keepass_trigger error during password extraction

[sepauli]

Describe the bug The extract_password function in the keepass_trigger module does not parse the xml file (exported keepass database) correctly, which leads to an error.

I encountered this bug when I was working on the HTB Academy Module "Using CrackMapExec" in the task "Popular Modules" - Discovering KeePass

To Reproduce You can test it by adding some groups, subgroups and entries in keepass and executing the function on the exported keepass database Database -> Export -> XML-File

Expected behavior I think the problem here lies in the extract_password function, which looks for entries under [“KeePassFile”][“Root”][“Group”][“Entry”] and [“KeePassFile”][“Root”][“Group”][“Group”]. A keepass database can have any number of subgroups “Groups” with entries, which is apparently not considered here Old passwords can also exist in a history or in the notes of entries.

NetExec info

• OS: Kali
• Version of nxc: nxc from main branch
• Installed from: github

Additional context I'm not very good at programming at the moment, which is why I haven't opened a pull request yet. I have put the code in a branch. If you want and it suits you, I can open another pull request for this https://github.com/Pennyw0rth/NetExec/compare/main...sepauli:NetExec:sepauli/fix-keepass_trigger

[Marshall-Hallenbeck]

I'm not very good at programming at the moment, which is why I haven't opened a pull request yet.

We're not either, so don't feel bad ;)

Please do open the PR, and we can review it/change stuff ourselves. Thanks for filing this!