fc0324f28b
Consistently print keys without \x
2023-01-26 10:49:05 -05:00
ebfcfd4cb9
Land #17066 , Add module for Certifried
...
Add exploit module for Certifried exploit
2023-01-18 14:51:03 -05:00
eddac9321c
Merge 6.2.36 master into kerberos feature branch
2023-01-13 17:31:02 +00:00
3d22fbcad9
Add exploit module for Certifried exploit
...
- Move all the logic from `modules/auxiliary/admin/dcerpc/icpr_cert.rb`
to `lib/msf/core/exploit/remote/ms_icpr.rb` library
- Move all the logic from `modules/auxiliary/admin/dcerpc/samr_computer.rb`
to `lib/msf/core/exploit/remote/ms_samr.rb` library
- Add `modules/auxiliary/admin/dcerpc/cve_2022_26923_certifried.rb` module
- Update the SMB client to disable SSL by default
- Add documentation
- Kerbero client: pass `options` as argument to `send_request_as`
- `calculate_shared_key` returns an EncryptionKey instead of the raw key
- Update `pkinit_login` module to make it compatible
- Add support to `additional_tickets` when requesting tickets
- Add support to PAC CredentialInfo structures
- Add impersonation to escalate privileges
- Add ACTIONS
- Use elevated TGS to delete the computer account
- Update and add specs
2023-01-13 15:30:50 +01:00
89dd358d2d
Added unit test to check that HEAD responses don't hang
2022-12-15 14:34:01 +11:00
7625d4b08b
Add ticket flags when outputting krb5 ccache
2022-12-13 12:19:16 +00:00
a80db73bab
Land #17325 , add impersonation for get_ticket
...
Enable the `get_ticket` module to impersonate a user with S4U2self and S4U2proxy
2022-12-12 09:10:37 -05:00
86ec66c43d
Add decoding support
...
- for Rex::Proto::Kerberos::Model::Checksum
- for Rex::Proto::Kerberos::Model::PreAuthForUser
- add specs
2022-12-12 12:56:30 +01:00
1e1580e346
Move TypeSerialization1 to it's own file
2022-12-08 13:11:47 +00:00
405271a52f
Add pac BinData Model
2022-12-05 14:03:21 +00:00
8efc6c5304
Land #17103 , Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:27:17 +00:00
7c2134d941
Consolidate KdcOptionFlags and TicketFlags
2022-11-09 17:08:26 +00:00
37fd441b0f
Land #17117 , Authenticate to Kerberos with PKINIT
2022-11-08 18:54:03 +01:00
ee46d18505
Add yard docs and address review comments
2022-11-07 12:10:01 +00:00
a110465fe4
Add module for converting kerberos ticket formats
2022-11-07 12:10:01 +00:00
e647bf8620
Namespace krb5 models
2022-11-02 13:04:52 +00:00
1307f01b76
Align with keytab instead of key_tab
2022-11-02 13:04:51 +00:00
98d2633859
Add Kerberos ktutil module
2022-11-02 13:04:50 +00:00
db12c7e0f0
Added tests for parsing new Kerberos structures
2022-10-07 14:04:24 +11:00
58c30f10aa
Send and Receive PKINIT responses
2022-10-07 01:04:10 +11:00
5f85175f56
Add module for golden/silver ticket forging
2022-09-01 16:12:07 +01:00
d3e7152954
Changes from code review
2022-07-08 11:47:54 +10:00
b2eb348d94
Added WinRM using Kerberos, including encryption
2022-07-07 13:17:09 +10:00
d31ffa27d3
Add and use a new kerberos CCache model definition
2022-07-01 11:57:30 -04:00
89187c1fa9
Land #16685 , Add missing Kerberos encryption types
2022-06-22 13:13:30 +01:00
a4a0fc3028
Changes from code review.
...
Use kwargs instead of default values for rarer crypto args.
Revert case-sensitivity change; we'll leave krb5 on Linux til later.
More constants
2022-06-22 16:03:36 +10:00
15446fd173
Incorporated new encryption methods into login scanner, including negotiating
2022-06-22 09:36:25 +10:00
19b62a5af6
Support several new encryption types for Kerberos.
...
Supports DES-CBC-MD5, DES3-CBC-SHA1, AES128, AES256
2022-06-22 09:13:33 +10:00
3f56f9891d
Update keberos to support host addresses in tickets
2022-06-18 04:16:36 +01:00
ac5a885f16
Land #16660 , Fix Kerberos flags decoding logic
2022-06-17 17:38:09 +01:00
5dd650fc76
Support decoding pa_data as part of kdc enc response
2022-06-15 20:46:45 +01:00
affc5bc294
Fix Kerberos flags decoding logic
2022-06-09 12:22:20 +01:00
c0c02e56ba
Land #16430 , Improve kerberos user enum module
2022-05-13 12:17:26 +01:00
e4f42d7eaa
Update more modules to use the vars_form_data api
2022-05-11 18:18:21 +01:00
94e1ad3fe5
Update form data api defaults
2022-05-10 14:12:17 +01:00
4ad4ca32e8
Fix test alignment
2022-05-09 16:51:20 +01:00
0ce36f318e
Move logic into client_request for consistency
2022-05-09 16:51:15 +01:00
709f369c79
Inline mock boundaries for clarity
2022-05-09 12:32:31 +01:00
2e59f17439
Rename files to form_data
2022-05-06 16:41:19 +01:00
4ec4b89d00
Add upload of files to HttpClient & update a module to use it
2022-04-25 14:55:37 +01:00
be7510dba3
Additional mocking
2022-04-13 15:46:18 +01:00
a53be3184a
Improving error handling of Kerberos
2022-04-08 20:48:10 +01:00
bbf9e3163a
Fix file reads on Windows for binary files
2022-03-21 12:47:39 +00:00
ae704eb067
Add support for multiple tlv types when logging
2022-03-04 16:20:20 +00:00
6930200422
Fix partial bindata reads within web sockets
2021-11-02 17:13:13 -04:00
e52083a65c
Land #15785 , add command name to meterpreter packet inspect
2021-10-21 12:14:17 +01:00
ae3efa0589
Add command name to Meterpreter packet inspect
2021-10-21 02:08:39 +01:00
2db5764700
Add WebSocket frame and opcode specs, fix bugs
2021-09-29 17:55:05 -04:00
ac319e730b
Document the new WebSocket functionality
2021-09-29 17:55:05 -04:00
6aaf44c902
rubocop files and make the exclusions more localised
2021-03-15 13:27:37 +00:00
Spencer McIntyre