hak5/bashbunny-payloads

mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00

History

Mike Galvin f1bf173d22 Enable RDP, disable NLA, log network information. (#401 )

2019-10-19 12:36:45 -07:00

..

p.ps1

Enable RDP, disable NLA, log network information. (#401 )

2019-10-19 12:36:45 -07:00

payload.txt

Enable RDP, disable NLA, log network information. (#401 )

2019-10-19 12:36:45 -07:00

README.md

Enable RDP, disable NLA, log network information. (#401 )

2019-10-19 12:36:45 -07:00

README.md

Enable-RDP

Author: Mike Galvin
Version: Version 1.0
Category: Enabling services and accounts
Target: Windows 10 / Powershell

Mike Galvin's site Twitter:@mikegalvin_

Description

This payload will launch an elevated PowerShell session and run p.ps1.

The script will enable RDP without NLA, enable the RDP firewall rules in Windows firewall and enable the local admin user and set a password configurable in the script. The script also creates another admin user just in case.

Configuration

You can configure the password and new user account name using the variables at the top of p.ps1.

Status

LED	Status
SETUP	Setting up attack
ATTACK	Injecting keystrokes
FINISH	Done