b70960bddb
Land #10619 , mimikatz/kiwi warning per OS version
2018-09-12 17:11:11 -05:00
5c65f23847
add chmod tab completion
2018-09-12 19:04:51 +08:00
d017f420bf
Fix missing exception capture
2018-09-11 17:58:41 -05:00
e2c6748759
Replace 'and' with '&&'
2018-09-12 08:27:27 +10:00
de0f0a97fb
Add mode to Shell#run_single to re-raise errors
2018-09-11 17:23:56 -05:00
da25391426
Relocate option parsing error handling up a level
2018-09-11 17:22:05 -05:00
a3d74d926c
Land #9897 , Fix #8404 ListenerComm Support For Exploit::Remote::TcpServer
2018-09-10 16:25:55 -05:00
635d92901f
Add warning for mimikatz and kiwi if OS versions are wrong
2018-09-05 09:34:34 +10:00
c4ebf7b4f3
add meterpreter chmod command
2018-09-01 23:52:31 +08:00
41b0dc1dfe
Update label for the kiwi extention to match latest ver
...
I'll also update this PR with the udpated binaries when the paylaods
repo has landed https://github.com/rapid7/metasploit-payloads/pull/298
2018-08-31 09:31:57 +10:00
71a7ca4d7d
Use env(1) instead of export
2018-08-29 14:51:20 -05:00
7414b18f20
Move prompt_char space to correct place
2018-08-29 10:38:28 -05:00
09926bd184
Better help description and comments
2018-08-28 22:11:32 -05:00
562fc09d5d
add new line to the end of the file
2018-08-28 09:02:21 -05:00
3a6d72b8b6
some executable files need stack preserve and stack restore, functionality restored
2018-08-28 09:02:21 -05:00
ff7baaca13
remove stack preserve and stack restore in x86 shellcode and delete duplicated stack preserve variable in x64 shellcode
2018-08-28 09:02:21 -05:00
5a28863b12
Fix Whitespace for Rubocop
2018-08-28 09:02:21 -05:00
3ac24abfb2
Remove Extra stackpreserve variable
2018-08-28 09:02:21 -05:00
f9148f7864
Update/Add Human-Readable ASM
2018-08-28 09:02:21 -05:00
f1e4079641
move add_thread code to lib/rex/post/meterpreter/extensions/peinjector/peinjector.rb
2018-08-28 09:02:21 -05:00
55299561b1
Peinjector meterpreter extension interface added
2018-08-28 09:02:21 -05:00
ced4ae6f49
MSFTidy module
2018-08-28 09:02:21 -05:00
2251c4a712
Add peinjector post module
2018-08-28 09:02:21 -05:00
419738a746
Add expect method, -s, and -l
2018-08-26 19:38:19 -05:00
cde82b18ab
Land #10379 , tab completion for multiple commands
2018-08-24 18:06:14 -05:00
e955e8dc15
Clean up code
...
And hope I didn't break anything.
2018-08-24 18:05:52 -05:00
418b574161
Merge branch 'master' and resolve conflict.
2018-08-23 23:24:23 -04:00
df18e354e1
Add bind_busybox_telnetd payload, misc cleanup
2018-08-23 15:23:39 -04:00
c0c3e12c74
WIP - hp officejet pro exploit, enhance PJL lib
2018-08-23 14:53:54 -04:00
4aee3a4ae2
Land #10448 , Implementation of CTRL+C to send SIGINT signal
2018-08-20 18:14:29 -05:00
94dd67f3a5
Add public readers for prompt and prompt_char
...
This allows various things to inspect the state of the console before
calling `update_prompt`.
2018-08-17 14:41:48 -05:00
410eee8537
Remove 'append' mode from update_prompt
...
Nothing used it meaningfully. Also, due to the way `init_prompt` was set
prior to b1401e2e4e1df442e0cf
2018-08-17 14:32:48 -05:00
b1401e2e4e
Update the prompt every shell tick
...
This was inadvertently done as part of the tab completion
initialization but is what we want. Also move the prompt formatting to
the prompt update and make the code more readable.
