I don't think it matters if you use the GUI or not, it's going to send basically the same traffic across the wire. But if command line is what you want, take a look at the net commands. net view \\computername (queries the computer for shares) net view /domain:domainname (queries the domain browse list just like net neighborhood) TR ----- Original Message ----- From: "KK Mookhey" <kkmookheyat_private> To: <pen-testat_private> Sent: Tuesday, September 25, 2001 1:35 AM Subject: Non-GUI intrusion > Hi All, > This is the scenario. We are conducting a pen-test with the capture-flag as the source-code files of the client ( a s/w firm). > We have managed to penetrate most of their servers in the DMZ (all Win NT/2K). > Using pwdump and L0phtcrack, we have the username/password of over 20 users in the admin group (this is a very large company). > These same users have admin rights on the intranet machines too. > We have a GUI remote control over the servers. > We also know that they have a Blue Team (or is it White Team) which is monitoring logs/traffic and our activities, to demonstrate to > their bosses that they could detect an attack like ours. > We need to get to the inside machines, since thats where the source code is. We could do it using the Net Neighb icon on the NT/2k > machines thru the GUI we already have, using the password we have cracked. But that would be like a bull in a china shop. > We already have remote command prompt access on the DMZ machines. We need to be able to query shares (enum?), and get source files > from the inside, without raising any alarms. > So, > What we need is a command line utility, or a GUI utility which does not raise red flags at their ends. > Anyone any ideas? > Sorry for the slightly long mail. > TIA, > KKM > > > > _________________________________________________________ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com > > > -------------------------------------------------------------------------- -- > This list is provided by the SecurityFocus Security Intelligence Alert (SIA) > Service. For more information on SecurityFocus' SIA service which > automatically alerts you to the latest security vulnerabilities please see: > https://alerts.securityfocus.com/ > > ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Wed Sep 26 2001 - 08:09:46 PDT