aryma/Ares-mythic
1
0
Fork 0
mirror of https://github.com/Aryma-f4/Ares-mythic.git synced 2026-06-12 16:44:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

first commit

Browse Source
This commit is contained in:
Aryma
2026-04-14 12:17:24 +07:00
commit 2f05f67733
799 changed files with 531884 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

42
documentation-payload/apollo/commands/dcsync.md Normal file
View File

@@ -0,0 +1,42 @@
+++
title = "dcsync"
chapter = false
weight = 103
hidden = false
+++
{{% notice info %}}
Artifacts Generated: Process Create, Process Inject, Process Kill
{{% /notice %}}
## Summary
Use mimikatz's `lsadump::dcsync` module to retrieve a user's kerberos keys from a Domain Controller.
### Arguments
#### Domain
Domain to query information from.
#### User (Optional)
Username to sync kerberos keys for. Default is all users.
#### DC (Optional)
Domain controller to sync credential material from.
## Usage
```
dcsync -Domain domain.local [-User username -DC dc.domain.local]
```
Example
```
dcsync -Domain contoso.local -User djhohnstein -DC 10.120.30.204
dcsync -Domain contoso.local
```
## MITRE ATT&CK Mapping
- T1003.006
### Resrouces
- [mimikatz](https://github.com/gentilkiwi/mimikatz)