Kali
SharpLAPS is a tool to Retrieve LAPS Password From LDAP. The attribute ms-mcs-AdmPwd stores the clear-text LAPS password. This executable is made to be executed within Cobalt Strike session using execute-assembly. It will retrieve the LAPS password from the Active Directory. Require (either): Account with ExtendedRight or Generic All Rights Domain Admin privilege Usage _ _ _ / // /_ _ / / …
Continue reading “SharpLAPS : Retrieve LAPS Password From LDAP”
LAPSToolkit functions written in PowerShell that leverage PowerView to audit and attack Active Directory environments that have deployed Microsoft’s Local Administrator Password Solution (LAPS). It includes finding groups specifically delegated by sysadmins, finding users with “All Extended Rights” that can view passwords, and viewing all computers with LAPS enabled. Please submit issues or comments for …
Continue reading “LAPSToolkit : Tool to Audit & Attack LAPS Environments”
