Commit Graph

1589 Commits (1ae12e3a23f35b33138fc61cd66cd5106b3014fb)

Author SHA1 Message Date
James Lee 825a2747c1 remove unnecessary dup, unused var
git-svn-id: file:///home/svn/framework3/trunk@13509 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-10 17:27:09 +00:00
amaloteaux 377c987c1d report hashes captured by htp_ntlm server
git-svn-id: file:///home/svn/framework3/trunk@13496 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-06 14:50:15 +00:00
Carlos Perez f8d50b7705 Applied and tested patch from Thomas Ring in bug 5206
git-svn-id: file:///home/svn/framework3/trunk@13490 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-04 22:55:06 +00:00
HD Moore 842bfdebe8 Lets just leave this here (insurance against my laptop melting down between now and tomorrow morning). Nothing to see here, move along ;)
git-svn-id: file:///home/svn/framework3/trunk@13483 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-03 22:58:55 +00:00
HD Moore f3e4c860a7 Slow down a little bit to prevent packet loss
git-svn-id: file:///home/svn/framework3/trunk@13468 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-02 00:47:51 +00:00
James Lee 021fa0d8cb missed a line in the conversion to packetfu, see #5038
git-svn-id: file:///home/svn/framework3/trunk@13442 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 04:41:17 +00:00
HD Moore a5e63c2ca9 Grab the instance from the query vs the ping (via TheLightCosine)
git-svn-id: file:///home/svn/framework3/trunk@13435 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 21:20:57 +00:00
HD Moore c216219573 Add mssql_ping back in
git-svn-id: file:///home/svn/framework3/trunk@13434 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 21:11:53 +00:00
HD Moore e916e06b6e Closes #5142 by merging (with some small changes)
git-svn-id: file:///home/svn/framework3/trunk@13433 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 21:07:22 +00:00
Tod Beardsley 486241cc99 SSH scanners shouldn't die just because they're on Windows and they try to talk to reserved addresses.
git-svn-id: file:///home/svn/framework3/trunk@13407 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 15:51:11 +00:00
James Lee d50577066f remove some silliness of registering UserAgent as an option since it's already an advanced option for HttpClient, make the default obvious
git-svn-id: file:///home/svn/framework3/trunk@13394 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 22:57:47 +00:00
Tod Beardsley df52bfaa4f Ensure that we check for pcaprub before doing much anything else for those modules that actually require it. In some cases, that means moving open_pcap() up to be the first method call, in others, insert check_pcaprub_loaded first. Also removes a few cases of redundant checking (the Capture mixin does all this already anyway).
git-svn-id: file:///home/svn/framework3/trunk@13381 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 20:21:47 +00:00
Jonathan Cran 78849b2837 check that pcaprub is loaded up front, before checking configuration options
git-svn-id: file:///home/svn/framework3/trunk@13376 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 18:53:59 +00:00
amaloteaux 61645c03f2 psnuffle : apply some corrections from hdm
git-svn-id: file:///home/svn/framework3/trunk@13373 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 17:56:15 +00:00
amaloteaux 08322fc7ea smb capture: split creds.ptype from smb_net_hash to smb_netv1_hash and smb_netv2_hash
smb_netv1_hash correspond to netlmv1/netntlmv1 and netntlm2_session hash type
smb_netv2_hash correspond to netlmv2/netntlmv2 hash type
also removed the domain name from creds.user and added it to the pass column like this DOMAIN:NETLMHASH:NETNTLMHASH:CHALLENGE


