mirror of
https://github.com/lgandx/Responder.git
synced 2025-07-05 12:35:52 -07:00
45 KiB
45 KiB
n.n.n / 2025-05-22
- added check for aioquic & updated version to reflect recent changes
- Merge pull request #310 from ctjf/master
- Merge pull request #308 from BlWasp/error_code_returned
- Merge pull request #311 from stfnw/master
- DHCP poisoner: refactor FindIP
- added quic support based on xpn's work
- Indentation typos
- Add status code control
- Merge pull request #305 from L1-0/patch-1
- Update RPC.py
- Merge pull request #301 from q-roland/kerberos_relaying_llmnr
- Adding answer name spoofing capabilities when poisoning LLMNR for Kerberos relaying purpose
n.n.n / 2025-05-22
- added check for aioquic & updated version to reflect recent changes
- Merge pull request #310 from ctjf/master
- Merge pull request #308 from BlWasp/error_code_returned
- Merge pull request #311 from stfnw/master
- DHCP poisoner: refactor FindIP
- added quic support based on xpn's work
- Indentation typos
- Add status code control
- Merge pull request #305 from L1-0/patch-1
- Update RPC.py
- Merge pull request #301 from q-roland/kerberos_relaying_llmnr
- Adding answer name spoofing capabilities when poisoning LLMNR for Kerberos relaying purpose
Changelog
All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
Unreleased
Added
- Add options for poisoners (807bd57 by f3rn0s).
- Add randomness in TTL value to avoid some EDR detections (f50f0be by nodauf).
- added support for either resolv.conf or resolvectl (1a2f2fd by lgandx).
Fixed
- Fixed issue with smb signing detection (413bc8b by lgandx).
- fixed minor bug (e51f24e by lgandx).
- Fixed bug when IPv6 is disabled via GRUB. (fa297c8 by lgandx).
Removed
v3.1.4.0 - 2024-01-04
Added
- added LDAPS listener (6d61f04 by exploide).
- added:error handling on exceptions. (f670fba by lgandx).
- Added full path to gen-self-sign-cert.sh (69f431e by kevintellier).
- add flag (-s) to enable smbv1scan (cf0c4ee by requin).
- add hostname on smbv2 scan result (709df2c by requin).
- Added dump by legacy protocols (b8818ed by lgandx).
- added requirements.txt (00d9d27 by lgandx).
- Added: append .local TLD to DontRespondToNames + MDNS bug fix (0bc226b by lgandx).
- Added Quiet mode (2cd66a9 by jb).
Fixed
- Fixed issue in http srv, more hashes & signature reduction. (66ee7f8 by lgandx).
- fixed a TypeError in MSSQLBrowser (20cdd9c by exploide).
- fixed 'SyntaxWarning: invalid escape sequence' for Python 3.12+ (e9bd8a4 by exploide).
- fixed minor bug on py 3.10 (31393c7 by lgandx).
- fixed HTTP basic auth parsing when password contains colons (dc33d1f by exploide).
- Fixing soft failure which results in missed SMTP credential interception (34603ae by Syntricks).
- Fixing collections import issue for /tools/MultiRelay/odict.py (aa8d818 by Shutdown).
- Fixing import issue like in /tools/odict.py (2c4cadb by Shutdown).
- fix typo of ServerTlype (0c80b76 by deltronzero).
- Fixed potential disruption on Proxy-Auth (c51251d by lgandx).
- fixed the RespondTo/DontRespondTo issue (2765ef4 by lgandx).
Removed
- removed patreon donation link. (700b7d6 by lgandx).
- removed useless string (08e44d7 by lgandx).
- removed debug (4ea3d7b by lgandx).
- Removed Patreon link (8e12d2b by lgandx).
- Removed machine accounts dump, since they are not crackable (c9b5dd0 by lgandx).
v3.1.3.0 - 2022-07-26
Fixed
- Fixed: Warnings on python 3.10 (9b1c99c by lgandx).
- Fix missing paren error (0c7a3ff by cweedon).
- Fix double logging of first hash or cleartext (e7eb3bc by Gustaf Blomqvist).
Removed
v3.1.2.0 - 2022-02-12
Added
- added support for OPT EDNS (5cf6922 by lgandx).
