enum4linux-ng.py is a rewrite of Mark Lowe's (Portcullis Labs/Cisco) enum4linux.pl, a tool for enumerating information from Windows and Samba systems, aimed for penetration tester and other security professionals. The tool is mainly a wrapper around the Samba tools nmblookup, net, rpcclient and smbclient.
I mainly made this tool for educational purposes for myself. I tried to implement everything I was missing from the original tool.
- support for YAML and JSON output
- colored console output
- ldapsearch und polenum are natively implemented
I'd like to give credit to Mark Lowe for creating the original enum4linux.pl. In addition, I'd like to thank and give credit to Wh1t3Fox for creating polenum. It was lots of fun reading your code. :)
If you use the tool: Don't use it for illegal purposes.
In order to run the tool, you need the samba clients tools, namely:
- nmblookup
- net
- rpcclient
- smbclient
These should be available for nearly all Linux distributions. The package is typically called smbclient, samba-client or something similar.
In addition, you will need the following Python packages:
- ldap3
- PyYaml
- impacket
Here are some examples on how to install all dependencies at once:
ArchLinux
pacman -S smbclient python-ldap3 python-yaml impacketFedora derivates (tested on Fedora Workstation 31)
dnf install samba-common-tools samba-client python3-ldap3 python3-pyyaml python3-impacketKali Linux (tested on Kali Linux 2020.1, recent Debian versions like Buster should work)
apt install smbclient python3-ldap3 python3-yaml python3-impacketFor the Python dependencies, you can of course also use pip. Note, that you might need pip3 instead of pip, depending on your Linux distribution:
pip install pyyaml ldap3 impacketor easily install with
pip install -r requirements.txt