rpcclientのepmlookupコマンドでMSRPCインターフェイスのIFID値を列挙することで、
稼働中のサービスコンポネントを列挙することが出来る
$ rpcclient -I 10.10.0.1 -U owner pocketpc
稼働中のサービスコンポネントを列挙することが出来る
$ rpcclient -I 10.10.0.1 -U owner pocketpc
rpcclient $> epmlookup
~ 12345678-1234-abcd-ef00-0123456789ab@ncacn_np:\\POCKETPC[\PIPE\protected_storage]: IPSec Policy agent endpoint
~ 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5@ncalrpc:[dhcpcsvc]: DHCP Client LRPC Endpoint
~ 1ff70682-0a51-30e8-076d-740be8cee98b@ncalrpc:[dhcpcsvc]:
~ 1ff70682-0a51-30e8-076d-740be8cee98b@ncalrpc:[wzcsvc]:
~ 1ff70682-0a51-30e8-076d-740be8cee98b@ncalrpc:[OLEABE799515DAE497F90B8E7472B56]:
~ 1ff70682-0a51-30e8-076d-740be8cee98b@ncacn_np:\\POCKETPC[\PIPE\atsvc]:
~ 378e52b0-c0a9-11cf-822d-00aa0051e40f@ncalrpc:[dhcpcsvc]:
~ 378e52b0-c0a9-11cf-822d-00aa0051e40f@ncalrpc:[wzcsvc]:
~ 378e52b0-c0a9-11cf-822d-00aa0051e40f@ncalrpc:[OLEABE799515DAE497F90B8E7472B56]:
~ 378e52b0-c0a9-11cf-822d-00aa0051e40f@ncacn_np:\\POCKETPC[\PIPE\atsvc]:
~ 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53@ncalrpc:[dhcpcsvc]:
~ 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53@ncalrpc:[wzcsvc]:
~ 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53@ncalrpc:[OLEABE799515DAE497F90B8E7472B56]:
~ 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53@ncacn_np:\\POCKETPC[\PIPE\atsvc]:
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[dhcpcsvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[wzcsvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[OLEABE799515DAE497F90B8E7472B56]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncacn_np:\\POCKETPC[\PIPE\atsvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[AudioSrv]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncacn_np:\\POCKETPC[\PIPE\wkssvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncacn_np:\\POCKETPC[\pipe\keysvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[keysvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[SECLOGON]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[senssvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncacn_np:\\POCKETPC[\PIPE\srvsvc]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncacn_np:\\POCKETPC[\pipe\trkwks]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncalrpc:[trkwks]: ICF+ FW API
~ d674a233-5829-49dd-90f0-60cf9ceb7129@ncacn_np:\\POCKETPC[\PIPE\W32TIME]: ICF+ FW API
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[dhcpcsvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[wzcsvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[OLEABE799515DAE497F90B8E7472B56]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncacn_np:\\POCKETPC[\PIPE\atsvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[AudioSrv]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncacn_np:\\POCKETPC[\PIPE\wkssvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncacn_np:\\POCKETPC[\pipe\keysvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[keysvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[SECLOGON]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[senssvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncacn_np:\\POCKETPC[\PIPE\srvsvc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncacn_np:\\POCKETPC[\pipe\trkwks]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[trkwks]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncacn_np:\\POCKETPC[\PIPE\W32TIME]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncacn_np:\\POCKETPC[\PIPE\browser]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[tapsrvlpc]: Unimodem LRPC Endpoint
~ 2f5f6521-cb55-1059-b446-00df0bce31db@ncalrpc:[unimdmsvc]: Unimodem LRPC Endpoint
~ 12345678-1234-abcd-ef00-0123456789ab@ncacn_np:\\POCKETPC[\PIPE\lsass]: IPSec Policy agent endpoint
~ 12345678-1234-abcd-ef00-0123456789ab@ncalrpc:[audit]: IPSec Policy agent endpoint
~ 12345678-1234-abcd-ef00-0123456789ab@ncalrpc:[securityevent]: IPSec Policy agent endpoint
~ 12345678-1234-abcd-ef00-0123456789ab@ncalrpc:[protected_storage]: IPSec Policy agent endpoint
rpccli_epm_Lookup returned 0 entries, expected one
- 関連記事
-
-
RainbowCrackとやらを使ってみた
2011/12/17
-
airdecap-ngでWEP,WPA-TKIPパケットを復号化
2011/11/18
-
MS-RPC サービスを列挙
2011/11/15
-
MS-RPCを利用してWindowsアカウント情報を列挙
2011/11/14
-
arpspoofを使ってパケット盗聴
2011/11/11
-
