randomwalksp
commented
6 years ago To be clear, this fixes the following call on line 621: parse_ntlm_chal(NTLMSSP2.group(), ack). In the current version, this call passes the arguments in the wrong order, causing Non-NETNTLM NTLM hashes (MSSQL, DCE-RPC,SMBv1/2,LDAP, MSSQL) to not be parsed.
The previous commit modified the function prototype of parse_ntlm_chal(msg2, ack) to parse_ntlm_chal(ack, msg2). While this fixed the issue with parse_netntlm_chal incorrectly calling parse_ntlm_chal, it created a new bug in other_parser (line 621), which now calls parse_ntlm_chal incorrectly. This commit reverts back to the original function prototype, and modifies the incorrect call to parse_ntlm_chal within parse_netntlm_chal instead.