powerdump.ps1 bug - corrupt hash fix

Browse Source

Fixed the bug where the hashes are not being extracted correctly when LM is disabled and history is enabled. 

Rather than relying on length, LM and NT headers are checked. Four bytes at 0xa0 show if LM exists and four bytes at 0xac show if NT exists. Details on this known issue can be found in the following whitepaper from blackhat:
https://media.blackhat.com/bh-us-12/Briefings/Reynolds/BH_US_12_Reynods_Stamp_Out_Hash_WP.pdf

bug/bundler_fix

Peter Marszalik 2014-11-18 23:10:57 -06:00

parent 2ac02d3997

commit 900aa9cd6b

1 changed files with 357 additions and 1 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Show Stats Download Patch File Download Diff File Expand all files Collapse all files

358

data/exploits/powershell/powerdump.ps1

View File

File diff suppressed because one or more lines are too long