If you like this project, consider sponsoring it on GitHub! Sponsors
Snaffler, but in Python
This project is a Python version of the well-known Snaffler project. Not a full implementation of that project, only focusing on SMB share/dir/file enumeration and download and parse. Read: no LDAP etc.
It contains the default classifiers (referred to as ruleset in pySnaffler) baked-in already but this ruleset is a part of Snaffler project.
Snaffler's author's Twitter: @mikeloss and @sh3r4_hax
The project is fully compatible with the TOML based rulesets from the original Snaffler project, the SMB connectivity is based on the aiosmb library. Note: the Snaffler's core config file is NOT compatible with this project.
Either install it via pip or just clone the project and install toml and aiosmb>=0.4.5.
If installed via pip you'll get two executables:
pysnafflerpysnaffler-whatif(not tested)
Use pysnaffler -h to see all parameters.
-
Enumerate
10.10.10.2using the password credentials ofTEST\victimuser usingNTLMauth.pysnaffler 'smb2+ntlm-password://TEST\victim:Passw0rd!1@10.10.10.2' 10.10.10.2 -
Enumerate
10.10.10.2using the NT credentials ofTEST\victimuser usingNTLMauth.pysnaffler 'smb2+ntlm-nt://TEST\victim:<NThash>@10.10.10.2' 10.10.10.2 -
Enumerate
win2019ad.test.corpusing the password credentials ofTEST\victimuser usingKERBEROSauth.pysnaffler 'smb2+kerberos+password://TEST\victim:Passw0rd!1@win2019ad.test.corp/?dc=10.10.10.2' 10.10.10.2