highly sophisticated malware campaign named BlackSanta has emerged, primarily targeting HR and recruitment…

2 days ago

TECH

Perplexity Launches Personal Computer Features

Perplexity has unveiled an exciting new feature, Personal Computer, which allows AI agents to seamlessly…

3 days ago

Cyber security

Cyberattack or Smoke and Mirrors? The Truth Behind the Alleged Dimona Nuclear Breach

In a recent cyber incident, a group named CARDINAL, associated with the label Russian Legion,…

3 days ago

L