Home Arsenal Cryptography & Cracking NTLM Relay Attack Module
NTLM Relay Attack Module
Versionv2.0
Difficulty Advanced
Updated2025-03-20
CategoryCryptography & Cracking

NTLM Relay Attack Module

$199.99

NTLM Relay Attack Module

Modular implementation of NTLM relay attacks for Active Directory:

  • Multi-protocol listener — Captures NTLM authentication via SMB, HTTP, and WebDAV.
  • Relay targets — Relays to SMB (psexec), LDAP/LDAPS (modify ACLs, add computer), MSSQL (xp_cmdshell), HTTP (Exchange EWS).
  • Signing check — Automatically verifies which hosts have SMB signing disabled (required for SMB relay).
  • Coercion integration — Documentation for combining with PetitPotam, PrinterBug, and DFSCoerce to force authentication.
  • Shadow Credentials — Option to relay to LDAP to add msDS-KeyCredentialLink and obtain a TGT without knowing the password.

Based on: Impacket ntlmrelayx with UX and logging improvements.

Add to Cart Buy Now

Related Tools

Hash Identifier & Auto-Cracker
Cryptography & Cracking

Hash Identifier & Auto-Cracker

$19.99
Custom Hashcat Rule Generator
Cryptography & Cracking

Custom Hashcat Rule Generator

$34.99
Kerberos Attack Toolkit Pieces
Cryptography & Cracking

Kerberos Attack Toolkit Pieces

$349.99
SSL/TLS Vulnerability Scanner
Cryptography & Cracking

SSL/TLS Vulnerability Scanner

$19.99