infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
13,232 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

1988 Commits (0759c3b75c3e5b8d9dc6b0c2ef7dbd7822e85bbb)

Author SHA1 Message Date
Steve Tornio 25685c4c74 add osvdb ref 2011-12-10 08:07:21 -06:00
Tod Beardsley 8ccb68c9df Adding an add_socket() to dhcp and rftp as lauched with a survice 
when succesful.

Closing the related pull reuquest for this one.
 2011-12-10 03:39:25 -06:00
Tod Beardsley e52436e7ad Drop the incorrect Id keyword from h323_version 2011-12-09 14:29:55 -06:00
sinn3r d6d9ac17d2 use store_loot() instead of store_local() 2011-12-08 11:10:31 -06:00
sinn3r c366e652b9 Revert "Using store_local() to store stuff for dir traversal bugs feels much better than store_loot()" 
This reverts commit d37daa4934.
 2011-12-08 10:11:09 -06:00
sinn3r d37daa4934 Using store_local() to store stuff for dir traversal bugs feels much better than store_loot() 2011-12-07 19:08:24 -06:00
sinn3r aa5c0c46b6 Fix indent level 2011-12-07 18:44:49 -06:00
sinn3r feab7f5077 Add CVE-2011-4350 2011-12-07 18:42:52 -06:00
sinn3r b7ccbcd6b5 Merge branch 'master' of github.com:rapid7/metasploit-framework 2011-12-07 12:23:23 -06:00
sinn3r 84682b3615 Apply patch #6072 2011-12-07 12:22:58 -06:00
HD Moore b8767d5f57 Fix typo on 1.8.7 2011-12-07 10:45:23 -06:00
Tod Beardsley f1950c2fe1 Adding back bitstruct (current upstream) and dns_fuzzer module 
Fixes #3289.

This commit adds back the bit-struct library because in the end,
it is useful for some modules, especially pello's. It's small
and it has a nice license, so why not. After all, it /is/
useful for quicky application headers. Eventually, should
be replaced by StructFu, but that requires some doc work
on my part to get that transition in place.

This also adds pello's DNS fuzzer module which makes use of
BitStruct to create sometimes malformed-on-purpose DNS headers.

Tested against 3 different DNS servers, caused one to reboot,
so I'd say it works.
 2011-12-06 17:03:36 -06:00
sinn3r 0bbbcd549d Add port information, and allow search in data 2011-12-05 22:22:36 -06:00
Tod Beardsley 84af4647db Merge branch 'issue_1083_oracle' 2011-12-05 17:39:46 -06:00
Tod Beardsley 4da2c32734 Minor update to xdb_side_brute, see #1083 
Adds a typo fix and adds an explicit VERBOSE option.
 2011-12-05 15:11:09 -06:00
HD Moore dbd00efefe Merge branch '4.3-schema' 2011-12-05 15:04:35 -06:00
sinn3r 37516134f0 FILTER shouldn't be case-sensitive 2011-12-05 13:19:04 -06:00
HD Moore 97087d88fa Mark portscan modules as v6 incompatible 2011-12-05 13:07:36 -06:00
HD Moore cf28713f9a Mark specific modules as incompatible due to use of quad-dot code 2011-12-05 13:07:36 -06:00
sinn3r fd2eb200fb Add Shodan Search Module (Feature #5451) 2011-12-05 12:50:21 -06:00
sinn3r 3cd2caca1a Fix #6052 2011-12-04 13:49:13 -06:00
Steve Tornio f63a616739 add osvdb ref 2011-12-04 07:48:48 -06:00
sinn3r 2720572a37 Add IPSwitch Whatsup Gold TFTP directory traversal module 2011-12-03 18:46:34 -06:00
HD Moore dbe7e6aecf Remove a leftover debugging statement 2011-12-02 00:06:04 -06:00
HD Moore 9f99cfc757 Convert the h323 module to MSF_LICENSE (backport from Pro) 2011-12-01 16:01:01 -06:00
HD Moore 3e5e9a910e Add h323 scanner 2011-12-01 16:01:01 -06:00
David Maloney 40ab37fa10 Merge branch 'iss5979' 2011-11-30 12:16:33 -08:00
sinn3r 897731f3a5 Check creds (feature #6025). Also bringing the 'Inbox' regex back 2011-11-29 11:01:39 -06:00
Tod Beardsley f503bd9488 Fixes #5749 by converting to unix-style linefeeds and forcing jtr modules to read files as binary, and updating msftidy to allow for r+b as a ghetto append. 2011-11-28 17:52:34 -06:00
Rob Fuller c411c216c0 Solved most of msftidy issues with the /modules directory 2011-11-28 17:10:29 -06:00
sinn3r 3a84c31326 Using a better regex for a successful login. Thanks Borys. 2011-11-28 14:29:42 -06:00
sinn3r bc541c118d Apply patch #6020 2011-11-28 14:16:24 -06:00
sinn3r 5165865560 Merge branch 'master' of github.com:rapid7/metasploit-framework 2011-11-28 14:07:19 -06:00
sinn3r 59ab0c3a18 Fix bug #6021, Thanks Borys 2011-11-28 14:06:56 -06:00
Tod Beardsley 44a47f9913 Fixing up OWA bruteforce module to conform with the usual print_status 
messages.
 2011-11-28 13:31:54 -06:00
sinn3r a578db7f56 Apply fix for #6019 2011-11-28 01:12:18 -06:00
sinn3r ebfe269698 Apply patch for #5824 2011-11-26 16:52:12 -06:00
sinn3r 5e08c93ac9 Apply patch #5580 2011-11-26 15:32:43 -06:00
sinn3r b7950a752e Add feature #4929 (MS09-053) 2011-11-26 13:30:35 -06:00
David Maloney c61d02686a HTTP login scanners need to set duplicate_ok to true 
or different web applications on the same server
may wipe eachother's creds out.
 2011-11-22 13:04:10 -08:00
David Maloney 9d7f7b1f0e Merge branch 'master' of github.com:rapid7/metasploit-framework 2011-11-22 11:53:14 -08:00
David Maloney 9e40fac8b1 Added a check to the Axis login scanner to ensure 
that the supplied url is valid.
Need this because we don't currently have a way to fingerprint
for Axis2 so we are relying on Tomcat fingerpinting.
 2011-11-22 11:52:06 -08:00
sinn3r 25f4b45bd1 Apply patch #6004 2011-11-22 13:07:46 -06:00
David Maloney f81567fb6f Fix to typo in the tables being pushed. 2011-11-21 15:49:57 -08:00
James Lee 67120d4263 msftidy on aux modules, see #5749 2011-11-20 13:12:07 +11:00
David Maloney ff22246119 Attempt to fix #5979 2011-11-18 12:53:35 -08:00
David Maloney c8142043e9 Fixes to credential handling to downcase usernames whenever they are not case sensitive. 
Also report_auth_info now checks to see if a non-case sensitive version of the cred
may already exist.
 2011-11-14 22:50:52 -08:00
Tod Beardsley 96d2209ca2 Minor fixups for trace report_note patch 2011-11-14 10:40:11 -06:00
andurin 5d5c9464cc Do some report_note while TRACE detection 2011-11-14 12:10:53 +01:00
Andurin 71599f5ef9 Fix sqlmap aux to work with actual sqlmap.py 
Commit relates to IssueID #5807
 2011-11-13 09:18:33 +01:00
sinn3r e4ebb890d8 Apply patch for bug #5963 2011-11-12 13:17:26 -06:00
sinn3r 62fdbd549c no need to register VERBOSE, because it's already a standard option in all modules. Thanks egyp7 for the reminder. 2011-11-11 15:37:47 -06:00
sinn3r 2d940e2c91 Apply patch #5952 2011-11-11 14:58:17 -06:00
sinn3r 35f84f5e42 yo, ruby 1.8 fix 2011-11-11 11:38:28 -06:00
sinn3r fdef66f2bf yo, ruby 1.8 fix 2011-11-11 11:38:08 -06:00
sinn3r e972234629 yo, owa bruteforce utility in the house (Feature #4725) 2011-11-11 11:23:35 -06:00
David Maloney c30d98093f Merge branch 'iss5426' 2011-11-10 20:39:48 -08:00
David Maloney c984ea41d1 Quick fix to cred sourcing to eliminate spaces in the source type 2011-11-10 20:39:13 -08:00
HD Moore 43fa2c3d1b Add a gitignore and delete the broken file_autopwn code. Fixes #4964 2011-11-10 20:11:53 -06:00
wchen-r7 3a328e1a1c Merge branch 'master' of github.com:rapid7/metasploit-framework 2011-11-10 16:09:35 -06:00
wchen-r7 b761c6a9cc Add feature #5933 2011-11-10 16:09:03 -06:00
HD Moore d75e4aead3 Cosmetic changes 2011-11-10 15:45:02 -06:00
Steve Tornio 0c36915dae add osvdb ref 2011-11-10 13:24:26 -06:00
wchen-r7 453082678f Add CVE-2010-1871 (Feature #5922) 2011-11-10 10:21:17 -06:00
Matt Buck 16f45fc894 Add empty directories from svn repo. 2011-11-09 18:41:40 -06:00
Wei Chen 9ff5eabb4b Fix #4915 
git-svn-id: file:///home/svn/framework3/trunk@14201 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-09 08:51:47 +00:00
David Maloney a88f954640 More Cred Sourcing 
git-svn-id: file:///home/svn/framework3/trunk@14197 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-09 01:49:57 +00:00
David Maloney aa4f6c1cae More cred sourcing fixes 
git-svn-id: file:///home/svn/framework3/trunk@14193 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-08 18:45:47 +00:00
David Maloney cdbe7bc587 Multiple fixes to cred reporting on this module 
git-svn-id: file:///home/svn/framework3/trunk@14192 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-08 17:25:39 +00:00
Wei Chen 16fc275853 whitespace cleanup 
git-svn-id: file:///home/svn/framework3/trunk@14191 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-08 16:09:31 +00:00
Patrick Webster 77a3edbb4f Added squiz_matrix_user_enum aux module. 
git-svn-id: file:///home/svn/framework3/trunk@14185 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-08 03:14:39 +00:00
Wei Chen ad94bae78f Fix bug #5923 
git-svn-id: file:///home/svn/framework3/trunk@14182 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-07 17:52:02 +00:00
Wei Chen 7ffcf62a2e Add #5364 
git-svn-id: file:///home/svn/framework3/trunk@14181 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-07 17:34:42 +00:00
Wei Chen 12378b45d6 Fix #5502 
git-svn-id: file:///home/svn/framework3/trunk@14180 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-07 07:44:02 +00:00
Matt Weeks e4d540e031 Seplling 
git-svn-id: file:///home/svn/framework3/trunk@14166 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-05 15:43:28 +00:00
HD Moore f6cc9eade7 Replace my crufty old ASN.1 parser with OpenSSL::ASN1 
git-svn-id: file:///home/svn/framework3/trunk@14165 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-05 05:12:28 +00:00
David Maloney 585a7cc4a2 Adding the HTTP Trace scanner from CG 
Fixes #3390


