Index · N

Kali Linux

netexec

Overview

NetExec (nxc) continues CrackMapExec development. Same protocol coverage with updated modules and improved LDAP/WinRM workflows.

Prefer nxc on new engagements; module syntax similar to CME with naming updates.

Primary use cases

AD credential validation at scale
Coerced auth and relay prep enumeration

Key commands

SMB shares enum

nxc smb 10.0.0.0/24 --shares -u user -p pass

Related tools

crackmapexec — Swiss army knife for AD pentesting. SMB, WinRM, LDAP, MSSQL lateral movement.
Impacket — Python protocol implementations. secretsdump, psexec, getTGT, and SMB/Kerberos tooling for Windows networks.
BloodHound — AD attack path analysis. Ingests ACL/ACE and group membership into a graph of privilege escalation routes.

→ official site