Linux command
addcomputer.py 命令
文本
复制后可按需替换文件名、目录或参数。
常用示例
Add
addcomputer.py [domain]/[user]:[password] -computer-name [hostname]
Example
addcomputer.py [domain]/[user]:[password] -dc-ip [192.168.1.1] -computer-name [hostname]
Example
addcomputer.py [domain]/[user] -hashes :[NTHASH] -computer-name [hostname]
Example
addcomputer.py [domain]/[user]:[password] -computer-name [hostname] -computer-pass [password] -method LDAPS
说明
addcomputer.py (also known as add-computer.py) is an Impacket script for creating machine accounts in Active Directory. It leverages the default AD permission that allows any authenticated user to add computer accounts to the domain. This capability is useful in penetration testing for setting up resource-based constrained delegation attacks or gaining additional footholds in the domain.
参数
- -dc-ip _ip_
- IP address of the domain controller
- -computer-name _name_
- Name of the computer account to create
- -computer-pass _password_
- Password for the computer account
- -method _SAMR|LDAPS_
- Protocol to use for adding the computer (default: SAMR)
- -hashes _LMHASH:NTHASH_
- Authenticate using NT hash
- -k, --kerberos
- Use Kerberos authentication
- -no-pass
- Don't prompt for password
- -dc-host _hostname_
- Hostname of the domain controller
FAQ
What is the addcomputer.py command used for?
addcomputer.py (also known as add-computer.py) is an Impacket script for creating machine accounts in Active Directory. It leverages the default AD permission that allows any authenticated user to add computer accounts to the domain. This capability is useful in penetration testing for setting up resource-based constrained delegation attacks or gaining additional footholds in the domain.
How do I run a basic addcomputer.py example?
Run `addcomputer.py [domain]/[user]:[password] -computer-name [hostname]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does -dc-ip _ip_ do in addcomputer.py?
IP address of the domain controller