Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/C-Sto/goWMIExec
Really stupid re-implementation of invoke-wmiexec
https://github.com/C-Sto/goWMIExec
Last synced: 28 days ago
JSON representation
Really stupid re-implementation of invoke-wmiexec
- Host: GitHub
- URL: https://github.com/C-Sto/goWMIExec
- Owner: C-Sto
- Created: 2019-10-14T22:32:11.000Z (about 5 years ago)
- Default Branch: master
- Last Pushed: 2023-02-25T01:41:41.000Z (almost 2 years ago)
- Last Synced: 2024-02-21T04:48:26.104Z (10 months ago)
- Language: Go
- Homepage:
- Size: 859 KB
- Stars: 210
- Watchers: 10
- Forks: 45
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- cybersecurity-golang-security - goWMIExec - Pash the Hash, execute a command on a target machine using WMI by providing an NTLM hash for the specified user. (Windows Specific)
- awesome-go-security - goWMIExec - Pash the Hash, execute a command on a target machine using WMI by providing an NTLM hash for the specified user. (Windows Specific)
README
# goWMIExec
Based on https://github.com/checkymander/Sharp-WMIExec/blob/master/Sharp-InvokeWMIExec/Program.cs
Which is based on https://github.com/Kevin-Robertson/Invoke-TheHash/blob/master/Invoke-SMBExec.ps1
Currently a (functional) work in progress.
Features:
- Can authenticate using hash-only
- Don't need to install impacket
- Native go and byte bashing on TCP sockets, no need to run on Windows
Limitations:
- Lots of static bytes. Future development will turn these into proper structures, and hopefully allow for other DCOM/COM methods to be used
- Long commands won't work. Make them shorter, or create a PR to implement fragments in the Exec method.
Example:
`goWMIExec -target "172.16.50.202:135" -username "vagrant" -hash "e02bc503339d51f71d913c245d35b50b" -command 'C:\Windows\system32\cmd.exe /c echo test > C:\test.txt'`