| 1234567891011121314 |
- def attackCachedUsersPasswords():
- if kb.data.cachedUsersPasswords:
- results = dictionaryAttack(kb.data.cachedUsersPasswords)
- lut = {}
- for (_, hash_, password) in results:
- lut[hash_.lower()] = password
- for user in kb.data.cachedUsersPasswords.keys():
- for i in xrange(len(kb.data.cachedUsersPasswords[user])):
- if (kb.data.cachedUsersPasswords[user][i] or "").strip():
- value = kb.data.cachedUsersPasswords[user][i].lower().split()[0]
- if value in lut:
- kb.data.cachedUsersPasswords[user][i] += "%s clear-text password: %s" % ('\n' if kb.data.cachedUsersPasswords[user][i][-1] != '\n' else '', lut[value])
|
