Is a collection of Python classes for working with network protocols.
git clone https://github.com/SecureAuthCorp/impacket.git
sudo python3 -m pip install .
FindDelegation.py
Queries target domain for delegation relationships.
GetNPUsers.py
Queries target domain for users with 'Do not require Kerberos preauthentication' set and export their TGTs for cracking. (ASREPRoasting)
GetST.py
Given a password, hash or aesKey, it will request a Service Ticket and save it as ccache.
GetUserSPNs.py
Queries target domain for SPNs that are running under a user account (kerberoasting).
ntlmrelayx.py
For every connection received, this module will try to relay that connection to specified target(s) system or the original client.
psexec.py
PSEXEC like functionality example using RemComSvc.
rdp_check.py
Test whether an account is valid on the target host using the RDP protocol.
samrdump.py
This script downloads the list of users for the target system.
secretsdump.py
Performs various techniques to dump secrets from the remote machine without executing any agent there.
smbclient.py
SMB client implementation.
smbexec.py
PSEXEC over SMB.
smbrelayx.py
Relay SMB traffic.
smbserver.py
This script will launch a SMB Server and add a share specified as an argument. You need to be root in order to bind to port 445. For optional authentication, it is possible to specify username and password or the NTLM hash.
wmiexec.py
Executes a semi-interactive shell using Windows Management Instrumentation.