#Empire 3.4.0 is Officially Out!
Here are just a few of the new features:
- Malleable C2 Listener
- Reflective file loading
- Invoke-WinPEAS
- Invoke-Watson
- Invoke-DomainPasswordSpray
#redteam#infosec#cybersecurity
https://t.co/CYD971pjYj
So yes, Zerologon (CVE-2020-1472) is quite easy to exploit. Unauthenticated user to Domain Admin. This is really scary. Run exploit, DCSync with DC account and empty NT hash: you have Domain Admin and a broken DC.
Awesome find by Tom Tervoort 🙂. Patch patch patch!
@Katidid_it Was the crying due to the fact you were missing the can opener or that it didn't work properly? #TheStruggleIsReal OR the other option out being the pregnant piece lol
@RVAsec This was one of the best conferences we have spoken at yet! We always make sure to spread the word on how RVASec is a top notch con. Thanks for the share #infosec#redteam#Pentesting https://t.co/piVpii6nLx