Skip to content

Bump impacket from 0.13.0 to 0.13.1#3

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/impacket-0.13.1
Open

Bump impacket from 0.13.0 to 0.13.1#3
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/impacket-0.13.1

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 20, 2026

Bumps impacket from 0.13.0 to 0.13.1.

Release notes

Sourced from impacket's releases.

Impacket 0.13.1

Project's main page at https://www.coresecurity.com/core-labs/open-source-tools/impacket Release blogpost at https://www.coresecurity.com/blog/whats-new-impacket-0131

ChangeLog for v0.13.1:

  1. Library improvements

    • SMB: Improved server and relay behavior with SMB server signing support, optional read-only shares, Kerberos/NTLM authentication controls, graceful SMB relay packet handling, SMBv1 relay fixes, SMB 3.1.1 negotiation fixes, and clearer errors for truncated SMB responses. (Fixes #2099, #2085, #2111, #2114, #2129)
    • Kerberos: Fixed S4U2Self service ticket parsing, non-ASCII authentication encoding, LSA Kerberos key decryption, GSSAPI BER length parsing, ccache/kirbi conversion edge cases, and PAC preservation/signing helpers used by ticket tooling. (#2087, #2068, #2088, #2130, #2159, #2164)
    • MSSQL/TDS: Added TDS 8.0 support for Force Strict Encryption targets, EPA channel binding handling, TDS_SSVARIANT parsing, stricter TLS-backed packet handling, workstation/application name support, and more reliable SQL reply error tracking. (#2074, #2075, #2082, #2098, #2122)
    • DCE/RPC and WMI: Added WMI PutClass/DeleteClass support, Remote Event Log subscription calls, Remote Desktop Services process parsing fixes, SCMR failure action marshaling fixes, and safer TCP transport handling on empty receives. (#1803, #2061, #2046, #2152, #2155)
    • Directory and data parsing: Added LDAP CRUD helpers, improved LDAP attribute handling, fixed large-page ESE tag parsing for Windows Server 2025 NTDS.dit files, improved NTFS sparse and INDEX_ROOT reads, fixed DPAPI_BLOB parsing with oversized input, and corrected high-codepoint unicode structure sizing. (#1764, #1995, #2097, #2106, #2112, #2158)
    • Added a reusable ACL helper module and expanded regression coverage for ACLs, NTFS, TDS, Kerberos, ESE, SCMR, WMI, SMB, and packet parsing. (#1240)

  2. Examples improvements

    • ntlmrelayx.py:
      • Added MSSQL and RDP relay servers, strict MSSQL relay support, TLS-backed TDS frame reassembly, NTLM sign/seal removal paths for CVE-2025-33073-related relay workflows, and --remove-mic handling. (#2083, #2101, #2122, #2133)
      • Improved WinRM relay error handling and NTLMv2 detection, fixed WinRM NTLM relay behavior, made SMB relay negotiation more conservative by avoiding unsupported NEGOEX advertisement, and added multibyte AD CS template name support. (#2089, #2111, #2127, #2163)
      • Added shadow credentials commands to the interactive LDAP shell and updated KeyCreds handling for the January 2026 Windows changes. (#1402, #2109)
    • secretsdump.py:
      • Added SAM history parsing, improved offline machine account and Kerberos key recovery, fixed negative timestamps on Windows, added SAM password timestamp output, and filtered offline NTDS rows by local domain SID. (#2059, #2069, #2135, #2142, #2178)
    • regsecrets.py:
      • Added SAM history parsing. (#2059)
    • ticketer.py:
      • Improved ccache handling and preserved KDC-issued lifetimes for diamond tickets. (#2159, #2181)
    • ticketConverter.py:
      • Improved kirbi/ccache conversion, preserved ticket flags, converted all TGS entries, and added base64 output support. (#2104, #2159)
    • describeTicket.py:
      • Fixed credential indexing after skipped decrypts and improved Kerberoast debug output. (#2117)
    • raiseChild.py:
      • Preserved PAC buffers, added AES support for modern Windows environments, and improved ticket retry behavior. (#2164)
    • smbclient.py:
      • Added ACL management support, recursive rget, and richer share listing output with type and comments. (#1240, #2110, #2156)
    • mssqlclient.py:
      • Added workstation/application name options, linked-server RPC enable/disable commands, custom CBT support, and better MSSQL shell behavior. (#2074, #2098, #2134)
    • ntfs-read.py:
      • Improved INDEX_ROOT file listing, sparse file support, error handling, and read correctness. (#2106)
    • tstool.py:
      • Added Remote Desktop Shadowing support. (#2064)
    • badsuccessor.py:
      • Fixed ACE filtering and ObjectType GUID parsing that could cause false negatives when searching OUs. (#2170)
    • GetUserSPNs.py:
      • Added an option to avoid forcing RC4-HMAC when requesting a TGT. (#2141)
    • owneredit.py:
      • Improved distinguished name lookup behavior. (#2162)
    • exchanger.py:
      • Added Basic Authentication support. (#2077)
    • reg.py:
      • Added support for persistent registry key creation. (#2113)

... (truncated)

Changelog

Sourced from impacket's changelog.

