NetExec

NetExec or NXC (1.8k ⭐) is a fork of CrackMapExec which is now archived. It can be used to brute force network services passwords.

The wiki further lists everything else you can do.

$ sudo apt install pipx git
$ pipx ensurepath
$ pipx install git+https://github.com/Pennyw0rth/NetExec

Example Commands

NXC SMB Commands

All SMB commands are available under nxc smb.

$ nxc smb IP [...]
$ nxc smb IP [...] -u 'username' # or username.list
$ nxc smb IP [...] -p 'password' # or password.list
$ nxc smb IP [...] --continue-on-success
$ nxc smb IP [...] -H hash
$ nxc smb IP [...] --local-auth # SAM instead of AD
$ nxc smb IP [...] -d .         # Domain
$ nxc smb IP [...] --shares     # List shares + access
$ nxc smb IP [...] -x whoami    # See also: --exec-method smbexec
$ nxc smb IP [...] --pass-pol   # Password Policy
$ nxc smb IP [...] --users      # Domain Users
                                # show the badpasswordcount
$ nxc smb IP [...] --groups     # Domain Group
$ nxc smb IP [...] --loggedon-users
$ nxc smb IP [...] --lsa
$ nxc smb IP [...] --sam