@fd0tm.bsky.social
Reposted
We also used modified sploutchy's RPC server for impacket's ntlmrelayx.py to also provide a generic endpoint mapper (EPM) to abuse PrinterBug on newer versions of Windows 11.
github.com/fortra/impac...
github.com/fortra/impac...
ntlmrelayx.py
June 4, 2025 at 7:57 AM
We also used modified sploutchy's RPC server for impacket's ntlmrelayx.py to also provide a generic endpoint mapper (EPM) to abuse PrinterBug on newer versions of Windows 11.
github.com/fortra/impac...
github.com/fortra/impac...
Reposted
And this is our pull request to NetExec which adds efsr_spray which can re-enable EFSR/PetitPotam on up-to-date Windows 11 hosts 🤯 if they have a writeable share:
github.com/Pennyw0rth/N...
github.com/Pennyw0rth/N...
Add efsr_spray module by rtpt-romankarwacik · Pull Request #718 · Pennyw0rth/NetExec
Description
Since Windows 11 23H2 the EFS service is only activated on demand. One ways to activate it is to write an encrypted file to a share on the respective device. This module automates this ...
github.com
June 4, 2025 at 7:57 AM
And this is our pull request to NetExec which adds efsr_spray which can re-enable EFSR/PetitPotam on up-to-date Windows 11 hosts 🤯 if they have a writeable share:
github.com/Pennyw0rth/N...
github.com/Pennyw0rth/N...