Skip to content
This repository has been archived by the owner on Dec 6, 2023. It is now read-only.

Commit

Permalink
Fixed logic bug with password file if brute forcing
Browse files Browse the repository at this point in the history
  • Loading branch information
byt3bl33d3r committed Jul 21, 2016
1 parent 2cfb70d commit cb3c39b
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions cme/connection.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -176,6 +176,7 @@ def login(self):
elif type(ntlm_hash) is file:
for f_hash in ntlm_hash:
if self.hash_login(usr.strip(), f_hash.strip()): return
ntlm_hash.seek(0)

elif self.args.password:
for password in self.args.password:
Expand All @@ -185,6 +186,7 @@ def login(self):
elif type(password) is file:
for f_pass in password:
if self.plaintext_login(usr.strip(), f_pass.strip()): return
password.seek(0)

elif type(user) is not file:

Expand All @@ -196,6 +198,7 @@ def login(self):
elif type(ntlm_hash) is file:
for f_hash in ntlm_hash:
if self.hash_login(user, f_hash.strip()): return
ntlm_hash.seek(0)

elif self.args.password:
for password in self.args.password:
Expand All @@ -205,6 +208,7 @@ def login(self):
elif type(password) is file:
for f_pass in password:
if self.plaintext_login(user, f_pass.strip()): return
password.seek(0)

def execute(self, payload, get_output=False, methods=None):

Expand Down

0 comments on commit cb3c39b

Please sign in to comment.