infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Allow additional fields

bug/bundler_fix
Meatballs 2015-02-16 15:24:28 +00:00
parent b77aed1c56
commit 12f2828829
No known key found for this signature in database
GPG Key ID: 5380EAF01F2F8B38
1 changed files with 13 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
modules/post/windows/gather/enum_ad_users.rb
View File

@ -41,6 +41,7 @@ class Metasploit3 < Msf::Post
OptBool.new('STORE_LOOT', [true, 'Store file in loot.', false]),
OptBool.new('EXCLUDE_LOCKED', [true, 'Exclude in search locked accounts..', false]),
OptBool.new('EXCLUDE_DISABLED', [true, 'Exclude from search disabled accounts.', false]),
OptString.new('ADDITIONAL_FIELDS', [false, 'Additional fields to retrieve, comma sperated', nil]),
OptEnum.new('UAC', [true, 'Filter on User Account Control Setting.', 'ANY',
[
'ANY',
@ -54,10 +55,17 @@ class Metasploit3 < Msf::Post
end
def run
@user_fields = USER_FIELDS.dup
if datastore['ADDITIONAL_FIELDS']
additional_fields = datastore['ADDITIONAL_FIELDS'].gsub(/\s+/,"").split(',')
@user_fields.push(*additional_fields)
end
max_search = datastore['MAX_SEARCH']
begin
q = query(query_filter, max_search, USER_FIELDS)
q = query(query_filter, max_search, @user_fields)
rescue ::RuntimeError, ::Rex::Post::Meterpreter::RequestError => e
# Can't bind or in a network w/ limited accounts
print_error(e.message)
@ -99,7 +107,7 @@ class Metasploit3 < Msf::Post
'Header' => "Domain Users",
'Indent' => 1,
'SortIndex' => -1,
'Columns' => USER_FIELDS
'Columns' => @user_fields
)
results.each do |result|
@ -113,9 +121,9 @@ class Metasploit3 < Msf::Post
end
end
username = result[USER_FIELDS.index('sAMAccountName')][:value]
uac = result[USER_FIELDS.index('userAccountControl')][:value]
lockout_time = result[USER_FIELDS.index('lockoutTime')][:value]
username = result[@user_fields.index('sAMAccountName')][:value]
uac = result[@user_fields.index('userAccountControl')][:value]
lockout_time = result[@user_fields.index('lockoutTime')][:value]
store_username(username, uac, lockout_time, domain, domain_ip)
results_table << row