a030bbcfdf
Make sure host_info_colors option is read properly from config
2023-08-15 22:32:54 +02:00
c97d81697d
Sort config options
2023-08-15 22:10:45 +02:00
345f2d09fc
Update config file if options are missing
2023-08-15 22:07:01 +02:00
a9f95d1930
Add CME config option for color coding
2023-08-15 21:59:16 +02:00
005c73a7d2
[smb] Change wmiexec fail message
...
Signed-off-by: Xiaoli Chan <2209553467@qq.com>
2023-08-16 01:03:12 +08:00
67c99b87dd
change colors
2023-08-15 10:30:47 -04:00
eb3342284a
change colors
2023-08-15 10:28:42 -04:00
f6ca9c40ff
[smb] fix break for loop when not choosing exec-method
...
Signed-off-by: XiaoliChan <2209553467@qq.com>
2023-08-15 21:00:56 +08:00
e29442d08e
[smb] Catch exception in getobject & add more logger output
...
Signed-off-by: XiaoliChan <2209553467@qq.com>
2023-08-15 13:48:49 +08:00
d1ee3b3b4a
[smb] Add '--wmiexec-timeout' to avoid hanging.
...
Signed-off-by: XiaoliChan <2209553467@qq.com>
2023-08-15 12:18:05 +08:00
292a896c01
Add cmedb option to export all hashes in the format "username:hash" for hashcat cracking
2023-08-14 09:57:37 -04:00
2d337f1645
Change info colors for smbv1 and signing to bold for readability
2023-08-14 08:44:57 -04:00
866219d8f3
Merge pull request #93 from mpgn/neff-colors
...
Add color to "signing" and "SMBv1" smb output #92
2023-08-14 14:28:39 +02:00
136e457f11
Merge pull request #91 from XiaoliChan/winrm-fix
...
[winrm] Formatting output & add '--codec, --no-smb' args
2023-08-14 14:17:42 +02:00
4e832003db
Merge pull request #89 from XiaoliChan/rdp-fix
...
[rdp] Add missing port variable & bug fixed
2023-08-14 14:17:28 +02:00
5f1b3d957b
add rdp nla color
2023-08-14 06:00:43 -04:00
6c501e96fb
Add color to "signing" and "SMBv1" smb output
2023-08-14 11:34:23 +02:00
ec52633566
[winrm] Formatting output & add '--codec, --no-smb'
...
Signed-off-by: XiaoliChan <2209553467@qq.com>
2023-08-13 23:55:53 +08:00
4fd6efc2fc
Merge pull request #90 from mpgn/neff-bugfixes
...
Add check to veeam module if av stops execution #85
2023-08-13 15:03:43 +02:00
6d864db26c
Adding check to veeam module if av blocks execution
2023-08-13 14:42:30 +02:00
ef13d151f1
Merge pull request #88 from bongobongoland/master
...
Update enum_av.py -- Bitdefender Endpoint
2023-08-13 14:26:02 +02:00
086c35f178
[rdp] Add missing port variable & bug fixed
...
Signed-off-by: XiaoliChan <2209553467@qq.com>
2023-08-13 12:47:13 +08:00
4ce72c73a2
Update enum_av.py
2023-08-13 08:57:37 +10:00
5fd8157b40
fix brokenpiperror false positive #73
2023-08-12 16:51:53 -04:00
5931fb774b
Merge pull request #86 from mpgn/av_check
...
New Av check
2023-08-12 22:38:53 +02:00
d582f531b4
Update enum_av.py
2023-08-12 18:10:26 +02:00
cd7ee36e7e
Update enum_av.py
...
cleanup file
2023-08-12 18:09:07 +02:00
917be69e0f
Merge pull request #84 from bongobongoland/master
...
Kaspersky for Windows Server
2023-08-12 14:43:11 +02:00
53401caa25
add check on login before running module
2023-08-12 06:17:08 -04:00
622ea4237d
Update enum_av.py
2023-08-12 11:08:33 +10:00
f5187f6761
Fix errors
2023-08-11 18:05:50 -04:00
71d2ade361
Introduce more fallbacks
2023-08-11 14:00:48 +02:00
368996dede
Fix configparser error
2023-08-11 14:00:39 +02:00
e38d922913
Add AV #76 #75
2023-08-11 05:36:56 -04:00
bceb95ee86
Added reveal_chars_of_pwd
2023-08-10 18:38:48 -04:00
d822ef8a4e
Added reveal_chars_of_pwd to config
...
Added new config option called "reveal_chars_of_pwd" that allows users to choose if they would like to reveal the first X characters of passwords. Handy for screenshots where you are spraying a handful of pwds and want to show the first couple of characters.
2023-08-10 18:37:05 -04:00
b43f84ac9c
Adding find_computer.py as a replacement for comp_desc.py
...
Adding find_computer.py as a replacement for comp_desc.py. It now takes a TEXT field and searches both names and operating system fields.
2023-08-10 14:03:10 +01:00
2a197ac2b3
Delete comp_desc.py
...
Replacing with find_computer.py
2023-08-10 14:01:36 +01:00
6ff48c762c
Update comp_desc.py
2023-08-10 13:09:39 +01:00
758ebe9c08
Explicit check as file for argument
...
Use case:
"cme smb 10.10.10.10" when a subdirectory of the name "10.10.10.10" exists in the parent folder.
CrackMapExec throws a "IsADirectoryError: [Errno 21]" error in the above case.
2023-08-10 09:24:58 +05:30
9ef2ca6e48
Fix ldap checker bug
2023-08-08 16:25:21 +02:00
1ab200c5a5
Fix crash in veeam module when password contains whitespaces and inform user
2023-08-05 18:27:35 +02:00
a457642924
Move wcc logger to cme logger
2023-08-05 16:57:20 +02:00
2e96967002
fix issue #67
2023-08-03 05:39:20 -04:00
9332b92223
Delete ExecuteAssembly.py
2023-07-31 21:58:20 -04:00
b8f4ca792a
Execute Assembly remotely or upload an encrypted assembly
...
Execute Assembly remotely or upload an encrypted assembly
2023-07-31 21:04:42 -04:00
9c84f97d6a
Merge pull request #61 from termanix/patch-1
...
New module pi
2023-07-31 12:24:20 +02:00
d26d822fa4
recompile exe
2023-07-31 06:10:47 -04:00
d05577e6dd
Add New ldap Flag --dc-list
2023-07-30 18:21:09 +03:00
6db8dafe97
Extract credentials in IIS Application Pool configuration files
...
Checks for credentials in IIS Application Pool configuration files using appcmd.exe
2023-07-28 09:50:23 -04:00
2e0ee1eaca
New module pi
...
Pi module is used to run commands by process injection method for logged in user(s) in case of having admin rights on windows system.
2023-07-26 15:01:30 +03:00
d1c38d3b1b
Rename check "NTLMv1" to "LmCompatibilityLevel"
2023-07-26 10:40:35 +02:00
a6a5adcea6
Changed --no-write-check flag location/group
2023-07-26 09:48:22 +02:00
19523cdb3e
Fix logging bugs
2023-07-25 18:26:21 +02:00
59b12d2d23
Feat: Added flag --no-write-check on smb shares
2023-07-25 17:34:40 +02:00
7495622cc1
Rework logging
2023-07-25 13:16:17 +02:00
eafee24f66
fix missing function
2023-07-24 14:45:15 -04:00
2f69af131d
add --no-smb arg for mssql
2023-07-24 14:40:36 -04:00
963630ccca
Merge pull request #55 from godylockz/master
...
spider_plus Improvements
2023-07-24 12:56:00 +02:00
260c7695dc
Merge pull request #36 from Dfte/master
...
Update impersonate.py
2023-07-23 17:10:58 +02:00
b492993a77
update to new log function
2023-07-23 11:03:17 -04:00
686a1c4a14
update binary :)
2023-07-23 10:55:00 -04:00
48237a0908
Revert changes to NTLMv1 check
2023-07-22 19:14:20 +02:00
81a03045d7
Improvements for the spider_plus CME module including downloading files
2023-07-22 11:01:32 -04:00
a6e2f1cc45
fix options, ntlmv1 and add lapsv2
2023-07-22 12:32:08 +02:00
23ce4d2442
Match some files with active repo
2023-07-21 17:33:26 +02:00
6d4731cf93
Merge branch 'master' of https://github.com/mpgn/CrackMapExec
2023-07-21 17:03:33 +02:00
18abac8aec
Remove less useful checks
2023-07-21 16:45:29 +02:00
253ddeadc7
Update mmcexec.py
2023-07-16 21:57:17 +02:00
fa073fae86
Update smb.py to fix mmcexec
2023-07-16 21:56:56 +02:00
00a2f5618d
Update atexec.py
2023-07-16 16:42:55 +02:00
980346e991
Update smb.py atexec to add logger #51
2023-07-16 16:35:09 +02:00
c2f89568bb
Update atexec.py add try catch #51
2023-07-16 16:34:28 +02:00
be93d56a93
Update smb.py to fix issue #51
2023-07-16 16:22:57 +02:00
e93516cb65
Merge pull request #49 from mpgn/neff-bugfixes2
...
