Re: Ncrack 0.3ALPHA release

["Steve 'Ashcrow' Milner" <smilner () redhat com>]

On 10/09/10 10:33 +0300, ithilgore wrote:
> Hello nmap-dev people.
>
> The post-SoC Ncrack 0.3ALPHA release is finally ready! This summer brings
> you new cracking modules for two of the most ubiquitous and famous
> protocols out there:
>
> * the SMB module can crack all Microsoft CIFS/SMB services as well as
>  Unix-based Samba servers.
>
> * the RDP module can crack all Windows RDP servers from XP and above.
>
> A source code tarball, Windows setup executable, and Mac OS X dmg
> installer are all available from the website:
>
> http://nmap.org/ncrack
>
> You can also find an online version of the man page at:
>
> http://nmap.org/ncrack/man.html
>
> In addition, you can always download the latest svn source code like this:
> svn co --username guest --password "" svn://svn.insecure.org/ncrack
>
>
> Note that we have already received some bug reports on the highly-complex
> RDP module. These issues will soon be resolved, but with this release we
> let more people try the latest modules and report on new problems.
>
> Please send all feedback to the nmap-dev mailing list
> (nmap-dev () insecure org).
>
> Finally here is the full list of changes since 0.02ALPHA:
>
> o Ncrack can now crack the Remote Desktop Protocol on all Windows versions
>  from XP and above, with the introduction of the RDP module. Users are
>  well advised to read http://seclists.org/nmap-dev/2010/q3/450 for
>  cracking Windows XP machines since they can't handle many concurrent RDP
>  connections.
>
> o Implemented the SMB module which can crack Microsoft's SMB/CIFS services
>  as well as UNIX Samba servers.
>
> o Introduced the '-f' option, which forces Ncrack to quit cracking a
>  service after it finds one credential for it. Specifying the option twice
>  like '-f -f' will cause Ncrack to completely quit after any credential is
>  found on any service.
>
> o Added support for blank-password testing. Ncrack will now test a blank
>  entry whenever it sees an empty line in any of the wordlists. The same
>  behaviour applies for passing the options --user '' or --pass ''.
>
> o Improved the Ncrack scorpion logo with an updated SVG version (see
>  the top of http://nmap.org/ncrack/)
>
>
> Regards,
> ithilgore

Fedora and EPEL5 packages have been built and are ready for folks to
test.

 * F13 - https://admin.fedoraproject.org/updates/ncrack-0.3-0.1.ALPHA.fc13
 * F12 - https://admin.fedoraproject.org/updates/ncrack-0.3-0.1.ALPHA.fc12
 * EPEL5 - https://admin.fedoraproject.org/updates/ncrack-0.3-0.1.ALPHA.el5

--
kthxbye!
Steve 'Ashcrow' Milner
Agent of Infosec
RHCE: https://www.redhat.com/wapps/training/certification/verify.html?certNumber=805009277242449
ITIL Foundation: c.721843
IRC: ashcrow
GnuPG ID: 28DFD4BE

"In the heat of conversation I may have said certain things I believe 
to be untrue. The alleged lie that you might have heard me saying 
allegedly moments ago ... that's a parasite that lives in my neck." 
    -- Tad Ghostal

Attachment: _bin
Description:

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/