morrubin / azureadjoinedmachineptc Goto Github PK
View Code? Open in Web Editor NEWTool to perform lateral movement between AAD joined devices
License: MIT License
azureadjoinedmachineptc's People
Contributors
Stargazers
Watchers
Forkers
gdraperi dafthack tobey123 leftp treebuilder alteredsecurity samratashok lunarobliq ekmixon zha0 fdlucifer ethicalsecurity-agency conspiracy98 x1076azureadjoinedmachineptc's Issues
Pipe Failure
Issue: When using the script to create a PSEXEC session on a remote machine, execution hangs and raises an exception with the following statement:
PS C:\Python27> ./python.exe "C:\Users\username\Downloads\AzureADJoinedMachinePTC-master\AzureADJoinedMachinePTC-master\main.py" --usercert "named.pfx" --certpass AzureADCert --remoteip 192.168.38.104
StringBinding ncacn_np:192.168.38.104[\pipe\svcctl]
C:\Python27\lib\site-packages\OpenSSL\crypto.py:14: CryptographyDeprecationWarning: Python 2 is no longer supported by the Python core team. Support for it is now deprecated in cryptography, and will be removed in the next release.
from cryptography import utils, x509
Pipe not ready, aborting
Traceback (most recent call last):
File "C:\Users\username\Downloads\AzureADJoinedMachinePTC-master\AzureADJoinedMachinePTC-master\main.py", line 148, in doStuff
fid_main = self.openPipe(s,tid,r'\RemCom_communicaton',0x12019f)
File "C:\Users\username\Downloads\AzureADJoinedMachinePTC-master\AzureADJoinedMachinePTC-master\main.py", line 98, in openPipe
raise Exception('Pipe not ready, aborting')
Exception: Pipe not ready, aborting
Pipe not ready, aborting
Summary: I attempted to trouble shoot by doing the following:
- Ensuring all active IDS/AV systems were disabled in addition to firewalls
- Executing the standalone PSExec process to ensure that pipe connections were occurring. This did not return any issues and allowed for a normal connection + command execution.
- Ran ProcMon and Wireshark on the two systems to track down the point of failure. This did not return anything solid. From what I can tell the RemComSvc is not being created on the remote machine with the message 'Create Request File: <.exe name> being followed by a Create Response, Error: STATUS_OBJECT_NAME_NOT_FOUND. This is preceded by an OpenServiceW Response, Unknown error 0x00000424 for SVCCTL.
I can provide any additional information needed. Thanks in advance.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.