External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-18 04:35:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

make protocolstate.IsHostAllowed check the domaincontroller, not the domain

Browse Source
This commit is contained in:
5amu 2024-01-20 00:39:29 +01:00
parent 44745cb0c9
commit a167e6c57b
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
pkg/js/libs/ldap/ldap.go
View File

@ -55,9 +55,9 @@ func (c *LdapClient) CollectLdapMetadata(domain string, controller string) (LDAP
domainController: controller,
}
if !protocolstate.IsHostAllowed(domain) {
if !protocolstate.IsHostAllowed(controller) {
// host is not valid according to network policy
return LDAPMetadata{}, protocolstate.ErrHostDenied.Msgf(domain)
return LDAPMetadata{}, protocolstate.ErrHostDenied.Msgf(controller)
}
conn, err := c.newLdapSession(opts)
@ -230,9 +230,9 @@ func (c *LdapClient) GetKerberoastableUsers(domain, controller string, username,
password: password,
}
if !protocolstate.IsHostAllowed(domain) {
if !protocolstate.IsHostAllowed(controller) {
// host is not valid according to network policy
return nil, protocolstate.ErrHostDenied.Msgf(domain)
return nil, protocolstate.ErrHostDenied.Msgf(controller)
}
conn, err := c.newLdapSession(opts)