Commit Graph

298 Commits (1468e258ee1bfbdb7fbbc9921b2fecf7ee5c40fc)

Author SHA1 Message Date
byt3bl33d3r da4e55380a Added error handling for CME server in case the port is already in use.
Should resolve #109
2016-05-16 18:07:01 -06:00
byt3bl33d3r d5a7af9858 goddammit, git add bro 2016-05-16 17:48:31 -06:00
byt3bl33d3r 78484dc527 Initial structure for packaging 2016-05-16 17:48:06 -06:00
byt3bl33d3r 2c77b0c583 Since https://github.com/CoreSecurity/impacket/issues/137 is now
resolved, we can now add the architecture aware wrapper
2016-05-06 23:47:50 -06:00
byt3bl33d3r 4dc262526a Ok so for some wierd af reason the -m flag doesn't autocomplete module paths in
bash (wtf), this is only the case for the letter m (even more wtf). if
you do -p for example it autocompletes (omfg wtf) so since bash is being
a bitch for no reason, I've added the --module flag as an alternative so
it autocompletes module paths (bash go home you're drunk)
2016-04-27 19:18:16 -06:00
byt3bl33d3r 6a8ab5ef2f This commit introduces failover command execution
If a command or module fails to run using a certain execution method
(e.g wmiexec) it will automatically try another one.

This behavior can be overrided by using the --exec-method flag
2016-04-27 18:14:15 -06:00
byt3bl33d3r a6cc776a12 No reason to save output to a log file it there's no output :/ 2016-04-26 00:44:59 -06:00
byt3bl33d3r 91ab69d008 Fix for issue #106
Consolidated commands in cme_db.py
Added an option in cme_db.py to specify the database manually
2016-04-25 20:57:23 -06:00
byt3bl33d3r 95e9a6b61e Merge pull request #105 from Cat0x00/patch-1
Missing libs
2016-04-25 20:22:59 -06:00
Cat0x00 c8657ca73b Missing libs
During my tests i found out that in case of:
./crackmapexec.py 127.0.0.1 -u user -p pass --lsa 
Tool will (and it did) fail due to missing libraries. This applies to cases when the target is a legacy OS, such as WinXP or Win2k3.

I have fixed the issue by adding missing libraries. Not sure if there are any other missing libs in this file. ;]
2016-04-24 18:25:12 +03:00
byt3bl33d3r 079cf69406 Fixed bug when parsing payload module options 2016-04-21 19:59:13 -06:00
byt3bl33d3r fd42f45d7f fail 2016-04-21 19:30:59 -06:00
byt3bl33d3r 82af618800 Added the com_exec.py module based on @subTee's com scriptlet
whitelisting bypass
2016-04-21 19:29:19 -06:00
byt3bl33d3r d256444cb5 This commit should resolve issue #92
Changed the way the tokens module opens a read handle to the USERFILE
2016-04-16 19:48:07 -06:00
byt3bl33d3r a56ad587ec Revamped the mimikatz module's credential parsing (Stole it from Empire)
Implemented proper handling of hashes if only the nthash is supplied
2016-04-16 19:30:23 -06:00
byt3bl33d3r f7a45a3de7 Added instructions in case of command not found error in kali install script 2016-04-16 18:05:41 -06:00
byt3bl33d3r 21ddc51187 Made kali install script executable 2016-04-16 17:34:11 -06:00
byt3bl33d3r 424c34c4f4 Added a -y in kali install script 2016-04-16 17:30:54 -06:00
byt3bl33d3r 42e4b05a3b Added missing dep in kali install script 2016-04-16 17:06:25 -06:00
byt3bl33d3r 7737f65fda Added path checking in Kalis install script 2016-04-16 15:52:34 -06:00
byt3bl33d3r b155649619 Initial commit for Kali install script 2016-04-16 15:50:21 -06:00
byt3bl33d3r 0bb288e7a0 fixed module names 2016-04-12 10:55:54 -06:00
byt3bl33d3r f890da0a60 Fixed wrong variable in get_computers module 2016-04-12 10:52:57 -06:00
byt3bl33d3r c2217f1c81 Added the get_computers module 2016-04-12 10:48:48 -06:00
byt3bl33d3r 69167140af Added the get_groups module 2016-04-12 10:15:59 -06:00
byt3bl33d3r f6c2c2f24d Added the get_group_members module 2016-04-12 01:07:25 -06:00
byt3bl33d3r e5e954068a Added options in token module to search for a specific username in
enumerated tokens
2016-04-12 00:09:08 -06:00
byt3bl33d3r 1d6cc4ac64 Fixed typo variable 2016-04-11 23:33:57 -06:00
byt3bl33d3r ec14e47258 Changed the add_credential SQL query, added tab complete support fro the
import command
2016-04-11 23:23:15 -06:00
byt3bl33d3r b85a4ecabd Database navigator now supports filtering seearching through hosts and creds (like Empire) 2016-04-11 23:06:42 -06:00
byt3bl33d3r cd9a77796f This commit introduces a command in cme_db.py which will import
credentials from Empire using it's RESTful API (resolves half of issue #89)

