All plugins are now modified to support dynamic config file changes

Responder functionality fully restored
2025-08-21 14:03:26 -07:00 · 2015-05-05 19:04:01 +02:00 · 2015-05-05 19:04:01 +02:00 · 70ec5a2bbc
commit 70ec5a2bbc
parent dfa9c9d65e
50 changed files with 2102 additions and 798 deletions
--- a/config/mitmf.conf
+++ b/config/mitmf.conf
@ -21,6 +21,10 @@
 		msfport = 8080    #Port to start webserver for exploits
 		rpcip = 127.0.0.1
 		rpcpass = abc123
+	
+	[[SMB]]
+		#Set a custom challenge
+		Challenge = 1122334455667788

 	[[DNS]]

@ -88,46 +92,32 @@
 [Responder]

 	#Set these values to On or Off, so you can control which rogue authentication server is turned on.
-	SQL = On
-	SMB = On
+	MSSQL = On
 	Kerberos = On
-	FTP = On
-	POP = On
-	##Listen on 25/TCP, 587/TCP
-	SMTP = On
-	IMAP = On 
-	HTTP = On
-	HTTPS = On
-	LDAP = On
+	FTP   = On
+	POP   = On
+	SMTP  = On #Listens on 25/TCP, 587/TCP
+	IMAP  = On 
+	LDAP  = On

-	#Set a custom challenge
-	Challenge = 1122334455667788
-
-	#Set this to change the default logging file 
-	SessionLog = Responder-Session.log
-
-	#Set this option with your in-scope targets (default = All). Example: RespondTo = 10.20.1.116,10.20.1.117,10.20.1.118,10.20.1.119
-	#RespondTo = 10.20.1.116,10.20.1.117,10.20.1.118,10.20.1.119
+	#Set this option with your in-scope targets (default = All)
+	#Ex. RespondTo = 10.20.1.116,10.20.1.117,10.20.1.118,10.20.1.119
 	RespondTo =
-	#Set this option with specific NBT-NS/LLMNR names to answer to (default = All). Example: RespondTo = WPAD,DEV,PROD,SQLINT
-	#RespondTo = WPAD,DEV,PROD,SQLINT
+
+	#Set this option with specific NBT-NS/LLMNR names to answer to (default = All)
+	#Ex. RespondTo = WPAD,DEV,PROD,SQLINT
 	RespondToName = 

 	#DontRespondTo = 10.20.1.116,10.20.1.117,10.20.1.118,10.20.1.119
 	DontRespondTo = 
-	#Set this option with specific NBT-NS/LLMNR names not to respond to (default = None). Example: DontRespondTo = NAC, IPS, IDS
+
+	#Set this option with specific NBT-NS/LLMNR names not to respond to (default = None)
+	#Ex. DontRespondTo = NAC, IPS, IDS
 	DontRespondToName =

 	#Set your custom PAC script
 	WPADScript = 'function FindProxyForURL(url, host){if ((host == "localhost") || shExpMatch(host, "localhost.*") ||(host == "127.0.0.1") || isPlainHostName(host)) return "DIRECT"; if (dnsDomainIs(host, "RespProxySrv")||shExpMatch(host, "(*.RespProxySrv|RespProxySrv)")) return "DIRECT"; return "PROXY ISAProxySrv:3141; DIRECT";}'

-	[[HTTPS Server]]
-
-		#Change to use your certs
-		cert = config/responder/certs/responder.crt
-		key = config/responder/certs/responder.key
-
-
 [BeEFAutorun]
 	#Example config for the BeefAutorun plugin

