'Tools'에 해당되는 글 3건

  1. 2010.08.28 PsExec, RunAs Tools (1)
  2. 2010.08.23 Introduce the best SQL injection Tools (2)
  3. 2009.08.03 JFFNMS 네트워크 모니터링 Tools
2010. 8. 28. 09:21

PsExec, RunAs Tools

PsExec (part of PsTools - download PsExec)

Execute a command-line process on a remote machine.

      psexec \\computer[,computer[,..] [options] command [arguments]

      psexec @run_file [options] command [arguments]


   computer   The computer on which psexec will run command. Default = local system 
              To run against all computers in the current domain enter "\\*"
   @run_file  Run command on every computer listed in the text file specified.

   command    Name of the program to execute

   arguments  Arguments to pass (file paths must be absolute paths on the target system)

   -a n,n,... Set processor affinity to n. Processors are numbered as 1,2,3,4 etc
              so to run the application on CPU 2 and CPU 4, enter: "-a 2,4"

   -c         Copy the program (command)to the remote system for execution.
   -c -f      Copy even if the file already exists on the remote system.
   -c -v      Copy only if the file is a higher version or is newer than the remote copy.

   If you omit the -c option then the application must be in the system path on the remote system.

   -d         Don't wait for the application to terminate.
              Only use for non-interactive applications.

   -e         Load the user account's profile, don't use with the system account (-s)

   -i         Interactive - Run the program so that it interacts with the desktop on the remote system.

   -l         Limited - Run process as limited user. Only allow privs assigned to the Users group.

   -n s       Specify a timeout s seconds for connecting to the remote computer.

   -p psswd   Specify a password for user (optional). Passed as clear text.
              If omitted, you will be prompted to enter a hidden password.

   -s         Run remote process in the System account.

   -u user    Specify a user name for login to remote computer(optional).

   -w directory Set the working directory of the process (relative to the remote computer).

   -x         Display the UI on the Winlogon desktop (local system only).

  -low, -belownormal, -abovenormal, -high or -realtime
              These options will run the process at a different priority.

Psexec can also be used to start GUI applications, but in that case the GUI will appear on the remote machine.

Input is passed to the remote system when you press the enter key - typing Ctrl-C will terminate the remote process.

When you specify a username the remote process will execute in that account, and will have access to that account's network resources.

If you omit username the remote process will run in the same account from which you execute PsExec, but because the remote process is impersonating it will not have access to network resources on the remote system.

PsExec does not require you to be an administrator of the local filesystem this can allow UserA to run commands as UserB - a Runas replacement.

Surround any long filenames "with quotation marks"


Launch an interactive command prompt on \\workstation64:

psexec \\workstation64 cmd

Execute IpConfig on the remote system, and display the output locally:

psexec \\workstation64 ipconfig /all

Copy the program test.exe to the remote system and execute it interactively:

psexec \\workstation64 -c test.exe

Execute a program that is already installed on the remote system:

psexec \\workstation64 "c:\Program Files\test.exe"

Run Internet Explorer on the local machine but with limited-user privileges:

psexec -l -d "c:\program files\internet explorer\iexplore.exe"


Execute a program under a different user account.

      RUNAS [/profile] [/env] [/netonly] /user:user Program

   /profile   Option to load the user's profile (registry)
   /env       Use current environment instead of user's.
   /netonly   Use the credentials specified only for remote connections.
   /user      Username in form USER@DOMAIN or DOMAIN\USER
              (USER@DOMAIN is not compatible with /netonly)
   Program    The command to execute

Enter the password when prompted.

When you start a program with RunAs /netonly, the program will execute on your local computer as the user you are currently logged on as, but any connections to other computers on the network will be made using the user account specified.

Without /netonly everything will run under the user account specified.

RunAs from Windows Explorer
Select an executable file, Shift-Right-click and select Run As..
This option can be hidden by setting

The error level (%ERRORLEVEL%) returned by RunAs in Windows XP and above: success=0, failure=1


   Runas /user:SCOT_DOMAIN\jDoe "mycommand.exe"

   Runas /profile /user:mymachine\administrator CMD

   Runas /profile /env /user:SCOT_DOMAIN\administrator NOTEPAD

   Runas /env /user:jDoe@swest.ss64.com "NOTEPAD \"my file.txt\""

RunAs Reqires the "Secondary Logon" service to be running.

