Windows Manage Add User to the Domain and/or to a Domain Group | Metasploit Exploit Database (DB)

Home > Exploit DB

Windows Manage Add User to the Domain and/or to a Domain Group

This module adds a user to the Domain and/or to a Domain group. It will check if sufficient privileges are present for certain actions and run getprivs for system. If you elevated privs to system,the SeAssignPrimaryTokenPrivilege will not be assigned. You need to migrate to a process that is running as system. If you don't have privs, this script exits.

Search Other Modules

Rank

Normal

Authors

Joshua Abraham < jabra [at] rapid7.com >

Development

Similar Modules

Usage Information

$ msfconsole

                ##                          ###           ##    ##
##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use post/windows/manage/add_user_domain
msf post(add_user_domain) > set SESSION [INTEGER]
msf post(add_user_domain) > set USERNAME [STRING]

Module Options

ADDTODOMAIN	Add user to the Domain (default: true)
ADDTOGROUP	Add user into Domain Group
GETSYSTEM	Attempt to get SYSTEM privilege on the target host. (default: true)
GROUP	Domain Group to add the user into. (default: Domain Admins)
PASSWORD	Password of the user (only required to add a user to the domain) (default: )
SESSION	The session to run this module on.
TOKEN	Username or PID of the Token which will be used. If blank, Domain Admin Tokens will be enumerated. (Username doesnt require a Domain) (default: )
USERNAME	Username to add to the Domain or Domain Group (default: )
VERBOSE	Enable detailed status messages
WORKSPACE	Specify the workspace for this module