Merge pull request #1432 from nobbd/master

Update httprelayclient.py to force NTLM auth if anonymous auth is enabled (ADCS)
fortra · Apr 11, 2023 · 4d45b43 · 4d45b43
2 parents 5026d26 + f1aba9c
commit 4d45b43
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/impacket/examples/ntlmrelayx/clients/httprelayclient.py b/impacket/examples/ntlmrelayx/clients/httprelayclient.py
@@ -70,6 +70,7 @@ def sendNegotiate(self,negotiateMessage):
             LOG.error('No authentication requested by the server for url %s' % self.targetHost)
             if self.serverConfig.isADCSAttack:
                 LOG.info('IIS cert server may allow anonymous authentication, sending NTLM auth anyways')
+                self.authenticationMethod = "NTLM"
             else:
                 return False