auth-coercion-relay
OfficialForce authentication, capture credentials, gain access.
Software Engineering#authentication#privilege escalation#lateral movement#ad#ntlm relay#kerberos relay
Authorblacklanternsecurity
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps penetration testers capture credentials by forcing remote systems to authenticate to attacker-controlled listeners, enabling privilege escalation and lateral movement.
Core Features & Use Cases
- Authentication Coercion: Utilizes various techniques (PetitPotam, PrinterBug, DFSCoerce, etc.) to trigger authentication callbacks.
- NTLM & Kerberos Relay: Relays captured credentials to services like SMB, LDAP, and AD CS for further exploitation.
- Hash Capture: Captures NetNTLM hashes for offline cracking when relay is not feasible.
- Use Case: A tester can use this Skill to force a Domain Controller to authenticate to their listener, capture the NTLM hash, and then relay it to gain administrative access to the DC.
Quick Start
Use the auth-coercion-relay skill to attempt PetitPotam coercion against the target DC at 10.10.10.5.
Dependency Matrix
Required Modules
impacketresponderpetitpotamdfscoercekrbrelayxmitm6netexec
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: auth-coercion-relay Download link: https://github.com/blacklanternsecurity/red-run/archive/main.zip#auth-coercion-relay Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.