minor fix

initial commit
2025-12-17 05:09:02 +00:00 · 2014-08-16 08:20:43 -04:00 · 2014-08-16 08:18:55 -04:00 · 2014-08-13 21:27:32 -04:00 · 2014-06-09 22:16:01 -04:00
5 changed files with 1914 additions and 1878 deletions
--- a/DHCP.py
+++ b/DHCP.py
@@ -377,5 +377,3 @@ def SniffUDPMac():
 SniffUDPMac()
--- a/FindSQLSrv.py
+++ b/FindSQLSrv.py
@@ -0,0 +1,39 @@
 #! /usr/bin/env python
 # Created by Laurent Gaffie
 # This file is part of the Responder toolkit.
 # Copyright (C) 2014 Trustwave Holdings, Inc.
 #
 # This program is free software: you can redistribute it and/or modify
 # it under the terms of the GNU General Public License as published by
 # the Free Software Foundation, either version 3 of the License, or
 # (at your option) any later version.
 #
 # This program is distributed in the hope that it will be useful,
 # but WITHOUT ANY WARRANTY; without even the implied warranty of
 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 # GNU General Public License for more details.
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 import socket
 from socket import *
 print 'MSSQL Server Finder 0.1\nPlease send bugs/comments/e-beer to: lgaffie@trustwave.com\n'
 s = socket(AF_INET,SOCK_DGRAM)
 s.setsockopt(SOL_SOCKET, SO_BROADCAST, 1)
 s.settimeout(2)
 s.sendto('\x02',('255.255.255.255',1434))
 try:
   while 1:
      data, address = s.recvfrom(8092)
      if not data:
         break
      else:
         print "===============================================================\nHost details:",address[0]
         print data[2:]
         print "===============================================================\n"
 except:
   pass
--- a/Icmp-Redirect.py
+++ b/Icmp-Redirect.py
@@ -264,4 +264,3 @@ def RunThisInLoop(host, host2, ip):
        sleep(480)
 FindWhatToDo(ToThisHost2)
--- a/Responder.py
+++ b/Responder.py
@@ -630,16 +630,17 @@ from SMBPackets import *
 #Detect if SMB auth was Anonymous
 def Is_Anonymous(data):
    SecBlobLen = struct.unpack('<H',data[51:53])[0]
-    if SecBlobLen < 220:
+    if SecBlobLen < 260:
        SSPIStart = data[75:]
        LMhashLen = struct.unpack('<H',data[89:91])[0]
        if LMhashLen == 0 or LMhashLen == 1:
            return True
        else:
            return False
-    if SecBlobLen > 220:
+    if SecBlobLen > 260:
        SSPIStart = data[79:]
        LMhashLen = struct.unpack('<H',data[93:95])[0]
        print 'LMHASHLEN:',struct.unpack('<H',data[89:91])[0]
        if LMhashLen == 0 or LMhashLen == 1:
            return True
        else:
@@ -692,7 +693,7 @@ def ParseShare(data):
 def ParseSMBHash(data,client):
    SecBlobLen = struct.unpack('<H',data[51:53])[0]
    BccLen = struct.unpack('<H',data[61:63])[0]
-    if SecBlobLen < 220:
+    if SecBlobLen < 260:
        SSPIStart = data[75:]
        LMhashLen = struct.unpack('<H',data[89:91])[0]
        LMhashOffset = struct.unpack('<H',data[91:93])[0]
@@ -700,7 +701,7 @@ def ParseSMBHash(data,client):
        NthashLen = struct.unpack('<H',data[97:99])[0]
        NthashOffset = struct.unpack('<H',data[99:101])[0]
-    if SecBlobLen > 220:
+    if SecBlobLen > 260:
        SSPIStart = data[79:]
        LMhashLen = struct.unpack('<H',data[93:95])[0]
        LMhashOffset = struct.unpack('<H',data[95:97])[0]
--- a/SMBRelay.py
+++ b/SMBRelay.py
@@ -445,4 +445,3 @@ if __name__ == '__main__':
    except KeyboardInterrupt:
        raise
    raw_input()
Author	SHA1	Message	Date
lgandx	235f0fa8ae	minor fix	2014-08-16 08:20:43 -04:00
lgandx	0660cc2fe7	minor fix	2014-08-16 08:18:55 -04:00
lgandx	823915fe44	initial commit	2014-08-13 21:27:32 -04:00
lgandx	5c9fec923c	fixed: identation.	2014-06-09 22:16:01 -04:00
`@@ -377,5 +377,3 @@ def SniffUDPMac():`


	`SniffUDPMac()`	`SniffUDPMac()`
`@@ -264,4 +264,3 @@ def RunThisInLoop(host, host2, ip):`
	`sleep(480)`	`sleep(480)`

	`FindWhatToDo(ToThisHost2)`	`FindWhatToDo(ToThisHost2)`