live smb dcsync command

What it does

Performs DCSYNC attack, extracts all hashes and kerberos keys from the domain controller using DRSUAPI

Remarks

None

Requirements

User context which has getchanges/getchangesall rights.

Subcommands

None

Switches

host: IP or hostname of the domain controller
--username : Optional, the username of the user to get the secrets of. If empty then all users will be targeted
-o or --outfile : Writes the secrets to the specified file

Examples

pypykatz live smb dcsync win2019ad.test.corp: Performs DCSYNC

Home

Wiki

Live commands

lsa
kerberos
- currentluid
- roast
- tgt
- apreq
- purge
- sessions
- dump
- triage
smbapi
- share
- session
- localgroup
users
token
process
dpapi
- keys
- vpol
- vcred
- cred
- blob
- blobfile
- securestring
- securestringfile
- wifi
smb
- client
- shareenum
- lsassdump
- regdump
- dcsync
- secretsdump
ldap
- client

Platform-independent commands

lsa
- minidump
registry
crypto
- nt
- lm
- dcc
- dcc2
- gppass
kerberos
- tgt
- tgs
- brute
- asreproast
- spnroast (aka. kerberoast)
- s4u
- keytab
- kirbi
- ccache
  - list
  - del
  - roast
  - loadkirbi
  - exportkirbi
dpapi
- prekey
- minidump
- masterkey
- blob
- securestring
- credential
- vpol
- vcred
smb
- client
- lsassfile
- lsassdump
- regfile
- regdump
- dcsync
- secretsdump
- shareenum
ldap
- client

ConnectionURL

ConnectionURL

live smb dcsync command

What it does

Remarks

Requirements

Subcommands

Switches

Examples

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!