From 15c8f534590ae57f73e1dc1a23e0ed3f8578d8ec Mon Sep 17 00:00:00 2001
From: Gifts <giftsungiv3n@gmail.com>
Date: Thu, 12 Jan 2017 15:46:40 +0300
Subject: [PATCH] Python 2.4 syntax compatibility (try-except-finally, ternary
 operator) Backported functions check_output and CalledProcessError Lack of
 ssl module is now non-blocker. Responder will start with HTTPS server
 disabled

---
 Responder.py                                  |  11 +-
 packets.py                                    |   2 +-
 servers/HTTP.py                               |   6 +-
 servers/HTTP_Proxy.py                         |  68 ++++++------
 settings.py                                   |  37 ++++++-
 tools/DHCP.py                                 |   5 +-
 tools/MultiRelay/RelayMultiCore.py            |  41 ++++---
 tools/MultiRelay/RelayMultiPackets.py         |   2 +-
 .../creddump/framework/win32/hashdump.py      |  17 ++-
 tools/RunFinger.py                            |   2 +-
 tools/SMBFinger/Finger.py                     |   5 +-
 utils.py                                      | 101 +++++++++++-------
 12 files changed, 188 insertions(+), 109 deletions(-)

diff --git a/Responder.py b/Responder.py
index ed238d5..307fa29 100755
--- a/Responder.py
+++ b/Responder.py
@@ -15,7 +15,6 @@
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 import optparse
-import ssl
 
 from SocketServer import TCPServer, UDPServer, ThreadingMixIn
 from threading import Thread
@@ -23,6 +22,12 @@ from utils import *
 import struct
 banner()
 
+try:
+	import ssl
+except ImportError:
+	ssl = False
+	print color("[!] Module 'ssl' is unavailable. HTTPS is disabled")
+
 parser = optparse.OptionParser(usage='python %prog -I eth0 -w -r -f\nor:\npython %prog -I eth0 -wrf', version=settings.__version__, prog=sys.argv[0])
 parser.add_option('-A','--analyze',        action="store_true", help="Analyze mode. This option allows you to see NBT-NS, BROWSER, LLMNR requests without responding.", dest="Analyze", default=False)
 parser.add_option('-I','--interface',      action="store",      help="Network interface to use, you can use 'ALL' as a wildcard for all interfaces", dest="Interface", metavar="eth0", default=None)
@@ -35,7 +40,7 @@ parser.add_option('-r', '--wredir',        action="store_true", help="Enable ans
 parser.add_option('-d', '--NBTNSdomain',   action="store_true", help="Enable answers for netbios domain suffix queries. Answering to domain suffixes will likely break stuff on the network. Default: False", dest="NBTNSDomain", default=False)
 parser.add_option('-f','--fingerprint',    action="store_true", help="This option allows you to fingerprint a host that issued an NBT-NS or LLMNR query.", dest="Finger", default=False)
 parser.add_option('-w','--wpad',           action="store_true", help="Start the WPAD rogue proxy server. Default value is False", dest="WPAD_On_Off", default=False)
-parser.add_option('-u','--upstream-proxy', action="store",      help="Upstream HTTP proxy used by the rogue WPAD Proxy for outgoing requests (format: host:port)", dest="Upstream_Proxy", default=None)
+parser.add_option('-u','--upstream-proxy', action="store",      help="Upstream HTTP proxy used by the rogue WPAD Proxy for outgoing requests (format: host:port)", dest="Upstream_Proxy", default=False)
 parser.add_option('-F','--ForceWpadAuth',  action="store_true", help="Force NTLM/Basic authentication on wpad.dat file retrieval. This may cause a login prompt. Default: False", dest="Force_WPAD_Auth", default=False)
 
 parser.add_option('-P','--ProxyAuth',       action="store_true", help="Force NTLM (transparently)/Basic (prompt) authentication for the proxy. WPAD doesn't need to be ON. This option is highly effective when combined with -r. Default: False", dest="ProxyAuth_On_Off", default=False)
@@ -237,7 +242,7 @@ def main():
 			from servers.HTTP import HTTP
 			threads.append(Thread(target=serve_thread_tcp, args=('', 80, HTTP,)))
 
-		if settings.Config.SSL_On_Off:
+		if settings.Config.SSL_On_Off and ssl:
 			from servers.HTTP import HTTPS
 			threads.append(Thread(target=serve_thread_SSL, args=('', 443, HTTPS,)))
 
diff --git a/packets.py b/packets.py
index 9820e26..435c35b 100644
--- a/packets.py
+++ b/packets.py
@@ -22,7 +22,7 @@ from odict import OrderedDict
 from utils import HTTPCurrentDate, RespondWithIPAton
 
 # Packet class handling all packet generation (see odict.py).
-class Packet():
+class Packet:
 	fields = OrderedDict([
 		("data", ""),
 	])
diff --git a/servers/HTTP.py b/servers/HTTP.py
index 6f170fc..85508d5 100644
--- a/servers/HTTP.py
+++ b/servers/HTTP.py
@@ -144,8 +144,10 @@ def ServeOPTIONS(data):
 	return False
 
 def ServeFile(Filename):
-	with open (Filename, "rb") as bk:
-		return bk.read()
+	bk = open(Filename, "rb")
+	data = bk.read()
+	bk.close()
+	return data
 
 def RespondWithFile(client, filename, dlname=None):
 	
diff --git a/servers/HTTP_Proxy.py b/servers/HTTP_Proxy.py
index 71e6e75..9ab73af 100644
--- a/servers/HTTP_Proxy.py
+++ b/servers/HTTP_Proxy.py
@@ -236,17 +236,17 @@ class HTTP_Proxy(BaseHTTPServer.BaseHTTPRequestHandler):
 			soc = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
 
 		try:
-			if self._connect_to(self.path, soc):
-				self.wfile.write(self.protocol_version +" 200 Connection established\r\n")
-				self.wfile.write("Proxy-agent: %s\r\n" % self.version_string())
-				self.wfile.write("\r\n")
-				try:
-					self._read_write(soc, 300)
-				except:
-					pass
-		except:
-			pass
-
+			try:
+				if self._connect_to(self.path, soc):
+					self.wfile.write(self.protocol_version +" 200 Connection established\r\n")
+					self.wfile.write("Proxy-agent: %s\r\n" % self.version_string())
+					self.wfile.write("\r\n")
+					try:
+						self._read_write(soc, 300)
+					except:
+						pass
+			except:
+				pass
 		finally:
 			soc.close()
 			self.connection.close()
@@ -266,36 +266,36 @@ class HTTP_Proxy(BaseHTTPServer.BaseHTTPRequestHandler):
 			soc = self.socket_proxy(socket.AF_INET, socket.SOCK_STREAM)
 		else:
 			soc = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
-
 		try:
-			URL_Unparse = urlparse.urlunparse(('', '', path, params, query, ''))
+			try:
+				URL_Unparse = urlparse.urlunparse(('', '', path, params, query, ''))
 
-			if self._connect_to(netloc, soc):
-				soc.send("%s %s %s\r\n" % (self.command, URL_Unparse, self.request_version))
+				if self._connect_to(netloc, soc):
+					soc.send("%s %s %s\r\n" % (self.command, URL_Unparse, self.request_version))
 
-				Cookie = self.headers['Cookie'] if "Cookie" in self.headers else ''
+					Cookie = self.headers.get('Cookie', '')
 
-				if settings.Config.Verbose:
-					print text("[PROXY] Client        : %s" % color(self.client_address[0], 3))
-					print text("[PROXY] Requested URL : %s" % color(self.path, 3))
-					print text("[PROXY] Cookie        : %s" % Cookie)
+					if settings.Config.Verbose:
+						print text("[PROXY] Client        : %s" % color(self.client_address[0], 3))
+						print text("[PROXY] Requested URL : %s" % color(self.path, 3))
+						print text("[PROXY] Cookie        : %s" % Cookie)
 
-				self.headers['Connection'] = 'close'
-				del self.headers['Proxy-Connection']
-				del self.headers['If-Range']
-				del self.headers['Range']
-				
-				for k, v in self.headers.items():
-					soc.send("%s: %s\r\n" % (k.title(), v))
-				soc.send("\r\n")
+					self.headers['Connection'] = 'close'
+					del self.headers['Proxy-Connection']
+					del self.headers['If-Range']
+					del self.headers['Range']
 
