brav0hax
commented
12 years ago smbexec v1.0.8 has been officially release to the community on sourceforge.
Open brav0hax opened 12 years ago
brav0hax
commented
12 years ago smbexec v1.0.8 has been officially release to the community on sourceforge.
First let me say thank you so much for adding easy-creds to your repos. It is an absolute honor. It also means more work for me because now I need to make sure it executes in screen instead of the xterm windows.
I would like to ask that smbexec, a new script purehate and I have been working on the last week be added to the repos. We want you to be the first repo to have the tool.
Background: The msf psexec module seems to be getting caught more and more, so we wrote this to emulate that "attack" using the smb tools smbclient & winexe.
Execution: Creats obfuscated payload & metasploit rc file based on payload chosen, starts msf multihandler, auths to the victim with password or hash value, uploads payload to victim, executes the payload, then performs an automated cleanup of the system (kills process/deletes file).
Video: Here is a link to a video we posted last week while we were working on the POC. It doesn't really do it justice anymore. http://www.youtube.com/watch?v=o3d0wfGUCWM
smbexec download: We are not sharing this with anyone at this time except a small group of friends and you guys. https://www.box.com/s/1fef4963628f656eecb5
Please let us know what you think. jbrav.hax@gmail.com