sensepost / userenum Goto Github PK
View Code? Open in Web Editor NEWDomain user enumeration tool
License: GNU General Public License v3.0
Domain user enumeration tool
License: GNU General Public License v3.0
The UserEnum_LDAP.py script seems to work very well.
One slight issue - I believe it should say "Exists" instead of "Exit" ๐
./UserEnum_LDAP.py 192.168.1.97 goat.local userslist.txt
UserEnum LDAP Ping POC - Reino Mostert/SensePost 2018
[] Starting ...
[+] administrator exits
[-] Error sending/receiving packets: timed out
[+] phil.apple exits
[] Done
Just as a note in case anyone else comes upon this, on my Kali build I needed to add two additional modules beyond what was in the requirements.txt to get the scripts to execute: pycrypto and pyasn1. These are dependencies for impacket and not any of the UserEnum scripts directly, but it seems like pip is not picking them up properly. So in case you are getting errors about missing modules Crypto.Cipher and pyasn1.codec.der those will be the ones you need to add to your virtualenv/system.
TL;DR: Not an issue with UserEnum, but rather with impacket and pip.
installed the requirements.txt within an virtualenv, when I go to run the UserEnum_LDAP.py I get an error:
File "UserEnum_LDAP.py", line 126, in <module>
encoded = request_asn.encode('LDAPMessage3',message)
File "/opt/UserEnum/venv/local/lib/python2.7/site-packages/asn1tools/compiler.py", line 133, in encode
type_.check_types(data)
File "/opt/UserEnum/venv/local/lib/python2.7/site-packages/asn1tools/codecs/compiler.py", line 91, in check_types
return self.type_checker.encode(data)
File "/opt/UserEnum/venv/local/lib/python2.7/site-packages/asn1tools/codecs/type_checker.py", line 304, in encode
self._type.encode(data)
File "/opt/UserEnum/venv/local/lib/python2.7/site-packages/asn1tools/codecs/type_checker.py", line 148, in encode
member.encode(data[name])
File "/opt/UserEnum/venv/local/lib/python2.7/site-packages/asn1tools/codecs/type_checker.py", line 148, in encode
member.encode(data[name])
File "/opt/UserEnum/venv/local/lib/python2.7/site-packages/asn1tools/codecs/type_checker.py", line 47, in encode
data))
asn1tools.codecs.EncodeError: protocolOp: typesOnly: Expected data of type bool, but got 0.
Here are the modules installed:
(venv) root@ns7:/opt/UserEnum# pip install --trusted-host pypi.org --trusted-host files.pythonhosted.org -r requirements.txt
DEPRECATION: Python 2.7 will reach the end of its life on January 1st, 2020. Please upgrade your Python as Python 2.7 won't be maintained after that date. A future version of pip will drop support for Python 2.7.
Requirement already satisfied: asn1tools in ./venv/lib/python2.7/site-packages (from -r requirements.txt (line 1)) (0.146.3)
Requirement already satisfied: scapy in ./venv/lib/python2.7/site-packages (from -r requirements.txt (line 2)) (2.4.2)
Requirement already satisfied: impacket in ./venv/lib/python2.7/site-packages (from -r requirements.txt (line 3)) (0.9.19)
Requirement already satisfied: diskcache in ./venv/lib/python2.7/site-packages (from asn1tools->-r requirements.txt (line 1)) (3.1.1)
Requirement already satisfied: bitstruct in ./venv/lib/python2.7/site-packages (from asn1tools->-r requirements.txt (line 1)) (7.1.0)
Requirement already satisfied: prompt-toolkit in ./venv/lib/python2.7/site-packages (from asn1tools->-r requirements.txt (line 1)) (2.0.9)
Requirement already satisfied: pyparsing>=2.2.0 in ./venv/lib/python2.7/site-packages (from asn1tools->-r requirements.txt (line 1)) (2.4.0)
Requirement already satisfied: flask>=1.0 in ./venv/lib/python2.7/site-packages (from impacket->-r requirements.txt (line 3)) (1.0.3)
Requirement already satisfied: pyasn1>=0.2.3 in ./venv/lib/python2.7/site-packages (from impacket->-r requirements.txt (line 3)) (0.4.5)
Requirement already satisfied: pycryptodomex in ./venv/lib/python2.7/site-packages (from impacket->-r requirements.txt (line 3)) (3.8.2)
Requirement already satisfied: six in ./venv/lib/python2.7/site-packages (from impacket->-r requirements.txt (line 3)) (1.12.0)
Requirement already satisfied: pyOpenSSL>=0.13.1 in ./venv/lib/python2.7/site-packages (from impacket->-r requirements.txt (line 3)) (19.0.0)
