Arris Huijgen

Neat trick, I hadn't thought about that :) Would indeed be good to fix this, thanks for your report!

> Interesting idea, to show a fake logonscreen in a browser when a client connects to a rogue access point. However, because the browser is probably not full screen, users...

Hi dheb, In case a PIN is configured you should have a password configured first. That is the password that is being requested at the fake logonscreen. Depending on whether...

Thanks hasamba for your detailed bug report! For now as a workaround you can use the [`missingkbs.vbs`](https://github.com/bitsadmin/wesng/blob/master/missingkbs.vbs) script to identify potential exploitable vulnerabilities using `wes.py`'s `-m` parameter. More details in...

Hi Rederax01, that is correct and it is not possible to prevent this, which is good from the security perspective. For an elaboration, see for example this StackExchange topic: https://security.stackexchange.com/q/34972,...

Realizing that a small improvement could be to periodically check if the Task Manager (`taskmgr.exe`) and maybe other tools like `procexp.exe`/`procexp64.exe` are running, they can be killed by the FakeLogonScreen...

Is the machine maybe Azure AD-joined? I haven't tested it for such setup, so that might not work correctly yet. Not sure what you mean with that it could be...

Hi @opteh, thanks for your suggestions for improvement! For now you can update the path to where the credentials are stored in https://github.com/bitsadmin/fakelogonscreen/blob/master/Source/LogonScreen.cs#L77 Autostart for now could be done manually...

Hi Ander Ruiz, I am afraid this is a limitation of the data feeds that are being ingested by the collector script (see `collector` folder in this repository). For some...

Nice suggestion Nikitin. Be aware that you will need to also have the English language pack installed on the system, otherwise the `systeminfo.exe.mui` file won't be present inside of the...