Fixed
- Fixed options formating in README (f85ad77 by Andrii Nechytailov).
v3.1.1.0 - 2021-12-17
Added
- Added IPv6 support (5d4510c by lgandx).
- added: dhcp inform (3e8c9fd by lgandx).
- Added DHCP DNS vs DHCP WPAD (76f6c88 by lgandx).
- Added DHCP DNS vs WPAD srv injection (9dc7798 by lgandx).
- Added date and time for each Responder session config log. (bb17595 by lgandx).
Removed
- removed fingerprint.py (0b56d6a by lgandx).
v3.0.9.0 - 2021-12-10
Added
- added the ability to provide external IP on WPAD poison via DHCP (ba885b9 by lgandx).
- Added a check for MSSQL (5680487 by lgandx).
Fixed
- Fixed the ON/OFF for poisoners when in Analyze mode. (3cd5140 by lgandx).
Removed
- Remove analyze mode on DNS since you need to ARP to get queries (17e62bd by lgandx).
v3.0.8.0 - 2021-12-03
Added
- Added DB for RunFinger results & Report (f90b76f by lgandx).
- added timeout option for fine tuning (a462d1d by lgandx).
- added DHCP db & updated the report script to reflect that (1dfa997 by lgandx).
- Added support for single IP or range file. (02fb3f8 by lgandx).
Fixed
- fix: DHCP now working on VPN interface (88a2c6a by lgandx).
- Fixed a bug and increased speed. (1b2a22f by lgandx).
Removed
- Removed old DHCP script since its now a Responder module. (d425783 by lgandx).
- removed default certs (de778f6 by lgandx).
- Removed the static certs and added automatic cert generation (21afd35 by lgandx).
- removed debug str (826b5af by lgandx).
v3.0.7.0 - 2021-10-26
Added
- Added DHCP server (c449b6b by lgandx).
- Add --lm switch for ESS downgrade (dcb80d9 by Pixis).
- Add ESS disabling information (51f8ab4 by Pixis).
- Add ESS downgrade parameter (baf80aa by pixis).
Fixed
- fixed minor isse (350058c by lgandx).
v3.0.6.0 - 2021-04-19
Added
- Added WinRM rogue server (8531544 by lgandx).
v3.0.5.0 - 2021-04-17
Added
- Added dce-rpc module + enhancements + bug fix. (e91e37c by lgandx).
Removed
- removed addiontional RR on SRV answers (027e6b9 by lgandx).
v3.0.4.0 - 2021-04-12
Added
- Added DNS SRV handling for ldap/kerberos + LDAP netlogon ping (1271b8e by lgandx).
- added a check for exec file (cc3a5b5 by lgandx).
- Added donation banner. (8104139 by lgandx).
- added donation address and minor typo (06f9f91 by lgandx).
- added smb filetime support (b0f044f by lgandx).
Removed
- removed FindSMB2UPTime.py since RunFinger already get this info (6c51080 by lgandx).
- Removed MultiRelay binaries (35b12b4 by lgandx).
- Removed BindShell executable file (5d762c4 by lgandx).
- Removed donation banner (ccee87a by lgandx).
- removed verification (dd1a674 by lgandx).
v3.0.3.0 - 2021-02-08
Added
- Added support for SMB2 signing (24e7b7c by lgandx).
- Added SMB2 support for RunFinger and various other checks. (e24792d by lgandx).
Fixed
- Fix wrong syntax (fb10d20 by Khiem Doan).
- fix custom challenge in python3 (7b47c8f by ThePirateWhoSmellsOfSunflowers).
- Fix typos in README (12b796a by Laban Sköllermark).
v3.0.2.0 - 2020-09-28
Fixed
- Fixed LLMNR/NBT-NS/Browser issue when binding to a specific interface (af7d27a by lgandx).
v3.0.1.0 - 2020-08-19
Added
- Added DNSUpdate.py, a small script to add DNS record to DC for gatering from different VLANs (05617de by Sagar-Jangam).
Fixed
- Fix encoding issue in Python 3 (7420f62 by Sophie Brun).
v3.0.0.0 - 2020-01-09
Added
- Added py3 and py2 compatibility + many bugfix (b510b2b by lgandx).
v2.3.4.0 - 2019-08-17
Added
- Added RDP rogue server (c52843a by lgandx).
- Added proper changes to RunFinger (and is not checking for MS17-010 straight away) (105502e by Paul A).
Fixed
- Fix socket timeout on HTTP POST requests (e7a787c by Crypt0-M3lon).
- fixed minor bugfix on recent merge (38e721d by lgandx).
- Fix multi HTTP responses (defabfa by Clément Notin).
- Fix version number in settings.py (621c5a3 by Clément Notin).
- Fixed some small typos in MS17-010 output (daaf6f7 by Chris Maddalena).
Removed
- removed debug string (47e63ae by lgandx).
v2.3.3.9 - 2017-11-20
Added
- Added: check for null sessions and MS17-010 (b37f562 by lgandx).
- Add ignore case on check body for html inject (47c3115 by Lionel PRAT).
- added support for plain auth (207b0d4 by lgandx).
v2.3.3.8 - 2017-09-05
Changed
- Changed the complete LDAP parsing hash algo (ntlmv2 bug). (679cf65 by lgandx).
v2.3.3.7 - 2017-09-05
Added
- Add in check for uptime since March 14th 2017, which could indicate the system is vulnerable to MS17-010 (5859c31 by Matt Kelly).
- Add Microsoft SQL Server Browser responder (bff935e by Matthew Daley).
- added: mimi32 cmd, MultiRelay random RPC & Namedpipe & latest mimikatz (38219e2 by lgandx).
Fixed
- Fixed various bugs and improved the LDAP module. (be26b50 by lgandx).
- Fixed space typo in FindSMB2UPTime.py (11c0096 by myst404).
- Fixed instances of "CRTL-C" to "CTRL-C" (44a4e49 by Randy Ramos).
v2.3.3.6 - 2017-03-29
Fixed
- Fixed bug in FindSMB2UPTime (6f3cc45 by lgandx).
Removed
- Removed Paypal donation link. (b05bdca by lgandx).
v2.3.3.5 - 2017-02-18
v2.3.3.4 - 2017-02-18
Added
- Added: Hashdump, Stats report (21d48be by lgandx).
- added
ipcommands in addition to ifconfig and netstat (db61f24 by thejosko).
Fixed
- fixed crash: typo. (0642999 by lgandx).
- Fix for RandomChallenge function. Function getrandbits can return less than 64 bits, thus decode('hex') will crash with TypeError: Odd-length string (de6e869 by Gifts).
- Fix Proxy_Auth. Random challenge broke it. (5a2ee18 by Timon Hackenjos).
v2.3.3.3 - 2017-01-03
Added
- Added: Random challenge for each requests (default) (0d441d1 by lgandx).
v2.3.3.2 - 2017-01-03
Added
- Added: Random challenge for each requests (default) (1d38cd3 by lgandx).
- Added paypal button (17dc81c by lgandx).
- Added: Scripting support. -c and -d command line switch (ab2d890 by lgandx).
- Added: BTC donation address (730808c by lgandx).
Removed
- Removed ThreadingMixIn. MultiRelay should process one request at the timeand queue the next ones. (4a7499d by lgandx).
v2.3.3.1 - 2016-10-18
Added
- Added: Logs dumped files for multiple targets (d560105 by lgandx).
Fixed
- Fixed wrong challenge issue (027f841 by lgandx).
v2.3.3.0 - 2016-10-12
Added
- Added: Compability for Multi-Relay (5b06173 by lgandx).
Fixed
- Fix values for win98 and win10 (requested here: https://github.com/lgandx/Responder/pull/7/commits/d9d34f04cddbd666865089d809eb5b3d46dd9cd4) (60c91c6 by lgandx).
- Fixed the bind to interface issue (https://github.com/lgandx/Responder/issues/6) (ce211f7 by lgandx).
- fixed bug in hash parsing. (0cf1087 by lgandx).
Changed
- Changed to executable (3e46ecd by lgandx).
v2.3.2.8 - 2016-10-06
Added
- Added: Now delete services on the fly. (c6e401c by lgandx).
v2.3.2.7 - 2016-10-05
Added
- Added: Possibility to target all users. use 'ALL' with -u (d81ef9c by lgandx).
Fixed
- Fixed minor bug (7054c60 by lgandx).
v2.3.2.6 - 2016-10-05
v2.3.2.5 - 2016-10-03
Added
- Added logs folder. (cd09e19 by lgandx).
