Bump impacket from 0.9.24 to 0.10.0

[dependabot]

Bumps impacket from 0.9.24 to 0.10.0.

Release notes

Sourced from impacket's releases.

Impacket 0.10.0

Project's main page at https://www.secureauth.com/labs/open-source-tools/impacket/

ChangeLog for 0.10.0:

1. Library improvements

• Dropped support for Python 2.7.
• Refactored the testing infrastructure (@​martingalloar):
  • Added pytest as the testing framework to organize and mark test cases. Tox remain as the automation framework, and Coverage.py for measuring code coverage.
  • Custom bash scripts were replaced with test cases auto-discovery.
  • Local and remote test cases were marked for easy run and configuration.
  • DCE/RPC endpoint test cases were refactored and moved to a new layout.
  • An initial testing guide with the main steps to prepare a testing environment and run them.
  • Fixed a good amount of DCE/RPC endpoint test cases that were failing.
  • Added tests for [MS-PAR], [MS-RPRN], CCache and DPAPI.
• Added a function to compute the Netlogon Authenticator at client-side in [MS-NRPC] (@​0xdeaddood)
• Added [MS-DSSP] protocol implementation (@​simondotsh)
• Added GetDriverDirectory functions to [MS-PAR] and [MS-RPRN] (@​raithedavion)
• Refactored the Credential Cache:
  • Added new parseFile function to ccache.py (@​rmaksimov)
  • Added support for loading CCache Version 3 (@​reznok)
  • Modified fromKRBCRED function used to load a Kirbi file (@​0xdeaddood)
  • Fixed Ccache to Kirbi conversion (@​ShutdownRepo)
• Fixed default NTLM server challenge in smbserver (@​rtpt-jonaslieb)

2. Examples improvements

• exchanger.py:
  • Fixed a bug when a Global Address List doesn't exist on the server (@​mohemiv)
• mimikatz.py
  • Updated intro to not trigger the AV on windows (@​mpgn)
• ntlmrelayx.py:
  • Implemented RAW Relay Server (@​CCob)
  • Added an LDAP attack dumping information about the domain's ADCS enrollment services (@​SAERXCIT)
  • Added multi-relay feature to the HTTP Relay Server. Now one incoming HTTP connection could be used against multiple targets (@​0xdeaddood)
  • Added an option to disable the multi-relay feature (@​zblurx and @​0xdeaddood)
  • Added multiple HTTP listeners running at the same time (@​SAERXCIT)
  • Support for the ADCS ESC1 and ESC6 attacks (@​hugo-syn)
  • Added Shadow Credentials attack (@​ShutdownRepo, @​Tw1sm, @​nodauf and @​p0dalirius)
  • Added the ability to define a password for the LDAP attack addComputer (@​ShutdownRepo)
  • Added rename_computer and modify add_computer in LDAP interactive shell (@​capnkrunchy)
  • Implemented StartTLS (@​ThePirateWhoSmellsOfSunflowers)
• reg.py:
  • Added save function to allow remote saving of registry hives (@​ShutdownRepo and @​scopedsecurity)
• secretsdump.py:
  • Added an option to dump credentials using the Kerberos Key List attack (@​0xdeaddood)
• smbpasswd.py:
  • Added an option to force credentials change via injecting new values into SAM (@​snovvcrash and @​Alef-Burzmali!)

... (truncated)

Changelog

Sourced from impacket's changelog.

Impacket v0.10.0 (May 2022):

1. Library improvements
   • Dropped support for Python 2.7.
   • Refactored the testing infrastructure (@​martingalloar):
     • Added pytest as the testing framework to organize and mark test cases. Tox remain as the automation framework, and Coverage.py for measuring code coverage.
     • Custom bash scripts were replaced with test cases auto-discovery.
     • Local and remote test cases were marked for easy run and configuration.
     • DCE/RPC endpoint test cases were refactored and moved to a new layout.
     • An initial testing guide with the main steps to prepare a testing environment and run them.
     • Fixed a good amount of DCE/RPC endpoint test cases that were failing.
     • Added tests for [MS-PAR], [MS-RPRN], CCache and DPAPI.
   • Added a function to compute the Netlogon Authenticator at client-side in [MS-NRPC] (@​0xdeaddood)
   • Added [MS-DSSP] protocol implementation (@​simondotsh)
   • Added GetDriverDirectory functions to [MS-PAR] and [MS-RPRN] (@​raithedavion)
   • Refactored the Credential Cache:
   • Added new parseFile function to ccache.py (@​rmaksimov)
   • Added support for loading CCache Version 3 (@​reznok)
   • Modified fromKRBCRED function used to load a Kirbi file (@​0xdeaddood)
   • Fixed Ccache to Kirbi conversion (@​ShutdownRepo)

• Fixed default NTLM server challenge in smbserver (@​rtpt-jonaslieb)

2. Examples improvements

• exchanger.py:
  • Fixed a bug when a Global Address List doesn't exist on the server (@​mohemiv)
• mimikatz.py
  • Updated intro to not trigger the AV on windows (@​mpgn)
• ntlmrelayx.py:
  • Implemented RAW Relay Server (@​CCob)
  • Added an LDAP attack dumping information about the domain's ADCS enrollment services (@​SAERXCIT)
    • Added multi-relay feature to the HTTP Relay Server. Now one incoming HTTP connection could be used against multiple targets (@​0xdeaddood)
    • Added an option to disable the multi-relay feature (@​zblurx and @​0xdeaddood)
    • Added multiple HTTP listeners running at the same time (@​SAERXCIT)
    • Support for the ADCS ESC1 and ESC6 attacks (@​hugo-syn)
    • Added Shadow Credentials attack (@​ShutdownRepo, @​Tw1sm, @​nodauf and @​p0dalirius)
    • Added the ability to define a password for the LDAP attack addComputer (@​ShutdownRepo)
    • Added rename_computer and modify add_computer in LDAP interactive shell (@​capnkrunchy)
    • Implemented StartTLS (@​ThePirateWhoSmellsOfSunflowers)
  • reg.py:
    • Added save function to allow remote saving of registry hives (@​ShutdownRepo and @​scopedsecurity)
  • secretsdump.py:
    • Added an option to dump credentials using the Kerberos Key List attack (@​0xdeaddood)
  • smbpasswd.py:
    • Added an option to force credentials change via injecting new values into SAM (@​snovvcrash and @​alefburzmali)

3. New examples

• machine_role.py: This script retrieves a host's role along with its primary domain details (@​simondotsh)

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #86.