byt3bl33d3r
commented
8 years ago @Cat0x00 This should be fixed now. Thanks!
Closed Cat0x00 closed 8 years ago
byt3bl33d3r
commented
8 years ago @Cat0x00 This should be fixed now. Thanks!
The following triggered a bug:
./crackmapexec 127.0.0.1 -u user -p pass_fileTool didn't manage to load passwords form a file (pass_file) which was in the current working directory. I have managed to pin point the issue (crackmapexec.py [line 162]):
for user, passw, ntlm_hash in zip(args.username, args.password, args.hash):When
hashcommand line argument is not supplied, it becomes an empty item withinziplist (or whatever it creates). This makes the Python interpreter to bypass the subsequent code block (lines 163-173) which should read the file contents and load the list of usernames || passwords || hashes. The result is that the file name (in this case - pass_file) is treated as a standalone password.Would be nice to see this fixed ;]