Navigation:
Browse pkgsrc
(this page) 2024-02-29 21:56:49 by Adam Ciarcinski | Files touched by this commit (5) |  |
Log message:
py-impacket: updated to 0.11.0
Impacket v0.11.0 (Aug 2023):
1. Library improvements
* Added new Kerberos error codes (@ly4k).
* Added `[MS-TSTS]` Terminal Services Terminal Server Runtime Interface \
Protocol implementation (@nopernik).
* Changed the setting up for new SSL connections (@mpgn, @CT-H00K and \
@0xdeaddood).
* Added a callback function to smbserver for incoming authentications \
(@p0dalirius).
* Fix crash in winregistry (@laxa)
* Fixes in IDispatch derived classes in comev implementation (@NtAlexio2)
* Fix CVE-2020-17049 in ccache.py (@godylockz)
* Smbserver: Added SMB2_FILE_ALLOCATION_INFO type determination (@JerAxxxxxxx)
* tds: Fixed python3 incompatibility when receiving over TLS socket (@exploide)
* crypto: Ensure passwords are utf-8 encoded before deriving Kerberos keys \
(@jojonas)
* ese: Fixed python3 incompatibility when reading from db (@alexisbalbachan)
* ldap queries: Escaped characters are now correctly parsed (@alexisbalbachan)
* Support SASL authentication in ldap protocol (@NtAlexio2)
2. Examples improvements
* [GetADUsers.py](examples/GetADUsers.py), \
[GetNPUsers.py](examples/GetNPUsers.py), \
[GetUserSPNs.py](examples/GetUserSPNs.py) and \
[findDelegation.py](examples/findDelegation.py):
* Added dc-host option to connect to specific KDC using its FQDN or \
NetBIOS name (@rmaksimov and @0xdeaddood).
* [GetNPUsers.py](examples/GetNPUsers.py)
* Printing TGT in stdout despite -outputfile parameter (@alexisbalbachan \
and @Zamanry)
* Fixed output hash format for AES128/256 (etype 17/18) (@erasmusc)
* [GetUserSPNs.py](examples/GetUserSPNs.py):
* Added LDAP paged search (@ThePirateWhoSmellsOfSunflowers and @SAERXCIT).
* Added a -stealth flag to remove the SPN filter from the LDAP query \
(@clavoillotte).
* Improved searchFilter (@ShutdownRepo)
* Use LDAP paged search (@ThePirateWhoSmellsOfSunflowers)
* [psexec.py](examples/psexec.py):
* Added support for name customization using a custom binary file (@Dramelac).
* [smbexec.py](examples/smbexec.py):
* Security fixes for privilege escalation vulnerabilities (@bugch3ck).
* Fixed python3 compatibility issues, added workaround TCP over NetBIOS \
being disabled (@ljrk0)
* [secretsdump.py](examples/secretsdump.py):
* Added a new option to extract only NTDS.DIT data for specific users \
based on an LDAP filter (@snovvcrash).
* Security fixes for privilege escalation vulnerabilities (@bugch3ck).
* [mssqlclient.py](examples/mssqlclient.py):
* Added multiple new commands. Now supports xp_dirtree execution \
(@Mayfly277, @trietend and @TurtleARM).
* [ntlmrelayx.py](examples/ntlmrelayx.py):
* Added ability to trigger SQLShell when running ntlmrelayx in interactive \
mode (@sploutchy).
* Added filter option to the socks command in ntlmrelayx CLI (@shoxxdj)
* Added ability to register DNS records through LDAP.
* [addcomputer.py](examples/addcomputer.py), [rbcd.py](examples/rbcd.py):
* Allow weak TLS ciphers for LDAP connections (@AdrianVollmer)
* [Get-GPPPassword.py](examples/Get-GPPPassword.py):
* Better handling of various XML files in Group Policy Preferences \
(@p0dalirius)
* [smbclient.py](examples/smbclient.py):
* Added recursive file listing (@Sq00ky)
* [ticketer.py](examples/ticketer.py):
* Ticket duration is now specified in hours instead of days (@Dramelac)
* Added extra-pac implementation (@Dramelac)
3. New examples
* [net.py](examples/net.py) Implementation of windows net.exe builtin tool \
(@NtAlexio2)
* [changepasswd.py](examples/changepasswd.py) New example that allows \
password changing or reseting through multiple protocols (@Alef-Burzmali, \
@snovvcrash, @bransh, @api0cradle and @p0dalirius)
* [DumpNTLMInfo.py](examples/DumpNTLMInfo.py) New example that dumps remote \
host information in ntlm authentication model, without credentials. For SMB \
protocols v1, v2 and v3. (@NtAlexio2)
|
| 2022-10-19 16:25:20 by Nia Alarie | Files touched by this commit (21) |
Log message: fighting a losing battle against the py-cryptography rustification, part 5 Convert py-OpenSSL users to versioned_dependencies.mk |
| 2022-04-29 13:56:47 by Thomas Klausner | Files touched by this commit (29) | |
Log message: *: mark py-flask dependencies as not-for-python-2.x I'll update py-flask soon; the current pkgsrc of py-flask version is broken and all newer versions do not support python 2.x |
| 2022-01-05 16:41:32 by Thomas Klausner | Files touched by this commit (289) |
Log message: python: egg.mk: add USE_PKG_RESOURCES flag This flag should be set for packages that import pkg_resources and thus need setuptools after the build step. Set this flag for packages that need it and bump PKGREVISION. |
