PyHook is the python implementation of my SharpHook project, It uses various API hooks in order to give us the desired credentials.
PyHook Uses frida to inject it's dependencies into the target process
Supported Processes| Process | API Call | Description | Progress |
|---|---|---|---|
| mstsc | CredUnPackAuthenticationBufferW |
This will hook into mstsc and should give you Username and Password | DONE |
| runas | CreateProcessWithLogonW |
This will hook into runas and should give you Username, Password and the domain name | DONE |
| cmd | RtlInitUnicodeStringEx |
This should hook into cmd and then would be able to filter keywords like: PsExec,password etc.. | DONE |
| MobaXterm | CharUpperBuffA |
This will hook into MobaXterm and should give you credentials for SSH and RDP logins | DONE |
| explorer (UAC Prompt) | CredUnPackAuthenticationBufferW |
This will hook into explorer and should give you Username, Password and the Domain name from the UAC Prompt | DONE |
Link my blog post covering this topic: https://ilankalendarov.github.io/posts/offensive-hooking
You may be interested in:
>> Is a Chromebook worth replacing a Windows laptop?
>> Find out in detail the outstanding features of Google Pixel 4a
>> Top 7 best earbuds you should not miss
Related Posts:
>> Recognizing 12 Basic Body Shapes To Choose Better Clothes
>>Ranking the 10 most used smart technology devices
>> Top 5+ Best E-readers: Compact & Convenient Pen
0 Comments:
Post a Comment