New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Added Get-GPPPassword #1064
Added Get-GPPPassword #1064
Conversation
Added Get-GPPPassword in examples. It's a python script for extracting and decrypting Group Policy Preferences passwords using streams for treating files instead of mounting shares, allowing for running this script inside regular docker containers. This also allows for pass-the-hash, pass-the-ticket, pass-the-key, overpass-the-hash, features that the Metasploit Framework doesn't offer.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hi @ShutdownRepo!
This is a great addition!
I have a couple of comments before merging it:
- Some days ago, we refactored the target parsing functions. I made some changes in the script to use these new ones.
- In the example, you are using the chardet module that is not included as a requirement in impacket. We prefer not to add new modules to the project, so we wonder if there is a way to avoid its use or replace it with a built-in module (e.g. xml.etree.ElementTree). Do you see this feasible?
Co-authored-by: 0xdeaddood <56035084+0xdeaddood@users.noreply.github.com>
Co-authored-by: 0xdeaddood <56035084+0xdeaddood@users.noreply.github.com>
Thank you for reviewing this 😃 |
Hey @ShutdownRepo! |
Awesome! Thank you |
That's awesome ! Thanks for merging it ! 👍 |
Added Get-GPPPassword in examples. It's a python script for extracting and decrypting Group Policy Preferences passwords using streams for treating files instead of mounting shares, allowing for running this script inside regular docker containers. This also allows for pass-the-hash, pass-the-ticket, pass-the-key, overpass-the-hash, features that the Metasploit Framework doesn't offer.
➡️ for those wondering, read this: what are GPP Passwords