-				try:
-					self._read_write(soc, netloc)
-				except:
-					pass
+					for k, v in self.headers.items():
+						soc.send("%s: %s\r\n" % (k.title(), v))
+					soc.send("\r\n")
 
-		except:
-			pass
+					try:
+						self._read_write(soc, netloc)
+					except:
+						pass
+
+			except:
+				pass
 
 		finally:
 			soc.close()
diff --git a/settings.py b/settings.py
index e02dff9..abed838 100644
--- a/settings.py
+++ b/settings.py
@@ -22,6 +22,35 @@ from utils import *
 
 __version__ = 'Responder 2.3.3.2'
 
+# Backport (monkeypatch) check_output and CalledProcessError
+if not hasattr(subprocess, 'CalledProcessError'):
+	class CalledProcessError(Exception):
+		def __init__(self, returncode, cmd, output=None):
+			self.returncode = returncode
+			self.cmd = cmd
+			self.output = output
+
+		def __str__(self):
+			return "Command '%s' returned non-zero exit status %d" % (self.cmd, self.returncode)
+
+	subprocess.CalledProcessError = CalledProcessError
+
+if not hasattr(subprocess, 'check_output'):
+	def check_output(*popenargs, **kwargs):
+		if 'stdout' in kwargs:
+			raise ValueError('stdout argument not allowed, it will be overridden.')
+		process = subprocess.Popen(stdout=subprocess.PIPE, *popenargs, **kwargs)
+		output, unused_err = process.communicate()
+		retcode = process.poll()
+		if retcode:
+			cmd = kwargs.get("args")
+			if cmd is None:
+				cmd = popenargs[0]
+			raise subprocess.CalledProcessError(retcode, cmd, output=output)
+		return output
+
+	subprocess.check_output = check_output
+
 class Settings:
 	
 	def __init__(self):
@@ -229,17 +258,17 @@ class Settings:
                 
 		try:
 			NetworkCard = subprocess.check_output(["ifconfig", "-a"])
-		except subprocess.CalledProcessError as ex:
+		except Exception,ex:
 			NetworkCard = "Error fetching Network Interfaces:", ex
 			pass
 		try:
 			DNS = subprocess.check_output(["cat", "/etc/resolv.conf"])
-		except subprocess.CalledProcessError as ex:
+		except subprocess.CalledProcessError,ex:
 			DNS = "Error fetching DNS configuration:", ex
 			pass
 		try:
 			RoutingInfo = subprocess.check_output(["netstat", "-rn"])
-		except subprocess.CalledProcessError as ex:
+		except subprocess.CalledProcessError,ex:
 			RoutingInfo = "Error fetching Routing information:", ex
 			pass
 
@@ -247,7 +276,7 @@ class Settings:
 		try:
 			utils.DumpConfig(self.ResponderConfigDump, Message)
 			utils.DumpConfig(self.ResponderConfigDump,str(self))
-		except AttributeError as ex:
+		except AttributeError, ex:
 			print "Missing Module:", ex
 			pass
 
diff --git a/tools/DHCP.py b/tools/DHCP.py
index 20f02b0..f02c124 100755
--- a/tools/DHCP.py
+++ b/tools/DHCP.py
@@ -222,7 +222,10 @@ class DHCPInformACK(Packet):
 		self.fields["Op252Len"] = struct.pack(">b",len(str(self.fields["Op252Str"])))
 
 def SpoofIP(Spoof):
-	return ROUTERIP if Spoof else Responder_IP
+	if Spoof:
+		return ROUTERIP
+	else:
+		return Responder_IP
 
 def RespondToThisIP(ClientIp):
 	if ClientIp.startswith('127.0.0.'):
diff --git a/tools/MultiRelay/RelayMultiCore.py b/tools/MultiRelay/RelayMultiCore.py
index 20ccfdb..fc5008a 100644
--- a/tools/MultiRelay/RelayMultiCore.py
+++ b/tools/MultiRelay/RelayMultiCore.py
@@ -39,7 +39,7 @@ def longueur(payload):
     length = struct.pack(">i", len(''.join(payload)))
     return length
 
-class Packet():
+class Packet:
     fields = OrderedDict([
         ("data", ""),
     ])
@@ -55,22 +55,30 @@ class Packet():
 
 # Function used to write captured hashs to a file.
 def WriteData(outfile, data, user):
-	if not os.path.isfile(outfile):
-		with open(outfile,"w") as outf:
-			outf.write(data + '\n')
-		return
-	with open(outfile,"r") as filestr:
-		if re.search(user.encode('hex'), filestr.read().encode('hex')):
-			return False
-		elif re.search(re.escape("$"), user):
-			return False
-	with open(outfile,"a") as outf2:
-		outf2.write(data + '\n')
+    if not os.path.isfile(outfile):
+        outf = open(outfile,"w")
+        outf.write(data + '\n')
+        outf.close()
+        return
+
+    filestr = open(outfile,"r")
+    try:
+        if re.search(user.encode('hex'), filestr.read().encode('hex')):
+            return False
+        elif re.search(re.escape("$"), user):
+            return False
+    finally:
+        filestr.close()
+
+    outf2 = open(outfile,"a")
+    outf2.write(data + '\n')
+    outf2.close()
 
 #Function used to verify if a previous auth attempt was made.
 def ReadData(Outfile, Client, User, Domain, Target, cmd):
     try:
-        with open(Logs_Path+"logs/"+Outfile,"r") as filestr:
+        filestr = open(Logs_Path+"logs/"+Outfile,"r")
+        try:
             Login = Client+":"+User+":"+Domain+":"+Target+":Logon Failure"
             if re.search(Login.encode('hex'), filestr.read().encode('hex')):
                 print "[+] User %s\\%s previous login attempt returned logon_failure. Not forwarding anymore to prevent account lockout\n"%(Domain,User)
@@ -78,6 +86,8 @@ def ReadData(Outfile, Client, User, Domain, Target, cmd):
 
             else:
                 return False
+        finally:
+            filestr.close()
     except:
         raise
 
@@ -267,8 +277,9 @@ def GetReadableSize(size,precision=2):
     return "%.*f%s"%(precision,size,suffixes[suffixIndex])
 
 def WriteOutputToFile(data, File):
-    with open(SaveSam_Path+"/"+File, "wb") as file:
-        file.write(data)
+    file = open(SaveSam_Path+"/"+File, "wb")
+    file.write(data)
+    file.close()
 
 ##This function is one of the main SMB read function. We request all the time 65520 bytes to the server. 
 #Add (+32 (SMBHeader) +4 Netbios Session Header + 27 for the ReadAndx structure) +63 and you end up with 65583.
diff --git a/tools/MultiRelay/RelayMultiPackets.py b/tools/MultiRelay/RelayMultiPackets.py
index cedcaaf..0e25134 100644
--- a/tools/MultiRelay/RelayMultiPackets.py
+++ b/tools/MultiRelay/RelayMultiPackets.py
@@ -20,7 +20,7 @@ from odict import OrderedDict
 import datetime
 from base64 import b64decode, b64encode
 
-class Packet():
+class Packet:
     fields = OrderedDict([
         ("data", ""),
     ])
diff --git a/tools/MultiRelay/creddump/framework/win32/hashdump.py b/tools/MultiRelay/creddump/framework/win32/hashdump.py
index 6acc808..59d4543 100644
--- a/tools/MultiRelay/creddump/framework/win32/hashdump.py
+++ b/tools/MultiRelay/creddump/framework/win32/hashdump.py
@@ -176,11 +176,20 @@ def get_user_hashes(user_key, hbootkey):
 
     hash_offset = unpack("<L", V[0x9c:0x9c+4])[0] + 0xCC
 
-    lm_exists = True if unpack("<L", V[0x9c+4:0x9c+8])[0] == 20 else False
-    nt_exists = True if unpack("<L", V[0x9c+16:0x9c+20])[0] == 20 else False
+    lm_exists = unpack("<L", V[0x9c+4:0x9c+8])[0] == 20
+    nt_exists = unpack("<L", V[0x9c+16:0x9c+20])[0] == 20
 
-    enc_lm_hash = V[hash_offset+4:hash_offset+20] if lm_exists else ""
-    enc_nt_hash = V[hash_offset+(24 if lm_exists else 8):hash_offset+(24 if lm_exists else 8)+16] if nt_exists else ""
+    if lm_exists:
+        enc_lm_hash = V[hash_offset+4:hash_offset+20]
+        lm_hash_offset = 24
+    else:
+        enc_lm_hash = ""
+        lm_hash_offset = 8
+
+    if nt_exists:
+        enc_nt_hash = V[hash_offset+lm_hash_offset:hash_offset+lm_hash_offset+16]
+    else:
+        enc_nt_hash = ""
 
     return decrypt_hashes(rid, enc_lm_hash, enc_nt_hash, hbootkey)
 
diff --git a/tools/RunFinger.py b/tools/RunFinger.py
index 19f69a7..3f25772 100755
--- a/tools/RunFinger.py
+++ b/tools/RunFinger.py
@@ -38,7 +38,7 @@ Timeout = 2
 Host = options.TARGET
 Grep = options.Grep
 
-class Packet():
+class Packet:
     fields = OrderedDict([
     ])
     def __init__(self, **kw):
diff --git a/tools/SMBFinger/Finger.py b/tools/SMBFinger/Finger.py
index f0921b1..d6d2846 100755
--- a/tools/SMBFinger/Finger.py
+++ b/tools/SMBFinger/Finger.py
@@ -20,7 +20,7 @@ from odict import OrderedDict
 
 __version__ = "0.3"
 Timeout = 0.5
-class Packet():
+class Packet:
     fields = OrderedDict([
     ])
     def __init__(self, **kw):
@@ -220,8 +220,9 @@ def ShowResults(Host):
        Signing, OsVer, LanManClient = SmbFinger(Host)
        enabled  = color("SMB signing is mandatory. Choose another target", 1, 1)
        disabled = color("SMB signing: False", 2, 1)
+       disabled_enabled = (disabled, enabled)
        print color("Retrieving information for %s..."%Host[0], 8, 1)
-       print enabled if Signing else disabled
+       print disabled_enabled[Signing]
        print color("Os version: '%s'"%(OsVer), 8, 3)
        print color("Hostname: '%s'\nPart of the '%s' domain"%(Hostname, DomainJoined), 8, 3)
     except:
diff --git a/utils.py b/utils.py
index 4c6db50..d493665 100644
--- a/utils.py
+++ b/utils.py
@@ -23,6 +23,11 @@ import time
 import settings
 import datetime
 
+try:
+	import ssl
+except ImportError:
+	ssl = False
+
 def RandomChallenge():
     if settings.Config.NumChal == "random":
        from random import getrandbits
@@ -130,21 +135,27 @@ def FindLocalIP(Iface, OURIP):
 def WriteData(outfile, data, user):
 	logging.info("[*] Captured Hash: %s" % data)
 	if not os.path.isfile(outfile):
-		with open(outfile,"w") as outf:
-			outf.write(data + '\n')
+		outf = open(outfile,"w")
+		outf.write(data + '\n')
+		outf.close()
 		return
-	with open(outfile,"r") as filestr:
+	filestr = open(outfile,"r")
+	try:
 		if re.search(user.encode('hex'), filestr.read().encode('hex')):
 			return False
 		elif re.search(re.escape("$"), user):
 			return False
-	with open(outfile,"a") as outf2:
-		outf2.write(data + '\n')
+	finally:
+		filestr.close()
+	outf2 = open(outfile,"a")
+	outf2.write(data + '\n')
+	outf2.close()
 
