7MS #558: How to Build a Vulnerable Pentest Lab – Part 2

Today we continue part 2 of a series we started a few weeks ago all about building a vulnerable pentesting lab. Check out the video above, and here are the main snippets of code and tips to get you going:

Use Youzer to import a bunch of bogus users into your Active Directory:

sudo python ./youzer.py --generate --generate_length 20 --ou "ou=Contractors,dc=brifly,dc=us" --domain brifly.us --users 1000 --output lusers.csv

Make a Kerberoastable user:

New-AdUser -Name "Kerba Roastable" -GivenName "Kerba" -Surname "Roastable" -SamAccountName Kerba -Description "ROASTED!" -Path "OU=Contractors,DC=brifly,DC=us" -AccountPassword (ConvertTo-SecureString "Password1" -AsPlainText -force) -passThru -PasswordNeverExpires $trueenable-adaccount Kerbasetspn -a IIS_SITE/brifly-dc01.brily.us:77777 briflyus\kerba

Tags: diy, pentesting

Written by: Brian Johnson

Share on socials:

podcast

7MS #619: Tales of Pentest Pwnage – Part 56
Continue reading
podcast

7MS #618: Writing Savage Pentest Reports with Sysreptor
Continue reading
podcast

7MS #617: Tales of Pentest Pwnage – Part 55
Continue reading

7MS #558: How to Build a Vulnerable Pentest Lab – Part 2

Recent Posts:

7MS #619: Tales of Pentest Pwnage – Part 56

7MS #618: Writing Savage Pentest Reports with Sysreptor

7MS #617: Tales of Pentest Pwnage – Part 55

About Us

Services

Resources