Selecting & Using a Protocol
Selecting & Using a Protocol on CrackMapExec

Using a Protocol

To use a specific protocol run cme <protocol> <protocol options>

Viewing Available Protocols

Running cme --help will list general options and protocols that are available (Notice the 'protocols' section below):
1
#~ cme --help
2
usage: cme [-h] [-v] [-t THREADS] [--timeout TIMEOUT] [--jitter INTERVAL]
3
[--darrell] [--verbose]
4
{http,smb,mssql} ...
5
​
6
______ .______ ___ ______ __ ___ .___ ___. ___ .______ _______ ___ ___ _______ ______
7
/ || _ \ / \ / || |/ / | \/ | / \ | _ \ | ____|\ \ / / | ____| / |
8
| ,----'| |_) | / ^ \ | ,----'| ' / | \ / | / ^ \ | |_) | | |__ \ V / | |__ | ,----'
9
| | | / / /_\ \ | | | < | |\/| | / /_\ \ | ___/ | __| > < | __| | |
10
| `----.| |\ \----. / _____ \ | `----.| . \ | | | | / _____ \ | | | |____ / . \ | |____ | `----.
11
\______|| _| `._____|/__/ \__\ \______||__|\__\ |__| |__| /__/ \__\ | _| |_______|/__/ \__\ |_______| \______|
12
​
13
A swiss army knife for pentesting networks
14
Forged by @byt3bl33d3r using the powah of dank memes
15
​
16
Version: 4.0.0dev
17
Codename: 'Sercurty'
18
​
19
optional arguments:
20
-h, --help show this help message and exit
21
-v, --version show program's version number and exit
22
-t THREADS set how many concurrent threads to use (default: 100)
23
--timeout TIMEOUT max timeout in seconds of each thread (default: None)
24
--jitter INTERVAL sets a random delay between each connection (default: None)
25
--darrell give Darrell a hand
26
--verbose enable verbose output
27
​
28
protocols:
29
available protocols
30
​
31
{http,smb,mssql}
32
http own stuff using HTTP(S)
33
smb own stuff using SMB and/or Active Directory
34
mssql own stuff using MSSQL and/or Active Directory
35
​
36
Serrrrrrcuuurrrty?
Copied!

Viewing Protocol options

Run cme <protocol> --help to view the options the specified protocol supports. For example to view all of the SMB protocol options:
1
#~ cme smb --help
2
usage: cme smb [-h] [-id CRED_ID [CRED_ID ...]] [-u USERNAME [USERNAME ...]]
3
[-p PASSWORD [PASSWORD ...]]
4
[--gfail-limit LIMIT | --ufail-limit LIMIT | --fail-limit LIMIT]
5
[-M MODULE] [-o MODULE_OPTION [MODULE_OPTION ...]] [-L]
6
[--options] [--server {http,https}] [--server-host HOST]
7
[--server-port PORT] [-H HASH [HASH ...]]
8
[-d DOMAIN | --local-auth] [--smb-port {139,445}]
9
[--share SHARE] [--gen-relay-list OUTPUT_FILE]
10
[--sam | --lsa | --ntds {vss,drsuapi}] [--shares] [--sessions]
11
[--disks] [--loggedon-users] [--users [USER]]
12
[--groups [GROUP]] [--local-groups [GROUP]] [--pass-pol]
13
[--rid-brute [MAX_RID]] [--wmi QUERY]
14
[--wmi-namespace NAMESPACE] [--spider SHARE]
15
[--spider-folder FOLDER] [--content] [--exclude-dirs DIR_LIST]
16
[--pattern PATTERN [PATTERN ...] | --regex REGEX [REGEX ...]]
17
[--depth DEPTH] [--only-files]
18
[--exec-method {mmcexec,smbexec,wmiexec,atexec}] [--force-ps32]
19
[--no-output] [-x COMMAND | -X PS_COMMAND]
20
[target [target ...]]
21
​
22
positional arguments:
23
target the target IP(s), range(s), CIDR(s), hostname(s),
24
FQDN(s) or file(s) containg a list of targets
25
​
26
optional arguments:
27
-h, --help show this help message and exit
28
-id CRED_ID [CRED_ID ...]
29
database credential ID(s) to use for authentication
30
-u USERNAME [USERNAME ...]
31
username(s) or file(s) containing usernames
32
-p PASSWORD [PASSWORD ...]
33
password(s) or file(s) containing passwords
34
--gfail-limit LIMIT max number of global failed login attempts
35
--ufail-limit LIMIT max number of failed login attempts per username
36
--fail-limit LIMIT max number of failed login attempts per host
37
-M MODULE, --module MODULE
38
payload module to use
39
-o MODULE_OPTION [MODULE_OPTION ...]
40
payload module options
41
-L, --list-modules list available modules
42
--options display module options
43
--server {http,https}
44
use the selected server (default: https)
45
--server-host HOST IP to bind the server to (default: 0.0.0.0)
46
--server-port PORT start the server on the specified port
47
-H HASH [HASH ...], --hash HASH [HASH ...]
48
​
49
-- SNIP --
Copied!
Last modified 1yr ago