smbexec Wiki

A rapid psexec style attack with samba tools

Brought to you by: a114s, emilam, purehate

Home

                        smbexec
A rapid psexec style attack with samba tools
  Original Concept and Script by PureHate & Brav0Hax
          Codename - Diamond in the Rough
         Gonna pha-q up - PurpleTeam Smash!

Written because we got sick of Metasploit PSExec getting popped

Special thanks to Carnal0wnage who's blog inspired us to go this route.
http://carnal0wnage.attackresearch.com/2012/01/psexec-fail-upload-and-exec-instead.html

Includes

smbclient with hashpassing patch (smbexeclient)
winexe with hashpassing patch (smbwinexe)
smbexec.sh
installer.sh
patches to compile binaries if you don't want to use the precompiled ones

Just run the installer and you should be good to go!

Credit where credit is due:

smbclient & winexe Hash Passing patch - JoMo-kun -> http://www.foofus.net/~jmk/passhash.html
vanish.sh - Original concept Astr0baby stable version edits Vanish3r -> http://www.securitylabs.in/2011/12/easy-bypass-av-and-firewall.html
www.samba.org
winexe - ahajda -> http://sourceforge.net/users/ahajda
Metasploit - www.metasploit.com

Happy Hunting!