-
Notifications
You must be signed in to change notification settings - Fork 132
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ADFS module always reports success despite invalid credentials #72
Comments
Gathering information to troubleshoot this (apologies since it's 3 mo later), do you know if there was anything non standard about the ADFS install? Was it using certificate auth? Unfortunately just with the information presented in this issue I can't do much to troubleshoot since the ADFS plugin will simply return true if there is a 302 redirect |
Thanks for getting back to me on this. I'm not sure about special configurations actually, and my engagement has ended already. I might be able to gather more information if my client permits testing further. If so, what further information would help troubleshoot the issue? Is there a debug option I can use? |
Unfortunately there's not really a good debug option. Really the best bet would be having valid creds and being able to compare/contrast the requests, but that's not supremely helpful in this case. If you have the options, a look at the requests/responses would be our best bet. It's also possible there is an extra 302 that's triggering it or something similar, but may be an edge case type of thing. I'll leave this up for a few months if you can't sort it out to see if any others have the same issue |
I'm attempting to spray an ADFS endpoint with a list of email addresses validated using OneDriveEnum. I've tried specifying the URL according to the instructions, but also as
https://federation.target.com/adfs/ls/
. Neither worked. As soon as CredMaster starts spraying I'm seeing success notifications roll in, but there isn't a single one that fails, which I find highly unlikely.Please let me know if you need any further information.
The text was updated successfully, but these errors were encountered: