hacktricks/network-services-pentesting/135-pentesting-msrpc.md

# 135, 593 - Kupima MSRPC

<details>

<summary><strong>Jifunze AWS hacking kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalam wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>

Njia nyingine za kusaidia HackTricks:

* Ikiwa unataka kuona **kampuni yako ikitangazwa kwenye HackTricks** au **kupakua HackTricks kwa PDF** Angalia [**MIPANGO YA KUJIUNGA**](https://github.com/sponsors/carlospolop)!
* Pata [**bidhaa rasmi za PEASS & HackTricks**](https://peass.creator-spring.com)
* Gundua [**Familia ya PEASS**](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [**NFTs**](https://opensea.io/collection/the-peass-family) ya kipekee
* **Jiunge na** 💬 [**Kikundi cha Discord**](https://discord.gg/hRep4RUj7f) au [**kikundi cha telegram**](https://t.me/peass) au **tufuate** kwenye **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks\_live)**.**
* **Shiriki mbinu zako za kuhack kwa kuwasilisha PRs kwa** [**HackTricks**](https://github.com/carlospolop/hacktricks) na [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) repos za github.

</details>

<figure><img src="../.gitbook/assets/image (380).png" alt=""><figcaption></figcaption></figure>

Jiunge na [**HackenProof Discord**](https://discord.com/invite/N3FrSbmwdy) server ili kuwasiliana na wadukuzi wenye uzoefu na wawindaji wa tuzo za mdudu!

**Machapisho ya Kuhack**\
Shiriki na yaliyomo yanayochimba katika msisimko na changamoto za kuhack

**Taarifa za Kuhack za Wakati Halisi**\
Kaa up-to-date na ulimwengu wa kuhack wenye kasi kupitia habari za wakati halisi na ufahamu

**Matangazo ya Karibuni**\
Baki mwenye habari na tuzo mpya za mdudu zinazoanzishwa na sasisho muhimu za jukwaa

**Jiunge nasi kwenye** [**Discord**](https://discord.com/invite/N3FrSbmwdy) na anza kushirikiana na wadukuzi bora leo!

## Taarifa Msingi

Itifaki ya Wito wa Mbali wa Microsoft (MSRPC), mfano wa mteja-seva unaoruhusu programu kuomba huduma kutoka kwa programu iliyoko kwenye kompyuta nyingine bila kuelewa maelezo ya mtandao, ilichochewa awali kutoka kwa programu ya chanzo wazi na baadaye ikafanyiwa maendeleo na kuhakikiwa na Microsoft.

Mwambo wa mwisho wa RPC unaweza kufikiwa kupitia bandari za TCP na UDP 135, SMB kwenye TCP 139 na 445 (na kikao cha null au kilichoidhinishwa), na kama huduma ya wavuti kwenye bandari ya TCP 593.
```
135/tcp   open     msrpc         Microsoft Windows RPC
```
## Jinsi gani MSRPC inavyofanya kazi?

Kuanzishwa na programu ya mteja, mchakato wa MSRPC unahusisha kuita utaratibu wa bandia wa ndani ambao kisha huingiliana na maktaba ya muda wa mteja ili kuandaa na kutuma ombi kwa seva. Hii ni pamoja na kubadilisha parameta kuwa muundo wa Uwakilishi wa Data wa Mtandao wa kawaida. Chaguo la itifaki ya usafirishaji linapangwa na maktaba ya muda ikiwa seva iko mbali, ikihakikisha RPC inatumwa kupitia safu ya mtandao.

![https://0xffsec.com/handbook/images/msrpc.png](https://0xffsec.com/handbook/images/msrpc.png)

## **Kutambua Huduma za RPC Zilizofichuliwa**

Ufunuo wa huduma za RPC kote kwenye TCP, UDP, HTTP, na SMB unaweza kugunduliwa kwa kuuliza huduma ya mchotaji wa RPC na vituo vya mwisho binafsi. Zana kama rpcdump hufanikisha kutambua huduma za RPC za kipekee, zinazotambuliwa na thamani za **IFID**, zikifunua maelezo ya huduma na vifungo vya mawasiliano:
```
D:\rpctools> rpcdump [-p port] <IP>
**IFID**: 5a7b91f8-ff00-11d0-a9b2-00c04fb6e6fc version 1.0
Annotation: Messenger Service
UUID: 00000000-0000-0000-0000-000000000000
Binding: ncadg_ip_udp:<IP>[1028]
```
Access kwa huduma ya RPC locator inawezeshwa kupitia itifaki maalum: ncacn\_ip\_tcp na ncadg\_ip\_udp kwa kupata kupitia bandari 135, ncacn\_np kwa uunganisho wa SMB, na ncacn\_http kwa mawasiliano ya RPC yanayotegemea wavuti. Amri zifuatazo zinaonyesha matumizi ya moduli za Metasploit kufanya ukaguzi na kuingiliana na huduma za MSRPC, zikilenga hasa bandari 135:
```bash
use auxiliary/scanner/dcerpc/endpoint_mapper
use auxiliary/scanner/dcerpc/hidden
use auxiliary/scanner/dcerpc/management
use auxiliary/scanner/dcerpc/tcp_dcerpc_auditor
rpcdump.py <IP> -p 135
```
All options except `tcp_dcerpc_auditor` are specifically designed for targeting MSRPC on port 135.

#### Violezo vya RPC vya Kumbukumbu

* **IFID**: 12345778-1234-abcd-ef00-0123456789ab
* **Named Pipe**: `\pipe\lsarpc`
* **Maelezo**: Kiolesura cha LSA, hutumika kuchambua watumiaji.
* **IFID**: 3919286a-b10c-11d0-9ba8-00c04fd92ef5
* **Named Pipe**: `\pipe\lsarpc`
* **Maelezo**: Kiolesura cha Huduma za Mwongozo wa LSA (DS), hutumika kuchambua udomen na mahusiano ya uaminifu.
* **IFID**: 12345778-1234-abcd-ef00-0123456789ac
* **Named Pipe**: `\pipe\samr`
* **Maelezo**: Kiolesura cha LSA SAMR, hutumika kufikia vipengele vya kumbukumbu ya SAM ya umma (k.m., majina ya watumiaji) na kuvunja nguvu nywila za watumiaji bila kujali sera ya kufunga akaunti.
* **IFID**: 1ff70682-0a51-30e8-076d-740be8cee98b
* **Named Pipe**: `\pipe\atsvc`
* **Maelezo**: Meneja wa kazi, hutumika kutekeleza amri kijijini.
* **IFID**: 338cd001-2244-31f1-aaaa-900038001003
* **Named Pipe**: `\pipe\winreg`
* **Maelezo**: Huduma ya usajili wa kijijini, hutumika kufikia na kurekebisha usajili wa mfumo.
* **IFID**: 367abb81-9844-35f1-ad32-98f038001003
* **Named Pipe**: `\pipe\svcctl`
* **Maelezo**: Meneja wa udhibiti wa huduma na huduma za seva, hutumika kuanza na kusitisha huduma kijijini na kutekeleza amri.
* **IFID**: 4b324fc8-1670-01d3-1278-5a47bf6ee188
* **Named Pipe**: `\pipe\srvsvc`
* **Maelezo**: Meneja wa udhibiti wa huduma na huduma za seva, hutumika kuanza na kusitisha huduma kijijini na kutekeleza amri.
* **IFID**: 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57
* **Named Pipe**: `\pipe\epmapper`
* **Maelezo**: Kiolesura cha DCOM, hutumika kwa kuvunja nguvu nywila na kukusanya habari kupitia WM.

### Kutambua Anwani za IP

Kwa kutumia [https://github.com/mubix/IOXIDResolver](https://github.com/mubix/IOXIDResolver), inayotoka kwa [utafiti wa Airbus](https://www.cyber.airbus.com/the-oxid-resolver-part-1-remote-enumeration-of-network-interfaces-without-any-authentication/), inawezekana kutumia njia ya _**ServerAlive2**_ ndani ya kiolesura cha _**IOXIDResolver**_.

Njia hii imekuwa ikitumika kupata habari za kiolesura kama anwani ya **IPv6** kutoka kwa sanduku la HTB _APT_. Angalia [hapa](https://0xdf.gitlab.io/2021/04/10/htb-apt.html) kwa mwongozo wa 0xdf APT, inajumuisha njia mbadala ya kutumia rpcmap.py kutoka [Impacket](https://github.com/SecureAuthCorp/impacket/) na _stringbinding_ (angalia hapo juu).

### Kutekeleza RCE na sifa halali

Inawezekana kutekeleza msimbo wa kijijini kwenye mashine, ikiwa sifa za mtumiaji halali zinapatikana kwa kutumia [dcomexec.py](https://github.com/fortra/impacket/blob/master/examples/dcomexec.py) kutoka kwa mfumo wa impacket.

**Kumbuka kujaribu na vitu tofauti vinavyopatikana**

* ShellWindows
* ShellBrowserWindow
* MMC20

## Bandari 593

**rpcdump.exe** kutoka [rpctools](https://resources.oreilly.com/examples/9780596510305/tree/master/tools/rpctools) inaweza kuingiliana na bandari hii.

## Marejeo

* [https://www.cyber.airbus.com/the-oxid-resolver-part-1-remote-enumeration-of-network-interfaces-without-any-authentication/](https://www.cyber.airbus.com/the-oxid-resolver-part-1-remote-enumeration-of-network-interfaces-without-any-authentication/)
* [https://www.cyber.airbus.com/the-oxid-resolver-part-2-accessing-a-remote-object-inside-dcom/](https://www.cyber.airbus.com/the-oxid-resolver-part-2-accessing-a-remote-object-inside-dcom/)
* [https://0xffsec.com/handbook/services/msrpc/](https://0xffsec.com/handbook/services/msrpc/)

<figure><img src="../.gitbook/assets/image (380).png" alt=""><figcaption></figcaption></figure>

Jiunge na [**HackenProof Discord**](https://discord.com/invite/N3FrSbmwdy) server ili kuwasiliana na wadukuzi wenye uzoefu na wawindaji wa tuzo za mdudu!

**Machapisho ya Udukuzi**\
Shiriki na maudhui yanayochimba ndani ya msisimko na changamoto za udukuzi

**Habari za Udukuzi za Wakati Halisi**\
Kaa sawa na ulimwengu wa udukuzi wenye kasi kupitia habari za wakati halisi na ufahamu

