From 7ab487612ca1b6f5c62dddd6151f0f0060bd32d2 Mon Sep 17 00:00:00 2001 From: Ashley Donaldson Date: Mon, 27 Nov 2023 17:52:12 +1100 Subject: [PATCH] Default to NTLM auth, since plaintext will almost certainly never work --- modules/auxiliary/gather/asrep.rb | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/modules/auxiliary/gather/asrep.rb b/modules/auxiliary/gather/asrep.rb index ec99b1d2e8b6..0b49d201429c 100644 --- a/modules/auxiliary/gather/asrep.rb +++ b/modules/auxiliary/gather/asrep.rb @@ -47,6 +47,11 @@ def initialize(info = {}) OptString.new('RHostname', [ true, "The domain controller's hostname"], aliases: ['LDAP::Rhostname']), ] ) + register_advanced_options( + [ + OptEnum.new('LDAP::Auth', [true, 'The Authentication mechanism to use', Msf::Exploit::Remote::AuthOption::NTLM, Msf::Exploit::Remote::AuthOption::LDAP_OPTIONS]), + ] + ) default_config_file_path = File.join(::Msf::Config.data_directory, 'auxiliary', 'gather', 'ldap_query', 'ldap_queries_default.yaml') loaded_queries = safe_load_queries(default_config_file_path) || []