hash_parser

This is a hash parser that will export a rc file compatible with Metasploit. This is useful when compromising a seperate domain and want to see if any of the credentials work on another domain or other systems.

The first input is the filename that contains the hashes ex: Admin:500:LM:NTLM. The second input is the remote IP address you want to use smb_logins on to validate if the creds work. The third is the domain to attempt this on, leave this blank for workgroup

Download How to Get hash_parser
Option 1
To download hash_parser, type the following command in Linux:
Copied
Options 2
View on Git
help How to Get Help with hash_parser

For bug reports or enhancements, please open an issue on this project’s github page.

Azure Account Hijacking using mimikatz’s lsadump::setntlm

Not long ago, I was on an engagement where the client made use of a hybrid Office 365 environment. In their setup, authentication credentials were managed by the on-premises Active Directory (AD) Domain Controller and then synced to Azure AD via Azure AD Connect. We were tasked with gaining access to sensitive customer information. And...
Read More