Ideally, could use dapper:
- over existing connection w/ proxychains (i.e. used w/ ntlmrelayx -socks output)
- kerberos TGS or TGT (.ccache format, at least)
- nt hash
Implementation theory:
- replace wrapped ldap client (ldap3) w/ impacket ldap implementation
Ideally, could use dapper:
Implementation theory: