sinn3r
543f5ebfe2
Only display the retry message when necessary
2012-03-31 02:40:24 -05:00
sinn3r
4215030eb3
Set a limit to how many times we can retry
2012-03-31 02:38:46 -05:00
sinn3r
6e4ccaae6b
Add post module to collect xchat's configs and chat logs
2012-03-31 00:15:21 -05:00
James Lee
cc54a260f5
Merge remote branch 'upstream/master'
2012-03-30 14:31:12 -06:00
James Lee
0547369966
Add bap support for flash mp4 and new java bug
...
Also fixes a silly issue where adobe_flash_mp4_cprt was adding the
/test.mp4 resource after every request instead of just once at startup.
2012-03-30 12:59:07 -06:00
sinn3r
e723704a32
Merge pull request #289 from wchen-r7/enum_colloquy
...
Add post module enum_colloquy.rb to collect chatlogs and the plist
2012-03-30 09:24:32 -07:00
sinn3r
18a13a4bfb
Correct description
2012-03-30 11:22:55 -05:00
Steve Tornio
ae21c05e69
add osvdb ref
2012-03-30 07:26:07 -05:00
sinn3r
e018c6604f
Modify CVE-2012-0507
2012-03-30 02:06:56 -05:00
sinn3r
8d2a58dfd8
Add post module enum_colloquy.rb to collect chatlogs and the preferences list
2012-03-29 16:24:43 -05:00
Tod Beardsley
f069a32223
Merge pull request #288 from wchen-r7/cve_2012_0507
...
Adding sinn3r and juan's exploit for CVE-2012-0507. Blog post coming soon.
2012-03-29 08:46:49 -07:00
sinn3r
791ebdb679
Add CVE-2012-0507 (Java)
2012-03-29 10:31:14 -05:00
Tod Beardsley
bd4819e8f2
Merge pull request #238 from mak/linux-x64-find-port
...
linux/x64/shell_find_port payload
2012-03-29 05:54:54 -07:00
Tod Beardsley
220ad7875f
Merge pull request #285 from wvandevanter-r7/squid_pivot_scanning
...
Squid pivot scanning
2012-03-29 05:02:05 -07:00
Willis Vandevanter
f5e05461f6
changed the false positive check IP to a user set variable
2012-03-28 22:18:56 -04:00
Willis Vandevanter
0fcab521d2
fixed print_bad
2012-03-28 02:32:03 -04:00
Tod Beardsley
5248ec87b5
Fixing EDB reference
2012-03-27 16:49:47 -05:00
Tod Beardsley
b1683c94ef
Merge pull request #281 from jlee-r7/module-tests
...
Module tests
2012-03-27 10:23:20 -07:00
James Lee
812457fed0
Rename enum_user_dirs
2012-03-27 10:52:16 -06:00
Tod Beardsley
5f9000efb3
Merge pull request #280 from wchen-r7/osx_airport
...
Add OSX Gather Airport post module
2012-03-27 05:48:26 -07:00
sinn3r
e44f9d06ec
Remove the extra 'require'
2012-03-27 01:24:12 -05:00
sinn3r
670e15b40f
Add OSX Gather Airport post module
2012-03-27 01:18:38 -05:00
Tod Beardsley
fb9163caf9
Merge pull request #278 from wchen-r7/manageengine_deviceexpert
...
Add OSVDB-80262 ManageEngine DeviceExpert
2012-03-26 14:42:36 -07:00
Tod Beardsley
7a74cc7694
Quoting "Chicken of the VNC"
...
Otherwise, this looks like a nonsense string to people not familiar with
this application.
2012-03-26 16:26:40 -05:00
Tod Beardsley
8fbf4cf6d9
Grammar on dns_txt_query_exec payload name and desc
2012-03-26 16:23:54 -05:00
Tod Beardsley
d95d60670e
Fix up desc again on enum_dns
2012-03-26 16:20:00 -05:00
Tod Beardsley
14b45f9fb1
More fixes to enum_dns.rb
...
* Should use 'and', not & (bitwise AND)
* Made capitalization sane for Anglophones. See: http://owl.english.purdue.edu/owl/resource/592/1/
2012-03-26 16:14:04 -05:00
Tod Beardsley
dc6f76eb20
Style fixes for enum_dns.rb
...
