|
3 | 3 | # pylint: disable=C0301, E1101 |
4 | 4 |
|
5 | 5 | ### ENUM4LINUX-NG |
6 | | -# This tool is a rewrite of Mark Lowe's (former Portcullis Labs, now CiscoCXSecurity ) enum4linux.pl, |
| 6 | +# This tool is a rewrite of Mark Lowe's (former Portcullis Labs, now Cisco CX Security Labs ) enum4linux.pl, |
7 | 7 | # a tool for enumerating information from Windows and Samba systems. |
8 | 8 | # As the original enum4linux.pl, this tool is mainly a wrapper around the Samba tools 'nmblookup', 'net', |
9 | 9 | # 'rpcclient' and 'smbclient'. Other than the original enum4linux.pl, enum4linux-ng parses all output of |
|
12 | 12 | # natively implemented in enum4linux-ng. Console output is colored. |
13 | 13 | # |
14 | 14 | ### CREDITS |
15 | | -# I'd like to thank and give credit to Mark Lowe for creating the original 'enum4linux.pl'. |
16 | | -# In addition, I'd like to thank and give credit to Wh1t3Fox for creating 'polenum'. |
| 15 | +# I'd like to thank and give credit to the people at former Portcullis Labs (now Cisco CX Security Labs), namely: |
| 16 | +# |
| 17 | +# - Mark Lowe for creating the original 'enum4linux.pl' |
| 18 | +# https://github.com/CiscoCXSecurity/enum4linux |
| 19 | +# |
| 20 | +# - Richard "deanx" Dean for creating the original 'polenum' |
| 21 | +# https://labs.portcullis.co.uk/tools/polenum/ |
| 22 | +# |
| 23 | +# In addition, I'd like to thank and give credit to: |
| 24 | +# - Craig "Wh1t3Fox" West for his fork of 'polenum' |
| 25 | +# https://github.com/Wh1t3Fox/polenum |
| 26 | +# |
17 | 27 | # |
18 | 28 | ### DESIGN |
19 | 29 | # |
@@ -1815,8 +1825,9 @@ def run(self): |
1815 | 1825 |
|
1816 | 1826 | return output |
1817 | 1827 |
|
1818 | | - # This function is heavily based on the polenum.py source code: https://github.com/Wh1t3Fox/polenum |
1819 | | - # All credits to Wh1t3Fox! |
| 1828 | + # This function is heavily based on this polenum fork: https://github.com/Wh1t3Fox/polenum |
| 1829 | + # The original polenum was written by Richard "deanx" Dean: https://labs.portcullis.co.uk/tools/polenum/ |
| 1830 | + # All credits to Richard "deanx" Dean and Craig "Wh1t3Fox" West! |
1820 | 1831 | def enum(self): |
1821 | 1832 | ''' |
1822 | 1833 | Tries to enum password policy and domain lockout and logoff information by opening a connection to the SAMR |
@@ -1880,8 +1891,9 @@ def enum(self): |
1880 | 1891 |
|
1881 | 1892 | return Result(policy, f"Found policy:\n{yamlize(policy)}") |
1882 | 1893 |
|
1883 | | - # This function is heavily based on the polenum.py source code: https://github.com/Wh1t3Fox/polenum |
1884 | | - # All credits to Wh1t3Fox! |
| 1894 | + # This function is heavily based on this polenum fork: https://github.com/Wh1t3Fox/polenum |
| 1895 | + # The original polenum was written by Richard "deanx" Dean: https://labs.portcullis.co.uk/tools/polenum/ |
| 1896 | + # All credits to Richard "deanx" Dean and Craig "Wh1t3Fox" West! |
1885 | 1897 | def samr_init(self): |
1886 | 1898 | ''' |
1887 | 1899 | Tries to connect to the SAMR named pipe and get the domain handle. |
@@ -1924,8 +1936,9 @@ def samr_init(self): |
1924 | 1936 |
|
1925 | 1937 | return Result((dce, domain_handle), "") |
1926 | 1938 |
|
1927 | | - # This function was copied (slightly modified) from the polenum.py source code: https://github.com/Wh1t3Fox/polenum |
1928 | | - # All credits to Wh1t3Fox! |
| 1939 | + # This function is heavily based on this polenum fork: https://github.com/Wh1t3Fox/polenum |
| 1940 | + # The original polenum was written by Richard "deanx" Dean: https://labs.portcullis.co.uk/tools/polenum/ |
| 1941 | + # All credits to Richard "deanx" Dean and Craig "Wh1t3Fox" West! |
1929 | 1942 | def policy_to_human(self, low, high, lockout=False): |
1930 | 1943 | ''' |
1931 | 1944 | Converts various values retrieved via the SAMR named pipe into human readable strings. |
|
0 commit comments