SharpHook is inspired by the SharpRDPThief project, It uses various API hooks in order to give us the desired credentials.
In the background it uses the EasyHook project, Once the desired process is up and running SharpHook will automatically inject its dependencies into the target process and then, It will send us the credentials through EasyHook’s IPC server.
Supported Processes
| Process | API Call | Description | Progress |
|---|---|---|---|
| mstsc | CredUnPackAuthenticationBufferW | This will hook into mstsc and should give you Username, Password and the remote ip | DONE |
| runas | CreateProcessWithLogonW | This will hook into runas and should give you Username, Password and the domain name | DONE |
| powershell | CreateProcessWithLogonW | This will hook into powershell and should give you output for commands for when the user enters a different credentials. For example – Start-Process cmd -Credential X | DONE |
| cmd | RtlInitUnicodeStringEx | This should hook into cmd and then would be able to filter keywords like: PsExec,password etc.. | In Progress – Crashes cmd idk why |
| MobaXterm | CharUpperBuffA | This will hook into MobaXterm and should give you credentials for SSH and RDP logins | In Progress – Problems with this being a 32bit process and Fody not working. As a workaround you can compile the project as x86 and it’ll work just fine |
| explorer (UAC Prompt) | CredUnPackAuthenticationBufferW | This will hook into explorer and should give you Username, Password and the Domain name from the UAC Prompt | In Progress – UAC says access denied probably integrity levels problems |
Starship is a powerful, minimal, and highly customizable cross-shell prompt designed to enhance the terminal…
Lemmy is an innovative, open-source platform designed for link aggregation and discussion, providing a decentralized…
The latest release of ImHex v1.37.0 introduces a host of exciting features and improvements, enhancing…
Ghauri is a cutting-edge, cross-platform tool designed to automate the detection and exploitation of SQL…
Writing tools have become indispensable for individuals looking to enhance their writing efficiency, accuracy, and…
PatchWerk is a proof-of-concept (PoC) tool designed to clean NTDLL syscall stubs by patching syscall…