New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add CarotDAV FTP PackRat module #19173
Conversation
documentation/modules/post/windows/gather/credentials/carotdav_ftp.md
Outdated
Show resolved
Hide resolved
documentation/modules/post/windows/gather/credentials/carotdav_ftp.md
Outdated
Show resolved
Hide resolved
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
@The-Pink-Panther the link for the software appears dead to me? Is that new, or is it a security protection on my end? |
I believe it's security protection on your end. I just checked on my test VM, and I can visit the link. The AV on my actual machine blocks the link as well. |
OK; thank you. I'll find a work-around! |
Hmm, that's odd. I downloaded version 1.16.3 from http://rei.to/carotdav_en.html#download. |
Huh; I went to the site and downloaded the last one on the list. Let me double check. |
|
f8c69e4
Release NotesThis adds a gather module leveraging Packrat targeting CarotDAV FTP client. |
As A part of my final year project at Leeds Beckett University, I have developed several post-exploitation modules utilising the existing PackRat framework built by former LBU students. This PR will add a new
/post/windows/gather/credentials
module for the CarotDAV FTP Client. https://rei.to/carotdav_en.htmlCurrently, passwords extracted by the module are still encoded with base64.
This pull request will add two files:
Verification
msfconsole
use post/windows/gather/credentials/carotdav_ftp
Set SESSION 1
run
Scenario
Using CarotDAV FTP v1.16.3 running on Microsoft Windows 10 Home 10.0.19045 N/A Build 19045