CoCalc -- enum

CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!

GitHub Repository: rapid7/metasploit-framework
Path: blob/master/documentation/modules/post/windows/gather/enum_av.md
Views: ¹⁹⁰⁴

Vulnerable Application

This module will enumerate all installed AntiVirus applications on the target Windows OS

Verification Steps

Start msfconsole
Get meterpreter session
Do: use post/windows/gather/enum_av
Do: set SESSION <session id>
Do: run

Options

SESSION

The session to run this module on.

Scenarios

Windows 10 (20H2 build 19042.1645)

[*] Meterpreter session 1 opened (192.168.1.3:4444 -> 192.168.1.4:49178) at 2019-12-10 14:18:44 -0700
meterpreter > bg
[*] Backgrounding session 1...

msf6 > use windows/gather/enum_av
msf6 post(windows/gather/enum_av) > set session 1
session => 1
msf6 post(windows/gather/enum_av) > run

[*] Found AV product:
displayName=Windows Defender
instanceGuid={D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
pathToSignedProductExe=windowsdefender://
pathToSignedReportingExe=%ProgramFiles%\Windows Defender\MsMpeng.exe
productState=401664
timestamp=Thu, 21 Apr 2022 15:50:46 GMT

[*] Post module execution completed

CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!

Vulnerable Application

Verification Steps

Options

Scenarios

Windows 10 (20H2 build 19042.1645)

Product

Resources

Company