rpc-enumeration-1.md

RPC Enumeration

• enumerate

  rpcclient -U '' -N <ip>

  then try enumdomusers,querydispinfo,etc.

• Only users:

rpcclient -U "" <ip> -N -c "enumdomusers" | grep -oP '\[.*?\]' | grep "0x" -v | tr -d '[]' > userlist.txt

• User info can be changed with setuserinfo. To change password:

setuserinfo christopher.lewis 23 'Admin!23'