STRLCPY/GOAD

Update main.yml

Hi @Mayfly277, thanks for your work!
I am proposing this change because for what I tested and read on few blogs, NTLMv1 downgrade attacks cannot be made on MEEREEN if LmCompatibilityLevel is 3. 
I tested both configurations and I was able to do NTLM downgrade on MEEREEN with LmCompatibilityLevel 2.

Cheers,

Diego

naksyn committed with GitHub 2 years ago

1af7d089

1 parent 28d4010a

Total 1 files

■ ■ ■ ■ ■ ■

ansible/roles/vulns/ntlmdowngrade/tasks/main.yml

1	1		# values : https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/network-security-lan-manager-authentication-level
	2	+	# NTLMv1 downgrade attacks are possible with LmCompatibilityLevel 2 and below
2	3		- name: Enable LmCompatibilityLevel
3	4		win_regedit:
4	5		path: HKLM:\System\CurrentControlSet\Control\Lsa
5	6		name: LmCompatibilityLevel
6		-	data: 0x3
	7	+	data: 0x2
7	8		type: dword
	9	+