You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -3,7 +3,7 @@ PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC
The tools use the LSARPC named pipe with inteface c681d488-d850-11d0-8c52-00c04fd90f7e because it's more prevalent. But it's possible to trigger with the EFSRPC named pipe and interface df1941c5-fe89-4e79-bf10-463657acf44d. It doesn't need credentials against Domain Controller :D
Disabling the EFS service seems not to mitigate the "feature".
Disabling the EFS service seems not to mitigate the "feature"VOUS ETES DES GROSSE MERDES
The Python one require Impacket to be installed, the Windows PoC was done on VS 2019 Community.
If compilation problem, remember to add Rpcrt4.lib in the linker. Compile in x86.
