Last active
November 12, 2019 18:03
-
-
Save puzzlepeaches/241d11f851e80b9e4efd6875709db27c to your computer and use it in GitHub Desktop.
install
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
echo 'Updating and upgrading. This may take a bin' | |
apt update && apt autoremove -y | |
echo 'Installing golang' | |
wget -q -O - https://raw.githubusercontent.com/canha/golang-tools-install-script/master/goinstall.sh | bash | |
echo 'Dont worry about it' | |
source ~/.bashrc | |
echo 'Installing some other garbage' | |
apt install -y libssl-dev libffi-dev python-dev build-essential python-pip git feh | |
echo 'Installing crackmapexec' | |
pip install crackmapexec | |
echo "trying to install gowitness" | |
go get -u github.com/sensepost/gowitness | |
echo "Test both tools by executing the following commands" | |
echo "crackmapexec --help" | |
echo "gowitness --help" | |
echo "Now run the following commands if gowitness doesn't work" | |
echo "exec bash" | |
echo "go get -u github.com/sensepost/gowitness" | |
echo "How to use:" | |
echo "Open a new terminal tab by pressing CTRL + SHIFT + T" | |
echo "First we need to find the CIDR range that contains the domain controller" | |
echo "Once we find this, we first want to take pictures of web services used in this sensitive CIDR range" | |
echo "Lets first make a working directory" | |
echo "cd ~/Documents" | |
echo "mkdir screenshots && cd screenshots" | |
echo "An example of gowitness is shown below" | |
echo "gowitness scan --cidr 192.168.50.0/24" | |
echo "After this has completed, we can run the command below to view our screenshots" | |
echo "feh -r" | |
echo "Now lets use crackmapexec" | |
echo "Run crackmapexec smb 192.168.50.0/24 -u '' -p '' | tee crackmapexec-nullsession.txt" | |
echo "This attempts to connect to smb on these hosts without a username and password" | |
echo "Then we will do the same but with the usernames and password provided to us" | |
echo "crackmapexec smb 192.168.50.0/24 -u 'TEACHER' -p 'PASSWORD' -d 'wwusd.local' | tee crackmapexec-authed.txt" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment