71708c4bc3
dir 645 password extractor - initial commit
2013-03-24 11:44:24 +01:00
49ac3ac1a3
cleanup for linksys_e1500_e2500_exec
2013-03-23 23:30:49 +01:00
98be5d97b8
Merge branch 'linksys-e1500-e2500-exec' of https://github.com/m-1-k-3/metasploit-framework into m-1-k-3-linksys-e1500-e2500-exec
2013-03-23 23:30:14 +01:00
b2bf1df098
fixed encoding and set telnetd as default cmd
2013-03-23 22:56:15 +01:00
47d458a294
replacement of the netgear-sph200d module
2013-03-23 22:40:32 +01:00
cb56b2de4b
Merge branch 'master' of https://github.com/rapid7/metasploit-framework
2013-03-23 20:06:05 +01:00
270f64acc2
feedback included
2013-03-23 15:54:34 +01:00
f22c18e026
Merge branch 'module-psexec_command-file_prefix' of github.com:kn0/metasploit-framework into kn0-module-psexec_command-file_prefix
2013-03-22 13:08:13 -05:00
dcd2aebdcd
feedback included
2013-03-20 21:34:30 +01:00
44f07cef19
Merge branch 'linksys-e1500-e2500-exec' of https://github.com/m-1-k-3/metasploit-framework
2013-03-20 00:47:31 +01:00
80d218b284
Merge branch 'master' of https://github.com/rapid7/metasploit-framework
2013-03-19 19:55:51 +01:00
9fc0f9a927
initial commit
2013-03-19 17:31:01 +01:00
116f5b87f0
Merge branch 'axigen_file_access' of github.com:jvazquez-r7/metasploit-framework into jvazquez-r7-axigen_file_access
2013-03-19 08:33:58 -05:00
d3a78db77a
Merge branch 'master' of https://github.com/rapid7/metasploit-framework
2013-03-14 14:12:11 +01:00
7403239de7
cleanup for psexec_ntdsgrab
2013-03-14 13:40:45 +01:00
97023413cb
Added advanced option for temp filenames prefix
2013-03-14 01:50:52 -05:00
abbb3b248d
methods that use @ip now reference it directly instead of being passed in as paramaters
2013-03-13 19:35:53 -05:00
462ffb78c1
Simplified copy_ntds & copy_sys check on line 91
2013-03-13 19:31:36 -05:00
4e9af74763
All print statements now use #{peer}
2013-03-13 19:28:09 -05:00
edf2804bb5
Added simple.disconnect to end of cleanup_after method
2013-03-13 19:23:22 -05:00
8eba71ebe2
Added simple.disconnect to end of download_sys_hive method
2013-03-13 19:20:58 -05:00
e5f7c08d6f
Added module for CVE-2012-4940
2013-03-13 11:52:54 +01:00
91fbeda062
up to date
2013-03-12 17:04:27 +01:00
6055438476
up to date
2013-03-12 17:04:27 +01:00
9a970415bc
Module uses store_loot now instead of logdir which has been removed
2013-03-11 20:05:23 -05:00
aa4cc11640
Removed Scanner class running as stand-alone single target module now
2013-03-11 13:39:47 -05:00
a96753e9df
Added licensing stuff at the top
2013-03-10 20:07:04 -05:00
bf9a2e4f52
Fixed module to use psexec mixin
2013-03-10 15:15:50 -05:00
907983db4a
updating with r7-msf
2013-03-10 14:19:20 -05:00
2160718250
Fix file header comment
...
[See #1555 ]
2013-03-07 17:53:19 -06:00
db1f4d7e1d
added license info
2013-03-07 00:20:02 +00:00
e8c1899dc2
added license info
2013-03-07 00:18:32 +00:00
3946cdf91e
added license info
2013-03-07 00:17:55 +00:00
1b493d0e4c
added license info
2013-03-07 00:16:26 +00:00
9e89d9608f
added license info
2013-03-07 00:11:45 +00:00
56639e7f15
added license info
2013-03-07 00:10:46 +00:00
1d8c759a34
yeah
2013-03-06 16:01:36 -06:00
ca43900a7c
Merge remote-tracking branch 'R3dy/psexec-mixin2' into rapid7
2013-03-05 16:34:11 -06:00
27727df415
Merge branch 'R3dy-psexec-mixin2' into rapid7
2013-03-05 14:36:55 -06:00
4212c36566
Fix up basic auth madness
2013-03-01 11:59:02 -06:00
ac50c32d51
Tested, works on server 2k8
2013-02-20 10:02:50 -06:00
4703278183
Move SMB mixins into their own directory
2013-02-19 12:55:06 -06:00
ede804e6af
Make psexec mixin a bit better
...
* Removes copy-pasted code from psexec_command module and uses the mixin
instead
* Uses the SMB protocol to delete files rather than psexec'ing to call
cmd.exe and del
* Replaces several instances of "rescue StandardError" with better
exception handling so we don't accidentally swallow things like
NoMethodError
* Moves file reading and existence checking into the Exploit::SMB mixin
2013-02-19 12:33:19 -06:00
ec5c8e3a88
Merge branch 'dlink-dir300-600-execution' of https://github.com/m-1-k-3/metasploit-framework into m-1-k-3-dlink-dir300-600-execution
2013-02-16 19:12:42 +01:00
c2f8e4adbd
Minor - Note Rails 3.1.11 patch in Description.
2013-02-13 22:30:54 -06:00
d1784babea
little cleanup plus msftidy compliant
2013-02-13 20:24:49 +01:00
0ae473b010
info updated with rails information
2013-02-13 09:52:17 +01:00
f46eda2fa9
Merge branch 'rails_devise_pw_reset' of https://github.com/jjarmoc/metasploit-framework into jjarmoc-rails_devise_pw_reset
2013-02-13 09:51:37 +01:00
799beb5adc
minor cleanup
2013-02-13 01:00:25 +01:00
1d5d33f306
use normalize_uri()
2013-02-12 14:58:07 -06:00
c6a7a4e68d
/URIPATH/TARGETURI/g
2013-02-12 14:50:10 -06:00
c7719bf4cb
Verify response is non-nil.
2013-02-12 13:41:21 -06:00
9e1f106a87
msftidy cleanup
2013-02-12 13:38:58 -06:00
766257d26a
pointed by @m-1-k-3 while working on #1472
2013-02-11 21:21:43 +01:00
5f0a3c6b9e
Removes pry, oops.
2013-02-11 14:02:46 -06:00
753fa2c853
Handles error when TARGETEMAIL is invalid.
2013-02-11 13:58:56 -06:00
61ffcedbfd
Address HD's other comments, fixes mismatched var name in last commit.
2013-02-11 11:17:26 -06:00
e72dc47448
Uses REXML for encoding of password.
2013-02-11 11:12:29 -06:00
43a1fbb6f2
Make msftiday happy.
2013-02-10 21:13:18 -06:00
55cba56591
Aux module for joernchen's devise vuln - CVE-2013-0233
2013-02-10 21:10:00 -06:00
63c6791473
return
2013-02-09 11:17:02 +01:00
6cccf86a00
Merge branch 'master' of git://github.com/rapid7/metasploit-framework into dlink-dir300-600-execution
2013-02-09 11:09:56 +01:00
5357e23675
Fixups to the Linksys module
...
Professionalizes the description a little, but more importantly, handles
LANIP better, I think. Instead of faking a 1.1.1.1 address, just detect
if it's set or not in a method and return the right thing accordingly.
Please test this before landing, obviously. I think it's what's
intended.
2013-02-06 12:46:50 -06:00
faeaa74a49
Msftidy whitespace
2013-02-06 11:06:13 -06:00
43f3bb4fe6
small updates
2013-02-05 13:54:10 +01:00
5ca0e45388
initial commit
2013-02-04 08:44:12 +01:00
2bf2d4d8a4
Merge branch 'netgear_sph200d_traversal' of https://github.com/m-1-k-3/metasploit-framework into m-1-k-3-netgear_sph200d_traversal
2013-02-03 23:35:29 +01:00
c24c926ffa
add aditional check to detect valid device
2013-02-01 20:55:06 +01:00
996ee06b0f
fix another print_ call
2013-02-01 20:43:54 +01:00
152f397a1f
first module cleanup
2013-02-01 20:38:11 +01:00
988761a6de
more updates, BID, Exploit-DB
2013-02-01 20:18:53 +01:00
fdd5fe77c1
more updates ...