Requirement already satisfied: ldap3==2.5.1 in ./venv/lib/python2.7/site-packages (from impacket->-r requirements.txt (line 3)) (2.5.1)
Requirement already satisfied: ldapdomaindump in ./venv/lib/python2.7/site-packages (from impacket->-r requirements.txt (line 3)) (0.9.1)
Requirement already satisfied: wcwidth in ./venv/lib/python2.7/site-packages (from prompt-toolkit->asn1tools->-r requirements.txt (line 1)) (0.1.7)
Requirement already satisfied: itsdangerous>=0.24 in ./venv/lib/python2.7/site-packages (from flask>=1.0->impacket->-r requirements.txt (line 3)) (1.1.0)
Requirement already satisfied: Jinja2>=2.10 in ./venv/lib/python2.7/site-packages (from flask>=1.0->impacket->-r requirements.txt (line 3)) (2.10.1)
Requirement already satisfied: click>=5.1 in ./venv/lib/python2.7/site-packages (from flask>=1.0->impacket->-r requirements.txt (line 3)) (7.0)
Requirement already satisfied: Werkzeug>=0.14 in ./venv/lib/python2.7/site-packages (from flask>=1.0->impacket->-r requirements.txt (line 3)) (0.15.4)
Requirement already satisfied: cryptography>=2.3 in ./venv/lib/python2.7/site-packages (from pyOpenSSL>=0.13.1->impacket->-r requirements.txt (line 3)) (2.7)
Requirement already satisfied: dnspython in ./venv/lib/python2.7/site-packages (from ldapdomaindump->impacket->-r requirements.txt (line 3)) (1.16.0)
Requirement already satisfied: future in ./venv/lib/python2.7/site-packages (from ldapdomaindump->impacket->-r requirements.txt (line 3)) (0.17.1)
Requirement already satisfied: MarkupSafe>=0.23 in ./venv/lib/python2.7/site-packages (from Jinja2>=2.10->flask>=1.0->impacket->-r requirements.txt (line 3)) (1.1.1)
Requirement already satisfied: cffi!=1.11.3,>=1.8 in ./venv/lib/python2.7/site-packages (from cryptography>=2.3->pyOpenSSL>=0.13.1->impacket->-r requirements.txt (line 3)) (1.12.3)
Requirement already satisfied: ipaddress; python_version < "3" in ./venv/lib/python2.7/site-packages (from cryptography>=2.3->pyOpenSSL>=0.13.1->impacket->-r requirements.txt (line 3)) (1.0.22)
Requirement already satisfied: enum34; python_version < "3" in ./venv/lib/python2.7/site-packages (from cryptography>=2.3->pyOpenSSL>=0.13.1->impacket->-r requirements.txt (line 3)) (1.1.6)
Requirement already satisfied: asn1crypto>=0.21.0 in ./venv/lib/python2.7/site-packages (from cryptography>=2.3->pyOpenSSL>=0.13.1->impacket->-r requirements.txt (line 3)) (0.24.0)
Requirement already satisfied: pycparser in ./venv/lib/python2.7/site-packages (from cffi!=1.11.3,>=1.8->cryptography>=2.3->pyOpenSSL>=0.13.1->impacket->-r requirements.txt (line 3)) (2.19)
Hello,
When running UserEnum_RPC.py with the following variables I get the following error.
./UserEnum_RPC.py 192.168.1.97 userslist.txt
Error:
[*] Connecting to 192.168.1.97
Traceback (most recent call last):
File "./UserEnum_RPC.py", line 44, in
dce.connect()
File "/usr/local/lib/python2.7/dist-packages/impacket/dcerpc/v5/rpcrt.py", line 801, in connect
return self._transport.connect()
File "/usr/local/lib/python2.7/dist-packages/impacket/dcerpc/v5/transport.py", line 393, in connect
self.__tid = self.__smb_connection.connectTree('IPC$')
File "/usr/local/lib/python2.7/dist-packages/impacket/smbconnection.py", line 378, in connectTree
return self._SMBConnection.connect_tree(share)
File "/usr/local/lib/python2.7/dist-packages/impacket/smb3.py", line 863, in connectTree
packetID = self.sendSMB(packet)
File "/usr/local/lib/python2.7/dist-packages/impacket/smb3.py", line 354, in sendSMB
self.signSMB(packet)
File "/usr/local/lib/python2.7/dist-packages/impacket/smb3.py", line 320, in signSMB
signature = crypto.AES_CMAC(self._Session['SigningKey'], p, len(p))
File "/usr/local/lib/python2.7/dist-packages/impacket/crypto.py", line 143, in AES_CMAC
AES_128= AES.new(K)
TypeError: new() takes at least 2 arguments (1 given)
Any ideas what this might be?
Running ./UserEnum_NBS.py with the following command.
./UserEnum_NBS.py 192.168.1.94 192.168.1.97 goat.local userslist.txt
Get the following error:
UserEnum NetBIOS MailSlot Ping POC - Reino Mostert/SensePost 2018
[*] Starting ...
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
Any ideas?
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.