On this page you will find a comprehensive list of all CrackMapExec modules that are currently available in the latest public version (5.1.7dev) of CrackMapExec, one of the most capable tools for pentesting internal networks. CrackMapExec (or CME) contains a number of modules which makes this tool so useful. I’m hoping that this list will help you […]
CrackMapExec Module Library Read More »
This page contains a collection of methods for connecting to a remote Windows system from Linux and examples of how to execute commands on Windows machines remotely from Linux using number of different tools. It covers over 30 different methods for obtaining remote shell, remote command execution or connecting to a remote desktop using variety
Accessing Windows Systems Remotely From Linux Read More »
This article contains a list of PowerShell commands collected from various corners of the Internet which could be helpful during penetration tests or red team exercises. The list includes various post-exploitation one-liners in pure PowerShell without requiring any offensive (= potentially flagged as malicious) 3rd party modules, but also a bunch of handy administrative commands.
PowerShell Commands for Pentesters Read More »
In this post we will be detailing RCE capabilities of the Metasploit Framework (MSF) – the world’s most popular penetration testing framework. This is the 5th part of the blog post series focused on tools capable of authenticated remote command execution (RCE) on Windows machines from Linux (Kali). Introduction As mentioned in the previous parts
RCE on Windows from Linux Part 5: Metasploit Framework Read More »
Have you ever wondered what are the most common vulnerabilities found during penetration tests? What are some of the typical security problems of corporate networks? In this article we will be going through the Top 10 list of the most reported vulnerabilities during internal infrastructure penetration tests. Disclaimer The following information was compiled from more
Top 10 Vulnerabilities: Internal Infrastructure Pentest Read More »
In this part of our RCE series we will be looking closely on the Keimpx tool – one of the first tools designed for pentesting of large Windows networks. This is the 4th part of the blog post series focused on tools for performing remote command execution (RCE) on Windows machines from Linux (Kali). Introduction
RCE on Windows from Linux Part 4: Keimpx Read More »
In this article we will be detailing Pass-The-Hash (PTH) toolkit – a true pioneer in passing the hash attacks. This is the 3rd part of the blog post series focused on tools for performing remote command execution (RCE) on Windows machines from Linux (Kali). Introduction As mentioned in the previous parts (part 1, part 2)
RCE on Windows from Linux Part 3: Pass-The-Hash Toolkit Read More »
Introducing another addition to our portfolio of tools designed for restricted environments – a minimalistic SMB brute force attack and password spraying tool SMBLogin.ps1. This compact SMB login attack tool was written in pure PowerShell and it comes handy in specific attack simulations where we cannot use any traditional or typical pentesting tools. Introduction Although
SMB Brute Force Attack Tool in PowerShell (SMBLogin.ps1) Read More »
In this blog post we will be detailing CrackMapExec (CME) tool – a swiss army knife for pentesting networks. This is the 2nd part of the blog post series focused on tools for performing remote command execution (RCE) on Windows machines from Linux (Kali). Introduction As mentioned in the first part – when it comes
RCE on Windows from Linux Part 2: CrackMapExec Read More »
In this article we will look closely on how to use Impacket to perform remote command execution (RCE) on Windows systems from Linux (Kali). This is the 1st part of the upcoming series focused on performing RCE during penetration tests against Windows machines using a typical hacker toolkit and penetration testing tools. Introduction I’m sure
RCE on Windows from Linux Part 1: Impacket Read More »
