tag:support.arachni-scanner.com,2012-07-01:/discussions/questions/11086-sharepoint-2013Arachni: Discussion 2015-03-05T17:56:48Ztag:support.arachni-scanner.com,2012-07-01:Comment/355471202014-12-15T14:59:06Z2014-12-15T14:59:06ZSharepoint 2013<div><p>Hello,</p>
<p>I'm not familiar with Sharepoint but I guess you can script any
login procedure: <a href=
"http://support.arachni-scanner.com/kb/general-use/logging-in-and-maintaining-a-valid-session#login-script-plugin">
http://support.arachni-scanner.com/kb/general-use/logging-in-and-ma...</a></p>
<p>Does that help?</p></div>Tasos Laskostag:support.arachni-scanner.com,2012-07-01:Comment/355471202014-12-15T15:02:00Z2014-12-15T15:02:01ZSharepoint 2013<div><p>I know that... so probably the proxy will be the best
choice.</p></div>bewelltag:support.arachni-scanner.com,2012-07-01:Comment/355471202014-12-15T15:03:53Z2014-12-15T15:03:53ZSharepoint 2013<div><p>How does the Sharepoint login differ usual cases?</p></div>Tasos Laskostag:support.arachni-scanner.com,2012-07-01:Comment/355471202014-12-15T15:10:44Z2014-12-15T15:10:45ZSharepoint 2013<div><p>it gives you a pop-up prompting for the username/password, after
that those values are hashed and put into Authorization header as
NTLM + hash</p></div>bewelltag:support.arachni-scanner.com,2012-07-01:Comment/355471202014-12-15T15:19:38Z2014-12-15T15:19:38ZSharepoint 2013<div><p>So it uses NTLM authentication, if it's NTLMv1 then configuring
the HTTP username/password options should be enough. NTLMv2 isn't
supported.</p></div>Tasos Laskos