Goddi (Go Dump Domain Info) - Dumps Active Directory Domain Information

Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.

Install
Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc. The goddi package also uses the below package.

go get gopkg.in/ldap.v2

Windows
Tested on Windows 10 and 8.1 (go1.10 windows/amd64).

Linux
Tested on Kali Linux (go1.10 linux/amd64).

• umount, mount, and cifs-utils need to be installed for mapping a share for GetGPP

apt-get update
apt-get install -y mount cifs-utils

• make sure nothing is mounted at /mnt/goddi/
• make sure to run with sudo

Run
When run, will default to using TLS (tls.Client method) over 636. On Linux, make sure to run with sudo.

• username: Target user. Required parameter.
• password: Target user's password. Required parameter.
• domain: Full domain name. Required parameter.
• dc: DC to target. Can be either an IP or full hostname. Required parameter.
• startTLS: Use to StartTLS over 389.
• unsafe: Use for a plaintext connection.

PS C:\Users\Administrator\Desktop> .\godditest-windows-amd64.exe -username=testuser -password="testpass!" -domain="test.local" -dc="dc.test.local" -unsafe
[i] Begin PLAINTEXT LDAP connection to 'dc.test.local'...
[i] PLAINTEXT LDAP connection to 'dc.test.local' successful...
[i] Begin BIND...
[i] BIND with 'testuser' successful...
[i] Begin dump domain info...
[i] Domain Trusts: 1 found
[i] Domain Controllers: 1 found
[i] Users: 12 found
        [*] Warning: keyword 'pass' found!
        [*] Warning: keyword 'fall' found!
[i] Domain Admins: 4 users found
[i] Enterprise Admins: 1 users found
[i] Forest Admins: 0 users found
[i] Locked Users: 0 found
[i] Disabled Users: 2 found
[i] Groups: 45 found
[i] Domain Sites: 1 found
[i] Domain Subnets: 0 found
[i] Domain Computers: 17 found
[i] Deligated Users: 0 found
[i] Users with passwords not set to expire: 6 found
[i] Machine Accounts with passwords older than 45 days: 18 found
[i] Domain OUs: 8 found
[i] Domain Account Policy found
[i] Domain GPOs: 7 found
[i] FSMO Roles: 3 found
[i] SPNs: 122 found
[i] LAPS passwords: 0 found
[i] GPP enumeration starting. This can take a bit...
[i] GPP passwords: 7 found
[i] CSVs written to 'csv' directory in C:\Users\Administrator\Desktop
[i] Execution took 1.4217256s...
[i] Exiting...

Functionality
StartTLS and TLS (tls.Client func) connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the current working directory. Dumps:

• Domain users. Also searches Description for keywords and prints to a seperate csv ex. "Password" was found in the domain user description.
• Users in priveleged user groups (DA, EA, FA).
• Users with passwords not set to expire.
• User accounts that have been locked or disabled.
• Machine accounts with passwords older than 45 days.
• Domain Computers.
• Domain Controllers.
• Sites and Subnets.
• SPNs and includes csv flag if domain admin (a flag to note SPNs that are DAs in the SPN CSV output).
• Trusted domain relationships.
• Domain Groups.
• Domain OUs.
• Domain Account Policy.
• Domain deligation users.
• Domain GPOs.
• Domain FSMO roles.
• LAPS passwords.
• GPP passwords. On Windows, defaults to mapping Q. If used, will try another mapping until success R, S, etc... On Linux, /mnt/goddi is used.

Download Goddi

Continue reading

1. Hacker Tools For Pc
2. Github Hacking Tools
3. Hacking Tools Mac
4. Hacker Tools Online
5. Hack Rom Tools
6. Tools 4 Hack
7. Easy Hack Tools
8. Hack Tools For Pc
9. Hacking Tools Download
10. Hacking Tools Hardware
11. Beginner Hacker Tools
12. Hack Tools For Windows
13. Hack Tools
14. New Hack Tools
15. Top Pentest Tools
16. Hacker Tool Kit
17. Hacker Security Tools
18. Hack Tools For Windows
19. Hacking Apps
20. Pentest Tools Download
21. Kik Hack Tools
22. Physical Pentest Tools
23. Computer Hacker
24. Hacker Search Tools
25. Pentest Tools For Windows
26. Tools 4 Hack
27. Hacking Tools 2019
28. Hack Tools Online
29. Hacker Tools Free
30. Hacker Hardware Tools
31. Hacker Tools Apk Download
32. Pentest Tools Website Vulnerability
33. Black Hat Hacker Tools
34. Nsa Hack Tools Download
35. Hack Tools Download
36. Top Pentest Tools
37. Hack Apps
38. Hack Tool Apk
39. Hacker
40. Physical Pentest Tools
41. Pentest Tools Free
42. Android Hack Tools Github
43. Nsa Hack Tools Download
44. Pentest Tools Nmap
45. Wifi Hacker Tools For Windows
46. Hack Tools For Windows
47. Hack And Tools
48. Blackhat Hacker Tools
49. Hacking Tools Mac
50. Pentest Tools Linux
51. Physical Pentest Tools
52. Pentest Tools Website
53. Hacker Tools 2020
54. Hacking Tools For Mac
55. Hackrf Tools
56. Nsa Hack Tools
57. Best Pentesting Tools 2018
58. Pentest Tools Alternative
59. Install Pentest Tools Ubuntu
60. Hacking Tools Github
61. Pentest Tools Subdomain
62. Hacking Tools For Kali Linux
63. Hack Tools Pc
64. Hacking Tools Github
65. Hak5 Tools
66. Hacking Tools For Windows 7
67. Hak5 Tools
68. Pentest Tools
69. Pentest Automation Tools
70. Pentest Tools Github
71. Hack Tools
72. Hacking Tools For Beginners
73. Hacking Tools Usb