GetMail

利用NTLM Hash读取Exchange邮件：在进行内网渗透时候，我们经常拿到的是账号的Hash凭据而不是明文口令。在这种情况下采用邮件客户端或者WEBMAIL的方式读取邮件就很麻烦，需要进行破解，NTLM的破解主要依靠字典强度，破解概率并不是很大。其实Exchange提供了利用NTLM Hash凭据进行验证的方法，从而可以进行任何操作。本程序支持邮箱目录结构的列举、邮件的阅读、附件的下载、关键字的搜索等功能，支持明文密码和NTLM Hash凭证两种认证方式。

参数介绍

-h, --help show this help message and exit
-u USER, --user=USER Please Input Username!
-H HASH, --hash=HASH Please Input Ntlmhash: xx:xx Or xxxx!
-p PSWD, --pswd=PSWD Please Input Password!
-e EMAIL, --email=EMAIL Please Input Email Address!
-c COUNT, --count=COUNT Please Input How Many Emails You Want To Read!
-s SERVER, --server=SERVER Please Input Email Server Address!
-k KEYWORD, --keyword=KEYWORD Please Input Keyword To Search!
-L, --List List All Email Floders!
-D, --download Whether Download Attachment Files Or Not!
-d, --display Show All Email Floders!
-l, --list List All Email Floders!
-f FLODER, --folder=FLODER Please Input Email Floder Name!

使用

列举邮箱目录结构

python3 getmail.py -u [USERNAME] -p [PASSWORD] -e [EMAIL ADDRESS] -L
python3 getmail.py -u [USERNAME] -H [NTLMHASH] -e [EMAIL ADDRESS] -L

阅读邮件

python3 getmail.py -u [USERNAME] -H [NTLMHASH] -e [EMAIL ADDRESS] -f [文件夹，默认是Inbox] -c 阅读邮件数量（按照时间倒序，最近的在最前面）
python3 getmail.py -u [USERNAME] -H [NTLMHASH] -e [EMAIL ADDRESS] -f [文件夹，默认是Inbox] -c 阅读邮件数量（按照时间倒序，最近的在最前面） -k [Keyword]（展示包含关键字的邮件）

下载附件

python3 getmail.py -u [USERNAME] -H [NTLMHASH] -e [EMAIL ADDRESS] -f [文件夹，默认是Inbox] -c 阅读邮件数量（按照时间倒序，最近的在最前面）——D

ISSUE修复记录

0x01 默认Inbox收件箱邮件阅读超过20封时候有会问题【已修复】
0x02 同名附件自动下载导致附件覆盖问题【已修复】

Changelog

v1.1 20210421
- 支持展示抄送、密送
- 优化展示效果
- 修复一些bug
v1.1 20210422 增加GUI版本
- Mac测试通过

利用NTLM Hash读取Exchange邮件

Related tags

Overview

GetMail

参数介绍

使用

列举邮箱目录结构

阅读邮件

下载附件

ISSUE修复记录

Changelog

Owner

[email protected]

Source code for "A Two-Stream AMR-enhanced Model for Document-level Event Argument Extraction" @ NAACL 2022

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

OSINT Cybersecurity Tools

Phoenix Framework is an environment for writing, testing and using exploit code.

Get related domains / subdomains by looking at Google Analytics IDs

Local File Inclusion Scanner and Exploiter

Downloads SEP, Baseband and BuildManifest automatically for signed iOS version's for connected iDevice

This repository detects a system vulnerable to CVE-2022-21907 and protects against this vulnerability if desired

NS-Defacer: a auto html injecter, In other words It's a auto defacer to deface a lot of websites in less time

An IDA pro python script to decrypt Qbot malware string

this keylogger is only for pc not for android but it will only work on those pc who have python installed it is made for all linux,windows and macos

Client script for the fisherman phishing tool

A great and handy python obfuscator for protecting code.

Lite version of my Gatekeeper backdoor for public use.

This is an injection tool that can inject any xposed modules apk into the debug android app

KeyKatcher is a keylogger that records keystrokes made on a computer and sends to the E-Mail.

A tool to brute force a gmail account. Use this tool to crack multiple accounts

Automated tool to exploit basic buffer overflow remotely and locally & x32 and x64

Directory Traversal in Afterlogic webmail aurora and pro

A security system to warn you when people enter your room 🎥