-
httpscreenshot or EyeWitness
snmpwalk -c public -v1 targetIP
snmpcheck -c public -t targetIP
snmpenum -t targetIP
tnscmd10g version -h targetIP
tnscmd10g status -h targetIP
iDRAC MSF or H…
-
## Steps to reproduce
1. Run cme to try and execute a command on a "pwn'd" server
2. Error "Error -5 while decompressing data: incomplete or truncated stream" is received
## Command string used…
-
## Steps to reproduce
Empire 1.5.2 with Brew on OSX High Sierra
```
Brew install empire
- setup db with password *******
Setup Empire listener called CMETest
```
Setup Restfull API
…
-
**Describe the bug**
When executing the lsassy module against a target with the Windows Firewall on, the only execution method that works is atexec [an issue has been opened on the wmiexec comman…
-
Following an issue encountered by @n0bl1nk
But still can't get a reverse-shell met_inject and empire_exec why?
There is a section in my blog post that I mentioned about cme and I want to solve it…
-
**Describe the bug**
Running crackmapexec smb against a file containing IP's line by line results in no output
**To Reproduce**
Steps to reproduce the behavior:
1. Create a file with ips line by…
-
**Describe the bug**
"Traceback (most recent call last):
File "src/gevent/greenlet.py", line 766, in gevent._greenlet.Greenlet.run
File "/usr/lib/python3/dist-packages/cme/protocols/smb.py", li…
-
## Steps to reproduce
1. git submodule update --recursive
fatal: reference is not a tree: acd8db86c6189c8006b9795e15614479665136c2
Unable to checkout 'acd8db86c6189c8006b9795e15614479665136c2' in…
-
## Steps to reproduce
1. Try enumerate shares on host, with Russian words in share's name.
## Command string used
crackmapexec --verbose smb -u user -p user --shares --users --lsa --local-auth …
-
A bit confusing when no credentials are found, we don't know if the module is launched …