 # Function used to write debug config and network info.
 def DumpConfig(outfile, data):
-	with open(outfile,"a") as dump:
-		dump.write(data + '\n')
+	dump = open(outfile,"a")
+	dump.write(data + '\n')
+	dump.close()
 
 def SaveToDb(result):
 	# Creating the DB if it doesn't exist
@@ -172,23 +183,25 @@ def SaveToDb(result):
 	cursor.text_factory = sqlite3.Binary  # We add a text factory to support different charsets
 	res = cursor.execute("SELECT COUNT(*) AS count FROM responder WHERE module=? AND type=? AND client=? AND LOWER(user)=LOWER(?)", (result['module'], result['type'], result['client'], result['user']))
 	(count,) = res.fetchone()
-        
+
 	if not count:
-		with open(logfile,"a") as outf:
-			if len(result['cleartext']):  # If we obtained cleartext credentials, write them to file
-				outf.write('%s:%s\n' % (result['user'].encode('utf8', 'replace'), result['cleartext'].encode('utf8', 'replace')))
-			else:  # Otherwise, write JtR-style hash string to file
-				outf.write(result['fullhash'].encode('utf8', 'replace') + '\n')
+		outf = open(logfile,"a")
+		if len(result['cleartext']):  # If we obtained cleartext credentials, write them to file
+			outf.write('%s:%s\n' % (result['user'].encode('utf8', 'replace'), result['cleartext'].encode('utf8', 'replace')))
+		else:  # Otherwise, write JtR-style hash string to file
+			outf.write(result['fullhash'].encode('utf8', 'replace') + '\n')
+		outf.close()
 
 		cursor.execute("INSERT INTO responder VALUES(datetime('now'), ?, ?, ?, ?, ?, ?, ?, ?)", (result['module'], result['type'], result['client'], result['hostname'], result['user'], result['cleartext'], result['hash'], result['fullhash']))
 		cursor.commit()
 
-        if settings.Config.CaptureMultipleHashFromSameHost:
-		with open(logfile,"a") as outf:
-			if len(result['cleartext']):  # If we obtained cleartext credentials, write them to file
-				outf.write('%s:%s\n' % (result['user'].encode('utf8', 'replace'), result['cleartext'].encode('utf8', 'replace')))
-			else:  # Otherwise, write JtR-style hash string to file
-				outf.write(result['fullhash'].encode('utf8', 'replace') + '\n')
+	if settings.Config.CaptureMultipleHashFromSameHost:
+		outf = open(logfile,"a")
+		if len(result['cleartext']):  # If we obtained cleartext credentials, write them to file
+			outf.write('%s:%s\n' % (result['user'].encode('utf8', 'replace'), result['cleartext'].encode('utf8', 'replace')))
+		else:  # Otherwise, write JtR-style hash string to file
+			outf.write(result['fullhash'].encode('utf8', 'replace') + '\n')
+		outf.close()
 
 	if not count or settings.Config.Verbose:  # Print output
 		if len(result['client']):
@@ -280,6 +293,9 @@ def banner():
 def StartupMessage():
 	enabled  = color('[ON]', 2, 1) 
 	disabled = color('[OFF]', 1, 1)
+	unavailable = color('[UNAVAILABLE]', 3, 1)
+
+	disabled_enabled = (disabled, enabled)
 
 	print ""
 	print color("[+] ", 2, 1) + "Poisoners:"
@@ -289,35 +305,38 @@ def StartupMessage():
 	print ""
 
