Skip to content
/ HostReconTool Public

Tool that gathers data from local and remote Windows systems and compiles it in a SQLite database.

License

MIT license
3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bhitchens/HostReconTool

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

81 Commits
.gitignore
.gitignore
 
 
HRT.py
HRT.py
 
 
LICENSE
LICENSE
 
 
README
README
 
 
psexecqueries.py
psexecqueries.py
 
 
wmiqueries.py
wmiqueries.py
 
 

Repository files navigation

Host Recon Tool

Dependencies:
Python 3.7+
pywin32: https://pypi.python.org/pypi/pywin32
python WMI: https://pypi.python.org/pypi/WMI/
netaddr: https://pypi.python.org/pypi/netaddr
psexec: https://docs.microsoft.com/en-us/sysinternals/downloads/psexec

Run HRT.py with desired arguments.

If run run without -r or --remote, the program will run the provided arguments on the local system. The 
script must be run with administrator priviledges. For remote targets, it must be run with an account 
with administrator priviledges on the remote target, and the remote target must have WMI queries and 
SMB allowed.

  -h, --help			show this help message and exit
  -d DB, --db DB		Provide database name or full path to specify location
  -o, --stout			Send results to Standard Out
  -v, --verbose			Print verbose results
  -i IPADDR, --ipaddr IPADDR	IP Address or CIDR-Notation range of IP Addresses. Exclude for Local Machine
  -q QUERY [QUERY ...], --query QUERY [QUERY ...] List data to be queried.
  
				QUERY options:
	
					Run groups of queries:
						all             Run all queries
						all_system      Run all system queries
						all_user        Run all users queries
						all_hardware    Run all hardware queries
						all_software    Run all software queries
						all_network     Run all network queries
		
					Information about system:
						sysinfo         Gather System Information
						patches         Currently Applied Patches (Quick Fix Engineering)
						timezone        Timezone data
						bios            BIOS Data
						os              Operating System Data
						vss             Volume Shadow Copy Data
						
					Information about users:
						users           User account data
						netlogin        Network Login data
						profiles        User Profiles data
						groups          Group data
								
					Information about hardware:
						pdisks          Physical Disk data
						ldisks          Logical Disk data
						memory          Physical Memory data
						processors      Processor Data
						pnp             Plug-n-play Devices	Data
									
					Information about software:
						startup         Startup Program data
						drivers         Drivers Data
						process         Processes data
						services        Services data
						products        Products Data

					Information about network:
						adapters        Netork Adapter data
						ports           Open Ports
						arp             Arp Table Data
						routes          Routing Table and Interface Data
						wireless        Wireless Connection Data
						shares          Shared Resources data

About

Tool that gathers data from local and remote Windows systems and compiles it in a SQLite database.

Topics

windows recon security-tools

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages