github SecureAuthCorp/impacket impacket_0_9_13

7 years ago

May 2015 - 0.9.13:

  1. Library improvements
  • Kerberos support for SMB and DCERPC featuring:

    a. kerberosLogin() added to SMBConnection (all SMB versions).
    b. Support for RPC_C_AUTHN_GSS_NEGOTIATE at the DCERPC layer. This will negotiate Kerberos. This also includes DCOM.
    c. Pass-the-hash, pass-the-ticket and pass-the-key support.
    d. Ccache support, compatible with Kerberos utilities (kinit, klist, etc).
    e. Support for RC4, AES128_CTS_HMAC_SHA1_96 and AES256_CTS_HMAC_SHA1_96 ciphers.

  • SMB3 encryption support. Pycrypto experimental version that supports
    AES_CCM is required.

  • [MS-SAMR]: Supplemental Credentials support (used by

  • SMBSERVER improvements:

    a. SMB2 (2.002) dialect experimental support.
    b. Adding capability to export to John The Ripper format files

  • Library logging overhaul. Now there's a single logger called 'impacket'.

  1. Examples improvements:
  • Added Kerberos support to all modules (incl. pass-the-ticket/key)
  • Ported most of the modules to the new dcerpc.v5 runtime.
  • Added dumping Kerberos keys when parsing NTDS.DIT
  • support for SMB2 (not enabled by default)
  • Added support for MS15-027 exploitation.
  1. New examples:
  • MS14-068 exploit. Saves the golden ticket and also launches a
    psexec session at the target.
  • SMB Server that answers specific file contents regardless of
    the SMB share and pathname requested.
  • Creates persistence over WMI. Adds/Removes WMI Event
    Consumers/Filters to execute VBS based on a WQL filter or timer specified.
  • Gets a list of the sessions opened at the remote hosts looping over the hosts found keeping track of who logged in/out from remote servers

Don't miss a new impacket release

NewReleases is sending notifications on new releases.