“He who reigns within himself, and rules passions, desires, and fears, is more than a king” - Milton

Trackback 1 Comment 1
  1. Favicon of https://blog.pages.kr 날으는물고기 2010.08.28 09:23 신고 address edit & del reply

    go to run > type "psexec -sid cmd.exe" > in cmd type "services.msc"

2010. 8. 23. 10:28

Introduce the best SQL injection Tools

According to my experiences, I think these are good tools for SQL injection :


CASI 4.0


pangolin v1.3.1.650

Code: http://hackbase.com/soft/down.php?downid=15799&id=0

Trackback 0 Comment 2
  1. 2010.08.23 12:47 address edit & del reply


  2. 2010.08.23 12:49 address edit & del reply


2009. 8. 3. 15:14

JFFNMS 네트워크 모니터링 Tools


APM이 깔려있다는 전제 하에 기존에 php 컴파일시 jffnms설치시 필요한게 몇개 빠진거 같아서 재 컴파일 했다....아래같이

모든 필요한 파일을 yum으로 업데이트 한후 풀 옵션을 줘서 php 재컴파일 후 설치 진행함.

# yum -y install openssl openssl-devel mhash mhash-devel libtool libtool-ltdl libtool-ltdl-devel imap-devel imap zlib-devel zlib freetype-devel freetype libpng-devel libpng libjpeg-devel libjpeg libtiff-devel libtiff gd-devel gd pcre-devel pcre libxml-devel libxml libxml2-devel libxml2 gdbm-devel gdbm ncurses-devel ncurses curl-devel curl expat-devel expat bzip2-devel bzip2-libs bzip2 uw-imap-devel libc-client libc-client-devel libmcrypt libmcrypt-devel

# ./configure --prefix=/usr/local/php --with-apxs2=/usr/local/apache/bin/apxs --enable-mod-charset --enable-safe-mode --enable-sigchild --enable-magic-quotes --with-libxml-dir --with-openssl --with-zlib --with-zlib-dir --with-bz2 --enable-calendar --with-curl --enable-dba --with-gdbm --enable-exif --enable-ftp --with-gd --with-jpeg-dir --with-png-dir  --with-ttf --with-freetype-dir --enable-gd-native-ttf --with-gettext --with-imap --with-imap-ssl --with-kerberos --enable-mbstring --with-mhash --with-mcrypt --with-mysql=/usr/local/mysql --enable-sockets --with-regex=php --enable-sysvmsg --enable-sysvsem --enable-sysvshm --enable-wddx --enable-zend-multibyte --with-snmp


# ./configure --prefix=/usr/local/rrdtool --enable-shared 

php.ini 다음 추가   

    register_globals = On
    register_argc_argv = On
    error_reporting  =  E_ALL & ~E_NOTICE
    allow_url_fopen = On
    include_path = .:/usr/share/pear
    short_open_tag = On

본격적인 설치(공식 메뉴얼 참조했습니다.)

# groupadd jffnms
# useradd -g jffnms -d /opt/jffnms -s /bin/false -c 'JFFNMS User' jffnms
# usermod -G jffnms apache 

You will get a directory called jffnms-0.8.x/

# mv jffnms-0.8.x /opt/jffnms


# chown -R jffnms:jffnms /opt/jffnms
# chmod 770 /opt/jffnms
# chmod -R ug+rw /opt/jffnms 

Install the JFFNMS crontab file

# crontab -u jffnms /opt/jffnms/docs/unix/crontab

맨위의 PATH

Now modify the values at the top if they don't match your system

# crontab -e -u jffnms

Allow JFFNMS to run cron jobs (AFAIK only needed in Solaris)

# echo jffnms >> /etc/cron.allow 

Create the Databases

Manually create the database "jffnms", set the permissions and then import the schema and data.
Manually create the database "jffnms", set the permissions and then import the schema and data.
Replace the 'x' with the jffnms version number.

mysql 설정

# mysql -u <mysql admin username> -p<password>
mysql> CREATE DATABASE jffnms;
mysql> GRANT ALL PRIVILEGES ON jffnms.* TO jffnms@localhost IDENTIFIED BY 'jffnms';
mysql> quit

# mysql -u jffnms -pjffnms jffnms < docs/jffnms-0.8.x.mysql

출처 : http://trick.textcube.com/

Trackback 0 Comment 0