SCShell - Service Hijack Lateral Movement

SCShell uses the Service Control Manager to overwrite a service binPath, giving fileless lateral movement.

Run via Proxychains

proxychains python3 scshell.py svc-auth@172.16.242.176

Reference: https://github.com/Mr-Un1k0d3r/SCShell