any chance of you adding the feature of mail view or download for a valid user ?

as i understand it, with the proxylogon bug you can view emails and download emails of a valid email without knowing the password of that email

Hello when i checked server its condition seems vulnerable but when i try to read messages from email it says Access Denied what i can do as remedy ? Thx

This works!!

Can I get the automated Script from you?

Got DN: /o=First Organization/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Recipients/cn=ab24791970e14c0dbb35163b29e8e456-admin
Got SID: S-1-5-21-3765238651-1946275754-3596023858-500
Got session id: c31306a9-aa11-4d3d-8be9-842e3fad4cc7
Got canary: zVii2pyG8kO0KCxGS8M7noulX4-v79gIagXzNJWTeU5qDbTZSj-XrxxiQcxExTSjeV6VwDJfvPE.
=========== It means good to go!!!====
GetOAB Error!

any idea on what the issue maybe here?

It seems to have excess characters ) on line 177

Hi.
Plz Update multi scan IP.
thanks.

why is it possible to execute first time and get shell and receive responses from commands , the shell exists cause no 404 when you browse to it. but no commands executes or no results from command execution are returned ?

Got DN: /o=World Travel Centre/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Recipients/cn=b80cd5b02dad4e0ebf16849183dc4c63-Admi
Got SID: S-1-5-21-2867433882-3978468204-2437582583-500
Got session id: ba6e26b3-7120-4304-9950-becbd76c41f0
Got canary: 5Ip_ftGCY0utXt3RmuTR94N4jDAc6dgINADzDVSNY2XHZRQoH5Yal_ukueMSQVWRGqn1PQNuMhM.
Wrong canary!
Sometime we can skip this ...
Traceback (most recent call last):
File "c:\Users\undercover\Desktop\PX\Proxylogon-main\proxylogon.py", line 119, in
rbacRole = ct.text.split("RBAC roles: ")[1].split("")[0]
IndexError: list index out of range

============================
how can fix this? tested on some target all of them have this issue

tested on win10
python 3.9

it looks like a commit changed completely proxylogon.py some days ago...

Hi
How can I Fix This Error :
Webshell not found due to Covid, try again!

Hey, can u help me plz? What do i wrong?

Attacking target ex01.test.local

Got DN: /o=test/ou=Exchange Administrative Group (FYDIBOHF9546LRG)/cn=Recipients/cn=user5e1sdf71
Traceback (most recent call last):
File "proxylogon.py", line 65, in
mapi_body = legacyDn + "\x00\x00\x00\x00\x00\xe4\x04\x00\x00\x09\x04\x00\x00\x09\x04\x00\x00\x00\x00\x00\x00"
UnicodeDecodeError: 'ascii' codec can't decode byte 0xe4 in position 5: ordinal not in range(128)

from which endpoint you get mailboxid, without interaction to powershell or to exchange terminal

MailboxId=f26bc937-b7b3-4402-b890-96c46713e5d5

Traceback (most recent call last):
File "C:\Users\m\Desktop\logs\New folder (2)000\Proxylogon-main\Proxylogon-main\proxylogon.py", line 75, in
if "" not in ct.content:
TypeError: a bytes-like object is required, not 'str'

msExchEcpCanary = ct.headers['set-cookie'].split("msExchEcpCanary=")[1].split(";")[0]
IndexError: list index out of range

its mean target, not vuln? or it's my fault?

oabId = ct.content.split('"RawIdentity":"')[1].split('"')[0]

IndexError: list index out of range

what would cause this ?