ivuorinen/cheatsheet-tldr
1
0
Fork 0
mirror of https://github.com/ivuorinen/cheatsheet-tldr.git synced 2026-02-17 19:49:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update cheatsheets

Browse Source
This commit is contained in:
ivuorinen
2025-03-06 00:18:17 +00:00
parent f34ec7a9b3
commit a812b3c467
4 changed files with 84 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
tldr/getadusers.py Normal file
View File

@@ -0,0 +1,26 @@
---
syntax: markdown
tags: [tldr, common]
source: https://github.com/tldr-pages/tldr.git
---
# GetADUsers.py
> Retrieve a list of users from Active Directory, including attributes like last logon timestamp and email.
> Part of the Impacket suite.
> More information: <https://github.com/fortra/impacket>.
- Enumerate all Active Directory users and their attributes:
`GetADUsers.py -all -dc-ip {{domain_controller_ip}} {{domain}}/{{username}}:{{password}}`
- Retrieve information only for a specific user:
`GetADUsers.py -user {{user}} -dc-ip {{domain_controller_ip}} {{domain}}/{{username}}:{{password}}`
- Extract user details using pass-the-hash authentication:
`GetADUsers.py -all -dc-ip {{domain_controller_ip}} -hashes {{LM_Hash}}:{{NT_Hash}} {{domain}}/{{username}}`
- Save output to a file:
`GetADUsers.py -all -dc-ip {{domain_controller_ip}} {{domain}}/{{username}}:{{password}} > output.txt`

30
tldr/getnpusers.py Normal file
View File

@@ -0,0 +1,30 @@
---
syntax: markdown
tags: [tldr, common]
source: https://github.com/tldr-pages/tldr.git
---
# GetNPUsers.py
> Enumerate Active Directory accounts with Kerberos pre-authentication disabled, which may be susceptible to AS-REP roasting attacks.
> Part of the Impacket suite.
> More information: <https://github.com/fortra/impacket>.
- Enumerate users with Kerberos pre-authentication disabled (default anonymous enumeration):
`GetNPUsers.py {{domain}}/ -usersfile {{path/to/userslist}} -dc-ip {{domain_controller_ip}}`
- Perform AS-REP roasting and dump crackable hashes for offline cracking:
`GetNPUsers.py {{domain}}/ -usersfile {{path/to/userslist}} -dc-ip {{domain_controller_ip}} -request`
- Authenticate with valid credentials (if anonymous binding is disabled):
`GetNPUsers.py {{domain}}/{{username}}:{{password}} -usersfile {{path/to/userslist}} -dc-ip {{domain_controller_ip}}`
- Use pass-the-hash authentication instead of a password:
`GetNPUsers.py {{domain}}/{{username}} -hashes {{LM_Hash}}:{{NT_Hash}} -usersfile {{path/to/userslist}} -dc-ip {{domain_controller_ip}}`
- Save the output to a file for further analysis:
`GetNPUsers.py {{domain}}/ -usersfile {{path/to/userslist}} -dc-ip {{domain_controller_ip}} -request > {{output.txt}}`

14
tldr/impacket-getadusers Normal file
View File

@@ -0,0 +1,14 @@
---
syntax: markdown
tags: [tldr, common]
source: https://github.com/tldr-pages/tldr.git
---
# impacket-GetADUsers
> This command is an alias of `GetADUsers.py`.
> Part of the Impacket suite.
> More information: <https://github.com/fortra/impacket>.
- View documentation for the original command:
`tldr GetADUsers.py`

14
tldr/impacket-getnpusers Normal file
View File

@@ -0,0 +1,14 @@
---
syntax: markdown
tags: [tldr, common]
source: https://github.com/tldr-pages/tldr.git
---
# impacket-GetNPUsers
> This command is an alias of `GetNPUsers.py`.
> Part of the Impacket suite.
> More information: <https://github.com/fortra/impacket>.
- View documentation for the original command:
`tldr GetNPUsers.py`