--- a/config/responder/Denied.html
+++ b/config/responder/Denied.html
@ -1,31 +0,0 @@
-<html>
-<head>
-<title>Website Blocked: ISA Proxy Server</title>
-<style>
-<!--
-body, ul, li { font-family:Arial, Helvetica, sans-serif; font-size:14px; color:#737373;	margin:0; padding:0;}
-.content { padding: 20px 15px 15px 40px; width: 500px; margin: 70px auto 6px auto; border: #D52B1E solid 2px;}
-.blocking { border-top: #D52B1E solid 2px; border-bottom: #D52B1E solid 2px;}
-.title { font-size: 24px; border-bottom: #ccc solid 1px; padding-bottom:15px; margin-bottom:15px;}
-.details li { list-style: none;	padding: 4px 0;}
-.footer { color:  #6d90e7; font-size: 14px; width: 540px; margin: 0 auto; text-align:right; }
-->
-</style>
-
-</head>
-<body>
-<center>
-<div class="content blocking">
-  <div class="title" id="msg_title"><b>New Security Policy: Website Blocked</b></div>
-  <ul class="details">
-    <div id="main_block">
-      <div id="msg_long_reason">
-        <li><b>Access has been blocked. Please download and install the new </b><span class="url"><a href="http://isaProxysrv/ProxyClient.exe"><b>Proxy Client</b></a></span><b> in order to access internet resources.</b></li>
-    </div>
-  </ul>
-</div>
-<div class="footer">ISA Security <b>Proxy Server</b></div>
-</center>
-</body>
-</html>
-
--- a/config/responder/FixInternet.exe
+++ b/config/responder/FixInternet.exe
--- a/config/responder/certs/gen-self-signed-cert.sh
+++ b/config/responder/certs/gen-self-signed-cert.sh
@ -1,2 +0,0 @@
-#!/bin/bash
-openssl genrsa -des3 -out responder.tmp.key 2048&&openssl rsa -in responder.tmp.key -out responder.key&&openssl req -new -key responder.key -out responder.csr&&openssl x509 -req -days 365 -in responder.csr -signkey responder.key -out responder.crt&&rm responder.tmp.key responder.csr
--- a/config/responder/certs/responder.crt
+++ b/config/responder/certs/responder.crt
@ -1,19 +0,0 @@
-----BEGIN CERTIFICATE-----
-MIIDBjCCAe4CCQDDe8Sb2PGjITANBgkqhkiG9w0BAQUFADBFMQswCQYDVQQGEwJB
-VTETMBEGA1UECAwKU29tZS1TdGF0ZTEhMB8GA1UECgwYSW50ZXJuZXQgV2lkZ2l0
-cyBQdHkgTHRkMB4XDTEzMDIyODIwMTcxN1oXDTE0MDIyODIwMTcxN1owRTELMAkG
-A1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoMGEludGVybmV0
-IFdpZGdpdHMgUHR5IEx0ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
-AMQB5yErm0Sg7sRQbLgbi/hG/8uF2xUzvVKnT4LROEWkkimy9umb2JbvAZITDvSs
-r2xsPA4VoxFjKpWLOv7mAIMBR95NDWsTLuR36Sho/U2LlTlUBdSfQP7rlKQZ0L43
-YpXswdvCCJ0wP2yOhq0i71cg/Nk9mfQxftpgGUxoa+6ljU9hSdmThu2FVgAbSpNl
-D86rk4K9/sGYAY4btMqaMzC7JIKZp07FHL32oM01cKbRoNg2eUuQmoVjca1pkmbO
-Y8qnl7ajOjsiAPQnt/2TMJlRsdoU1fSx76Grgkm8D4gX/pBUqELdpvHtnm/9imPl
-qNGL5LaW8ARgG16U0mRhutkCAwEAATANBgkqhkiG9w0BAQUFAAOCAQEAS7u4LWc9
-wDPThD0o58Ti2GgIs+mMRx5hPaxWHJNCu+lwFqjvWmsNFfHoSzlIkIUjtlV2G/wE
-FxDSPlc/V+r7U2UiE7WSqQiWdmfOYS2m03x4SN0Vzf/n9DeApyPo2GsXGrha20eN
-s390Xwj6yKFdprUPJ8ezlEVRrAMv7tu1cOLzqmkocYKnPgXDdQxiiGisp7/hEUCQ
-B7HvNCMPbOi+M7O/CXbfgnTD029KkyiR2LEtj4QC5Ytp/pj0UyyoIeCK57CTB3Jt
-X3CZ+DiphTpOca4iENH55m6atk+WHYwg3ClYiONQDdIgKVT3BK0ITjyFWZeTneVu
-1eVgF/UkX9fqJg==
-----END CERTIFICATE-----
--- a/config/responder/certs/responder.key
+++ b/config/responder/certs/responder.key
@ -1,27 +0,0 @@
-----BEGIN RSA PRIVATE KEY-----
-MIIEowIBAAKCAQEAxAHnISubRKDuxFBsuBuL+Eb/y4XbFTO9UqdPgtE4RaSSKbL2
-6ZvYlu8BkhMO9KyvbGw8DhWjEWMqlYs6/uYAgwFH3k0NaxMu5HfpKGj9TYuVOVQF
-1J9A/uuUpBnQvjdilezB28IInTA/bI6GrSLvVyD82T2Z9DF+2mAZTGhr7qWNT2FJ
-2ZOG7YVWABtKk2UPzquTgr3+wZgBjhu0ypozMLskgpmnTsUcvfagzTVwptGg2DZ5
-S5CahWNxrWmSZs5jyqeXtqM6OyIA9Ce3/ZMwmVGx2hTV9LHvoauCSbwPiBf+kFSo
-Qt2m8e2eb/2KY+Wo0YvktpbwBGAbXpTSZGG62QIDAQABAoIBABbuLg74XgLKXQSE
-cCOdvWM/Ux+JOlchpW1s+2VPeqjTFvJf6Hjt7YnCzkk7h41iQmeJxgDT0S7wjgPO
-tQkq+TZaSQEdvIshRGQgDxvWJIQU51E8ni4Ar4bjIpGMH5qROixV9VvzODTDdzgI
-+IJ6ystDpbD4fvFNdQyxH2SL9syFRyWyxY3vWB0C/OHWxGFtiTtmeivBSmpxl0RY
-RQqPLxX+xUCie7U6ud3e37FO7cKt+YT8lWKhGHKJlTlJbHs1d8crzp6qKJLl+ibB
-0fB6D6E5M1fnIJFJULIYAG5bEak90KuKOKCLoKLG+rq0vUvJsb9vNCAA6rh1ra+n
-8woY8TECgYEA7CEE/3oWnziB3PZoIIJDgbBalCCbA+/SgDiSvYJELEApCMj8HYc5
-UGOxrfVhPmbHRUI982Fj1oM3QBEX0zpkOk7Xk224RXwBHG8MMPQmTMVp+o06AI6D
-Nggyam9v5KLNMj5KghKJSOD0tR5YxsZPXw4gAI+wpqu3bXGKZ8bRpvUCgYEA1ICJ
-H+kw6H8edJHGdNH+X6RR0DIbS11XQvbKQ3vh6LdHTofoHqQa3t0zGYCgksKJbtHV
-2h3pv+nuOu5FEP2rrGJIforv2zwfJ5vp65jePrSXU+Up4pMHbP1Rm91ApcKNA15U
-q3SaclqTjmiqvaeSKc4TDjdb/rUaIhyIgbg97dUCgYAcdq5/jVwEvW8KD7nlkU5J
-59RDXtrQ0qvxQOCPb5CANQu9P10EwjQqeJoGejnKp+EFfEKzf93lEdQrKORSVguW
-68IYx3UbCyOnJcu2avfi8TkhNrzzLDqs3LgXFG/Mg8NwdwnMPCfIXTWiT5IsA+O1
-daJt7uRAcxqdWr5wXAsRsQKBgFXU4Q4hm16dUcjVxKoU08D/1wfX5UxolEF4+zOM
-yy+7L7MZk/kkYbIY+HXZjYIZz3cSjGVAZdTdgRsOeJknTPsg65UpOz57Jz5RbId7
-xHDhcqoxSty4dGxiWV8yW9VYIqr0pBBo1aVQzn7b6fMWxyPZl7rLQ3462iZjDgQP
-TfxNAoGBAK/Gef6MgchbFPikOVEX9qB/wt4sS3V7mT6QkqMZZgSkegDLBFVRJX3w
-Emx/V2A14p0uHPzn5irURyJ6daZCN4amPAWYQnkiXG8saiBwtfs23A1q7kxnPR+b
-KJfb+nDlhU1iYa/7nf4PaR/i9l6gcwOeh1ThK1nq4VvwTaTZKSRh
-----END RSA PRIVATE KEY-----