On 11/22/2010 09:20 AM, David Porcello wrote: > Is it possible to relay or pass Windows machine account password > hashes in the same manner as SMBrelay or pshtoolkit does for user > account hashes? I'm trying to spoof domain membership using an > extracted machine account password hash. > Dave.
Yes, i believe so, though i've not tested. Try changing the password with netdom.exe (win2k support tools) and sniffing the DC connection to ensure it uses NTLM - if so, then you can likely PTH. jcran -- Jonathan Cran [email protected] 515.890.0070
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
