Merge branch 'master' of https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite
This commit is contained in:
commit
599fc51663
@ -1365,7 +1365,7 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
|
|||||||
|
|
||||||
##-- 32SI) Cached AD Hashes
|
##-- 32SI) Cached AD Hashes
|
||||||
adhashes=`ls "/var/lib/samba/private/secrets.tdb" "/var/lib/samba/passdb.tdb" "/var/opt/quest/vas/authcache/vas_auth.vdb" "/var/lib/sss/db/cache_*" 2>/dev/null`
|
adhashes=`ls "/var/lib/samba/private/secrets.tdb" "/var/lib/samba/passdb.tdb" "/var/opt/quest/vas/authcache/vas_auth.vdb" "/var/lib/sss/db/cache_*" 2>/dev/null`
|
||||||
printf $Y"[+] "$GREEN"Looking for AD cached hahses\n"$NC
|
printf $Y"[+] "$GREEN"Looking for AD cached hashes\n"$NC
|
||||||
if [ "$adhashes" ]; then
|
if [ "$adhashes" ]; then
|
||||||
ls -l "/var/lib/samba/private/secrets.tdb" "/var/lib/samba/passdb.tdb" "/var/opt/quest/vas/authcache/vas_auth.vdb" "/var/lib/sss/db/cache_*" 2>/dev/null
|
ls -l "/var/lib/samba/private/secrets.tdb" "/var/lib/samba/passdb.tdb" "/var/opt/quest/vas/authcache/vas_auth.vdb" "/var/lib/sss/db/cache_*" 2>/dev/null
|
||||||
else echo_not_found "cached hashes"
|
else echo_not_found "cached hashes"
|
||||||
|
@ -20,7 +20,7 @@ namespace winPEAS
|
|||||||
// Static blacklists
|
// Static blacklists
|
||||||
static string strTrue = "True";
|
static string strTrue = "True";
|
||||||
static string strFalse = "False";
|
static string strFalse = "False";
|
||||||
static string badgroups = "docker|Remote |Admins|DNSAdmin|Azure Admins";//The space in Remote is important to not mix with SeShutdownRemotePrivilege
|
static string badgroups = "docker|Remote |DNSAdmins|Azure Admins|Admins";//The space in Remote is important to not mix with SeShutdownRemotePrivilege
|
||||||
static string badpasswd = "NotChange|NotExpi";
|
static string badpasswd = "NotChange|NotExpi";
|
||||||
static string badPrivileges = "SeImpersonatePrivilege|SeAssignPrimaryPrivilege|SeTcbPrivilege|SeBackupPrivilege|SeRestorePrivilege|SeCreateTokenPrivilege|SeLoadDriverPrivilege|SeTakeOwnershipPrivilege|SeDebugPrivilege";
|
static string badPrivileges = "SeImpersonatePrivilege|SeAssignPrimaryPrivilege|SeTcbPrivilege|SeBackupPrivilege|SeRestorePrivilege|SeCreateTokenPrivilege|SeLoadDriverPrivilege|SeTakeOwnershipPrivilege|SeDebugPrivilege";
|
||||||
static string goodSoft = "Windows Phone Kits|Windows Kits|Windows Defender|Windows Mail|Windows Media Player|Windows Multimedia Platform|windows nt|Windows Photo Viewer|Windows Portable Devices|Windows Security|Windows Sidebar|WindowsApps|WindowsPowerShell| Windows$|Microsoft|WOW6432Node|internet explorer|Internet Explorer|Common Files";
|
static string goodSoft = "Windows Phone Kits|Windows Kits|Windows Defender|Windows Mail|Windows Media Player|Windows Multimedia Platform|windows nt|Windows Photo Viewer|Windows Portable Devices|Windows Security|Windows Sidebar|WindowsApps|WindowsPowerShell| Windows$|Microsoft|WOW6432Node|internet explorer|Internet Explorer|Common Files";
|
||||||
@ -495,7 +495,7 @@ namespace winPEAS
|
|||||||
{
|
{
|
||||||
{ paint_activeUsers_no_Administrator, Beaprint.ansi_users_active },
|
{ paint_activeUsers_no_Administrator, Beaprint.ansi_users_active },
|
||||||
{ currentUserName + "|"+ currentUserDomainName, Beaprint.ansi_current_user },
|
{ currentUserName + "|"+ currentUserDomainName, Beaprint.ansi_current_user },
|
||||||
{ paint_adminUsers+"|"+ badgroups + "|" + badgroups + "|" + badpasswd + "|" + badPrivileges + "|" + "DefaultPassword.*", Beaprint.ansi_color_bad },
|
{ paint_adminUsers+"|"+ badgroups + "|" + badpasswd + "|" + badPrivileges + "|" + "DefaultPassword.*", Beaprint.ansi_color_bad },
|
||||||
{ @"Disabled", Beaprint.ansi_users_disabled },
|
{ @"Disabled", Beaprint.ansi_users_disabled },
|
||||||
};
|
};
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user