VakarisZ
commented
3 years ago Looks like a safe attack worth looking into. POC can be found in impacket/examples/smbrelayx.py.
Problem now is that monkeys do not work in "packet capturing mode", they execute code an die. To properly implement this we would have to fix our lifecycle (kill monkeys on demand/real time) and implement some kind of mechanism for monkeys to linger capturing packets.
TL;DR this feature should be implemented with lifecycle + ransomeware + smbrelay
Is your feature request related to a problem? Please describe. NO
Describe the solution you'd like N/A
Describe alternatives you've considered N/A
Can you please add support for the smb relay attack.
https://cqureacademy.com/blog/penetration-testing/smb-relay-attack