git-svn-id: file:///home/svn/framework3/trunk@13372 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 17:53:09 +00:00
Tod Beardsley b22ca615c7 Fixes #5038, missed a couple mentions of Racket. Excised now for sure.
git-svn-id: file:///home/svn/framework3/trunk@13371 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 17:44:36 +00:00
amaloteaux 95577d3b1b smb_net_hash instead of smb_hash
git-svn-id: file:///home/svn/framework3/trunk@13356 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 01:49:53 +00:00
amaloteaux 2ed2bf59ed don't need this option
git-svn-id: file:///home/svn/framework3/trunk@13355 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 01:33:35 +00:00
amaloteaux 67a3f7bd75 same for http_ntlm capture
git-svn-id: file:///home/svn/framework3/trunk@13354 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 23:47:40 +00:00
amaloteaux 8809182f62 smb capture : correct some minor bug and allow ntlm2_session hashes to be dumped in john and cain format has they can easily crack them too
git-svn-id: file:///home/svn/framework3/trunk@13353 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 23:36:45 +00:00
amaloteaux d5ce83e136 pcapreplay: use optpath
git-svn-id: file:///home/svn/framework3/trunk@13345 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 20:18:24 +00:00
Tod Beardsley c54e18d757 Fixes #5038. Removes all instances of Racket objects, as far as I can tell. If I missed any through my mighty grep -ril racket . statement, please reopen!
git-svn-id: file:///home/svn/framework3/trunk@13342 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 01:29:21 +00:00
Tod Beardsley 0797b585db See #5029. Moved these over to the unstable modules branch.
git-svn-id: file:///home/svn/framework3/trunk@13338 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-25 22:37:51 +00:00
Wei Chen 5fdf482a8b Add MSB reference
git-svn-id: file:///home/svn/framework3/trunk@13331 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-24 19:50:56 +00:00
Wei Chen 067f9bf053 Fix URL reference
git-svn-id: file:///home/svn/framework3/trunk@13329 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-24 19:36:37 +00:00
Wei Chen e115e78f8d Fix CVE
git-svn-id: file:///home/svn/framework3/trunk@13327 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-24 19:20:02 +00:00
Wei Chen 410d124ec5 Change name for consistency
git-svn-id: file:///home/svn/framework3/trunk@13294 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 05:56:04 +00:00
Wei Chen 465f3f2739 Update metadata
git-svn-id: file:///home/svn/framework3/trunk@13293 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 05:45:46 +00:00
Steve Tornio b930b2622f add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13271 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-21 01:20:22 +00:00
Steve Tornio 46451acec5 add/fix some cve and osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@13270 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-21 01:10:40 +00:00
David Rude 88125b53b8 remove stray puts
git-svn-id: file:///home/svn/framework3/trunk@13268 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-20 17:11:04 +00:00
David Rude b96bf9754e more logic fixes
git-svn-id: file:///home/svn/framework3/trunk@13240 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 21:19:34 +00:00
David Rude a934004a2b Fix the loop
git-svn-id: file:///home/svn/framework3/trunk@13239 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 21:12:44 +00:00
David Rude bea802ea60 Fix the RPORT default
git-svn-id: file:///home/svn/framework3/trunk@13238 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 20:59:13 +00:00
David Rude 1fda05f128 Added SIPDroid extension enumeration module - thanks nibu
git-svn-id: file:///home/svn/framework3/trunk@13237 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 20:42:02 +00:00
Joshua Drake 486ca773e4 unpack the bytes so that we can do proper math on them
git-svn-id: file:///home/svn/framework3/trunk@13226 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 17:33:02 +00:00
Carlos Perez f3b404b971 Misspelled variable
git-svn-id: file:///home/svn/framework3/trunk@13196 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-17 14:30:06 +00:00
James Lee bd07523c35 send the fuzz case instead of a constant value. fixes #4939, thanks Silent Dream for the patch
git-svn-id: file:///home/svn/framework3/trunk@13188 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 23:09:33 +00:00
James Lee c412a836ed add VERBOSE option to all modules and vprint_* methods to use it
git-svn-id: file:///home/svn/framework3/trunk@13183 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 15:33:35 +00:00
James Lee 39c20b2935 cosmetic
git-svn-id: file:///home/svn/framework3/trunk@13174 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 20:27:25 +00:00
James Lee ccf891c788 remove superfluous junk in print_* calls
git-svn-id: file:///home/svn/framework3/trunk@13171 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 19:24:07 +00:00
Matt Weeks 0318379ca8 These are not necessary options; the DHCP server has reasonably intelligent defaults. Mark them as such.
git-svn-id: file:///home/svn/framework3/trunk@13164 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 02:32:28 +00:00
Tod Beardsley b9c5835b5e Touching up the ssh key login module to be smarter about duplicate user names, not be so chatty in its messaging to the console, deal with whitespace, and avoid storing duplicate keys when we don't need to.
git-svn-id: file:///home/svn/framework3/trunk@13162 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-13 20:51:18 +00:00
Tod Beardsley dc84ee6aab More fixups for ssh_login_pubkey and special handlers for long strings of keys.
git-svn-id: file:///home/svn/framework3/trunk@13156 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-12 20:58:25 +00:00
HD Moore 90ced404b3 Updates to the jtr code, supports ruby 1.8.7 now, fixes #4908
git-svn-id: file:///home/svn/framework3/trunk@13149 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-11 01:07:46 +00:00
HD Moore 7754f0d8f2 This commit adds a basic "analyzer" module for creds
git-svn-id: file:///home/svn/framework3/trunk@13136 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-09 02:14:24 +00:00
Wei Chen a795dc7552 Added 2Wire Password Reset module by Travis
git-svn-id: file:///home/svn/framework3/trunk@13121 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 20:48:53 +00:00
Wei Chen 0fd6c8880e Added DoS module for kaillera, and a new 'games' folder under windows
git-svn-id: file:///home/svn/framework3/trunk@13118 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 19:33:55 +00:00
James Lee 44d7503cc1 prefix most browser autopwn output with the address of the associated client
git-svn-id: file:///home/svn/framework3/trunk@13086 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-01 23:50:07 +00:00
Steve Tornio 7e02e7abd6 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13038 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 11:43:54 +00:00
Joshua Drake 2e4fd81740 add CVE-2011-0657 DoS module
git-svn-id: file:///home/svn/framework3/trunk@13037 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 01:17:07 +00:00
David Rude ac61cd0427 Changed from web.archive.org to classic-web.archive.org
git-svn-id: file:///home/svn/framework3/trunk@13018 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-24 14:43:59 +00:00
Carlos Perez 191e783662 Fix typo
git-svn-id: file:///home/svn/framework3/trunk@13008 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 00:25:32 +00:00
Tod Beardsley 824022fde3 Adds a more universal print_error message for :abort in auth_brute.rb
git-svn-id: file:///home/svn/framework3/trunk@13005 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-22 20:53:51 +00:00
HD Moore e223931a46 Commit a bug fix from Yori Kvitchko
git-svn-id: file:///home/svn/framework3/trunk@12994 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 03:56:47 +00:00
Tod Beardsley 04e2eb43ef Removing the load() line from ssh_login, just wanted it for dev.
git-svn-id: file:///home/svn/framework3/trunk@12980 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 19:23:00 +00:00
HD Moore 6ccbaedd57 Add the CVE reference
git-svn-id: file:///home/svn/framework3/trunk@12972 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-18 17:52:21 +00:00
Tod Beardsley 6827495d17 Adds a # of passwords per username limiter to authbrute.
git-svn-id: file:///home/svn/framework3/trunk@12970 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-18 04:14:06 +00:00
Tod Beardsley db1619d035 Rejiggers the max credentials limiter a little, and adds a max time limiter per service.
git-svn-id: file:///home/svn/framework3/trunk@12967 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 22:40:25 +00:00
Tod Beardsley ab37580056 Refactored the AuthBrute mixin some to make the each_user_pass function a little cleaner and easier to maintain.
And maintain it I shall! Added in a standardized print_brute method to normalize the AuthBrute output to always include host, port, proto, and number of guesses over number remaining.

