aryma/Ares-mythic
1
0
Fork 0
mirror of https://github.com/Aryma-f4/Ares-mythic.git synced 2026-06-12 13:14:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
2f05f677337d44adaeac713b411f107c3c637be7
Ares-mythic/documentation-payload/apollo/commands/dcsync.md
Aryma 2f05f67733 first commit
2026-04-14 12:17:24 +07:00

799 B
Raw Blame History

+++ title = "dcsync" chapter = false weight = 103 hidden = false +++

{{% notice info %}} Artifacts Generated: Process Create, Process Inject, Process Kill {{% /notice %}}

Summary

Use mimikatz's lsadump::dcsync module to retrieve a user's kerberos keys from a Domain Controller.

Arguments

Domain

Domain to query information from.

User (Optional)

Username to sync kerberos keys for. Default is all users.

DC (Optional)

Domain controller to sync credential material from.

Usage

dcsync -Domain domain.local [-User username -DC dc.domain.local]

Example

dcsync -Domain contoso.local -User djhohnstein -DC 10.120.30.204
dcsync -Domain contoso.local

MITRE ATT&CK Mapping

  • T1003.006

Resrouces

Reference in New Issue View Git Blame Copy Permalink