search

x90skysn3k / brutespray

Bruteforcing from various scanner output - Automatically attempts default creds on found services.
MIT License
2k stars 379 forks source link

rdp #65

Open sec13b opened 1 year ago

sec13b commented 1 year ago

can you add rdp method ?

x90skysn3k commented 7 months ago

Working on this module

x90skysn3k commented 7 months ago

This may take a bit as there are no good third party libraries that support NLA. Also, I do not want to call a subprocess, so this is on hold

APT-ZERO commented 7 months ago

grdp does support NLA @x90skysn3k

x90skysn3k commented 7 months ago

I checked it out and wrote some of the module on #v2.2.2. However the issue seems it does not correctly return if the login is successful or not yet, there is a issue open on the grdp repo. When I get some time I will work to contribute to that library or build my own eventually, until then I will keep the module disabled. If you would like to test and work on the module yourself just add "rdp" to the masterServiceList variable and run brutespray -H rdp://127.0.0.1 -u root -p pass to test (obviously change the host to your test host).

x90skysn3k commented 3 months ago

Should be working for the most part on v2.2.3. Will add option for domain soon.

sec13b commented 3 months ago

thank you