44ffafcf62
Add more unit tests
2023-06-16 11:48:43 -04:00
16ef8c4eaa
Add a basic spec for the x509 SAN definition
2023-06-15 15:57:10 -04:00
66d2477d62
Add some tests for NtdsCaSecurityExt
2023-06-09 09:27:35 -04:00
1eb6996ea5
Land #17989 , Improves flag formatting for kerberos ticket presenter
2023-05-22 17:42:10 +01:00
60f6574bf3
Land #17965 , add module for AD CS cert management
2023-05-22 09:50:53 -05:00
a88751167b
Add specs for .from_sddl_text
2023-05-22 09:21:24 -04:00
73a33a9f73
Addresses PR feedback
2023-05-17 16:45:15 +01:00
82bf51647d
Improves flag formatting for kerberos ticket presenter
2023-05-16 15:25:36 +01:00
eb959e2e40
Land #17060 , GSoC Project: Implement HTTP-Trace enabled login scanners
2023-05-11 15:45:01 +01:00
e1ecdac2a5
Land #17724 , Add ticket checksum to kerberos ticket creation
2023-03-29 09:01:39 +01:00
9c20d0f84b
Implemented HTTP-Trace for login scanners via HttpLoggerSubscriber API
2023-03-15 00:57:33 +05:30
db343e629d
Fix remaining hardcoded timezones in tests
2023-03-13 13:16:12 -04:00
2aa74f9dfc
Add support for full pac and partial ticket checksum support
2023-03-06 13:14:09 +00:00
252012f48d
Land #17675 , Add support for forging inter-realm Kerberos tickets
2023-03-03 14:17:48 +00:00
efd79eb638
Add support for forging inter-realm Kerberos tickets
2023-03-03 13:20:39 +00:00
f3975e968f
Land #17635 , Add support for full pac ul_type 19 and partial ticket checksum support
2023-03-02 14:22:58 +00:00
8a37cc6c88
Update inspect ticket tests to use the local timezone
2023-02-23 14:39:19 +00:00
fc5d938d8c
Add support for full pac and partial ticket checksum support
2023-02-21 13:03:59 +00:00
782e4c0295
Add ul_type 12 (UPN and DNS info) to pac bindata
2023-02-07 23:14:00 +00:00
fc0324f28b
Consistently print keys without \x
2023-01-26 10:49:05 -05:00
ebfcfd4cb9
Land #17066 , Add module for Certifried
...
Add exploit module for Certifried exploit
2023-01-18 14:51:03 -05:00
eddac9321c
Merge 6.2.36 master into kerberos feature branch
2023-01-13 17:31:02 +00:00
3d22fbcad9
Add exploit module for Certifried exploit
...
- Move all the logic from `modules/auxiliary/admin/dcerpc/icpr_cert.rb`
to `lib/msf/core/exploit/remote/ms_icpr.rb` library
- Move all the logic from `modules/auxiliary/admin/dcerpc/samr_computer.rb`
to `lib/msf/core/exploit/remote/ms_samr.rb` library
- Add `modules/auxiliary/admin/dcerpc/cve_2022_26923_certifried.rb` module
- Update the SMB client to disable SSL by default
- Add documentation
- Kerbero client: pass `options` as argument to `send_request_as`
- `calculate_shared_key` returns an EncryptionKey instead of the raw key
- Update `pkinit_login` module to make it compatible
- Add support to `additional_tickets` when requesting tickets
- Add support to PAC CredentialInfo structures
- Add impersonation to escalate privileges
- Add ACTIONS
- Use elevated TGS to delete the computer account
- Update and add specs
2023-01-13 15:30:50 +01:00
89dd358d2d
Added unit test to check that HEAD responses don't hang
2022-12-15 14:34:01 +11:00
7625d4b08b
Add ticket flags when outputting krb5 ccache
2022-12-13 12:19:16 +00:00
a80db73bab
Land #17325 , add impersonation for get_ticket
...
Enable the `get_ticket` module to impersonate a user with S4U2self and S4U2proxy
2022-12-12 09:10:37 -05:00
86ec66c43d
Add decoding support
...
- for Rex::Proto::Kerberos::Model::Checksum
- for Rex::Proto::Kerberos::Model::PreAuthForUser
- add specs
2022-12-12 12:56:30 +01:00
1e1580e346
Move TypeSerialization1 to it's own file
2022-12-08 13:11:47 +00:00
405271a52f
Add pac BinData Model
2022-12-05 14:03:21 +00:00
8efc6c5304
Land #17103 , Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:27:17 +00:00
7c2134d941
Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:08:26 +00:00
37fd441b0f
Land #17117 , Authenticate to Kerberos with PKINIT
2022-11-08 18:54:03 +01:00
ee46d18505
Add yard docs and address review comments
2022-11-07 12:10:01 +00:00
a110465fe4
Add module for converting kerberos ticket formats
2022-11-07 12:10:01 +00:00
e647bf8620
Namespace krb5 models
2022-11-02 13:04:52 +00:00
1307f01b76
Align with keytab instead of key_tab
2022-11-02 13:04:51 +00:00
98d2633859
Add Kerberos ktutil module
2022-11-02 13:04:50 +00:00
db12c7e0f0
Added tests for parsing new Kerberos structures
2022-10-07 14:04:24 +11:00
58c30f10aa
Send and Receive PKINIT responses
2022-10-07 01:04:10 +11:00
5f85175f56
Add module for golden/silver ticket forging
2022-09-01 16:12:07 +01:00
d3e7152954
Changes from code review
2022-07-08 11:47:54 +10:00
b2eb348d94
Added WinRM using Kerberos, including encryption
2022-07-07 13:17:09 +10:00
d31ffa27d3
Add and use a new kerberos CCache model definition
2022-07-01 11:57:30 -04:00
89187c1fa9
Land #16685 , Add missing Kerberos encryption types
2022-06-22 13:13:30 +01:00
a4a0fc3028
Changes from code review.
...
Use kwargs instead of default values for rarer crypto args.
Revert case-sensitivity change; we'll leave krb5 on Linux til later.
More constants
2022-06-22 16:03:36 +10:00
15446fd173
Incorporated new encryption methods into login scanner, including negotiating
2022-06-22 09:36:25 +10:00
19b62a5af6
Support several new encryption types for Kerberos.
...
Supports DES-CBC-MD5, DES3-CBC-SHA1, AES128, AES256
2022-06-22 09:13:33 +10:00
3f56f9891d
Update keberos to support host addresses in tickets
2022-06-18 04:16:36 +01:00
ac5a885f16
Land #16660 , Fix Kerberos flags decoding logic
2022-06-17 17:38:09 +01:00
5dd650fc76
Support decoding pa_data as part of kdc enc response
2022-06-15 20:46:45 +01:00
Spencer McIntyre