Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.
Install
Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc. The goddi package also uses the below package.
go get gopkg.in/ldap.v2
Windows
Tested on Windows 10 and 8.1 (go1.10 windows/amd64).
Linux
Tested on Kali Linux (go1.10 linux/amd64).
- umount, mount, and cifs-utils need to be installed for mapping a share for GetGPP
apt-get update
apt-get install -y mount cifs-utils
- make sure nothing is mounted at /mnt/goddi/
- make sure to run with
sudo
Run
When run, will default to using TLS (tls.Client method) over 636. On Linux, make sure to run with
sudo
.- username: Target user. Required parameter.
- password: Target user's password. Required parameter.
- domain: Full domain name. Required parameter.
- dc: DC to target. Can be either an IP or full hostname. Required parameter.
- startTLS: Use to StartTLS over 389.
- unsafe: Use for a plaintext connection.
PS C:\Users\Administrator\Desktop> .\godditest-windows-amd64.exe -username=testuser -password="testpass!" -domain="test.local" -dc="dc.test.local" -unsafe
[i] Begin PLAINTEXT LDAP connection to 'dc.test.local'...
[i] PLAINTEXT LDAP connection to 'dc.test.local' successful...
[i] Begin BIND...
[i] BIND with 'testuser' successful...
[i] Begin dump domain info...
[i] Domain Trusts: 1 found
[i] Domain Controllers: 1 found
[i] Users: 12 found
[*] Warning: keyword 'pass' found!
[*] Warning: keyword 'fall' found!
[i] Domain Admins: 4 users found
[i] Enterprise Admins: 1 users found
[i] Forest Admins: 0 users found
[i] Locked Users: 0 found
[i] Disabled Users: 2 found
[i] Groups: 45 found
[i] Domain Sites: 1 found
[i] Domain Subnets: 0 found
[i] Domain Computers: 17 found
[i] Deligated Users: 0 found
[i] Users with passwords not set to expire: 6 found
[i] Machine Accounts with passwords older than 45 days: 18 found
[i] Domain OUs: 8 found
[i] Domain Account Policy found
[i] Domain GPOs: 7 found
[i] FSMO Roles: 3 found
[i] SPNs: 122 found
[i] LAPS passwords: 0 found
[i] GPP enumeration starting. This can take a bit...
[i] GPP passwords: 7 found
[i] CSVs written to 'csv' directory in C:\Users\Administrator\Desktop
[i] Execution took 1.4217256s...
[i] Exiting...
Functionality
StartTLS and TLS (tls.Client func) connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the current working directory. Dumps:
- Domain users. Also searches Description for keywords and prints to a seperate csv ex. "Password" was found in the domain user description.
- Users in priveleged user groups (DA, EA, FA).
- Users with passwords not set to expire.
- User accounts that have been locked or disabled.
- Machine accounts with passwords older than 45 days.
- Domain Computers.
- Domain Controllers.
- Sites and Subnets.
- SPNs and includes csv flag if domain admin (a flag to note SPNs that are DAs in the SPN CSV output).
- Trusted domain relationships.
- Domain Groups.
- Domain OUs.
- Domain Account Policy.
- Domain deligation users.
- Domain GPOs.
- Domain FSMO roles.
- LAPS passwords.
- GPP passwords. On Windows, defaults to mapping Q. If used, will try another mapping until success R, S, etc... On Linux, /mnt/goddi is used.
More information
- Hack App
- Tools Used For Hacking
- Hacker Techniques Tools And Incident Handling
- Physical Pentest Tools
- What Are Hacking Tools
- Hack Tools For Ubuntu
- Growth Hacker Tools
- Hacker
- Hack And Tools
- Computer Hacker
- Hacking Tools Hardware
- Tools 4 Hack
- Hacker Tools 2020
- Hacker Tools 2019
- Pentest Automation Tools
- Pentest Recon Tools
- Hack Tools For Pc
- Pentest Tools List
- Hacking Tools Windows 10
- Blackhat Hacker Tools
- Pentest Recon Tools
- Hacker Tools Online
- Hacker Tools For Pc
- Hack Rom Tools
- Hacking Tools For Windows
- Nsa Hack Tools Download
- Hacker
- Tools Used For Hacking
- Hack Tool Apk
- Best Pentesting Tools 2018
- Pentest Tools Find Subdomains
- New Hacker Tools
- Hackrf Tools
- Pentest Tools For Ubuntu
- Hacker Techniques Tools And Incident Handling
- Easy Hack Tools
- Tools Used For Hacking
- Hacker
- Tools For Hacker
- Hacker Security Tools
- Hacker Hardware Tools
- Tools For Hacker
- Hack Rom Tools
- World No 1 Hacker Software
- Hack Rom Tools
- Hacking Tools
- Pentest Recon Tools
- Pentest Tools Website
- Black Hat Hacker Tools
- Hacking Tools 2019
- Hack Tools
- Pentest Tools Website
- Hacker Tools Software
- Nsa Hack Tools
- Pentest Tools Open Source
- Hacker Tools List
- Hacker Tools 2019
- Pentest Tools Subdomain
- Tools For Hacker
- Hack Tools Pc
- Pentest Tools Tcp Port Scanner
- Pentest Tools Url Fuzzer
- Hack And Tools
- Hacker Tools Linux
- Hack And Tools
- Pentest Box Tools Download
- Hack Tools For Ubuntu
- Hacking Tools Online
- Hacking Tools For Games
- Beginner Hacker Tools
- Hacking Tools Kit
- Hack Tools Online
- Hacker Tools Online
- Kik Hack Tools
- Hack Website Online Tool
- Best Hacking Tools 2020
- Best Pentesting Tools 2018
- How To Install Pentest Tools In Ubuntu
- Easy Hack Tools
- How To Hack
- Nsa Hacker Tools
- Hacking Tools Windows
- Pentest Tools For Android
- Install Pentest Tools Ubuntu
- Hacker Tools Mac
- Pentest Tools Github
- Pentest Tools Free
- Hacker Tools Mac
- Tools 4 Hack
- Pentest Tools Find Subdomains
- Pentest Tools Tcp Port Scanner
- Hacking Tools Kit
- Hack Tools Online
- Growth Hacker Tools
- Hack Tools Github
- Hacker Tools Free Download
- Computer Hacker
- Hacker Hardware Tools
- Pentest Tools Apk
- Pentest Tools Windows
- Pentest Tools Framework
- Hacking Tools For Windows Free Download
- Pentest Tools Framework
- Pentest Tools Website Vulnerability
- Kik Hack Tools
- Hacking Tools For Games
- Pentest Tools Open Source
- Hacking Tools Software
- Hacker Tools For Pc
- Hack Tools Github
- Top Pentest Tools
- Hacking Tools 2019
- Hak5 Tools
- How To Make Hacking Tools
- Hacker Tool Kit
- Free Pentest Tools For Windows
- Install Pentest Tools Ubuntu
- Pentest Tools Port Scanner
- Ethical Hacker Tools
- Pentest Tools For Windows
- Pentest Reporting Tools
- Termux Hacking Tools 2019
- Hacking Tools And Software
- Pentest Tools For Android
- Pentest Tools Apk
- Hacker Tools Mac
- Hack Tool Apk No Root
- Hacking Tools Online
- Termux Hacking Tools 2019
- Blackhat Hacker Tools
- Hacker Tools 2019
- Hacking Tools Free Download
- Pentest Tools Alternative
- Hacker Security Tools
- Underground Hacker Sites
- Hacker Tools Windows
No comments:
Post a Comment