Public/Invoke-Phase10AccessSensitiveData.ps1
|
function Invoke-Phase10AccessSensitiveData { ################################################################################ ##### ##### ##### Run the Attack Phase - Access Sensitive Data ##### ##### ##### ################################################################################ Param ( [switch]$UnAttended, [switch]$Continue, [Switch]$EnableLogging, [switch]$SkipImages, [switch]$SkipClearHost, [switch]$AS2GoDemo ) $CurrentFunction = Get-FunctionName Write-Log -Message "### Start Function $CurrentFunction ###" $StartRunTime = (Get-Date).ToString($Script:DateFormatLog) #################### main code | out- host ##################### If ($SkipSensitiveDataAccess) { Write-Log -Message "Skipped Attack Phase - $($Script:Phase10.toupper())" } else { If (-not $SkipClearHost) { Clear-Host } If (-not $AS2GoDemo) { Set-NewColorSchema -NewStage $Script:InitialStart Get-AS2GoSettings } Update-WindowTitle -NewTitle $Script:Phase10 Set-KeyValue -key "LastStage" -NewValue $Script:Phase10 If (-not $SkipImages) { Show-Phases -Phase "phase_010.html" } If (-not $SkipClearHost) { Clear-Host } Invoke-Output -T Header -M "Attack Phase - $($Script:Phase10.toupper())" Invoke-Output -T Bullet "Enumerate available network shares on a domain controller" Invoke-Output -T Bullet "Enumerate the content of exposed backup shares" Invoke-Output -T Bullet "Attempt to open a command console on a privileged admin workstation (PAW)" If ($UnAttended) { $answer = $Yes } else { $answer = Show-DecisionPrompt } If ($answer -eq $yes) { Start-Phase10DataAccess } } ######################## main code ############################ $runtime = Get-RunTime -StartRunTime $StartRunTime Write-Log -Message " Run Time: $runtime [h] ###" Write-Log -Message "### End Function $CurrentFunction ###" } |