infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,987 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

79 Commits (006d5d51fcf0b09884d384dd69ab2fb1d671b329)

Author SHA1 Message Date
HD Moore 006d5d51fc Fixes #674 by adding 100-continue support 
git-svn-id: file:///home/svn/framework3/trunk@7799 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-10 16:54:27 +00:00
James Lee 6bd2e7f5b4 dup http resource so modules don't inadvertantly modify it 
git-svn-id: file:///home/svn/framework3/trunk@7608 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-25 06:45:14 +00:00
James Lee a3c020fef2 more uninitialized var warnings 
git-svn-id: file:///home/svn/framework3/trunk@7495 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-13 22:11:52 +00:00
HD Moore 737dc327a3 Fixes #435. Resolves a long-standing issue where datastore entries with a default of 'false' were being ignored. 
git-svn-id: file:///home/svn/framework3/trunk@7334 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-03 18:09:05 +00:00
HD Moore 3cf4329335 Updates the autopwn matching algorithm to use multiple ports and service names 
git-svn-id: file:///home/svn/framework3/trunk@7298 4d416f70-5f16-0410-b530-b9f4589650da
 2009-10-28 18:04:50 +00:00
HD Moore 5e137e92fd Fixes #381. To scan for TLSv1 only services, set SSLVersion TLS1 
git-svn-id: file:///home/svn/framework3/trunk@7282 4d416f70-5f16-0410-b530-b9f4589650da
 2009-10-26 19:48:15 +00:00
HD Moore 27192b303b Fixes #270. Allow the user to set BasicAuthUser and BasicAuthPass in order to authenticate using the HTTP mixin 
git-svn-id: file:///home/svn/framework3/trunk@7175 4d416f70-5f16-0410-b530-b9f4589650da
 2009-10-17 06:20:14 +00:00
kris efe44ba6b5 bleh.. a bit of tabs vs spaces 
git-svn-id: file:///home/svn/framework3/trunk@7171 4d416f70-5f16-0410-b530-b9f4589650da
 2009-10-16 18:27:18 +00:00
James Lee 98d0b62942 make report_user_agent return something useful and fix a bug using the wrong column name 
git-svn-id: file:///home/svn/framework3/trunk@6880 4d416f70-5f16-0410-b530-b9f4589650da
 2009-07-23 06:18:34 +00:00
James Lee 739207bf4a merge browser_autopwn back into trunk. This changes the database schema slightly, so make sure to db_destroy and db_create before using the database features. 
git-svn-id: file:///home/svn/framework3/trunk@6873 4d416f70-5f16-0410-b530-b9f4589650da
 2009-07-22 20:14:35 +00:00
James Lee 529ded22ae reverting last commit; somebody didn't cross their fingers 
git-svn-id: file:///home/svn/framework3/trunk@6847 4d416f70-5f16-0410-b530-b9f4589650da
 2009-07-19 20:48:47 +00:00
James Lee c3dc1ecb55 reintegrate browser_autopwn into trunk; cross your fingers and hope this works 
git-svn-id: file:///home/svn/framework3/trunk@6846 4d416f70-5f16-0410-b530-b9f4589650da
 2009-07-19 17:27:36 +00:00
HD Moore 5fb316b383 Integrates L4teral's JS encoder/encrypter 
git-svn-id: file:///home/svn/framework3/trunk@6784 4d416f70-5f16-0410-b530-b9f4589650da
 2009-07-13 22:17:11 +00:00
HD Moore 1c11bbb12d Dont default to global, breaks in-module threading of send_request_cgi 
git-svn-id: file:///home/svn/framework3/trunk@6620 4d416f70-5f16-0410-b530-b9f4589650da
 2009-06-03 05:05:29 +00:00
HD Moore a2bc8d928c Removing the call to set evasions, looks like this was more broken that I realized 
git-svn-id: file:///home/svn/framework3/trunk@6350 4d416f70-5f16-0410-b530-b9f4589650da
 2009-03-17 15:19:00 +00:00
HD Moore 2edc71ca05 Correct the http mixin to call the right evasion method 
git-svn-id: file:///home/svn/framework3/trunk@6349 4d416f70-5f16-0410-b530-b9f4589650da
 2009-03-17 14:56:20 +00:00
James Lee f3a7515a0a more whitespace cleanup 
git-svn-id: file:///home/svn/framework3/trunk@6323 4d416f70-5f16-0410-b530-b9f4589650da
 2009-03-08 23:05:26 +00:00
James Lee 7384a7aed8 more accurate comments, whitespace cleanup 
git-svn-id: file:///home/svn/framework3/trunk@6322 4d416f70-5f16-0410-b530-b9f4589650da
 2009-03-08 23:02:53 +00:00
James Lee 96c8f6127c Replace += with << for Strings in a bunch of places. 
