1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
|
# python-ntlm
Python library that provides NTLM support, including an authentication
handler for urllib2.
This library allows you to retrieve content from (usually corporate)
servers protected with windows authentication (NTLM) using the python
urllib2.
## Python 3 Support
There is work going on to port the library to python 3, you can find it
in the python30 directory. (at this time it seems to work as good as the
python 2 library)
# Usage
## Simple example
```python
import urllib2
from ntlm import HTTPNtlmAuthHandler
user = 'DOMAIN\User'
password = "Password"
url = "http://ntlmprotectedserver/securedfile.html"
passman = urllib2.HTTPPasswordMgrWithDefaultRealm()
passman.add_password(None, url, user, password)
# create the NTLM authentication handler
auth_NTLM = HTTPNtlmAuthHandler.HTTPNtlmAuthHandler(passman)
# create and install the opener
opener = urllib2.build_opener(auth_NTLM)
urllib2.install_opener(opener)
# retrieve the result
response = urllib2.urlopen(url)
print(response.read())
```
## Extended Example
```python
import urllib2
from urlparse import urlparse, urlunparse
from ntlm import HTTPNtlmAuthHandler
user = 'DOMAIN\User'
password = "Password"
url = "http://ntlmprotectedserver/securedfile.html"
# determine a base_uri for which the username and password can be used
parsed_url = urlparse(self.href)
base_uri = urlunparse((parsed_url[0],parsed_url[1],"","","",""))
passman = urllib2.HTTPPasswordMgrWithDefaultRealm()
passman.add_password(None, base_uri, user, password)
# create the NTLM authentication handler
auth_NTLM = HTTPNtlmAuthHandler.HTTPNtlmAuthHandler(passman)
# other authentication handlers
auth_basic = urllib2.HTTPBasicAuthHandler(passman)
auth_digest = urllib2.HTTPDigestAuthHandler(passman)
# disable proxies (if you want to stay within the corporate network)
proxy_handler = urllib2.ProxyHandler({})
# create and install the opener
opener = urllib2.build_opener(proxy_handler, auth_NTLM, auth_digest,
auth_basic)
urllib2.install_opener(opener)
# retrieve the result
response = urllib2.urlopen(url)
print(response.read())
```
## Limitations
* A request using the `HTTPNtlmAuthHandler` has no HTTP status
* handling, for example: redirects are not handled by the opener, you
* must check and handle the response yourself.
# Resources
## Inspired by
* [http://sourceforge.net/projects/ntlmaps/ NTLM Authorization Proxy
* Server]
(Dmitri Rozmanov kindly allowed his code to be redistributed under
the LGPL)
The NTLM Authorization Proxy Server can be used to make applications
that do not support NTLM proxies use them anyway: "Opens up IIS
Proxy Servers using NTLM to non-Microsoft browsers, etc"
In contrast the python-ntlm library is used to make it possible for
python code to retrieve content from an NTLM protected server.
## References
* [MS-NLMP]:
* [http://download.microsoft.com/download/a/e/6/ae6e4142-aa58-45c6-8dcf-a657e5900cd3/%5BMS-NLMP%5D.pdf
* NT LAN Manager (NTLM) Authentication Protocol Specification]
* [MS-NTHT]:
* [http://download.microsoft.com/download/a/e/6/ae6e4142-aa58-45c6-8dcf-a657e5900cd3/%5BMS-NTHT%5D.pdf
* NTLM Over HTTP Protocol Specification]
* [http://www.blackhat.com/presentations/bh-asia-04/bh-jp-04-pdfs/bh-jp-04-seki.pdf
* Optimized Attack for NTLM2 Session Response]
|
