Orc

Orc copied to clipboard

If we can find a domain-joined Linux, i've seen some tricks that might let us extract hashes and secrets etc. I've not had too much of a deep look, noting it for myself, mostly.

Of interest here might be some of the work done by Tim from Portcullis, just gonna leave some links below.

https://labs.portcullis.co.uk/presentations/where-2-worlds-collide-bringing-mimikatz-et-al-to-unix/ https://labs.portcullis.co.uk/blog/an-offensive-introduction-to-active-directory-on-unix/ https://github.com/portcullislabs/linikatz