Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: NTLM Multiprotocol Replay attacks

From: "Andres Tarasco" <atarasco () gmail com>
Date: Sun, 16 Nov 2008 14:31:21 +0100
Its a completely new tool as it does not share code with the old smbrelay
however, as the main goal is to replay NTLM authentication challenges, i
decided to name it "smbrelay", like the great cdc tool.
smbrelay3 have been tested against windows 2000/xp/2003 and works fine.

Andres

2008/11/16 yersinia <yersinia.spiros () gmail com>


smbrelay in origin was, some years ago, created by CDC. M$ smb signing do
it historic. This tool is an evolution of this ?

Regards

On Fri, Nov 14, 2008 at 9:37 PM, Andres Tarasco <atarasco () gmail com>wrote:


I have published a new proof of concept tool, named "Smbrelay3", that is
able to replay NTLM authentication from several protocols like
SMB/HTTP/IMAP/..
http://www.tarasco.org/security/smbrelay/index.html


Andrés Tarascó

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/







-- 
Andres Tarasco

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: