Exception TypeError: "'NoneType' object is not callable" in function _removeHandlerRef at 0x014BDDB0 ignored

without options or with -h, thist error always its present

i work with windows 7 sp1

Hey,
Was thinking of using your project as the basis of a tool I am working on for extracting data from Windows (and deciphering it) over SMB? I notice Keimpx has pre-existing regkey functionality and file upload/download features, so would it be alright if I forked it and added a bunch of stuff to it? Original code will be left untouched as I wont need to modify much of that, just add a bunch of new stuff.

If I want to rip a directory of files, or even a directory of sub directories, it would be nice if this were possible from keimpx itself

Hi,
today keimpx only shows the username\hash\password combination.
during red team engagement we do alot of domain-user-hash\password rotation, and though the end output today is useful, it still requires to QA the result becaue it doesnt show with what domain (when domains are specified from a file), was used in a successful login.
thanks,
Roy

Add support for BloodHound ingestion using https://github.com/fox-it/BloodHound.py

Add the 'hashdump' option to to save a copy of the Windows registry hives for SAM, SECURITY, and SYSTEM if possible, then call creddump to dump the LANMAN/NTLM hashes, view cached credentials, and decrypt LSA secrets.

Allow the user to provide a resource file with a list of OS commands to execute on all (or some) hosts where he has got at least one valid pair of credentials.

bethus has committed a reimplementation in Python of psexec.exe, it uses RemCom on the server (victim) side.

The main advantage of psexec.exe/RemCom over the current keimpx's service bind shell (under contrib/) is that it uses named pipe to communicate with the server (victim) hence no extra TCP port is needed on the server side - all the traffic, including the OS commands, is over 139/tcp or 445/tcp.

Make it read a list of users and a list of passwords and try them.

Add option to output results to a xml/html/csv file

Maybe update the project with kerberos support? thanks!

smbshell is currently extremely complicated and needs to be simplified to improve maintainability.

Currently, the plan is to make each of the command execution and utility scripts independent and pass the SMB connections through object instantiation instead. This should improve memory usage and performance while making the code easier to maintain in the long term.

• atexec
• psexec
• rpcdump
• samrdump
• secretsdump
• services
• smbexec
• smbshell
• interactiveshell

It would be nice if you provide a release tarball (incl. version number) of keimpx. This would make it easier to pack keimpx for distribution.

Thanks

Implement sniffer mode in which the tool sniffs on all (?) network interfaces for SMB authentication packets and dumps the NTLM session tokens to a file or similar behavior.

Automatically discover hosts via:

• ping sweep
• ARP scan
• Browse list
• More?

On a Kali system with python-impacket (0.9.18-0kali1), keimpx complains about the version of impacket due to import errors:

$ keimpx 
You need to install Python Impacket library first.
Get it from Core Security's Google Code repository:
sudo apt-get -y remove python-impacket # to remove the system-installed outdated version of the library
cd /tmp
svn checkout http://impacket.googlecode.com/svn/trunk/ impacket
cd impacket
python setup.py build
sudo python setup.py install

keimpx has not evolved for a long time and is not working with the current version of impacket. Will you continue to maintain keimpx or shall we consider it abandoned ?

This ticket is prompted by https://bugs.kali.org/view.php?id=4007

Is this the right syntax? Seems to be a local exception before it sends anything.

No LM hash available for this user

./keimpx.py -t x.x.x.x -U localadmin --nt=admin_ntlm_hash

keimpx 0.3-dev
by Bernardo Damele A. G. <[email protected]>

Exception in thread Thread-1:
Traceback (most recent call last):
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/threading.py", line 552, in __bootstrap_inner
self.run()
File "./keimpx.py", line 1855, in run
user, password, lmhash, nthash = credential.getCredentials()
TypeError: 'NoneType' object is not iterable

No credentials worked on any target