Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ WMIExec - Set Of Python Scripts Which Perform Different Ways Of Command Execution Via WMI Protocol
Team IT Security Nachrichtenportal Logo

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security
RSS Feed Symbol fรผr Team IT Security 800+ IT News als RSS Feed abonnieren



๐Ÿ“š WMIExec - Set Of Python Scripts Which Perform Different Ways Of Command Execution Via WMI Protocol


๐Ÿ’ก Newskategorie: IT Security Nachrichten
๐Ÿ”— Quelle: kitploit.com


Set of python scripts which perform different ways of command execution via WMI protocol.

Blog Post

https://whiteknightlabs.com/2023/06/26/navigating-stealthy-wmi-lateral-movement/


Usage

wmiexec_scheduledjob.py

Is a python script which authenticates to a remote WMI instance and execute commands via Scheduled Tasks.

To run the script:

python3 wmiexec_scheduledjob.py -i <ip_address> -u <username> -p <password> -c <command>

wmiexec_win32process.py

Is a python script which authenticates to a remote WMI instance and execute commands via Win32_Process.

To run the script:

python3 wmiexec_win32process.py -i <ip_address> -u <username> -p <password> -c <command>

webserver_ssl.py

Is a python script which creates a HTTPS server (with a self-signed SSL certificate). Used to exfiltrate the command's output.

Before running the HTTP server, make sure to generate the certificates by running:

RSA -out server.key openssl req -new -key server.key -out server.csr openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt" dir="auto">
openssl genpkey -algorithm RSA -out server.key
openssl req -new -key server.key -out server.csr
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt

If everything is done correctly, the server will be running without any error:

python3 webserver_ssl.py

Credits

https://github.com/XiaoliChan/wmiexec-RegOut
https://learn.microsoft.com/en-us/windows/win32/cimwin32prov/win32-scheduledjob

Author

Kleiton Kurti (@kleiton0x00)



...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ LabPlot, KDE's data analysis and visualization app, let's you easily create meaningful graphs when you have several different sets of values, with different ranges and different orders of magnitude. Here's a video tutorial on how to do it.


๐Ÿ“ˆ 33.03 Punkte

๐Ÿ“Œ Which is more secure: different email (on custom domain) for every account or different (but patterned) password for every account?


๐Ÿ“ˆ 30.89 Punkte

๐Ÿ“Œ Galaxy S24 Ultra and iPhone 15s use different Titaniums; how are they different, and which is better?


๐Ÿ“ˆ 30.89 Punkte

๐Ÿ“Œ CIMplant - C# Port Of WMImplant Which Uses Either CIM Or WMI To Query Remote Systems


๐Ÿ“ˆ 30.23 Punkte

๐Ÿ“Œ Different Types Of Linux: which is which and what do they do?


๐Ÿ“ˆ 28.75 Punkte

๐Ÿ“Œ Authenticated WMI Exec Via Powershell


๐Ÿ“ˆ 28.38 Punkte

๐Ÿ“Œ Authenticated WMI Exec Via Powershell


๐Ÿ“ˆ 28.38 Punkte

๐Ÿ“Œ Perform multiple tasks concurrently in Python: "Asynchronous Programming in Python with Asyncio"


๐Ÿ“ˆ 27.78 Punkte

๐Ÿ“Œ laZzzy - Shellcode Loader, Developed Using Different Open-Source Libraries, That Demonstrates Different Execution Techniques


๐Ÿ“ˆ 27.03 Punkte

๐Ÿ“Œ Qualcomm Snapdragon Mobile SD 835/SD 845/SD 850 WMI Command memory corruption


๐Ÿ“ˆ 26.95 Punkte

๐Ÿ“Œ Qualcomm Snapdragon Auto up to SXR1130 WMI Command length memory corruption


๐Ÿ“ˆ 26.95 Punkte

๐Ÿ“Œ Qualcomm Snapdragon Auto Host WMI Command denial of service [CVE-2020-11278]


๐Ÿ“ˆ 26.95 Punkte

๐Ÿ“Œ discover: A Custom Bash Scripts Used To Perform Pentesting Tasks With Metasploit


๐Ÿ“ˆ 26.34 Punkte

๐Ÿ“Œ Mehrere Probleme in ardana-neutron, ardana-swift, cassandra, crowbar-openstack, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, ruby


๐Ÿ“ˆ 25.99 Punkte

๐Ÿ“Œ Researchers engineer a material that can perform different tasks depending on temperature


๐Ÿ“ˆ 25.8 Punkte

๐Ÿ“Œ Learn a few different ways to get a progress bar for your dd command


๐Ÿ“ˆ 24.69 Punkte

๐Ÿ“Œ RCE Bug in Microsoft RDP Protocol Let Hackers Perform WannaCry Level Attack on 3 Million Vulnerable Endpoints


๐Ÿ“ˆ 24.36 Punkte

๐Ÿ“Œ Jason, an attacker, targeted an organization to perform an attack on its Internet-facing web server with the intention of gaining access to backend servers, which are protected by a firewall. In this process, he used a URL https://xyz.com/feed.php?ur


๐Ÿ“ˆ 23.66 Punkte

๐Ÿ“Œ Run Python Scripts in Linux Command Line


๐Ÿ“ˆ 23.64 Punkte

๐Ÿ“Œ Executing Python scripts in Linux command line


๐Ÿ“ˆ 23.64 Punkte

๐Ÿ“Œ Medium CVE-2017-17612: Hot scripts clone project Hot scripts clone


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 privilege escalation


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ Medium CVE-2013-7378: Hubot scripts project Hubot scripts


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 title/description cross site scripting


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ PHP Scripts Mall Hot Scripts Clone:Script Classified 3.1 Add New name Stored cross site scripting


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ Bashล : JavaScript Evaluator for Shell Scripts. It lets you to write complex shell tasks using plain JavaScript. It mixes well with shell commands and scripts; so you can choose the best tool for the job.


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ "Ultimate YouTube-DL Scripts Collection" (previously "YouTube-DL Archivist Scripts") now on Version 3.0.0!


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ Power Automate - Scripts with App Scripts


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 title/description Cross Site Scripting


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ Zap-Scripts โ€“ Zed Attack Proxy Scripts For Finding CVEs And Secrets


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ PHP Scripts Mall Hot Scripts Clone:Script Classified 3.1 Add New name Stored Cross Site Scripting


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ Classic scripts vs module scripts in JavaScript


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ Zap-Scripts - Zed Attack Proxy Scripts For Finding CVEs And Secrets


๐Ÿ“ˆ 23.1 Punkte

๐Ÿ“Œ Alternative Ways To Perform Basic Tasks, (Thu, May 6th)


๐Ÿ“ˆ 22.88 Punkte

๐Ÿ“Œ Ookla Packet Loss Test: Best Ways to Perform it Properly


๐Ÿ“ˆ 22.88 Punkte











matomo

Kontakt

24/7 [email protected]

Weitere Informationen

Google Android Playstore Download Button fรผr Team IT Security
๐Ÿ”— Impressum
๐Ÿ”— Datenschutz
Paypal Spenden fรผr Projekt

Social Media

๐Ÿ”— Facebook
๐Ÿ”— Reddit
๐Ÿ”— Team IT Security als Elektron App
๐Ÿ”— © 2015-2023 Team IT Security Nachrichtenportal รผber Cybersecurity
๐Ÿ”— CMS "myDraft" a PHP Portal Software