swisskyrepo
/
NetExec
mirror of https://github.com/swisskyrepo/NetExec.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix: try/except updating the database on spoolers and zerologon modules

main
Marshall Hallenbeck 2023-03-09 18:38:42 -05:00
parent cbd312eb21
commit e6022139aa
2 changed files with 11 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
cme/modules/spooler.py
View File

@ -92,8 +92,11 @@ class CMEModule:
logging.debug(" %s" % binding) logging.debug(" %s" % binding)
logging.debug("") logging.debug("")
context.log.highlight('Spooler service enabled') context.log.highlight('Spooler service enabled')
host = context.db.get_computers(connection.host)[0] try:
context.db.add_computer(host.ip, host.hostname, host.domain, host.os, host.smbv1, host.signing, spooler=True) host = context.db.get_computers(connection.host)[0]
context.db.add_computer(host.ip, host.hostname, host.domain, host.os, host.smbv1, host.signing, spooler=True)
except Exception as e:
logging.debug(f"Error updating spooler status in database")
break break
if entries: if entries:

8
cme/modules/zerologon.py
View File

@ -12,6 +12,7 @@ from impacket import crypto
import hmac, hashlib, struct, sys, socket, time import hmac, hashlib, struct, sys, socket, time
from binascii import hexlify, unhexlify from binascii import hexlify, unhexlify
from subprocess import check_call from subprocess import check_call
import logging
# Give up brute-forcing after this many attempts. If vulnerable, 256 attempts are expected to be neccessary on average. # Give up brute-forcing after this many attempts. If vulnerable, 256 attempts are expected to be neccessary on average.
MAX_ATTEMPTS = 2000 # False negative chance: 0.04% MAX_ATTEMPTS = 2000 # False negative chance: 0.04%
@ -34,8 +35,11 @@ class CMEModule:
if perform_attack('\\\\' + connection.hostname, connection.host, connection.hostname): if perform_attack('\\\\' + connection.hostname, connection.host, connection.hostname):
context.log.highlight("VULNERABLE") context.log.highlight("VULNERABLE")
context.log.highlight("Next step: https://github.com/dirkjanm/CVE-2020-1472") context.log.highlight("Next step: https://github.com/dirkjanm/CVE-2020-1472")
host = context.db.get_computers(connection.host)[0] try:
context.db.add_computer(host.ip, host.hostname, host.domain, host.os, host.smbv1, host.signing, zerologon=True) host = context.db.get_computers(connection.host)[0]
context.db.add_computer(host.ip, host.hostname, host.domain, host.os, host.smbv1, host.signing, zerologon=True)
except Exception as e:
logging.debug(f"Error updating zerologon status in database")
def fail(msg): def fail(msg):