Nmap Development mailing list archives
[NSE] New script krb5-enum-users
From: Patrik Karlsson <patrik () cqure net>
Date: Wed, 19 Oct 2011 22:56:48 -0400
Hi all, I've added a new script called krb5-enum-users that does user enumeration over Kerberos: The script discovers valid usernames by querying the Kerberos service for a TGT. When an invalid username is requested the server will responde using the Kerberos error code KRB5KDC_ERR_C_PRINCIPAL_UNKNOWN, allowing us to determine that the user name was invalid. Valid user names will illicit either the TGT in a AS-REP response or the error KRB5KDC_ERR_PREAUTH_REQUIRED, signaling that the user is required to perform pre authentication. Cheers, Patrik _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] New script krb5-enum-users Patrik Karlsson (Oct 19)
- Re: [NSE] New script krb5-enum-users Duarte Silva (Oct 22)
- Re: [NSE] New script krb5-enum-users Patrik Karlsson (Oct 22)
- Re: [NSE] New script krb5-enum-users David Fifield (Oct 22)
- Re: [NSE] New script krb5-enum-users Duarte Silva (Oct 22)
- Re: [NSE] New script krb5-enum-users Patrik Karlsson (Oct 22)
- Re: [NSE] New script krb5-enum-users Duarte Silva (Oct 23)
- Re: [NSE] New script krb5-enum-users Patrik Karlsson (Oct 22)
- Re: [NSE] New script krb5-enum-users Duarte Silva (Oct 22)