Just another blog post about the basics and tools I find useful. If you’re a pentester and you’re not using SMBexec you might be wasting some time and missing out on a well written and very helpful tool.
A few of the key features
- Enumerate systems with domain admin logged in
- Grab hashes
- Dump cleartext credentials
- Pop shells
All done over SMB
Simple example the assumption is you already compromised a host, obtained an administrator hash and you plan to replay the hash against other hosts.
Launching a Meterpeter session over SMB
That should cover some basic usage for extensive video tutorials check out – http://www.youtube.com/user/Brav0Hax/videos?view=0