Re: Windows Independant GUI

From: Isaac Van Name (ivanname@southerlandsleep.com)
Date: Fri Sep 08 2006 - 09:41:31 EDT

• Next message: Nick Besant: "RE: pen testing https portal?"
• Previous message: Nathan Keltner: "Re: pen testing https portal?"
• Maybe in reply to: One2@onetwo.com: "Windows Independant GUI"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I'm a firm believer in VBScript and such, but I have to say that I still use
plain old DOS to do most of the things you listed. They have a command-line
reference for Windows Server 2003 that I recommend for anyone looking to do
simple scripts for that OS; after all, batch files are just like typing in
the CLI anyways, in most cases.

One of the things I like about VBScript is the ability to send keystrokes to
applications that are running. Makes for some interesting automation
concepts. :-)

Thanks for the link, btw.

Oh, and Jason... in addition to the link given, I just did a Google search
for "pen testing CLI" and saw some interesting documents... I'm sure you'll
find additional information that way as well.

Isaac Van Name

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Scott Ramsdell
Sent: Thursday, September 07, 2006 8:57 AM
To: Jason Mayer; pen-test@securityfocus.com
Subject: RE: Windows Independant GUI

Jason,

I used Microsoft's tutorial here:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnancho
r/html/scriptinga.asp

You'll want to learn VBS, WMI, and ADSI at the least.

Within a few hours, you can write scripts to map drives, copy and
execute files, create local users, change the local admin password, add
users from AD, add users to AD if the logged in user has the rights,
change the system time, clear security logs, etc. Anything you can
think of wanting to do ;)

Best Regards,
Scott Ramsdell

-----Original Message-----
From: Jason Mayer [mailto:slamboy@gmail.com]
Sent: Wednesday, September 06, 2006 7:04 PM
To: pen-test@securityfocus.com
Subject: Re: Windows Independant GUI

And on that note, can anyone recommend a good book from a pen tester's
perspective on CLI scripting?

On 9/6/06, Isaac Van Name <ivanname@southerlandsleep.com> wrote:
> Of course, that being said, I agree with the CLI comment. I'm a firm
> believer in strong DOS and scripting and, if you think something can't
be
> done with those two things, then you just haven't tried hard enough or
> learned enough.
>
> Isaac Van Name
>

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------

• Next message: Nick Besant: "RE: pen testing https portal?"
• Previous message: Nathan Keltner: "Re: pen testing https portal?"
• Maybe in reply to: One2@onetwo.com: "Windows Independant GUI"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:55 EDT