Comments (15)
byt3bl33d3r
commented on July 20, 2024
@maycon Hi, This is a bug in the impacket library will pass this along to the dev. Thanks
from crackmapexec.
byt3bl33d3r
commented on July 20, 2024
Pinging @asolino, looks like a unicode bug in secretsdump.py here https://github.com/CoreSecurity/impacket/blob/master/examples/secretsdump.py#L1967.
from crackmapexec.
asolino
commented on July 20, 2024
@byt3bl33d3r
Hmm.. I can't spot it.. can you?
Btw, there are two getBootKey methods. One is RemoteOperations.getBootKey() and the other one DumpSecrets.getBootKey(). This last one is used if you're reading the registry hives locally (as explained here).
I think you pointed out the wrong one.
from crackmapexec.
byt3bl33d3r
commented on July 20, 2024
@asolino oops , yeah meant to point to RemoteOperations.getBootKey()
from crackmapexec.
asolino
commented on July 20, 2024
I can't get to spot an encoding error there.. do you?
@maycon can you tell us:
- Operating System (version and language) you're launching
crackmapexec.pyfrom? - Operating System (version and language) of the target system?
- Is both impacket and crackmapexec running latest version?
from crackmapexec.
byt3bl33d3r
commented on July 20, 2024
the exact line where the exception occurs is here https://github.com/CoreSecurity/impacket/blob/master/examples/secretsdump.py#L606
from crackmapexec.
asolino
commented on July 20, 2024
@byt3bl33d3r yeah I saw that. But still don't understand why that would trigger an encoding error. Can you reproduce this issue?
@maycon any chance you add a
print repr(bootKey)
before this for loop in crackmapexec.py at line 932?
and send us the output.
from crackmapexec.
byt3bl33d3r
commented on July 20, 2024
@asolino holdon, think this might be my fault, will push a fix in a sec to see if it helps
from crackmapexec.
asolino
commented on July 20, 2024
@byt3bl33d3r what do you think is it?
from crackmapexec.
byt3bl33d3r
commented on July 20, 2024
@maycon Do a git pull and see if that helps.
@asolino just guessing, but I added
from __future__ import unicode_literalsso all strings are now unicode by default in CrackMapExec, there are a lot of variables initialized with an empty string like bootKey = '' which are now unicode strings so when it hits line 933 it might be having issues when appending to the string e.g.self.__bootKey += bootKey[transforms[i]]
from crackmapexec.
asolino
commented on July 20, 2024
@byt3bl33d3r ohhh.. that is quite a change mate!. That could be it indeed.
from crackmapexec.
byt3bl33d3r
commented on July 20, 2024
yeah looking back it wasn't a smart idea, was just fed up with dealing with unicode issues.
from crackmapexec.
asolino
commented on July 20, 2024
@byt3bl33d3r I feel your pain.. Unicode ain't easy.
from crackmapexec.
maaaaz
commented on July 20, 2024
@byt3bl33d3r, unicode pains will never end :(
from crackmapexec.
byt3bl33d3r
commented on July 20, 2024
@maycon the new version should resolve at least some issues related to unicode
from crackmapexec.
Related Issues (20)
- State of CrackMapExec HOT 4
- git tag for v6.x
- New version compilation unsuccessful
- 'utf-8' codec can't decode byte 0xf1 HOT 6
- unable to run crackmapexec on kali 2023.2 HOT 4
- UnicodeDecodeError: 'utf-8' codec can't decode byte 0xf1 in position 933: invalid continuation byte HOT 1
- cme wont read ANY password file
- API Authentication Error
- Delay between requests
- target needs to be first but program output says last
- ValueError: p must be exactly 1024, 2048, 3072, or 4096 bits long
- Traceback
- How to authenticate with AzureAD HOT 1
- Installing lxml (4.9.2): Failed
- --disks option is broken
- Failures when using modules (-M)
- Error while start
- Can't check many ID's from cmedb
- ValueError: too many values to unpack (expected 2) HOT 2
- Feature/extension: Free-form URLs for LNK files (slinky module) HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from crackmapexec.