Jump to content

Recommended Posts

Posted

Depends on the machines setup and if on same lan or behind NAT. If on the same lan, and the box has RDP enabled, you can just mstsc into it over RDP or use rdesktop via linux. You need to know its IP.

If its behind NAT, it becomes a bit trickier, and if port forwarding isn't setup or RDP enabled, you'd need an attack such as luring the user to a site to exploit the box and take control.

If RDP is not enabled but you are on the same LAN, you can try a null session, but most likely won't work depending on the version of windows and services setup on the machine. You could try psexec since you have the username and password, and get a command shell on the box, but also might run into issues with Win Vista/7 and later due to UAC, and not sure if psexec gets a propmpt from UAC(haven't tried so not sure)

Other option, Metasploit your way in or get the user to open a packed PDF or webpage that lets you in.

Now, if this is your home network, and you want remote to another machine you own, just enable RDP on the other box and use mstsc or rdesktop to remote into it with the credentials. I used to have a bat script, that when ran, enabled all services and firewall rules for you, but I'd have to find it. Right click my computer, get properties, and click remote settings if Win7. If XP, its under control panel and advanced settings then remote settings. Add a user(ie the admin account on the machine) and this enables RDP, then remote into the machine.

Posted

i know about the rdp but the challenge is to not even touch the machine, just leave out-of-the-box, ill try the psexec and tomorow ill say something

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...