Directory Structure
John Torakis edited this page Sep 17, 2018
·
5 revisions
The SMB Share develops a directory structure like below:
Share/
|
\--Project1/
| |
| \--<Hostname1>-<Username>-<MAC_ADDRESS1>/
| |
| \-- sysinfo.dat # System Information for the host
| \-- checkin.dat # Local Time for first Connection
| \-- ping.dat # Changes every time the Agent runs
| \-- history.dat # Stores all Command Responses from the Agent with timestamps
| \-- exec.dat # Gets deleted when its contents get executed
| \-- output.dat # The commands response get logged here
| \-- plugins # Folder for VBS plugins
| |
| \- [...]
|
| \--<Hostname2>-<Username>-<MAC_ADDRESS2>/
| \-- [...]
|
| \-- [...]
\--Project2/
|
\--<Hostname3>-<Username>-<MAC_ADDRESS3>/
| \-- [...]
[...]
Using a command like:
$ tar cvf Assessment.tar Shared/will archive all commands and responses along with pwn times and system information for ALL Agents.