uniform dictionary keys to store passwords / hash in the db

This commit is contained in:
Alessandro ZANNI 2016-10-18 17:48:21 +02:00
parent 3e28553f9b
commit 2996961943
1 changed files with 9 additions and 7 deletions

View File

@ -108,15 +108,17 @@ Invoke-Mimikatz -Command "privilege::debug exit" -ComputerName "computer1"
domain = hostDomain domain = hostDomain
sid = domainSid sid = domainSid
category = ''
if self.validate_ntlm(password): if self.validate_ntlm(password):
credType = "hash" credType = "Hash"
category = 'NTLM hash'
else: else:
credType = "password" credType = "Password"
category = 'System password'
# ignore machine account plaintexts # ignore machine account plaintexts
if not (credType == "password" and username.endswith("$")): if not (credType == "Password" and username.endswith("$")):
creds.append({'domain': domain, 'user': username, credType:password, 'hostName': hostName, 'sid':sid, 'Tool': 'mimikatz'}) creds.append({'Domain': domain, 'Login': username, credType:password, 'CredType': credType.lower(), 'Host': hostName, 'sid':sid, 'Category': category, 'uid': self.client.short_name()})
if len(creds) == 0: if len(creds) == 0:
# check if we have lsadump output to check for krbtgt # check if we have lsadump output to check for krbtgt
@ -142,7 +144,7 @@ Invoke-Mimikatz -Command "privilege::debug exit" -ComputerName "computer1"
break break
if krbtgtHash != "": if krbtgtHash != "":
creds.append({'domain': domain, 'user': user, 'krbtgt hash': krbtgtHash, 'hostName': hostName, 'sid':sid, 'Tool': 'mimikatz'}) creds.append({'Domain': domain, 'Login': user, 'Hash': krbtgtHash, 'Host': hostName, 'CredType': 'hash', 'sid':sid, 'Category': 'krbtgt hash', 'uid': self.client.short_name()})
except Exception as e: except Exception as e:
pass pass
@ -167,7 +169,7 @@ Invoke-Mimikatz -Command "privilege::debug exit" -ComputerName "computer1"
pass pass
if domain != "" and userHash != "": if domain != "" and userHash != "":
creds.append({'domain': domain, 'user': user, 'hash': userHash, 'dcName': dcName, 'sid':sid, 'Tool': 'mimikatz'}) creds.append({'Domain': domain, 'Login': user, 'Hash': userHash, 'Host': dcName, 'CredType': 'hash', 'SID':sid, 'Category': 'NTLM hash', 'uid': self.client.short_name()})
return creds return creds