Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [NSE] pwdump script

From: Ron <ron () skullsecurity net>
Date: Tue, 06 Jan 2009 07:25:14 -0600
Raul Siles wrote:

Hi Ron,
I think it is a good addition to the nmap users arsenal, and as it is
just a NSE script, its usage is optional.
I would add to it pass-the-hash capabilities to authenticate against
the remote system, with a new option (smbhash), such as:

$ ./nmap -d -p139,445 --script=smb-pwdump --script-args=smbhash=<hash> <host>

The <hash> should be on the LM:NTLM format.

Thanks,
--
Raul Siles
www.raulsiles.com


Hi Raul,

That already exists, and I even called it smbhash. It can be in the
format LM:NTLM, LMNTLM, or just NTLM (I just ignore LM by default).

Ron


-- 
Ron Bowes
http://www.skullsecurity.org/

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: