fbbaaf2e2a
Fix spaces and module description
2014-07-21 13:01:18 -05:00
a41768fd7d
Correct DbVisualizer title name
...
I think "DbVis Software" is the name of the company and the product
itself is called DbVisualizer.
Also fixed the description on the WPTouch module.
2014-07-21 12:35:01 -05:00
8fe508207c
Merge Meatballs' gpp_again pull into new branch
2014-07-19 11:10:14 -05:00
c59d72b0c6
Land #3530 - dbvis database administrator
2014-07-17 14:36:34 -05:00
6d35867f7f
Update module description
2014-07-17 14:24:57 -05:00
8e7361d952
Fix indent again
2014-07-17 14:12:04 -05:00
aed8af3abc
Retabbed
2014-07-17 14:03:27 -05:00
d6ab418d6f
Fix spaces
2014-07-17 13:52:00 -05:00
b4e68a7c25
Update dbvis_query.rb
2014-07-17 19:21:35 +02:00
0f92b73f1a
Update dbvis_add_db_admin.rb
2014-07-17 10:14:28 +02:00
561ef427cc
Update dbvis_query.rb
2014-07-17 10:13:58 +02:00
60c71b2681
Update dbvis_add_db_admin.rb
2014-07-17 10:11:13 +02:00
8f9a1e485c
Delete dbvis_query.rb
2014-07-17 08:05:18 +02:00
1c8cac359c
Added video link
2014-07-17 08:02:27 +02:00
7bee4db1d7
dbvis_query.rb add
2014-07-17 07:48:17 +02:00
bebf11c969
Resolves some Login::Status migration issues
...
MSP-10730
2014-07-16 21:52:08 -05:00
4a25bb4247
Update dbvis_add_db_admin.rb
2014-07-17 02:01:50 +02:00
25f74b79b8
Land #3484 , bad pack/unpack specifier fix
2014-07-16 14:52:23 -05:00
52bdc5364c
Update dbvis_query.rb
2014-07-16 18:52:27 +02:00
200c122ecd
Update dbvis_query.rb
2014-07-16 18:48:15 +02:00
31e38cee23
Update dbvis_add_db_admin.rb
2014-07-16 18:45:38 +02:00
5f38ad5e10
Update dbvis_add_db_admin.rb
2014-07-16 18:30:23 +02:00
c3b87e2e6c
Update rigth on dbviscmd check
2014-07-16 18:27:19 +02:00
52a29856b3
Merge branch 'master' into staging/electro-release
...
Conflicts:
Gemfile
Gemfile.lock
2014-07-16 09:38:44 -05:00
90932116f8
Update dbvis_query.rb
...
Minor changes
2014-07-16 15:44:48 +02:00
b4aca68406
Update dbvis_query.rb
2014-07-16 15:10:07 +02:00
17b2169b9d
Create dbvis_query.rb
...
Dbvisulaizer offers a command line functionality to execute SQL pre-configured databases (With GUI).
The remote database can be accessed from the command line without the need to authenticate.
The module abuses this functionality to query the remote database and store the result.
2014-07-16 14:51:24 +02:00
b602fc89a3
Update dbvis_add_db_admin.rb
...
Corrections
2014-07-16 13:42:58 +02:00
875c024243
create dbvis_add_db_admin.rb
...
Dbvisulaizer offers a command line functionality to execute SQL pre-configured databases (With GUI).
The remote database can be accessed from the command line without the need to authenticate.
The module abuses this functionality to create an administrator in the database if DB user rights allow it.
2014-07-15 21:43:14 +02:00
1d6f088eab
Pass msftidy
2014-07-15 11:31:37 -05:00
526538ecd6
Added dbvis version find and print
2014-07-15 15:04:46 +02:00
97dcc56225
Update dbvis_enum.rb
2014-07-15 14:23:40 +02:00
400b0f4276
parse url to report host in old config
2014-07-15 14:21:09 +02:00
f3d953f829
Old config file update
...
Added functions to parse old and new config files.
2014-07-15 14:00:29 +02:00
ac3d453002
Update dbvis_enum.rb
2014-07-15 12:33:07 +02:00
a53341f520
Added compatibility with dbvis <= 6
...
Checking for "config" folder existence if "config70" is not found.
2014-07-15 12:14:38 +02:00
cc1ba265cb
Change module name for consistency
2014-07-14 15:49:19 -05:00
4d7bffd713
Change header
2014-07-14 15:45:17 -05:00
5a821cea9d
Account for EOFError condition
2014-07-14 15:27:40 -05:00
89a877031f
I mean "unless", not "if"
2014-07-14 15:24:53 -05:00
bec32a01ab
For for missing an end
2014-07-14 15:17:54 -05:00
cecdcef2e2
+ not preferred
2014-07-14 15:14:54 -05:00
0737deb2a3
Remove the last exception handler
...
We're already checking the file path with file?(), so we don't need
to use exception handling for this task anymore.
2014-07-14 15:02:23 -05:00
8fe3f1a077
File should be checked for existence before reading
2014-07-14 15:01:03 -05:00
20e5803592
Author's Twitter handle should be a comment
...
msfconsole treats whatever is in <> as the author's email, not
twitter handle
2014-07-14 14:57:36 -05:00
3b6947c1d7
Use Rex to check IPv4 instead of using resolv
2014-07-14 14:56:38 -05:00
b5e556519b
Change = to ==
...
This is an if condition, not an assignment
2014-07-14 14:53:27 -05:00
8f51fd0e45
Retabbed and reformatted
2014-07-14 14:39:34 -05:00
72d9587a50
DbVisualizer stores the user database configuration in dbvis.xml
...
This module retrieves the connections settings from this file
2014-07-14 20:08:48 +02:00
667b1363f3
Delete dbvis_enum.rb
2014-07-14 10:57:53 +02:00
0ef0f6aae1
Update dbvis_enum.rb
2014-07-14 10:54:43 +02:00
bcbb0b4fde
dbvis connections gathering
...
DbVisualizer stores the user database configuration in dbvis.xml.
This module retrieves the connections settings from this file.
2014-07-14 10:49:20 +02:00
e5d7dae016
Land #3513 , Author name fixups from @jvazquez-r7
2014-07-11 13:58:38 -05:00
8937fbb2f5
Fix email format
2014-07-11 12:45:23 -05:00
62a2f1dc0a
Credential -> Model for realm key constants
2014-07-10 14:30:25 -05:00
2cd9577278
Fix table printing.
2014-07-09 21:46:34 -05:00
37f159d80a
corrections based on feedback
2014-07-09 09:54:04 -05:00
42823fe15e
Test download_exec with linux meterpreter
2014-07-09 09:41:10 -05:00
f4c6505351
Test mount_cifs_creds on linux meterpreter
2014-07-09 09:20:30 -05:00
14b218dce5
Make hashdump compatible with meterpreter
2014-07-09 08:48:20 -05:00
73fdc06d1d
Fix enum_xchat to work with meterpreter
2014-07-09 08:37:17 -05:00
b47650580a
Fix bugs
2014-07-08 16:51:39 -05:00
a364172978
Add meterpreter as session type
2014-07-08 16:25:50 -05:00
c25c5f6806
Make linux gather post modules compatible with meterpreter
2014-07-08 16:23:57 -05:00
10713dd440
New module to build wordlist for use by JtR, oclhashcat, etc generated by pulling info from multiple Active Directory fields
2014-07-08 16:09:48 -05:00
aeda74f394
Merge branch 'master' into staging/electro-release
...
Conflicts:
Gemfile
Gemfile.lock
2014-07-07 16:41:23 -05:00
9fef2ca0f3
Description/whitespace changes (minor)
...
Four modules updated for the weekly release with minor cosmetic fixes.
- [ ] See all affected modules still load.
- [ ] See all affected modules have expected `info`
2014-07-07 12:39:05 -05:00
b6b5435a3d
Fix service pack parsing
2014-07-06 09:24:36 -05:00
43d65cc93a
Merge branch 'master' into feature/recog
...
Resolves conflicts:
Gemfile
data/js/detect/os.js
modules/exploits/android/browser/webview_addjavascriptinterface.rb
2014-07-06 09:17:44 -05:00
ef0826c319
Fix bugs
2014-07-04 20:46:50 +01:00
05c9757624
Merge in #3488
2014-07-04 20:37:09 +01:00
f1b7a9f421
Land #3488 - loot storage into the enum_services post module
2014-07-03 14:18:16 -05:00
2c999d3099
Better describe the problem
2014-07-03 13:06:19 -05:00
9aa3c75234
Do something for the shut-everything-up event handling practice
2014-07-03 13:04:56 -05:00
8a513058f6
Fix comments
2014-07-03 12:59:10 -05:00
ebeb9880a6
Favor "unless" over "if" for negative conditions
...
Please refer to https://github.com/bbatsov/ruby-style-guide
2014-07-03 12:55:13 -05:00
1d828a951f
string interpolation is preferred over concatenation
...
Please refer to https://github.com/bbatsov/ruby-style-guide
2014-07-03 12:46:56 -05:00
b781b87d74
Avoid unnecessary "if not"
2014-07-03 12:44:17 -05:00
9981a60b27
Add loot storage into the enum_service post module
2014-07-02 17:56:16 +01:00
83abf4b523
Add loot storage into the enum_service post module
2014-07-02 17:48:48 +01:00
f0cb235393
Merge branch 'feature/MSP-9735/gpp' into staging/electro-release
2014-07-01 14:28:15 -05:00
d341fc20a8
switch to use file? instead of stat
2014-07-01 00:58:17 -04:00
92963d4999
Fix broken NTLM hash format
2014-06-30 11:35:28 -05:00
c9b6c05eab
Fix improper use of host-endian or signed pack/unpack
...
Note that there are some cases of host-endian left, these
are intentional because they operate on host-local memory
or services.
When in doubt, please use:
```
ri pack
```
2014-06-30 02:50:10 -05:00
90fb07ba6d
Use downcase instead of upcase
2014-06-27 14:12:10 -05:00
aaeca5ce5b
Remove user field from PBKDF2 hash
2014-06-27 11:26:45 -05:00
6e1fa8ff5a
Refactor OS X hashdump creds
2014-06-26 15:10:35 -05:00
75be200b97
Merge branch 'feature/MSP-9714/jtr_aix' into staging/electro-release
2014-06-25 14:34:41 -05:00
db8692444f
Merge branch 'feature/MSP-9742/windows_autologin' into staging/electro-release
2014-06-25 04:31:57 -05:00
920bd1132e
replace manual packing with rex version
2014-06-25 00:16:28 -04:00
b875a803d0
fix aix hashdump
...
aix hashdump now creates NonreplayableHash objects
2014-06-24 15:23:37 -05:00
86869f0a81
remove extra parenthesis
2014-06-23 17:10:31 -04:00
8e37aea7c2
remove use of Q in packing and unpacking
2014-06-23 16:52:53 -04:00
a7d00f8144
simplify SHA1 code
2014-06-23 15:39:06 -04:00
77620193a1
remove character restriction on aes.final call
2014-06-23 15:37:19 -04:00
2d0b4b96ee
remove verbose exit if no salt found
2014-06-23 15:34:07 -04:00
275d8826bd
skype post module to extract password hash
2014-06-23 15:16:50 -04:00
0822713f2e
Hide unneeded options
2014-06-21 11:39:52 -05:00
cec3ca1df6
Improve detection of failed uploads
...
leaving aborted = nil was causing unexpected behavior when the upload failed. Explicitly setting aborted = false by default corrects this issue.
