NetExec icon indicating copy to clipboard operation
NetExec copied to clipboard
verified publisher icon Pennyw0rth

Windows binary version: issues with --ntds option

Open andretorresbr opened this issue 2 years ago • 3 comments

Describe the bug When I use --ntds option in the Windows compiled binary version (single .EXE file), the tools crashes with EOFError.

To Reproduce

  1. Compile Windows single binary, as described in the documentation.
  2. Run NetExec with --ntds option:

.\nxc.exe smb 192.168.144.1 -u syslogagent -H '58a478135a93ac3bf058a5ea0e8fdb71' -d gcbsec.local --ntds

Resulted in: 001

Expected behavior NTDS.dit extraction

andretorresbr avatar Dec 26 '23 15:12 andretorresbr

Works fine on my side. Any specifics on how to reproduce the problem? image

NeffIsBack avatar Dec 27 '23 17:12 NeffIsBack

The only different thing is that I ran nxc.exe within a remote PSSession (this fact generates a double hop issue, but nxc.exe does not seem to use the kerberos session, not worrying about this matter). The weird thing is that it presented the error only when running with --ntds option. However, if I specified the user to dump --ntds --user administrator, there was no problem:

image

andretorresbr avatar Dec 28 '23 02:12 andretorresbr

Hmm okay sounds really weird. I will leave it open for others in the future, but it's really an edge case

NeffIsBack avatar Jan 04 '24 00:01 NeffIsBack

Gonna close this for now, retried and i can't reproduce the issue. Probably related to pyinstaller itself

NeffIsBack avatar Oct 12 '24 14:10 NeffIsBack