Nmap Development mailing list archives
Re: Module ideas for smb-psexec.nse?
From: "DePriest, Jason R." <jrdepriest () gmail com>
Date: Tue, 6 Oct 2009 11:21:47 -0500
It would take some parsing, but there is a command that gives a great deal of information: systeminfo - - - - - - - C:\Windows\system32>systeminfo Host Name: HOSTNAME OS Name: Microsoft® Windows Vista™ Home Premium OS Version: 6.0.6002 Service Pack 2 Build 6002 OS Manufacturer: Microsoft Corporation OS Configuration: Standalone Workstation OS Build Type: Multiprocessor Free Registered Owner: SOME DUDE Registered Organization: Hewlett-Packard Product ID: XXXXX-OEM-XXXXXXX-XXXXX Original Install Date: 5/20/2009, 5:04:27 AM System Boot Time: 10/6/2009, 10:53:06 AM System Manufacturer: Hewlett-Packard System Model: HP Pavilion dv6 Notebook PC System Type: x64-based PC Processor(s): 1 Processor(s) Installed. [01]: AMD64 Family 17 Model 3 Stepping 1 AuthenticAMD ~550 Mhz <---- lol, thanks PowerNow! BIOS Version: Hewlett-Packard F.17, 8/18/2009 Windows Directory: C:\Windows System Directory: C:\Windows\system32 Boot Device: \Device\HarddiskVolume1 System Locale: en-us;English (United States) Input Locale: en-us;English (United States) Time Zone: (GMT-06:00) Central Time (US & Canada) Total Physical Memory: 4,093 MB Available Physical Memory: 2,329 MB Page File: Max Size: 8,396 MB Page File: Available: 6,382 MB Page File: In Use: 2,014 MB Page File Location(s): C:\pagefile.sys Domain: WORKGROUP Logon Server: \\HOSTNAME Hotfix(s): 111 Hotfix(s) Installed. [01]: {D6705815-3FDA-4D84-9B09-7CC3F012EE49} [02]: {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C} [03]: {C66E4A6C-6E07-4C63-8CCD-2493B5087C73} [04]: {D2F3957E-AD54-4614-8E48-8E234F0B4053} [05]: {90486BA0-B80C-40C7-B8A5-29B412338B88} [06]: {917C5AB0-0E17-49AF-A3AC-0C7D4DE31891} [07]: {D2F3957E-AD54-4614-8E48-8E234F0B4053} [08]: {331B99C1-4C7B-4E90-848E-C6F90047E126} [09]: {5E10E16E-CF65-479B-8E64-E240E621F5D2} [10]: {AC76BA86-7AD7-0000-2550-7A8C40000913} [11]: {B9A778E9-A685-4ECF-8830-8B42B58E8198} [12]: {8B2F38F1-6D3C-4D87-AD2F-954AF6942800} [13]: {F9852BE7-7A55-413C-BBD0-C9B72790E983} [14]: KB971513 [15]: KB971512 [16]: KB960362 [17]: 942567 [18]: KB971514 [19]: KB905866 [20]: KB935509 [21]: KB937287 [22]: KB938371 [23]: KB938464 [24]: KB941693 [25]: KB946084 [26]: KB947562 [27]: KB947864 [28]: KB947880 [29]: KB948609 [30]: KB948610 [31]: KB948881 [32]: KB949466 [33]: KB950124 [34]: KB950125 [35]: KB950762 [36]: KB950974 [37]: KB951066 [38]: KB951376 [39]: KB951618 [40]: KB951698 [41]: KB951978 [42]: KB952004 [43]: KB952069 [44]: KB952287 [45]: KB952709 [46]: KB952714 [47]: KB953026 [48]: KB953155 [49]: KB953270 [50]: KB953689 [51]: KB953733 [52]: KB953839 [53]: KB954154 [54]: KB954211 [55]: KB954459 [56]: KB955020 [57]: KB955069 [58]: KB955302 [59]: KB955430 [60]: KB955519 [61]: KB955839 [62]: KB956391 [63]: KB956572 [64]: KB956744 [65]: KB956802 [66]: KB956841 [67]: KB956871 [68]: KB957097 [69]: KB957200 [70]: KB957321 [71]: KB957388 [72]: KB957523 [73]: KB957526 [74]: KB958018 [75]: KB958215 [76]: KB958481 [77]: KB958483 [78]: KB958623 [79]: KB958624 [80]: KB958644 [81]: KB958687 [82]: KB959108 [83]: KB959130 [84]: KB959426 [85]: KB960225 [86]: KB960714 [87]: KB960803 [88]: KB961371 [89]: KB961501 [90]: KB967190 [91]: KB967632 [92]: KB967723 [93]: KB968389 [94]: KB968537 [95]: KB968816 [96]: KB969897 [97]: KB969898 [98]: KB970238 [99]: KB970653 [100]: KB970710 [101]: KB971557 [102]: KB971657 [103]: KB971961 [104]: KB972036 [105]: KB972260 [106]: KB973346 [107]: KB973507 [108]: KB973540 [109]: KB973768 [110]: KB948465 [111]: 940157 Network Card(s): 3 NIC(s) Installed. [01]: Realtek PCIe GBE Family Controller Connection Name: Local Area Connection Status: Media disconnected [02]: Atheros AR9285 802.11b/g WiFi Adapter Connection Name: Wireless Network Connection DHCP Enabled: Yes DHCP Server: 192.168.1.1 IP address(es) [01]: 192.168.1.2 [02]: fe80::1870:525c:80da:88a8 [03]: VirtualBox Host-Only Ethernet Adapter Connection Name: VirtualBox Host-Only Network DHCP Enabled: No IP address(es) [01]: 192.168.56.1 [02]: fe80::2c20:ca0e:54e8:7fd2 - - - - - - - I edited some of the PII, but you get the idea. -Jason On Mon, Oct 5, 2009 at 8:27 PM, Ron <> wrote:
Hey all, After a lot of hard work, my development on smb-psexec.nse is finally reaching its conclusion! But before that happens, I'm trying to include some awesome defaults. I'm not really an expert on the Windows commandline, though, so I'm hoping to get some help or ideas. I'm attaching the script itself, for reference, which has a ton of documentation at the top. I'm also attaching the three modules I've made so far, which should be enough to give you some idea how this is supposed to work (backdoor.lua isn't done yet, obviously, but the others work pretty well). I'm hoping to get some really cool default modules! If somebody gives me ideas for commands whose output would be useful, go ahead and mention it, I can take care of writing the actual commands. Looking forward to seeing your ideas! Ron -- Ron Bowes http://www.skullsecurity.org/
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- Module ideas for smb-psexec.nse? Ron (Oct 05)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? Ron (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? Ron (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? Ron (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)