WinScanX
来源:互联网 发布:淘宝买玩具枪犯法吗 编辑:程序博客网 时间:2024/06/05 08:23
WinScanX was released today. A Windows command-line enumeration tool plus an optional GUI front-end. A must have for any security professional.
Download link: http://windowsaudit.com/downloads/WinScanX_Basic.zip
Web site: http://www.windowsaudit.com/
Features and usage information:
WinScanX v1.0 | http://www.windowsaudit.com/
Usage: WinScanX [-
abcdefgpklijmnostqurxwyzSWv123] <hostname><username> <password>
[-abcdefgpklijmnostqurxwyzSWv123] – required argument
<hostname> – required argument
<username> – optional argument
<password> – optional argument
If the <username> and <password> arguments are omitted, this utility
will attempt to establish a NetBIOS null session and gather information
via the null session.
If the <username> and <password> arguments are both plus signs (+), the
existing credentials of the user running this utility will be used.
Examples:
WinScanX -1 10.10.10.10
WinScanX -2 10.10.10.10 + +
WinScanX -3 10.10.10.10 administrator password
WinScanX -3 10.10.10.10 domain\admin password
WinScanX -1 WINSERVER01
WinScanX -2 WINSERVER01 + +
WinScanX -3 WINSERVER01 administrator password
WinScanX -3 WINSERVER01 domain\admin password
WinScanX -1 192.168.1-254
WinScanX -2 192.168.1-254 + +
WinScanX -3 192.168.1-254 administrator password
WinScanX -3 192.168.1-254 domain\admin password
WinScanX -1 IPInputFile.txt
WinScanX -2 IPInputFile.txt + +
WinScanX -3 IPInputFile.txt administrator password
WinScanX -3 IPInputFile.txt domain\admin password
==== WinScanX Advanced Features ====
-a – Get Account Policy Information
-b – Get Audit Policy Information
-c – Get Display Information
-d – Get Domain Information
-e – Get LDAP Information
-f – Get Administrative Local & Global Group Information
-g – Get Local & Global Group Information
-p – Get Installed Programs
-k – Get Interactively Logged On Users
-l – Get Logged On Users
-i – Get Patch Information
-j – Get Registry Information
-m – Get Scheduled Task Information
-n – Get Server Information
-o – Get Service Information
-s – Get Share Information
-t – Get Share Permissions
-q – Get SNMP Community Information
-u – Get User Information
-r – Get User Information via RA Bypass
-x – Get User Rights Information
-w – Get WinVNC3 & WinVNC4 Passwords
-y – Save Remote Registry Hives
-z – Ping Remote Host Before Scanning
-S – Guess SNMP Community Strings
-W – Guess Windows Passwords
-v – Verbose Output
-1 – Group 1 (includes -adglnsur)
-2 – Group 2 (includes -adgpljnsquw)
-3 – Group 3 (includes -abdgplijmnostquxw)
==== Retrieving Patch Information ====
The information that is queried for each host to determine the existance
of a patch is included in the PatchInfo.input file.
==== Retrieving Registry Information ====
The registry key/value pairs that are queried for each host are included
in the RegistryInfo.input file.
==== SNMP Community String Guessing ====
The SNMP community strings that are attempted for each host are included
in the CommunityStrings.input file.
==== Windows Password Guessing ====
For Windows password guessing to occur, there must be a matching
<hostname>.users file in the UserCache directory for each host on which
you attempt to guess passwords. WinScanX options -c, -r, -u, and -S can be
used to generate <hostname>.users cache files.
The passwords that are attempted for each user account are included in the
Dictionary.input file.
The following can also be used in the Dictionary.input file:
<username> — The name of the current user
<lcusername> — The name of the current user in lower case
<ucusername> — The name of the current user in upper case
<blank> – A blank or null password
- WinScanX
- Finding Domain Controllers for use with WinScanX using DCLookup.exe
- java中参数传递
- XP下共享磁盘文件夹方法
- 舌尖上的阳朔,除米粉之外的桂菜诱惑
- 移动应用程序开发应考虑的八大安全问题
- 【Android 开发教程】上下文菜单
- WinScanX
- 帮助你使用数据库方式访问JSON数据的javascript类库-TaffyDB
- 多线程拨号Java版(探讨synchronized和Lock线程同步)
- Android 实现iphone主屏幕文件夹展开合并效果(OpenFolder)
- C++ map学习笔记
- EBS常用命令
- Linux下运行window程序的解决方法
- How to create a Java component with Eclipse
- ios开发资料