Commit Graph

732 Commits (11addb6b51364283fd90146050ea192f9f65bacb)

Author SHA1 Message Date
mpgn 95aad485fb Fix issue #412 2021-01-21 05:28:56 -05:00
mpgn 719f18ac78 Fix cmedb encoding error #439 2021-01-21 05:08:06 -05:00
mpgn 908d074815 Catch exception if domain controller not found --kdcHost 2021-01-21 03:54:26 -05:00
mpgn af2dc05b7e Add --continue-on-success option to ldap protocol 2021-01-21 03:47:45 -05:00
nodauf fffb5d4532 Add module get_description 2020-12-11 18:48:35 +01:00
mpgn 7210bc1eae Add better error management for --shares 2020-12-09 17:12:58 -05:00
mpgn f4ddfe749a
building binary in the workflow
fake commit
2020-12-09 18:30:33 +01:00
mpgn b79341aa2c Bump to version 5.1.4 2020-11-29 15:04:53 -05:00
mpgn b0aa66a074 Fix encode error on spider option #430 2020-11-27 18:46:41 -05:00
mpgn cc7573155f Fix pass policy max password age #435 2020-11-27 15:51:09 -05:00
mpgn b72678f896 Bump to impacket 0.9.22 2020-11-27 15:50:21 -05:00
byt3bl33d3r fb0bf67284
Update README.md 2020-11-16 13:29:17 -07:00
byt3bl33d3r 95f9d11b45 Modified banner 2020-11-16 13:21:41 -07:00
byt3bl33d3r cb5c8855ed Version 5.1.3 🔥
- Replaced Gevent with AsyncIO
- Shares are now logged in the database and can be queried
- You can now press enter while a scan is being performed and CME will
  give you a completion percentage and the number of hosts remaining to
  scan
2020-11-15 16:42:28 -07:00
byt3bl33d3r 119e5af997
Merge pull request #425 from byt3bl33d3r/dependabot/pip/cryptography-3.2
Bump cryptography from 3.1 to 3.2
2020-11-06 19:37:21 -07:00
dependabot[bot] 1598814ebb
Bump cryptography from 3.1 to 3.2
Bumps [cryptography](https://github.com/pyca/cryptography) from 3.1 to 3.2.
- [Release notes](https://github.com/pyca/cryptography/releases)
- [Changelog](https://github.com/pyca/cryptography/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/3.1...3.2)

