Atomic Test #7 - System Owner/User Discovery Using Command Prompt

[prashanthpulisetti]

Details:
This atomic test is designed to identify the system owner or current user on a Windows machine using native command prompt utilities. The test executes a series of commands that extract user information and output it to a temporary file. This approach is beneficial for environments where PowerShell usage is restricted or closely monitored, providing an alternative method for gathering user details.

Testing:
The test was conducted on various Windows environments, including Windows 10 and Windows Server 2019. The following steps were performed:

1. Execution of the test commands via the Windows command prompt.
2. Verification of the output file creation in the specified directory.
3. Confirmation that the file contains the correct information about the system owner or user.
4. Execution of cleanup commands and verification of the removal of temporary files.

Automated testing was also conducted using a local script execution framework to ensure the test's compatibility and reliability across different systems and configurations.

Associated Issues:
There are currently no known issues associated with this pull request. It is designed to enhance the capability of the testing framework by providing additional methods for user discovery. Continuous monitoring and feedback will be essential to address any future issues that may arise.

[prashanthpulisetti]

Hi @clr2of8 or @MHaggis can you check this error once? in my code there is no where mentioned about output_path but the error says so. the following one is my code

executor:
  name: "command_prompt"
  elevation_required: false
  command: |
    set file=%TEMP%\user_info_%random%.tmp
    echo Username: %USERNAME% > %file%
    echo User Domain: %USERDOMAIN% >> %file%
    net users >> %file%
    query user >> %file%

[prashanthpulisetti]

Hi All, I found the issue and covered it up now. Thank you !!

[clr2of8]

🥇