LiatDalgo/Domain-Mapper-Pro
GitHub: LiatDalgo/Domain-Mapper-Pro
针对 Active Directory 环境的自动化安全测试工具,集成网络扫描、服务枚举和凭据攻击于一体的完整侦察到利用工作流。
Stars: 0 | Forks: 0
网络安全:Domain Mapper (ZX305)
📖 概述
Domain Mapper 是一款专为 Active Directory 环境设计的自动化侦察与安全测试工具。它简化了网络映射、服务枚举和凭据测试的过程,帮助安全专业人员识别域内的配置错误和薄弱点。
⚙️ 分析与利用工作流
该工具在三种不同的模式下运行,每种模式都提供基础、中级和高级三个深度级别:
```
Scanning Mode: Performs multi-level Nmap scanning, including basic connectivity (-Pn), all-65535 port discovery (-p-), and deep UDP analysis.
Enumeration Mode:
Basic: Service identification and discovery of Domain Controller and DHCP server IPs.
Intermediate: Detailed enumeration of key services (SMB, LDAP, RDP) and shared folder discovery using smbclient and enum4linux.
Advanced: In-depth Active Directory extraction of users, groups, password policies, and sensitive account status via crackmapexec and LDAP searches.
Exploitation Mode: * Vulnerability Scanning: NSE-based security auditing to find known vulnerabilities.
Credential Testing: Automated password spraying against discovered domain users to identify weak credentials.
Kerberoasting: Automated TGS ticket extraction and offline cracking using impacket and hashcat.
```
🛠️ 使用的工具
```
Automation: Bash Scripting.
Network & AD Tools: Nmap, CrackMapExec (CME), Impacket, Enum4Linux, Smbclient.
Cracking: Hashcat.
```
📸 系统运行实况
自动化设置与目标配置摘要。
通过 CrackMapExec 成功进行 Active Directory 枚举并显示 'Pwn3d!' 状态。
提取 Kerberos 票据并尝试离线密码破解。
🚀 运行方式
1. 赋予脚本执行权限
chmod +x domain-mapper.sh
2. 运行工具
./domain-mapper.sh
标签:Active Directory, AES-256, Bitdefender, CrackMapExec, CTI, Hashcat, Impacket, Kerberoasting, LDAP枚举, Nmap扫描, Plaso, SMB枚举, ZX305, 凭证破解, 域控制器, 域环境渗透, 密码喷射, 应用安全, 插件系统, 模拟器, 漏洞评估, 票据传递, 网络安全, 自动化侦察, 隐私保护