| 2022-01-04 21:55:40 by Thomas Klausner | Files touched by this commit (1595) |
Log message: *: bump PKGREVISION for egg.mk users They now have a tool dependency on py-setuptools instead of a DEPENDS |
| 2021-12-01 17:29:05 by Adam Ciarcinski | Files touched by this commit (2) |
Log message: py-impacket: fix building |
| 2021-11-10 11:56:10 by Adam Ciarcinski | Files touched by this commit (4) | |
Log message:
py-impacket: updated to 0.9.24
Impacket v0.9.24 (October 2021):
1. Library improvements
* Fixed WMI objects parsing
* Added the RpcAddPrinterDriverEx method and related structures to \
[MS-RPRN]: Print System Remote Protocol
* Initial implementation of [MS-PAR]: Print System Asynchronous Remote \
Protocol
* Complying MS-RPCH with HTTP/1.1
* Added return of server time in case of Kerberos error
2. Examples improvements
* [getST.py](examples/getST.py):
* Added support for a custom additional ticket for S4U2Proxy
* [ntlmrelayx.py](examples/ntlmrelayx.py):
* Added Negotiate authentication support to the HTTP server
* Added anonymous session handling in the HTTP server
* Fixed error in ldapattack.py when trying to escalate with machine \
account
* Added the implementation of AD CS attack
* Disabled the anonymous logon in the SMB server
* [psexec.py](examples/psexec.py):
* Fixed decoding problems on multi bytes characters
* [reg.py](examples/reg.py):
* Implemented ADD and DELETE functionalities
* [secretsdump.py](examples/secretsdump.py):
* Speeding up NTDS parsing
* [smbclient.py](examples/smbclient.py):
* Added 'mget' command which allows the download of multiple files
* Handling empty search count in FindFileBothDirectoryInfo
* [smbpasswd.py](examples/smbpasswd.py):
* Added the ability to change a user's password providing NTLM hashes
* [smbserver.py](examples/smbserver.py):
* Added NULL SMBv2 client connection handling
* Hardened path checks and Added TID checks
* Added SMB2 support to QUERY_INFO Request and Enabled SMB_COM_FLUSH \
method
* Added missing constant and structure for the QUERY_FS Information \
Level SMB_QUERY_FS_DEVICE_INFO
* [wmipersist.py](examples/wmipersist.py):
* Fixed VBA script execution and improved error checking
3. New examples
* [rbcd.py](examples/rbcd.py): Example script for handling the \
msDS-AllowedToActOnBehalfOfOtherIdentity property of a target computer
|
| 2021-10-26 13:07:15 by Nia Alarie | Files touched by this commit (958) |
Log message: net: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Not committed (merge conflicts...): net/radsecproxy/distinfo The following distfiles could not be fetched (fetched conditionally?): ./net/citrix_ica/distinfo citrix_ica-10.6.115659/en.linuxx86.tar.gz ./net/djbdns/distinfo dnscache-1.05-multiple-ip.patch ./net/djbdns/distinfo djbdns-1.05-test28.diff.xz ./net/djbdns/distinfo djbdns-1.05-ignoreip2.patch ./net/djbdns/distinfo djbdns-1.05-multiip.diff ./net/djbdns/distinfo djbdns-cachestats.patch |
| 2021-10-07 16:43:07 by Nia Alarie | Files touched by this commit (962) |
Log message: net: Remove SHA1 hashes for distfiles |
| 2021-09-27 21:00:29 by Adam Ciarcinski | Files touched by this commit (4) | |
Log message: py-impacket: updated to 0.9.23 Impacket v0.9.23: Library improvements Support connect timeout with SMBTransport Speeding up DcSync Fixed Python3 issue when serving SOCKS5 requests Moved docker container to Python 3.8 Added basic GitHub Actions workflow Fixed Path Traversal vulnerabilities in smbserver.py - CVE-2021-31800 Fixed POST request processing in httprelayserver.py Added cat command to smbclient.py Added new features to the LDAP Interactive Shell to facilitate AD exploitation Python 3.9 support Examples improvements addcomputer.py: Enable the machine account created via SAMR getST.py: Added exploit for CVE-2020-17049 - Kerberos Bronze Bit attack Compute NTHash and AESKey for the Bronze Bit attack automatically ntlmrelayx.py: Fixed target parsing error wmipersist.py: Fixed filterBinding error Added PowerShell option for semi-interactive shells in dcomexec.py, smbexec.py \ and wmiexec.py Added new parameter to select COMVERSION in dcomexec.py, wmiexec.py, \ wmipersist.py and wmiquery.py New examples Get-GPPPassword.py: This example extracts and decrypts Group Policy Preferences \ passwords using streams for treating files instead of mounting shares. \ Additionally, it can parse GPP XML files offline smbpasswd.py: This script is an alternative to smbpasswd tool and intended to be \ used for changing expired passwords remotely over SMB (MSRPC-SAMR) |
New packages: