|
|
||||||||||||||||||
|
Full Version: At Command !
this is a tip for the noooobbbsss among us..
but its a helpfull tip for many thing-remote shutdown'netbios hacking etc... simply in a shell type net time... lets say that it says that the local time is 17:59 and then: at 18:00 c:\hack.exe and at 18:00 it will lounch hack.exe ! extermly usefull for hacking though shares... n joy the tip... 
You are right Axl the AT command schedules commands and programs to run on a computer at a specified time and date. The Schedule service must be running to use the AT command.
AT [\\computername] [ [id] [/DELETE] | /DELETE [/YES]] AT [\\computername] time [/INTERACTIVE] [ /EVERY:date[,...] | /NEXT:date[,...]] "command" \\computername Specifies a remote computer. Commands are scheduled on t local computer if this parameter is omitted. id Is an identification number assigned to a scheduled command. /delete Cancels a scheduled command. If id is omitted, all the scheduled commands on the computer are canceled. /yes Used with cancel all jobs command when no further confirmation is desired. time Specifies the time when command is to run. /interactive Allows the job to interact with the desktop of the user who is logged on at the time the job runs. /every:date[,...] Runs the command on each specified day(s) of the week or month. If date is omitted, the current day of the month is assumed. /next:date[,...] Runs the specified command on the next occurrence of the day (for example, next Thursday). If date is omitted, t current day of the month is assumed. "command" Is the Windows NT command, or batch program to be run.
interesting tips thanks
 I'll use it in local too so next time I'll don't dismiss any appuntament hehe works really great thanks dude
the AT command is a beautiful thing, however if you set it to run using a share its going to run on your own machine and not on the machine your mapped to...i guess im not sure of what your saying. why would you want a share if you have a shell? oh well!
BTW when you schedule an event it does show up in the scheduler menu. sorry rWp just read your post.
nice command, also used it a few times, BUT how the hell can u makde also another day ???? i just cant figure out how to start the file lets say in 5 days from now on.. i have seen the usage tho i cant figure :/
hope someone can help
cool trick man. but remember that at works in windows and linux. that's the best part of it
To use AT you need admin rights and netbios open. Why bother, use psexec.exe and execute it in one shot without having it show as a scheduled event.
AT was one way remote execution was done prior to the creation of psexec type utils that are available today. For the gui ppl there is a resource kit util called winat. I'm not saying AT is useless now, there's just better ways of remote execution that are cleaner, faster, and has remote copy and execute functions all rolled up into one.
psexec.exe is a much better tool now forget at commands.
i concur
See the problem with psexec is u need te admin$ open - and u can#t open it without using psexec on some machines - so you go around in a loop w/o a solution
At commadn doesn't need it - but u need to use an absolute time as opposed to a relative time (eg 5 sconds from now) so its annoying
.. I was going to write something but changed my mind, too bad I can only edit and not delete this
is there olso a command to logoff the system..?
like at 18:00 log off is there a command line?
It starts running at 18:00, what if its already running ?
Doest it runs it again ? And if the remote pc reboot, does it starts again ? Or do you have to let it start again ?
@zero-maitimax
use at 22:00 c:\path\shutdown.exe /f u can find shutdown.exe easy with google ... aTa
the rigt command for Windows XP to shutdown is:
shutdown -r -f -t 00 ;To reboot shutdown -r -f -t 00 ;To Shutdown
i don't need the program only a command line tnx anyway
and logoff? do you olso have for 2000/server i was thinking more like this C:\windows\RUNDLL.EXE user.exe,exitwindows this one shutdown but i need one that logoff..
There are also exes, like soon.exe wich do it all in once so you only need the exe file and computer name.
The bad side of AT is that its get logged..
yeah that's true if you open the schedules but i see you can olso use the command /delete so... maybe in comby of bat file it could work.. this soon program you are talking about.. do you have more info about it.. does it works with a ini file like: --=-=- start:11:20 open:c:\hack.exe start 11:21 kill:av program remove: c:\av.exe -=--= something like it??
tnx for the tip dude! usfull!
Umm yeah.. you could. Then you have to deal with busting a share and uploading the shutdown app to a executable path. You don't need it - just run
rundll32.exe user.exe,exitwindows and that'll shut down the box just the same.
if ya dont find it on google, ill add it..
is there a way to use AT command to shut down a program , or run a program every specified interval of time , that would help in killing AVs and Download suckers at my network without actually using a trojan or a program to do this
it's possible but then you need a second program to do it..
mm , can it be done by a very simple program , or does any cmd line command has timer ?
nice little trick, i never knew about this before
interesting tip thx dude
The at command can be used to get a system shell (local priviledge escalation)
C:\>time /T 16:12 C:\>whoami DOMAIN\USERNAME C:\>at 16:14 /interactive cmd.exe A new shell will open: C:\>whoami NT AUTHORITY\SYSTEM This is because the at service runs as SYSTEM. It doesn't always work, depends on configuration.
hello, this is going to be my first reply i think, i didnt replyed before because i was doing some research, looking for the spirit of the forum, and let me say that is like 80% of valuable ppl trying to help others, now passing to this reply... Axl, sayd
well, my opinion concerning to you first statment the noooobsss, well i think you dont need to be that specific in names concerning to the other part of the text, u explain the sintax and example of AT command, but what is that hack.exe? what dowes it do? i think that the ponint of AT cmd is for remote sched of servicees or commands, not locally as posted (in my opinion that doesnte explain much), u say about hacking shares? lol, u do that with that example? why didnt u refered something like shar scanners / brute force tools? note: that doesnt seems to be a valuable tip, thx anyway, maybe im in wrong mood today
@trxtrx
I think with hack.exe he means "any_hack_tool_you_want_to_run_with_SYSTEM_priviledges". This is just to show you how to run a tool with system priv's when you have a shell with limited priv's. My contrib was to show you how to run a interactive system shell locally. If you find this stuff boring there is always the possibility to just "don't post a reply". Think about it, what does your reply add to this thread?
wow, i never knew about this command before! very cool man
Though considering the AT command requires administrator privs. it's not so usefull... - as an exploit that is. Otherwise a fine demonstration of AT. -ed.
There is something important missing about at command !
IT RUNS AS SYSTEM So you have System previllege when run an application with that
check one post above yours....
The system Service "SHEDULER" must be running too {normally it is}
but @ my place here it isn't  just some info
Sorry all !
I don't know why didn't I saw that ! 
SWEET! Thanks guys, I never knew about this one.
Never heard about this command before and it both works in win32 and linux, thanks for the info m8
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
|
||||||||||||||||||