**Matangazo Mapya**\
Baki mwelekezi na tuzo mpya za mdudu zinazoanzishwa na sasisho muhimu za jukwaa

**Jiunge nasi kwenye** [**Discord**](https://discord.com/invite/N3FrSbmwdy) na anza kushirikiana na wadukuzi bora leo!
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`# 135, 593 - Kupima MSRPC`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`<details>`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`<summary><strong>Jifunze AWS hacking kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalam wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Njia nyingine za kusaidia HackTricks:`
arte 2024-01-03 10:42:55 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`* Ikiwa unataka kuona kampuni yako ikitangazwa kwenye HackTricks au kupakua HackTricks kwa PDF Angalia [MIPANGO YA KUJIUNGA](https://github.com/sponsors/carlospolop)!`
			`* Pata [bidhaa rasmi za PEASS & HackTricks](https://peass.creator-spring.com)`
			`* Gundua [Familia ya PEASS](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [NFTs](https://opensea.io/collection/the-peass-family) ya kipekee`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`* Jiunge na 💬 [Kikundi cha Discord](https://discord.gg/hRep4RUj7f) au [kikundi cha telegram](https://t.me/peass) au tufuate kwenye Twitter 🐦 [@carlospolopm](https://twitter.com/hacktricks\_live).`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`* Shiriki mbinu zako za kuhack kwa kuwasilisha PRs kwa [HackTricks](https://github.com/carlospolop/hacktricks) na [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) repos za github.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`<figure><img src="../.gitbook/assets/image (380).png" alt=""><figcaption></figcaption></figure>`
hp 2023-02-27 09:28:45 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Jiunge na [HackenProof Discord](https://discord.com/invite/N3FrSbmwdy) server ili kuwasiliana na wadukuzi wenye uzoefu na wawindaji wa tuzo za mdudu!`
hp 2023-02-27 09:28:45 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Machapisho ya Kuhack\`
			`Shiriki na yaliyomo yanayochimba katika msisimko na changamoto za kuhack`
hp 2023-02-27 09:28:45 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Taarifa za Kuhack za Wakati Halisi\`
			`Kaa up-to-date na ulimwengu wa kuhack wenye kasi kupitia habari za wakati halisi na ufahamu`
hackenproof 2023-07-14 14:20:34 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`Matangazo ya Karibuni\`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Baki mwenye habari na tuzo mpya za mdudu zinazoanzishwa na sasisho muhimu za jukwaa`
hackenproof 2023-07-14 14:20:34 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Jiunge nasi kwenye [Discord](https://discord.com/invite/N3FrSbmwdy) na anza kushirikiana na wadukuzi bora leo!`
GitBook: [#3633] No subject 2022-10-27 23:22:18 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`## Taarifa Msingi`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Itifaki ya Wito wa Mbali wa Microsoft (MSRPC), mfano wa mteja-seva unaoruhusu programu kuomba huduma kutoka kwa programu iliyoko kwenye kompyuta nyingine bila kuelewa maelezo ya mtandao, ilichochewa awali kutoka kwa programu ya chanzo wazi na baadaye ikafanyiwa maendeleo na kuhakikiwa na Microsoft.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`Mwambo wa mwisho wa RPC unaweza kufikiwa kupitia bandari za TCP na UDP 135, SMB kwenye TCP 139 na 445 (na kikao cha null au kilichoidhinishwa), na kama huduma ya wavuti kwenye bandari ya TCP 593.`
GitBook: [#2777] gitbookissooooo slow I cannot write 2021-10-18 11:21:18 +00:00			```
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			`135/tcp open msrpc Microsoft Windows RPC`
			```
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`## Jinsi gani MSRPC inavyofanya kazi?`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Kuanzishwa na programu ya mteja, mchakato wa MSRPC unahusisha kuita utaratibu wa bandia wa ndani ambao kisha huingiliana na maktaba ya muda wa mteja ili kuandaa na kutuma ombi kwa seva. Hii ni pamoja na kubadilisha parameta kuwa muundo wa Uwakilishi wa Data wa Mtandao wa kawaida. Chaguo la itifaki ya usafirishaji linapangwa na maktaba ya muda ikiwa seva iko mbali, ikihakikisha RPC inatumwa kupitia safu ya mtandao.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
a 2024-02-05 02:28:59 +00:00			`![https://0xffsec.com/handbook/images/msrpc.png](https://0xffsec.com/handbook/images/msrpc.png)`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`## Kutambua Huduma za RPC Zilizofichuliwa`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Ufunuo wa huduma za RPC kote kwenye TCP, UDP, HTTP, na SMB unaweza kugunduliwa kwa kuuliza huduma ya mchotaji wa RPC na vituo vya mwisho binafsi. Zana kama rpcdump hufanikisha kutambua huduma za RPC za kipekee, zinazotambuliwa na thamani za IFID, zikifunua maelezo ya huduma na vifungo vya mawasiliano:`
GitBook: [#2777] gitbookissooooo slow I cannot write 2021-10-18 11:21:18 +00:00			```
a 2024-02-05 02:28:59 +00:00			`D:\rpctools> rpcdump [-p port] <IP>`
			`IFID: 5a7b91f8-ff00-11d0-a9b2-00c04fb6e6fc version 1.0`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			`Annotation: Messenger Service`
			`UUID: 00000000-0000-0000-0000-000000000000`
a 2024-02-05 02:28:59 +00:00			`Binding: ncadg_ip_udp:<IP>[1028]`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Access kwa huduma ya RPC locator inawezeshwa kupitia itifaki maalum: ncacn\_ip\_tcp na ncadg\_ip\_udp kwa kupata kupitia bandari 135, ncacn\_np kwa uunganisho wa SMB, na ncacn\_http kwa mawasiliano ya RPC yanayotegemea wavuti. Amri zifuatazo zinaonyesha matumizi ya moduli za Metasploit kufanya ukaguzi na kuingiliana na huduma za MSRPC, zikilenga hasa bandari 135:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`use auxiliary/scanner/dcerpc/endpoint_mapper`
			`use auxiliary/scanner/dcerpc/hidden`
			`use auxiliary/scanner/dcerpc/management`
			`use auxiliary/scanner/dcerpc/tcp_dcerpc_auditor`
			`rpcdump.py <IP> -p 135`
			```
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			All options except `tcp_dcerpc_auditor` are specifically designed for targeting MSRPC on port 135.
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`#### Violezo vya RPC vya Kumbukumbu`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
a 2024-02-08 21:36:35 +00:00			`* IFID: 12345778-1234-abcd-ef00-0123456789ab`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\lsarpc`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`* Maelezo: Kiolesura cha LSA, hutumika kuchambua watumiaji.`
a 2024-02-08 21:36:35 +00:00			`* IFID: 3919286a-b10c-11d0-9ba8-00c04fd92ef5`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\lsarpc`
			`* Maelezo: Kiolesura cha Huduma za Mwongozo wa LSA (DS), hutumika kuchambua udomen na mahusiano ya uaminifu.`
a 2024-02-08 21:36:35 +00:00			`* IFID: 12345778-1234-abcd-ef00-0123456789ac`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\samr`
			`* Maelezo: Kiolesura cha LSA SAMR, hutumika kufikia vipengele vya kumbukumbu ya SAM ya umma (k.m., majina ya watumiaji) na kuvunja nguvu nywila za watumiaji bila kujali sera ya kufunga akaunti.`
a 2024-02-08 21:36:35 +00:00			`* IFID: 1ff70682-0a51-30e8-076d-740be8cee98b`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\atsvc`
			`* Maelezo: Meneja wa kazi, hutumika kutekeleza amri kijijini.`
a 2024-02-08 21:36:35 +00:00			`* IFID: 338cd001-2244-31f1-aaaa-900038001003`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\winreg`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`* Maelezo: Huduma ya usajili wa kijijini, hutumika kufikia na kurekebisha usajili wa mfumo.`
a 2024-02-08 21:36:35 +00:00			`* IFID: 367abb81-9844-35f1-ad32-98f038001003`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\svcctl`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`* Maelezo: Meneja wa udhibiti wa huduma na huduma za seva, hutumika kuanza na kusitisha huduma kijijini na kutekeleza amri.`
a 2024-02-08 21:36:35 +00:00			`* IFID: 4b324fc8-1670-01d3-1278-5a47bf6ee188`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\srvsvc`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`* Maelezo: Meneja wa udhibiti wa huduma na huduma za seva, hutumika kuanza na kusitisha huduma kijijini na kutekeleza amri.`
