PSexec alternatives
535 views
Skip to first unread message
rocky s
Oct 26, 2016, 2:42:18 PM10/26/16
to null
What is the alternative of using Psexec in a windows environment. I am doing an intranet pentest and Psexec.exe hangs while executing command on remote machine.
Vincent
Oct 26, 2016, 3:24:55 PM10/26/16
to null-...@googlegroups.com
Hi Rocky,
WMI should do the job!
wmic /node:REMOTECOMPUTERNAME /user:domain\username PROCESS call create
"calc.exe"
You can off course execute PowerShell command using 'powershell.exe
-Command ' the possibilities are endless.
Some references:
https://www.blackhat.com/docs/us-15/materials/us-15-Graeber-Abusing-Windows-Management-Instrumentation-WMI-To-Build-A-Persistent%20Asynchronous-And-Fileless-Backdoor.pdf
https://www.opswat.com/blog/powershell-vs-psexec-remote-command-execution
https://room362.com/post/2014/2014-04-19-executing-code-via-smb-without-psexec/
https://www.scriptjunkie.us/2013/02/authenticated-remote-code-execution-methods-in-windows/
https://www.petri.com/command-line-wmi-part-2
Have fun!
Cheers,
Vincent
> --
> ______________________________________________________________________________
> null - Spreading the right Information
> null Mailing list charter:
> http://null.co.in/section/about/null_list_charter/
> ______________________________________________________________________________
> se7enth edition of nullcon Goa (Mar 9-12, 2016)
> http://nullcon.net
> ---
> You received this message because you are subscribed to the Google
> Groups "null" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to null-co-in+...@googlegroups.com
> <mailto:null-co-in+...@googlegroups.com>.
> Visit this group at https://groups.google.com/group/null-co-in.
> For more options, visit https://groups.google.com/d/optout.
WMI should do the job!
wmic /node:REMOTECOMPUTERNAME /user:domain\username PROCESS call create
"calc.exe"
You can off course execute PowerShell command using 'powershell.exe
-Command ' the possibilities are endless.
Some references:
https://www.blackhat.com/docs/us-15/materials/us-15-Graeber-Abusing-Windows-Management-Instrumentation-WMI-To-Build-A-Persistent%20Asynchronous-And-Fileless-Backdoor.pdf
https://www.opswat.com/blog/powershell-vs-psexec-remote-command-execution
https://room362.com/post/2014/2014-04-19-executing-code-via-smb-without-psexec/
https://www.scriptjunkie.us/2013/02/authenticated-remote-code-execution-methods-in-windows/
https://www.petri.com/command-line-wmi-part-2
Have fun!
Cheers,
Vincent
> ______________________________________________________________________________
> null - Spreading the right Information
> null Mailing list charter:
> http://null.co.in/section/about/null_list_charter/
> ______________________________________________________________________________
> se7enth edition of nullcon Goa (Mar 9-12, 2016)
> http://nullcon.net
> ---
> You received this message because you are subscribed to the Google
> Groups "null" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to null-co-in+...@googlegroups.com
> <mailto:null-co-in+...@googlegroups.com>.
> Visit this group at https://groups.google.com/group/null-co-in.
> For more options, visit https://groups.google.com/d/optout.
Syed Aamer Shah
Oct 28, 2016, 11:35:31 AM10/28/16
to null-...@googlegroups.com
Usually if process is unstable or the process is not running as an elevated user. The system will not respond to the shell.
Migrate to suitable process. In my case local process was more stable than winlogon.
Hope this mitigates your problem
On 27 Oct 2016 00:12, "rocky s" <croma...@gmail.com> wrote:
What is the alternative of using Psexec in a windows environment. I am doing an intranet pentest and Psexec.exe hangs while executing command on remote machine.
--
______________________________________________________________________________
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/
______________________________________________________________________________
se7enth edition of nullcon Goa (Mar 9-12, 2016)
http://nullcon.net
---
You received this message because you are subscribed to the Google Groups "null" group.
To unsubscribe from this group and stop receiving emails from it, send an email to null-co-in+unsubscribe@googlegroups.com.
Reply all
Reply to author
Forward
0 new messages