Skip to content
This repository has been archived by the owner on Dec 6, 2023. It is now read-only.

Releases: byt3bl33d3r/CrackMapExec

5.4.0 - Indestructible G0thm0g

14 Nov 15:23
25978c0
Compare
Choose a tag to compare

More on : https://wiki.porchetta.industries/news-2022/indestructible-g0thm0g

What's Changed

New Contributors

All binaries on => https://github.com/Porchetta-Industries/CrackMapExec/actions/runs/3462698710

Full Changelog: v5.3.0...v5.4.0

5.3.0 - Operation C01NS

03 Jul 15:59
b39e827
Compare
Choose a tag to compare

More on https://mpgn.gitbook.io/crackmapexec/

What's Changed

New Contributors

Full Changelog: v5.2.2...v5.3.0

5.2.2dev - The Dark Knight

16 Jan 19:33
Compare
Choose a tag to compare

More on https://mpgn.gitbook.io/crackmapexec/news-2022/major-release-for-crackmapexec

💫 Features 💫

  • Add module nanodump
  • Add module handleKatz
  • Bump module LSASSY to version 3 thanks to @Hackndo
  • Add timeout to avoid CTRL-C situation
  • Improve LDAP output
  • No more sudo needed to exec command
  • Integration of bloodhound
  • New core option --laps to exec code on all machines even if laps is used
  • Improve NULL session option
  • Add module adcs to exploit ADCS attack thanks to and ​
  • Add module MS17-010
  • Add module zerologon
  • Add module noPAC
  • Add module petitPotam
  • Add module ioxidresolver

🔧 Issues 🔧

image

Thanks to @qtc-de @snovvcrash @tiyeuse @p0dalirius @Dliv3 @ShutdownRepo

CrackMapExec v5.1.7dev - U fancy huh ?

01 Aug 20:15
b9986a1
Compare
Choose a tag to compare

All features and Issues from 5.1.3 to 5.1.7

💫 Features 💫

  • Add module MachineAccountQuota.py to retrieves the MachineAccountQuota domain-level attribute related to the current user @p0dalirius
  • Add module get-desc-users Get the description of each users and search for password in the description @nodauf
  • Add module mssql_priv to enumerate and exploit MSSQL privileges @sokaRepo
  • Add option --password-not-required to retrieve the user with the flag PASSWD_NOTREQD @nodauf
  • Add custom port for WinRM
  • Switch from gevent to asyncio
  • Shares are now logged in the database and can be queried
  • You can now press enter while a scan is being performed and CME will give you a completion percentage and the number of hosts remaining to scan
  • Add better error message on LDAP protocol
  • Add more options to LDAP
    • option --groups
    • option --users
    • option --continue-on-success
  • Add additional Info to LDAP Kerberoasting
    • Account Name
    • Password last set
    • Last logon
    • Member of
  • Bump lsassy to latest version 2
  • Add new option --amsi-bypass to bypass AMSI with your own custom code
  • Add module LAPS to retrieve all LAPS passwords
  • Add IPv6 support
  • Add improvment when testing null session for the output
  • Remove thirdparty folder 🥳

🔧 Issues 🔧

  • Fix spelling mistakes
  • Rename options EXT and DIR to EXCLUDE_EXTS EXCLUDE_DIR on spider_plus module
  • Fix MSSQL protocol (command exec with powershell and enum) thanks @Dliv3
  • Fix module Wireless
  • Fix issue with --pass-pol for Maximum password age
  • Fix encoding issue with spider option

CrackMapExec v5.1.1dev - 3TH@n

20 Sep 15:04
Compare
Choose a tag to compare

💫 Features 💫

  • Switched from Pipenv to Poetry for development and dependency management.
  • Now has Windows binaries!

CrackMapExec v5.1.0dev - 3TH@n

25 Jun 22:09
895f16c
Compare
Choose a tag to compare

Introducing CME doc on Gitbook: https://mpgn.gitbook.io/crackmapexec/

💫 Features 💫

  • Add module spider_plus to list and dump all files from all readable shares thanks to @vincd
  • Add LDAP protocol to CME
  • Add Kerberoasting support to CME using the flag --kerberoasting
  • Add ASREPRoasting support to CME using the flag --asreproasting
  • Add --admin-count option to list all users in the domain with property AdminCount=1 thanks to @ropnop talk
  • CME can list computers and users with unconstrained delegation enabled using the option --trusted-for-delegation thanks to @ropnop talk
  • Add an option to SSH protocol supporting connection using private key thanks to @alxbl
  • Add the option --continue-on-success to the SSH protocol
  • Add new color when the status code of SMB is different from NT_STATUS_LOGON_FAILURE
  • WinRM protocol support authentication using NTLM hash -H

🔧 Issues 🔧

  • Fix authentication error on SSH protocol thanks to @IppSec report
  • Fix authentication error using --shares options thanks to @IppSec report
  • Improve WinRM output when authentication failed
  • Decrease WinRM timeout thanks to @IppSec report
  • Improve WinRM output when SMB port is open
  • Fix issue with SMB signing required using the flag --continue-on-success
  • Fix issue when using a file as username and a file as hosts cme smb <file> -u <file> -p <file>
  • Fix debug output when using the --verbose flag on --pass-poll option

CrackMapExec v5.0.2dev - P3l1as

05 May 17:09
618ab8a
Compare
Choose a tag to compare

💫 Features 💫

  • CME accepts a file as argument with option -x and -X
  • WinRM can now execute a command even if not local admin thanks to pypsrp lib
  • Kerberos support is added to CME 💥
  • commands --put-file and --get-file have been added allowing to put or get remote file
  • option --no-bruteforce has been added allowing you to spray credentials without bruteforce
  • CME will now always show FQDN 👮

🔧 Issues 🔧

  • Issues with SSH connection are fixed
  • MSSQL and WinRM protocoles have been updated allowing connections even if SMB is not open
  • Fix some encoding problems as always 💩
  • LSASSY module output has been improved when no credentials are found thanks to @Hackndo
  • encoding problem with GPP_PASSWORD and GPP_AUTOLOGIN should be fixed

🚀 Modules 🚀

  • both Metasploit and empire modules are back in the game
  • module wireless has been added to CME
  • module bh_owned has been added by @Hackndo allowing to send credentials from CME to bloodhound to mark a computer as owned 🐩

Also, thank you all for the support ! 💪

CrackMapExec v5.0.1dev

20 Apr 17:28
Compare
Choose a tag to compare

Fixed dependency issues. Habemus binaries!

CrackMapExec v5.0.0

19 Apr 17:43
7bb0e4e
Compare
Choose a tag to compare

Python 3! Yay! Thanks @mpgn !

CrackMapExec v3.1.5

29 Dec 08:16
Compare
Choose a tag to compare
  • Fixed issue related to the API of gevent 1.2.0 ( #144 )
  • Added partial credential and host search in cmedb ( #130 )
  • Fixed enum_chrome module error ( #126 )
  • Minor bug fixes