* Use a dotted.notation for note types
* Changed title to something more descriptive
* Expanded description
* Other trivial changes
2012-03-26 16:08:39 -05:00
sinn3r
79d74b8768
ADD OSVDB-80262
2012-03-26 12:58:18 -05:00
sinn3r
19fc8d9883
Add OSVDB-80262
2012-03-26 12:42:24 -05:00
Tod Beardsley
507dd423ce
Rogue period, DELETED.
2012-03-26 10:54:26 -05:00
sinn3r
182f3744de
Cosmetic cleanup
2012-03-26 09:23:14 -05:00
corelanc0d3r
ad32911b1a
probably safer to use regex
2012-03-26 09:01:40 -05:00
Kurtis Miller
e2606764cb
forgot to add renamed module
2012-03-25 09:08:38 -07:00
Kurtis Miller
7ea37253a0
modifications recommended by sinn3r
2012-03-25 09:04:35 -07:00
Kurtis Miller
d8ddb19b56
cve-2008-0610 windows exploit module
2012-03-25 00:14:19 -07:00
Jonathan Cran
135cf7ba04
remove trailing comma, thanks troulouliou
2012-03-23 17:00:04 -05:00
Tod Beardsley
e1783acd6f
Adding newline to end of ricoh_dl_bof.rb
2012-03-23 16:31:11 -05:00
Tod Beardsley
2bcf259301
Setting correct LFs on freepbx_callmenum.rb
2012-03-23 16:29:42 -05:00
wchen-r7
71462bc73d
Merging in freepbx_callmenum.rb and ricoh_dl_bof.rb
...
[Closes #266 ]
2012-03-23 16:23:36 -05:00
sinn3r
fbfd308d79
This actually shouldn't go it now because it's still being code reviewed
2012-03-23 15:32:24 -05:00
Tod Beardsley
47493af103
Merge pull request #259 from todb-r7/edb-2
...
Convert Exploit-DB references to first-tier "EDB-12345" references
2012-03-23 12:09:07 -07:00
sinn3r
6f0f9041c8
Merge pull request #267 from wchen-r7/hp_data_protector_win_cmd
...
Add HP Data Protector aux module for executing commands on Windows
2012-03-23 11:06:52 -07:00
sinn3r
10733f6a1c
Update description
2012-03-23 13:05:40 -05:00
sinn3r
fef1e31e2a
Merge branch 'olliwolli-3cdaemonsp3'
2012-03-23 08:52:19 -05:00
Tod Beardsley
e30623a2c9
Merge pull request #264 from wchen-r7/ricoh_dc_exploit
...
Add Ricoh DC DL-10 FTP Buffer Overflow
2012-03-23 06:45:02 -07:00
sinn3r
20f0a58c6a
Minor fixes
2012-03-23 08:23:30 -05:00
sinn3r
41bc8ded3d
Add HP Data Protector aux module for executing commands on Windows
2012-03-23 07:57:13 -05:00
Oliver-Tobias Ripka
30a3d8bb96
Add Windows SP3 to targets.
2012-03-23 13:52:18 +01:00
James Lee
17a044db89
Print the full URI
...
Makes everything obvious from output alone, don't need to show options
to see what RHOST is.
2012-03-22 18:44:55 -06:00
sinn3r
6625d97599
Add Ricoh DC DL-10 FTP Buffer Overflow
2012-03-22 15:30:00 -05:00
Patrick Webster
3dc0e97998
Updating description and refs to Patrick's module
...
There was some weirdness with the commit log on this module but it
should all be kosher now.
[Closes #260 ]
2012-03-22 10:30:25 -05:00
James Lee
2d29184adc
Use interpolation to ensure LPORT is a string for gsub
...
[Fixes #6542 ]
2012-03-21 21:05:05 -06:00
sinn3r
ddacf1dde8
Merge pull request #258 from wchen-r7/ms10_002_ie
...
Add CVE-2010-0248 Internet Explorer Object Handling Use After Free
2012-03-21 17:20:27 -07:00
sinn3r
0a24c354db
Update ms10-002 with dyphens
2012-03-21 19:19:20 -05:00
Tod Beardsley
7d12a3ad3a
Manual fixup on remaining exploit-db references
2012-03-21 16:43:21 -05:00
Tod Beardsley
2f3bbdc00c
Sed replacement of exploit-db links with EDB refs
...
This is the result of:
find modules/ -name \*.rb -exec sed -i -e 's#\x27URL\x27,
\x27http://www.exploit-db.com/exploits/ \([0-9]\+\).*\x27#\x27EDB\x27,
\1#' modules/*.rb {} \
2012-03-21 16:43:21 -05:00
sinn3r
2c16eb29b6
Add CVE-2010-0248 Internet Explorer Object Handling Use After Free exploit
2012-03-21 16:11:26 -05:00
Tod Beardsley
31228ed65a
Comment indentation
2012-03-21 15:21:10 -05:00
Tod Beardsley
482a1a8511
Merge pull request #253 from corelanc0d3r/dnspayload
...
rewrote DNS TXT query out-of-band payload delivery shellcode
2012-03-21 13:19:55 -07:00
Tod Beardsley
8f17cc3f5c
MS12-020 not MS12-002
2012-03-21 13:58:18 -05:00
Tod Beardsley
23c9c51014
Fixing CVE format on sit_file_upload.
2012-03-21 09:59:20 -05:00
Tod Beardsley
b09d91d1c7
Removing enum_bing_url
...
Moving this over to unstable until the described http request problem
gets resolved.
2012-03-21 09:33:31 -05:00
Peter Van Eeckhoutte
89d7363a8f
fixed crash
2012-03-21 10:39:05 +01:00
sinn3r
c64226f4b8
Fix regex
2012-03-21 04:31:49 -05:00
sinn3r
056985625d
damn comma
2012-03-21 04:06:54 -05:00
sinn3r
e973da7c6d
Add Chicken of the VNC client profile collector module
2012-03-21 04:04:35 -05:00
Peter Van Eeckhoutte
f81730a7e1
changes to the way jmp to payload is done
2012-03-21 09:52:22 +01:00
corelanc0d3r
45ef7fc35d
reset author
2012-03-20 20:43:56 +01:00
sinn3r
ed542e2b6c
Change dns_enum to enum_dns for naming style consistency
2012-03-20 14:11:04 -05:00
sinn3r
b8b5c79957
No need for net/http
2012-03-20 14:09:40 -05:00
sinn3r
777e221232
Add Bing URL enumerator by Royce (Feature #6499 )
2012-03-20 14:07:42 -05:00
Tod Beardsley
da963fc8b2
Adding OSVDB for dell_webcam_crazytalk.rb
2012-03-20 07:52:50 -05:00
Tod Beardsley
e325469f6e
Grammar fix for dell_webcam_crazytalk module
2012-03-20 07:43:02 -05:00
sinn3r
f4dac59894
Add Dell Webcam CrazyTalk component BackImage overflow exploit
2012-03-20 03:46:37 -05:00
Peter Van Eeckhoutte
a3035dc6d0
Adding corelandc0d3r's http/https/ftp payload
...
Picks up the one http/https/ftp payload, but not the other two DNS
payloads listed as part of the original pull request.
[Closes #173 ]
2012-03-19 16:50:59 -05:00
Tod Beardsley
bff860c62d
s/brute force/bruteforce
...
This is the preferred spelling in Metasploit, at least, according to
grep consensus:
./metasploit-framework$ grep -ri "brute force" . | wc -l
111
./metasploit-framework$ grep -ri "bruteforce" . | wc -l
183
2012-03-19 16:14:00 -05:00
Tod Beardsley
4391c24d2f
Trivial touchups on RDP DoS module.
...
Dropping a line about what it can't do, adding freenode comment.
2012-03-19 14:27:27 -05:00
sinn3r
3a851ef2c2
Fix typo
2012-03-19 13:20:59 -05:00
sinn3r
3d72d52625
Add reporting to MS12-020
2012-03-19 13:18:51 -05:00
sinn3r
fa4504e1f6
Let's make this clear, it's just a DoS
2012-03-19 13:00:29 -05:00
sinn3r
13f16daca7
Actually, that date is way off. Corrected.
2012-03-19 12:58:52 -05:00
sinn3r
d8be328b89
Ported Daniel/Alex/jduck's MS12-020 PoC as a Metasploit module
2012-03-19 12:53:34 -05:00
sinn3r
cdd7a16603
Apply egypt's fix for "\n"
2012-03-19 10:19:10 -05:00
sinn3r
aeb691bbee
Massive whitespace cleanup
2012-03-18 00:07:27 -05:00
sinn3r
7c77fe20cc
Some variables don't need to be in a double-quote.
2012-03-17 20:37:42 -05:00
sinn3r
acac3fa38d
Add back enum_protections with some new changes
2012-03-17 16:00:20 -05:00
ohdae
14d427fa87
Added fix for enum_protections
2012-03-17 13:28:31 -04:00
sinn3r
78331bb4c1
A bunch of fixes
2012-03-17 03:14:26 -05:00
sinn3r
4a0c75f4b3
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework
2012-03-17 02:38:35 -05:00
sinn3r
ff093c3f93
The comments in get_chatlogs need an update
2012-03-17 00:28:05 -05:00
sinn3r
39cfa43250
Correct license format
2012-03-17 00:25:41 -05:00
sinn3r
3479a314e3
Add enum_adium.rb post module
2012-03-17 00:22:03 -05:00
ohdae
c3f98fe284
Changed store_note to store_loot. Fixed local/remote file retrieval
2012-03-16 16:54:36 -03:00
sinn3r
d3a87b59aa
This module is not ready, yanked.
2012-03-16 11:49:31 -05:00
Gregory Man
ba6928cbf1
sockso_traversal 1.8 compatibility fix
2012-03-16 18:12:09 +02:00
ohdae
c5a4dc39c3
fix
2012-03-16 09:17:35 -04:00
ohdae
9b4ecc2777
Merge branch 'post-mods' of github.com:ohdae/metasploit-framework into post-mods
2012-03-16 09:15:47 -04:00
ohdae
b635019d56
saves each config to loot instead of notes
2012-03-16 09:14:48 -04:00
sinn3r
9f0a293a53
Correct variable name
2012-03-16 01:17:39 -05:00
ohdae
13b92b97e9
Fixed incorrect variable within get_sql_history
2012-03-16 01:40:12 -03:00
ohdae
f6a2e2b890
Enumerate important and interesting configuration files
2012-03-15 22:59:42 -04:00
David Maloney
6011da7db8
More Virtualisation SSL fixes
2012-03-15 19:06:48 -05:00
David Maloney
e4778c2ba4
Default SSL to true for esx_fingerprint module
2012-03-15 18:15:29 -05:00
Tod Beardsley
e3f2610985
Msftidy run through on the easy stuff.
...
Still have some hits, but that requires a little more code contortion to
fix.
2012-03-15 17:06:20 -05:00
Tod Beardsley
9144c33345
MSFTidy check for capitalization in modules
...
And also fixes up a dozen or so failing modules.
2012-03-15 16:38:12 -05:00
sinn3r
46dbaf8283
Fix typos and output
2012-03-15 16:10:05 -05:00
sinn3r
81b3eaa482
Fix typo
2012-03-15 15:56:24 -05:00
sinn3r
db4538389c
Add sockso dir traversal
2012-03-15 15:55:54 -05:00
James Lee
74e40763d6
Fix syntax error in 1.8, thanks Jun Koi for the patch
2012-03-15 14:32:16 -06:00
sinn3r
e53938b9d7
Merge branch 'ohdae-post-mods'
2012-03-15 14:30:23 -05:00
sinn3r
2770199d28
enum_protections is now find_apps
2012-03-15 14:27:40 -05:00
sinn3r
e5c420b676
File rename, as well as design and cosmetic changes
2012-03-15 14:22:23 -05:00
sinn3r
8b91cc54c3
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework into ohdae-post-mods
2012-03-15 13:50:43 -05:00
ohdae
7e7b220b70
added report_note, removed store_loot function, cleaned up info/author
2012-03-15 15:29:52 -03:00
sinn3r
d5f83be2d0
Cosmetic changes
2012-03-15 11:21:41 -05:00
Maciej Kotowicz
0389e47dfe
fix little mistake
2012-03-15 16:21:00 +01:00
ohdae
b88af39f74
fixed output newline issue
2012-03-15 12:18:29 -03:00
Gregory Man
9928b102b5
Added rails_mass_assignment module.
2012-03-15 16:56:38 +02:00
sinn3r
5250b179c8
Add CVE and OSVDB ref
2012-03-15 04:40:27 -05:00
ohdae
32002c595d
fixed save line
2012-03-15 01:05:35 -03:00
ohdae
c165b7b7c2
removed unneeded comments
2012-03-15 01:02:07 -03:00
ohdae
58b2d570c9
fixed output issue
2012-03-15 01:00:55 -03:00
sinn3r
65bde7ec99
Add OSVDB-79863 NetDecision Directory Traversal
2012-03-14 16:50:54 -05:00
Maciej Kotowicz
f91b894375
added posibilities for generating payload from asm to more arch's
...
added linux/x64/shell_find_port payload
2012-03-14 22:39:56 +01:00
ohdae
ffc41bf265
removed unneeded dependency
2012-03-14 18:26:53 -03:00
Jonathan Cran
c38aaede03
duplicate of enum_users_history.rb
2012-03-14 16:07:49 -05:00
ohdae
5c74b7741b
locates installed 3rd part av, fws, etc
2012-03-14 13:30:16 -04:00
sinn3r
d1efb40d2d
Fix bad path for Windows (bug #6523 ) - Thanks Francesco
2012-03-14 12:27:40 -05:00
sinn3r
3b880359fe
Change module name to better describe the purpose of it. Also some cosmetic corrections.
2012-03-14 11:44:03 -05:00
sinn3r
704f8e391d
Remove the line that's commented out
2012-03-14 11:37:43 -05:00
ohdae
60b3ee7b16
Added user specific tasks to enum_users, removed bash_hist from enum_sys, added disk space info to enum_system
2012-03-14 09:06:51 -04:00
sinn3r
50f8b6088b
Fix cosmetic problems
2012-03-14 05:20:19 -05:00
sinn3r
4872e80385
Cleanup whitespace and author format
2012-03-14 05:18:00 -05:00
sinn3r
9d7e22876c
Merge branch 'my-branch' of https://github.com/ohdae/metasploit-framework
2012-03-14 05:14:33 -05:00
sinn3r
ecb1fda682
Add OSVDB-79651: NetDecision 4.5 HTTP Server Buffer Overflow
2012-03-14 05:13:22 -05:00
ohdae
fbd076e749
removed old/ folder
2012-03-13 22:49:01 -04:00
ohdae
b86fa5c85b
Combined network tasks into enum_network.rb, Combined user/system tasks into enum_system.rb
2012-03-13 22:24:49 -04:00
ohdae
0fe26780b9
Merge branch 'my-branch' of github.com:ohdae/metasploit-framework into my-branch
2012-03-13 22:20:59 -04:00
ohdae
96fb9fd458
Combined network tasks into one module, Combined system/user tasks into one module
2012-03-13 22:18:24 -04:00
ohdae
f79bda2dc7
Update modules/post/linux/gather/enum_linux.rb
2012-03-13 21:15:47 -03:00
ohdae
3260bc6b65
Update modules/post/linux/gather/enum_linux.rb
2012-03-13 21:14:49 -03:00
ohdae
bd5950ea52
added active connections, iwconfig, if-up/down, open ports
2012-03-13 20:09:41 -04:00
ohdae
4b7e380581
Linux post ssh enum, Linux post network info
2012-03-13 17:27:21 -04:00
Tod Beardsley
81248f35c4
Changing H.323 constant for H323_STATUS_FACILITY
...
However, it's not actually being used in the module anywhere, so this
change appears cosmetic more than anything right now. However, I'm
inclined to believe Ricky's suggestions when it comes to H.323.
Corroborated by this 2003 post to the Ethereal mailing list:
http://www.ethereal.com/lists/ethereal-users/200311/msg00001.html
[See #6521 ]
2012-03-13 12:26:03 -05:00
Gregory Man
b0ba10f79c
Added afp_login module.
2012-03-13 10:01:42 +02:00
Gregory Man
5b13b7d1d9
Extracted common AFP functionality to mixin
2012-03-13 09:56:03 +02:00
Jonathan Cran
1cf25e58d5
merge description change
2012-03-12 17:22:01 -05:00
sinn3r
7d95132eab
Use a cleaner way to calculate JRE ROP's NEG value
2012-03-11 17:27:47 -05:00
sinn3r
6c19466de8
Change output style
2012-03-11 13:59:18 -05:00