3 files changed, 24 insertions, 3 deletions

diff --git a/Inveigh.ps1 b/Inveigh.ps1
index a5c7542..5f6a698 100644
--- a/Inveigh.ps1
+++ b/Inveigh.ps1
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..441f9f5
--- /dev/null
+++ b/README.md
@@ -0,0 +1,21 @@
+# Inveigh
+Inveigh is a PowerShell LLMNR/NBNS spoofer designed to assist penetration testers that find themselves restricted to a Windows system. This can commonly occur while performing phishing attacks, USB attacks, VLAN pivoting, or even restrictions from the client.
+
+# Notes
+1. Currently supports IPv4 LLMNR/NBNS spoofing and HTTP/SMB NTLMv1/NTLMv2 challenge/response capture.
+2. LLMNR/NBNS spoofing is performed through sniffing and sending with raw sockets. 
+3. SMB captures are performed through sniffing.
+4. HTTP captures are performed with a listener.
+5. The local LLMNR/NBNS services do not need to be disabled on the client system. 
+6. LLMNR/NBNS spoofer will point victims to host system's SMB service, keep account lockout scenarios in mind.
+7. Ensure that the LMMNR,NBNS,SMB,HTTP ports are open within any local firewall.
+8. Output files will be created in current working directory.
+9. If you copy/paste challenge/response captures from output window for password cracking, remove carriage returns.
+10. Code is proof of concept level and may not work under some scenarios.
+
+# Usage
+With default settings  
+Inveigh.ps1 -i localip
+
+With features enabled/disabled  
+Inveigh.ps1 -i localip -LLMNR Y/N -NBNS Y/N -HTTP Y/N -SMB Y/N
diff --git a/TODO.md b/TODO.md
index f21b068..41069a1 100644
--- a/TODO.md
+++ b/TODO.md
@@ -1,7 +1,7 @@
 ## To Do
 - [ ] Code cleanup
-- [ ] Add NBNS spoofer
-- [ ] Add ability to capture SMB NTLMv1 challenge/responses
-- [ ] Add ability to capture SMB LM challenge/responses
+- [x] Add NBNS spoofer
+- [x] Add ability to capture NTLMv1 challenge/responses
+- [ ] Add ability to capture LM challenge/responses
 - [x] Add HTTP for challenge/response captures
 - [ ] Add HTTPS for challenge/response captures