 	print color("[+] ", 2, 1) + "Servers:"
-	print '    %-27s' % "HTTP server" + (enabled if settings.Config.HTTP_On_Off else disabled)
-	print '    %-27s' % "HTTPS server" + (enabled if settings.Config.SSL_On_Off else disabled)
-	print '    %-27s' % "WPAD proxy" + (enabled if settings.Config.WPAD_On_Off else disabled)
-	print '    %-27s' % "Auth proxy" + (enabled if settings.Config.ProxyAuth_On_Off else disabled)
-	print '    %-27s' % "SMB server" + (enabled if settings.Config.SMB_On_Off else disabled)
-	print '    %-27s' % "Kerberos server" + (enabled if settings.Config.Krb_On_Off else disabled)
-	print '    %-27s' % "SQL server" + (enabled if settings.Config.SQL_On_Off else disabled)
-	print '    %-27s' % "FTP server" + (enabled if settings.Config.FTP_On_Off else disabled)
-	print '    %-27s' % "IMAP server" + (enabled if settings.Config.IMAP_On_Off else disabled)
-	print '    %-27s' % "POP3 server" + (enabled if settings.Config.POP_On_Off else disabled)
-	print '    %-27s' % "SMTP server" + (enabled if settings.Config.SMTP_On_Off else disabled)
-	print '    %-27s' % "DNS server" + (enabled if settings.Config.DNS_On_Off else disabled)
-	print '    %-27s' % "LDAP server" + (enabled if settings.Config.LDAP_On_Off else disabled)
+	print '    %-27s' % "HTTP server" + disabled_enabled[settings.Config.HTTP_On_Off]
+	if not ssl and settings.Config.SSL_On_Off:
+		print '    %-27s' % "HTTPS server" + unavailable
+	else:
+		print '    %-27s' % "HTTPS server" + disabled_enabled[settings.Config.SSL_On_Off]
+	print '    %-27s' % "WPAD proxy" + disabled_enabled[settings.Config.WPAD_On_Off]
+	print '    %-27s' % "Auth proxy" + disabled_enabled[settings.Config.ProxyAuth_On_Off]
+	print '    %-27s' % "SMB server" + disabled_enabled[settings.Config.SMB_On_Off]
+	print '    %-27s' % "Kerberos server" + disabled_enabled[settings.Config.Krb_On_Off]
+	print '    %-27s' % "SQL server" + disabled_enabled[settings.Config.SQL_On_Off]
+	print '    %-27s' % "FTP server" + disabled_enabled[settings.Config.FTP_On_Off]
+	print '    %-27s' % "IMAP server" + disabled_enabled[settings.Config.IMAP_On_Off]
+	print '    %-27s' % "POP3 server" + disabled_enabled[settings.Config.POP_On_Off]
+	print '    %-27s' % "SMTP server" + disabled_enabled[settings.Config.SMTP_On_Off]
+	print '    %-27s' % "DNS server" + disabled_enabled[settings.Config.DNS_On_Off]
+	print '    %-27s' % "LDAP server" + disabled_enabled[settings.Config.LDAP_On_Off]
 	print ""
 
 	print color("[+] ", 2, 1) + "HTTP Options:"
-	print '    %-27s' % "Always serving EXE" + (enabled if settings.Config.Serve_Always else disabled)
-	print '    %-27s' % "Serving EXE" + (enabled if settings.Config.Serve_Exe else disabled)
-	print '    %-27s' % "Serving HTML" + (enabled if settings.Config.Serve_Html else disabled)
-	print '    %-27s' % "Upstream Proxy" + (enabled if settings.Config.Upstream_Proxy else disabled)
+	print '    %-27s' % "Always serving EXE" + disabled_enabled[settings.Config.Serve_Always]
+	print '    %-27s' % "Serving EXE" + disabled_enabled[settings.Config.Serve_Exe]
+	print '    %-27s' % "Serving HTML" + disabled_enabled[settings.Config.Serve_Html]
+	print '    %-27s' % "Upstream Proxy" + disabled_enabled[settings.Config.Upstream_Proxy]
 	#print '    %-27s' % "WPAD script" + settings.Config.WPAD_Script
 	print ""
 
 	print color("[+] ", 2, 1) + "Poisoning Options:"
-	print '    %-27s' % "Analyze Mode" + (enabled if settings.Config.AnalyzeMode else disabled)
-	print '    %-27s' % "Force WPAD auth" + (enabled if settings.Config.Force_WPAD_Auth else disabled)
-	print '    %-27s' % "Force Basic Auth" + (enabled if settings.Config.Basic else disabled)
-	print '    %-27s' % "Force LM downgrade" + (enabled if settings.Config.LM_On_Off == True else disabled)
-	print '    %-27s' % "Fingerprint hosts" + (enabled if settings.Config.Finger_On_Off == True else disabled)
+	print '    %-27s' % "Analyze Mode" + disabled_enabled[settings.Config.AnalyzeMode]
+	print '    %-27s' % "Force WPAD auth" + disabled_enabled[settings.Config.Force_WPAD_Auth]
+	print '    %-27s' % "Force Basic Auth" + disabled_enabled[settings.Config.Basic]
+	print '    %-27s' % "Force LM downgrade" + disabled_enabled[settings.Config.LM_On_Off == True]
+	print '    %-27s' % "Fingerprint hosts" + disabled_enabled[settings.Config.Finger_On_Off == True]
 	print ""
 
 	print color("[+] ", 2, 1) + "Generic Options:"