Fixing #45
2023-07-15 20:25:50 +02:00
303b75837e
Merge pull request #48 from mpgn/neff-bugfixes
...
Fix logic flaw for fix #41
2023-07-15 20:25:35 +02:00
f8b3dbb777
Fix #45
2023-07-14 16:23:03 -04:00
6519191a60
Fix logic flaw for fix #41
2023-07-14 13:12:20 +02:00
ae3ef444b3
Update lsassy_dump.py #42
2023-07-14 10:16:55 +02:00
eb9911e5e3
Merge pull request #43 from mpgn/neff-bugfixes
...
Fix #41
2023-07-14 10:06:01 +02:00
1265196e7f
Fix typo in ioxidresolver module description ( #44 )
2023-07-14 10:03:37 +02:00
3818e67acf
Change CLI version to use pyproject.toml version
2023-07-14 01:29:30 +02:00
5218e88891
Fix #41
2023-07-13 19:35:59 +02:00
ac9ae18a1c
Add related issue
2023-07-12 23:16:36 +02:00
511c776743
Update connection.py to work with proxychains
2023-07-12 23:16:36 +02:00
ca30e86540
Merge pull request #27 from mpgn/neff-bugfixes
...
Stop crashing with "Too many open files" and fixing the missing logger error
2023-07-12 21:13:51 +02:00
19aa2d99d8
Update comp_desc.py fix indent
2023-07-12 09:29:00 +02:00
3d62bb33cf
Made module name lowercase in Options help text
...
Made module name lowercase in Options help text
2023-07-12 07:03:48 +01:00
9a4967e0ab
Made module name lowercase in Options help text
...
Made module name lowercase in Options help text
2023-07-12 07:01:55 +01:00
f0820dff12
Made module name lowercase in Options help text
...
Made module name lowercase in Options help text
2023-07-12 06:56:06 +01:00
61a5db55fe
Removed recursion and improved indentation
2023-07-11 21:58:46 +01:00
48345e48d5
Converted module name to lowercase
...
Converted module name to lowercase
2023-07-11 21:24:04 +01:00
0baced2e56
Converted module name to lowercase
...
Converted module name to lowercase
2023-07-11 21:23:30 +01:00
c402403d77
Converted module name to lowercase
2023-07-11 21:22:54 +01:00
e1c518ab0b
LDAP Enumeration and Add-Computer Modules
...
LDAP Enumeration and Add-Computer Modules
2023-07-10 21:32:47 +01:00
1dc5aa9efa
Update impersonate.py
...
Update the impersonate module so that it prints token integrity :)
2023-07-08 17:38:48 +02:00
915a92860d
ldap module: use paged search ( #33 )
2023-07-07 14:51:26 +02:00
442a9a48cc
Only increase ulimit if not running on windows
2023-07-05 06:20:12 -04:00
483dc69a2a
Increase ulimit to prevent error "Too many open files"
2023-07-05 05:57:21 -04:00
8731e6a546
Add information for Error "Too many open files"
2023-07-05 00:36:40 +02:00
beb6d9f735
Fix laps connection ( #30 )
2023-07-04 21:15:16 +02:00
f39738fc2c
Revert #26 and fix #28
2023-07-04 13:25:42 +02:00
3f6d2b7c96
Fix missing logger
2023-07-04 12:06:53 +02:00
d34af6291b
Update smb.py with error logger
2023-07-04 10:26:29 +02:00
72b51d0016
Update connection.py to force FQDN
2023-07-04 10:19:39 +02:00
ab692c5b9e
Revert "force fqdn for domain name"
...
This reverts commit 5ba223f79d
2023-07-04 04:17:56 -04:00
5ba223f79d
force fqdn for domain name
2023-07-04 04:11:52 -04:00
a46e3f7906
Merge pull request #22 from lodos2005/hashspider
...
hash_spider module saving hashes to cmedb.
2023-07-03 22:37:18 +02:00
93e7a5b26a
we encounter this error on unsupported SMB version
2023-07-03 23:27:25 +03:00
3fd728499d
hash_spider module saving hashes to cmedb.
2023-07-03 23:14:16 +03:00
903f46f161
switch output to info for enum_av
2023-07-03 15:46:50 -04:00
4f3cc65b5d
switch output to debug for local_groups
2023-07-03 15:40:54 -04:00
e52e25ccaa
Fix AES authentication for SMB
2023-07-03 19:18:33 +02:00
afb175215b
Update adcs.py with BASE_DN option #8 ( #18 )
...
