|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-08-19 | |
| Rule Name: | Tool AtExec Detected | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | AtExec is a tool in the Impacket toolkit. It uses windows AT timing tasks and executes through the sctask command. It can execute commands with SYSTEM privileges or the corresponding user. It is a common tool for hackers to penetrate the Windows intranet. | |
| Impact: | An attacker could exploit this vulnerability to execute windows command. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Turn off TCP port 445 and 139. |