LLMNR Poisoning with Responder
Link-Local Multicast Name Resolution - Respond to a service with a username and password hash
Last updated
Link-Local Multicast Name Resolution - Respond to a service with a username and password hash
Last updated
Run responder in the morning and at lunchtime when users log on and log off. The responder is part of Impacket python library.
The responder is listening for events related to protocols LLNMR, NBT-NS, and DNS/MDNS. It also spins up many services to attract targets, for example, HTTP, WPAd, SMB, SQL, LDAP, RDP, and so on.
Wait for responses, grab the NTLMNv2 hashes, and crack them using the hashcat.
Disable LLMNR and NetBIOS-NS, use a strong passwords which are hard to crack >14