You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
The extract_password function in the keepass_trigger module does not parse the xml file (exported keepass database) correctly, which leads to an error.
I encountered this bug when I was working on the HTB Academy Module "Using CrackMapExec" in the task "Popular Modules" -
Discovering KeePass
To Reproduce
You can test it by adding some groups, subgroups and entries in keepass and executing the function on the exported keepass database
Database -> Export -> XML-File
Expected behavior
I think the problem here lies in the extract_password function, which looks for entries under [“KeePassFile”][“Root”][“Group”][“Entry”] and [“KeePassFile”][“Root”][“Group”][“Group”].
A keepass database can have any number of subgroups “Groups” with entries, which is apparently not considered here
Old passwords can also exist in a history or in the notes of entries.
NetExec info
OS: Kali
Version of nxc: nxc from main branch
Installed from: github
Additional context
I'm not very good at programming at the moment, which is why I haven't opened a pull request yet.
I have put the code in a branch. If you want and it suits you, I can open another pull request for this main...sepauli:NetExec:sepauli/fix-keepass_trigger
The text was updated successfully, but these errors were encountered:
Describe the bug
The
extract_password
function in thekeepass_trigger
module does not parse the xml file (exported keepass database) correctly, which leads to an error.I encountered this bug when I was working on the HTB Academy Module "Using CrackMapExec" in the task "Popular Modules" -
Discovering KeePass
To Reproduce
You can test it by adding some groups, subgroups and entries in keepass and executing the function on the exported keepass database
Database -> Export -> XML-File
Expected behavior
I think the problem here lies in the
extract_password
function, which looks for entries under[“KeePassFile”][“Root”][“Group”][“Entry”]
and[“KeePassFile”][“Root”][“Group”][“Group”]
.A keepass database can have any number of subgroups “Groups” with entries, which is apparently not considered here
Old passwords can also exist in a history or in the notes of entries.
NetExec info
Additional context
I'm not very good at programming at the moment, which is why I haven't opened a pull request yet.
I have put the code in a branch. If you want and it suits you, I can open another pull request for this
main...sepauli:NetExec:sepauli/fix-keepass_trigger
The text was updated successfully, but these errors were encountered: