Agent: Use dummy username and password when testing PowerShell HTTP

The exploit_user_list and exploit_password_list are not guaranteed to
have at least one entry. If either list is empty the exploiter will
fail. Use constant strings for the username and password to avoid
potentially crashing the exploiter.
This commit is contained in:
Mike Salvatore 2021-09-01 13:53:45 -04:00
parent 61c6bf2567
commit c9e54412c0
1 changed files with 2 additions and 2 deletions

View File

@ -101,8 +101,8 @@ class PowerShellExploiter(HostExploiter):
def _try_ssl_login(self, use_ssl: bool): def _try_ssl_login(self, use_ssl: bool):
credentials = Credentials( credentials = Credentials(
username=self._config.exploit_user_list[0], username="dummy_username",
password=self._config.exploit_password_list[0], password="dummy_password",
) )
auth_options = AuthOptions( auth_options = AuthOptions(