Comments (2)
HarmJ0y
commented on August 20, 2024
So it's failing at the Helpers.GetSystem() call (https://github.com/GhostPack/Rubeus/blob/master/Rubeus/lib/Helpers.cs#L82-L134) . For some reason the token duplication method to elevate to SYSTEM is failing. This can occasionally happen in some situations where SeDebugPrivilege is removed from local administrators, but without the system to experiment with it's hard to tell.
Can you try to elevate to SYSTEM manually (i.e. with PSEXEC) and try running the same Rubeus command while running from that context?
from rubeus.
Wolchara000
commented on August 20, 2024
Ok. Done.
From "nt authority\system" it works fine.
Strange. I used clean Win 10 distr. + DC 2012R2 clean with domain as test environment. On both systems it didn't get monitor mode.
`C:>whoami
nt authority\system
C:>Rubeus.exe monitor
(_____ \ | |
) ) | | _____ _ _ ___
| __ /| | | | _ | ___ | | | |/)
| | \ | || | |) ) | || | |
|| ||/|/|_____)_/(/
v1.5.0
[] Action: TGT Monitoring
[] Monitoring every 60 seconds for new TGTs
[*] 15.04.2020 9:39:06 UTC - Found new TGT:
User : [email protected]
StartTime : 15.04.2020 10:44:00
EndTime : 15.04.2020 20:44:00
RenewTill : 22.04.2020 10:44:00
Flags : name_canonicalize, pre_authent, initial, renewable, forwardable
Base64EncodedTicket :
doIFLDCCBSigAwIBBaEDAgEWooIEMDCCBCxhggQoMIIEJKADAgEFoQ8bDVRIVU5URVIuTE9DQUyiIjAgoAMCAQKhGTAXGwZrcmJ0`
from rubeus.
Related Issues (20)
- Precompiled binaries? HOT 1
- Unable to see trusted domain SID in PAC HOT 1
- Invalid Type 17/18 Kerberoast hashes HOT 2
- Problem with s4u altservice outfile
- Unhandled Rubeus Exception: Network Password is not correct HOT 3
- where is exe? HOT 1
- Can't figure out if Rubeus golden attacks work on non-domain-joined PCs HOT 3
- Can a golden attack be done using the same user as the logged in user? HOT 3
- changepw does not work with kadmin/changepw TGS or tgtdeleg TGT HOT 2
- ASREP2Kirbi and System.Runtime.InteropServices.WindowsRuntime causing issues with .net 4.0 HOT 1
- error when trying to generate hash HOT 3
- asktgt: /opsec flag is not respected when using PKINIT with /certificate
- System.Security.Cryptography.CryptographicException:指定的网络密码不正确
- Adding support for KDC proxies to brute
- Question
- Rubeus detected by Defender when using "s4u"
- DLL Search Order Hijacking vulnerability in Rubeus HOT 1
- Unhandled Rubeus exception: The handle is invalid. HOT 3
- Unhandled Rubeus Exception when dealing with Kerberos tickets as SYSTEM user in v2.3.2. HOT 1
- Error: Keyset does not exist
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from rubeus.