0cf4737317
Add specs for resolver spell checking
2024-03-19 12:48:13 -04:00
bc4362d07d
Fix Rex MySQL wrapper test to have correct method symbol
2024-02-29 11:16:18 +00:00
55a8d6732f
Add Rex Proto MySQL Client
2024-02-28 18:19:46 +00:00
0ade721bf1
Propagate precise encryption key length errors
2024-02-23 10:28:05 -05:00
ca367bc87b
Fix failing LDAP server tests
2024-02-16 23:43:07 +00:00
7b56d012e8
Land #18678 , add LDAP capture capabilities
2024-02-15 22:11:04 +00:00
eca99e2c77
Refactor resolver types
2024-02-14 14:40:22 -05:00
1cab98f4c2
Support multiple addresses for a static hostname
2024-02-08 16:05:54 -05:00
62e960352f
Refactor naming entries as rules
2024-02-08 13:05:53 -05:00
5c9b454291
Change initialization to allow reseting
...
Change how the resolver is initialized so the instance can be reset to
sane default values loaded from the operating system.
2024-02-08 11:22:33 -05:00
2653a180e4
Update tests add new initialization methods
2024-02-08 11:22:33 -05:00
5a14575a31
Adjustment for extra knobs to tweak during auth
...
* clarify the NTLM SASL challenge
* add default case for unsuppoted SASL types
* implement unknown method to support override
2024-01-11 10:30:58 -06:00
ec8ee2814a
fix spelling in spec folder
2024-01-07 13:42:50 -05:00
2ab1b7a310
adjustments to NTLM LDAP support
...
* invert storage test for callback
* do not override service instance domain and hostname
* remove wrapping `Array` on `context_data` in response
* generate NTLM Type1 message instead of hardcoded blob
2024-01-02 13:08:48 -06:00
708c795890
Land #18560 , Forging diamond and sapphire tickets
2023-11-28 11:14:15 -05:00
3ca13d9358
Changes from code review.
...
Added in the stability/IOC notes, since diamond/sapphire do make requests.
2023-11-27 10:30:54 +11:00
2eec5e0914
Remove spurious print; resolves #18562
2023-11-27 07:37:02 +11:00
ef9a165d22
Changes from code review
2023-11-22 16:43:02 +11:00
9d873cb7ac
Fix bug in writing UpnDnsInfo structure, and include in sapphire PAC
2023-11-17 13:49:55 +11:00
f351d7b5e1
Don't create DNS cached resolver on every test, because it'll exhaust the OS's resources
2023-11-10 12:07:37 +11:00
d0585e0df5
Added unit tests
2023-11-09 14:45:06 +11:00
6ba5d03993
Addition-of-suitable-tests-for-the-libraries
2023-11-04 11:43:01 -04:00
0368b23af9
Add some basic specs for the client too
2023-09-14 17:45:09 -04:00
bf9ef45c45
Add some specs for thrift data types
2023-09-14 17:16:32 -04:00
44ffafcf62
Add more unit tests
2023-06-16 11:48:43 -04:00
16ef8c4eaa
Add a basic spec for the x509 SAN definition
2023-06-15 15:57:10 -04:00
66d2477d62
Add some tests for NtdsCaSecurityExt
2023-06-09 09:27:35 -04:00
1eb6996ea5
Land #17989 , Improves flag formatting for kerberos ticket presenter
2023-05-22 17:42:10 +01:00
60f6574bf3
Land #17965 , add module for AD CS cert management
2023-05-22 09:50:53 -05:00
a88751167b
Add specs for .from_sddl_text
2023-05-22 09:21:24 -04:00
73a33a9f73
Addresses PR feedback
2023-05-17 16:45:15 +01:00
82bf51647d
Improves flag formatting for kerberos ticket presenter
2023-05-16 15:25:36 +01:00
eb959e2e40
Land #17060 , GSoC Project: Implement HTTP-Trace enabled login scanners
2023-05-11 15:45:01 +01:00
e1ecdac2a5
Land #17724 , Add ticket checksum to kerberos ticket creation
2023-03-29 09:01:39 +01:00
9c20d0f84b
Implemented HTTP-Trace for login scanners via HttpLoggerSubscriber API
2023-03-15 00:57:33 +05:30
db343e629d
Fix remaining hardcoded timezones in tests
2023-03-13 13:16:12 -04:00
2aa74f9dfc
Add support for full pac and partial ticket checksum support
2023-03-06 13:14:09 +00:00
252012f48d
Land #17675 , Add support for forging inter-realm Kerberos tickets
2023-03-03 14:17:48 +00:00
efd79eb638
Add support for forging inter-realm Kerberos tickets
2023-03-03 13:20:39 +00:00
f3975e968f
Land #17635 , Add support for full pac ul_type 19 and partial ticket checksum support
2023-03-02 14:22:58 +00:00
8a37cc6c88
Update inspect ticket tests to use the local timezone
2023-02-23 14:39:19 +00:00
fc5d938d8c
Add support for full pac and partial ticket checksum support
2023-02-21 13:03:59 +00:00
782e4c0295
Add ul_type 12 (UPN and DNS info) to pac bindata
2023-02-07 23:14:00 +00:00
fc0324f28b
Consistently print keys without \x
2023-01-26 10:49:05 -05:00
ebfcfd4cb9
Land #17066 , Add module for Certifried
...
Add exploit module for Certifried exploit
2023-01-18 14:51:03 -05:00
eddac9321c
Merge 6.2.36 master into kerberos feature branch
2023-01-13 17:31:02 +00:00
3d22fbcad9
Add exploit module for Certifried exploit
...
- Move all the logic from `modules/auxiliary/admin/dcerpc/icpr_cert.rb`
to `lib/msf/core/exploit/remote/ms_icpr.rb` library
- Move all the logic from `modules/auxiliary/admin/dcerpc/samr_computer.rb`
to `lib/msf/core/exploit/remote/ms_samr.rb` library
- Add `modules/auxiliary/admin/dcerpc/cve_2022_26923_certifried.rb` module
- Update the SMB client to disable SSL by default
- Add documentation
- Kerbero client: pass `options` as argument to `send_request_as`
- `calculate_shared_key` returns an EncryptionKey instead of the raw key
- Update `pkinit_login` module to make it compatible
- Add support to `additional_tickets` when requesting tickets
- Add support to PAC CredentialInfo structures
- Add impersonation to escalate privileges
- Add ACTIONS
- Use elevated TGS to delete the computer account
- Update and add specs
2023-01-13 15:30:50 +01:00
89dd358d2d
Added unit test to check that HEAD responses don't hang
2022-12-15 14:34:01 +11:00
7625d4b08b
Add ticket flags when outputting krb5 ccache
2022-12-13 12:19:16 +00:00
a80db73bab
Land #17325 , add impersonation for get_ticket
...
Enable the `get_ticket` module to impersonate a user with S4U2self and S4U2proxy
2022-12-12 09:10:37 -05:00
Spencer McIntyre