{"id":17006019,"url":"https://github.com/aress31/smbaudit","last_synced_at":"2025-03-22T16:30:53.968Z","repository":{"id":74506056,"uuid":"151164433","full_name":"aress31/smbaudit","owner":"aress31","description":"Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.","archived":false,"fork":false,"pushed_at":"2022-10-15T22:44:06.000Z","size":35,"stargazers_count":40,"open_issues_count":0,"forks_count":9,"subscribers_count":5,"default_branch":"master","last_synced_at":"2025-03-18T13:32:18.516Z","etag":null,"topics":["active-directory","bruteforce","password-spray","pentesting","samba","share","smb","windows"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/aress31.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"github":"aress31","patreon":null,"open_collective":null,"ko_fi":null,"tidelift":null,"community_bridge":null,"liberapay":null,"issuehunt":null,"otechie":null,"custom":null}},"created_at":"2018-10-01T21:38:58.000Z","updated_at":"2024-08-12T19:42:07.000Z","dependencies_parsed_at":"2023-03-15T18:30:39.003Z","dependency_job_id":null,"html_url":"https://github.com/aress31/smbaudit","commit_stats":{"total_commits":23,"total_committers":5,"mean_commits":4.6,"dds":0.5217391304347826,"last_synced_commit":"d882c176945974bdb60f44fc775dd7f312f37a2a"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aress31%2Fsmbaudit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aress31%2Fsmbaudit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aress31%2Fsmbaudit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aress31%2Fsmbaudit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/aress31","download_url":"https://codeload.github.com/aress31/smbaudit/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":244986389,"owners_count":20543006,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["active-directory","bruteforce","password-spray","pentesting","samba","share","smb","windows"],"created_at":"2024-10-14T05:04:48.966Z","updated_at":"2025-03-22T16:30:53.958Z","avatar_url":"https://github.com/aress31.png","language":"Shell","funding_links":["https://github.com/sponsors/aress31"],"categories":[],"sub_categories":[],"readme":"# smbaudit\n\n\u003ca href=\"https://www.gnu.org/software/bash/\"\u003e\n    \u003cimg alt=\"language\" src=\"https://img.shields.io/badge/Lang-Bash%204.2+-blue.svg\"\u003e\n\u003c/a\u003e\n\u003ca href=\"https://opensource.org/licenses/Apache-2.0\"\u003e\n    \u003cimg alt=\"license\" src=\"https://img.shields.io/badge/License-Apache%202.0-red.svg\"\u003e\n\u003c/a\u003e\n\u003cimg alt=\"version\" src=\"https://img.shields.io/badge/Version-0.7-green.svg\"\u003e\n\nSMBAudit allows users to perform various SMB-related attacks across multiple Active Directory (AD) domains or hosts. Supported features are listed under the [Features](#Features) section.\n\nSMBAudit is written entirely in Bash (requires Bash version 4.0+) to provide compatibility with a wide range of linux/UNIX distributions. It has the added benefit of only relying on the following dependencies (packages):\n\n- [coreutils](http://www.gnu.org/software/coreutils/coreutils.html)\n- [smbclient](https://www.samba.org/samba/docs/current/man-html/smbclient.1.html)\n\n_Note: These packages are usually pre-installed on UNIX systems._\n\nThere are already multiple tools available with similar features to SMBAudit, for example:\n\n- [CrackMapExec](https://github.com/byt3bl33d3r/CrackMapExec)\n- [SMBMap](https://github.com/ShawnDEvans/smbmap)\n\nSo, is there actually a genuine need for yet another tool focusing on attacking the all-so-famous SMB protocol?\n\nInstalling different packages and/or tools along with their dependencies when performing penetration tests from a Unix box with no access to the Internet can be a very tedious and time-consuming task. This reason alone justifies the development of smbaudit which is supposed to work directly out of the box thanks to its minimal requirement needs. Furthermore, similar available tools do not implement features that I consider essential for my engagements, as an example:\n\n- [CrackMapExec](https://github.com/byt3bl33d3r/CrackMapExec): Requires Python to be installed on the host system. The documentation even recommends running it in a Python virtual environment so as to not 'mess-up' the host system. Furthermore, CrackMapExec relies on numerous third-party dependencies such as Impacket. Without Internet access and the help of the `pip` utility, the installation process of CrackMapExec is not very straight-forward (according to my own personal experience).\n\nFor the aforementioned reasons, I developed SMBAudit as a plug and play tool focused solely on SMB/RPC assessment. It is designed to work out-of-the-box and be compatible with a wide range of Unix-based systems.\n\n## Features\n\nTODO\n\n## Usage\n\n```bash\nbash .\\smbaudit.sh --help\n```\n\n## Sponsor 💖\n\nIf you want to support this project and appreciate the time invested in developping, maintening and extending it; consider donating toward my next cup of coffee. ☕\n\nIt is easy, all you got to do is press the `Sponsor` button at the top of this page or alternatively [click this link](https://github.com/sponsors/aress31). 💸\n\n## Reporting Issues\n\nFound a bug? I would love to squash it! 🐛\n\nPlease report all issues on the GitHub [issues tracker](https://github.com/aress31/smbaudit/issues).\n\n## Contributing\n\nYou would like to contribute to better this project? 🤩\n\nPlease submit all `PRs` on the GitHub [pull requests tracker](https://github.com/aress31/smbaudit/pulls).\n\n## License\n\nSee [LICENSE](LICENSE) for details.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faress31%2Fsmbaudit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Faress31%2Fsmbaudit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faress31%2Fsmbaudit/lists"}