guardicore/monkey

In domain networks, query domain to scan machines in domain

Open

#191 opened on Oct 7, 2018

View on GitHub
 (1 comment) (0 reactions) (1 assignee)Python (752 forks)batch import
Complexity: MediumFeatureHelp wantedImpact: Medium

Repository metrics

Stars
 (6,250 stars)
PR merge metrics
 (No merged PRs in 30d)

Description

Expected Behavior

The Monkey should have a feature (with a toggle) to query the domain controller and get a list of domain joined machines to try and attack. Since the Monkey in this case would be running in a domain machine, the credentials stolen by mimikatz will likely be valid for other domain joined machines.

We could get the data using WMI queries we're already running or by running PowerShell commands

Contributor guide