Signed-off-by: dependabot[bot] <support@github.com>
2020-10-27 21:09:15 +00:00
mpgn dc95b51784
Merge pull request #419 from Dliv3/master
Fix mssql execute command error
2020-10-09 19:34:04 +02:00
byt3bl33d3r fc04fd905b
Update README.md 2020-10-08 22:09:55 -06:00
mpgn 395a466bf7
Update spider_plus.py 2020-10-07 23:11:37 +02:00
Dliv3 50bebac056 Fix mssql enum host info error 2020-10-01 22:46:13 +08:00
Dliv3 9f7a2851a7 Fix powershell b64encode error 2020-10-01 17:03:52 +08:00
Dliv3 7dde1a13f6 Update mssql check_if_admin 2020-10-01 16:12:16 +08:00
byt3bl33d3r 359dac9173 Fix for Docker Build 2020-09-20 09:23:16 -06:00
byt3bl33d3r f66fa44068 Potential fix for CI/CD 2020-09-20 08:51:23 -06:00
byt3bl33d3r c9cc0c74fa Bumped version number 2020-09-20 08:18:32 -06:00
byt3bl33d3r 998259ff8f pyproject.toml OCD 2020-09-20 08:15:21 -06:00
byt3bl33d3r 4c53643dec Fixed some pyproject.toml errors 2020-09-20 08:10:46 -06:00
byt3bl33d3r be0fe59bbe Merge branch 'poetry' 2020-09-20 08:01:14 -06:00
byt3bl33d3r 7725a69be0 Switched from Pipenv to Poetry
- Deleted unnecessary files as Poetry handles pretty much everything
2020-09-20 07:59:10 -06:00
mpgn 79e57eaa20
Fix spider_plus module options 2020-09-20 15:09:51 +02:00
mpgn 14d12fba1e Fix wireless module not showing all cleartext password 2020-09-12 15:54:51 -04:00
mpgn e73348513d Fix initialisation when openssl not installed 2020-09-11 18:43:57 -04:00
mpgn 3a15ccbaf0
Merge pull request #414 from byt3bl33d3r/build_time
Add binary for windows using Github Action
2020-09-12 00:01:13 +02:00
mpgn fea8276480
Update build_collector.py 2020-09-11 22:56:27 +02:00
mpgn 5256060767 Add new workflow for Github Action
- makefile deleted
- cme and cmedb compiled from a py script with shiv
- add windows compatibility
- remove double dependency lsassy inside setup.py file
2020-09-11 16:35:55 -04:00
mpgn 6885d9fd30 Add local-auth flag for MSSQL proto 2020-09-06 15:38:29 -04:00
mpgn bd549d0e6f Fix false positive on ckec_if_admin func MSSQL 2020-09-06 10:09:44 -04:00
mpgn 74ddbe7545 Fix check_if_admin() function for mssql 2020-09-06 09:30:03 -04:00
mpgn e47b110603 Improve MSSQL login 2020-09-06 09:21:38 -04:00
mpgn 50b922ca55
Merge pull request #413 from scopedsecurity/fix_gpp_password_typo
Fixed GPP filename typo and print
2020-09-02 20:49:27 +02:00
dev bf5b4486fc Fixed GPP filename typo and print 2020-08-26 22:47:43 -04:00
Marius Renner cc1af64448 Fix file reading concurrency issues
Before this commit, file objects for the username, password or NTLM hash
files were all shared between target jobs for different hosts. This
could cause numerous different errors in password or hash spraying jobs
with multiple targets. Sometimes some lines in input files were skipped
for some targets, and sometimes CME even ended up in an infinite loop
due to seeking in a file that is currently also being iterated on.

There have been attempts to fix some of these errors with file.seek(0)
in some places, such as with d13042f637.
This almost works because of the BoundedSemaphore sem that effectively
keeps CME attacks single-threaded. However, there were still corner
cases with shared file object accesses not protected by the semaphore.

To fix this in a reliable way, this commit shifts the responsibility of
open()ing a file object to every job instead of globally at the start.
While this does mean that the application will open the same files a
bunch of times, it also ensures correctness in regard to concurrency.
This should also allow to relax the semaphore in the future in case no
global or username limit across all targets is required.
2020-08-16 14:01:49 +02:00
mpgn 8785f5d3f4
option --ntds doesn't require to be admin anymore check #408 2020-08-12 17:27:53 +02:00
mpgn 3cc0b00f0b Remove conditional auth for modules and options 2020-08-11 07:39:16 -04:00
mpgn 4e444b68db Update spider_plus module with readable datetime 2020-07-30 10:30:29 -04:00
mpgn ce8094045d Add more compatibility for windows exe
- decrease winrm timeout to 3 seconds so @IppSec 's videos
 tlast less time :)
 -- add ico to cme exe
 -- add option smb-server-port to make cme compatible with windows
2020-07-30 15:14:31 +02:00
mpgn 1aa2f8cc0f Fix winrm uninitialized variable and hash auth option 2020-07-28 10:16:06 -04:00
byt3bl33d3r 71faa5c075
Update README.md
Added link to official discord channel
2020-07-26 20:07:37 -03:00
byt3bl33d3r b4f377f928
Update README.md 2020-07-15 19:55:10 -03:00
byt3bl33d3r d750439a05
Delete docker.yml 2020-07-13 01:51:34 -03:00