Seth
RITM
| Seth | RITM | |
|---|---|---|
| 2 | 3 | |
| 1,331 | 262 | |
| 0.0% | - | |
| 0.0 | 2.3 | |
| about 1 year ago | about 1 year ago | |
| Python | Python | |
| MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Seth
-
RDP is susceptible to a transparent Net-NTLMv2 hash-stealing attack. When disclosed, Microsoft responded: “not a vulnerability, […] by design”.
https://github.com/SySS-Research/Seth used to work haven’t used it in years though. Same with responder though
-
Cracking RDP NLA Supplied Credentials for Threat Intelligence
I did this in 2017: https://github.com/SySS-Research/Seth
RITM
What are some alternatives?
pyrdp - RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
impacket - Impacket is a collection of Python classes for working with network protocols.
wifipumpkin3 - Powerful framework for rogue access point attack.
ADenum - AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with kerberos.
elmocut - Eye candy ARP spoofer for Windows
xepor - Xepor, a web routing framework for reverse engineers and security researchers, brings the best of mitmproxy & Flask
NextGen-Spoofer - NextGenSpoofer is a Python ARP/DNS Spoofer made with love <3
netspionage - Network Forensics CLI utility that performs Network Scanning, OSINT, and Attack Detection
arp0_attacker - An ARP Spoofer attacker for windows to block away devices from your network.