Saverr/pwncat
1
0
Fork 0
mirror of https://github.com/calebstewart/pwncat.git synced 2024-11-24 01:25:37 +01:00
Code Projects Releases Wiki Activity

Added Windows services enumeration module

Browse Source
This commit is contained in:
John Hammond 2021-06-05 01:46:20 -04:00
parent 9c522b6997
commit 37fdde3f69
2 changed files with 140 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

57
pwncat/modules/windows/enumerate/system/clipboard.py Normal file
View File

@ -0,0 +1,57 @@
#!/usr/bin/env python3
from typing import Any, Dict, List
import pwncat
import rich.markup
from pwncat import util
from pwncat.db import Fact
from pwncat.modules import ModuleFailed
from pwncat.modules.enumerate import EnumerateModule, Schedule
from pwncat.platform import PlatformError
from pwncat.platform.windows import PowershellError, Windows
class ClipboardData(Fact):
def __init__(self, source, contents:str):
super().__init__(source=source, types=["system.clipboard"])
self.contents: bool = contents
def title(self, session):
return f"Current clipboard contents:"
def description(self, session):
return f"[yellow]{rich.markup.escape(self.contents)}[/yellow]"
class Module(EnumerateModule):
"""Enumerate the current Windows Defender settings on the target"""
PROVIDES = ["system.clipboard"]
PLATFORM = [Windows]
def enumerate(self, session):
try:
result = session.platform.powershell(
f"Get-Clipboard"
)
if not result:
raise ModuleFailed(
f"failed to retrieve clipboard contents"
)
if isinstance(result[0],list):
contents = "\n".join(result[0])
else:
contents = result[0]
except PowershellError as exc:
raise ModuleFailed(
f"failed to retrieve clipboard contents"
) from exc
yield ClipboardData(self.name, contents)

83
pwncat/modules/windows/enumerate/system/services.py Normal file
View File

@ -0,0 +1,83 @@
#!/usr/bin/env python3
from typing import Any, Dict, List
import pwncat
import rich.markup
from pwncat import util
from pwncat.db import Fact
from pwncat.modules import ModuleFailed
from pwncat.modules.enumerate import EnumerateModule, Schedule
from pwncat.platform import PlatformError
from pwncat.platform.windows import PowershellError, Windows
class ServicesData(Fact):
def __init__(
self,
source,
name: str,
pid: int,
start_mode: str,
status: str,
):
super().__init__(source=source, types=["system.services"])
self.name: str = name
self.pid: int = pid
self.start_mode: str = start_mode
self.status: str = status
def title(self, session):
out = f"[cyan]{rich.markup.escape(self.name)}[/cyan] (PID [blue]{self.pid}[/blue]) currently "
if self.status == "Running":
out += f"[bold green]{self.status}[/bold green] "
else:
out += f"[red]{self.status}[/red] "
if self.start_mode == "Auto":
out += f"([bold yellow]{self.start_mode}[/bold yellow] start)"
else:
out += f"([magenta]{self.start_mode}[/magenta] start)"
return out
class Module(EnumerateModule):
"""Enumerate the current Windows Defender settings on the target"""
PROVIDES = ["system.services"]
PLATFORM = [Windows]
def enumerate(self, session):
proc = session.platform.Popen(
["wmic.exe", "service", "get", "Caption,ProcessId,State,StartMode", "/format:csv"],
stderr=pwncat.subprocess.DEVNULL,
stdout=pwncat.subprocess.PIPE,
text=True,
)
# Process the standard output from the command
with proc.stdout as stream:
for line in stream:
line = line.strip()
if (
not line
or 'Node,Caption,ProcessId,StartMode,State'
in line
):
continue
_, name, pid, start_mode, status = (x.strip('"') for x in line.split(','))
pid = int(pid)
yield ServicesData(
self.name, name, pid, start_mode, status
)
proc.wait()