Techniques:
Brute force T1110 WMI T1047 Domain group enum 1069.002 Software S0488
Possible Blurb:
CrackMapExec was designed to be a pentester’s swiss army knife in that the toolkit contains a number of post-exploitation tools. Those tools include server message block (SMB) modules, SQL, mimikatz, and many other utilities.
Overview:
CrackMapExec contains many post-exploitation modules for use investigating the various components of an Active Directory environment. The original GitHub repository has changed from github/byt3bl33d3r’s to github/mpgn’s.
https://github.com/mpgn/CrackMapExec
There are generally available binaries on the old repo at the link below and the tool can also be installed through apt on Debian-based OS.
https://github.com/Porchetta-Industries/CrackMapExec/releases