-
Notifications
You must be signed in to change notification settings - Fork 435
Module Modifications
Kevin Robertson edited this page Apr 26, 2017
·
4 revisions
Unneeded code can be removed from the module to reduce the function sizes.
- Comments – Everything in the initial comment block can be removed.
- $HTTP_scriptblock – The scriptblock can be removed if HTTP/HTTPS/Proxy captures are not needed.
- $sniffer_scriptblock – The scriptblock can be removed if privileged spoofing and SMB captures are not needed.
- $LLMNR_spoofer_scriptblock – The scriptblock can be removed if the unprivileged LLMNR spoofer is not needed.
- $mDNS_spoofer_scriptblock - The scriptblock can be removed if the unprivileged mDNS spoofer is not needed.
- $NBNS_spoofer_scriptblock - The scriptblock can be removed if the unprivileged NBNS spoofer is not needed.
- $NBNS_bruteforce_spoofer_scriptblock - The scriptblock can be removed if the NBNS bruteforce spoofer is not needed.
- Support Functions - Any of the support functions can be removed if not needed.
- Comments – Everything in the initial comment block can be removed.
- SMB1 Packet Functions – If SMB1 is not needed, all packet functions from Get-PacketSMBSessionSetupAndXRequest to Get-PacketSMBLogoffAndXRequest can be removed.
-
SMB1 Code – If SMB1 is not needed, all code within the
if($SMB_version -eq 'SMB1')
if statement can be removed. - SMB2 Packet Functions – If SMB2 is not needed, all packet functions from Get-PacketSMB2Header to Get-PacketSMB2SessionLogoffRequest can be removed.
-
SMB2 Code – If SMB2 is not needed, all code within the
if($SMB_version -eq 'SMB1')
else statement can be removed. - Support Functions - Any of the support functions can be removed if not needed.