Pennyw0rth
CryptographyDeprecationWarning for ARC4 for winrm mode - kali 1.4.0
Describe the bug CryptographyDeprecationWarning for ARC4 for winrm mode issue persist on kali 1.4.0
kali@kali:~/PG/Resourced$ nxc --version
1.4.0 - SmoothOperator - Kali Linux -
To Reproduce
Steps to reproduce the behavior i.e.:
Command: nxc winrm $IP -u usernames.txt -H hashes
Resulted in:
kali@kali:~/PG/Resourced$ nxc winrm $IP -u usernames.txt -H hashes
WINRM 192.168.124.175 5985 RESOURCEDC [*] Windows 10 / Server 2019 Build 17763 (name:RESOURCEDC) (domain:resourced.local)
/usr/lib/python3/dist-packages/spnego/_ntlm_raw/crypto.py:46: CryptographyDeprecationWarning: ARC4 has been moved to cryptography.hazmat.decrepit.ciphers.algorithms.ARC4 and will be removed from this module in 48.0.0.
arc4 = algorithms.ARC4(self._key)
...
Expected behavior A clear and concise description of what you expected to happen.
Screenshots If applicable, add screenshots to help explain your problem.
NetExec info
- OS: kali
- Version of nxc: v1.4.0
- Installed from: sudo apt
Additional context Add any other context about the problem here.
I have opened up an issue on the project where this originates from. Hopefully this will be resolved and fixed so it doesn't break in the future
It is already fixed in pyspnego. We just have to wait until in this case debian updates their package to a newer version: https://packages.debian.org/sid/python3-pyspnego
Since it is only a deprecation warning it isn't that important anyway. At this point it is debians reliability to not break that package.