I am currently looking at free solutions that can acquire a system's physical memory over the network and allow credentials and the data passed across the network to be encrypted.
I looked at psexec;however, it sends credentials in clear text but could be used to launch programs like HB Gary Fastdump on the remote machine and acquire its memory
I have seen on forums that a program called RemoteExec can encrypt credentials and traffic being passed over the network.
Do you guys have any recommendations?
Taurean,
Direct use of psexec with credentials is a bad stuff indeed, as it sends user/pwd in the clear text.
However, there is a simple trick which allows you to establish your connection to a remote host with encrypted credentials - then you can use psexec without credentials at all (as it will use your established security context).
All you need to do is the following command
net use \\<server name>\IPC$ /USER<domain>\<account>
You will be asked for the password (encrypted on transit!) and when done, you're good to use psexec (or any other tool).
Don't forget to delete the connection when the job is done, using
net use \\<server name>\IPC$ /Delete
Good luck!
Greg
Not only do you have to worry about attackers sniffing your password, but