1338a55b0d
Adjust error handling for extension enumeration
...
Make the catch case more generic for when the target doesn't support the
command for extension enumeration. This supports more than just windows
now.
2015-03-13 21:49:45 +10:00
35cfdf051a
Add support for meterpreter_reverse_ipv6_tcp
...
New payload added, makes use of existing functionality.
2015-03-13 20:15:31 +10:00
c5a74c7db4
Update the Meterpreter binaries version
...
This will force the build/PR to be invalid until the new meterpreter
binaries gem has been released.
2015-03-13 20:14:54 +10:00
345b5cc8e1
Add stageless meterpreter support
...
This commit adds plumbing which allows for the creation of stageless
meterpreter payloads that include extensions. The included transprots at
this point are bind_tcp, reverse_tcp and reverse_https, all x86.
More coming for x64. Will also validate http soon.
2015-03-12 13:22:04 +10:00
215c209f88
Land #4901 , CVE-2014-0311, Flash ByteArray Uncompress UAF
2015-03-11 14:04:17 -05:00
ceeee4446f
Land #4904 , @hmoore-r7 reworks reverse_http/s stagers
...
They are now assembled dynamically and support more flexible options,
such as long URLs.
2015-03-11 10:41:59 -05:00
02c7461d32
Lands #4906 and fixes #4905 by updating Conventions for HTTP incompatible payloads
2015-03-11 00:49:27 -05:00
ad39adf9c2
Missing comma
2015-03-11 00:49:07 -05:00
cb1a1ef692
Remove bad stager+stage combinations from the payload set
2015-03-11 00:46:24 -05:00
a89926b663
Exclude vncinject from http stagers (depends on sockedi)
2015-03-11 00:46:04 -05:00
9ade107325
disable reverse_http methods from upexec and shell payloads
...
These don't work over http and don't appear to have ever, as far back as
I could test. They appear to be an accident perhaps.
2015-03-10 17:08:58 -05:00
1d17e9ab5b
Remove the 256 byte limit for URLs
2015-03-10 15:27:04 -05:00
7be665d74e
Land #4900 , credential version for postgres hash
2015-03-10 15:17:55 -05:00
5f382e539a
Updated required_space to count all 256 bytes of the URL
2015-03-10 15:17:09 -05:00
dedf3726ea
Simplify the uri_req_len logic, thanks @bcook-r7
2015-03-10 15:12:02 -05:00
261159aa66
update lockfile
2015-03-10 14:38:01 -05:00
736f0b34be
Land #4902 , @nstarke's db_connect warning message
2015-03-10 14:12:47 -05:00
9a974af7dd
Merge pull request #3 from wvu-r7/pr/4902
...
Change print_status to print_error
2015-03-10 14:05:34 -05:00
3c7b061e05
Use single quotes
...
But I like double quotes. :(
2015-03-10 14:03:13 -05:00
72e7691300
Change print_status to print_error
...
And drop db_disconnect note to another line.
2015-03-10 13:31:35 -05:00
4d12690ca6
Merge pull request #2 from wvu-r7/pr/4902
...
Refactor db_{status,connect} a bit
2015-03-10 13:02:20 -05:00
966848127a
Refactor x86 Windows reverse_http and reverse_https stagers
2015-03-10 12:48:30 -05:00
e81f2e366c
Refactor db_{status,connect} a bit
...
Also allow for db_connect help.
2015-03-10 12:35:58 -05:00
ee8318d5c4
Adding db_disconnect qualifying statement
2015-03-10 11:58:04 +00:00
cd992d5ea6
Land #4875 , rm some old and crufty tools
2015-03-10 00:02:04 -05:00
ab70223107
Remove note about resplat.rb in msftidy
2015-03-10 00:00:29 -05:00
97f09b6ab0
Land #4894 : hmoore-r7 cache payload sizes on start
...
Avoid the hit of regenerating all of the static-size payloads when
loading the framework. This will facilitate conversion of payloads to
use metasm later.
2015-03-09 23:06:55 -05:00
187a0445f3
Issue #4868 - Adding warning message to db_connect when already connected
2015-03-10 00:02:34 +00:00
14c3848493
Delete useless comment
2015-03-09 16:59:10 -05:00
618fbf075a
Update CachedSize for the fixed stager
2015-03-09 16:57:14 -05:00
746f18d9bb
Fallback to a localhost variant to make the length predictable
2015-03-09 16:56:25 -05:00
78167c3bb8
Use single quotes when possible
2015-03-09 16:55:21 -05:00
6543c3c36f
Update CachedSize for the fixed stager
2015-03-09 16:54:57 -05:00
c676ac1499
Fallback to a localhost variant to make the length predictable
2015-03-09 16:53:28 -05:00
cb72b26874
Add module for CVE-2014-0311
2015-03-09 16:52:23 -05:00
d0324e8ad3
Final cleanup, passing specs
2015-03-09 15:50:57 -05:00
da81f6b2a0
Correct the :dynamic cache sizes
2015-03-09 15:44:14 -05:00
78456fb2e0
Correct a typo (stringified symbol loses the :)
2015-03-09 15:42:23 -05:00
038591497f
YARD docs for the Msf::Util::PayloadCachedSize class
2015-03-09 15:39:19 -05:00
02509d02e4
The result of running ./tools/update_payload_cached_sizes.rb
2015-03-09 15:31:04 -05:00
99e2b05597
Move the cache update logic into a utility class
2015-03-09 15:29:58 -05:00
60145ad9a1
Cosmetic tweaks to the specs
2015-03-09 15:08:11 -05:00
7dc0af443f
Rework specs
2015-03-09 14:41:25 -05:00
33f96f5c31
Remvoe the useless pinst variable from the previous test
2015-03-09 13:59:58 -05:00
f61c3f33bd
Validate cached_size and dynamic_size? in the payload specs
2015-03-09 13:58:18 -05:00
8c635243d3
Fix whitespace in the regex, implements Msf::Payload.dynamic_size?
2015-03-09 13:15:06 -05:00
603179176a
Land #4876 , @hmoore-r7 give encoders and payloads space available
2015-03-09 11:50:46 -05:00
08df0bfaca
Land #4858 , RPC client true/truthy fix
...
* Misc ruby cleanup and fixing the issue that caused MSP-12235, rolling back the
full rollback of PR 4823
2015-03-09 11:35:57 -05:00
4ca8611d94
latest credential for postgres hash import/export
...
latest version of metasploit-credential updates credential
import-export to support the PostgresMD5 hash type
MSP-12266
2015-03-09 11:31:02 -05:00
df80d56fda
Land #4898 , prefer URI to open-uri
2015-03-09 09:14:10 -05:00
OJ
sinn3r
Brent Cook
HD Moore
Samuel Huckins
David Maloney
William Vu
Nicholas Starke
jvazquez-r7
Tod Beardsley