garrettfoster13 / pre2k Goto Github PK

Hi,

Thank you for this tool!

I have a suggestion. I tested your tool in a parent-child (intra-realm) trust abuse scenario and in a bidirectional forest (inter-realm) trust abuse scenario. Basically I am trying to attack the parent/target domain or the target forest by executing the auth command using credentials from the related child/source domain or from the related source forest. This fails.

This is not very surprising since your tool uses the domain entered using the -d flag as both the domain for the authentication and for knowing which domain to attack. There is no way to enter a domain for authentication only.

Could this tool be updated to support the above scenarious? Perhaps keep the functionality of the current -d flag but add support for authentication the way Impacket does it. Ie [domain]/[username]:[password]" and of course corresponding NT hash, AES keys and Kerberos authentication?

Thanks!

Some users experiencing AttributionError related to argparse.

Hello, I am trying to install this tool using Python/Pip 3.9 or 3.10 on Kali Linux 2022.4 and keep having this issue (sudo or not):

You may see mention of proxychains in there. It is confirmed working through other apt/pip installs.

Poetry is not installed in sudo or not and 3.9 or 3.10. Let me know if there is anything I can help you troubleshoot on my end.

Could you please tag the source? This allows distributions to get the complete source from GitHub if they want.

Thanks

please revert back to commit e93a36d

Thank you,

When trying to install pre2k via pip, I'm getting an error message:

pip install .
Processing c:\dev\pre2k-main
  Installing build dependencies: started
  Installing build dependencies: finished with status 'done'
  Getting requirements to build wheel: started
  Getting requirements to build wheel: finished with status 'done'
  Preparing metadata (pyproject.toml): started
  Preparing metadata (pyproject.toml): finished with status 'done'
Collecting impacket==0.10.0 (from pre2k==3.0)
  Using cached impacket-0.10.0.tar.gz (1.4 MB)
ERROR: THESE PACKAGES DO NOT MATCH THE HASHES FROM THE REQUIREMENTS FILE. If you have updated the package versions, please update the hashes. Otherwise, examine the package contents carefully; someone may have tampered with them.
    impacket==0.10.0 from https://files.pythonhosted.org/packages/c9/31/835e095d3ed804bbc22e96db2d999045608cbfdab653b1d19af65973fb33/impacket-0.10.0.tar.gz (from pre2k==3.0):
        Expected sha256 b8eb020a2cbb47146669cfe31c64bb2e7d6499d049c493d6418b9716f5c74583
             Got        e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

I understand, that the expected hash of the impacket lib does not match the provided one. Should I change the hash in the expected hash in the requirements file?