70f7dfebc3
Initial commit of AD DS LDAP mixin
2025-06-24 11:27:52 -04:00
d38dd96861
Renames LDAP datastore options
2025-03-25 17:07:25 +00:00
469671e59d
Added LDAP password change module
2024-11-21 17:34:21 +11:00
c732fed617
Feedback from code review
2024-10-11 08:22:39 +11:00
22cf3f05d5
Send a benign LDAP request every 10 minutes to keep sessions alive
2024-10-11 08:22:39 +11:00
a6fd6defcb
Escape LDAP query strings
2024-06-18 17:47:56 -04:00
68f7334348
Fix kerberos auth and missing method error when querying with -a
2024-05-15 16:11:40 +01:00
7cdea94000
Convert ldap modules to use the new ldap session type
2024-05-15 15:12:51 +01:00
e693b9588c
Update ldap modules to support an ldap session
2024-05-15 15:12:51 +01:00
df32ce2db9
Add ldap query support to the ldap session
2024-05-15 15:12:51 +01:00
3cedb20f75
Add initial ldap session support
2024-05-15 15:12:51 +01:00
69e35005ee
Add TLS channel binding for kerberos
2024-05-08 16:30:24 -04:00
8dabe17121
Pass the ticket storage setting
2024-05-08 16:24:54 -04:00
942d47bec5
Add TLS channel binding for NTLM
2024-05-08 16:24:48 -04:00
5523f13394
Fix a message that should refer to LDAP::Signing
2024-05-06 09:40:28 -04:00
69d603e6fc
Switch to an enum option for the signing
2024-05-03 10:27:10 -04:00
6d915dbb55
Fix unit tests
2024-04-24 15:54:57 +10:00
68966b86f1
Give warning on invalid config (SSL and REQUIRE_SIGNING both set to true)
2024-04-24 15:05:03 +10:00
a4b3c27e28
Provide more meaningful error message when signing is required
2024-04-24 13:37:27 +10:00
b5f4dfae71
Make encrypting/signing an option
2024-04-24 13:24:05 +10:00
1af852b240
Add remote ldap specs
2023-09-11 16:33:01 +01:00
80757fc717
Add missing require
2023-09-11 16:33:01 +01:00
fc89c9939a
Add LDAP login scanner
2023-09-11 16:33:01 +01:00
8f013d7aef
Add ldap login scanner module
2023-09-11 16:33:01 +01:00
08a2a293a9
Add proxies datastore support to kerberos
2023-07-21 11:19:50 +01:00
dcbc6d19c5
Update #validate_query_result!
...
The function required a filter argument, but not every query has a
filter. By removing it, we can reuse the same logic for other operations
including modifications.
2023-05-22 09:21:20 -04:00
d92b6e328a
Fix up error message
2023-02-27 16:14:00 -05:00
524f5e4e63
Check file exists first before trying to read
2023-02-27 14:12:09 -06:00
4cd50b4550
Address comments from review
2023-02-27 11:07:21 -06:00
fe8afed994
Change over to fail_with and add condition to fail when SSL is not enabled and SCHANNEL is the authentication mechanism
2023-02-24 14:13:13 -06:00
f6bfa6a61b
Add in SCHANNEL support, and update modules to fix a hang when using to_json instead of get_operation_result.
2023-02-24 13:50:04 -06:00
8b27c2e8f7
Use start_tls for connections with SSL
2023-02-23 08:33:18 -06:00
672fb9ce9f
Land #17460 , add support for feature kerberos authentication
2023-01-26 17:47:27 +00:00
2d30909a2f
Change option name namespacing convention
2023-01-26 16:17:50 +00:00
71aa4bdace
Update ldap_query with find_schema_dn function to find the schema DN which may not be the same as the base DN so we can query security attributes of entries
2023-01-25 15:19:29 -06:00
9a6c298a43
Use shared helper for creating kerberos options
2023-01-23 11:04:01 +00:00
1975c92e92
Remove extra info from verbose mode of LDAP output
2023-01-20 16:51:34 -06:00
ebfcfd4cb9
Land #17066 , Add module for Certifried
...
Add exploit module for Certifried exploit
2023-01-18 14:51:03 -05:00
d810267f8d
Pull in Dean's changes from #17443 to fix LDAP failure references.
2023-01-17 16:31:08 -06:00
eddac9321c
Merge 6.2.36 master into kerberos feature branch
2023-01-13 17:31:02 +00:00
3d22fbcad9
Add exploit module for Certifried exploit
...
- Move all the logic from `modules/auxiliary/admin/dcerpc/icpr_cert.rb`
to `lib/msf/core/exploit/remote/ms_icpr.rb` library
- Move all the logic from `modules/auxiliary/admin/dcerpc/samr_computer.rb`
to `lib/msf/core/exploit/remote/ms_samr.rb` library
- Add `modules/auxiliary/admin/dcerpc/cve_2022_26923_certifried.rb` module
- Update the SMB client to disable SSL by default
- Add documentation
- Kerbero client: pass `options` as argument to `send_request_as`
- `calculate_shared_key` returns an EncryptionKey instead of the raw key
- Update `pkinit_login` module to make it compatible
- Add support to `additional_tickets` when requesting tickets
- Add support to PAC CredentialInfo structures
- Add impersonation to escalate privileges
- Add ACTIONS
- Use elevated TGS to delete the computer account
- Update and add specs
2023-01-13 15:30:50 +01:00
138f3bb4b2
Make the encryption type configurable
2023-01-09 17:20:57 -05:00
8078616f5f
Use the correct constant names for ldap failures
2023-01-06 14:11:26 +00:00
e03fd42a29
Update to fix some warnings in YARD, fix review comments, and also replace @see with proper links for easier navigation
2023-01-05 17:44:24 -06:00
e218210feb
Update ldap_connect documentation to set Object as the return type
2023-01-05 10:51:18 -06:00
c71ba23a10
Fix up incorrectly indented documentation, remove excess lines, and add in correct type return information from debugging sessions
2023-01-04 11:09:23 -06:00
bfb80db9db
Add in missing YARD documentation for lib/msf/core/exploit/remote/ldap.rb
2022-12-30 16:07:08 -06:00
fea259f6e7
Switch everything to use the ticket storage
2022-12-15 18:31:14 -05:00
a9ccfe31b7
Merge branch 'upstream-master' into merge-msf-6.2.31-into-kerberos-feature-branch
2022-12-13 19:40:39 +00:00
c1d092b70d
Minor tweaks
...
Filter out enrollable certs by default and print the warning higher. Add
periods to all messages for consistency. Drop the message from
vprint_good to vprint_status when the query works.
2022-11-07 10:37:12 -05:00
Spencer McIntyre