CoCalc -- kerberos

GitHub Repository: rapid7/metasploit-framework
Path: blob/master/modules/auxiliary/scanner/kerberos/kerberos_login.rb
³⁴⁴³⁴ views
1
##
2
# This module requires Metasploit: https://metasploit.com/download
3
# Current source: https://github.com/rapid7/metasploit-framework
4
##
5

6
class MetasploitModule < Msf::Auxiliary
7
  include Msf::Exploit::Remote::Kerberos::AuthBrute
8

9
  def initialize(info = {})
10
    super(
11
      update_info(
12
        info,
13
        'Name' => 'Kerberos Authentication Check Scanner',
14
        'Description' => %q{
15
          This module will test Kerberos logins on a range of machines and
16
          report successful logins.  If you have loaded a database plugin
17
          and connected to a database this module will record successful
18
          logins and hosts so you can track your access.
19

20
          Kerberos accounts which do not require pre-authentication will
21
          have the TGT logged for offline cracking, this technique is known as AS-REP Roasting.
22

23
          It is also able to identify whether user accounts are enabled or
24
          disabled/locked out.
25
        },
26
        'Author' => [
27
          'alanfoster',
28
        ],
29
        'References' => [
30
          ['ATT&CK', Mitre::Attack::Technique::T1110_001_PASSWORD_GUESSING],
31
          ['ATT&CK', Mitre::Attack::Technique::T1110_003_PASSWORD_SPRAYING],
32
          ['ATT&CK', Mitre::Attack::Technique::T1589_001_CREDENTIALS],
33
          ['ATT&CK', Mitre::Attack::Technique::T1087_002_DOMAIN_ACCOUNT]
34
        ],
35
        'License' => MSF_LICENSE,
36
        'Notes' => {
37
          'Stability' => [CRASH_SAFE],
38
          'Reliability' => [],
39
          'SideEffects' => [ACCOUNT_LOCKOUTS, IOC_IN_LOGS]
40
        }
41
      )
42
    )
43
  end
44

45
  def run
46
    attempt_kerberos_logins
47
  end
48
end
49

50
Product

Resources

Company
