SMB to HTTP relay version of Get NAA Creds

This module creates an SMB server and then relays the credentials passed to it to SCCM's HTTP server aka Management Point to gain an authenticated connection. Once authenticated it then attempts to retrieve the Network Access Accounts, if configured, from the SCCM server. This requires a computer...

Get NAA Credentials

This module attempts to retrieve the Network Access Accounts, if configured, from the SCCM server. This requires a computer account, which can be added using the samraccount module. Module Options msf use auxiliary/admin/sccm/getnaacredentials msf auxiliarygetnaacredentials show actions...

VulnCheck KEV: CVE-2022-26923

An authenticated user could manipulate attributes on computer accounts they own or manage, and acquire a certificate from Active Directory Certificate Services that would allow for privilege escalation to SYSTEM...

Metasploit Weekly Wrap-Up

SAMR Auxiliary Module A new SAMR auxiliary module has been added that allows users to add, lookup, and delete computer accounts from an AD domain. This should be useful for pentesters on engagements who need to create an AD account to gain an initial foothold into the domain for lateral movement...

Domain Escalation – sAMAccountName Spoofing

Computer accounts have the $ sign appended at the end of their names in contrast with standard user accounts. By default Microsoft operating systems lack… Continue reading - Domain Escalation - sAMAccountName Spoofing...

MCS-provisioned VDA dropped out of the domain after OS upgrade

Following an OS upgrade, MCS-provisioned VDAs leave their domain on reboot. You may also observe computer account password resets at that time...

MCS Unable to add machines to catalog Failed to create a computer account,due to an unknown error

You may be unable to add machines to catalog, receiving error "Failed to create a computer account , due to an unknown error." after 9 machines are added Error details: etting error. Transaction ID: Action Name: MCAddMachineInitialzation An error occurred. Contact Citrix Technical Support, and...

Exploit for CVE-2020-1472

CVE-2020-1472 is a vulnerability in the Windows Netlogon service that allows an attacker to authenticate as the computer account password. The vulnerability is a buffer overflow in the Netlogon service, which can be exploited by sending a specially crafted request to the service. The exploit code...

"No computer account for trust" error when you change domain account password in Windows

"No computer account for trust" error when you change domain account password in Windows This article describes a problem that occurs when you change the domain account password in Windows 8.1, Windows RT 8.1, Windows Server 2012 R2, Windows Server 2012, Windows 7 Service Pack 1 SP1, Windows Serv...