c31f70cfb6
Switch to METERPRETER_UA as intended
2012-07-02 00:02:47 -05:00
27bdf78a5a
Add support for user-agent control
2012-06-30 23:00:08 -05:00
414214eb9d
Permissions.
2012-06-28 11:42:37 -05:00
6ec990ed85
Merge branch 'Openfire-auth-bypass' of https://github.com/h0ng10/metasploit-framework into h0ng10-Openfire-auth-bypass
2012-06-27 23:09:26 +02:00
428ae21928
Changed readme.html file (was from the statistics plugin)
2012-06-26 12:03:52 -04:00
6cc8390da9
Module rewrite, included Java support, direct upload, plugin deletion
2012-06-26 11:56:44 -04:00
85faf53c5d
Compromise on MDM counter cache initialization
2012-06-25 13:52:48 -07:00
13b4cb7e88
Revert "Remove reset_column_information (breaks badly)"
...
This reverts commit 02e124a330
2012-06-25 13:52:48 -07:00
fce5ff00ca
Revert "Remove column reset - triggers issue with existing columns"
...
This reverts commit f479fae6aa
2012-06-25 13:52:47 -07:00
f479fae6aa
Remove column reset - triggers issue with existing columns
2012-06-25 10:20:48 -07:00
02e124a330
Remove reset_column_information (breaks badly)
2012-06-25 10:08:38 -07:00
4c0877954e
Rename migrations to avoid collisions during merge
2012-06-25 02:22:35 -05:00
3a40dac7d1
Merge branch 'master' into feature/vuln-info
2012-06-25 00:37:01 -05:00
6a91626d94
Permissions
2012-06-25 00:36:39 -05:00
348a0b8f6e
Merge branch 'master' into feature/vuln-info
2012-06-24 23:00:13 -05:00
75f1484d63
Respin of binaries to remove debug output
2012-06-24 13:40:27 -05:00
6e61878393
Respin of meterpreter bins (add Win 8 to sysinfo, fix a few bugs)
2012-06-24 13:27:10 -05:00
65197e79e2
added Exploit for CVE-2008-6508 (Openfire Auth bypass)
2012-06-24 07:35:38 -04:00
54309c3c3d
Merge branch 'armitage' of https://github.com/rsmudge/metasploit-framework into rsmudge-armitage
2012-06-24 02:25:38 -05:00
322e0766a1
Armitage 06.23.12
2012-06-23 13:03:55 -04:00
b891e868f5
Added actionscript and swf needed
2012-06-23 08:36:35 +02:00
d7d314862f
Need the trigger to actually make it work, duh!
2012-06-22 23:16:12 -05:00
572fb4cb0c
Permissions fix
2012-06-21 15:39:17 -05:00
f7ecc98923
Merge branch 'master' into feature/vuln-info
2012-06-20 13:34:53 -05:00
79fc053a2e
Merge branch 'module-CVE-2011-2110' of https://github.com/mrmee/metasploit-framework into mrmee-module-CVE-2011-2110
2012-06-19 22:05:07 -05:00
fcf42d3e7b
added adobe flashplayer array indexing exploit (CVE-2011-2110)
2012-06-20 12:52:37 +10:00
d5768080bf
Add a fail_message to attempts and fix bugs
2012-06-19 00:48:39 -05:00
ffdcea6a0a
Permissions, ignore
2012-06-18 18:12:51 -05:00
e8ad66b799
Exploit attempt tracking is mostly complete
2012-06-17 23:00:21 -05:00
8709473e72
Add fullname to modules, load mixins, fix platform
2012-06-17 11:57:33 -05:00
b4b1a4168e
Add missing module_detail_id's and references
2012-06-17 01:44:32 -05:00
e4fffc36de
Move to one to many instead of m2m for module_detail tracking
2012-06-17 01:21:38 -05:00
03b29fff68
Merge up the latest, does not automaticlly load
...
the module tree into the database right now.
2012-06-14 04:35:43 -05:00
a6070f8584
Tweak schema (type gets mangled by AR), add caching routine
2012-06-14 03:27:36 -05:00
1401ec0b19
Keep ID columns for record mgmt
2012-06-14 01:50:08 -05:00
80db388354
Fix up the schema relationships
2012-06-14 00:23:23 -05:00
2aa9de7f63
Fix the boolean definition
2012-06-13 22:16:59 -05:00
1bdd8dc533
Fix the constant
2012-06-13 22:15:58 -05:00
d48a99146f
Add the migration for new module_details tables
2012-06-13 22:07:56 -05:00
5922ec1f7a
Permissions
2012-06-12 15:20:25 -05:00
7a449bffe2
Permissions
2012-06-12 15:19:41 -05:00
6290bba71b
Merge branch 'master' into feature/vuln-info
2012-06-12 12:41:41 -05:00
21ea539648
Permissions
2012-06-12 11:50:28 -05:00
34ecc7fd18
Adding @schierlm 's AES encryption for Java
...
Tested with and without AES, works as advertised. Set an AESPassword,
get encryptification. Score.
Squashed commit of the following:
commit cca6c5c36ca51d585b8d2fd0840ba34776bc0668
Author: Michael Schierl <schierlm@gmx.de>
Date: Wed Apr 4 00:45:24 2012 +0200
Do not break other architectures
even when using `setg AESPassword`
commit 422d1e341b3865b02591d4c135427903c8da8ac5
Author: Michael Schierl <schierlm@gmx.de>
Date: Tue Apr 3 21:50:42 2012 +0200
binaries
commit 27368b5675222cc1730ac22e4b7a387b88d0d2b3
Author: Michael Schierl <schierlm@gmx.de>
Date: Tue Apr 3 21:49:10 2012 +0200
Add AES support to Java stager
This is compatible to the AES mode of the JavaPayload project.
I'm pretty sure the way I did it in the handlers (Rex::Socket::tcp_socket_pair())
is not the supposed way, but it works :-)
2012-06-11 16:13:25 -05:00
d975d1a236
Add counter caches for host_details, vuln_details, vuln_attempts
2012-06-10 17:15:53 -05:00
beefea6fb9
Merge branch 'master' into feature/vuln-info
2012-06-10 12:54:58 -05:00
9dcb3059f8
MDM update
2012-06-10 03:46:58 -05:00
7c8cb2d79e
Add vuln_attempts, track exploit attempts when a matching vuln exists.
...
This also fixes an issue with report_vuln() from exploited hosts not
setting the service correctly. This introduces a fail_reason method
to the exploit base class, which attempts to determine why an exploit
did not work (closed port, unreachable host, missing page, etc). There
is still quite a bit of work to do around this to finish it up.
2012-06-10 03:15:48 -05:00
4743c9fb33
Add MS12-005 (CVE-2012-0013) exploit
2012-06-10 01:08:28 -05:00
55bdbb6ec9
Merge branch 'master' into feature/vuln-info
2012-06-09 01:37:11 -05:00
HD Moore
Tod Beardsley
jvazquez-r7
h0ng10
sinn3r
Raphael Mudge
Steven Seeley
Michael Schierl