git-svn-id: file:///home/svn/framework3/trunk@14150 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-03 20:09:11 +00:00
Mario Ceballos f25dc59371 spelling. 
git-svn-id: file:///home/svn/framework3/trunk@14146 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-02 21:56:38 +00:00
Mario Ceballos 2b00ace437 spelling. 
git-svn-id: file:///home/svn/framework3/trunk@14145 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-02 21:47:27 +00:00
Wei Chen ae9e8b7821 Syntax fix for ruby 1.8 
git-svn-id: file:///home/svn/framework3/trunk@14139 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-01 21:48:24 +00:00
Wei Chen d5cee2dedf Apply patch #5411 to allow user-specified path 
git-svn-id: file:///home/svn/framework3/trunk@14137 4d416f70-5f16-0410-b530-b9f4589650da
 2011-11-01 17:57:11 +00:00
Wei Chen 8750c3aac5 Add feature #4849 (Redis module) 
git-svn-id: file:///home/svn/framework3/trunk@14133 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-31 21:47:15 +00:00
Mario Ceballos d55dc551b6 syntax issue 
git-svn-id: file:///home/svn/framework3/trunk@14131 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-31 20:22:02 +00:00
Tod Beardsley e1ffdfdb18 Fixes #3199, jduck caught the funky behavior of seek and ruby's "ab" and "wb" file mode. See also http://pastie.org/2789573 
git-svn-id: file:///home/svn/framework3/trunk@14128 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-31 19:06:09 +00:00
Wei Chen e14668ece9 Add ColdFusion version scanner - feature #4079 
git-svn-id: file:///home/svn/framework3/trunk@14127 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-31 18:18:11 +00:00
Wei Chen fb56e23197 Apply fix for bug #5516 to correct a possible false positive on Apache Tomcat 
(yup, tomcats are tricky like that)


git-svn-id: file:///home/svn/framework3/trunk@14124 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-31 16:39:03 +00:00
HD Moore 55e6672e6b Revert a well-intentioned but design-violating change 
git-svn-id: file:///home/svn/framework3/trunk@14116 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-29 18:40:49 +00:00
Wei Chen 27c41e41f7 spaces/tabs cleanup 
git-svn-id: file:///home/svn/framework3/trunk@14115 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-29 17:41:38 +00:00
David Maloney 47cb10c70b Added John the Ripper Linux module 
Fixes #5513


git-svn-id: file:///home/svn/framework3/trunk@14114 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-29 17:27:21 +00:00
Tod Beardsley 45d8c91929 Fixes #3199. Note that hex notation (0x41) is okay for OptInt. Ruby integers can be 0x41, 0101, 0b01000001, which are all 65, so dropped that chunk and clarified the option instead of forcing a string and a conversion. 
git-svn-id: file:///home/svn/framework3/trunk@14102 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-28 20:58:46 +00:00
Tod Beardsley 467df77a50 Fixes #5170. Enforces a max width, avoids negative widths. Thanks Oliver! 
Related to r13769



git-svn-id: file:///home/svn/framework3/trunk@14093 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-27 22:07:41 +00:00
Wei Chen 63a926a6ee Do a report_host() on OS default name. Request #5865 
git-svn-id: file:///home/svn/framework3/trunk@14090 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-27 04:50:01 +00:00
Wei Chen c0cca836c1 Ok, last svn propset, I swear 
git-svn-id: file:///home/svn/framework3/trunk@14086 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 23:41:24 +00:00
Wei Chen baf9a816d5 damn it, I missed one 
git-svn-id: file:///home/svn/framework3/trunk@14085 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 23:40:32 +00:00
Wei Chen 7db499e71e The svn propset police joins the party 
git-svn-id: file:///home/svn/framework3/trunk@14084 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 23:38:18 +00:00
Wei Chen 5d8c3e956e Watch out, the style police is in da house 
git-svn-id: file:///home/svn/framework3/trunk@14083 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 23:31:12 +00:00
David Maloney 6ba153c9f5 Fix to a typo, thanks Jabra 
git-svn-id: file:///home/svn/framework3/trunk@14082 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 22:44:17 +00:00
David Maloney abf37d7caf Added John the Ripper Unshadow module. See #5437 
git-svn-id: file:///home/svn/framework3/trunk@14081 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 22:40:38 +00:00
David Maloney 1f8e455eaa Added Postgres MD5 Hashcrack module. See #5423 
git-svn-id: file:///home/svn/framework3/trunk@14080 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 22:34:33 +00:00
David Maloney 23e50bf2b4 Added Oracle John the Ripper Module. See #5406 
git-svn-id: file:///home/svn/framework3/trunk@14079 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 22:33:44 +00:00
David Maloney afec4fd928 Added MySQL John the Ripper module. See #5408 
git-svn-id: file:///home/svn/framework3/trunk@14078 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 22:33:12 +00:00
David Maloney 5c565d12fc Added the MS SQL John the Ripper Module see #5407 
git-svn-id: file:///home/svn/framework3/trunk@14077 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 22:32:08 +00:00
Wei Chen dd72e1ce9d Longer timeout. #5851 
git-svn-id: file:///home/svn/framework3/trunk@14074 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-26 19:35:03 +00:00
Wei Chen d98ab06464 This fixes the nil problem with arg. See bug #5848 
git-svn-id: file:///home/svn/framework3/trunk@14070 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-25 20:48:17 +00:00
Wei Chen ab4f9d65c7 Add PATH option. Feature #5412 
git-svn-id: file:///home/svn/framework3/trunk@14067 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-25 18:32:02 +00:00
Wei Chen 82e1b87a21 #5541 
git-svn-id: file:///home/svn/framework3/trunk@14064 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-25 16:43:58 +00:00
Tod Beardsley a5ef33305f Fixes #5609, thanks David! 
git-svn-id: file:///home/svn/framework3/trunk@14052 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-24 21:57:42 +00:00
Joshua Drake 62c8c6ea9f big msftidy pass, ping me if there are issues 
git-svn-id: file:///home/svn/framework3/trunk@14034 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-23 11:56:13 +00:00
Wei Chen 14cf0deb29 Add feature #5398 
git-svn-id: file:///home/svn/framework3/trunk@14032 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-22 22:20:55 +00:00
Wei Chen 17f518897f Moved from auxiliary/scanner/sap 
git-svn-id: file:///home/svn/framework3/trunk@14030 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-22 21:33:53 +00:00
Wei Chen 1e7c197d8e git-svn-id: file:///home/svn/framework3/trunk@14029 4d416f70-5f16-0410-b530-b9f4589650da 2011-10-22 21:32:36 +00:00
Wei Chen a62a236ad0 Add feature #5541 
git-svn-id: file:///home/svn/framework3/trunk@14027 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-22 20:03:25 +00:00
Wei Chen 2a3f430c8e SAP ICM URLscan module (Feature #5620) by Chris 
git-svn-id: file:///home/svn/framework3/trunk@14026 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-22 08:41:54 +00:00
Wei Chen 389be65dff Attempt number 2 to fix #5579 
git-svn-id: file:///home/svn/framework3/trunk@14014 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-20 16:29:15 +00:00
Wei Chen dd2623dba9 For bug #5579 
git-svn-id: file:///home/svn/framework3/trunk@14012 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-20 01:07:08 +00:00
Steve Tornio 1f698e09c9 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@14004 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-19 11:19:59 +00:00
David Rude 4209431355 Follow a consistent naming convention 
git-svn-id: file:///home/svn/framework3/trunk@13996 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-18 20:42:59 +00:00
Wei Chen 973227933b Add CVE-2011-1290 as an aux module 
git-svn-id: file:///home/svn/framework3/trunk@13994 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-18 16:30:28 +00:00
HD Moore 63d3fe2e9c Cosmetic 
git-svn-id: file:///home/svn/framework3/trunk@13992 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-18 09:57:12 +00:00
Wei Chen 0a661ec227 Add CVE-2011-3305 (#5673) 
git-svn-id: file:///home/svn/framework3/trunk@13985 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-18 04:40:21 +00:00
Wei Chen 975cc52bac Fix spelling errors 
git-svn-id: file:///home/svn/framework3/trunk@13983 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-18 00:54:05 +00:00
Tod Beardsley c336d063da Mostly file format (unix linefeeds) and File.open() calls using binary. Fixed ranking for mozilla_nstreerange and disclosure and BID # for tugzip. 
git-svn-id: file:///home/svn/framework3/trunk@13971 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-17 04:20:53 +00:00
Tod Beardsley 30ac88694f More msftidy fixes. Now I'm going to get a little more surgical to get this to move faster. 
git-svn-id: file:///home/svn/framework3/trunk@13963 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-17 02:58:53 +00:00
Tod Beardsley e9461c766e Msftidy run against a bunch of whitespace violations, a few line too longs. 
git-svn-id: file:///home/svn/framework3/trunk@13962 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-17 02:42:01 +00:00
Tod Beardsley ea2c9d1a46 Adding missing Id and Rev SVN keywords. 
git-svn-id: file:///home/svn/framework3/trunk@13961 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-17 01:27:28 +00:00
HD Moore cf8524b1b4 Fixes #5414 by applying Joshua Taylor's patch that corrects bad reference types 
git-svn-id: file:///home/svn/framework3/trunk@13949 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-16 09:53:53 +00:00
Tod Beardsley f0ee05eece Moving dos modules to manual ranking. 
git-svn-id: file:///home/svn/framework3/trunk@13940 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-15 22:20:04 +00:00
Tod Beardsley c45add4199 Moving an old unnamed Microsoft exploit to the proper named exploit. 
git-svn-id: file:///home/svn/framework3/trunk@13939 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-15 22:16:13 +00:00
HD Moore 3c73c3c2f8 Pile of small bug fixes for the FTP server and mixin 
git-svn-id: file:///home/svn/framework3/trunk@13924 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-14 23:07:09 +00:00
HD Moore 0ff7f17cba Cosmetic module and service name fixes 
git-svn-id: file:///home/svn/framework3/trunk@13917 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-14 00:52:15 +00:00
Carlos Perez 7ae1bbbb3f typo 
git-svn-id: file:///home/svn/framework3/trunk@13904 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-13 01:49:36 +00:00
Carlos Perez a0c34d1c73 Sets a session platform when using ssh_login 
git-svn-id: file:///home/svn/framework3/trunk@13903 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-13 01:48:42 +00:00
HD Moore cce4aafd9b Tweak the snmp_login code to actually only poll response packets every 10 sent and break out of infinite loop in the case of a target going crazy and continuously replying 
git-svn-id: file:///home/svn/framework3/trunk@13891 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-12 20:14:58 +00:00
Chao Mu 53b807abee Adding the "this file is part of" comment to the top of the module and proper comment formatting 
git-svn-id: file:///home/svn/framework3/trunk@13886 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-12 00:36:55 +00:00
Chao Mu df56110dd9 Fixing $Id so that it is prefaced by a comment. 
git-svn-id: file:///home/svn/framework3/trunk@13885 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-12 00:32:14 +00:00
Chao Mu 667c00161d Remembering to Propset and include $Id: $ this time. Also, switching from BSD_LICENSE to MSF_LICENSE. 
git-svn-id: file:///home/svn/framework3/trunk@13884 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-12 00:30:25 +00:00
HD Moore 558894e100 Test cases don't live in the module directory 
git-svn-id: file:///home/svn/framework3/trunk@13871 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-11 15:51:22 +00:00
Chao Mu 9414747945 jruby was barfing on super(a, b, c,), so I changed the syntax and wrote a very simple unit test for rewrite_proxy_bypass. 
git-svn-id: file:///home/svn/framework3/trunk@13870 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-11 13:52:39 +00:00
Wei Chen 8f2c87fb5e Add Beckhoff TwinCAT SCADA PLC dos module (Feature #5524) 
git-svn-id: file:///home/svn/framework3/trunk@13865 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-10 23:41:15 +00:00
Chao Mu dcb6de2b58 Fixes #5667 this module scans for reverse proxy servers that exhibit a misconfiguration like the one detailed in www.contextis.com/research/blog/reverseproxybypass/. By default it requests a URI of @... and checks for a 502 
git-svn-id: file:///home/svn/framework3/trunk@13864 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-10 22:34:50 +00:00
Tod Beardsley 568bde7aa4 Fixes #5404 
See #5350
See #5246
See #5241
See #5173

