[DNS] Add DNS args

[XiaoliChan]

Changelog:

• Fixed NetExec LDAP is using System's DNS #184
• Fixed lots of connection stuff which is use kdcHost
• Allow using force IPv6 with -6
• Allow specify DNS server with --dns-server
• Allow using tcp DNS query with --dns-tcp
• Set DNS query timeout with --dns-timeout
• Auto resolve DC IP and set it as kdcHost, which means you can play with kerberos stuff without set /etc/hosts files

[mpgn]

awesome, you did it ! 🎉

[mpgn]

[mpgn]

Before

After

[bmigette]

Tested working for me

┌──(babadmin㉿kakali) - 23:44:04 - [/tmp/NetExec]
└─$ poetry run nxc --dns-server 172.16.188.10 ldap 172.16.188.10 -u wario -p XXXXX --users
SMB         172.16.188.10   445    DC01             [*] Windows Server 2022 Build 20348 x64 (name:DC01) (domain:company.com) (signing:True) (SMBv1:False)
LDAP        172.16.188.10   389    DC01             [+] company.com\wario:XXXXX
LDAP        172.16.188.10   389    DC01             [*] Total of records returned 13
LDAP        172.16.188.10   389    DC01             Administrator                  Built-in account for administering the computer/domain
LDAP        172.16.188.10   389    DC01             Guest                          Built-in account for guest access to the computer/domain
LDAP        172.16.188.10   389    DC01             company                        company
LDAP        172.16.188.10   389    DC01             krbtgt                         Key Distribution Center Service Account
LDAP        172.16.188.10   389    DC01             leon
LDAP        172.16.188.10   389    DC01             joe
LDAP        172.16.188.10   389    DC01             peach
LDAP        172.16.188.10   389    DC01             mario
LDAP        172.16.188.10   389    DC01             wario
LDAP        172.16.188.10   389    DC01             yoshi

[XiaoliChan]

@mpgn current is not ready, I want to play with kdchost, it would be useful

[NeffIsBack]

This is amazing! It finally solves the dns problem, even without setting a dns server!
@bmigette can you try if that also works for you without setting it manually?

[XiaoliChan]

With this PR, now we can play with Kerberos more easily than before (except DCOM)

[XiaoliChan]

MSSQL Current is not changed, will change it after #136 is merged

[Marshall-Hallenbeck]

@XiaoliChan yo this is awesome!

[Marshall-Hallenbeck]

@NeffIsBack I started looking at renaming the variables and unfortunately it's just everywhere. I think we should create an issue to fix the naming conventions everywhere, and just merge this PR as it.

[NeffIsBack]

Then let's rename the newly created variables to use the old ones. I just don't want to have duplicate variables.

[Marshall-Hallenbeck]

Then let's rename the newly created variables to use the old ones. I just don't want to have duplicate variables.

There's so many that overlap I'm just going to try to do as many as I can.

Not going to update it myself. I'll fix it across the project after this is merged.

[NeffIsBack]

@XiaoliChan i removed the remoteHost variable for now and made some formatting changes. Can you check if everything looks good to you?
Also using wmi and kerberos always shows a successful login, despite providing wrong credentials:

[NeffIsBack]

@Marshall-Hallenbeck can you run the test suite against the PR? Just to make sure there didn't something which i missed with the manual review & testing. The last fix (see above) can be tested manually when fixed.

[Marshall-Hallenbeck]

I ran it before, but I can run it again. Just gotta make sure the new test cases are in the e2e tests.

[Marshall-Hallenbeck]

Fixed some final stuff and running tests now

[NeffIsBack]

I think 95ac1af destroyed the normal login 😅

[Marshall-Hallenbeck]

I think 95ac1af destroyed the normal login 😅

Yeah it did... lemme try to fix it lol.

[NeffIsBack]

Commit 47b1c1f solved remaining issue:

Tests ran through fine now. @Marshall-Hallenbeck would merge now if there isn't anything left to do

[Marshall-Hallenbeck]

Tests look good from my side, merging now. It's been a long time coming and I'm excited to finally get this in!