3574bbe832
Added --gpp-passwords option to retrieve GPP passwords
2015-12-11 00:24:43 -07:00
4e1414fa04
Removed some useless imports
2015-11-29 12:21:42 -07:00
a2c2c17489
Added src param for --download ( resolves #32 )
2015-11-20 20:20:42 -07:00
474ded4ea2
Fixed port variable when invoking PowerView
2015-11-20 19:47:40 -07:00
f0fe1a25a7
Added option to set the HTTP/HTTPS server port ( resolves #33 )
2015-11-20 19:33:55 -07:00
11e75ac897
Added --fail-limit and --gfail-limit options to limit the amount of
...
failed login attemptes per host and globally
2015-11-19 23:04:54 -07:00
2212a03275
Added options to interact with Windows services
2015-11-19 21:13:46 -07:00
f1d97518ac
Version bump and README update
2015-11-19 18:29:27 -07:00
c9bb82fb45
Initial PowerView integration, for some reason only works when using
...
smbexec as the execution method, so for now it's forced to that
Fixed a bug where forcing Powershell code to run in a 32bit process
would cause a rpc_access_denied error message
Made Mimikatz parser output more consistent
Made wmiexec and smbexec output more consistent
2015-11-19 18:13:32 -07:00
66dbf87af5
Everything is set! \o/
...
Recap on changes:
Complete refactor, script broken up to make it readable
Kerberos support (!!!! sweeeeet !!!!)
Logging has been overhauled (everything sent to stdout gets logged)
Added a noOutput attr on all three excution methods
Exposed a --no-output option for moar stealth when executing commands
Exposed a --lsa option to dump LSA secrets
Exposed the -history and -pwdLastSet options from secretdump
Fixed passpoldumper
Fixed the NTDS.dit dumper
HTTP/HTTPS server now removes powershell script comments
HTTP/HTTPS server randomizes powershell function names to bypass AV on
windows 10
--session and --luser output has been made decent (resolves #42 )
Moar code style changes and bugfixes
TODO:
hook back up ninja and vss NTDS.dit dumping methods
Allow all three execution methods to utilize the smbserver as fallback
to retrieve command output
expose some options to control remote services
2015-11-10 01:57:04 -07:00
e84c55dc8c
Removed SMB as a PS script server (still can't get it working reliably
...
on my system)
2015-11-08 23:39:37 -07:00
ac5210826d
Added PoC Powershell obfuscation (if you can even call it that) to
...
bypass Windows Defender on Win 10
Everythings pretty much back to normal, just needs testing and more
code cleanup
2015-11-08 23:32:48 -07:00
83e2f34b4c
Almost all functionality restored, removed psexec execution method
2015-11-08 20:11:18 -07:00
e7246fd777
Refactor pass 1
...
Revamped logging and main greenlet
Major code cleanup and bug fixes everywhere
2015-11-08 15:27:33 -07:00
894ad27693
Minor changes when handling platform checks
2015-11-04 10:03:39 -07:00
fcfdf3d04c
Initial re-write
...
Overhauled logging, major code cleanup and organization
Updated all impacket script code to latest commit.
Initial Kerberos support
2015-11-03 03:22:58 -07:00
2256caa865
Modded the smbserver
2015-11-02 10:52:05 -07:00
995011f21d
Fixed smbserver class for unicode
2015-11-01 19:52:05 -07:00
a3467bf680
Fixed mimikatz log parser to not display raw mem output in password fields
2015-11-01 19:40:44 -07:00
c58dd26833
fixes #30
2015-11-01 19:06:38 -07:00
56fe9aa19a
Added Windows support
2015-11-01 18:52:00 -07:00
05fc05c178
Fixes #35 and #27
...
Content searching didn't work due to a bug parsing the * when listing
directory contents
Printing anything Unicode should now work everywhere
Made share spidering output more consistent/prettier
2015-11-01 17:58:50 -07:00
8c230979ef
Fixes #34 and #28
...
All strings are now unicode by default (ala Python3)
2015-11-01 14:47:31 -07:00
b10d3efa1e
Added option to use SMB server to download PS scripts (Does not work yet!)
...
You can now have subnets and IP ranges in a target file
2015-11-01 13:27:42 -07:00
56bd3908ec
Revert "Possible fix for #24"
...
This reverts commit c74d7720df
2015-10-30 22:51:22 -06:00
4a0f83fc02
Merge branch 'master' into smb_transport
2015-10-30 22:47:26 -06:00
c341c305bc
Resolves merge conflicts
2015-10-24 10:43:01 -06:00
c74d7720df
Possible fix for #24
2015-10-24 10:41:15 -06:00
255fff88bd
fixes #23
2015-10-23 10:12:29 -06:00
7741bf538b
Initial SMB transport support
2015-10-22 19:20:07 -06:00
df60fbf335
Updated usage in README
2015-10-19 19:26:26 -06:00
ccf0025c42
added options to create and delete the UseLogonCredential registry key for wdigest dumping on Windows 8.1 ( #18 )
2015-10-19 19:13:36 -06:00
9ad18f95b8
Thread number now defaults to 10 (resolves issue #12 )
2015-10-19 09:00:42 -06:00
b13a4a4a76
Revamped the print_* functions for unicode handling
2015-10-19 08:41:29 -06:00
9964d4f991
replaced ".decode('utf8')" with "unicode(x, errors='ignore')"
2015-10-18 16:36:30 -06:00
ee0afffbcd
--spider and --list now default to top level directory
2015-10-18 08:56:37 -06:00
b420d19401
Removed a debug import
2015-10-17 23:09:28 -06:00
3f05e1758f
Fixed another null session support bug
...
Fixed a bug when listing directory/share content
2015-10-17 22:54:15 -06:00
9657a3809c
updated ninja NTDIS.dit method for HTTPS support
2015-10-16 15:31:59 -06:00
7d2ba3c63a
Added HTTPS support as per #15
2015-10-16 15:26:35 -06:00
98a07acebe
fixes #14 , print_* functions now support unicode
2015-10-11 09:30:57 -06:00
870f815269
Fixed --shares output formatting
...
Changed --list date/time formatting
Added last modified and size info to spider results
2015-10-10 16:45:46 -06:00
6be318bcfb
Cleaned up output of --wmi
...
Added more specific error handling when spidering content
Changed the content searching option to --content
2015-10-10 09:28:04 -06:00
429f1b79c5
Fixed exception when not specifying --exclude-dirs
2015-10-09 22:01:02 -06:00
a01c46ccf8
Some output and usage fixes
2015-10-09 21:26:48 -06:00
2a18c360a2
added regex support when spidering
2015-10-09 21:04:20 -06:00
21713caf12
Added option to exclude directories from spidering
2015-10-09 20:15:53 -06:00
b2f0533ff3
Added error handling when searching file contents
2015-10-09 19:44:02 -06:00
39887088bf
Added file content searching support when spidering shares
2015-10-09 17:52:33 -06:00
1699faef78
Fixed logic bug when enumerating share access
2015-10-09 12:58:09 -06:00
byt3bl33d3r
Dan McInerney