2005-09-26 18:23:53 +00:00
|
|
|
The following things are required for the December alpha release:
|
|
|
|
|
|
|
|
- rex
|
2005-09-29 20:18:24 +00:00
|
|
|
X - post-exploitation
|
|
|
|
X - meterpreter
|
|
|
|
X - pivoting
|
|
|
|
X - portfwd command
|
2005-09-26 18:23:53 +00:00
|
|
|
- networking
|
2005-09-30 05:59:44 +00:00
|
|
|
X - switch board routing table for pivoting
|
2005-09-30 07:12:32 +00:00
|
|
|
X - meterpreter 'comm' support
|
2005-09-26 18:32:24 +00:00
|
|
|
- proxy 'comm' support
|
2005-09-26 18:23:53 +00:00
|
|
|
- asm
|
2005-09-26 18:43:40 +00:00
|
|
|
- block dependencies (req'd for shikata)
|
|
|
|
- block permutation generation (req'd for shikata)
|
2005-09-26 18:52:20 +00:00
|
|
|
- text
|
2005-09-30 07:12:32 +00:00
|
|
|
X - create_pattern, pattern_offset
|
|
|
|
X - base64
|
|
|
|
X - consider extending String
|
2005-09-26 18:23:53 +00:00
|
|
|
- framework-core
|
|
|
|
- modules
|
2005-10-10 00:30:14 +00:00
|
|
|
X - reloading
|
2005-09-26 18:23:53 +00:00
|
|
|
- compatibility filtering (keys)
|
2005-10-01 06:22:25 +00:00
|
|
|
X - description sanitation (strip lines/etc)
|
2005-09-26 18:23:53 +00:00
|
|
|
- payloads
|
2005-10-01 06:22:25 +00:00
|
|
|
X - meta information
|
|
|
|
X - stager/stage calling conventions
|
|
|
|
X - stack requirements
|
2005-09-30 07:12:32 +00:00
|
|
|
X - make payload prepend target specific
|
2005-10-02 03:21:26 +00:00
|
|
|
X - sessions
|
|
|
|
X - logging session activity
|
2005-09-26 18:23:53 +00:00
|
|
|
- modules needing ports (above other modules)
|
|
|
|
- encoders
|
|
|
|
- shikata
|
2005-10-02 19:33:25 +00:00
|
|
|
X - nops
|
|
|
|
X - opty2
|
2005-09-26 18:23:53 +00:00
|
|
|
- payloads
|
|
|
|
- mac os x payloads
|
2005-09-26 18:32:24 +00:00
|
|
|
- solaris payloads
|
2005-09-26 18:52:20 +00:00
|
|
|
- bsd payloads
|
2005-09-26 18:23:53 +00:00
|
|
|
- user interfaces
|
|
|
|
- general
|
2005-10-02 07:58:26 +00:00
|
|
|
X - add concept of EVASION option (high, normal, low)
|
2005-10-02 05:48:05 +00:00
|
|
|
X - logging improvements
|
|
|
|
X - provide log file setting interface
|
2005-10-01 09:10:41 +00:00
|
|
|
X - log by default in the LogDir
|
2005-10-02 05:48:05 +00:00
|
|
|
X - msfcli
|
2005-09-26 18:23:53 +00:00
|
|
|
- msfweb
|
2005-10-01 09:10:56 +00:00
|
|
|
X - msfpayload
|
2005-10-01 21:26:17 +00:00
|
|
|
X - msfencode
|
2005-09-26 18:52:20 +00:00
|
|
|
- msfconsole
|
|
|
|
- spawn web-server from within msfconsole (msfweb instance)
|
2005-09-26 21:02:19 +00:00
|
|
|
- irb mode
|
|
|
|
- running 'msf scripts'
|
2005-09-26 21:45:45 +00:00
|
|
|
- testing framework
|
|
|
|
- framework core
|
|
|
|
- handlers
|
|
|
|
- framework modules
|
|
|
|
- exploits
|
|
|
|
- payloads
|
|
|
|
- encoders
|
|
|
|
- nops
|
|
|
|
- recon
|
|
|
|
- framework sessions
|
|
|
|
- shell
|
|
|
|
- meterpreter
|
2005-09-26 21:49:32 +00:00
|
|
|
- documentation
|
|
|
|
- rex
|
|
|
|
- framework-core
|
|
|
|
- framework-base
|
|
|
|
- module interfaces
|
2005-09-26 18:43:40 +00:00
|
|
|
|
|
|
|
The following things should be implemented both as protocols and as exploit
|
|
|
|
mixins to encourage code re-use:
|
|
|
|
|
|
|
|
- ftp
|
|
|
|
- backup agent protocols
|
|
|
|
- CA brightstor
|
|
|
|
- Arkeia
|
|
|
|
- mssql
|
|
|
|
- sunrpc
|
|
|
|
- xdr
|
|
|
|
- jbase
|
|
|
|
- oracle
|
2005-09-26 18:52:20 +00:00
|
|
|
|
|
|
|
Things that would be useful to have completed, but not a requirement:
|
|
|
|
|
|
|
|
- rex
|
|
|
|
- exploitation
|
|
|
|
- format string generator
|
2005-09-26 21:44:57 +00:00
|
|
|
- opcodedb client (return addr pooling)
|
|
|
|
- networking
|
|
|
|
- msfd 'comm' support
|
2005-09-26 18:52:20 +00:00
|
|
|
- modules
|
|
|
|
- payloads
|
|
|
|
- implement 'reliable' stagers with a higher rating so that
|
2005-09-26 19:34:47 +00:00
|
|
|
if there is enough room, reliable stagers can be used
|
|
|
|
- recon
|
|
|
|
- basic range/port scanner
|
|
|
|
- basic service identifier
|
|
|
|
- basic OS fingerprinting
|
2005-10-02 05:48:05 +00:00
|
|
|
- framework-core
|
|
|
|
- handler sharing
|
|
|
|
- exploits using the same payload/handler can share (ref count)
|
2005-09-26 19:34:47 +00:00
|
|
|
- framework-base
|
|
|
|
- event correlation
|
|
|
|
- recon events correlations
|
2005-09-26 21:37:22 +00:00
|
|
|
- user interfaces
|
|
|
|
- msfd
|
|
|
|
- daemon interface, provides command line interaction and proxying
|
|
|
|
- support authentication
|
|
|
|
- support SSL
|