# CrackMapExec

### Overview

CrackMapExec (CME) is a post-exploitation tool that helps automate assessing the security of large Active Directory networks. Built with Python, it provides a versatile toolkit for network administrators to test network defenses by simulating an attacker's actions.

### Key Features

* **Multiprotocol Support**: CrackMapExec supports various protocols such as SMB, SSH, WinRM, and more.
* **Modular Design**: Allows users to extend its capabilities using custom-written modules.
* **Credential Harvesting**: Capable of harvesting credentials across networks when run with appropriate permissions.
* **Lateral Movement**: Facilitates the spread of an attack across the network from a single entry point.

### Installation

To install CrackMapExec on your system, you can use pip:

```bash
pip install crackmapexec
```

Alternatively, you can clone the Git repository and install it manually:

```bash
git clone https://github.com/byt3bl33d3r/CrackMapExec
cd CrackMapExec
python setup.py install
```

### Usage

After installation, you can start using CrackMapExec with the following command syntax:

```bash
crackmapexec [options] [ip/range/CIDR]
```

Replace `[options]` with the specific command-line options you want to use and `[ip/range/CIDR]` with the target IP address, IP range, or CIDR notation.

### Conclusion

CrackMapExec is a powerful tool for systems administrators, red teamers, and cybersecurity professionals, offering a swift way to identify and exploit weaknesses within an AD environment.&#x20;

Always ensure to use of such tools ethically and within the boundaries of the law.

{% embed url="<https://github.com/byt3bl33d3r/CrackMapExec>" %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://oscp-certification.certs-study.com/password-attacks/crackmapexec.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.