All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
- Add options for poisoners (807bd57 by f3rn0s).
- Add randomness in TTL value to avoid some EDR detections (f50f0be by nodauf).
- added support for either resolv.conf or resolvectl (1a2f2fd by lgandx).
- Fixed issue with smb signing detection (413bc8b by lgandx).
- fixed minor bug (e51f24e by lgandx).
- Fixed bug when IPv6 is disabled via GRUB. (fa297c8 by lgandx).
v3.1.4.0 - 2024-01-04
- added LDAPS listener (6d61f04 by exploide).
- added:error handling on exceptions. (f670fba by lgandx).
- Added full path to gen-self-sign-cert.sh (69f431e by kevintellier).
- add flag (-s) to enable smbv1scan (cf0c4ee by requin).
- add hostname on smbv2 scan result (709df2c by requin).
- Added dump by legacy protocols (b8818ed by lgandx).
- added requirements.txt (00d9d27 by lgandx).
- Added: append .local TLD to DontRespondToNames + MDNS bug fix (0bc226b by lgandx).
- Added Quiet mode (2cd66a9 by jb).
- Fixed issue in http srv, more hashes & signature reduction. (66ee7f8 by lgandx).
- fixed a TypeError in MSSQLBrowser (20cdd9c by exploide).
- fixed 'SyntaxWarning: invalid escape sequence' for Python 3.12+ (e9bd8a4 by exploide).
- fixed minor bug on py 3.10 (31393c7 by lgandx).
- fixed HTTP basic auth parsing when password contains colons (dc33d1f by exploide).
- Fixing soft failure which results in missed SMTP credential interception (34603ae by Syntricks).
- Fixing collections import issue for /tools/MultiRelay/odict.py (aa8d818 by Shutdown).
- Fixing import issue like in /tools/odict.py (2c4cadb by Shutdown).
- fix typo of ServerTlype (0c80b76 by deltronzero).
- Fixed potential disruption on Proxy-Auth (c51251d by lgandx).
- fixed the RespondTo/DontRespondTo issue (2765ef4 by lgandx).
- removed patreon donation link. (700b7d6 by lgandx).
- removed useless string (08e44d7 by lgandx).
- removed debug (4ea3d7b by lgandx).
- Removed Patreon link (8e12d2b by lgandx).
- Removed machine accounts dump, since they are not crackable (c9b5dd0 by lgandx).
v3.1.3.0 - 2022-07-26
- Fixed: Warnings on python 3.10 (9b1c99c by lgandx).
- Fix missing paren error (0c7a3ff by cweedon).
- Fix double logging of first hash or cleartext (e7eb3bc by Gustaf Blomqvist).
v3.1.2.0 - 2022-02-12
- added support for OPT EDNS (5cf6922 by lgandx).
- Fixed options formating in README (f85ad77 by Andrii Nechytailov).
v3.1.1.0 - 2021-12-17
- Added IPv6 support (5d4510c by lgandx).
- added: dhcp inform (3e8c9fd by lgandx).
- Added DHCP DNS vs DHCP WPAD (76f6c88 by lgandx).
- Added DHCP DNS vs WPAD srv injection (9dc7798 by lgandx).
- Added date and time for each Responder session config log. (bb17595 by lgandx).
- removed fingerprint.py (0b56d6a by lgandx).
v3.0.9.0 - 2021-12-10
- added the ability to provide external IP on WPAD poison via DHCP (ba885b9 by lgandx).
- Added a check for MSSQL (5680487 by lgandx).
- Fixed the ON/OFF for poisoners when in Analyze mode. (3cd5140 by lgandx).
- Remove analyze mode on DNS since you need to ARP to get queries (17e62bd by lgandx).
v3.0.8.0 - 2021-12-03
- Added DB for RunFinger results & Report (f90b76f by lgandx).
- added timeout option for fine tuning (a462d1d by lgandx).
- added DHCP db & updated the report script to reflect that (1dfa997 by lgandx).
- Added support for single IP or range file. (02fb3f8 by lgandx).
- fix: DHCP now working on VPN interface (88a2c6a by lgandx).
- Fixed a bug and increased speed. (1b2a22f by lgandx).
- Removed old DHCP script since its now a Responder module. (d425783 by lgandx).
- removed default certs (de778f6 by lgandx).
- Removed the static certs and added automatic cert generation (21afd35 by lgandx).
- removed debug str (826b5af by lgandx).
v3.0.7.0 - 2021-10-26
- Added DHCP server (c449b6b by lgandx).
- Add --lm switch for ESS downgrade (dcb80d9 by Pixis).
- Add ESS disabling information (51f8ab4 by Pixis).
- Add ESS downgrade parameter (baf80aa by pixis).
- fixed minor isse (350058c by lgandx).
v3.0.6.0 - 2021-04-19
- Added WinRM rogue server (8531544 by lgandx).
v3.0.5.0 - 2021-04-17
- Added dce-rpc module + enhancements + bug fix. (e91e37c by lgandx).
- removed addiontional RR on SRV answers (027e6b9 by lgandx).
v3.0.4.0 - 2021-04-12
- Added DNS SRV handling for ldap/kerberos + LDAP netlogon ping (1271b8e by lgandx).
- added a check for exec file (cc3a5b5 by lgandx).
- Added donation banner. (8104139 by lgandx).
- added donation address and minor typo (06f9f91 by lgandx).
- added smb filetime support (b0f044f by lgandx).
- removed FindSMB2UPTime.py since RunFinger already get this info (6c51080 by lgandx).
- Removed MultiRelay binaries (35b12b4 by lgandx).
- Removed BindShell executable file (5d762c4 by lgandx).
- Removed donation banner (ccee87a by lgandx).
- removed verification (dd1a674 by lgandx).
v3.0.3.0 - 2021-02-08
- Added support for SMB2 signing (24e7b7c by lgandx).
- Added SMB2 support for RunFinger and various other checks. (e24792d by lgandx).
- Fix wrong syntax (fb10d20 by Khiem Doan).
- fix custom challenge in python3 (7b47c8f by ThePirateWhoSmellsOfSunflowers).
- Fix typos in README (12b796a by Laban Sköllermark).
v3.0.2.0 - 2020-09-28
- Fixed LLMNR/NBT-NS/Browser issue when binding to a specific interface (af7d27a by lgandx).
v3.0.1.0 - 2020-08-19
- Added DNSUpdate.py, a small script to add DNS record to DC for gatering from different VLANs (05617de by Sagar-Jangam).
- Fix encoding issue in Python 3 (7420f62 by Sophie Brun).
v3.0.0.0 - 2020-01-09
- Added py3 and py2 compatibility + many bugfix (b510b2b by lgandx).
v2.3.4.0 - 2019-08-17
- Added RDP rogue server (c52843a by lgandx).
- Added proper changes to RunFinger (and is not checking for MS17-010 straight away) (105502e by Paul A).
- Fix socket timeout on HTTP POST requests (e7a787c by Crypt0-M3lon).
- fixed minor bugfix on recent merge (38e721d by lgandx).
- Fix multi HTTP responses (defabfa by Clément Notin).
- Fix version number in settings.py (621c5a3 by Clément Notin).
- Fixed some small typos in MS17-010 output (daaf6f7 by Chris Maddalena).
- removed debug string (47e63ae by lgandx).
v2.3.3.9 - 2017-11-20
- Added: check for null sessions and MS17-010 (b37f562 by lgandx).
- Add ignore case on check body for html inject (47c3115 by Lionel PRAT).
- added support for plain auth (207b0d4 by lgandx).
v2.3.3.8 - 2017-09-05
- Changed the complete LDAP parsing hash algo (ntlmv2 bug). (679cf65 by lgandx).
v2.3.3.7 - 2017-09-05
- Add in check for uptime since March 14th 2017, which could indicate the system is vulnerable to MS17-010 (5859c31 by Matt Kelly).
- Add Microsoft SQL Server Browser responder (bff935e by Matthew Daley).
- added: mimi32 cmd, MultiRelay random RPC & Namedpipe & latest mimikatz (38219e2 by lgandx).
- Fixed various bugs and improved the LDAP module. (be26b50 by lgandx).
- Fixed space typo in FindSMB2UPTime.py (11c0096 by myst404).
- Fixed instances of "CRTL-C" to "CTRL-C" (44a4e49 by Randy Ramos).
v2.3.3.6 - 2017-03-29
- Fixed bug in FindSMB2UPTime (6f3cc45 by lgandx).
- Removed Paypal donation link. (b05bdca by lgandx).
v2.3.3.5 - 2017-02-18
v2.3.3.4 - 2017-02-18
- Added: Hashdump, Stats report (21d48be by lgandx).
- added
ipcommands in addition to ifconfig and netstat (db61f24 by thejosko).
- fixed crash: typo. (0642999 by lgandx).
- Fix for RandomChallenge function. Function getrandbits can return less than 64 bits, thus decode('hex') will crash with TypeError: Odd-length string (de6e869 by Gifts).
- Fix Proxy_Auth. Random challenge broke it. (5a2ee18 by Timon Hackenjos).
v2.3.3.3 - 2017-01-03
- Added: Random challenge for each requests (default) (0d441d1 by lgandx).
v2.3.3.2 - 2017-01-03
- Added: Random challenge for each requests (default) (1d38cd3 by lgandx).
- Added paypal button (17dc81c by lgandx).
- Added: Scripting support. -c and -d command line switch (ab2d890 by lgandx).
- Added: BTC donation address (730808c by lgandx).
- Removed ThreadingMixIn. MultiRelay should process one request at the timeand queue the next ones. (4a7499d by lgandx).
v2.3.3.1 - 2016-10-18
- Added: Logs dumped files for multiple targets (d560105 by lgandx).
- Fixed wrong challenge issue (027f841 by lgandx).
v2.3.3.0 - 2016-10-12
- Added: Compability for Multi-Relay (5b06173 by lgandx).
- Fix values for win98 and win10 (requested here: https://github.com/lgandx/Responder/pull/7/commits/d9d34f04cddbd666865089d809eb5b3d46dd9cd4) (60c91c6 by lgandx).
- Fixed the bind to interface issue (#6) (ce211f7 by lgandx).
- fixed bug in hash parsing. (0cf1087 by lgandx).
- Changed to executable (3e46ecd by lgandx).
v2.3.2.8 - 2016-10-06
- Added: Now delete services on the fly. (c6e401c by lgandx).
v2.3.2.7 - 2016-10-05
- Added: Possibility to target all users. use 'ALL' with -u (d81ef9c by lgandx).
- Fixed minor bug (7054c60 by lgandx).
v2.3.2.6 - 2016-10-05
v2.3.2.5 - 2016-10-03
- Added logs folder. (cd09e19 by lgandx).
- Added: Cross-protocol NTLMv1-2 relay (beta). (ab67070 by lgandx).
- Removed logs folder. (5d83778 by lgandx).
v2.3.2.4 - 2016-09-12
v2.3.2.3 - 2016-09-12
- Added new option in Responder.conf. Capture multiple hashes from the same client. Default is On. (35d933d by lgandx).
v2.3.2.2 - 2016-09-12
- Added support for webdav, auto credz. (ad9ce6e by lgandx).
- Added option -e, specify an external IP address to redirect poisoned traffic to. (04c270f by lgandx).
- removed debug info (3e2e375 by lgandx).
v2.3.2.1 - 2016-09-11
v2.3.2 - 2016-09-11
- Added proxy auth server + various fixes and improvements (82fe64d by lgandx).
- Added current date for all HTTP headers, avoiding easy detection (ecd62c3 by lgandx).
- Removed useless HTTP headers (881dae5 by lgandx).
v2.3.1 - 2016-09-09
- Added SMBv2 support enabled by default. (85d7974 by lgandx).
- added new option, for Config-Responder.log file. (a9c2b29 by lgaffie).
- Add compatability with newer net-tools ifconfig. (e19e349 by Hank Leininger).
- Add HTTP Referer logging (16e6464 by Hubert Seiwert).
- Added recent Windows versions. (6eca29d by Jim Shaver).
- Added: Support for OSx (59e48e8 by lgandx).
- Fixed colors in log files (d9258e2 by lgaffie).
- Fixed the regexes for Authorization: headers. (a81a9a3 by Hank Leininger).
- Fix Windows 10 support. (a84b351 by ValdikSS).
- Fixed color bug in Analyze mode (04c841d by lgandx).
- fixed minor bug (6f8652c by lgandx).
- Fixed Icmp-Redirect.. (df63c1f by lgandx).
- Fixed some tools and +x on some executables (8171a96 by lgandx).
- Fix generation of HTTP response in HTTP proxy (b2830e0 by Antonio Herraiz).
- Fix misspelling of poisoners (6edc01d by IMcPwn).
- change IsOSX to utils.IsOsX. Fixes #89 (08c3a90 by Jared Haight).
- Changed email address (f5a8bf0 by lgandx).
- Changed connection to SQlite db to support different encoded charsets (0fec40c by Yannick Méheut).
- Changed comment to be more clear about what is being done when logging (08535e5 by Yannick Méheut).
- Removed the config dump in Responder-Session.log. New file gets created in logs, with host network config such as dns, routes, ifconfig and config dump (a765a8f by lgaffie).
v2.3.0 - 2015-09-11
- Added support for Samba4 clients (ee033e0 by lgandx).
- Added support for upstream proxies for the rogue WPAD server (f4bd612 by jrmdev).
- Fixed Harsh Parser variable typo (5ab431a by lgandx).
- fixed var name (62ed8f0 by byt3bl33d3r).
- Fixes MDNS Name parsing error (3261288 by byt3bl33d3r).
- Fixed FTP module. (75664a4 by jrmdev).
- Fixing a bug in HTTP proxy, was calling recv() too many times (ddaa9f8 by lanjelot).
- changed operand (cb9c2c8 by byt3bl33d3r).
v2.1.4 - 2014-12-06
- Added: FindSMB2UPTime script. Find when is the last time a >= 2008 server was updated. (7a95ef1 by lgandx).
v2.1.3 - 2014-11-27
- Added: DontRespondToName and DontRespondTo; NAC/IPS detection evasion (36ef78f by lgandx).
- Added --version and kost's fix for /etc/resolv.conf empty lines parsing. (c05bdfc by lgandx).
v2.1.2 - 2014-08-26
- Added: Log command line in Responder-Session.log. (f69e93c by lgandx).
- Fixed serve-always and serve-exe with the new WPAD server. (cf7b477 by lgandx).
v2.1.0 - 2014-08-16
- fixed: identation. (5c9fec9 by lgandx).
v2.0.9 - 2014-05-28
- Fixed high cpu usage in some specific cases (4558861 by lgandx).
- Removed: old style options. Just use -r instead of -r On (a21aaf7 by lgandx).
v2.0.8 - 2014-04-22
- Added: in-scope target, windows >= Vista support (-R) and unicast answers only. (2e4ed61 by lgandx).
v2.0.7 - 2014-04-16
- Added: in-scope llmnr/nbt-ns name option (1c79bed by lgandx).
- Added: Kerberos server and -d cli option. (dcede0f by lgandx).
v2.0.6 - 2014-04-01
- Fixed [Enter] key issue (c97a13c by lgandx).
v2.0.5 - 2014-03-22
- Added: In-scope IP handling for MDNS (b14ff0b by lgandx).
v2.0.4 - 2014-03-22
- Added: MDNS Poisoner (90479ad by lgandx).
v2.0.3 - 2014-03-21
- fix: Bind to interface bug. (a1a4f46 by lgandx).
v2.0.2 - 2014-02-06
- Added: Analyze mode; Lanman Domain/SQL/Workstation passive discovery. (2c9273e by lgandx).
v2.0.1 - 2014-01-30
- Added: Analyze ICMP Redirect plausibility on current subnet. (06df704 by lgandx).
- Added: Analyze stealth mode. See all traffic, but dont answer (-A cli). Minor bugs also fixed. (9bb2f81 by lgandx).
- Added: -F command line switch to force authentication on PAC file retrieval. Default is Off (3f48c11 by lgandx).
- Added: IMAP module and enhanced wpad. (af60de9 by lgandx).
- Added: SMTP PLAIN/LOGIN module (6828f1b by lgandx).
- Added: POP3 module. (f48ea3f by lgandx).
- Added: MSSQL Plaintext module (4c3a494 by lgandx).
- Added: SMBRelay module (4dd9d8c by lgandx).
- added: Command switch -v for verbose mode. Responder is now less verbose. (46b98a6 by lgandx).
- Added support for .pac file requests. (6b7e5b6 by lgandx).
- Added: print HTTP URL, POST data requested prior auth (f616718 by lgandx).
- Added command switch -I. This option override Responder.conf Bind_to setting (68de4ac by lgandx).
- Added: in-scope only target. See Responder.conf. (0465bd6 by lgandx).
- Added: Fake access denied html page (9b608aa by lgandx).
- Added: Configuration file, removed several cli options and several fixes. (95eed09 by lgandx).
- Added: Configuration file for Responder (d573102 by lgandx).
- Added: Bind shell listening on port 140, use it with -e or -exe option if needed (1079de0 by Lgandx).
- Added: Ability to serve whatever kind of file via HTTP and WPAD There's now 3 new options. (a8c2952 by Lgandx).
- added -I option to bind all sockets to a specific ip (eg: listen only on eth0) (d5088b2 by Lgandx).
- added: HTTP auth forward to SMB. This is useful for SMB Relay or LM downgrade from HTTP NTLM ESS to SMB LM. (0fcaa68 by Lgandx).
- added automatic poisoning mode when a primary and a secondary DNS is specified. (ccbbbe3 by Lgandx).
- Added HTTPS module. (9250281 by Lgandx).
- Added support for LM hash downgrade. Default still NTLMSSP. (09f8f72 by Lgandx).
- Added: Client ip is now part of the cookie filename (2718f9c by Lgandx).
- Added a folder for storing HTTP cookies files (d1a14e2 by Lgandx).
- Added WPAD transparent proxy (9f1c3bc by Lgandx).
- Fixed WPAD cookie capture (afe2b63 by lgandx).
- Fix: Command line switch typo (4fb4233 by lgandx).
- Fixed minor bugs (f8a16e2 by Lgandx).
- Fixed duplicate entry in hash file for machine accounts (4112b1c by Lgandx).
- fix for anonymous NTLM connection for LDAP server (1c47e7f by Lgandx).
- Changed WPAD to Off by default. Use command line -w On to enable. (bf2fdf0 by lgandx).
- changed .txt to no extension. (5f7bfa8 by lgandx).
- Changed Windows =< 5.2 documentation to XP/2003 and earlier for clarification (56dd7b8 by Garret Picchioni).
- Removed bind to interface support for OsX. Responder for OsX can only listen on all interfaces. (dbfdc27 by lgandx).