域控渗透技巧

1. psloggedon.exe  sysinternals.com

2.netsess.exe 

www.joeware.net/freetools/

利用技术:

https://msdn.microsoft.com/en-us/library/windows/desktop/bb525382(v=vs.85).aspx

3.pvefindaduser.exe

https://github.com/chrisdee/Tools/tree/master/AD/ADFindUsersLoggedOn

https://www.corelan.be/index.php/2009/07/12/free-tool-find-where-ad-users-are-logged-on-into/

4. netview

github.com/mubix/netview

5. nmap

nmap -sU -sS --script smb-enum-sessions.nse 

6. emailheader

X-Orginating-IP

7.veil-framework

https://www.veil-framework.com/