Reading through Metasploit's docs, it seems like you cannot access
it's stored credentials using the RPC server (would have to directly
access the postgres db, I do have to confirm this tho)
2016-04-10 17:10:33 -06:00
byt3bl33d3r 3ce031ffee Made the output of --lusers actually decent 2016-04-09 15:18:10 -06:00
byt3bl33d3r 4da8c07956 Cleaned up the Powershell code in the token_rider module:
* Added error handling in case a command fails to execute on a target
* POST request code is now a function
* Made the output POST'd back to us actually useful
2016-04-09 14:36:31 -06:00
byt3bl33d3r 94d1c040c8 Initial commit for the token_rider module! OMFG this thing is amazing
it deserves its own blog post!

Fixed a bug with the smbexec execution method which would cause it to
exit without retrieving output
2016-04-09 03:57:40 -06:00
byt3bl33d3r d3eb5cd8ff Added entry in .gitignore 2016-04-08 22:13:01 -06:00
byt3bl33d3r 84dfa1d839 Lots of unicode fixes (omfg halp) resolves issue #92 2016-04-08 20:38:49 -06:00
byt3bl33d3r 9052e48286 Removed decription of authentication error (will display if --verbose is
passed)

Fixed host tracking in the inject_pe_dll.py module
2016-04-08 19:58:01 -06:00
byt3bl33d3r eb4f185118 Database now tracks which users have admin access to which hosts
Added a configuration file for specifying Empire's and Metasploits API and RPC creds
Added the empire_agent_exec module: connects to Empire, generates a launcher and executes it

Minor bug fixes
2016-04-08 00:25:06 -06:00
byt3bl33d3r a1c41d97c9 Fixed incorrect error handling when database wasn't created
(part of issue #93)
2016-04-03 20:21:58 -06:00
byt3bl33d3r cd989879d4 Removed debug statement and fixed output in tokens.py module 2016-03-30 13:11:28 -06:00
byt3bl33d3r 7bfe04236a Added a tokens module to enumerate available tokens
Added a --server-host flag to specify the IP to bind the server to
2016-03-30 12:58:55 -06:00
byt3bl33d3r 9262832b86 Fixed missing imports when dumping NTDS via vss 2016-03-30 11:37:34 -06:00
byt3bl33d3r 7e6657eedb fixed timeout and error handling when smb spidering 2016-03-30 10:06:23 -06:00
byt3bl33d3r e6a293c9f3 Updated usage in README 2016-03-30 00:47:17 -06:00
byt3bl33d3r e5e38cb881 Re-added License to master 2016-03-30 00:45:16 -06:00
byt3bl33d3r 05387abf65 Changed the wdigest flag 2016-03-30 00:26:09 -06:00
byt3bl33d3r 811001edc4 Forgot to add the smbspider class back in connector.py, whoops! 2016-03-29 23:58:24 -06:00
byt3bl33d3r 0bc0855c43 Added default mimikatz command to module description 2016-03-28 00:42:42 -06:00
byt3bl33d3r f8afef444c Changed README again 2016-03-28 00:25:19 -06:00
byt3bl33d3r f5895ac4ea Changed README 2016-03-28 00:21:20 -06:00