https://github.com/fortra/impacket ·
lang: python ·
LOC: ·
source: user_submitted
| Rule | Severity | Count |
|---|---|---|
SEC020 Secret Printed to Logs |
high | 4 |
SEC015 Insecure Randomness for Security |
medium | 4 |
SEC001 Hardcoded Password |
critical | 3 |
SEC005 Command Injection Risk |
high | 3 |
SEC014 SSL Verification Disabled |
medium | 2 |
SEC013 Path Traversal — User Input in File Path |
high | 1 |
SEC013
Path Traversal — User Input in File Path
examples/ticketConverter.py:106
· conf 0.80
[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.SEC020
Secret Printed to Logs
impacket/examples/ldap_shell.py:213
· conf 0.85
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC001
Hardcoded Password
examples/dacledit.py:134
· conf 0.30
[SEC001] Hardcoded Password: Hardcoded password found in source code.SEC001
Hardcoded Password
impacket/examples/ntlmrelayx/attacks/ldapattack.py:1019
· conf 0.30
[SEC001] Hardcoded Password: Hardcoded password found in source code.SEC001
Hardcoded Password
impacket/smb.py:3071
· conf 0.30
[SEC001] Hardcoded Password: Hardcoded password found in source code.SEC005
Command Injection Risk
examples/mimikatz.py:109
· conf 0.50
[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input.SEC005
Command Injection Risk
examples/ntfs-read.py:1259
· conf 0.50
[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input.SEC005
Command Injection Risk
impacket/examples/smbclient.py:98
· conf 0.50
[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input.SEC014
SSL Verification Disabled
impacket/examples/__init__.py:18
· conf 1.00
[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks.SEC014
SSL Verification Disabled
impacket/tds.py:1457
· conf 1.00
[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks.SEC015
Insecure Randomness for Security
[SEC015] Insecure Randomness for Security (and 8 more): Same pattern found in 8 additional files. Review if needed.SEC015
Insecure Randomness for Security
impacket/dcerpc/v5/ndr.py:1491
· conf 0.25
[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.SEC015
Insecure Randomness for Security
impacket/smbserver.py:3063
· conf 0.25
[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.SEC015
Insecure Randomness for Security
impacket/tds.py:1203
· conf 0.25
[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.SEC020
Secret Printed to Logs
[SEC020] Secret Printed to Logs (and 12 more): Same pattern found in 12 additional files. Review if needed.SEC020
Secret Printed to Logs
impacket/dpapi_ng.py:129
· conf 0.15
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC020
Secret Printed to Logs
impacket/dpapi.py:512
· conf 0.15
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/9034f894-6baa-4d67-938c-5b1fd00c9965/.