Hynek Petrak
Hynek Petrak
``` import ctypes def isLink(path): if os.path.exists(path): if os.path.isdir(path): FILE_ATTRIBUTE_REPARSE_POINT = 0x0400 attributes = ctypes.windll.kernel32.GetFileAttributesW(unicode(path)) return (attributes & FILE_ATTRIBUTE_REPARSE_POINT) > 0 return False ```
Hi, I'm not sure whether that's the right way to go, I'm sorry if I did not understand your code properly. If you set the empirical condition variables based on...
Hi, just to let you know I ported your work to Python: https://github.com/HynekPetrak/log4shell_finder Thanks for the work and excellent research on this vulnerability. Let me know if you eventually want...
In situation when OpenLDAP is configured with "disallow bind_anon" in slapd.conf, the bind operation will return "LDAP_INAPPROPRIATE_AUTH - anonymous bind disallowed". According to https://www.openldap.org/doc/admin23/security.html#Authentication%20Methods a anonymous bind is not fatal...
Hi, would you know on how to process the krbprincipalkey LDAP attributes to be able to brute force the original password? Implementation of the key generation is here: https://github.com/jtux270/translate/blob/d242673d7f6cf787e086d7d89fa3291f814a95d8/FreeIPA/freeipa-3.0.0/daemons/ipa-slapi-plugins/ipa-pwd-extop/ipapwd_encoding.c#L105 The...
This fixes an endless loop between client and server in certain situations, when there is more files then fits into a single response. According to https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-cifs/80dc980e-fe03-455c-ada6-7c5dd6c551ba the `ResumeKey` parameter within...
Hi, could you eventually move log file to a folder defined by `--loot-dir` argument or introduce a new parameter. Current fixed path logging prevents us from running man spider in...
Hello, this pull requests makes sure the pwned file does not exist prior exploitation. I've just experienced one case like that, and obviously the condition `os.stat(PWNED_PATH).st_uid != 0` gave a...