2018-08-17 14:10:28 -05:00
4375a3fbfb
Fix lurking bugs in the shell's prompt_yesno
2018-08-16 09:05:22 -05:00
c045f70e80
Emulate `prompt_yesno` semantics for UI drivers
2018-08-15 17:30:37 -05:00
f1fd077bef
Whitespace fix
2018-08-11 17:39:44 -05:00
7b573fa3ca
Use multiple bash methods
2018-08-11 17:38:13 -05:00
6c33854ffc
[+] Exit vim opened in reverse shell via signal USR1
2018-08-12 06:07:18 +08:00
6578950533
[-] Remove debug message
2018-08-09 16:32:27 +08:00
f6c28106b9
Merge remote-tracking branch 'upstream/master' into add-resource-meta-shell-command
2018-08-09 16:20:26 +08:00
2bce8b008e
Fix history deduplication for system Readline
2018-08-07 16:53:24 -05:00
298d5c3b30
Refactor history clearing
2018-08-07 16:53:17 -05:00
3b2c3507d1
Refactor history deduplication on save
...
We move the check outside the block and clean up the syntax.
2018-08-07 11:18:13 -05:00
cb01216e0c
fix history issues as stated in #10423
2018-08-06 11:27:47 +05:30
a0962855bd
Refactor history deduplication
...
We don't need to know the absolute index. We also fix the IndexError.
2018-08-05 14:28:10 -05:00
fce19cf5b8
Prevent adding the same command to history
2018-08-05 22:33:00 +05:30
1601e8a844
Land #10330 , Add SMBv2 support to bind_named_pipe payloads
2018-08-01 12:58:44 -05:00
21afd0572c
use %w to replace [] for string arrays, more readable.
2018-07-30 22:47:59 -04:00
c90b03808a
Merge remote-tracking branch 'upstream/master' into add-resource-meta-shell-command
2018-07-30 13:25:26 +08:00
fcbfa8019f
style and more python checks
2018-07-29 22:52:43 -05:00
51ff09a9b6
Only try on NX
2018-07-28 19:00:33 -05:00
0a6a91a1c6
Initial add of pybash option
2018-07-26 14:44:34 -05:00
3f8906596d
Fix issue 10372, match mutiple slashes better
2018-07-26 05:35:04 -04:00
63ed4b2173
Add uictl tabs
2018-07-26 05:33:40 -04:00
2dbbd0c649
Add multiple commands' tabs and help
2018-07-26 05:32:57 -04:00
4060492bfc
Add multiple commands' tabs and help
2018-07-26 05:27:47 -04:00
3852265d9f
Add multiple commands' tabs and help
2018-07-26 05:26:30 -04:00
6c1a28d2d6
Add multiple commands' tabs and help
2018-07-26 05:25:38 -04:00
6a0534de14
Update splitkey method to match better on windows
2018-07-26 05:23:27 -04:00
746b63f76a
Add method to glob the given filename.
2018-07-26 05:21:12 -04:00
ef264e78f0
Refactor grep command to use optparse
...
This is an experiment to see what it would take to convert *all* option
assignment, parsing, and validation to use Ruby's builtin optparse. Our
current situation in the command dispatchers is a mishmash of bespoke
and Rex code, both with odd behaviors. Modules use a more formalized
system, but it is also a bit janky and unlike most other tools a
pentester might use.
The first step is to refactor the console commands to use Ruby's builtin
option parsing to reduce code and increase homogeneity among the various
functions. Next we plan to explore what it would take to invoke modules
from within Metasploit this way (this would be Metasploit 5+ only).
Refactoring `grep` seems to have been a success. There is now less code;
the code that declares and handles the options are now in the same
place; long options are now supported; adjacent, argument-less short
opts now work as expected; patterns can now begin with a `-`; and option
arguments are now validated. Additionally, optparse's argument
coercion/validation code can be extended for custom types/validations to
support more specialized commands.
2018-07-19 12:11:09 -05:00
d5ed70417b
bind_named_pipe payload for ruby_smb
2018-07-17 17:46:10 -06:00
29f05339a9
Clean up code
2018-07-17 14:33:10 -05:00
00a748a92c
Add tab_complete_directory
2018-07-17 06:29:12 -04:00
71e25f1494
show error if server.pid == pid
...
This PR adds changes to catch error when `server.pid` and `pid` are the same
2018-07-14 16:32:38 +05:30
ef55803936
[+] Update resource meta command help info
...
Signed-off-by: WangYihang <wangyihanger@gmail.com>
2018-07-11 13:07:15 +08:00
85bfca95fd
[+] Fixed meterpreter resource bug
2018-07-09 11:27:30 +08:00
ef78d70a00
Land #9356 . Remove ring buffers from command dispatcher.
2018-07-06 13:12:13 -05:00
0b9bc8c24a
Land #10241 , don't call print_error from rex context, use elog instead
2018-07-05 17:28:10 -05:00
7dc87e1a9e
Increase read depth for smb pipes
2018-07-03 16:06:42 -05:00
af43b6ca17
don't call print_error from rex context, use elog instead
2018-07-02 15:19:19 -05:00
85dc81a58b
Land #10185 , add SMBv1/2 support in psexec
2018-06-29 17:49:27 -05:00
3b228b0abd
avoid stack overflow on too many empty pipe reads in a row
2018-06-29 17:48:39 -05:00
a8c6835c64
Handle STATUS_PIPE_EMPTY error
2018-06-28 12:15:43 -05:00
2792d5fb27
call delete implementation from ruby_smb
2018-06-28 12:15:43 -05:00
c06f13b33e
remove superfluous sleeps, simplify logic
2018-06-28 12:15:42 -05:00
4b767efd6c
remove evasion logic from dcerpc read path
2018-06-28 12:15:42 -05:00
dbb0748c1c
Land #9998 , customizable golden ticket duration
2018-06-27 15:51:56 -05:00
2fd0d797ac
psexec smb2 support
2018-06-25 15:06:23 -05:00
bd77273dc0
Land #10155 , Improve #sec_to_s in Rex::ExtTime
2018-06-21 16:45:22 -05:00
e584732a11
Land #10151 , add robustness when stdapi is unavailable
2018-06-20 23:54:55 -05:00
df9ddebde6
Land #10124 , Add tab completion of values in `set` command
2018-06-14 16:16:24 -05:00
87b92316b5
Land #10162 , tab completion for audio output
2018-06-14 14:56:23 +08:00
c3c6bc19da
Land #10059 , CVE-2018-1111 exploit
2018-06-12 15:02:06 -05:00
fbf4b9fe87
Rework play command to support tab completion
2018-06-12 08:30:54 +00:00
2bdc8803cb
add zero seconds handling
2018-06-08 22:21:26 -04:00
679a225462
improve #sec_to_s method implementation
...
Using the following implementation yields roughly ~1.5x speedup in my tests.
2018-06-08 22:09:03 -04:00
514f991768
Fix bug when use command load and migrate
2018-06-08 04:06:38 -04:00
e9659adc6a
Fix audio_path display
2018-06-04 14:46:31 +08:00
4adea66318
Fix quote usage
2018-06-04 14:46:30 +08:00
4b2601bad3
Fix indentation and quote usage
2018-06-04 14:46:30 +08:00
f31676074a
Print usage if audio_path is nil
2018-06-04 14:46:30 +08:00
ff1d579c6a
Cleanup module
2018-06-04 14:46:30 +08:00
a5949f574e
Implement AudioOutput API
2018-06-04 14:46:30 +08:00
cfb3c4d3ad
Ignore case when use tab to complete
2018-06-01 07:37:23 -04:00
829e1c306a
Land #10102 , SOCKS5 updates for BIND, parsing specs, refactoring
2018-05-30 16:15:53 -05:00
da2666581b
Alter the socks5 bind request handling
2018-05-26 19:51:14 -04:00
c85cc9ad9e
Refactor SOCKS5 TcpRelay and add packet tests
2018-05-26 13:46:00 -04:00
a21cc9c5bc
Refactor core dispatch methods and error handling
2018-05-25 20:14:03 -04:00
49341fc87d
Add credential authentication support to socks5
2018-05-25 20:14:03 -04:00
William Vu
Tim W
Adam Cammack
OJ
Brent Cook
Josh Hale
alpiste
bwatters-r7
Green-m
Matthew Kienow
asoto-r7
Wang Yihang
Auxilus
UserExistsError
WangYihang
Jacob Robles
Eliott Teissonniere
Kent 'picat' Gruber
Eliott Teissonniere
Spencer McIntyre