I read this article a while back:
http://fuzzynop.blogspot.com/2012/09/pass-hash-without-metasploit.html
by @FuzzyNop
Great article showing the use of WCE’s “-s” flag to Pass-The-Hash locally and I highly recommend checking it out. Anywho, I was once in a similar scenario, where I had no Metasploit to back me up, but the box I was on did have one interesting thing, ruby and an accessible target for relatively up-to-date ruby gems. Since Metasploit’s powerhouse library ‘rex’ installed just fine I was set.![]()
![]()
![]()
![]()
![]()
↧