Open godylockz opened 1 year ago
Hello @godylockz thanks for the report, do you want to make a PR so you can get proper credit ?
Hello @godylockz thanks for the report, do you want to make a PR so you can get proper credit ?
I'm not quite sure how to properly fix this unless checking for junctions. Might need an impacket PR first? I could patch it quickly by just looking for recursion into same named folders or something like that.
By default I think I will add C$ and ADMIN$ on the exclude shares.
You can add your fix, at least it will work for this case until I dig into it
Describe the bug
Running the
spider_plus
module, there could be junctions/hard links that are followed in an infinite recursion loop that will stop when it hits the windows max character limit of 255.To Reproduce
Workaround:
In my experience with this bug, the directory that it hits first in this bug are "Application Data". You can exclude the directory OR can check for it in the code when its hit.
This could be potentially an issue with other hard links/junctions, but this will work for "Application Data" Line 196 at cme/modules/spider_plus.py
There could be a way to check if its a junction/hard link in the result metadata. DIdn't look into it too much.
Crackmapexec info