I'm proud to announce that SPIKE Proxy v 1.4.5, released today, fully supports NTLM authentication. Thanks to: Dmitry A. Rozmanov <dimaat_private>, without his pure Python GPLed NTLM library, this would not be possible. Please feel free to contact myself for any patches, questions, or additional information regarding SPIKE Proxy. Dave Aitel Immunity, Inc. http://www.immunitysec.com/spike.html ___________________________________________________________________ CHANGELOG.txt follows: 1.4.5 Nov 7, 2002 Added NTLM support. See the Usage statement for how to use it. It should be otherwise transparent. It was tested on IIS 5.0, so your milage may vary. Example: ./spkproxy.py -U Administrator -P jbone -D localhost will automatically log in as Administrator with the password of jbone and the domain of localhost wherever presented with an NTLM challenge. This works even during scans, although scans will now take 3 times as long. Added "ordering" to arguments, since that was causing some problems with some applications. Added Frostman's SPIKE Proxy Usage document to directory. Fixed other associated bugs, some of which were quite bad, so do upgrade. Added Auto-Version-Check. You can disable this in spkproxy.py if it bugs you. ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Thu Nov 07 2002 - 17:30:32 PST