Code Monkey home page Code Monkey logo

powershell-tests's Introduction

Powershell Test Scripts

The basics

Launch the logging_server.ps1 script (doesn't need to be elevated). This will start a listener on port 8443 or which ever port was provided as an argument. Any data that is sent over a TCP connection to this port will be appended to a text file. The text file will be created in the same directory the script is run from.

Misc notes

The disk encryption module requires a GPO to be modified to enable BitLocker full disk encryption if there is no TPM present

Ensure PSRemoting is enabled on endpoints

powershell.exe Enable-PSRemoting
powershell.exe Set-Item wsman:\localhost\Client\TrustedHosts -Value "172.25.0.139"

Note:

  1. This requires an elevated powershell terminal to run
  2. The network profile will also need to be either domain or private
  3. Trusted host might need to be added

Test Parameters

Screen Share

:param str: dest
    format: :<listening-port>/<endpoint>
    example: :8443/stream
:param int: duration
    format: X (in seconds)
    example: 120

UDP Stream

:param str: dest
    format: "<destination-socket>"
    example: "172.25.0.16:1234"
:param str: file
    format: "C:\path\to\file.extension"
    example: "C:\Users\user\Downloads\Rick%20Astley%20-%20Never%20Gonna%20Give%20You%20Up.mp4"
:param int: duration
    format: X (in seconds)
    example: 120

Terminate Processes

:param list: services
    format: "item1,item2,item3"
    example: "excel,winword,outlook,chrome,msedge"
:param int: minDelay
    format: x (in seconds)
    example: 20
:param int: maxDelay
    format: X (in seconds)
    example: 120
:param int: iterations
    format: x
    example: 10

Key Logger

:param int: duration
    format: X (in seconds)
    example: 120

Running a test

Note: The keylogger test will be flagged by any running antimalware/antivirus. This is by design and should be accounted for when running that test.

Example run

Using script locally

powershell.exe .\vlc-screen-share.ps1  -dest ":8443/wds" -duration 10

Using script remotely

powershell.exe .\ic-test.ps1 -test $testName

This will prompt for credentials to connect to a remote machine. If they are valid, it will create a scheduled task for two minutes from the time the script was invoked. This will then run the test as the logged in user's session. note at this stage, all arguments including remote host connection details are hard coded. On the TODO.md

powershell-tests's People

Contributors

alexh0661 avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.