RedRabbit is a PowerShell script aimed at helping pentesters conduct ethical hacking #RedTeam. The aim is to highlight just how Powerful PowerShell is and how it can be used against you (Ethically).
You can either run locally by downloading the script or run remotely using:
powershell –nop –c “iex(New-Object Net.WebClient).DownloadString(‘https://raw.githubusercontent.com/securethelogs/RedRabbit/master/redrabbit.ps1’)”
If you run remotely, you will always get the latest version
Option info and help can be found here: https://securethelogs.com/redrabbit-ps1/
Edit Local Host For SMB Relay (Redirect share to attacker IP)
Probe For SMB Shares
RedRabbit now checks for admin session and tries to query AD to check if Domain Admin.
Password extraction (SAM/SYSTEM File, Credential Manager and Wireless Profiles)
Run Encoded Commands
Azure Feature has now been added!