Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[NEW-MODULE] Baseline Windows Enumerations #128

Open
24 of 47 tasks
calebstewart opened this issue Jun 14, 2021 · 0 comments · May be fixed by #154
Open
24 of 47 tasks

[NEW-MODULE] Baseline Windows Enumerations #128

calebstewart opened this issue Jun 14, 2021 · 0 comments · May be fixed by #154
Assignees
@JohnHammond @calebstewart
Labels
enhancement New feature or request new-module Issues or PRs relating to implementing new modules windows Issues relating specifically to the Windows platform
Milestone
Release v0.5.0

Comments

@calebstewart
Copy link
Owner

calebstewart commented Jun 14, 2021
edited
Loading

Is your feature request related to a problem? Please describe.
No.

Describe the solution you'd like
We need to implement a full compliment of baseline windows enumerations. A good start for this would be implementing all of the checks found in the fantastic winPEAS.bat script found here.

Additional context
The following are the enumerations needed to complete this.

  • System Info
  • Hot Fixes
  • Local Date/Time
  • Audit Settings
  • Windows Event Forwarding
  • LAPS Installation
  • LSA Protection
  • WDigest Enabled
  • Cached Credentials
  • User Account Control (UAC) Settings
  • Registered AntiVirus
  • PowerShell Settings
  • Mounted Drives
  • Environment Variables
  • Installed Software
  • Remote Desktop Credentials Manager
  • WSUS Settings
  • Running Processes
  • Startup Binaries
  • Always Install Elevated
  • Network Shares
  • Network Interfaces
  • Network Bound Ports
  • Network Firewall Settings
  • Arp Tables
  • Network Routes
  • etc/hosts file
  • DNS Cache
  • WiFi Credentials
  • Basic User Info
  • Basic Group info
  • Logged On Users
  • Kerberos Tickets
  • Clipboard Contents
  • Vulnerable Services (accesschk.exe)
  • Service List
  • Service Binary Permissions
  • Unquoted Service Paths
  • PATH Environment Hijacking
  • Windows Vault Credentials
  • DPAPI Master Keys
  • Unattended Files
  • SAM and SYSTEM Backups
  • McAfee Site List
  • GPP Password
  • Cloud Credentials
  • Registry Files Credentials
@calebstewart calebstewart added enhancement New feature or request windows Issues relating specifically to the Windows platform new-module Issues or PRs relating to implementing new modules labels Jun 14, 2021
@calebstewart calebstewart added this to the Release v0.4.0 milestone Jun 14, 2021
@calebstewart calebstewart linked a pull request Jul 10, 2021 that will close this issue
Draft
5 tasks
@calebstewart calebstewart linked a pull request Jul 10, 2021 that will close this issue
Baseline Windows Enumerations #154
Draft
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@JohnHammond JohnHammond

@calebstewart calebstewart

Labels
enhancement New feature or request new-module Issues or PRs relating to implementing new modules windows Issues relating specifically to the Windows platform
Projects
None yet
Milestone
Release v0.5.0
Development

Successfully merging a pull request may close this issue.

Baseline Windows Enumerations calebstewart/pwncat
2 participants
@JohnHammond @calebstewart