Skip to content

v1.3.0

Latest
Compare
Choose a tag to compare
@NeffIsBack NeffIsBack released this 13 Oct 20:40
· 87 commits to main since this release
6d4fdfd

What's Changed

  • fix extract_password in the keepass module by @sepauli in #279
  • [NXCDB] Add support for CTRL-D by @fpreynaud in #334
  • Add output if a successful authentication is via Guest privileges by @Marshall-Hallenbeck in #333
    • New label for the guest account so this is quickly identified
  • add testing hash file to e2e_commands.txt by @Marshall-Hallenbeck in #336
  • Improve OS detection by @NeffIsBack in #340
  • Adding some logger when users have been dumped by @Anhydrite in #343
  • Added domain name for --users with samr by @Anhydrite in #345
  • Add EnumAV Detection for Cortex XDR by @n00py in #344
  • fix: little typo in help args by @aelmosalamy in #354
  • Update pso.py by @bfnserra in #355
  • Adding module to retrieve network interfaces info by @Sant0rryu in #293
  • New SMB/WMI Module BitLocker by @termanix in #286
  • Fix #332 - Add exception handling to prevent crashes against linux hosts by @NeffIsBack in #356
  • Bug Fix While Using Bloodhound with --use-kcache Issue #363 by @termanix in #364
  • Small Bug Fix on Listing SMB Shares with Kerberos Auth by @termanix in #357
  • Fix mmcexec method thanks to @IppSec AND a lot of other small things by @mpgn in #361
  • Remove message that could be too annoying by @NeffIsBack in #365
  • Update enum_av Added Trellix EDR by @termanix in #371
  • Fixed nla detection and error format string by @Kamuno in #372
  • Fix ruff linting by @NeffIsBack in #375
  • Add try&except block for DCERPCExceptions to fix #373 by @NeffIsBack in #376
  • add new security-questions module by @Adamkadaban in #295
    • This queries the security questions for all local users, potentially containing passwords
  • Update dploot to 2.7.4 in pyproject.toml by @zblurx in #384
  • Update handlekatz.py pypykatz import by @3ldidi94 in #389
  • Stop NetBiosTimeout and error producing large stack traces by @NeffIsBack in #387
  • Fix check admin false positive on certain target (e.g Netapp) by @nikaiw in #378
  • Fix admin check in mssql_priv by @NeffIsBack in #390
  • Fix: module spider_plus with filtered folders by @glefait in #391
  • Adding SCCM LDAP Reconnaissance to NetExec by @NeffIsBack in #386
    • Enumerate SCCM Site-Servers
    • Enumerate SCCM Sites
    • Enumerate SCCM Management Points and associate them with their respective SCCM Site
    • Enumerate all Users that might be related to the SCCM environment
    • Enumerate all Computers that might be related to the SCCM environment
    • Enumerate all Groups that might be related to the SCCM environment (also possible with recursive search)
  • Fix spider_plus bug where len was applied to the count not an array by @NeffIsBack in #392
  • Add module to lookup hostname of Hyper-V host - 'hyperv-host.py' by @joaovarelas in #374
  • Add Unix availability to README.md by @NeffIsBack in #399
  • ldap-checker.py false positive fixed by @cauan in #408
  • ldap-checker.py Catch connection errors by @cauan in #409
  • Updated github workflows by @NeffIsBack in #394
  • Identify Pre-Created Computer Accounts by @Shad0wC0ntr0ller in #328
  • Fix issues with kerberos and non NTLM domains by @NeffIsBack in #393
  • Module wcc added some defender checks by @jubeaz in #306
  • schtask_as Improvement - Options for custom task, file, and location. by @Kahvi-0 in #342
  • Smbghost scanning module by @r4vanan in #407
  • Make --version switch universal so help2man will work properly by @jsherwood0 in #417
  • Encode delegate/impersonate user name string as utf8 unicode, not latin1 by @a-urth in #418
  • Small cosmetic fix for ldap when using --no-smb by @NeffIsBack in #423
  • Fix maq module if MAQ not set by @NeffIsBack in #422
  • Add new SMB module to get the PowerShell history on all the users by @357384n in #341
  • Fix file logging for display messages by @NeffIsBack in #406
  • New Protocol NFS by @termanix in #366
    • Detect NFS Server
    • Enumerate Shares and their privileges
    • Recursive file enumeration with uid detection
    • Up- and Download Files
  • Fix a bug with the databases when a new protocol is added by @NeffIsBack in #433
  • Add file write check on smb by @tiyeuse in #404
  • Fix pwned label when brute forcing with guest account enabled by @NeffIsBack in #434
  • Improve test suite by @NeffIsBack in #435
  • Increase plaintext&hash login speeds by @NeffIsBack in #411
  • Add coerce_plus Module by @lodos2005 in #300
    • Combines the most popular coercion techniques into one module. Available techniques are:
    • DFSCoerce
    • PetitPotam
    • PrinterBug
    • ShadowCoerce
    • MSEven
  • refactoring to fix InterfaceError of DB by @dazzgt in #400
  • Small fixes for coerce_plus by @NeffIsBack in #442
  • Updated the --get-file method to get large files from NFS shares by @ledrypotato in #440
  • Fix module loading for ssh, vnc and ftp by @NeffIsBack in #447
  • Fix windows and encoding stuff by @NeffIsBack in #446
  • Release v1.3.0 by @NeffIsBack in #448

New Contributors

Full Changelog: v1.2.0...v1.3.0