search

SySS-Research / Seth

Perform a MitM attack and extract clear text credentials from RDP connections
MIT License
1.38k stars 325 forks source link

Attacking multiple targets #16

Open nickvangilder opened 6 years ago

nickvangilder commented 6 years ago

Using this tool, is there any way to attack multiple targets at once, simultaneously?

AdrianVollmer commented 6 years ago

Currently, no.

It's intended as a proof of concept, so I assume being able to attack one should be sufficient.

Of course, you can ARP spoof multiple targets at once, that wouldn't be too hard. But this may have side effects on the network. And unless they all establish an RDP connection at the same time, Seth would work. If they do establish it at the same time, I'd have to modify the scripts for that to work.

Unfortunately I'm too busy these days and I don't see a compelling reason to have this feature. Why would you need this?

Sokaiii commented 2 years ago

Hello Adrian, I'm looking for this feature. I'lld to find an RDP connection on a LAN like 192.168.2.0/24, it's for a pentest in my IT company. The goal is : I connect my computer on a LAN like an attacker I'm getting DHCP ip and of course i know the LAN network like i said before And would like to find any RDP connection on this LAN (because multiple IT admin is on this VLAN)

Depend if you have time for this, but this feature could be a most have !

Best regards,