Adds password hash dumping as loot for Postgres, MSSQL, MySQL, and several Oracle flavors of RDBMS. Thanks TheLightCosine!



git-svn-id: file:///home/svn/framework3/trunk@13854 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-10 17:05:01 +00:00
Wei Chen 6ffa61b314 Apply patch for bug #5212 
git-svn-id: file:///home/svn/framework3/trunk@13815 4d416f70-5f16-0410-b530-b9f4589650da
 2011-10-04 19:10:33 +00:00
Wei Chen 612cdc8c73 No need to check if version is 'unknown' if nothing else (other than default) is assigned to it 
git-svn-id: file:///home/svn/framework3/trunk@13799 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-27 19:12:31 +00:00
Wei Chen 8d1763484d Fix metadata format 
git-svn-id: file:///home/svn/framework3/trunk@13792 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-26 03:21:37 +00:00
Wei Chen 5d4b562e62 Add GlassFish BruteForce auxiliary module by Josh (See #5515) 
git-svn-id: file:///home/svn/framework3/trunk@13790 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-25 19:24:53 +00:00
Tod Beardsley d437c99919 Fixing what looks like a versioning mismatch for the XMAS scan (readreply vs probereply methods). 
git-svn-id: file:///home/svn/framework3/trunk@13786 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-24 13:39:42 +00:00
James Lee 2cb5dbdb10 fix a silly output bug, thanks mezzendo for noticing 
git-svn-id: file:///home/svn/framework3/trunk@13785 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-23 22:28:11 +00:00
James Lee cdead3da54 whitespace cleanup and fix some ArgumentErrors when a field is wide, fixes #5518, thanks Joshua Taylor 
git-svn-id: file:///home/svn/framework3/trunk@13783 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-23 17:51:11 +00:00
David Rude 4d850c1ee6 Adds Apache Range DoS aka Apache Killer 
git-svn-id: file:///home/svn/framework3/trunk@13781 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-23 16:38:35 +00:00
Patrick Webster 5c41385284 Added aux module trendmicro_dlp_traversal. 
git-svn-id: file:///home/svn/framework3/trunk@13772 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-22 07:34:53 +00:00
amaloteaux 2d0d48a820 remove an Argument Error, Negative Number bug faced at Brucon 
git-svn-id: file:///home/svn/framework3/trunk@13769 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-21 14:52:52 +00:00
James Lee 7163710bcf fix a typo and some whitespace, fixes #5480. Thanks Kurt! 
git-svn-id: file:///home/svn/framework3/trunk@13764 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-20 17:17:20 +00:00
Wei Chen f9d74b0701 Printing res code for DELETE should be optional. It's not like we can always trust it anyway. 
git-svn-id: file:///home/svn/framework3/trunk@13763 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-20 00:41:42 +00:00
Joshua Drake 7c74954461 remove silly comma 
git-svn-id: file:///home/svn/framework3/trunk@13762 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-19 23:06:35 +00:00
Wei Chen 7f80ba939a Apparently I can't speaks engrish 
git-svn-id: file:///home/svn/framework3/trunk@13760 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-19 21:18:48 +00:00
Wei Chen ec530955ce Checking response codes is a terrible way for HTTP modules. #5470. 
git-svn-id: file:///home/svn/framework3/trunk@13759 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-19 20:36:09 +00:00
Jonathan Cran a1675bfbc6 replaced by http_put 
git-svn-id: file:///home/svn/framework3/trunk@13758 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-19 20:14:26 +00:00
Jonathan Cran 8b1fd95f66 Add a module to check HTTP PUT / DELETE file access. Thanks CG! Resolves 5089. 
git-svn-id: file:///home/svn/framework3/trunk@13755 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-19 01:18:23 +00:00
et 3dffd09875 Generic HTML data scraper 
git-svn-id: file:///home/svn/framework3/trunk@13736 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-16 02:36:32 +00:00
HD Moore 85eb581c16 Quick fix to match service changes 
git-svn-id: file:///home/svn/framework3/trunk@13726 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-13 06:48:07 +00:00
Joshua Drake f8eb9e5dd4 extraneous space typo 
git-svn-id: file:///home/svn/framework3/trunk@13722 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-12 19:21:21 +00:00
Matt Weeks acae5dcdc8 Killing puts. 
Die, puts, die!!