git-svn-id: file:///home/svn/framework3/trunk@6318 4d416f70-5f16-0410-b530-b9f4589650da
 2009-03-08 07:55:47 +00:00
James Lee 959191cb8c add heap spray function to HttpServer::HTML mixin 
git-svn-id: file:///home/svn/framework3/trunk@6107 4d416f70-5f16-0410-b530-b9f4589650da
 2009-01-10 05:48:19 +00:00
HD Moore 35e754c379 Remove the protected declaration before autofilter 
git-svn-id: file:///home/svn/framework3/trunk@5945 4d416f70-5f16-0410-b530-b9f4589650da
 2008-11-18 15:13:27 +00:00
Ramon de C Valle f124597a56 Code cleanups 
git-svn-id: file:///home/svn/framework3/trunk@5773 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-19 21:03:39 +00:00
James Lee 36a06e7576 initial commit of php findsock. This patch makes all http connections global and removes the "close if (!pipelining)" checks, so beware of bugs. 
git-svn-id: file:///home/svn/framework3/trunk@5678 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-24 04:41:51 +00:00
HD Moore 3cf81f257e Ensure that the Content-Type is set to text/html by default. 
git-svn-id: file:///home/svn/framework3/trunk@5615 4d416f70-5f16-0410-b530-b9f4589650da
 2008-08-08 02:37:54 +00:00
James Lee f5fe1e0305 fix escaping bug in js_base64 
git-svn-id: file:///home/svn/framework3/trunk@5611 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-30 02:56:21 +00:00
James Lee 2d344e64df browser_autopwn now works with mozilla_compareto, mozilla_navigatorjava, and firefox_queryinterface; increased reliability of OS and browser detection 
git-svn-id: file:///home/svn/framework3/trunk@5563 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-22 07:28:05 +00:00
James Lee 8800372e46 initial commit of browser_autopwn; 
revamp php payloads;
socks5 for IPv6 (untested)



git-svn-id: file:///home/svn/framework3/trunk@5546 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-01 01:44:56 +00:00
James Lee dfa0f6c0c4 More reliable reverse shell 
git-svn-id: file:///home/svn/framework3/trunk@5429 4d416f70-5f16-0410-b530-b9f4589650da
 2008-03-04 07:34:26 +00:00
HD Moore 7498562eb5 Add proxy support to HTTP mixin using modules. Fix socks proxy support. 
git-svn-id: file:///home/svn/framework3/trunk@5113 4d416f70-5f16-0410-b530-b9f4589650da
 2007-09-24 04:44:44 +00:00
HD Moore e4e674003d Correct the super() call in http's regenerate_payload() 
git-svn-id: file:///home/svn/framework3/trunk@5025 4d416f70-5f16-0410-b530-b9f4589650da
 2007-07-03 13:40:45 +00:00
HD Moore ddadf74a85 Fix a typo that could break regenerate_payload 
git-svn-id: file:///home/svn/framework3/trunk@5022 4d416f70-5f16-0410-b530-b9f4589650da
 2007-07-03 04:38:56 +00:00
HD Moore a21ec0a73c Updating the php_include_url function to figure out the server address a little bit better. 
git-svn-id: file:///home/svn/framework3/trunk@5019 4d416f70-5f16-0410-b530-b9f4589650da
 2007-07-03 04:26:28 +00:00
HD Moore d0b15d3d72 Lots of SMB fun, all preparation for Black Hat talk :-) More to come... 
git-svn-id: file:///home/svn/framework3/trunk@5015 4d416f70-5f16-0410-b530-b9f4589650da
 2007-07-03 04:20:50 +00:00
Matt Miller a319b8e582 got rid of duplicated code in browser exploits, fixes #71 
git-svn-id: file:///home/svn/framework3/trunk@4642 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-04 02:04:37 +00:00
Matt Miller b74311c71d initial integration of alex's heaplib, and a port of the keyframe exploit 
git-svn-id: file:///home/svn/framework3/trunk@4635 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-03 07:35:54 +00:00
Matt Miller f9d8c4e820 modifications to support using an explicit target to regen payloads 
git-svn-id: file:///home/svn/framework3/trunk@4602 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-01 21:21:10 +00:00
HD Moore 9c3bfaeee4 Imported the OLE modules from ruby-msg (GPLv2) 
git-svn-id: file:///home/svn/framework3/trunk@4541 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-20 16:49:34 +00:00
HD Moore 547ec3c6c6 This patch adds header folding, fixed hex-random and u-random encoding, fake uri end, fake uri parameters. This fixes #16, the remaining two options (chunked and pipelining), will be added in a future version. 
git-svn-id: file:///home/svn/framework3/trunk@4513 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-10 05:58:14 +00:00
HD Moore 41809d5f0a Rescue Timeout and Runtime errors from the HTTP client. This fixes #42. 
git-svn-id: file:///home/svn/framework3/trunk@4512 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-10 03:51:58 +00:00
Matt Miller c61e0e8931 change the behavior of nil non-required options, fixes #49 
git-svn-id: file:///home/svn/framework3/trunk@4509 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-09 06:12:28 +00:00
HD Moore e6f221ad80 Major updates to the HTTP api, re-addition of HTTP evasion, see #16 
git-svn-id: file:///home/svn/framework3/trunk@4506 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-08 14:08:41 +00:00
HD Moore 88cc653478 The HTTP api now catches SIGPIPEs and just returns a nil response 
git-svn-id: file:///home/svn/framework3/trunk@4483 4d416f70-5f16-0410-b530-b9f4589650da
 2007-02-27 09:31:23 +00:00
HD Moore 7087457f9e A few more updates to the HTTP exploit mixin, still needs some work before it is completed 
git-svn-id: file:///home/svn/framework3/trunk@4481 4d416f70-5f16-0410-b530-b9f4589650da
 2007-02-27 09:15:53 +00:00
HD Moore 0012389ba0 Adds support for bind payloads in passive exploits 
git-svn-id: file:///home/svn/framework3/trunk@4281 4d416f70-5f16-0410-b530-b9f4589650da
 2007-01-18 03:51:15 +00:00
HD Moore 68274d6870 PHP tags are now added by the php_include handler and no longer a part of the payloads themselves 
git-svn-id: file:///home/svn/framework3/trunk@4254 4d416f70-5f16-0410-b530-b9f4589650da
 2007-01-05 03:31:18 +00:00
HD Moore 2bc1d4be18 Updates to the client API 
git-svn-id: file:///home/svn/framework3/trunk@4242 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-28 23:42:54 +00:00
HD Moore 804df25240 Initial overhaul of the HTTP client api. This removes nearly all of the client evasion methods, but leaves the code in a great state to reimplement them with less issues. 
git-svn-id: file:///home/svn/framework3/trunk@4222 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-19 07:11:55 +00:00
HD Moore ffc626675b Initial support for PHP payloads 
git-svn-id: file:///home/svn/framework3/trunk@4215 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-17 07:57:51 +00:00
HD Moore 6fef5abeda Resolve a crash bug in the send_response_html() method 
Add the MS06_013 CreateTextRange() exploit



git-svn-id: file:///home/svn/framework3/trunk@4208 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-17 02:34:27 +00:00
HD Moore ea204ee0ff API change for the HTML mixin, the send_response method is no longer overloaded, instead exploits must call send_response_html to enable HTML evasion. The old method caused problems when a exploit needed HTML and non-HTML response capabilities 
git-svn-id: file:///home/svn/framework3/trunk@4173 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-10 03:26:53 +00:00