* Update adcs.py with BASE_DN option #8
* Update subnets.py with new option BASE_DN
2023-07-03 16:41:28 +02:00
fd5bbc263a
Harmonize method arguments
2023-07-03 16:25:25 +02:00
75738801ba
Fix laps with kerberos username ( #17 )
...
* Fix laps with kerberos username
* Fix LAPS with kerberos
2023-07-03 11:43:07 +02:00
e1345d4b1e
Update laps.py to work with the new Windows LAPS ( #16 )
2023-07-03 11:00:43 +02:00
1792ee8521
Fix #14 with file paths on windows
2023-07-03 01:10:25 +02:00
b83bedb106
Update mssqlexec.py
2023-06-30 15:29:59 +02:00
ef16c2538b
Fix wcc results export
2023-06-30 00:41:22 +02:00
fc9734fa0e
Update smb.py with missing try catch
2023-06-29 22:56:20 +02:00
4cd17622a5
Merge branch 'master' of https://github.com/mpgn/CrackMapExec into dev
2023-06-29 18:01:04 +02:00
f33dae42b7
Update spider_plus.py
...
exclude IPC$
2023-06-29 16:27:13 +02:00
3975002428
Merge branch 'mpgn:master' into wdigest
2023-06-28 19:05:29 -04:00
989c961c42
Changed context.log and added check to menu
2023-06-28 19:03:27 -04:00
3c4ae2a801
Fixed single and double quotes
2023-06-27 13:36:43 -04:00
94cf068806
Added option to wdigest module to check reg key
2023-06-27 09:38:26 -04:00
1a043b78fa
Add new module PSO
2023-06-27 14:23:43 +02:00
1f329189c7
bump to 6.0.0
2023-06-26 13:32:44 -04:00
87de181126
fix(nmap): passing in an nmap xml scan works again. added missing protocols and removed http
2023-06-25 21:17:23 -04:00
e12488f73c
Fix module not working when run on multiple hosts
2023-06-21 17:46:44 +02:00
384ed547e6
Add cmedb wcc export
2023-06-21 17:19:25 +02:00
68a3d21c78
fix bug where socket would not exist and updated ftp/ssh-related tests to include file creds
2023-06-18 10:09:01 -04:00
98edc72394
fix login with protocols not using a domain when using a user file
2023-06-16 23:14:35 +02:00
40a6da4f3e
prevent execution when no protocol is used
2023-06-16 10:14:55 +02:00
69fb0d71ce
fix asreproasting for aes enc https://github.com/fortra/impacket/pull/1554#event-9536825290
2023-06-15 04:22:52 -04:00
2791ba9ff3
fix share filter
2023-06-15 03:55:24 -04:00
d030fad580
Merge branch 'master' of github.com:mpgn/cme
2023-06-14 11:03:40 -04:00
614e0ef4e3
fix: allow for sam, lsa, ntds, and dpapi cred gathering together
2023-06-14 11:03:26 -04:00
eba9bfaa92
fix ldap with null credential
2023-06-13 15:09:28 -04:00
7788e03e70
Merge branch 'master' into protocol_db_marshall
2023-06-10 22:16:05 -04:00
b97b82d652
feat(ftp): add host and cred cmedb functionality
2023-06-10 22:15:06 -04:00
21283b57cc
fix(ftp): change parameters to proper input
2023-06-10 22:14:38 -04:00
4dc4890566
feat(ftp): add host and cred data to db
2023-06-10 22:14:04 -04:00
7df6f02945
fix(ftp): change directory_listings DB name to be correct
2023-06-09 23:04:09 -04:00
1af43dafe4
feat(ftp): add add_host to ftp for cmedb
2023-06-09 23:02:34 -04:00
06d9a30090
Make cmedb wcc help sexier
2023-06-09 17:09:20 +02:00
88aef1e4f9
Update wcc command in cmedb
2023-06-09 16:28:07 +02:00
679d74e883
Refactor a little bit
2023-06-09 16:27:29 +02:00
fce9476b4b
Change when results are written to a file
...
Now, only if the OUTPUT option is provided.
2023-06-09 12:03:35 +02:00
Alex
Xiaoli Chan
mpgn
Alexander Neff
bongobongoland
godylockz
Kahvi-0xFF
Cyber Celt
Data-Praetor
Bryan De Houwer
Shad0wC0ntr0ller
termanix
François REYNAUD
0xlazy
François REYNAUD
zblurx
FateNull
Defte
ThePirateWhoSmellsOfSunflowers
Lodos2005
lefayjey
probird5
plazar
Marshall Hallenbeck