git-svn-id: file:///home/svn/framework3/trunk@13715 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-11 02:42:39 +00:00
James Lee e31acef6e9 whitespace cleanup 
git-svn-id: file:///home/svn/framework3/trunk@13702 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-07 15:30:08 +00:00
Wei Chen 835c5938d5 Fix typo. Thx mubix for spotting it. 
git-svn-id: file:///home/svn/framework3/trunk@13687 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-03 04:39:47 +00:00
Wei Chen 91c5a15eb4 Actually, this is the right fix for bug #5363 
git-svn-id: file:///home/svn/framework3/trunk@13685 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-03 02:20:22 +00:00
Wei Chen 14d2a45c5b This fix is to make sure BLANK_PASSWORDS functions properly. See bug #5363. 
git-svn-id: file:///home/svn/framework3/trunk@13684 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-03 02:09:00 +00:00
HD Moore 400afbadf8 Fixes #5392 by closing the listener after accepting the connection. Fixes a number of formatting and api issues 
git-svn-id: file:///home/svn/framework3/trunk@13682 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-02 16:19:28 +00:00
HD Moore e4f74b75f8 Add a module for the rsyslog DoS (not triggerable on many platforms) 
git-svn-id: file:///home/svn/framework3/trunk@13681 4d416f70-5f16-0410-b530-b9f4589650da
 2011-09-02 15:55:54 +00:00
HD Moore 5fa7ddf5f4 Move this aux module out of the exploits tree 
git-svn-id: file:///home/svn/framework3/trunk@13657 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-29 15:30:13 +00:00
David Rude cacc3f237c Added improvements to this module to use a wordlist of known sensitive files 
git-svn-id: file:///home/svn/framework3/trunk@13654 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-29 03:13:22 +00:00
Matt Weeks 6853221762 Fixes #5313 by adding logging support to pivoted PXE attacks, and displaying results as the module runs. 
git-svn-id: file:///home/svn/framework3/trunk@13646 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-27 15:46:49 +00:00
Matt Weeks f9e651d382 Report to DB too. 
git-svn-id: file:///home/svn/framework3/trunk@13640 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-25 22:56:22 +00:00
Matt Weeks 23b4f4ed98 Address #5313 for locally-launched PXE attacks. 
git-svn-id: file:///home/svn/framework3/trunk@13639 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-25 22:48:33 +00:00
amaloteaux c8bb6a5fda mke this module more automatic and reliable 
git-svn-id: file:///home/svn/framework3/trunk@13632 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-25 00:11:20 +00:00
amaloteaux a38aed075c correct some more packetfu migration bug 
git-svn-id: file:///home/svn/framework3/trunk@13631 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-24 23:49:58 +00:00
amaloteaux 5e1dd48c72 correct some bug left after packetfu migration and make this module compatible with windows 
git-svn-id: file:///home/svn/framework3/trunk@13626 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-24 20:44:39 +00:00
Tod Beardsley 6e2dfdee86 Oops, missing orequals. 
git-svn-id: file:///home/svn/framework3/trunk@13620 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-24 19:47:37 +00:00
Tod Beardsley 628d950d98 See #5029. A reworked DTP spoofer module using PacketFu and some raw DTP bytes instead of Racket. 
git-svn-id: file:///home/svn/framework3/trunk@13619 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-24 19:34:12 +00:00
David Rude 98d474c875 Add BNAT Router module to properly establish and route connections to BNAT implementations 
git-svn-id: file:///home/svn/framework3/trunk@13606 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-21 23:40:09 +00:00
David Rude adf5d7eb73 Adds the BNAT scan module for actively finding bad NAT implementations 
git-svn-id: file:///home/svn/framework3/trunk@13602 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-21 04:46:57 +00:00
Mario Ceballos aef764de08 working on moving things referenced in Feature #653. added different param for secure backup 
git-svn-id: file:///home/svn/framework3/trunk@13591 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-19 18:35:29 +00:00
Tod Beardsley 4c71b3f1fe More minor touchups to nbns_response. Dropping the unused FILTER option, making SPOOFIP an OptAddress, spelling. 
git-svn-id: file:///home/svn/framework3/trunk@13587 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-19 14:34:17 +00:00
Patrick Webster 392684736d Added aux module check_dir_file. 
git-svn-id: file:///home/svn/framework3/trunk@13578 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-18 04:10:17 +00:00
Tod Beardsley a746067089 add a reminder to deal with this and all these other unstoppable while true; do stuff; end endless run() options. 
git-svn-id: file:///home/svn/framework3/trunk@13575 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-17 21:02:20 +00:00
Tod Beardsley 7f45ed2f8d Fixes #5109. 
Fixes #5198.

Removes the not actually required rhost (as well as other pcap-provided options that don't appear useful), fixes up the debug mode to not stacktrace when parsing back the recv'ed NBNS request. Thx Brandon and Steve!




git-svn-id: file:///home/svn/framework3/trunk@13574 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-17 21:00:10 +00:00
David Rude 41f4677dae Convert the table to CSV 
git-svn-id: file:///home/svn/framework3/trunk@13568 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-15 17:48:42 +00:00
Wei Chen 83dd71c905 Add MySQL hashdump auxiliary module 
git-svn-id: file:///home/svn/framework3/trunk@13567 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-15 16:28:31 +00:00
Wei Chen 278cb5d46e Fix indents, spaces, and stuff 
git-svn-id: file:///home/svn/framework3/trunk@13564 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-15 15:21:11 +00:00
Wei Chen dd56f976f4 Fix indents 
git-svn-id: file:///home/svn/framework3/trunk@13563 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-15 15:12:55 +00:00
David Rude 1823f20a50 Add apache_userdir_enum aux module 
git-svn-id: file:///home/svn/framework3/trunk@13562 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-15 05:56:55 +00:00
David Rude b39503343e Add pop3_login aux module 
git-svn-id: file:///home/svn/framework3/trunk@13561 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-15 05:51:59 +00:00
HD Moore 8b72de1af6 Cosmetic 
git-svn-id: file:///home/svn/framework3/trunk@13557 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-13 16:51:49 +00:00
David Rude 41c8f5c3a1 fix up the web_pii module 
git-svn-id: file:///home/svn/framework3/trunk@13541 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-12 02:17:07 +00:00
David Rude d9bd7daed6 Add Wills Email PII module 
git-svn-id: file:///home/svn/framework3/trunk@13540 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-12 02:14:30 +00:00
David Rude fe975d196f add Web PII VSploit module 
git-svn-id: file:///home/svn/framework3/trunk@13538 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-11 23:45:43 +00:00
David Rude ce9f5d8798 Fix a missing comma 
git-svn-id: file:///home/svn/framework3/trunk@13528 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-11 18:14:13 +00:00
David Rude 64d7721ae5 Add VSploit modules and general directory structure 
git-svn-id: file:///home/svn/framework3/trunk@13527 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-11 17:43:51 +00:00
James Lee b6f845ee91 UserAgent is already an advanced option, and that's already the default 
git-svn-id: file:///home/svn/framework3/trunk@13511 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-10 17:30:30 +00:00
James Lee 4ba46cb565 get_once returns nil if the timeout hits, don't break in that case 
git-svn-id: file:///home/svn/framework3/trunk@13510 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-10 17:28:18 +00:00
James Lee 825a2747c1 remove unnecessary dup, unused var 
git-svn-id: file:///home/svn/framework3/trunk@13509 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-10 17:27:09 +00:00
amaloteaux 377c987c1d report hashes captured by htp_ntlm server 
git-svn-id: file:///home/svn/framework3/trunk@13496 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-06 14:50:15 +00:00
Carlos Perez f8d50b7705 Applied and tested patch from Thomas Ring in bug 5206 
git-svn-id: file:///home/svn/framework3/trunk@13490 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-04 22:55:06 +00:00
HD Moore 842bfdebe8 Lets just leave this here (insurance against my laptop melting down between now and tomorrow morning). Nothing to see here, move along ;) 
git-svn-id: file:///home/svn/framework3/trunk@13483 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-03 22:58:55 +00:00
HD Moore f3e4c860a7 Slow down a little bit to prevent packet loss 
git-svn-id: file:///home/svn/framework3/trunk@13468 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-02 00:47:51 +00:00
James Lee 021fa0d8cb missed a line in the conversion to packetfu, see #5038 
git-svn-id: file:///home/svn/framework3/trunk@13442 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-31 04:41:17 +00:00
HD Moore a5e63c2ca9 Grab the instance from the query vs the ping (via TheLightCosine) 
git-svn-id: file:///home/svn/framework3/trunk@13435 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-30 21:20:57 +00:00
HD Moore c216219573 Add mssql_ping back in 
git-svn-id: file:///home/svn/framework3/trunk@13434 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-30 21:11:53 +00:00
HD Moore e916e06b6e Closes #5142 by merging (with some small changes) 
git-svn-id: file:///home/svn/framework3/trunk@13433 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-30 21:07:22 +00:00
Tod Beardsley 486241cc99 SSH scanners shouldn't die just because they're on Windows and they try to talk to reserved addresses. 
git-svn-id: file:///home/svn/framework3/trunk@13407 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-29 15:51:11 +00:00
James Lee d50577066f remove some silliness of registering UserAgent as an option since it's already an advanced option for HttpClient, make the default obvious 
git-svn-id: file:///home/svn/framework3/trunk@13394 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-28 22:57:47 +00:00
Tod Beardsley df52bfaa4f Ensure that we check for pcaprub before doing much anything else for those modules that actually require it. In some cases, that means moving open_pcap() up to be the first method call, in others, insert check_pcaprub_loaded first. Also removes a few cases of redundant checking (the Capture mixin does all this already anyway). 
git-svn-id: file:///home/svn/framework3/trunk@13381 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-27 20:21:47 +00:00
Jonathan Cran 78849b2837 check that pcaprub is loaded up front, before checking configuration options 
git-svn-id: file:///home/svn/framework3/trunk@13376 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-27 18:53:59 +00:00
amaloteaux 61645c03f2 psnuffle : apply some corrections from hdm 
git-svn-id: file:///home/svn/framework3/trunk@13373 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-27 17:56:15 +00:00
amaloteaux 08322fc7ea smb capture: split creds.ptype from smb_net_hash to smb_netv1_hash and smb_netv2_hash 
smb_netv1_hash correspond to netlmv1/netntlmv1 and netntlm2_session hash type
smb_netv2_hash correspond to netlmv2/netntlmv2 hash type
also removed the domain name from creds.user and added it to the pass column like this DOMAIN:NETLMHASH:NETNTLMHASH:CHALLENGE


