Tuesday TOOLSday: coercing SMB auth w/scheduled tasks

Playback speed

×

Share post

Share post at current time

0:00

/

0:00

Transcript

Tuesday TOOLSday: coercing SMB auth w/scheduled tasks

Didn't lead to domain admin, but I'll still take it!

Brian Johnson

Sep 26, 2025

Today I demonstrate a method to leverage local admin access to coerce SMB auth out of that system, on behalf of a higher-privilege user, and “catch” the request with downgraded authentication you can crack using something like Vast.ai.

Enjoy!

Discussion about this video

Ready for more?

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts