def __init__(self): ModuleInfo.__init__(self, 'mavenrepositories', 'maven') # Interesting XML nodes in Maven repository configuration self.nodes_to_extract = [ "id", "username", "password", "privateKey", "passphrase" ] self.settings_namespace = "{http://maven.apache.org/SETTINGS/1.0.0}"
def __init__(self): options = { 'command': '-m', 'action': 'store_true', 'dest': 'memory_dump', 'help': 'retrieve browsers passwords from memory' } ModuleInfo.__init__(self, 'memory_dump', 'memory', options)
def __init__(self): self.hex_key = [ 35, 231, 64, 111, 100, 72, 95, 65, 68, 51, 52, 70, 67, 51, 65, 95, 54, 55, 50, 48, 95, 49, 49, 68, 54, 95, 65, 48, 53, 50, 95, 48, 48, 48, 52, 55, 54, 65, 48, 70, 66, 53, 66, 65, 70, 88, 95, 76, 79, 71, 73, 49, 76, 115, 107, 100, 85, 108, 107, 106, 102, 100, 109, 32, 50, 102, 115, 100, 102, 102, 32, 102, 119, 115, 38, 78, 68, 76, 76, 95, 72, 95, 95, 0 ] ModuleInfo.__init__(self, name='EyeCon', category='multimedia')
def __init__(self): ModuleInfo.__init__(self, 'robomongo', 'databases') self.paths = [{ 'directory': u'.config/robomongo', 'filename': u'robomongo.json', }, { 'directory': u'.3T/robo-3t/1.1.1', 'filename': u'robo3t.json', }]
def __init__(self): ModuleInfo.__init__(self, 'composer', 'php')
def __init__(self): ModuleInfo.__init__(self, name='iisapppool', category='sysadmin', registry_used=True, winapi_used=True)
def __init__(self): ModuleInfo.__init__(self, 'sqldeveloper', 'databases') self._salt = self.get_salt() self._passphrase = None self._iteration = 42
def __init__(self): ModuleInfo.__init__(self, 'outlook', 'mails', registry_used=True, winapi_used=True)
def __init__(self): ModuleInfo.__init__(self, 'tortoise', 'svn', winapi_used=True)
def __init__(self): ModuleInfo.__init__(self, 'gitforwindows', 'git')
def __init__(self): ModuleInfo.__init__(self, 'apachedirectorystudio', 'sysadmin') # Interesting XML attributes in ADS connection configuration self.attr_to_extract = ["host", "port", "bindPrincipal", "bindPassword", "authMethod"]
def __init__(self): ModuleInfo.__init__(self, 'credfiles', 'windows', dpapi_used=True)
def __init__(self): self.pwd_found = [] ModuleInfo.__init__(self, 'psi-im', 'chats')
def __init__(self): self.path = u'{APPDATA}\\Thunderbird' ModuleInfo.__init__(self, 'Thunderbird', 'mails')
def __init__(self): ModuleInfo.__init__(self, 'galconfusion', 'games', registry_used=True)
def __init__(self): ModuleInfo.__init__(self, 'roguestale', 'games')
def __init__(self): ModuleInfo.__init__(self, 'credman', 'windows', only_from_current_user=True)
def __init__(self): self.vnckey = [23, 82, 107, 6, 35, 78, 88, 7] ModuleInfo.__init__(self, name='vnc', category='sysadmin')
def __init__(self): ModuleInfo.__init__(self, 'wifi', 'wifi')
def __init__(self): ModuleInfo.__init__(self, 'coreftp', 'sysadmin') self._secret = "hdfzpysvpzimorhk"
def __init__(self): ModuleInfo.__init__(self, 'turba', 'games', registry_used=True)
def __init__(self): ModuleInfo.__init__(self, 'cyberduck', 'sysadmin', winapi_used=True)
def __init__(self): ModuleInfo.__init__(self, 'keepass', 'memory')
def __init__(self): ModuleInfo.__init__(self, name='iiscentralcertp', category='sysadmin', registry_used=True, winapi_used=True)
def __init__(self): ModuleInfo.__init__(self, 'filezilla', 'sysadmin')
def __init__(self): ModuleInfo.__init__(self, name='postgresql', category='databases')
def __init__(self): ModuleInfo.__init__(self, 'hashdump', 'windows', system_module=True)
def __init__(self): self.database_query = 'SELECT action_url, username_value, password_value FROM wow_logins' ModuleInfo.__init__(self, 'uc browser', 'browsers', winapi_used=True)
def __init__(self): ModuleInfo.__init__(self, name='dbvis', category='databases') self._salt = self.get_salt() self._passphrase = 'qinda' self._iteration = 10
def __init__(self): ModuleInfo.__init__(self, 'ftpnavigator', 'sysadmin', system_module=True)