minor fixes

2025-08-20 21:33:31 -07:00 · 2016-09-09 01:35:11 -03:00 · 2016-09-09 01:35:11 -03:00 · b5caa27445
commit b5caa27445
parent d9258e2dd8
1 changed files with 16 additions and 16 deletions
--- a/README.md
+++ b/README.md
@ -2,7 +2,7 @@

 LLMNR/NBT-NS/mDNS Poisoner

-Author: Laurent Gaffie <laurent.gaffie@gmail.com > http://www.spiderlabs.com
+Author: Laurent Gaffie <laurent.gaffie@gmail.com >  https://g-laurent.blogspot.com



@ -16,7 +16,7 @@ The concept behind this is to target our answers, and be stealthier on the netwo

 - Built-in SMB Auth server.
 	
-Supports NTLMv1, NTLMv2 hashes with Extended Security NTLMSSP by default. Successfully tested from Windows 95 to Server 2012 RC, Samba and Mac OSX Lion. Clear text password is supported for NT4, and LM hashing downgrade when the --lm option is set. This functionality is enabled by default when the tool is launched.
+Supports NTLMv1, NTLMv2 hashes with Extended Security NTLMSSP by default. Successfully tested from Windows 95 to Server 2012 RC, Samba and Mac OSX Lion. Clear text password is supported for NT4, and LM hashing downgrade when the --lm option is set. SMBv2 has also been implemented and is supported by default.

 - Built-in MSSQL Auth server.

@ -103,7 +103,7 @@ Edit this file /etc/NetworkManager/NetworkManager.conf and comment the line: `dn

 - For OSX, please note: Responder must be launched with an IP address for the -i flag (e.g. -i YOUR_IP_ADDR). There is no native support in OSX for custom interface binding. Using -i en1 will not work. Also to run Responder with the best experience, run the following as root:

-    launchcl unload /System/Library/LaunchDaemons/com.apple.Kerberos.kdc.plist
+    launchctl unload /System/Library/LaunchDaemons/com.apple.Kerberos.kdc.plist

    launchctl unload /System/Library/LaunchDaemons/com.apple.mDNSResponder.plist

@ -121,33 +121,33 @@ Running the tool:

 Typical Usage Example:

-    ./Responder.py -I eth0 -wrf
+    ./Responder.py -I eth0 -rFv

 Options:

-	  --version             show program's version number and exit
-	  -h, --help            show this help message and exit
+	  --version             show program's version number and exit.
+	  -h, --help            show this help message and exit.
 	  -A, --analyze         Analyze mode. This option allows you to see NBT-NS,
 	                        BROWSER, LLMNR requests without responding.
 	  -I eth0, --interface=eth0
-	                        Network interface to use
+	                        Network interface to use.
 	  -b, --basic           Return a Basic HTTP authentication. Default: NTLM
 	  -r, --wredir          Enable answers for netbios wredir suffix queries.
 	                        Answering to wredir will likely break stuff on the
-	                        network. Default: False
+	                        network. Default: Off
 	  -d, --NBTNSdomain     Enable answers for netbios domain suffix queries.
 	                        Answering to domain suffixes will likely break stuff
-	                        on the network. Default: False
+	                        on the network. Default: Off
 	  -f, --fingerprint     This option allows you to fingerprint a host that
 	                        issued an NBT-NS or LLMNR query.
 	  -w, --wpad            Start the WPAD rogue proxy server. Default value is
-	                        False
+	                        Off
 	  -u UPSTREAM_PROXY, --upstream-proxy=UPSTREAM_PROXY
 	                        Upstream HTTP proxy used by the rogue WPAD Proxy for
 	                        outgoing requests (format: host:port)
 	  -F, --ForceWpadAuth   Force NTLM/Basic authentication on wpad.dat file
 	                        retrieval. This may cause a login prompt. Default:
-	                        False
+	                        Off
 	  --lm                  Force LM hashing downgrade for Windows XP/2003 and
 	                        earlier. Default: False
 	  -v, --verbose         Increase verbosity.
@ -159,9 +159,9 @@ Options:
 ## Copyright ##

 NBT-NS/LLMNR Responder
-Created by Laurent Gaffie
-Copyright (C) 2013 Trustwave Holdings, Inc.

+Responder, a network take-over set of tools created and maintained by Laurent Gaffie.
+email: laurent.gaffie@gmail.com
 This program is free software: you can redistribute it and/or modify
 it under the terms of the GNU General Public License as published by
 the Free Software Foundation, either version 3 of the License, or
@ -173,4 +173,4 @@ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 GNU General Public License for more details.

 You should have received a copy of the GNU General Public License
-along with this program.  If not, see <http://www.gnu.org/licenses/>
+along with this program.  If not, see <http://www.gnu.org/licenses/>.