2014-06-21 10:12:17 -05:00
dbd0bc5fa2
Refactor windows_autologin creds
2014-06-19 14:38:31 -05:00
2b0bb608b1
Merge branch 'master' into staging/electro-release
2014-06-18 10:49:58 -05:00
8e1949f3c8
Added newline at EOF
2014-06-17 21:03:18 +02:00
19da7d551e
Kill newline (race @wvu-r7 on this)
...
See PR #3453
2014-06-16 11:46:08 -05:00
2aa26fa290
Minor spacing and word choice fixups
2014-06-16 11:40:21 -05:00
2cedee1aef
Merge pull request #74 from rapid7/feature/MSP-9744/autologin_password
...
Land #74 , @wvu-r7's refactor of osx autologin_password module.
2014-06-16 11:29:49 -05:00
29f5344d26
Drop merge of service_data, since it doesn't exist
2014-06-16 09:27:01 -05:00
07d8921b0b
Merge branch 'feature/MSP-9747/pgpass_creds' into staging/electro-release
2014-06-13 16:06:15 -05:00
d246e28cb3
Merge branch 'feature/MSP-9733/ftpnavigator' into staging/electro-release
2014-06-13 16:03:06 -05:00
2f1032d617
Add a missing comma and a comment
2014-06-13 15:48:14 -05:00
da74777570
Merge branch 'feature/MSP-9729/enum_cred_store' into staging/electro-release
2014-06-13 15:46:08 -05:00
72fdf6a607
Get rid of the rest of the service stuff
2014-06-13 15:45:13 -05:00
8be602e487
Merge branch 'feature/MSP-9734/ftpx' into staging/electro-release
2014-06-13 15:36:43 -05:00
1df7362774
Merge branch 'feature/MSP-9740/outlook' into staging/electro-release
2014-06-13 15:34:06 -05:00
81d47c4eb3
Merge branch 'feature/MSP-9730/epo_sql' into staging/electro-release
2014-06-13 15:31:41 -05:00
a3eea2f712
Add better handling of host and port
2014-06-13 15:22:09 -05:00
4593c309f5
Fix a dummy because I can't read
2014-06-12 19:10:24 -05:00
9d89730026
Use realm instead of private
2014-06-12 18:46:13 -05:00
277c9d68bc
Remove service_name, since it doesn't make sense
2014-06-12 18:37:00 -05:00
5d19410294
Don't use getaddress with session.session_host
2014-06-12 18:30:51 -05:00
3a1578bead
Don't use getaddress with session.session_host
2014-06-12 18:29:46 -05:00
3ad3ca88e5
Use session.session_host
2014-06-12 18:26:01 -05:00
a7416332e3
Merge branch 'feature/MSP-9732/flashfxp' into staging/electro-release
2014-06-12 18:02:20 -05:00
1969c8f018
Merge branch 'feature/MSP-9727/bulletproof_ftp' into staging/electro-release
2014-06-12 15:41:57 -05:00
ff2fc68d11
Fix busted vars
2014-06-12 15:37:06 -05:00
18a2e0928c
Merge branch 'feature/MSP-9737/wsftp_client' into staging/electro-release
2014-06-12 15:08:26 -05:00
96e492f572
Merge branch 'master' into staging/electro-release
2014-06-12 14:02:27 -05:00
86671796b7
Refactor autologin_password creds
2014-06-12 13:54:52 -05:00
d9d16e436a
Refactor epo_sql creds
2014-06-12 13:23:11 -05:00
74cb5cd79e
Fix bad copypasta
2014-06-12 13:17:12 -05:00
302e495451
Fix bad indent
2014-06-12 13:13:05 -05:00
89434a75c3
Fix bad indent
2014-06-12 13:10:50 -05:00
512395395b
Refactor pgpass_creds creds
2014-06-12 13:08:47 -05:00
c7bb0f1eb8
Fix bad copypasta
2014-06-12 12:59:35 -05:00
0d92ae08dd
Refactor enum_cred_store creds
2014-06-12 12:57:46 -05:00
429d85dc5d
Refactor flashfxp creds
2014-06-12 12:40:33 -05:00
e96a70a0f5
Refactor outlook creds
2014-06-12 12:31:12 -05:00
2a7227f443
Land #3427 - Adds webcam module for firefox privileged sessions on OSX
2014-06-11 22:27:25 -05:00
d5b32e31f8
Fix a typo where platform was 'windows' not 'win'
...
