NetExec
NetExec or NXC (1.8k β) is a fork of CrackMapExec which is now archived. It can be used to brute force network services passwords.
The wiki further lists everything else you can do.
$ sudo apt install pipx git
$ pipx ensurepath
$ pipx install git+https://github.com/Pennyw0rth/NetExec
Example Commands
NXC SMB Commands
All SMB commands are available under nxc smb
.
$ nxc smb IP [...]
$ nxc smb IP [...] -u 'username' # or username.list
$ nxc smb IP [...] -p 'password' # or password.list
$ nxc smb IP [...] --continue-on-success
$ nxc smb IP [...] -H hash
$ nxc smb IP [...] --local-auth # SAM instead of AD
$ nxc smb IP [...] -d . # Domain
$ nxc smb IP [...] --shares # List shares + access
$ nxc smb IP [...] -x whoami # See also: --exec-method smbexec
$ nxc smb IP [...] --pass-pol # Password Policy
$ nxc smb IP [...] --users # Domain Users
# show the badpasswordcount
$ nxc smb IP [...] --groups # Domain Group
$ nxc smb IP [...] --loggedon-users
$ nxc smb IP [...] --lsa
$ nxc smb IP [...] --sam