a93d20ccfe
Add some basic tests
2025-07-08 15:01:54 -04:00
630c2c03bc
Update certs command, pkcs12 matching and specs
...
- use the `status`, certificate's `not_before`/`not_after` and check if the TLS
OID is present to filter pkcs12 before using them with PKInit
- add the `activate`, `deactivate` and `export` capabilities to the
certs command
- add specs
2025-04-02 18:23:14 +02:00
d47ec03ca7
Refactor CMS data structures used in pkinit functionality
2025-03-14 10:42:32 +11:00
7bab1c1980
Fix specs and add algorithm argument
2024-11-18 17:17:58 +01:00
a6fd6defcb
Escape LDAP query strings
2024-06-18 17:47:56 -04:00
7cdea94000
Convert ldap modules to use the new ldap session type
2024-05-15 15:12:51 +01:00
e693b9588c
Update ldap modules to support an ldap session
2024-05-15 15:12:51 +01:00
6d915dbb55
Fix unit tests
2024-04-24 15:54:57 +10:00
48221e594d
Land #18704 , Leverage the module metadata cache in the module_sets
2024-02-02 14:16:46 +00:00
2cf045d3c4
Leverage the module metadata cache in the module_sets
2024-01-15 14:56:46 +00:00
ec8ee2814a
fix spelling in spec folder
2024-01-07 13:42:50 -05:00
9f126a4d24
Land #18446 , Make DomainControllerRhost optional
...
This PR makes the DomainControllerRhosts option optional,
even when auth is set to kerberos. This change requires
rapid7/rex-socket#64 which was released in the rex-socket 1.5.5 gem.
2023-12-05 17:47:45 -05:00
f000c39b4a
Update to mark DomainControllerRhost as optional
2023-12-05 16:23:35 -05:00
2ea1f43f12
Unit test for new kerberos client pre-auth behaviour
2023-11-27 17:10:19 +11:00
6e9facbefb
Merge pull request #18419 from smashery/dcsync_kerberos
...
DCSync using Kerberos Pass-the-Ticket
2023-10-30 09:41:22 -04:00
2a699b89fa
Changes from code review
2023-10-30 12:51:55 +11:00
5087e0ffe3
Land #18197 , Ldap login scanner module
...
Adds a new login scanner module for LDAP
2023-10-02 10:56:56 -04:00
c1a44c8b7f
Land #18359 , Forge ticket fix
2023-09-18 13:05:25 +01:00
483e8175ca
Update unit tests
2023-09-13 14:11:18 +10:00
1af852b240
Add remote ldap specs
2023-09-11 16:33:01 +01:00
235c142274
Merge remote-tracking branch 'origin/flask_unsign' into flask_unsign
2023-09-11 10:27:00 -04:00
143e1c82b5
Add validation functionality to FlaskUnsign
2023-09-07 16:19:58 -04:00
213b9f9589
Merge remote-tracking branch 'upstream/master' into flask_unsign
2023-09-06 15:39:37 -04:00
d84c15cf21
lib and spec updates
2023-08-17 15:29:20 -04:00
3d3e2a9e2d
apache supserset exploit
2023-07-11 15:19:33 -04:00
2c2f855e20
working cookies for superset
2023-07-06 07:12:39 -04:00
62775e0749
fix spec
2023-07-02 13:10:43 -04:00
c9249fd9b7
basics
2023-07-02 12:37:58 -04:00
48a5f33f35
Add option to include a ticket checksum while forging a ticket
2023-03-06 13:19:59 +00:00
efd79eb638
Add support for forging inter-realm Kerberos tickets
2023-03-03 13:20:39 +00:00
647cf1d402
Return Time from #extract_logon_time
2023-01-27 10:05:02 -05:00
dc6c1e333b
Land #17553 , Framework 6.3.0
2023-01-26 13:30:27 -06:00
9be26eb0ff
improve SMTP delivery error handling
2023-01-20 11:26:25 -06:00
3d22fbcad9
Add exploit module for Certifried exploit
...
- Move all the logic from `modules/auxiliary/admin/dcerpc/icpr_cert.rb`
to `lib/msf/core/exploit/remote/ms_icpr.rb` library
- Move all the logic from `modules/auxiliary/admin/dcerpc/samr_computer.rb`
to `lib/msf/core/exploit/remote/ms_samr.rb` library
- Add `modules/auxiliary/admin/dcerpc/cve_2022_26923_certifried.rb` module
- Update the SMB client to disable SSL by default
- Add documentation
- Kerbero client: pass `options` as argument to `send_request_as`
- `calculate_shared_key` returns an EncryptionKey instead of the raw key
- Update `pkinit_login` module to make it compatible
- Add support to `additional_tickets` when requesting tickets
- Add support to PAC CredentialInfo structures
- Add impersonation to escalate privileges
- Add ACTIONS
- Use elevated TGS to delete the computer account
- Update and add specs
2023-01-13 15:30:50 +01:00
a8957bce49
Update tgt response to include key
2022-12-30 13:41:54 +00:00
28bd37b0a7
Update rasn1 dependency for pkinit
2022-12-14 00:32:26 +00:00
1e2ada3cce
Add options validation depending on action in forge_ticket.rb
2022-12-06 12:55:42 +00:00
405271a52f
Add pac BinData Model
2022-12-05 14:03:21 +00:00
8efc6c5304
Land #17103 , Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:27:17 +00:00
7c2134d941
Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:08:26 +00:00
65f6aaca82
Land #17077 , Add support for AES keys for silver/golden ticket forging
2022-11-09 16:51:11 +00:00
23ff829e52
Add support for AES keys for silver/golden ticket forging
2022-11-09 13:01:13 +00:00
37fd441b0f
Land #17117 , Authenticate to Kerberos with PKINIT
2022-11-08 18:54:03 +01:00
a110465fe4
Add module for converting kerberos ticket formats
2022-11-07 12:10:01 +00:00
09e740d48d
Changes from code review
2022-10-17 17:19:50 +11:00
aa98c9d004
Removed vestigial test
2022-10-07 14:29:20 +11:00
db12c7e0f0
Added tests for parsing new Kerberos structures
2022-10-07 14:04:24 +11:00
58c30f10aa
Send and Receive PKINIT responses
2022-10-07 01:04:10 +11:00
5d345e6689
Merge branch 'upstream-master' into feature-kerberos-authentication
2022-09-29 16:42:58 +01:00
3a281234df
Add feature flagged datastore rewrite, with support for option fallback lookups
2022-09-16 12:59:02 +01:00
Spencer McIntyre