deepzec / bad-pdf Goto Github PK
View Code? Open in Web Editor NEWSteal Net-NTLM Hash using Bad-PDF
License: GNU General Public License v3.0
Steal Net-NTLM Hash using Bad-PDF
License: GNU General Public License v3.0
how does it work on wan?
Hi,
when i try to execute the command from the kali terminal ( python bad.pdf.py), i get the error message" Responder not found" I have responder program installed in my usr/bin folder. Any help? much appreciated. Thanks
Blocking port 445 on a gateway is considered a best practice which makes using responder's smb service less reliable. Luckily you can get the same results by using responder's http service and specifying the listener with http:/// as the /AA entry. Would it be possible to add support for this to Bad-PDF?
─[d3vil67@backbox]─[~/Hacking/Bad-Pdf]
└──╼ $sudo python badpdf.py
______ __ _______ ______ ________
|_ _ \ | ] |_ __ \|_ _ `.|_ __ |
| |_) | ,--. .--.| | ______ | |__) | | | `. \ | |_ \_|
| __'. `'_\ : / /'`' ||______|| ___/ | | | | | _|
_| |__) |// | |,| \__/ | _| |_ _| |_.' /_| |_
|_______/ '-;__/ '.__.;__] |_____| |______.'|_____|
By DeepZec
=============================================================
Responder detected :/usr/bin/responder
Please enter Bad-PDF host IP:
192.168.100.130
Please enter output file name:
titanic.pdf
Please enter the interface name to listen(Default eth0):
wlan0
[] Starting Process.. []
Bad PDF titanic.pdf created
__
.----.-----.-----.-----.-----.-----.--| |.-----.----.
| _| -| --| _ | _ | | _ || -| _|
|| ||| ||||||||
|_|
NBT-NS, LLMNR & MDNS Responder 2.3
Author: Laurent Gaffie ([email protected])
To kill this script hit CRTL-C
[+] Poisoners:
LLMNR [ON]
NBT-NS [ON]
DNS/MDNS [ON]
[+] Servers:
HTTP server [ON]
HTTPS server [ON]
WPAD proxy [OFF]
SMB server [ON]
Kerberos server [ON]
SQL server [ON]
FTP server [ON]
IMAP server [ON]
POP3 server [ON]
SMTP server [ON]
DNS server [ON]
LDAP server [ON]
[+] HTTP Options:
Always serving EXE [OFF]
Serving EXE [OFF]
Serving HTML [OFF]
Upstream Proxy [OFF]
[+] Poisoning Options:
Analyze Mode [OFF]
Force WPAD auth [OFF]
Force Basic Auth [OFF]
Force LM downgrade [OFF]
Fingerprint hosts [OFF]
[+] Generic Options:
Responder NIC [wlan0]
Responder IP [192.168.100.130]
Challenge set [1122334455667788]
OSX operating system requires a '-i' switch for this tool to work
is there any possibility to use this rather responder? just like using sct or hta
"Responder not found..
Please enter responder path (Default /usr/bin/responder): "
That is what i get when i run 'python badpdf.py' as root.
I have googled, and read the 'Readme'
I am not sure what to do. Please help. Thank you
In the original report by checkpoint, they use GoToR and GoToE.
By my work, Launch is also work. But you may remove the line of /D.
You can have a try. : )
Hi, after creating file, i got:
/bin/sh: 1: -I: not found
it`s on latest kali ver.
Hey there,
I get this result when i run the script:
[] Starting Process.. []
Bad PDF test.pdf created
/usr/bin/responder: line 2: d: command not found
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.