Abusing DCOM For Yet Another Lateral Movement Technique Logo

Abusing DCOM For Yet Another Lateral Movement Technique

0
Free
Updated 11 March 2025
Offensive Security
Lateral Movement
Windows Security
Visit Website

This post discusses an alternate DCOM lateral movement discovery and payload execution method by locating DCOM registry key/values that point to the path of a non-existing binary on the 'remote' machine, providing an example method that may work if mobsync.exe is not in the default location on Windows 2008 R2 and Windows 2012 R2 systems.

FEATURES

EXPLORE BY TAGS

Lateral Movement

Windows Security

SIMILAR TOOLS

Injectus Logo
Injectus

A CRLF and open redirect fuzzer

Free
Offensive Security
Commix Logo
Commix

Open source penetration testing tool for detecting and exploiting command injection vulnerabilities.

Free
Offensive Security
Metta Logo
Metta

Metta is an information security preparedness tool for adversarial simulation.

Free
Offensive Security
Wfuzz Logo
Wfuzz

Wfuzz is a tool designed for bruteforcing Web Applications with multiple features like multiple injection points, recursion, and payload combinations.

Free
Offensive Security
LaZagne Project Logo
LaZagne Project

Open source application for retrieving passwords stored on a local computer with support for various software and platforms.

Free
Offensive Security
Ivy Logo
Ivy

Ivy is a payload creation framework for executing arbitrary VBA source code directly in memory, utilizing programmatical access to load, decrypt, and execute shellcode.

Free
Offensive Security
Havoc Logo
Havoc

A modern post-exploitation command and control framework with a client-server architecture and extensibility features.

Free
Offensive Security
Tugarecon Logo
Tugarecon

A subdomain enumeration tool for penetration testers and security researchers.

Free
Offensive Security
Exploit-Challenges Logo
Exploit-Challenges

Collection of vulnerable ARM binaries for beginner vulnerability researchers & exploit developers.

Free
Offensive Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy