Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Windows binary version: issues with --ntds option #156

Open
andretorresbr opened this issue Dec 26, 2023 · 3 comments
Open

Windows binary version: issues with --ntds option #156

andretorresbr opened this issue Dec 26, 2023 · 3 comments
Labels
bug Something isn't working windows Things related specifically to running on Windows

Comments

@andretorresbr
Copy link

Describe the bug
When I use --ntds option in the Windows compiled binary version (single .EXE file), the tools crashes with EOFError.

To Reproduce

  1. Compile Windows single binary, as described in the documentation.
  2. Run NetExec with --ntds option:

.\nxc.exe smb 192.168.144.1 -u syslogagent -H '58a478135a93ac3bf058a5ea0e8fdb71' -d gcbsec.local --ntds

Resulted in:
001

Expected behavior
NTDS.dit extraction
@NeffIsBack
Copy link
Contributor

Works fine on my side. Any specifics on how to reproduce the problem?
image

@andretorresbr
Copy link
Author

andretorresbr commented Dec 28, 2023
edited

The only different thing is that I ran nxc.exe within a remote PSSession (this fact generates a double hop issue, but nxc.exe does not seem to use the kerberos session, not worrying about this matter).
The weird thing is that it presented the error only when running with --ntds option. However, if I specified the user to dump --ntds --user administrator, there was no problem:

image

@NeffIsBack NeffIsBack added bug Something isn't working windows Things related specifically to running on Windows labels Jan 4, 2024
@NeffIsBack
Copy link
Contributor

Hmm okay sounds really weird. I will leave it open for others in the future, but it's really an edge case

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working windows Things related specifically to running on Windows
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@NeffIsBack @andretorresbr