git-svn-id: file:///home/svn/framework3/trunk@13372 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-27 17:53:09 +00:00
Tod Beardsley b22ca615c7 Fixes #5038, missed a couple mentions of Racket. Excised now for sure. 
git-svn-id: file:///home/svn/framework3/trunk@13371 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-27 17:44:36 +00:00
amaloteaux 95577d3b1b smb_net_hash instead of smb_hash 
git-svn-id: file:///home/svn/framework3/trunk@13356 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-27 01:49:53 +00:00
amaloteaux 2ed2bf59ed don't need this option 
git-svn-id: file:///home/svn/framework3/trunk@13355 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-27 01:33:35 +00:00
amaloteaux 67a3f7bd75 same for http_ntlm capture 
git-svn-id: file:///home/svn/framework3/trunk@13354 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-26 23:47:40 +00:00
amaloteaux 8809182f62 smb capture : correct some minor bug and allow ntlm2_session hashes to be dumped in john and cain format has they can easily crack them too 
git-svn-id: file:///home/svn/framework3/trunk@13353 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-26 23:36:45 +00:00
amaloteaux d5ce83e136 pcapreplay: use optpath 
git-svn-id: file:///home/svn/framework3/trunk@13345 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-26 20:18:24 +00:00
Tod Beardsley c54e18d757 Fixes #5038. Removes all instances of Racket objects, as far as I can tell. If I missed any through my mighty grep -ril racket . statement, please reopen! 
git-svn-id: file:///home/svn/framework3/trunk@13342 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-26 01:29:21 +00:00
Tod Beardsley 0797b585db See #5029. Moved these over to the unstable modules branch. 
git-svn-id: file:///home/svn/framework3/trunk@13338 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-25 22:37:51 +00:00
Wei Chen 5fdf482a8b Add MSB reference 
git-svn-id: file:///home/svn/framework3/trunk@13331 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-24 19:50:56 +00:00
Wei Chen 067f9bf053 Fix URL reference 
git-svn-id: file:///home/svn/framework3/trunk@13329 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-24 19:36:37 +00:00
Wei Chen e115e78f8d Fix CVE 
git-svn-id: file:///home/svn/framework3/trunk@13327 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-24 19:20:02 +00:00
Wei Chen 410d124ec5 Change name for consistency 
git-svn-id: file:///home/svn/framework3/trunk@13294 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-22 05:56:04 +00:00
Wei Chen 465f3f2739 Update metadata 
git-svn-id: file:///home/svn/framework3/trunk@13293 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-22 05:45:46 +00:00
Steve Tornio b930b2622f add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@13271 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-21 01:20:22 +00:00
Steve Tornio 46451acec5 add/fix some cve and osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@13270 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-21 01:10:40 +00:00
David Rude 88125b53b8 remove stray puts 
git-svn-id: file:///home/svn/framework3/trunk@13268 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-20 17:11:04 +00:00
David Rude b96bf9754e more logic fixes 
git-svn-id: file:///home/svn/framework3/trunk@13240 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-19 21:19:34 +00:00
David Rude a934004a2b Fix the loop 
git-svn-id: file:///home/svn/framework3/trunk@13239 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-19 21:12:44 +00:00
David Rude bea802ea60 Fix the RPORT default 
git-svn-id: file:///home/svn/framework3/trunk@13238 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-19 20:59:13 +00:00
David Rude 1fda05f128 Added SIPDroid extension enumeration module - thanks nibu 
git-svn-id: file:///home/svn/framework3/trunk@13237 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-19 20:42:02 +00:00
Joshua Drake 486ca773e4 unpack the bytes so that we can do proper math on them 
git-svn-id: file:///home/svn/framework3/trunk@13226 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-19 17:33:02 +00:00
Carlos Perez f3b404b971 Misspelled variable 
git-svn-id: file:///home/svn/framework3/trunk@13196 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-17 14:30:06 +00:00
James Lee bd07523c35 send the fuzz case instead of a constant value. fixes #4939, thanks Silent Dream for the patch 
git-svn-id: file:///home/svn/framework3/trunk@13188 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-15 23:09:33 +00:00
James Lee c412a836ed add VERBOSE option to all modules and vprint_* methods to use it 
git-svn-id: file:///home/svn/framework3/trunk@13183 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-15 15:33:35 +00:00
James Lee 39c20b2935 cosmetic 
git-svn-id: file:///home/svn/framework3/trunk@13174 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-14 20:27:25 +00:00
James Lee ccf891c788 remove superfluous junk in print_* calls 
git-svn-id: file:///home/svn/framework3/trunk@13171 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-14 19:24:07 +00:00
Matt Weeks 0318379ca8 These are not necessary options; the DHCP server has reasonably intelligent defaults. Mark them as such. 
git-svn-id: file:///home/svn/framework3/trunk@13164 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-14 02:32:28 +00:00
Tod Beardsley b9c5835b5e Touching up the ssh key login module to be smarter about duplicate user names, not be so chatty in its messaging to the console, deal with whitespace, and avoid storing duplicate keys when we don't need to. 
git-svn-id: file:///home/svn/framework3/trunk@13162 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-13 20:51:18 +00:00
Tod Beardsley dc84ee6aab More fixups for ssh_login_pubkey and special handlers for long strings of keys. 
git-svn-id: file:///home/svn/framework3/trunk@13156 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-12 20:58:25 +00:00
HD Moore 90ced404b3 Updates to the jtr code, supports ruby 1.8.7 now, fixes #4908 
git-svn-id: file:///home/svn/framework3/trunk@13149 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-11 01:07:46 +00:00
HD Moore 7754f0d8f2 This commit adds a basic "analyzer" module for creds 
git-svn-id: file:///home/svn/framework3/trunk@13136 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-09 02:14:24 +00:00
Wei Chen a795dc7552 Added 2Wire Password Reset module by Travis 
git-svn-id: file:///home/svn/framework3/trunk@13121 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-07 20:48:53 +00:00
Wei Chen 0fd6c8880e Added DoS module for kaillera, and a new 'games' folder under windows 
git-svn-id: file:///home/svn/framework3/trunk@13118 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-07 19:33:55 +00:00
James Lee 44d7503cc1 prefix most browser autopwn output with the address of the associated client 
git-svn-id: file:///home/svn/framework3/trunk@13086 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-01 23:50:07 +00:00
Steve Tornio 7e02e7abd6 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@13038 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-27 11:43:54 +00:00
Joshua Drake 2e4fd81740 add CVE-2011-0657 DoS module 
git-svn-id: file:///home/svn/framework3/trunk@13037 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-27 01:17:07 +00:00
David Rude ac61cd0427 Changed from web.archive.org to classic-web.archive.org 
git-svn-id: file:///home/svn/framework3/trunk@13018 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-24 14:43:59 +00:00
Carlos Perez 191e783662 Fix typo 
git-svn-id: file:///home/svn/framework3/trunk@13008 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-23 00:25:32 +00:00
Tod Beardsley 824022fde3 Adds a more universal print_error message for :abort in auth_brute.rb 
git-svn-id: file:///home/svn/framework3/trunk@13005 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-22 20:53:51 +00:00
HD Moore e223931a46 Commit a bug fix from Yori Kvitchko 
git-svn-id: file:///home/svn/framework3/trunk@12994 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-21 03:56:47 +00:00
Tod Beardsley 04e2eb43ef Removing the load() line from ssh_login, just wanted it for dev. 
git-svn-id: file:///home/svn/framework3/trunk@12980 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-20 19:23:00 +00:00
HD Moore 6ccbaedd57 Add the CVE reference 
git-svn-id: file:///home/svn/framework3/trunk@12972 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-18 17:52:21 +00:00
Tod Beardsley 6827495d17 Adds a # of passwords per username limiter to authbrute. 
git-svn-id: file:///home/svn/framework3/trunk@12970 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-18 04:14:06 +00:00
Tod Beardsley db1619d035 Rejiggers the max credentials limiter a little, and adds a max time limiter per service. 
git-svn-id: file:///home/svn/framework3/trunk@12967 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-17 22:40:25 +00:00
Tod Beardsley ab37580056 Refactored the AuthBrute mixin some to make the each_user_pass function a little cleaner and easier to maintain. 
And maintain it I shall! Added in a standardized print_brute method to normalize the AuthBrute output to always include host, port, proto, and number of guesses over number remaining.

Also adds support for a MaxGuessesPerService datastore option for AuthBrute modules.

Currently, only ssh_login supports the new stuff, but now it's just a conversion matter. Will get to that in a bit.




git-svn-id: file:///home/svn/framework3/trunk@12958 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-16 22:08:45 +00:00
Steve Tornio ffbdc59add fix typo 
git-svn-id: file:///home/svn/framework3/trunk@12954 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-16 16:19:51 +00:00
Tod Beardsley 78703400c4 Sourcing the ineffective bruteforce error message on smb_login. 
git-svn-id: file:///home/svn/framework3/trunk@12953 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-16 14:56:07 +00:00
HD Moore d11e1f3294 Make all keywords consistent for modules. 
git-svn-id: file:///home/svn/framework3/trunk@12936 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-13 03:38:31 +00:00
Carlos Perez 0ea7516e09 forgot to cover some checks for when no rows where returned. 
git-svn-id: file:///home/svn/framework3/trunk@12864 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-06 01:45:55 +00:00
Jonathan Cran 68d8a68a36 apply mubix's patch, fixes #4640 
git-svn-id: file:///home/svn/framework3/trunk@12857 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-05 07:11:22 +00:00
HD Moore 911583930b Add the missing note type 
git-svn-id: file:///home/svn/framework3/trunk@12840 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-03 00:49:45 +00:00
James Lee bee19278d7 add a new javascript obfuscation engine using rkelly for parsing. use it in browser_autopwn and ms10_018_ie_behaviors. see #1003 
git-svn-id: file:///home/svn/framework3/trunk@12839 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-03 00:36:26 +00:00
amaloteaux b1bb7116ed arp_sweep : automatically detect SHOST and SMAC and do not request localhost 
git-svn-id: file:///home/svn/framework3/trunk@12823 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-02 21:31:36 +00:00
amaloteaux f1b8bbd436 arp poisoning : auto detect SMAC through new pcaprub code and avoid spoofing local host 
git-svn-id: file:///home/svn/framework3/trunk@12822 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-02 21:12:21 +00:00
HD Moore 55b4142ddf Minor cleanup 
git-svn-id: file:///home/svn/framework3/trunk@12821 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-02 20:56:55 +00:00
HD Moore f20adabf8c Fixes #4626 by checking for an out of bounds value before using the type as an array index 
git-svn-id: file:///home/svn/framework3/trunk@12809 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-01 23:47:16 +00:00
Wei Chen d54f632ea0 Add print_status() as requested by author 
git-svn-id: file:///home/svn/framework3/trunk@12726 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 23:50:05 +00:00
Wei Chen eb72982751 Fixed a typo for variable res 
git-svn-id: file:///home/svn/framework3/trunk@12725 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 23:46:16 +00:00
Wei Chen 869a6dbbe5 Added Rosewill RXS-3211 IP Camera Password Retriever 
git-svn-id: file:///home/svn/framework3/trunk@12724 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 22:06:51 +00:00
Tod Beardsley 81e1b41840 Fixes #4578. If the user has Nokogiri of a reasonable version installed, use that to parse Nmap-created XML documents. Otherwise, fall back to the existing REXML parser. 
git-svn-id: file:///home/svn/framework3/trunk@12702 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-24 19:40:50 +00:00
amaloteaux ee55e0cf76 http_ntlm & smb capture : correct john/cain output, Fixes #4565 and completly Fixes #4362 now 
git-svn-id: file:///home/svn/framework3/trunk@12683 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-22 14:05:55 +00:00
Tod Beardsley 5ecc8d2551 Spelling. 
git-svn-id: file:///home/svn/framework3/trunk@12682 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-22 14:00:35 +00:00
amaloteaux 305e3ca308 typo 
git-svn-id: file:///home/svn/framework3/trunk@12681 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-22 11:54:51 +00:00
amaloteaux 097f954e7b arp spoof : re-Arping the hosts after user interupt 
git-svn-id: file:///home/svn/framework3/trunk@12680 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-22 11:47:54 +00:00
HD Moore a8c474d7d6 Add the versioned (1.0) RPC backend 
git-svn-id: file:///home/svn/framework3/trunk@12679 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-22 03:50:14 +00:00
amaloteaux 39978dca42 arp spoof : -add an auto_add option to automatically detect new host and spoof them 
-move broadcast option back to advanced 
-enable listener by default


git-svn-id: file:///home/svn/framework3/trunk@12678 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-21 16:26:11 +00:00
Tod Beardsley 520aa7d01c Fixes #4558. Since the arp spoofer is the only module that actually uses lookupaddrs, don't require every other pcaprub module to check for it. 
git-svn-id: file:///home/svn/framework3/trunk@12672 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-20 14:26:24 +00:00
James Lee 9a2e655c53 test for java explicitly when we have javascript, refactor several things, add a 'list' command, and make the info description more descriptive 
git-svn-id: file:///home/svn/framework3/trunk@12670 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-20 09:11:43 +00:00
HD Moore e2e27341be Rename this thing 
git-svn-id: file:///home/svn/framework3/trunk@12668 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-19 19:50:11 +00:00
Mario Ceballos 3fedad5715 add matteo's patch. 
git-svn-id: file:///home/svn/framework3/trunk@12666 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-19 19:02:58 +00:00
James Lee f7178bf4de somehow typo'd this between testing and commit... fixes #4510 
git-svn-id: file:///home/svn/framework3/trunk@12642 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-17 04:46:52 +00:00
James Lee 158e196e20 don't bail when we get a '550 user unknown' error, try harder for domain checks. fixes #4031, thanks Lonnie Benavides for the patch 
git-svn-id: file:///home/svn/framework3/trunk@12641 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-16 23:45:28 +00:00
James Lee 554ebd7040 make author field consistent, fixes #4336 
git-svn-id: file:///home/svn/framework3/trunk@12636 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-16 17:21:59 +00:00
HD Moore cf3bcf2bcf Revert to old behavior for now 
git-svn-id: file:///home/svn/framework3/trunk@12635 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-16 14:45:37 +00:00
HD Moore 9c93eda851 Disable Java attacks for IE (breaks the chaining) 
git-svn-id: file:///home/svn/framework3/trunk@12632 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-16 04:21:58 +00:00
Tod Beardsley 056cde292f Deprecate the exploited_host table. Vulns that indicate a successful exploit without opening a session should set the :exploited_at timestamp. 
git-svn-id: file:///home/svn/framework3/trunk@12623 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-15 22:19:00 +00:00
Joshua Drake 28ae2316a4 Fixes #4390, such a bute 
git-svn-id: file:///home/svn/framework3/trunk@12578 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-10 20:52:59 +00:00
HD Moore 244e251d7b Keywords 
git-svn-id: file:///home/svn/framework3/trunk@12567 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-08 21:36:29 +00:00
amaloteaux af87e1def0 weird, was pretty sure those lines are some how automatically updated .... 
git-svn-id: file:///home/svn/framework3/trunk@12566 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-08 04:49:11 +00:00
amaloteaux 09a2bceec5 arp_spoof: add an arp poisoning auxiliary module with several config mode 
git-svn-id: file:///home/svn/framework3/trunk@12564 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-08 04:26:16 +00:00
amaloteaux 5d8db916d7 pcap_replay: small fix on th delay 
git-svn-id: file:///home/svn/framework3/trunk@12563 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-08 01:44:09 +00:00
amaloteaux fd661770ed Fix #4362, thanks to Zack Fasel for report and initial patch 
git-svn-id: file:///home/svn/framework3/trunk@12560 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-07 18:52:17 +00:00
Matt Weeks fea1459c50 Update description 
git-svn-id: file:///home/svn/framework3/trunk@12559 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-07 02:46:30 +00:00
David Rude 3b5cf3826a Added TheLightCosines OpenSSL ChangeCipherSpec DoS aux module 
git-svn-id: file:///home/svn/framework3/trunk@12538 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-04 19:08:28 +00:00
Tod Beardsley 98831c3285 Clean up an SNMP rescue clause that makes Windows Ruby builds sad. 
git-svn-id: file:///home/svn/framework3/trunk@12530 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-03 07:51:09 +00:00
HD Moore 23c355ba2c Just use :mac not :host_mac 
git-svn-id: file:///home/svn/framework3/trunk@12517 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-03 03:03:38 +00:00
HD Moore 9f53aa15a5 Catch other error types from SNMP 
git-svn-id: file:///home/svn/framework3/trunk@12504 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-02 05:38:13 +00:00
HD Moore 77328e7327 Fix report calls, thanks Minga! 
git-svn-id: file:///home/svn/framework3/trunk@12457 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-27 19:39:28 +00:00
Wei Chen e39739231d Added CVE reference 
git-svn-id: file:///home/svn/framework3/trunk@12431 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-25 05:37:41 +00:00
Tod Beardsley 3829d2606b Removing the un-used USER_AS_PASS option for ssh_login_pubkey. 
git-svn-id: file:///home/svn/framework3/trunk@12411 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-22 21:05:27 +00:00
amaloteaux 91bb4b0130 auxiliary: add a basic pcap replay module 
git-svn-id: file:///home/svn/framework3/trunk@12403 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-22 18:25:19 +00:00
Tod Beardsley ea6b1bb626 Fixes #4190 by reseting self.ssh_socket after the connection is established. 
git-svn-id: file:///home/svn/framework3/trunk@12402 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-22 15:32:00 +00:00
James Lee 2a06f2b70c remove extraneous options, fixes #4146. note that INTERFACE is not extraneous (since the user needs to be able to specify which iface to inject on) 
git-svn-id: file:///home/svn/framework3/trunk@12398 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-21 21:05:17 +00:00
Tod Beardsley 794dfc502f Avoid trying duplicate SNMP community strings against the same host. 
git-svn-id: file:///home/svn/framework3/trunk@12396 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-21 19:25:50 +00:00
Joshua Drake 78d3998854 Fixes #4125, add hostname support to the Rex DHCP server & aux module 
git-svn-id: file:///home/svn/framework3/trunk@12375 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-20 14:21:36 +00:00
Tod Beardsley 8b5d004997 Adding an nmap version checker so NSE modules can tell if it's okay to run or not. 
git-svn-id: file:///home/svn/framework3/trunk@12357 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-18 19:52:13 +00:00
HD Moore f1f15ba448 Allow socks4a to relay through meterpreter 
git-svn-id: file:///home/svn/framework3/trunk@12353 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-18 18:17:49 +00:00
amaloteaux d9e68141e0 arp sweep: correct a bug on the timeout to better detect the latest reply 
git-svn-id: file:///home/svn/framework3/trunk@12316 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-14 16:29:56 +00:00
Steve Tornio 6dc526f22b add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12295 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 18:12:17 +00:00
David Rude 5e89b22aae Added ISC DHCP Zero Length ClientID DoS Module thx TheLightCosine 
git-svn-id: file:///home/svn/framework3/trunk@12293 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 15:56:39 +00:00
Patrick Webster fb33b0cbfd Added contentkeeper_fileaccess aux traversal module. 
git-svn-id: file:///home/svn/framework3/trunk@12288 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-10 15:27:17 +00:00
Wei Chen 8efd5ce82c Added denial-of-service module for HP Data Protector's RDS service 
git-svn-id: file:///home/svn/framework3/trunk@12278 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 07:56:48 +00:00
Mike Smith d5d9d56081 Create a dedicated db table to track sessions & session events. 
* Add new db tables for session & session_events
* Migrate existing session data from events db table
* Modify session report methods to log to the new tables


git-svn-id: file:///home/svn/framework3/trunk@12273 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 21:59:32 +00:00
Patrick Webster 1c2e08d95d Added SonicWall SSL-VPN format string module. 
git-svn-id: file:///home/svn/framework3/trunk@12261 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 03:56:35 +00:00
Tod Beardsley e07147142f See #3781. smb_login implements the special keyword of <BLANK> (but also needs to be nil safe, which this fixes) 
git-svn-id: file:///home/svn/framework3/trunk@12257 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-06 21:26:46 +00:00
Tod Beardsley 30fb75c676 In smb_login, work around an odd error where you get an InvalidPacket for ACCESS_DENIED rather than a login failure. 
git-svn-id: file:///home/svn/framework3/trunk@12256 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-06 21:15:08 +00:00
Tod Beardsley b91c81a182 Fixes #4074 -- corrects the affected regexes. 
git-svn-id: file:///home/svn/framework3/trunk@12238 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-04 22:19:59 +00:00
amaloteaux 7e522d9979 http capture : add challenge as an option 
git-svn-id: file:///home/svn/framework3/trunk@12231 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-03 23:31:14 +00:00
HD Moore 86fac4ef95 This module does not meet standards for inclusion: 
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs




git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 16:11:59 +00:00
Carlos Perez 8c96711c6c shroretel user login brute force module by Keith Lee 
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 14:13:15 +00:00
Steve Tornio 8aff852f5a add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12218 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 13:41:19 +00:00
Mario Ceballos cab7a1b3e4 added auxiliary module zend/java_bridge.rb 
git-svn-id: file:///home/svn/framework3/trunk@12212 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-01 22:01:46 +00:00
natron 6743776c75 Fixing ugly spacing 
git-svn-id: file:///home/svn/framework3/trunk@12193 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-31 22:24:14 +00:00
natron e1c7be1acf Tim Medin's NBNS spoofer / world domination ensurer. 
git-svn-id: file:///home/svn/framework3/trunk@12192 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-31 22:22:13 +00:00
Wei Chen e86040f04f Added Solar FTP Server DOS 
git-svn-id: file:///home/svn/framework3/trunk@12184 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-30 19:13:46 +00:00
James Lee 792bb4da7a allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038, thanks mubix! 
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 05:42:33 +00:00
Tod Beardsley 64c3c86e1f Adding carnal0wnage's iSQL*Plus SID and login brute forcers. 
git-svn-id: file:///home/svn/framework3/trunk@12163 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-28 01:20:51 +00:00
Tod Beardsley 8d8696eb8c Fixes #4026, the HTTP options scanner now reports its vulnerability in the normal way. 
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-25 17:03:16 +00:00
amaloteaux ec5e61966d oops revert the unwanted early commit on mssql 
git-svn-id: file:///home/svn/framework3/trunk@12114 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 20:53:57 +00:00
amaloteaux 46cf938475 fix typo 
git-svn-id: file:///home/svn/framework3/trunk@12112 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 20:47:49 +00:00
David Rude c9e4aa11df Fixed the report note to not use the proper data format 
git-svn-id: file:///home/svn/framework3/trunk@12108 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 18:15:40 +00:00
HD Moore fff99db43d Fix the report_note not to clash with smb_enumusers format 
git-svn-id: file:///home/svn/framework3/trunk@12107 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 18:14:05 +00:00
David Rude 2ea46486a4 fixed report_note 
git-svn-id: file:///home/svn/framework3/trunk@12104 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 16:16:29 +00:00
David Rude 3a0c71f98b Added Xerox Workcenter aux module for enumerating users 
git-svn-id: file:///home/svn/framework3/trunk@12102 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 16:13:37 +00:00
Mario Ceballos 3f7e3ee93f added auxiliary module igss_exec_17.rb 
git-svn-id: file:///home/svn/framework3/trunk@12077 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 01:58:09 +00:00
Tod Beardsley 46dfafa81f Fixes #3987. Don't raise on the attr set, raise when the command actually wants to get run. 
git-svn-id: file:///home/svn/framework3/trunk@12063 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 20:52:08 +00:00
HD Moore 99d9dc69cd Merge in cookie support from paulino calderon 
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 04:59:02 +00:00
Tod Beardsley 42dd4fa717 Allow for duplicates for vnc_login since there's no username. 
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-20 18:10:49 +00:00
Tod Beardsley f2057f54a8 De-dup'ed get_link_filter() in the crawler module. Added some comment 
docs on crawler_process_page(). Nothing exciting.



git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-17 21:21:21 +00:00
Carlos Perez 6a1acd6a54 small typo 
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 23:27:13 +00:00
Joshua Drake 5bfd574029 fix parse error 
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 22:07:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied 
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 21:41:47 +00:00
Tod Beardsley d289aa8733 Another touchup on author credit for oracle-brute NSE script integration. 
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 21:05:09 +00:00
Tod Beardsley c6a9a6efd7 Am I really updating for a misplaced comment? Why yes I am! 
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:45:29 +00:00
Tod Beardsley 424eb1f192 Adding a reference to NSE as well. 
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:26:20 +00:00
Tod Beardsley 9b431c0c8d Adding Patrik Karlsson as an author for the nmap nse script 
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:19:57 +00:00
Tod Beardsley ecb89c785b Actually use the API for appending command line arguments for nmap. 
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 21:59:35 +00:00
Tod Beardsley 5e715c22db Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist. 
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 21:16:18 +00:00
Tod Beardsley 292f357f7a Moving requires from oracle_login to nmap. Duh. 
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 20:46:03 +00:00
James Lee 7d12151ec6 add support for http digest authentication. fixes #2504, thanks oliver kleinecke for the patch! 
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 22:37:16 +00:00
Tod Beardsley 6e0e23f5ba Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions. 
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 22:13:57 +00:00
Tod Beardsley f568b3e0d8 Normalize the print_status banners for sid_brute 
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 18:25:34 +00:00
Tod Beardsley 70127c09fb Fixes #3939 by setting the racket bits correctly. 
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 15:58:17 +00:00
Tod Beardsley 03f227817e blarg lost a commit in there. 
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 14:41:46 +00:00
Tod Beardsley b8b175fd5c See #3941. Don't report the same thing a billion times. 
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 14:34:19 +00:00
Tod Beardsley b68396351a See #3941. This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it. 
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.

Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.

Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.



git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 22:52:50 +00:00
HD Moore 5ab60f2966 Fixes #3938 by correcting the path for the filename 
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 15:04:16 +00:00
HD Moore 293a6f2ef4 Remove unused RHOST option and fix call to .id in ICMP 
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 04:20:19 +00:00
HD Moore 09b3ecff33 Move the module to the correct location 
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-12 16:38:51 +00:00
HD Moore 2578a0e16b Correct formatting and API usage in the Majordomo2 module 
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-12 16:38:17 +00:00
amaloteaux 544fb61aa2 server capture smb will check for empty pass and not display on screen 
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 20:27:22 +00:00
Steve Tornio 03cd23a2d0 remove extra osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 17:27:27 +00:00
David Rude 00c756ee27 Added patches from Chris John Riley for SAP aux scanner modules 
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 16:50:18 +00:00
David Rude 370c42736c Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu 
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 16:37:02 +00:00
Tod Beardsley 8771b871da Whitespace cleanup on sid_brute.rb, remove redundant target_host def. 
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-10 16:55:08 +00:00
Tod Beardsley e2af0510f6 wanged up the revision splat. 
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-09 22:16:20 +00:00
Tod Beardsley 676fc22249 Fixes #3927. Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does. 
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-09 22:15:15 +00:00
HD Moore 5299bbb8db Add ip/port prefixes to the jboss scanner 
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-08 21:12:14 +00:00
amaloteaux 5f6995e8d3 enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152 
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-07 19:57:53 +00:00
Mario Ceballos 94d21dde8e fix a load error 
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 21:54:03 +00:00
Mario Ceballos 5e60545446 fix a load error 
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 21:35:31 +00:00
David Rude 2a90817b80 Fixes more style and API usage issues 
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 18:46:00 +00:00
David Rude 27ba761cd3 Fixed indentation of the cldap_payload 
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 14:01:04 +00:00
David Rude 6c1f49e73d Added Wireshark Auxiliary DoS module from joernchen 
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 13:44:41 +00:00
David Rude 37e9ad1ed4 Added SAP Management Console auxiliary scanner modules 
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 10:18:31 +00:00
Tod Beardsley 57966c66d8 This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins. 
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-24 20:42:14 +00:00
Tod Beardsley 5f70c705c1 Committing the Kippo ssh honeypot detection as seen at AHA!. 
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-24 13:57:26 +00:00
James Lee aea8192c7f apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\! 
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-23 21:47:52 +00:00
Joshua Drake 8ef05017b8 style compliance fixes, naughty naughty 
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 20:49:44 +00:00
et dd05954b34 Fix wmap to test parameters, error inj. module as example 
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 04:27:40 +00:00
Steve Tornio 13809850a3 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-19 13:35:57 +00:00
Joshua Drake 8b4ef42fa3 randomize name string 
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-17 19:21:24 +00:00
Joshua Drake 2ef3e79c3d add cve/bid refs 
git-svn-id: file:///home/svn/framework3/trunk@11764 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-17 14:41:48 +00:00
Joshua Drake 7365ca9509 add aux module to trigger browser election DoS 
git-svn-id: file:///home/svn/framework3/trunk@11756 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-16 18:12:28 +00:00
Joshua Drake 7fb3094bb0 remove "File" from title 
git-svn-id: file:///home/svn/framework3/trunk@11746 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-12 22:30:54 +00:00
HD Moore 070f48e16a Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address 
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-08 17:32:37 +00:00
et baab86fc52 WMAP 1.0 and first pass on some modules 
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-04 05:57:26 +00:00
Tod Beardsley 3f1ceea349 Fixes #3655. Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters. 
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-04 01:54:32 +00:00
James Lee 16fad17453 snmp_enum improvements from Kashif Iftikhar, fixes #3654 
git-svn-id: file:///home/svn/framework3/trunk@11706 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-04 01:26:23 +00:00
Jonathan Cran 5b5e7028ad quick mod from daniel clemens to show the ip with the url 
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 19:04:54 +00:00
Tod Beardsley 671659841b On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report. 
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 18:39:48 +00:00
Tod Beardsley e31f35e3ae Fixes #3643. These modules now report_vuln() correctly. 
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 17:42:23 +00:00
Tod Beardsley 99b1703416 Trailing comma on cisco_ios_auth_bypass 
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 17:07:31 +00:00
Tod Beardsley cec851a5ed Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references. 
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 17:06:40 +00:00
Joshua Drake 2c93910f4b switch to .html per reports of brokennes 
git-svn-id: file:///home/svn/framework3/trunk@11683 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-31 06:18:13 +00:00
HD Moore ac651fba6b Merge code from Alexandre Maloteaux, fixes #3615 
git-svn-id: file:///home/svn/framework3/trunk@11678 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-30 19:26:35 +00:00
Joshua Drake 89a731b789 Prevent trying to call .map on nil 
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-27 16:39:19 +00:00
Joshua Drake c9d3d60b23 Rework external command invocation 
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-26 01:28:27 +00:00
Joshua Drake a0a8ea8cbd re-order includes a bit 
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-25 21:32:59 +00:00
HD Moore 3794ed35cc Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk: 
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf



git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-25 02:24:37 +00:00
Joshua Drake d9fe9da849 add DoS module from Paulino Calderon 
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-25 00:11:41 +00:00
natron 1be3448959 svn propset 
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-24 22:21:08 +00:00
natron bb4343bf63 Add new domain user enumeration aux mod. Still needs an update to include db reporting. 
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-24 22:14:57 +00:00
James Lee d7cda0f85a accept a client argument for get_uri() 
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-22 00:16:57 +00:00
Joshua Drake 80eb7bad52 Fixes #3257, Adds two mod_negotiation scanner modules from DiabloHorn 
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-21 22:26:33 +00:00
Tod Beardsley aeb1f684c0 Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs). 
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-21 17:24:03 +00:00
Joshua Drake e821f7e757 Fixes #3567, apply patch to make ports/payloads configurable 
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-20 20:32:18 +00:00
Joshua Drake 362c409623 Fixes #3554, add missing variable to published_applications (from published_bruteforce), some clean ups 
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-20 00:22:21 +00:00
Joshua Drake be0169cef1 add android file snarfer exploit 
git-svn-id: file:///home/svn/framework3/trunk@11601 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-19 18:04:54 +00:00
Tod Beardsley 1d7745d449 Add some tracking datastore objects (ParentUUID and AutopwnUUID) to browser_autopwn.rb's exploits and multi/handlers to make exploit tracking a little easier. 
git-svn-id: file:///home/svn/framework3/trunk@11592 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-17 22:15:22 +00:00
James Lee f2661e68db don't respond with 404's for requests that don't match the URIPATH exactly. allows for more generic hash stealing and fixes 3442 
git-svn-id: file:///home/svn/framework3/trunk@11576 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-13 20:57:33 +00:00
Joshua Drake 14617450d0 catch connection errors 
git-svn-id: file:///home/svn/framework3/trunk@11537 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-10 20:03:53 +00:00
Joshua Drake b9836dcf50 fix success detection read loop 
git-svn-id: file:///home/svn/framework3/trunk@11535 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-10 19:40:39 +00:00
Joshua Drake 287f4c87fe style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 01:13:26 +00:00
HD Moore 74bf5199f1 Patches from goony, fixes #3438 
git-svn-id: file:///home/svn/framework3/trunk@11497 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 21:35:57 +00:00
Joshua Drake 4ae8b8b14a add snmp_set scanner from Matteo Cantoni (Fixes #3437), remove executable property from enums 
git-svn-id: file:///home/svn/framework3/trunk@11494 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 21:23:22 +00:00
James Lee 1ecb293010 pass the listener bind address through to handlers 
git-svn-id: file:///home/svn/framework3/trunk@11493 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 21:18:24 +00:00
Tod Beardsley 24388f3a38 Adding a CVE reference for weak/blank/guessable passwords. 
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 15:30:17 +00:00
Joshua Drake 5e2abcc88c add DoS module for IIS FTP server 
git-svn-id: file:///home/svn/framework3/trunk@11456 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-31 18:32:55 +00:00
HD Moore bec8a95b02 Merges pello's Cisco uploader module, merges changes back into the TFTP server class. Fixes #3429 
git-svn-id: file:///home/svn/framework3/trunk@11454 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-30 16:37:58 +00:00
HD Moore b7a05f03b0 Remove duplicate line 
git-svn-id: file:///home/svn/framework3/trunk@11449 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-29 20:12:14 +00:00
Joshua Drake 885545a94e add http:bl scanner from mubix, fixes #3346 
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-28 18:33:45 +00:00
HD Moore d202a5abf2 Add missing mixin 
git-svn-id: file:///home/svn/framework3/trunk@11423 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-27 18:10:41 +00:00
HD Moore 30affd4b2c This commit adds a new set of discovery modules from wuntee and some useful utility methods for working with link-local addresses 
git-svn-id: file:///home/svn/framework3/trunk@11417 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-27 16:43:53 +00:00
Steve Tornio 37a3ca4643 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11415 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-27 13:16:15 +00:00
HD Moore 2f97c61f86 Add the uber SNMP enumeration module from Matteo Cantoni 
git-svn-id: file:///home/svn/framework3/trunk@11412 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 06:31:38 +00:00
HD Moore 5875fdb701 Two new SNMP community enumeration tools for Windows by tebo (local account list and SMB shares). Addition of a Meterpreter script for snagging the SNMP community from the registry 
git-svn-id: file:///home/svn/framework3/trunk@11410 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 06:08:34 +00:00
HD Moore b7eec06041 Deregister username-specific options since they aren't supported anyways, a suggestion from tebo 
git-svn-id: file:///home/svn/framework3/trunk@11409 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 06:02:35 +00:00
HD Moore 8a4f6de5c4 Correct state processing in the additional address discovery code. 
git-svn-id: file:///home/svn/framework3/trunk@11385 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-21 02:22:56 +00:00
HD Moore 3f7809ca5a Patch to fix vuln reporting by swtornio 
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-18 18:55:36 +00:00
James Lee 9c1f7b28e2 pass SSL opt on to submodules 
git-svn-id: file:///home/svn/framework3/trunk@11346 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-15 23:02:04 +00:00
HD Moore 55b21d4aaf Fixes to enable password parsing and rw/ro detection in snmp brute force 
git-svn-id: file:///home/svn/framework3/trunk@11336 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-14 20:51:17 +00:00
Joshua Drake b30270e742 fix version 
git-svn-id: file:///home/svn/framework3/trunk@11310 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-12 19:06:18 +00:00
HD Moore cff22d7a56 Consistency change to make snmp act like other login modules 
git-svn-id: file:///home/svn/framework3/trunk@11303 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-12 07:27:35 +00:00
HD Moore 58565cd53f Rename community to snmp_login and include the brute force mixin 
git-svn-id: file:///home/svn/framework3/trunk@11302 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-12 07:09:43 +00:00
HD Moore 4e4eb14887 This adds a TFTP version of #3345 (Pello's snmp config downloader). Still more work to do for the generic module 
git-svn-id: file:///home/svn/framework3/trunk@11300 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 23:36:37 +00:00
HD Moore fb7a06b218 Correct typo, find coffee 
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 20:03:35 +00:00
HD Moore 909eeefc8f Change of plan, keep this as a single module 
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 19:54:47 +00:00
HD Moore 37ffccde08 Rename this module for clarity 
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 19:27:26 +00:00
HD Moore 8162d100fd Add keywords 
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 07:49:22 +00:00
HD Moore e3f909cef9 Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers. 
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 07:37:09 +00:00
HD Moore 26aca9d6ba Swap some module locations, add loot and cred reporting 
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 05:47:33 +00:00
Tod Beardsley e18548387c Ensure that UDP services are set to "open" in case they already had a "closed" record. 
git-svn-id: file:///home/svn/framework3/trunk@11270 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 01:13:44 +00:00
HD Moore b3b2bf6675 Stop testing users if the device doesn't support it 
git-svn-id: file:///home/svn/framework3/trunk@11269 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 00:58:55 +00:00
Tod Beardsley 493db14006 Adds a "duplicate_ok" option to report_auth_info to allow for multiple passwords on the same username. Never came up before I took a look at SNMP. 
Also normalizes the print_status messages to be explicit about which module is reporting (important when you're running several at once).



git-svn-id: file:///home/svn/framework3/trunk@11267 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-09 21:23:39 +00:00
Joshua Drake 1da08b0bdc abort if retries count exceeded 
git-svn-id: file:///home/svn/framework3/trunk@11263 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 23:57:14 +00:00