tag:blogger.com,1999:blog-3247452330105635425.comments2024-02-28T19:11:10.656-08:00Laurent Gaffié blogLaurent Gaffié bloghttp://www.blogger.com/profile/08377956323092605195noreply@blogger.comBlogger264125tag:blogger.com,1999:blog-3247452330105635425.post-60347497494227925232017-09-04T23:35:03.974-07:002017-09-04T23:35:03.974-07:00Nice Blog Post !Nice Blog Post !Used PC Distributorhttp://www.electrocw.com/noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-33764154812981764412017-08-01T09:00:01.084-07:002017-08-01T09:00:01.084-07:00I’m not that much of a internet reader to be hones...I’m not that much of a internet reader to be honest but your <br />sites really nice, keep it up! I'll go ahead and bookmark <br />your site to come back later on. CheersAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-88277937753528028052017-07-10T18:05:01.217-07:002017-07-10T18:05:01.217-07:00It's very easy to find out any matter on web a...It's very easy to find out any matter on web as compared to books, as I <br />found this post at this web page.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-85646786048329390292017-04-23T00:49:59.462-07:002017-04-23T00:49:59.462-07:00Is it possible to use Responder to only poison req...Is it possible to use Responder to only poison requests from/to certain ip address?<br /><br />I would like to test it in our DMZ, but I fear that the network will go down.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-34034446653496107352017-04-19T07:41:28.565-07:002017-04-19T07:41:28.565-07:00localt0ast likes thislocalt0ast likes thisAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-43501998786314572612017-04-16T00:07:09.228-07:002017-04-16T00:07:09.228-07:00are dhcp inform packets send by wich windows proce...are dhcp inform packets send by wich windows process?<br />dhcp client or browser service ?Massimohttps://www.blogger.com/profile/12950410860081396149noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-32154473643019486572017-04-16T00:03:35.509-07:002017-04-16T00:03:35.509-07:00do you need to know the real proxy ip, right ?
com...do you need to know the real proxy ip, right ?<br />commandline parameter or auto-discovery ?<br /><br />to disable, on each client add to file HOSTS<br />127.0.0.1 wpad<br />Massimohttps://www.blogger.com/profile/12950410860081396149noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-27042098212196733622017-04-08T11:43:34.565-07:002017-04-08T11:43:34.565-07:00Hi Laurent, very interesting PoC!
Sorry in advanc...Hi Laurent, very interesting PoC! <br />Sorry in advance if this question may seem trivial: <br />how come the PoC doesn't work (tried with Win8.1 and Win7) if the relative sec Update doesn't seem to be installed on those machines? <br />searched for it like this: <br />C:\Windows\system32>dism /online /get-packages | findstr KB3199173<br /><br />Thank you in advance for your time!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-22400302489689490032017-04-04T00:05:06.152-07:002017-04-04T00:05:06.152-07:00Hi Laurent,
Great job for the tool.
I still have ...Hi Laurent,<br /><br />Great job for the tool.<br />I still have a question about the scenario. Like Christophe said, why do you target the switch? <br />The switch IP is only used for administration.<br /><br />Regards,<br /><br />jchibbraAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-46528025027391211282017-03-18T09:42:17.941-07:002017-03-18T09:42:17.941-07:00nice postnice postJimyhttps://www.blogger.com/profile/07349555226330578834noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-12937768921023625682017-03-15T09:38:31.379-07:002017-03-15T09:38:31.379-07:00Nice information thanksNice information thanksJimmyhttps://www.blogger.com/profile/14803670612123248537noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-10856839798251474052017-01-25T12:22:35.351-08:002017-01-25T12:22:35.351-08:00Thanks, yes it is possible, just need to set HTTP ...Thanks, yes it is possible, just need to set HTTP and SMB off in Responder.conf ;)Laurent Gaffié bloghttps://www.blogger.com/profile/08377956323092605195noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-70063628493931659392017-01-25T07:28:27.411-08:002017-01-25T07:28:27.411-08:00Good Job Laurent, is it avaiable to relay the HTTP...Good Job Laurent, is it avaiable to relay the HTTP 407 Proxy unauthorized NTMLv2 (-P option) using multirelay?ramadohttps://www.blogger.com/profile/10754330423514950780noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-12779603693126420962016-11-22T05:41:50.747-08:002016-11-22T05:41:50.747-08:00Hi Laurent,
Great work, do you have any hints in ...Hi Laurent, <br />Great work, do you have any hints in order to trig the vulnerability on a Windows XP SP3 host ? I wasn't able to break on any function on you stack trace using your poc.<br /><br />Cheers.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-71899453176071562522016-11-22T02:27:36.196-08:002016-11-22T02:27:36.196-08:00Bonjour Laurent,
Super boulot. Par contre quelque ...Bonjour Laurent,<br />Super boulot. Par contre quelque chose m'échappe quant à l'attaque avec Ettercap.<br />Pourquoi lors que tu utilises ETTERCAP tu ne hijack pas la communication entre le serveur de fichier et le serveur backup ?<br />Un peu comme on le ferait sur une communication entre une station et une gw pour intercepter le trafic sortant ? <br />Quelle est l'intérêt de hijacker l'IP du switch ?<br />A+,<br /><br />ChristopheAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-69314826361410538772016-11-12T05:06:56.596-08:002016-11-12T05:06:56.596-08:00good Job Laurent
By MrMugiwaragood Job Laurent<br />By MrMugiwaraAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-57240981750636816102016-11-09T16:03:13.976-08:002016-11-09T16:03:13.976-08:00No, you cannot control any memory register remotel...No, you cannot control any memory register remotely.Laurent Gaffié bloghttps://www.blogger.com/profile/08377956323092605195noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-46681624281728379882016-11-09T14:21:29.302-08:002016-11-09T14:21:29.302-08:00what control do you have of the register?
Can you ...what control do you have of the register?<br />Can you talk more about this?Anonymoushttps://www.blogger.com/profile/06727050208574476583noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-19033536756644778422016-11-09T09:22:03.014-08:002016-11-09T09:22:03.014-08:00Worked on my Windows 7 32 bit OS with firewall dis...Worked on my Windows 7 32 bit OS with firewall disabled.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-68799947374073875092016-11-09T07:36:15.856-08:002016-11-09T07:36:15.856-08:00Yes it is, couldn't reproduce with any other p...Yes it is, couldn't reproduce with any other protocols (SQL, LDAP, etc).Laurent Gaffié bloghttps://www.blogger.com/profile/08377956323092605195noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-3029530085233224132016-11-09T07:24:41.858-08:002016-11-09T07:24:41.858-08:00Is the affected code path in the NTLM parsing spec...Is the affected code path in the NTLM parsing specific to SMB?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-51558442410886011122016-11-09T06:33:20.764-08:002016-11-09T06:33:20.764-08:00Write your own! ;)Write your own! ;)Laurent Gaffié bloghttps://www.blogger.com/profile/08377956323092605195noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-42634690509141877102016-11-09T06:16:16.226-08:002016-11-09T06:16:16.226-08:00Your shitty PoC does not work!Your shitty PoC does not work!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-89753981314235160662016-10-24T12:48:27.762-07:002016-10-24T12:48:27.762-07:00Excellent job Laurent!Excellent job Laurent!AGhttps://www.blogger.com/profile/04618727008162288619noreply@blogger.comtag:blogger.com,1999:blog-3247452330105635425.post-10274757978380695132016-10-18T08:39:33.864-07:002016-10-18T08:39:33.864-07:00Bug fixed. Thanks for letting me know!Bug fixed. Thanks for letting me know!Laurent Gaffié bloghttps://www.blogger.com/profile/08377956323092605195noreply@blogger.com