• We just launched and are currently in beta. Join us as we build and grow the community.

RedRabbit – Pentesting & Post-Exploitation For Red Team

Tali

Patch Tester
T
T Rep
0
0
0
Rep
0
T Vouches
0
0
0
Vouches
0
Posts
99
Likes
16
Bits
0
2 MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1 400 XP
Blue-Professional-Gradients-Investment-Bank-Finance-LinkedIn-Single-Image-Ad-1.png


Hey Folks, today we have brought a tool that will help in gathering and extracting information, encoding / decoding and cracking. RedRabbit is a PowerShell script aimed at helping pentesters conduct ethical hacking and at the same time it can be used for red team operation. The aim is to highlight just how Powerful PowerShell is and how it can be used against you (Ethically).

Let’s take a look 😛 !!

Boot PowerShell

We think most of the people would be well aware of the powershell prompt as it works like CMD prompt. We need to run it with administrative privileges.

1.png

Tool Installation

So we will use the “WebClient” service to download and run this tool directly at the PowerShell prompt.

iex(New-Object Net.WebClient).DownloadString("https://raw.githubusercontent.com/securethelogs/RedRabbit/master/RedRabbit.ps1")1iex(New-ObjectNet.WebClient).DownloadString("https://raw.githubusercontent.com/securethelogs/RedRabbit/master/RedRabbit.ps1")

2.png


COOL 😛 !! As you can see how easily we have setup this tool in our windows machine. After that type “h” on the terminal of this tool and all the features will be in front of you.

3.png

Quick Recon

Let’s choose the first option and check if it works.

4.png


Works 😛 !! As soon as we select the first option, it dumps all the details related to administrator, system, directory and network.

5.png


Also it gives us information related to firewall rules and smb share service.

6.png

Subnet Scanner

This option of this tool works like the nmap tool of kali linux because we can get the details of open ports of all the available hosts in a network.

7.png

SMB Scanner

If you want to get the information of network file sharing protocol (SMB), you can choose the third option.

8.png


Results 😛 !! If a host is vulnerable or the tool are able to communicate with it then it will dump all the data available there to the terminal.

9.png

Password Extractions

You can dump all the saved credentials in the system using the following option of this tool.

10.png


Nice 😛 !! As you can see we got all the saved wireless keys.

11.png

Encoding and Decoding

Encoding and decoding is the most important part in the ethical hacking and red team that you can also do through this tool.

12.png

Reverse Shell

To obtain the system’s reverse shell, you need to enter the IP address and port number of the kali linux where the netcat listener is placed.

13.png


Aamazing 😛 !! As soon as you enter the IP address and port, the attacker will get complete control of the target machine.

14.png

Social Username

In addition, you can hunt some usernames with this tool.

15.png


End 😛 !! We have marked only the important feature of this tool because it has too many features that we cannot cover in a single article.

16.png
About the AuthorShubham Goyal Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.
 
You must log in or register to reply here.

431,696

312,474

312,483

R robot2580
Top