https://blog.qife122.com/tags/smb%E6%B6%88%E6%81%AF%E7%AD%BE%E5%90%8D/ Recent content in SMB消息签名 on 办公AI智能小助手 Hugo zh-cn qife Sat, 13 Sep 2025 01:52:19 +0800 https://blog.qife122.com/p/%E5%88%A9%E7%94%A8llmnr%E5%92%8Csmb%E6%B6%88%E6%81%AF%E7%AD%BE%E5%90%8D%E6%BC%8F%E6%B4%9E%E4%BB%8E%E9%9B%B6%E5%88%B0%E5%9F%9F%E7%AE%A1%E7%90%86%E5%91%98%E6%9D%83%E9%99%90%E7%9A%84%E5%AE%9E%E6%88%98%E6%8C%87%E5%8D%97/ Sat, 13 Sep 2025 01:52:19 +0800 https://blog.qife122.com/p/%E5%88%A9%E7%94%A8llmnr%E5%92%8Csmb%E6%B6%88%E6%81%AF%E7%AD%BE%E5%90%8D%E6%BC%8F%E6%B4%9E%E4%BB%8E%E9%9B%B6%E5%88%B0%E5%9F%9F%E7%AE%A1%E7%90%86%E5%91%98%E6%9D%83%E9%99%90%E7%9A%84%E5%AE%9E%E6%88%98%E6%8C%87%E5%8D%97/ <h1 id="smb中继竞赛如何利用llmnr和smb消息签名获取乐趣与收益">SMB中继竞赛——如何利用LLMNR和SMB消息签名获取乐趣与收益</h1> <p>Jordan Drysdale//</p> <p>本文基本上是对Marcello工作的轻微更新和借鉴：https://byt3bl33d3r.github.io/practical-guide-to-ntlm-relaying-in-2017-aka-getting-a-foothold-in-under-5-minutes.html</p> https://blog.qife122.com/p/%E5%88%A9%E7%94%A8llmnr%E5%92%8Csmb%E6%B6%88%E6%81%AF%E7%AD%BE%E5%90%8D%E6%BC%8F%E6%B4%9E%E4%BB%8E%E9%9B%B6%E5%88%B0%E5%9F%9F%E7%AE%A1%E7%90%86%E5%91%98%E6%9D%83%E9%99%90%E7%9A%84%E5%AE%9E%E6%88%98%E6%8C%87%E5%8D%97/ Fri, 12 Sep 2025 18:25:30 +0800 https://blog.qife122.com/p/%E5%88%A9%E7%94%A8llmnr%E5%92%8Csmb%E6%B6%88%E6%81%AF%E7%AD%BE%E5%90%8D%E6%BC%8F%E6%B4%9E%E4%BB%8E%E9%9B%B6%E5%88%B0%E5%9F%9F%E7%AE%A1%E7%90%86%E5%91%98%E6%9D%83%E9%99%90%E7%9A%84%E5%AE%9E%E6%88%98%E6%8C%87%E5%8D%97/ <h1 id="smb中继竞赛如何利用llmnr和smb消息签名获取乐趣与收益">SMB中继竞赛——如何利用LLMNR和SMB消息签名获取乐趣与收益</h1> <p>Jordan Drysdale//</p> <p>本文基本是对Marcello工作的轻微更新和借鉴：https://byt3bl33d3r.github.io/practical-guide-to-ntlm-relaying-in-2017-aka-getting-a-foothold-in-under-5-minutes.html<br> /tl;dr – 通过暴露的Outlook Web App（OWA）和单因素VPN，在环境中从零权限提升至域管理员（DA）。技术概述摘自下文，攻击总结在本文中出现两次：</p>