fix: OAB 接口误报问题

修复 OAB 接口误报的问题
X1r0z · Aug 8, 2023 · 737e59e · 737e59e
1 parent b59527e
commit 737e59e
Show file tree

Hide file tree

Showing 3 changed files with 3 additions and 6 deletions.
diff --git a/README.md b/README.md
@@ -80,6 +80,5 @@ $ ./EBurstGo -url https://192.168.30.11 -domain hack-my.com -userf user.txt -pas
 [*] 耗时: 3.031753209s
 ```
 
-已知 bug:
-- `/oab` 接口存在问题, 待解决
+todo
 - `/powershell` 接口 (Kerberos 认证) 待支持
diff --git a/lib/ntlmbrute.go b/lib/ntlmbrute.go
@@ -30,9 +30,7 @@ func NtlmBruteWorker(info *TaskInfo) {
 		req.SetBasicAuth(info.domain+"\\"+username, password)
 		res, _ := client.Do(req)
 
-		if res.StatusCode == 403 {
-			Log.Failed("[*] 403 错误")
-		} else if res.StatusCode != 401 && res.StatusCode != 408 && res.StatusCode != 504 {
+		if res.StatusCode != 401 && res.StatusCode != 408 && res.StatusCode != 504 {
 			Log.Success("[+] 成功: %v", username+":"+password)
 		} else {
 			Log.Failed("[-] 失败: %v", username+":"+password)

diff --git a/lib/util.go b/lib/util.go
@@ -10,7 +10,7 @@ var ExchangeUrls = map[string]string{
 	"ews":          "/ews",
 	"mapi":         "/mapi",
 	"activesync":   "/Microsoft-Server-ActiveSync",
-	"oab":          "/oab",
+	"oab":          "/oab/global.asax",
 	"rpc":          "/rpc",
 	"owa":          "/owa/auth.owa",
 	"powershell":   "/powershell",