Deft_
Hey man! Thank you for the PR. I believe we should keep the Get-Process cmd thing because if RDP is not enabled on the remote host because if it's not,...
Hey man, just wanted to mention that if you care about ""detection"" you should may be rely on the remote registry to set those keys instead of a "cmd.exe >...
That's right! The smb thing retrives the pass pol through a named pipe that actually relies on a ldap query after. So yeah we can add that as well for...
Wow that's hot and definitely something I wasn't aware of! Will take a look :)! Thanks for the PR! One thing I'd already do is make "check" the default behaviour...
Just looked at it, there are two things ruff complains about: * White dash here: * Missing newline at the end of the module: With tspkg enabled: Without tspkg enabled:...
As far as I got it, it only checks if encryption is required. Althought I took a look at the code and saw specific flags related to CBT... There is...
Here is the encryption flag :D https://github.com/Pennyw0rth/NetExec/pull/720 Now I still have to parse the CBT flag
https://github.com/fortra/impacket/pull/1986 :)
AH I'm gonna do the same for MSSQL then!
Is there a way to add this code as an option for the --ntds core option ? Since we already have --ntds vss, may be we can add --ntds raw...