arno0x / ntlmrelaytoews Goto Github PK
View Code? Open in Web Editor NEWntlm relay attack to Exchange Web Services
License: GNU General Public License v3.0
ntlmrelaytoews's People
Contributors
Stargazers
Watchers
Forkers
quikilr cys3c shantanu561993 michalkoczwara awesome-python awesome-security c002 jbarcia av1080p topotam languang vysecurity 0x13337 detrojones minkione redsec-shay tuian m31moth w00t3k ashr m00zh33 yikez978 tr33-he11 mehrdad-shokri ykankaya f1d094 zshell team-firebugs backlion dannymas veteransec qsdj raystyle mmg1 joinfsocity c0010 y0d4a 5alt attackgithub sasqwatch orf53975 riviera12345 bigbrobro imulmul rogue-kdc ntgitdude23 1337g 3v1lw1th1n 5l1v3r1 xizhimen l34rn jumbo-wjb alainw68 bahtiyarb-torba zha0 ekmixon sec99 badchars fdluciferntlmrelaytoews's Issues
getting shells from outlook forms support?
Would it be possible to add support for getting shells via outlook forms as described here: https://sensepost.com/blog/2017/outlook-forms-and-shells/ ?
Save hashes
Will this save the hashes and challenges it receives so it can be cracked offline as well?
User/pass/hash flag
I know it is kinda defeat the purpose of the tools , but as ruler doesnt support internal connection (over tcp ) it would be great if this tool would accept user/password/hash to allow internal rules provisioning where bulk creds are already available
SSL Version too low
Hi ,
trying to relay connection against my exchange 2013 I'm getting
`Hi , trying to relay
HTTPD: Received connection from 127.0.0.1, attacking target 192.168.1.64 [-] Connection against target 192.168.1.64 FAILED [-] [SSL: VERSION_TOO_LOW] version too low (_ssl.c:661)
I'm using local Kali as the relay server (dont have access to exchange externally ) .
thanks for the help
Suggestion
Worth logging the NetNTLMv2 hash?
https://github.com/sinnaj-r/NTLMssp-Extract
We can also use that in TCPDump I guess.
sentitem is error
parser.add_argument("-f","--folder", action="store", choices=['inbox', 'sentitem', 'deleteditems', 'tasks','calendar','contacts'], help='The Exchange folder name to list')
when we receive sentitems folders from getfolder action,we must choose sentitems but not sentitem
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.