- Added: Cross-protocol NTLMv1-2 relay (beta). (ab67070 by lgandx).
Removed
- Removed logs folder. (5d83778 by lgandx).
v2.3.2.4 - 2016-09-12
v2.3.2.3 - 2016-09-12
Added
- Added new option in Responder.conf. Capture multiple hashes from the same client. Default is On. (35d933d by lgandx).
v2.3.2.2 - 2016-09-12
Added
- Added support for webdav, auto credz. (ad9ce6e by lgandx).
- Added option -e, specify an external IP address to redirect poisoned traffic to. (04c270f by lgandx).
Removed
- removed debug info (3e2e375 by lgandx).
v2.3.2.1 - 2016-09-11
v2.3.2 - 2016-09-11
Added
- Added proxy auth server + various fixes and improvements (82fe64d by lgandx).
- Added current date for all HTTP headers, avoiding easy detection (ecd62c3 by lgandx).
Removed
- Removed useless HTTP headers (881dae5 by lgandx).
v2.3.1 - 2016-09-09
Added
- Added SMBv2 support enabled by default. (85d7974 by lgandx).
- added new option, for Config-Responder.log file. (a9c2b29 by lgaffie).
- Add compatability with newer net-tools ifconfig. (e19e349 by Hank Leininger).
- Add HTTP Referer logging (16e6464 by Hubert Seiwert).
- Added recent Windows versions. (6eca29d by Jim Shaver).
- Added: Support for OSx (59e48e8 by lgandx).
Fixed
- Fixed colors in log files (d9258e2 by lgaffie).
- Fixed the regexes for Authorization: headers. (a81a9a3 by Hank Leininger).
- Fix Windows 10 support. (a84b351 by ValdikSS).
- Fixed color bug in Analyze mode (04c841d by lgandx).
- fixed minor bug (6f8652c by lgandx).
- Fixed Icmp-Redirect.. (df63c1f by lgandx).
- Fixed some tools and +x on some executables (8171a96 by lgandx).
- Fix generation of HTTP response in HTTP proxy (b2830e0 by Antonio Herraiz).
- Fix misspelling of poisoners (6edc01d by IMcPwn).
Changed
- change IsOSX to utils.IsOsX. Fixes #89 (08c3a90 by Jared Haight).
- Changed email address (f5a8bf0 by lgandx).
- Changed connection to SQlite db to support different encoded charsets (0fec40c by Yannick Méheut).
- Changed comment to be more clear about what is being done when logging (08535e5 by Yannick Méheut).
Removed
- Removed the config dump in Responder-Session.log. New file gets created in logs, with host network config such as dns, routes, ifconfig and config dump (a765a8f by lgaffie).
v2.3.0 - 2015-09-11
Added
- Added support for Samba4 clients (ee033e0 by lgandx).
- Added support for upstream proxies for the rogue WPAD server (f4bd612 by jrmdev).
Fixed
- Fixed Harsh Parser variable typo (5ab431a by lgandx).
- fixed var name (62ed8f0 by byt3bl33d3r).
- Fixes MDNS Name parsing error (3261288 by byt3bl33d3r).
- Fixed FTP module. (75664a4 by jrmdev).
- Fixing a bug in HTTP proxy, was calling recv() too many times (ddaa9f8 by lanjelot).
Changed
- changed operand (cb9c2c8 by byt3bl33d3r).
v2.1.4 - 2014-12-06
Added
- Added: FindSMB2UPTime script. Find when is the last time a >= 2008 server was updated. (7a95ef1 by lgandx).
v2.1.3 - 2014-11-27
Added
- Added: DontRespondToName and DontRespondTo; NAC/IPS detection evasion (36ef78f by lgandx).
- Added --version and kost's fix for /etc/resolv.conf empty lines parsing. (c05bdfc by lgandx).
v2.1.2 - 2014-08-26
Added
- Added: Log command line in Responder-Session.log. (f69e93c by lgandx).
Fixed
- Fixed serve-always and serve-exe with the new WPAD server. (cf7b477 by lgandx).
v2.1.0 - 2014-08-16
Fixed
- fixed: identation. (5c9fec9 by lgandx).
v2.0.9 - 2014-05-28
Fixed
- Fixed high cpu usage in some specific cases (4558861 by lgandx).
Removed
- Removed: old style options. Just use -r instead of -r On (a21aaf7 by lgandx).
v2.0.8 - 2014-04-22
Added
- Added: in-scope target, windows >= Vista support (-R) and unicast answers only. (2e4ed61 by lgandx).
v2.0.7 - 2014-04-16
Added
- Added: in-scope llmnr/nbt-ns name option (1c79bed by lgandx).
- Added: Kerberos server and -d cli option. (dcede0f by lgandx).
v2.0.6 - 2014-04-01
Fixed
- Fixed [Enter] key issue (c97a13c by lgandx).
v2.0.5 - 2014-03-22
Added
- Added: In-scope IP handling for MDNS (b14ff0b by lgandx).
v2.0.4 - 2014-03-22
Added
- Added: MDNS Poisoner (90479ad by lgandx).
v2.0.3 - 2014-03-21
Fixed
- fix: Bind to interface bug. (a1a4f46 by lgandx).
v2.0.2 - 2014-02-06
Added
- Added: Analyze mode; Lanman Domain/SQL/Workstation passive discovery. (2c9273e by lgandx).
v2.0.1 - 2014-01-30
Added
- Added: Analyze ICMP Redirect plausibility on current subnet. (06df704 by lgandx).
- Added: Analyze stealth mode. See all traffic, but dont answer (-A cli). Minor bugs also fixed. (9bb2f81 by lgandx).
- Added: -F command line switch to force authentication on PAC file retrieval. Default is Off (3f48c11 by lgandx).
- Added: IMAP module and enhanced wpad. (af60de9 by lgandx).
- Added: SMTP PLAIN/LOGIN module (6828f1b by lgandx).
- Added: POP3 module. (f48ea3f by lgandx).
- Added: MSSQL Plaintext module (4c3a494 by lgandx).
- Added: SMBRelay module (4dd9d8c by lgandx).
- added: Command switch -v for verbose mode. Responder is now less verbose. (46b98a6 by lgandx).
- Added support for .pac file requests. (6b7e5b6 by lgandx).
- Added: print HTTP URL, POST data requested prior auth (f616718 by lgandx).
- Added command switch -I. This option override Responder.conf Bind_to setting (68de4ac by lgandx).
- Added: in-scope only target. See Responder.conf. (0465bd6 by lgandx).
- Added: Fake access denied html page (9b608aa by lgandx).
- Added: Configuration file, removed several cli options and several fixes. (95eed09 by lgandx).
- Added: Configuration file for Responder (d573102 by lgandx).
- Added: Bind shell listening on port 140, use it with -e or -exe option if needed (1079de0 by Lgandx).
- Added: Ability to serve whatever kind of file via HTTP and WPAD There's now 3 new options. (a8c2952 by Lgandx).
- added -I option to bind all sockets to a specific ip (eg: listen only on eth0) (d5088b2 by Lgandx).
- added: HTTP auth forward to SMB. This is useful for SMB Relay or LM downgrade from HTTP NTLM ESS to SMB LM. (0fcaa68 by Lgandx).
- added automatic poisoning mode when a primary and a secondary DNS is specified. (ccbbbe3 by Lgandx).
- Added HTTPS module. (9250281 by Lgandx).
- Added support for LM hash downgrade. Default still NTLMSSP. (09f8f72 by Lgandx).
- Added: Client ip is now part of the cookie filename (2718f9c by Lgandx).
- Added a folder for storing HTTP cookies files (d1a14e2 by Lgandx).
- Added WPAD transparent proxy (9f1c3bc by Lgandx).
Fixed
- Fixed WPAD cookie capture (afe2b63 by lgandx).
- Fix: Command line switch typo (4fb4233 by lgandx).
- Fixed minor bugs (f8a16e2 by Lgandx).
- Fixed duplicate entry in hash file for machine accounts (4112b1c by Lgandx).
- fix for anonymous NTLM connection for LDAP server (1c47e7f by Lgandx).
Changed
- Changed WPAD to Off by default. Use command line -w On to enable. (bf2fdf0 by lgandx).
- changed .txt to no extension. (5f7bfa8 by lgandx).
- Changed Windows =< 5.2 documentation to XP/2003 and earlier for clarification (56dd7b8 by Garret Picchioni).
Removed
- Removed bind to interface support for OsX. Responder for OsX can only listen on all interfaces. (dbfdc27 by lgandx).