infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Added LDAP filter to identify groups of interest

bug/bundler_fix
Stuart Morgan 2015-12-18 14:10:00 +00:00
parent 662010fce7
commit 5b07a35cef
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
modules/post/windows/gather/ad_groupusers_to_sql.rb
View File

@ -29,6 +29,7 @@ class Metasploit3 < Msf::Post
)) ))
register_options([ register_options([
OptString.new('GROUP_FILTER', [true, 'Filter to identify groups', '(objectClass=group)']),
OptBool.new('SHOW_USERGROUPS', [true, 'Show the user/group membership in a greppable form.', false]), OptBool.new('SHOW_USERGROUPS', [true, 'Show the user/group membership in a greppable form.', false]),
OptBool.new('SHOW_COMPUTERS', [true, 'Show basic computer information in a greppable form.', false]), OptBool.new('SHOW_COMPUTERS', [true, 'Show basic computer information in a greppable form.', false]),
OptInt.new('THREADS', [true, 'Number of threads to spawn to gather membership of each group.', 20]) OptInt.new('THREADS', [true, 'Number of threads to spawn to gather membership of each group.', 20])
@ -45,9 +46,8 @@ class Metasploit3 < Msf::Post
# Download the list of groups from Active Directory # Download the list of groups from Active Directory
vprint_status "Retrieving AD Groups" vprint_status "Retrieving AD Groups"
begin begin
group_filter = '(objectClass=group)'
group_fields = ['distinguishedName', 'objectSid', 'samAccountType', 'sAMAccountName', 'whenChanged', 'whenCreated', 'description', 'groupType', 'adminCount'] group_fields = ['distinguishedName', 'objectSid', 'samAccountType', 'sAMAccountName', 'whenChanged', 'whenCreated', 'description', 'groupType', 'adminCount']
groups = query(group_filter, max_search, group_fields) groups = query(datastore['GROUP_FILTER'], max_search, group_fields)
rescue ::RuntimeError, ::Rex::Post::Meterpreter::RequestError => e rescue ::RuntimeError, ::Rex::Post::Meterpreter::RequestError => e
print_error("Error(Group): #{e.message}") print_error("Error(Group): #{e.message}")
return return