Impacket v0.13.1 (May 2026):

  1. Library improvements

    • SMB: Improved server and relay behavior with SMB server signing support, optional read-only shares, Kerberos/NTLM authentication controls, graceful SMB relay packet handling, SMBv1 relay fixes, SMB 3.1.1 negotiation fixes, and clearer errors for truncated SMB responses. (Fixes #2099, #2085, #2111, #2114, #2129)
    • Kerberos: Fixed S4U2Self service ticket parsing, non-ASCII authentication encoding, LSA Kerberos key decryption, GSSAPI BER length parsing, ccache/kirbi conversion edge cases, and PAC preservation/signing helpers used by ticket tooling. (#2087, #2068, #2088, #2130, #2159, #2164)
    • MSSQL/TDS: Added TDS 8.0 support for Force Strict Encryption targets, EPA channel binding handling, TDS_SSVARIANT parsing, stricter TLS-backed packet handling, workstation/application name support, and more reliable SQL reply error tracking. (#2074, #2075, #2082, #2098, #2122)
    • DCE/RPC and WMI: Added WMI PutClass/DeleteClass support, Remote Event Log subscription calls, Remote Desktop Services process parsing fixes, SCMR failure action marshaling fixes, and safer TCP transport handling on empty receives. (#1803, #2061, #2046, #2152, #2155)
    • Directory and data parsing: Added LDAP CRUD helpers, improved LDAP attribute handling, fixed large-page ESE tag parsing for Windows Server 2025 NTDS.dit files, improved NTFS sparse and INDEX_ROOT reads, fixed DPAPI_BLOB parsing with oversized input, and corrected high-codepoint unicode structure sizing. (#1764, #1995, #2097, #2106, #2112, #2158)
    • Added a reusable ACL helper module and expanded regression coverage for ACLs, NTFS, TDS, Kerberos, ESE, SCMR, WMI, SMB, and packet parsing. (#1240)

  2. Examples improvements

    • ntlmrelayx.py:
      • Added MSSQL and RDP relay servers, strict MSSQL relay support, TLS-backed TDS frame reassembly, NTLM sign/seal removal paths for CVE-2025-33073-related relay workflows, and --remove-mic handling. (#2083, #2101, #2122, #2133)
      • Improved WinRM relay error handling and NTLMv2 detection, fixed WinRM NTLM relay behavior, made SMB relay negotiation more conservative by avoiding unsupported NEGOEX advertisement, and added multibyte AD CS template name support. (#2089, #2111, #2127, #2163)
      • Added shadow credentials commands to the interactive LDAP shell and updated KeyCreds handling for the January 2026 Windows changes. (#1402, #2109)
    • secretsdump.py:
      • Added SAM history parsing, improved offline machine account and Kerberos key recovery, fixed negative timestamps on Windows, added SAM password timestamp output, and filtered offline NTDS rows by local domain SID. (#2059, #2069, #2135, #2142, #2178)
    • regsecrets.py:
      • Added SAM history parsing. (#2059)
    • ticketer.py:
      • Improved ccache handling and preserved KDC-issued lifetimes for diamond tickets. (#2159, #2181)
    • ticketConverter.py:
      • Improved kirbi/ccache conversion, preserved ticket flags, converted all TGS entries, and added base64 output support. (#2104, #2159)
    • describeTicket.py:
      • Fixed credential indexing after skipped decrypts and improved Kerberoast debug output. (#2117)
    • raiseChild.py:
      • Preserved PAC buffers, added AES support for modern Windows environments, and improved ticket retry behavior. (#2164)
    • smbclient.py:
      • Added ACL management support, recursive rget, and richer share listing output with type and comments. (#1240, #2110, #2156)
    • mssqlclient.py:
      • Added workstation/application name options, linked-server RPC enable/disable commands, custom CBT support, and better MSSQL shell behavior. (#2074, #2098, #2134)
    • ntfs-read.py:
      • Improved INDEX_ROOT file listing, sparse file support, error handling, and read correctness. (#2106)
    • tstool.py:
      • Added Remote Desktop Shadowing support. (#2064)
    • badsuccessor.py:
      • Fixed ACE filtering and ObjectType GUID parsing that could cause false negatives when searching OUs. (#2170)
    • GetUserSPNs.py:
      • Added an option to avoid forcing RC4-HMAC when requesting a TGT. (#2141)
    • owneredit.py:
      • Improved distinguished name lookup behavior. (#2162)
    • exchanger.py:
      • Added Basic Authentication support. (#2077)
    • reg.py:
      • Added support for persistent registry key creation. (#2113)

  3. New examples

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump impacket from 0.13.0 to 0.13.1
4bb157c 
Bumps [impacket](https://github.com/fortra/impacket) from 0.13.0 to 0.13.1.
- [Release notes](https://github.com/fortra/impacket/releases)
- [Changelog](https://github.com/fortra/impacket/blob/master/ChangeLog.md)
- [Commits](https://github.com/fortra/impacket/commits)

---
updated-dependencies:
- dependency-name: impacket
  dependency-version: 0.13.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github May 20, 2026

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants