add --hostname option #116
Conversation
rmaksimov
force-pushed
the
add-hostname-option
branch
from
e452d5a
to
c885a79
Compare
ruler.go
Outdated
| @@ -1220,6 +1212,11 @@ A tool by @_staaldraad from @sensepost to abuse Exchange Services.` | |||
| Name: "rpc", | |||
| Usage: "Force RPC/HTTP rather than MAPI/HTTP", | |||
| }, | |||
| cli.StringFlag{ | |||
| Name: "hostname,n", | |||
| Value: "", | |||
There was a problem hiding this comment.
Could we leave the default value as RULER.
It is one of the IOCs we published for the tool and although easily modifiable, it is worth having as a "script kiddie" or basic detection effort built into the tool.
There was a problem hiding this comment.
Sure, I forgot to set it as the default value
rmaksimov
force-pushed
the
add-hostname-option
branch
from
c885a79
to
9900d0f
Compare
|
It should be noted that the current PR solves only part of a problem (related to your fork of go-ntlm). I'm going to fix this in the near future, but it should be applied in both projects at the same time. |
|
Awesome, thanks for the update. Yeah I had a look at updating it in the dependency as well, however this looks like it correctly overwrites the value hard-coded into the defaults. I'm happy to leave it as is, and pull this into Ruler. |
@mohemiv noticed that ruler uses predefined value "RULER" while using NTLM authentication
so i have added the --hostname option to specify any value as a host name