infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
26,027 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

26027 Commits (04541ac724cbf11a0801230cf9cb3274de020a03)

Author SHA1 Message Date
sinn3r 8f51fd0e45 Retabbed and reformatted 2014-07-14 14:39:34 -05:00
Christian Mehlmauer 144c6aecba
Added WPTouch fileupload exploit 2014-07-14 21:35:18 +02:00
William Vu 72c0c597bb
Land #3523, release fixes 
I didn't misspell it this time. :)
 2014-07-14 13:53:14 -05:00
William Vu a6739718a5
Land #3521, errant unit test removal 2014-07-14 13:49:07 -05:00
Tod Beardsley 6c595f28d7
Set up a proper peer method 2014-07-14 13:29:07 -05:00
dmaloney-r7 7184d2ed5e Merge pull request #107 from rapid7/feature/MSP-9704/pop3-module-refactor 
Refactor pop3_login
 2014-07-14 13:27:11 -05:00
David Bloom 72d9587a50 DbVisualizer stores the user database configuration in dbvis.xml 
This module retrieves the connections settings from this file
 2014-07-14 20:08:48 +02:00
dmaloney-r7 a76fe5402b Merge pull request #104 from rapid7/feature/MSP-10680/realm-key-fixes 
Feature/msp 10680/realm key fixes
 2014-07-14 12:21:00 -05:00
Tod Beardsley 96554a4967
Remove this errant test::unit test 2014-07-14 10:57:32 -05:00
Tod Beardsley 91ce942e41
Land #3285, wiki plugin by @kn0 2014-07-14 10:38:16 -05:00
Luke Imhoff dee6d9c106 Merge branch 'bug/MSP-10684-electro-installers' of rapid7.github.com:/rapid7/metasploit-framework-private into bug/MSP-10684-electro-installers 
MSP-10684
 2014-07-14 09:48:38 -05:00
Brandon Turner 20131781b4
Use realpath to resolve symlinks in MSF_ROOT 2014-07-14 09:42:49 -05:00
Luke Imhoff 73ee4ee870
Merge branch 'staging/electro-release' into bug/MSP-10684-electro-installers 
MSP-10684
 2014-07-14 09:33:11 -05:00
jvazquez-r7 31c447e217 Update binaries 2014-07-14 08:50:30 -05:00
David Bloom 667b1363f3 Delete dbvis_enum.rb 2014-07-14 10:57:53 +02:00
David Bloom 0ef0f6aae1 Update dbvis_enum.rb 2014-07-14 10:54:43 +02:00
David Bloom bcbb0b4fde dbvis connections gathering 
DbVisualizer stores the user database configuration in dbvis.xml.
This module retrieves the connections settings from this file.
 2014-07-14 10:49:20 +02:00
Trenton Ivey 68d69060fd Merge pull request #1 from todb-r7/pr3285-wiki 
Fix up #3285 (very minor changes)
 2014-07-13 20:19:25 -05:00
jvazquez-r7 31a615c828
Land #3517, @m-1-k-3's typo fix 2014-07-13 18:21:49 -05:00
Trevor Rosen b05b2657bc
Now importing creds dumps inside msf zips 
MSP-9948
 2014-07-13 11:07:01 -05:00
Michael Messner 1b7008dafa typo in name 2014-07-13 13:24:54 +02:00
James Lee e68dcdbb06
Refactor pop3_login 
Also adjusts timeout in the scanner class to account for Dovecot's
default "Authentication Penalty" delay.

See http://wiki2.dovecot.org/Authentication/Penalty
 2014-07-11 17:26:49 -05:00
William Vu 2fd7bcf8bf
Land #3514, report_note for scraper 2014-07-11 17:17:10 -05:00
William Vu 00bd540e41
Land #3512, counter for report_note 2014-07-11 17:16:35 -05:00
nodeofgithub 5d833cbb16 http_header report_note remove to_s 2014-07-11 17:14:45 -05:00
nodeofgithub 7e9eb84531 http_header report_note remove brackets, move rport 2014-07-11 17:14:45 -05:00
nodeofgithub a8ec733a3a Interpolate all the things! 2014-07-11 17:14:09 -05:00
nodeofgithub 4abe856fc1 Rescue http_header notes from getting truncated 
Seems that only one header line gets added to host notes, and the rest are thrown away. This adds the counter number to the type string, so that each header line entry is unique and correctly saved. I also added port in case you want headers from several ports on one host without the previous getting overwritten.

(scanning shodanhq.com)
----BEFORE----
msf auxiliary(http_header) > run -j
[*] Auxiliary module running as background job
msf auxiliary(http_header) >
[*] 162.159.245.38:80: requesting / via HEAD
[*] 162.159.245.38:80: deleted header Expires
[*] 162.159.245.38:80: CF-RAY: 1485d013ca880773-EWR
[*] 162.159.245.38:80: CACHE-CONTROL: max-age=15
[*] 162.159.245.38:80: CONNECTION: keep-alive
[*] 162.159.245.38:80: CONTENT-TYPE: text/html; charset=UTF-8
[*] 162.159.245.38:80: DATE: Fri, 11 Jul 2014 14:50:20 GMT
[*] 162.159.245.38:80: SERVER: cloudflare-nginx
[*] 162.159.245.38:80: SET-COOKIE: __cfduid=d3914e07fc681306bb53129adb3e6b1d41405090220122; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; HttpOnly
[+] 162.159.245.38:80: detected 7 headers
[*] Scanned 1 of 1 hosts (100% complete)

msf auxiliary(http_header) > notes
[*] Time: 2014-07-11 14:50:19 UTC Note: host=162.159.245.38 type=HTTP header data="SET-COOKIE: __cfduid=d3914e07fc681306bb53129adb3e6b1d41405090220122; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; HttpOnly"
msf auxiliary(http_header) >

----AFTER----
msf auxiliary(http_header) > run -j
[*] Auxiliary module running as background job
msf auxiliary(http_header) >
[*] 162.159.245.38:80: requesting / via HEAD
[*] 162.159.245.38:80: CF-RAY: 14869ad5c0970f57-FRA
[*] 162.159.245.38:80: CACHE-CONTROL: max-age=15
[*] 162.159.245.38:80: CONNECTION: keep-alive
[*] 162.159.245.38:80: CONTENT-TYPE: text/html; charset=UTF-8
[*] 162.159.245.38:80: DATE: Fri, 11 Jul 2014 17:08:45 GMT
[*] 162.159.245.38:80: EXPIRES: Fri, 11 Jul 2014 17:09:00 GMT
[*] 162.159.245.38:80: SERVER: cloudflare-nginx
[*] 162.159.245.38:80: SET-COOKIE: __cfduid=db2918126c4b49780b4669e88b72580521405098525082; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; HttpOnly
[+] 162.159.245.38:80: detected 8 headers
[*] Scanned 1 of 1 hosts (100% complete)

msf auxiliary(http_header) > notes
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.0 data="CF-RAY: 14869ad5c0970f57-FRA"
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.1 data="CACHE-CONTROL: max-age=15"
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.2 data="CONNECTION: keep-alive"
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.3 data="CONTENT-TYPE: text/html; charset=UTF-8"
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.4 data="DATE: Fri, 11 Jul 2014 17:08:45 GMT"
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.5 data="EXPIRES: Fri, 11 Jul 2014 17:09:00 GMT"
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.6 data="SERVER: cloudflare-nginx"
[*] Time: 2014-07-11 17:08:44 UTC Note: host=162.159.245.38 type=http.80.header.7 data="SET-COOKIE: __cfduid=db2918126c4b49780b4669e88b72580521405098525082; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; HttpOnly"
msf auxiliary(http_header) >
 2014-07-11 17:14:09 -05:00
Tod Beardsley 2c24cc5c00
Add .plugins to yardoc'able directories. 2014-07-11 14:23:01 -05:00
Tod Beardsley 53d941d4a8
Parens for readability 2014-07-11 14:22:47 -05:00
nodeofgithub 6ef69b4014 scraper report_note, remove eol whitespace 2014-07-11 21:21:56 +02:00
Tod Beardsley 174429eada
Test #3285 2014-07-11 14:10:01 -05:00
nodeofgithub ad46c37988 scraper report_note, remove unnecessary to_s 2014-07-11 21:08:35 +02:00
nodeofgithub 7a7d149dc5 scraper report_note, change note type string 2014-07-11 21:01:20 +02:00
Tod Beardsley e5d7dae016
Land #3513, Author name fixups from @jvazquez-r7 2014-07-11 13:58:38 -05:00
jvazquez-r7 867098827a
Land jvazquez-r7#17, @todb-r7's fix for one author address 2014-07-11 13:56:40 -05:00
Tod Beardsley b09fab13f0 Fix one flubbed author address 2014-07-11 13:50:37 -05:00
nodeofgithub 8b302cd472 Add report_note to scraper.rb 
Just a suggestion. I always personally modify this. I use it to scrape titles often, and i prefer it to be saved in notes rather than wmap results, because i find it easier to search and automatically add results to rhosts.
 2014-07-11 20:31:46 +02:00
nodeofgithub b834e7d3cb Update scraper.rb 2014-07-11 20:20:40 +02:00
nodeofgithub da67a63ad0 Add report_note to scraper.rb 
Just a suggestion. I always personally modify this. I use it to scrape titles often, and i prefer it to be saved in notes rather than wmap results, because i find it easier to search and automatically add results to rhosts.
 2014-07-11 20:07:48 +02:00
jvazquez-r7 8937fbb2f5 Fix email format 2014-07-11 12:45:23 -05:00
William Vu 79603c9a73
Land #3505, a bunch o' Linux post module fixes 2014-07-11 12:39:31 -05:00
Tod Beardsley ced16acf9f
Land #3511, new Linux Meterpreter bins 2014-07-11 12:17:08 -05:00
jvazquez-r7 eb9d2f130c Change title 2014-07-11 12:03:09 -05:00
James Lee af2e29612b
Merge branch 'staging/electro-release' into feature/MSP-10680/realm-key-fixes 2014-07-11 12:02:40 -05:00
James Lee 30e3ae7459
Merge branch 'staging/electro-release' into feature/MSP-10686/stop-after-user-success 2014-07-11 12:02:02 -05:00
jvazquez-r7 6de2be6ba7
Land #3503, @m-1-k-3's exploit for DLink info.cgi bof OSVDB-108249 2014-07-11 12:01:17 -05:00
jvazquez-r7 a356a0e818 Code cleanup 2014-07-11 12:00:31 -05:00
jvazquez-r7 6fd1ff6870 Merge master 2014-07-11 11:40:39 -05:00
jvazquez-r7 d637171ac0 Change module filename 2014-07-11 11:39:32 -05:00