From 0c5490251dad32eebb33e12fc46ea2aa680a9a59 Mon Sep 17 00:00:00 2001
From: br-sn <39455110+br-sn@users.noreply.github.com>
Date: Sat, 27 Oct 2018 10:34:08 +1100
Subject: [PATCH 1/2] Update config.json

Added kerberos username enumeration

Fixed /seclists/Discover/Web_Content folder name
---
 Reconnoitre/lib/config.json | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/Reconnoitre/lib/config.json b/Reconnoitre/lib/config.json
index 020cce6..bb68dce 100644
--- a/Reconnoitre/lib/config.json
+++ b/Reconnoitre/lib/config.json
@@ -31,8 +31,8 @@
           "commands": [
             "dirb http://$ip:$port/ -o $outputdir/$ip_$port_dirb.txt",
             "dirbuster -H -u http://$ip:$port/ -l /usr/share/wordlists/dirbuster/directory-list-lowercase-2.3-medium.txt -t 20 -s / -v -r $outputdir/$ip_$port_dirbuster_medium.txt",
-            "gobuster -w /usr/share/seclists/Discovery/Web-Content/common.txt -u http://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
-            "gobuster -w /usr/share/seclists/Discovery/Web-Content/CGIs.txt -u http://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
+            "gobuster -w /usr/share/seclists/Discovery/Web_Content/common.txt -u http://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
+            "gobuster -w /usr/share/seclists/Discovery/Web_Content/CGIs.txt -u http://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
           ]
         }
       ]
@@ -50,8 +50,8 @@
           "commands": [
             "dirb https://$ip:$port/ -o $outputdir/$ip_$port_dirb.txt",
             "dirbuster -H -u https://$ip:$port/ -l /usr/share/wordlists/dirbuster/directory-list-lowercase-2.3-medium.txt -t 20 -s / -v -r $outputdir/$ip_$port_dirbuster_medium.txt",
-            "gobuster -w /usr/share/seclists/Discovery/Web-Content/common.txt -u https://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
-            "gobuster -w /usr/share/seclists/Discovery/Web-Content/CGIs.txt -u https://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
+            "gobuster -w /usr/share/seclists/Discovery/Web_Content/common.txt -u https://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
+            "gobuster -w /usr/share/seclists/Discovery/Web_Content/CGIs.txt -u https://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
           ]
         }
       ]
@@ -329,9 +329,9 @@
       ],
       "output": [
         {
-          "description": "Find public exploits",
+          "description": "Enumeration",
           "commands": [
-            "searchsploit kerberos"
+            "nmap -p$port --script=krb5-enum-users --script-args krb5-enum-users.realm='CHANGEME.local',userdb=/usr/share/seclists/Usernames/Names/names.txt -oA '$outputdir/$ip_$port_kerberos' $ip"
           ]
         }
       ]
@@ -351,4 +351,4 @@
       ]
     }
   }
-}
\ No newline at end of file
+}

From 441d376e28be845bb1ba513330af97d2512e6ea6 Mon Sep 17 00:00:00 2001
From: Michael Skelton <886344+codingo@users.noreply.github.com>
Date: Sun, 28 Oct 2018 18:11:09 +1000
Subject: [PATCH 2/2] Latest web-content pathing

---
 Reconnoitre/lib/config.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/Reconnoitre/lib/config.json b/Reconnoitre/lib/config.json
index bb68dce..f64d388 100644
--- a/Reconnoitre/lib/config.json
+++ b/Reconnoitre/lib/config.json
@@ -31,8 +31,8 @@
           "commands": [
             "dirb http://$ip:$port/ -o $outputdir/$ip_$port_dirb.txt",
             "dirbuster -H -u http://$ip:$port/ -l /usr/share/wordlists/dirbuster/directory-list-lowercase-2.3-medium.txt -t 20 -s / -v -r $outputdir/$ip_$port_dirbuster_medium.txt",
-            "gobuster -w /usr/share/seclists/Discovery/Web_Content/common.txt -u http://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
-            "gobuster -w /usr/share/seclists/Discovery/Web_Content/CGIs.txt -u http://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
+            "gobuster -w /usr/share/seclists/Discovery/Web-Content/common.txt -u http://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
+            "gobuster -w /usr/share/seclists/Discovery/Web-Content/CGIs.txt -u http://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
           ]
         }
       ]
@@ -50,8 +50,8 @@
           "commands": [
             "dirb https://$ip:$port/ -o $outputdir/$ip_$port_dirb.txt",
             "dirbuster -H -u https://$ip:$port/ -l /usr/share/wordlists/dirbuster/directory-list-lowercase-2.3-medium.txt -t 20 -s / -v -r $outputdir/$ip_$port_dirbuster_medium.txt",
-            "gobuster -w /usr/share/seclists/Discovery/Web_Content/common.txt -u https://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
-            "gobuster -w /usr/share/seclists/Discovery/Web_Content/CGIs.txt -u https://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
+            "gobuster -w /usr/share/seclists/Discovery/Web-Content/common.txt -u https://$ip:$port/ -s '200,204,301,302,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_common.txt'",
+            "gobuster -w /usr/share/seclists/Discovery/Web-Content/CGIs.txt -u https://$ip:$port/ -s '200,204,301,307,403,500' -e | tee '$outputdir/$ip_$port_gobuster_cgis.txt'"
           ]
         }
       ]