🔱
🔱
🔱
🔱
CrackMapExec ~ CME WIKI
Public Release - v5.4.0
@byt3bl33d3r
@mpgn_x64
Search…
⌃K
Links
Introduction
🔥
News 2022
Changelog
Sponsoring CME
Other Gitbook
Getting Started
Installation
Selecting & Using a Protocol
Target Formats
Using Credentials
🆕
Using Kerberos
Using Modules
🆕
Database General Usage
🆕
BloodHound integration
Report bugs or new features
🆕
Audit Mode
SMB protocol
🆕
Scan for vulnerabilities
Enumeration
Password spraying
Authentication
Command execution
Spidering Shares
Get and Put files
Obtaining Credentials
🆕
Defeating LAPS
🆕
Spooler, WebDav running ?
🆕
Steal Microsoft Teams cookies
LDAP protocol
🆕
Authentication
ASREPRoast
🆕
Find domain SID
Kerberoasting
Unconstrained delegation
Admin Count
Machine Account Quota
Get user descriptions
🆕
Dump gMSA
🆕
Exploit ESC8 (adcs)
🆕
Extract subnet
🆕
Check LDAP signing
🆕
Read DACL right
WINRM protocol
Password spraying
Authentication
Command execution
🆕
Defeating LAPS
MSSQL protocol
Password spraying
Authentication
MSSQL Privesc
MSSQL command
🆕
MSSQL upload/download
Windows command
SSH protocol
Password spraying
Authentication
Command execution
FTP protocol
🆕
Password spraying
RDP Protocol
Password spraying
Screenshot (connected)
🆕
Screenshot without NLA (not connected)
Powered By
GitBook
Authentication
Testing credentials
#~ cme ssh 192.168.1.0/24 -u user -p password
Expected Results:
SSH 127.0.0.1 22 127.0.0.1 [*] SSH-2.0-OpenSSH_8.2p1 Debian-4
SSH 127.0.0.1 22 127.0.0.1 [+] user:password
Specify Ports
#~ cme http 192.168.1.0/24 --port 2222
SSH protocol - Previous
Password spraying
Next - SSH protocol
Command execution
Last modified
2yr ago