7a2f6fef86
Land #17477 , Merge 6.2.36 master into kerberos feature branch
2023-01-16 11:53:21 +00:00
1470396f95
Refactor key validation for inspect_ticket and add module tests
2023-01-13 17:42:32 +00:00
eddac9321c
Merge 6.2.36 master into kerberos feature branch
2023-01-13 17:31:02 +00:00
3d22fbcad9
Add exploit module for Certifried exploit
...
- Move all the logic from `modules/auxiliary/admin/dcerpc/icpr_cert.rb`
to `lib/msf/core/exploit/remote/ms_icpr.rb` library
- Move all the logic from `modules/auxiliary/admin/dcerpc/samr_computer.rb`
to `lib/msf/core/exploit/remote/ms_samr.rb` library
- Add `modules/auxiliary/admin/dcerpc/cve_2022_26923_certifried.rb` module
- Update the SMB client to disable SSL by default
- Add documentation
- Kerbero client: pass `options` as argument to `send_request_as`
- `calculate_shared_key` returns an EncryptionKey instead of the raw key
- Update `pkinit_login` module to make it compatible
- Add support to `additional_tickets` when requesting tickets
- Add support to PAC CredentialInfo structures
- Add impersonation to escalate privileges
- Add ACTIONS
- Use elevated TGS to delete the computer account
- Update and add specs
2023-01-13 15:30:50 +01:00
03acb7e9f2
test: added rspec tests for 6074d1a4d3
2023-01-11 15:46:55 -05:00
4c6c8fcf8b
crack netntlm*
2023-01-08 14:29:21 -05:00
75372dcdd3
Land #17374 , Add klist command
2023-01-06 12:57:20 +00:00
a8957bce49
Update tgt response to include key
2022-12-30 13:41:54 +00:00
6f9ebe4068
Add klist command
2022-12-16 13:02:39 +00:00
6e09236c97
Land #17381 , Update rasn1 dependency for pkinit
2022-12-15 17:38:49 +01:00
89dd358d2d
Added unit test to check that HEAD responses don't hang
2022-12-15 14:34:01 +11:00
2783e92203
Update windows_secrets_dump and Keytab module to export kerberos keys
2022-12-14 13:40:39 +00:00
28bd37b0a7
Update rasn1 dependency for pkinit
2022-12-14 00:32:26 +00:00
a9ccfe31b7
Merge branch 'upstream-master' into merge-msf-6.2.31-into-kerberos-feature-branch
2022-12-13 19:40:39 +00:00
7625d4b08b
Add ticket flags when outputting krb5 ccache
2022-12-13 12:19:16 +00:00
a80db73bab
Land #17325 , add impersonation for get_ticket
...
Enable the `get_ticket` module to impersonate a user with S4U2self and S4U2proxy
2022-12-12 09:10:37 -05:00
86ec66c43d
Add decoding support
...
- for Rex::Proto::Kerberos::Model::Checksum
- for Rex::Proto::Kerberos::Model::PreAuthForUser
- add specs
2022-12-12 12:56:30 +01:00
1e1580e346
Move TypeSerialization1 to it's own file
2022-12-08 13:11:47 +00:00
1e2ada3cce
Add options validation depending on action in forge_ticket.rb
2022-12-06 12:55:42 +00:00
37540572e0
Land #17214 , add database functionality to vcenter post module
...
Merge branch 'land-17214' into upstream-master
2022-12-05 12:50:14 -06:00
405271a52f
Add pac BinData Model
2022-12-05 14:03:21 +00:00
7ec7cdfb97
fix vcenter spec error
2022-12-01 16:43:58 -05:00
40f97995f8
review comment
2022-11-19 10:37:36 -05:00
f12c660652
review comments
2022-11-19 10:37:36 -05:00
dff9b35d56
add database stuff to vcenter post module
2022-11-19 10:37:36 -05:00
7dcf65d7c3
Fix python reverse http stager crash
2022-11-18 14:32:36 +00:00
41f9ba57b4
Add icpr_cert module specs
2022-11-17 12:12:35 -05:00
0be10c5a33
Update code to use .blank? to simplify logic, and to also strip multiple trailing :'s. Update specs accordingly.
2022-11-09 13:00:34 -06:00
8efc6c5304
Land #17103 , Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:27:17 +00:00
7c2134d941
Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:08:26 +00:00
65f6aaca82
Land #17077 , Add support for AES keys for silver/golden ticket forging
2022-11-09 16:51:11 +00:00
78afc01903
Add spec tests.
2022-11-09 09:58:23 -06:00
23ff829e52
Add support for AES keys for silver/golden ticket forging
2022-11-09 13:01:13 +00:00
37fd441b0f
Land #17117 , Authenticate to Kerberos with PKINIT
2022-11-08 18:54:03 +01:00
65e4e1b76d
Land #17221 , Fix crash with payload sizes
...
Fix crash when generating payload sizes
2022-11-08 10:26:27 -05:00
ee46d18505
Add yard docs and address review comments
2022-11-07 12:10:01 +00:00
a110465fe4
Add module for converting kerberos ticket formats
2022-11-07 12:10:01 +00:00
1a353ee273
Update Python payloads to have dynamic sizes
...
While the length of the input payload is always the same size,
it may not always have the same contents due to random checksum
URI and UUID generation. This leads to payloads whose sizes
can vary by a few bytes between runs.
2022-11-05 15:58:10 -04:00
0d9cca79b4
Fix crash when generating payload sizes
2022-11-04 02:10:58 +00:00
e647bf8620
Namespace krb5 models
2022-11-02 13:04:52 +00:00
1307f01b76
Align with keytab instead of key_tab
2022-11-02 13:04:51 +00:00
98d2633859
Add Kerberos ktutil module
2022-11-02 13:04:50 +00:00
7774b7ddcf
Merge remote-tracking branch 'upstream/master' into merge-6.2.25-master-into-kerberos-feature-branch
2022-10-31 23:15:11 +00:00
ffa68e2bdf
Fix broken file writes on windows when newlines are present
2022-10-28 16:45:49 +01:00
40fca92b38
Land #16871 , Add vcenter_secrets_dump post module
...
Merge branch 'land-16871' into upstream-master
2022-10-27 11:05:07 -05:00
c0403af25e
Address two more imports, use described_class per review
2022-10-18 08:47:24 -04:00
1e50ba3415
Move to Hashes module, address requested changes
...
Fix rubocop
Move identify to hashes module up one layer, use full reference to identify_hash instead of full include
Fix SMTP require
Remove hashes require statement
Remove hashes require statement
Remove hashes require statement
Remove hashes require statement
Address remaining requested changes, reference constants directly
Add all the missing direct references
Co-Authored-By: Jeffrey Martin <jeffrey_martin@rapid7.com >
2022-10-17 17:28:31 -04:00
8b5223f53b
Modularize Identify, Update referenced use cases
...
Modularize Identity.rb
Include new module style Identify
Update juniper.rb
Fix inadvertent change
Add new module to identify spec
Put the require back
Put back require line for juniper
2022-10-17 17:28:30 -04:00
09e740d48d
Changes from code review
2022-10-17 17:19:50 +11:00
aa98c9d004
Removed vestigial test
2022-10-07 14:29:20 +11:00
cgranleese-r7