This was reported by dracu on freenode
2014-06-11 15:10:33 -05:00
8b35815ead
Move module to post/firefox/manage.
2014-06-11 15:10:22 -05:00
bdd86bf863
Add check for windows bug (RM#8810).
2014-06-11 15:09:52 -05:00
ac94f8e861
Refactor bulletproof_ftp creds
2014-06-11 13:04:58 -05:00
7147a88968
Refactor ftpnavigator creds
2014-06-11 12:57:45 -05:00
676afe391a
Refactor gpp creds
2014-06-11 12:48:00 -05:00
41ff4c3dce
Refactor ftpx creds
2014-06-11 12:35:15 -05:00
4d923a4809
Update to Rubyzip 1.X API
...
MSP-10004
`require 'zip'` instead of `'zip/zip'` and rename all classes to remove
redundant Zip prefix inside the Zip namespace.
2014-06-10 13:41:42 -05:00
9826a57429
Update coreftp.rb
2014-06-10 13:01:19 -05:00
dffc9b6852
Use the new hash syntax for consistency
2014-06-10 12:56:15 -05:00
d7fd7b8d1e
Refactor wsftp_client creds
2014-06-10 12:05:04 -05:00
2c8c4f238c
Merge pull request #49 from rapid7/feature/MSP-9746/ssh_creds
...
refactor ssh_creds post module
MSP-9746 #land
2014-06-10 09:32:11 -05:00
90c63efaeb
refactor ssh_creds post module
...
the sssh_ creds post module now stores
SSH Keys as Metasploit::Credential objects
2014-06-09 11:49:49 -05:00
a33de66da4
Fix transparent background, add VISIBLE option.
2014-06-06 16:52:00 -05:00
a45a5631f5
Make window invisible.
2014-06-06 16:40:55 -05:00
4a9f50bb60
Clean up some dead code.
2014-06-06 16:20:40 -05:00
7c762ad42c
Fix some minor bugs in webrtc stuff, inline API code.
2014-06-06 16:18:39 -05:00
534c20d5e6
refactor linux hashdump post module
...
linux hashdump now saves hashes as nonreplayable hash
credential objects
2014-06-06 15:21:47 -05:00
f660f557e5
Merge pull request #38 from rapid7/feature/msp-9738/winscp
...
Feature/msp 9738/winscp
2014-06-06 11:43:50 -05:00
ef8f237050
refactor filezilla_server
...
you know the score
2014-06-04 15:43:15 -05:00
28bf29980e
Merge branch 'master' into staging/electro-release
2014-06-04 10:21:08 -05:00
f2e1732878
Resolve hostnames before trying to save
2014-06-03 15:19:30 -05:00
0272593923
Merge pull request #32 from rapid7/feature/MSP-9736/vnc-post
...
refactor vnc post module
MSP-9736 #land
2014-06-03 13:53:42 -05:00
8abed15c77
Switch to Credential::* things
2014-06-03 11:48:08 -05:00
883976c6a8
Merge pull request #33 from rapid7/feature/MSP-9741/smartftp
...
refactor smartftp post module
MSP-9741 #land
2014-06-03 10:04:09 -05:00
9d9f3b5a03
Refactor to prepare for replacing report_auth_info
2014-06-02 18:07:44 -05:00
ea383b4139
Make print/descs/case consistent
2014-06-02 13:20:01 -05:00
5c745c4b9c
Merge pull request #31 from rapid7/feature/MSP-9728/coreftp
...
refactor coreFTP post module
MSP-9728 #land
2014-06-02 13:19:11 -05:00
9eb42cb80f
refactor smartftp post module
...
refactor the smartftp credential post module to use
Metasploit::Credential
2014-06-02 11:48:45 -05:00
34004908bb
Merge branch 'master' into staging/electro-release
...
Conflicts:
.ruby-version
2014-06-02 11:10:33 -05:00
d9fd77fba7
Merge pull request #29 from rapid7/feature/MSP-9739/mremote_refactor
...
Feature/msp 9739/mremote refactor
MSP-9739 #land
2014-06-02 11:05:20 -05:00
1e2ae16713
refactor vnc post module
...
this adds Metasploit::Credential functionality to
the post/windows/gather/credentials/vnc module
it also fixes a hostname resolution issue on windows
hashdump that could occur when the peerhost is an unresolved
hostname
2014-05-30 14:27:44 -05:00
86fec3a33f
refactor coreFTP post module
...
post/windows/gather/credentials/coreftp now uses
the new Metasploit::Credential methods
2014-05-30 14:06:31 -05:00
af569449d9
Code cleanup
...
Fixes based on response from @timwr and @kernelsmith.
Retested with Ubuntu and Metasploitable 2 to validate proper payload. Also tested for port conflict detection after the change. Returning false on line 243 simplifies the if logic on line 251/252.
2014-05-29 18:27:17 -05:00
0d07fb6c39
Land #2858 , @jiuweigui's post module to enumerate Enumerate MUICache
2014-05-29 17:08:50 -05:00
a6229aedff
Rescue RequestError when downloading file
2014-05-29 17:07:22 -05:00
f2a71a47ca
Use \&\& instead of and
2014-05-29 17:04:38 -05:00
31c282153e
Avoid ntuser.dat md5 because is causing problems, even when data is extracted
2014-05-29 17:02:28 -05:00
e012d55d73
refactor mremote
...
mremote post module now refactored to
use new metasploit credentials
2014-05-29 16:27:41 -05:00
95b71dee00
Try to fix crash while file_remote_digest
2014-05-29 16:12:51 -05:00
a1131092b7
fix open rescue
...
rescuing all exceptions bad
bad past dave bad
2014-05-29 16:05:16 -05:00
cbbd7bfdf4
Refacotor code
2014-05-29 15:55:44 -05:00
bf3bb63e4a
fix mremote to work on mremoteNG
...
fixed the mremote credential post module to work
against the newer mRemoteNG
2014-05-29 15:43:02 -05:00
f61aeb818a
smart hashdump refactor
...
refactor the windows smart hashdump post module
to use the new cred creation methods
2014-05-29 15:06:42 -05:00
cdabb71d23
Make code cleanup
2014-05-29 14:51:10 -05:00
e3c4745879
Windows Hashdump post module refactor
...
refactor the Hashdump post module for window
to use the new cred creation methods.
Also some extra methods to do db safe checks
for record ids that we need
2014-05-29 13:20:32 -05:00
2f811381dc
Update shell_to_meterpreter.rb
2014-05-29 06:17:31 -05:00
6a30a49bcf
Update shell_to_meterpreter.rb
2014-05-29 06:08:42 -05:00
f956c8d94f
Create shell_to_meterpreter.rb
2014-05-27 06:12:09 -05:00
e585d11499
make MSF_MODULES a constant
2014-05-25 19:36:40 -05:00
61603748bd
two more tweaks
2014-05-25 10:45:09 -04:00
6435b4370a
@Meatballs1 fixes
2014-05-25 10:40:23 -04:00
e3a6782345
add post module based on @zeroSteiner idea
2014-05-24 23:37:17 -04:00
ae3c334232
Getting closer. Still something f'd with local answerer.html.
2014-05-22 17:14:35 -05:00
14b796acbf
First stab at refactoring webrtc mixin.
2014-05-21 15:32:29 -05:00
aeaff16f88
More legible output
2014-05-20 22:27:24 +01:00
92669cd4d6
Use parser
2014-05-20 22:26:13 +01:00
fabaf52929
Tidyup of GPP
...
Add Security Bulletin Reference
ProgramData is symlink to AllUsers anyway
Use NetAPI
2014-05-20 21:53:53 +01:00
a844b5c30a
Merge branch 'master' of github.com:hmoore-r7/metasploit-framework into feature/recog
...
Conflicts:
Gemfile
Gemfile.lock
data/js/detect/os.js
lib/msf/core/exploit/remote/browser_exploit_server.rb
2014-05-18 10:50:32 -05:00
2b8dd9139c
Fix cosmetic issue
...
Fix cosmetic issue /w email address when it is output via 'info' or the Rapid7 module page.
2014-05-11 16:14:51 -05:00
c474ff4465
Merge remote-tracking branch 'upstream/master' into extapi_service_post
...
Conflicts:
modules/exploits/windows/local/service_permissions.rb
modules/post/windows/manage/rpcapd_start.rb
2014-05-05 13:19:25 +01:00
f94d1f6546
Refactors firefox js usage into a mixin.
2014-04-24 15:09:48 -05:00
ba4b507cc7
Land #3280 - Multiplatform WLAN Enumeration and Geolocation
2014-04-24 13:52:32 -05:00
d4c0d015c1
Update wlan_geolocate.rb
...
Updated based on feedback. Also added enumeration only support for BSD and Solaris.
2014-04-24 07:04:50 -05:00
e514ff3607
Description and print_status fixes for release
...
@cdoughty-r7, I choose you! Or @wvu-r7.
2014-04-21 14:00:03 -05:00
ee413ac385
Remove previously deprecated modules
2014-04-20 22:15:44 -05:00
2fd004b69e
New module: Multiplatform Wireless LAN Geolocation
...
This is a new POST module that allows Windows, Linux, and OSX targets to be geolocated using Google services if the target has an active and functional wireless adapter.
2014-04-19 17:31:48 -05:00
5bd9721d95
Redundant include
2014-04-15 21:34:21 +01:00
02b11afddc
Merge remote-tracking branch 'upstream/master' into netapi_change_passwd
...
Conflicts:
lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_netapi32.rb
2014-04-15 21:23:45 +01:00
bd9b5add49
Dont report creds
...
We dont know if a DOMAIN or IP is specified etc.
2014-04-15 21:14:49 +01:00
fc018eb32e
Initial commit
2014-04-15 21:05:06 +01:00
66a50b33fd
Errant whitespace
2014-04-14 13:34:39 -05:00
5f0d723588
Adds history collection module for FF privileged JS.
2014-04-14 12:27:18 -05:00
1715cf4650
Add base64 to prevent potential encoding issues.
2014-04-11 17:30:04 -05:00
65d267032d
Fix wrong DisclosureDate.
2014-04-11 16:17:22 -05:00
197a7e556b
Add password colletion post module for Firefox shells.
2014-04-11 16:15:48 -05:00
062175128b
Update @Meatballs and @FireFart in authors.rb
2014-04-09 10:46:10 -05:00
ae3ead6ef9
Land #2107 Post Enum Domain Users
2014-04-09 11:32:12 +01:00
fbec434ab2
Fix up host.os* field usage in the enum_ad_computers module
2014-04-02 07:30:37 -07:00
f4e62a8dcd
Land #3146 - Firefox Gather Cookies from Privileged Javascript Shell
2014-03-27 13:14:22 -05:00
b7f1cee8d3
Remove targets from post module.
2014-03-26 13:55:02 -05:00
ed8bf6279b
Use #run, not #exploit, for post modules.
2014-03-26 13:51:05 -05:00
6c51e0fd0d
Add cookie gathering post module for FF privileged sessions.
