infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
36,385 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

36385 Commits (09c58e4097eb32a4a1ab8b2cc2c820a518597cb6)

Author SHA1 Message Date
Jon Hart e4bf5c66fc
Use slightly larger random script/handler names to avoid conflicts 2015-11-18 11:51:44 -08:00
Jon Hart e7307d1592
Make cleanup failure messages more clear 2015-11-18 11:44:34 -08:00
Jon Hart 0e3508df30 Squash minor rubocop gripes 2015-11-18 11:05:10 -08:00
Jon Hart f8218f0536 Minor updates to print_ output; wire in handler_exists; 2015-11-18 11:05:10 -08:00
Jon Hart 392803daed Tighten up cleanup code 2015-11-18 11:05:10 -08:00
William Vu 657e50bb86 Clean up module 2015-11-18 12:50:57 -06:00
m0t c0d9c65ce7 always overwrite the payload file 2015-11-18 18:48:34 +00:00
wchen-r7 0cda20c9e2 Fix everything pointed out by @jlee-r7 2015-11-18 12:02:28 -06:00
wchen-r7 682a41af2e Update description 2015-11-18 11:52:50 -06:00
wchen-r7 d6921fa133 Add Atlassian HipChat for Jira Plugin Velocity Template Injection 
CVE-2015-5603

Also fixes a bug in response.rb (Fix #6254)
 2015-11-18 11:34:25 -06:00
sammbertram a484b318eb Update registry_persistence.rb 2015-11-18 16:13:18 +00:00
sammbertram 1fe8bc9cea Added a SLEEP_TIME option 
Added a SLEEP_TIME options which is the number of seconds to sleep prior to executing the initial IEX request. This is useful in cases where a machine would have to establish a VPN connection, initiated by the user, after a reboot. 

Alternatively, as opposed to a sleep time, it could have a loop that attempts to retry for a certain period of item.
 2015-11-18 11:17:57 +00:00
m0t 109a733a4e Merge pull request #6 from jhart-r7/pr/fixup-6228 
More cleanup of F5 BIG-IP iCall privilege escalation vulnerability (CVE-2015-3628)
 2015-11-18 09:50:37 +01:00
Jon Hart 089a006408
Land #6248 2015-11-17 14:28:55 -08:00
Jon Hart e21bf80ae4
Squash a rogue space 2015-11-17 14:17:59 -08:00
Jon Hart 3396fb144f
A little more simplification/cleanup 2015-11-17 14:16:29 -08:00
Jon Hart dcfb3b5fbc
Let Filedropper handle removal 2015-11-17 13:01:06 -08:00
HD Moore a9e8ab785e
Land #6220, adds ATG client module 2015-11-17 13:31:17 -06:00
HD Moore e107ec2d17 Change fail to fail_with, fix typo 2015-11-17 13:30:46 -06:00
HD Moore 74f6ff7752 Rename to atg_client to match conventions 2015-11-17 12:59:37 -06:00
jvoisin 44d477a13c Fix some rubocop warnings 2015-11-17 13:26:50 +01:00
Roberto Soares ac99f9c229 Fix condition 2015-11-17 00:52:42 -02:00
Roberto Soares f69e7c0fb3 Fix condition 2015-11-17 00:49:04 -02:00
Roberto Soares a48d0b275b Added check if the commands executed successfully. 2015-11-17 00:07:31 -02:00
wchen-r7 f6fdabfd77
Land #6239, added Session info display to module output 
MS-706
 2015-11-16 18:10:58 -06:00
wchen-r7 038d367d58 Fix #6247, Update Meterpreter Usage on "Interact" 
The "interact" command does not actually exist. Instead, users
should do "channel -i" to interact with a channel.

Fix #6247
 2015-11-16 17:58:39 -06:00
wchen-r7 a78fa7c3d9 Fix #4273, print error in create_session 
Fix #4273
 2015-11-16 17:17:20 -06:00
Jon Hart 715f20c92c
Add missing super in setup 2015-11-16 14:45:13 -08:00
jvoisin 70407a4f21 3600 * 60 * 24 isn't one day 2015-11-16 23:18:02 +01:00
wchen-r7 17a1f2ee8a Fix #6242, Check nil for sock.read 
Fix #6242
 2015-11-16 14:24:46 -06:00
wchen-r7 f0da09090d
Land #6233, Konica Minolta FTP Utility 1.00 Directory Traversal 2015-11-16 13:55:29 -06:00
wchen-r7 740cacb4c0 Check nil 2015-11-16 13:54:36 -06:00
Jon Hart 902951c0ca
Clean up description; Simplify SOAP code more 2015-11-16 11:06:45 -08:00
Jon Hart 1aa1d7b5e4
Use random path for payload 2015-11-16 10:57:48 -08:00
William Vu 24c41c9261
Land #6225, wall(1)/write(1) post module 2015-11-16 12:47:35 -06:00
Jon Hart ee5d91faab
Better logging when exploit gets 401 2015-11-16 10:41:48 -08:00
Jon Hart c4ffd7ae36
When sending SOAP requests, print out proto/status/message when fail 2015-11-16 10:38:40 -08:00
David Maloney 708cbe9479
change the default SMBDomain to . 
Due to a recent change using WORKGROUP
as the SMBDomain causes Trust errors.
Using '.' instead works fine.
 2015-11-16 12:20:27 -06:00
David Maloney a1ab8f1dc7
added Session info display to module output 
output from the mssql_local_auth_bypass module
is now prefixed with the Session id and address
of the target host so it is explicitly clear
where it is performing each action

MS-706
 2015-11-16 12:13:26 -06:00
scriptjunkie 06a5b5b0bd
Land #6234, Host header transport 2015-11-14 11:35:47 -06:00
Jon Hart d0c928081b
Land #6231 2015-11-13 13:30:31 -08:00
Jon Hart c914c7b22c
Completely remove SET_TIME 2015-11-13 12:28:23 -08:00
Jon Hart ab3ae675ff
Hide TIME option since SET_TIME is not implemented 2015-11-13 12:26:42 -08:00
Jon Hart ad22eb8444
More cleanup 2015-11-13 12:24:28 -08:00
m0t 504924e983 Merge pull request #5 from jhart-r7/pr/fixup-6228 
Code/style cleanup for F5 BIG-IP iCall privilege escalation vulnerability (CVE-2015-3628)
 2015-11-13 20:23:36 +00:00
Jon Hart 045bab052e
Add configurable timeout 2015-11-13 12:18:40 -08:00
Jon Hart 6e9afc38ee
print_good when we get something 2015-11-13 12:12:37 -08:00
Jon Hart 196a88c39a
Style nit 2015-11-13 12:06:00 -08:00
Jon Hart 38ca943219
Remove unneeded width arg 2015-11-13 11:49:50 -08:00
Jon Hart e58e17450a
Simplify XML building 2015-11-13 11:36:56 -08:00