.png)
ADFSRelay is a repository includes two utilities NTLMParse and ADFSRelay. NTLMParse is a utility for decoding base64-encoded NTLM messages and printing information about the underlying properties and fields within the message. Examining these NTLM messages is helpful when researching the behavior of a particular NTLM implementation. ADFSRelay is a proof of concept utility developed while …
Tag Archives: NTLM
Lsarelayx : NTLM Relaying For Windows Made Easy
Lsarelayx is system wide NTLM relay tool designed to relay incoming NTLM based authentication to the host it is running on. lsarelayx will relay any incoming authentication request which includes SMB. Since lsarelayx hooks into existing application authentication flows, the tool will also attempt to service the original authentication request after the relay is complete. This will …
Continue reading “Lsarelayx : NTLM Relaying For Windows Made Easy”
SMB AutoRelay : Automation Of SMB/NTLM Relay Technique For Pentesting & Red Teaming Exercises
SMB AutoRelay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environments. Usage Syntax: ./smbAutoRelay.sh -i <interface> -t <file> [-q] [-d]. Example: ./smbAutoRelay.sh -i eth0 -t ./targets.txt. Notice that the targets file should contain just the IP addresses of each target, one per line, to which you want …
NTLMRecon : Tool To Enumerate Information From NTLM Authentication Enabled Web Endpoints
NTLMRecon is built with flexibilty in mind. A fast and flexible NTLM reconnaissance tool without external dependencies. Useful to find out information about NTLM endpoints when working with a large set of potential IP addresses and domains. Need to run recon on a single URL, an IP address, an entire CIDR range or combination of …