snovvcrash

icon indicating a website link https://ppn.snovvcra.sh icon indicating an email [email protected]

icon location (╮°-°)╮┳━━┳ ( ╯°□°)╯ ┻━━┻ icon location Sr. Penetration Tester / Red Team Operator, author of the Pentester’s Promiscuous Notebook

Results 8 comments of snovvcrash

Failed to query created process

What's the version of Nim compiler, winim package are you using? What's the target Windows OS version?

Failed to query created process

Unfortunately, I was not able to reproduce it. Is some AV/EDR software active when launching the injector?

Failed to query created process

I'm testing on Windows 10.0.19041, the rest of the stuff is the same.

Add qwinsta and tasklist modules (tstool.py)

Hey @mpgn, thanks for taking a look! Yep, I've also experienced this issue on some boxes - that's `tstool.py` related. Also there's a bug when attempting to run the modules...

Use a custom LDAP filter during a DCSync in secretsdump.py

Hey @0xdeaddood, thanks for the review! Agree with your comments, I've resolved the changes 👍🏻

Add qwinsta and tasklist modules (tstool.py)

@mpgn as a remark: the issue is relevant for servers where RDP is off. If RDP in on, everything's fine during my tests.

Add lookupname.py example

> question, which are the benefits of these rpc calls? what _rpc client refuses to work_ actually means ? Dunno if others have encountered such an issue with Samba's **rpcclient**...

Error during the compilation of the client

```console docker run --rm -it -v `pwd`:/app/output --privileged snovvcrash/physmem2profit -h ``` :wink: