[Dailydave] Insomnia: Tool Release - InsomniaShell.aspx
Brett Moore
brett.moore at insomniasec.com
Thu Feb 14 14:04:39 EST 2008
___________________________________________________________________
Insomnia Security :: InsomniaShell.aspx
___________________________________________________________________
Name: InsomniaShell.aspx
Released: 12 Feb 2008
Author: Brett Moore, Insomnia Security
Original Link: http://www.insomniasec.com/releases/tools
___________________________________________________________________
InsomniaShell is a tool for use during penetration tests, when
you have ability to upload or create an arbitrary .aspx page.
This .aspx page is an example of using native calls through pinvoke
to provide either a reverse shell or a bind shell.
It has the added advantage of searching through all accessible
processes looking for a SYSTEM or Administrator token to use for
impersonation.
If the provider page is running on a server with a local SQL Server
instance, the shell includes functionality for a named pipe
impersonation attack. This requires knowledge of the sa password,
and results in the theft of the token that the SQL server is
executing under.
___________________________________________________________________
More information about the Dailydave
mailing list