2013-02-01 19:59:19 +01:00
0e22ee73b5
updates ...
2013-02-01 19:26:34 +01:00
c174e6a208
Correctly use normalize_uri()
...
normalize_uri() should be used when you're joining URIs. Because if
you're merging URIs after it's normalized, you could get double
slashes again.
2013-01-30 23:23:41 -06:00
ea5e993bf3
initial
2013-01-29 22:02:29 +01:00
690ef85ac1
Fix trailing slash problem
...
These modules require the target URI to be a directory path. So
if you remove the trailing slash, the web server might return a
301 or 404 instead of 200.
Related to: [SeeRM: #7727 ]
2013-01-28 13:19:31 -06:00
15253f23bf
added RHOSTS funct
2013-01-24 15:29:35 -06:00
1fc747994e
cleanup for linksys_wrt54gl_exec
2013-01-24 17:50:14 +01:00
3a5e92ba6f
hopefully all fixex included
2013-01-23 12:15:34 +01:00
c601ceba3c
Fixed error deleting ntds and sys files
2013-01-22 09:42:49 -06:00
ed3b886b61
working with psexec mixin
2013-01-22 09:36:43 -06:00
11c13500be
small fix
2013-01-21 13:41:42 +01:00
62ff52280a
initial linksys OS command injection
2013-01-21 13:19:29 +01:00
a89db93891
psexec_command - Unable to execute specified command: can't convert nil into Integer
...
Patched as described in Redmine bug #7680
2013-01-14 15:54:40 -05:00
ff9ef80cc6
Fixed terrible tab issues that occured because of an evil vimrc filegit add ntdsgrab.rb
2013-01-07 12:49:58 -06:00
e4546b13f3
Creating new pull request to beat Travis build strange errors...
2013-01-07 12:21:59 -06:00
c1f0e1172b
Still fighing with Travis build errors
2013-01-07 11:52:37 -06:00
33751c7ce4
Merges and resolves CJR's normalize_uri fixes
...
Merge remote-tracking branch 'ChrisJohnRiley/set_normalize_uri_on_modules'
into set_normalize_uri_on_modules
Note that this trips all kinds of msftidy warnings, but that's for another
day.
Conflicts:
modules/exploits/unix/webapp/tikiwiki_jhot_exec.rb
modules/exploits/windows/http/xampp_webdav_upload_php.rb
2013-01-07 11:16:58 -06:00
ac2182c69b
Edited to fix Travis build process
2013-01-07 11:10:21 -06:00
44e07c8577
Created psexec mixin to get rid of ugly copy-paste
2013-01-04 09:58:48 -06:00
4d8a2a0885
msftidy: remove $Revision$
2013-01-03 01:01:18 +01:00
95948b9d7c
msftidy: remove $Revision$
2013-01-03 00:58:09 +01:00
ca890369b1
msftidy: remove $Id$
2013-01-03 00:54:48 +01:00
321a4ecb74
Escaped quotes in windows command
2012-12-29 13:46:22 -06:00
02bbcb5803
surrounded ntdspath in a space
2012-12-29 13:33:32 -06:00
174e6e8f17
Fixed array instantiation
2012-12-29 13:31:54 -06:00
0344c568fd
Merge branch 'smb_fixes' of git://github.com/alexmaloteaux/metasploit-framework into alexmaloteaux-smb_fixes
2012-12-18 11:38:14 -06:00
10511e8281
Merge remote branch 'origin/bug/fix-double-slashes'
...
Ran the new normalize_uri() specs, all passes, so I'm quite confident in
this change.
2012-12-17 13:29:19 -06:00
2eb01168c8
Cleaned build junk
2012-12-14 10:44:53 -06:00
82a6519dc4
cleaned up print_status and print_errors
2012-12-14 10:41:40 -06:00
m-1-k-3
jvazquez-r7
sinn3r
Trenton Ivey
Royce Davis
James Lee
J.Townsend
David Maloney
Jeff Jarmoc
Tod Beardsley
m-1-k-3
Brandon McCann
lmercer
Christian Mehlmauer