AnsweredAssumed Answered

Metasploit psexec Pass-the-Hash issue

Question asked by ledneh on Jun 27, 2017
Latest reply on Jul 20, 2017 by Mohd Amri Razlan


I'm trying to execute the pass-the-hash attack on a windows 8.1 32bits target, i'm using the psexec exploit with a reverse_tcp meterpreter payload

I'm getting the following error message

"Exploit failed: ActiveRecord::RecordInvalid Validation failed: Data has already been taken"



On the target host i have the following settings:

1. In HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters, make sure "RequireSecuritySignature" is set to 0 (it was)

2. In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System, add a new DWORD (32-bit) called "LocalAccountTokenFilterPolicy" and set it to 1

3. Disable real-time protection in Windows Defender.



Can someone help