a 2024-02-08 21:36:35 +00:00			`* IFID: 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			* Named Pipe: `\pipe\epmapper`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`* Maelezo: Kiolesura cha DCOM, hutumika kwa kuvunja nguvu nywila na kukusanya habari kupitia WM.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`### Kutambua Anwani za IP`
GitBook: [master] one page modified 2020-12-22 15:35:42 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Kwa kutumia [https://github.com/mubix/IOXIDResolver](https://github.com/mubix/IOXIDResolver), inayotoka kwa [utafiti wa Airbus](https://www.cyber.airbus.com/the-oxid-resolver-part-1-remote-enumeration-of-network-interfaces-without-any-authentication/), inawezekana kutumia njia ya _ServerAlive2_ ndani ya kiolesura cha _IOXIDResolver_.`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Njia hii imekuwa ikitumika kupata habari za kiolesura kama anwani ya IPv6 kutoka kwa sanduku la HTB _APT_. Angalia [hapa](https://0xdf.gitlab.io/2021/04/10/htb-apt.html) kwa mwongozo wa 0xdf APT, inajumuisha njia mbadala ya kutumia rpcmap.py kutoka [Impacket](https://github.com/SecureAuthCorp/impacket/) na _stringbinding_ (angalia hapo juu).`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00
			`### Kutekeleza RCE na sifa halali`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Inawezekana kutekeleza msimbo wa kijijini kwenye mashine, ikiwa sifa za mtumiaji halali zinapatikana kwa kutumia [dcomexec.py](https://github.com/fortra/impacket/blob/master/examples/dcomexec.py) kutoka kwa mfumo wa impacket.`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00
			`Kumbuka kujaribu na vitu tofauti vinavyopatikana`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`* ShellWindows`
			`* ShellBrowserWindow`
			`* MMC20`
Update 135-pentesting-msrpc.md Adding few details about the way to get ips and more ressources including HTB APT writeup. 2021-04-12 14:34:48 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`## Bandari 593`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`rpcdump.exe kutoka [rpctools](https://resources.oreilly.com/examples/9780596510305/tree/master/tools/rpctools) inaweza kuingiliana na bandari hii.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`## Marejeo`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00
a 2024-02-05 02:28:59 +00:00			`* [https://www.cyber.airbus.com/the-oxid-resolver-part-1-remote-enumeration-of-network-interfaces-without-any-authentication/](https://www.cyber.airbus.com/the-oxid-resolver-part-1-remote-enumeration-of-network-interfaces-without-any-authentication/)`
			`* [https://www.cyber.airbus.com/the-oxid-resolver-part-2-accessing-a-remote-object-inside-dcom/](https://www.cyber.airbus.com/the-oxid-resolver-part-2-accessing-a-remote-object-inside-dcom/)`
			`* [https://0xffsec.com/handbook/services/msrpc/](https://0xffsec.com/handbook/services/msrpc/)`
GitBook: [#3633] No subject 2022-10-27 23:22:18 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`<figure><img src="../.gitbook/assets/image (380).png" alt=""><figcaption></figcaption></figure>`
hackenproof 2023-07-14 14:20:34 +00:00
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`Jiunge na [HackenProof Discord](https://discord.com/invite/N3FrSbmwdy) server ili kuwasiliana na wadukuzi wenye uzoefu na wawindaji wa tuzo za mdudu!`
GitBook: [#3633] No subject 2022-10-27 23:22:18 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Machapisho ya Udukuzi\`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Shiriki na maudhui yanayochimba ndani ya msisimko na changamoto za udukuzi`
hp 2023-02-27 09:28:45 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Habari za Udukuzi za Wakati Halisi\`
Translated ['network-services-pentesting/135-pentesting-msrpc.md'] to sw 2024-03-25 14:09:44 +00:00			`Kaa sawa na ulimwengu wa udukuzi wenye kasi kupitia habari za wakati halisi na ufahamu`
hp 2023-02-27 09:28:45 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/aw2 2024-05-05 22:47:30 +00:00			`Matangazo Mapya\`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 03:36:12 +00:00			`Baki mwelekezi na tuzo mpya za mdudu zinazoanzishwa na sasisho muhimu za jukwaa`
hp 2023-02-27 09:28:45 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Jiunge nasi kwenye [Discord](https://discord.com/invite/N3FrSbmwdy) na anza kushirikiana na wadukuzi bora leo!`