Spidering Shares
Spidering shares with CrackMapExec
Options for spidering shares of remote systems. Example, Spider the C drive for files with txt in the name (finds both sometxtfile.html and somefile.txt)
Notice the '$' character has to be escaped. (example shown can be used as-is in a kali linux terminal)
#~ cme SMB <IP> -u USER -p PASSWORD --spider C\$ --pattern txt
The module
spider_plus
allows you to list and dump all files from all readable shares thanks to @vincdcrackmapexec smb 10.10.10.10 -u 'user' -p 'pass' -M spider_plus

Using the option
-o READ_ONLY=false
all files will be copied on the hostcrackmapexec smb 10.10.10.10 -u 'user' -p 'pass' -M spider_plus -o READ_ONLY=false

Last modified 2yr ago