v1.3.0

What's Changed

• fix extract_password in the keepass module by @sepauli in #279
• [NXCDB] Add support for CTRL-D by @fpreynaud in #334
• Add output if a successful authentication is via Guest privileges by @Marshall-Hallenbeck in #333
  • New label for the guest account so this is quickly identified
• add testing hash file to e2e_commands.txt by @Marshall-Hallenbeck in #336
• Improve OS detection by @NeffIsBack in #340
• Adding some logger when users have been dumped by @Anhydrite in #343
• Added domain name for --users with samr by @Anhydrite in #345
• Add EnumAV Detection for Cortex XDR by @n00py in #344
• fix: little typo in help args by @aelmosalamy in #354
• Update pso.py by @bfnserra in #355
• Adding module to retrieve network interfaces info by @Sant0rryu in #293
• New SMB/WMI Module BitLocker by @termanix in #286
• Fix #332 - Add exception handling to prevent crashes against linux hosts by @NeffIsBack in #356
• Bug Fix While Using Bloodhound with --use-kcache Issue #363 by @termanix in #364
• Small Bug Fix on Listing SMB Shares with Kerberos Auth by @termanix in #357
• Fix mmcexec method thanks to @IppSec AND a lot of other small things by @mpgn in #361
• Remove message that could be too annoying by @NeffIsBack in #365
• Update enum_av Added Trellix EDR by @termanix in #371
• Fixed nla detection and error format string by @Kamuno in #372
• Fix ruff linting by @NeffIsBack in #375
• Add try&except block for DCERPCExceptions to fix #373 by @NeffIsBack in #376
• add new security-questions module by @Adamkadaban in #295
  • This queries the security questions for all local users, potentially containing passwords
• Update dploot to 2.7.4 in pyproject.toml by @zblurx in #384
• Update handlekatz.py pypykatz import by @3ldidi94 in #389
• Stop NetBiosTimeout and error producing large stack traces by @NeffIsBack in #387
• Fix check admin false positive on certain target (e.g Netapp) by @nikaiw in #378
• Fix admin check in mssql_priv by @NeffIsBack in #390
• Fix: module spider_plus with filtered folders by @glefait in #391
• Adding SCCM LDAP Reconnaissance to NetExec by @NeffIsBack in #386
  • Enumerate SCCM Site-Servers
  • Enumerate SCCM Sites
  • Enumerate SCCM Management Points and associate them with their respective SCCM Site
  • Enumerate all Users that might be related to the SCCM environment
  • Enumerate all Computers that might be related to the SCCM environment
  • Enumerate all Groups that might be related to the SCCM environment (also possible with recursive search)
• Fix spider_plus bug where len was applied to the count not an array by @NeffIsBack in #392
• Add module to lookup hostname of Hyper-V host - 'hyperv-host.py' by @joaovarelas in #374
• Add Unix availability to README.md by @NeffIsBack in #399
• ldap-checker.py false positive fixed by @cauan in #408
• ldap-checker.py Catch connection errors by @cauan in #409
• Updated github workflows by @NeffIsBack in #394
• Identify Pre-Created Computer Accounts by @Shad0wC0ntr0ller in #328
  • Identify Pre-Created Computer Accounts and save a ccache for each account if vulnerable. Based on the research of https://trustedsec.com/blog/diving-into-pre-created-computer-accounts
• Fix issues with kerberos and non NTLM domains by @NeffIsBack in #393
• Module wcc added some defender checks by @jubeaz in #306
• schtask_as Improvement - Options for custom task, file, and location. by @Kahvi-0 in #342
• Smbghost scanning module by @r4vanan in #407
• Make --version switch universal so help2man will work properly by @jsherwood0 in #417
• Encode delegate/impersonate user name string as utf8 unicode, not latin1 by @a-urth in #418
• Small cosmetic fix for ldap when using --no-smb by @NeffIsBack in #423
• Fix maq module if MAQ not set by @NeffIsBack in #422
• Add new SMB module to get the PowerShell history on all the users by @357384n in #341
• Fix file logging for display messages by @NeffIsBack in #406
• New Protocol NFS by @termanix in #366
  • Detect NFS Server
  • Enumerate Shares and their privileges
  • Recursive file enumeration with uid detection
  • Up- and Download Files
• Fix a bug with the databases when a new protocol is added by @NeffIsBack in #433
• Add file write check on smb by @tiyeuse in #404
• Fix pwned label when brute forcing with guest account enabled by @NeffIsBack in #434
• Improve test suite by @NeffIsBack in #435
• Increase plaintext&hash login speeds by @NeffIsBack in #411
• Add coerce_plus Module by @lodos2005 in #300
  • Combines the most popular coercion techniques into one module. Available techniques are:
  • DFSCoerce
  • PetitPotam
  • PrinterBug
  • ShadowCoerce
  • MSEven
• refactoring to fix InterfaceError of DB by @dazzgt in #400
• Small fixes for coerce_plus by @NeffIsBack in #442
• Updated the --get-file method to get large files from NFS shares by @ledrypotato in #440
• Fix module loading for ssh, vnc and ftp by @NeffIsBack in #447
• Fix windows and encoding stuff by @NeffIsBack in #446
• Release v1.3.0 by @NeffIsBack in #448

New Contributors

• @Anhydrite made their first contribution in #343
• @n00py made their first contribution in #344
• @aelmosalamy made their first contribution in #354
• @bfnserra made their first contribution in #355
• @Sant0rryu made their first contribution in #293
• @Kamuno made their first contribution in #372
• @3ldidi94 made their first contribution in #389
• @glefait made their first contribution in #391
• @joaovarelas made their first contribution in #374
• @cauan made their first contribution in #408
• @jubeaz made their first contribution in #306
• @r4vanan made their first contribution in #407
• @jsherwood0 made their first contribution in #417
• @a-urth made their first contribution in #418
• @357384n made their first contribution in #341
• @tiyeuse made their first contribution in #404
• @dazzgt made their first contribution in #400
• @ledrypotato made their first contribution in #440

Full Changelog: v1.2.0...v1.3.0