2014-03-26 13:49:53 -05:00
460a1f551c
Fix for R7-2014-05
2014-03-24 14:12:12 -05:00
3d3681801a
Fix linux download_exec for #2961
...
Note! This module already seems pretty broken, in that it doesn't appear
to correctly locate curl or wget. Will open another bug on that.
[See RM #8777 ]
2014-03-20 12:09:38 -05:00
3ea3968d88
Merge branch 'upstream/master' into stop_abusing_expand_path
...
Conflicts:
lib/msf/core/post/windows/shadowcopy.rb
modules/exploits/windows/local/bypassuac.rb
modules/post/windows/gather/wmic_command.rb
modules/post/windows/manage/persistence.rb
2014-03-11 23:13:39 +10:00
32d83887d3
Merge remote-tracking branch 'upstream/master' into wmic_post
2014-03-03 21:56:31 +00:00
63751c1d1a
Small msftidies
2014-02-28 22:18:59 +00:00
42a730745e
Land #2418 , Use meterpreter hostname resolution
2014-02-28 14:45:39 -06:00
2b5e4bea2b
Landing Pull Request 3003
2014-02-28 10:10:12 -06:00
0dfa53840a
Add @Meatballs1 to authors
...
Add @Meatballs1 to author list, awesome changes and fixes to the code (almost complete rewrite)
2014-02-22 12:24:56 +02:00
4c557a1401
Add Post::Windows::Services#each_service
...
Also cleans up some style issues and adds yardoc comments for some stuff
in Post::File
Note that windows/local/service_permissions is still using
`service_list` because it now builds a Rex::Table, which has to have
all the data up front, anyway.
2014-02-18 18:24:23 -06:00
684c45a5ff
Merge remote-tracking branch 'upstream/pr/2766' into merge-2766
2014-02-18 17:36:13 -06:00
ff4e91bb1b
Check domain return value
2014-02-18 23:34:17 +00:00
e4aedfad43
Fixup netapi call
2014-02-18 23:30:29 +00:00
0480ad16aa
No common
2014-02-18 23:09:35 +00:00
c06f86cc2b
Updates
2014-02-18 20:31:31 +00:00
6f988209ab
Merge remote-tracking branch 'upstream/master' into enum_domain_users_update
2014-02-18 20:02:39 +00:00
4903b05214
Fix tabs
2014-02-18 13:51:40 -06:00
8a68323cf0
Dont keep checking domain
2014-02-18 17:52:34 +00:00
1bc94b8a9d
Merge for retab
2014-02-17 19:19:47 -06:00
e290529841
Sadly this url is dead
2014-02-17 22:07:19 +00:00
6c32848b10
Use correct post methods
2014-02-17 22:03:07 +00:00
83d9a1e7c2
Xp Compat?
2014-02-17 21:28:06 +00:00
5e52e48d16
Gather cached GPO
2014-02-17 20:45:56 +00:00
c39924188a
Clean up
2014-02-14 20:52:04 +00:00
b2ea257204
Include Linux::System post mixin
2014-02-14 08:32:21 -06:00
ad72ecaf84
Handle SPN array
2014-02-14 09:48:23 +00:00
4b828e5d45
Dont parse empty SPNs
2014-02-14 09:41:37 +00:00
2c12952112
Moar corrections
2014-02-14 09:37:00 +00:00
9dd56d32de
Corrections
2014-02-14 09:32:53 +00:00
7ef68184e1
Handle SPNs differently
2014-02-13 23:24:55 +00:00
95048b089e
Dont search for made up fields
2014-02-13 22:51:55 +00:00
sinn3r
Tod Beardsley
scriptjunkie
David Bloom
Trevor Rosen
William Vu
David Maloney
jvazquez-r7
James Lee
Thomas Ring
HD Moore
Meatballs
Your Name
Rob Fuller
Tom Sellers
Christian Mehlmauer
jvennix-r7
Luke Imhoff
Brandon Turner
OJ
staaldraad
Meatballs1