File tree 1 file changed +8
-2
lines changed
pypykatz/lsadecryptor/packages/wdigest
1 file changed +8
-2
lines changed Original file line number Diff line number Diff line change @@ -35,11 +35,17 @@ def get_template(sysinfo):
3535 template .primary_offset = 48
3636 template .list_entry = PWdigestListEntry
3737
38- elif sysinfo .buildnumber >= WindowsMinBuild .WIN_VISTA .value :
38+ elif WindowsMinBuild . WIN_VISTA . value <= sysinfo .buildnumber < WindowsMinBuild .WIN_11 .value :
3939 template .signature = b'\x48 \x3b \xd9 \x74 '
4040 template .first_entry_offset = - 4
4141 template .primary_offset = 48
4242 template .list_entry = PWdigestListEntry
43+
44+ elif sysinfo .buildnumber >= WindowsMinBuild .WIN_11 .value :
45+ template .signature = b'\x48 \x3b \xd8 \x74 '
46+ template .first_entry_offset = - 4
47+ template .primary_offset = 48
48+ template .list_entry = PWdigestListEntry
4349
4450 else :
4551 raise Exception ('Could not identify template! Architecture: %s sysinfo.buildnumber: %s' % (sysinfo .architecture , sysinfo .buildnumber ))
@@ -114,4 +120,4 @@ def __init__(self, reader):
114120 self .usage_count = ULONG (reader )
115121 reader .align () #8?
116122 self .this_entry = PWdigestListEntry (reader )
117- self .luid = LUID (reader ).value
123+ self .luid = LUID (reader ).value
You can’t perform that action at this time.
0 commit comments