????RedSnarf???????Ed William ?? Richard Davy?????????????????????????????????RedSnarf???OpSec????????Windows???????????????????????м?????к?????
????RedSnarf????????????????????
????????????/????????????????κ???? – ?????????????????
??????????????????????????????????????
????YouTube?????https://youtu.be/oLmpOol8NV8
???????????RedSnarf??
???????????RedSnarf?????????????????ù????????smbexec??Metasploit?????????????????顣??????????????????????????RedSnarf???
???????棬???????о????RedSnarf?????????
?????????????????
????????С??????棨?????????С??500?У?
??????????????????????
??????黯
????????
????RedSnarf?????????
????????????SAM???
???????????????????е?????????????lsa????
????????MS????????
????Pass-the-hash??
???????????????????2??????????????admin/Password01??;
????????????????
????Credsfile?????????????pwdump??fgdump?????????????????????
????Lsass?????????Mimikatz???????????
???????NTDSUtil????????????У???????NTDS.dit???б????????
???????drsuapi????????????????У?
?????????????????????????????У?????’????’??’?????’??
???????????cpassword?????
????????????????????shell??
?????????????????ó????????????????????????????????汾??
???????????????????????????????????????
??????????????????/????RDP??
??????RDP????3389???????????????443??
??????????????????/????NLA??
??????????????????????????λ?á?
????Windows??????????
??????????????????/????UAC??
????mimikatz????????
????????????
????????????Щ?????????/????
???????????????????????????
?????????????????????
????????Windows????
????????WinSCP????
????????????SPN
????????????????WIFI????

??????????????
????RedSnarf??????????????????
????Kali Linux
????python 2.7.9
????termcolor (1.1.0)
??????????
Impacket v0.9.16-dev – https://github.com/CoreSecurity/impacket.git
CredDump7 – https://github.com/Neohapsis/creddump7
???procdump????Lsass - https://technet.microsoft.com/en-us/sysinternals/dd996900.aspx
Netaddr (0.7.12) – pip install netaddr
Termcolor (1.1.0) – pip install termcolor
iconv – ????????????Mimikatz???
????????????????
????./redsnarf.py -h
????./redsnarf.py --help