Nmap Development mailing list archives
Re: Module ideas for smb-psexec.nse?
From: "DePriest, Jason R." <jrdepriest () gmail com>
Date: Tue, 6 Oct 2009 11:21:47 -0500
It would take some parsing, but there is a command that gives a great
deal of information: systeminfo
- - - - - - -
C:\Windows\system32>systeminfo
Host Name: HOSTNAME
OS Name: Microsoft® Windows Vista™ Home Premium
OS Version: 6.0.6002 Service Pack 2 Build 6002
OS Manufacturer: Microsoft Corporation
OS Configuration: Standalone Workstation
OS Build Type: Multiprocessor Free
Registered Owner: SOME DUDE
Registered Organization: Hewlett-Packard
Product ID: XXXXX-OEM-XXXXXXX-XXXXX
Original Install Date: 5/20/2009, 5:04:27 AM
System Boot Time: 10/6/2009, 10:53:06 AM
System Manufacturer: Hewlett-Packard
System Model: HP Pavilion dv6 Notebook PC
System Type: x64-based PC
Processor(s): 1 Processor(s) Installed.
[01]: AMD64 Family 17 Model 3 Stepping 1
AuthenticAMD ~550 Mhz <---- lol, thanks PowerNow!
BIOS Version: Hewlett-Packard F.17, 8/18/2009
Windows Directory: C:\Windows
System Directory: C:\Windows\system32
Boot Device: \Device\HarddiskVolume1
System Locale: en-us;English (United States)
Input Locale: en-us;English (United States)
Time Zone: (GMT-06:00) Central Time (US & Canada)
Total Physical Memory: 4,093 MB
Available Physical Memory: 2,329 MB
Page File: Max Size: 8,396 MB
Page File: Available: 6,382 MB
Page File: In Use: 2,014 MB
Page File Location(s): C:\pagefile.sys
Domain: WORKGROUP
Logon Server: \\HOSTNAME
Hotfix(s): 111 Hotfix(s) Installed.
[01]: {D6705815-3FDA-4D84-9B09-7CC3F012EE49}
[02]: {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
[03]: {C66E4A6C-6E07-4C63-8CCD-2493B5087C73}
[04]: {D2F3957E-AD54-4614-8E48-8E234F0B4053}
[05]: {90486BA0-B80C-40C7-B8A5-29B412338B88}
[06]: {917C5AB0-0E17-49AF-A3AC-0C7D4DE31891}
[07]: {D2F3957E-AD54-4614-8E48-8E234F0B4053}
[08]: {331B99C1-4C7B-4E90-848E-C6F90047E126}
[09]: {5E10E16E-CF65-479B-8E64-E240E621F5D2}
[10]: {AC76BA86-7AD7-0000-2550-7A8C40000913}
[11]: {B9A778E9-A685-4ECF-8830-8B42B58E8198}
[12]: {8B2F38F1-6D3C-4D87-AD2F-954AF6942800}
[13]: {F9852BE7-7A55-413C-BBD0-C9B72790E983}
[14]: KB971513
[15]: KB971512
[16]: KB960362
[17]: 942567
[18]: KB971514
[19]: KB905866
[20]: KB935509
[21]: KB937287
[22]: KB938371
[23]: KB938464
[24]: KB941693
[25]: KB946084
[26]: KB947562
[27]: KB947864
[28]: KB947880
[29]: KB948609
[30]: KB948610
[31]: KB948881
[32]: KB949466
[33]: KB950124
[34]: KB950125
[35]: KB950762
[36]: KB950974
[37]: KB951066
[38]: KB951376
[39]: KB951618
[40]: KB951698
[41]: KB951978
[42]: KB952004
[43]: KB952069
[44]: KB952287
[45]: KB952709
[46]: KB952714
[47]: KB953026
[48]: KB953155
[49]: KB953270
[50]: KB953689
[51]: KB953733
[52]: KB953839
[53]: KB954154
[54]: KB954211
[55]: KB954459
[56]: KB955020
[57]: KB955069
[58]: KB955302
[59]: KB955430
[60]: KB955519
[61]: KB955839
[62]: KB956391
[63]: KB956572
[64]: KB956744
[65]: KB956802
[66]: KB956841
[67]: KB956871
[68]: KB957097
[69]: KB957200
[70]: KB957321
[71]: KB957388
[72]: KB957523
[73]: KB957526
[74]: KB958018
[75]: KB958215
[76]: KB958481
[77]: KB958483
[78]: KB958623
[79]: KB958624
[80]: KB958644
[81]: KB958687
[82]: KB959108
[83]: KB959130
[84]: KB959426
[85]: KB960225
[86]: KB960714
[87]: KB960803
[88]: KB961371
[89]: KB961501
[90]: KB967190
[91]: KB967632
[92]: KB967723
[93]: KB968389
[94]: KB968537
[95]: KB968816
[96]: KB969897
[97]: KB969898
[98]: KB970238
[99]: KB970653
[100]: KB970710
[101]: KB971557
[102]: KB971657
[103]: KB971961
[104]: KB972036
[105]: KB972260
[106]: KB973346
[107]: KB973507
[108]: KB973540
[109]: KB973768
[110]: KB948465
[111]: 940157
Network Card(s): 3 NIC(s) Installed.
[01]: Realtek PCIe GBE Family Controller
Connection Name: Local Area Connection
Status: Media disconnected
[02]: Atheros AR9285 802.11b/g WiFi Adapter
Connection Name: Wireless Network Connection
DHCP Enabled: Yes
DHCP Server: 192.168.1.1
IP address(es)
[01]: 192.168.1.2
[02]: fe80::1870:525c:80da:88a8
[03]: VirtualBox Host-Only Ethernet Adapter
Connection Name: VirtualBox Host-Only Network
DHCP Enabled: No
IP address(es)
[01]: 192.168.56.1
[02]: fe80::2c20:ca0e:54e8:7fd2
- - - - - - -
I edited some of the PII, but you get the idea.
-Jason
On Mon, Oct 5, 2009 at 8:27 PM, Ron <> wrote:
Hey all, After a lot of hard work, my development on smb-psexec.nse is finally reaching its conclusion! But before that happens, I'm trying to include some awesome defaults. I'm not really an expert on the Windows commandline, though, so I'm hoping to get some help or ideas. I'm attaching the script itself, for reference, which has a ton of documentation at the top. I'm also attaching the three modules I've made so far, which should be enough to give you some idea how this is supposed to work (backdoor.lua isn't done yet, obviously, but the others work pretty well). I'm hoping to get some really cool default modules! If somebody gives me ideas for commands whose output would be useful, go ahead and mention it, I can take care of writing the actual commands. Looking forward to seeing your ideas! Ron -- Ron Bowes http://www.skullsecurity.org/
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- Module ideas for smb-psexec.nse? Ron (Oct 05)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? Ron (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? Ron (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)
- Re: Module ideas for smb-psexec.nse? Ron (Oct 06)
- Re: Module ideas for smb-psexec.nse? DePriest, Jason R. (Oct 06)