Also adds support for a MaxGuessesPerService datastore option for AuthBrute modules.

Currently, only ssh_login supports the new stuff, but now it's just a conversion matter. Will get to that in a bit.




git-svn-id: file:///home/svn/framework3/trunk@12958 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 22:08:45 +00:00
Steve Tornio ffbdc59add fix typo
git-svn-id: file:///home/svn/framework3/trunk@12954 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 16:19:51 +00:00
Tod Beardsley 78703400c4 Sourcing the ineffective bruteforce error message on smb_login.
git-svn-id: file:///home/svn/framework3/trunk@12953 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 14:56:07 +00:00
HD Moore d11e1f3294 Make all keywords consistent for modules.
git-svn-id: file:///home/svn/framework3/trunk@12936 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 03:38:31 +00:00
Carlos Perez 0ea7516e09 forgot to cover some checks for when no rows where returned.
git-svn-id: file:///home/svn/framework3/trunk@12864 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-06 01:45:55 +00:00
Jonathan Cran 68d8a68a36 apply mubix's patch, fixes #4640
git-svn-id: file:///home/svn/framework3/trunk@12857 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-05 07:11:22 +00:00
HD Moore 911583930b Add the missing note type
git-svn-id: file:///home/svn/framework3/trunk@12840 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-03 00:49:45 +00:00
James Lee bee19278d7 add a new javascript obfuscation engine using rkelly for parsing. use it in browser_autopwn and ms10_018_ie_behaviors. see #1003
git-svn-id: file:///home/svn/framework3/trunk@12839 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-03 00:36:26 +00:00
amaloteaux b1bb7116ed arp_sweep : automatically detect SHOST and SMAC and do not request localhost
git-svn-id: file:///home/svn/framework3/trunk@12823 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 21:31:36 +00:00
amaloteaux f1b8bbd436 arp poisoning : auto detect SMAC through new pcaprub code and avoid spoofing local host
git-svn-id: file:///home/svn/framework3/trunk@12822 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 21:12:21 +00:00
HD Moore 55b4142ddf Minor cleanup
git-svn-id: file:///home/svn/framework3/trunk@12821 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 20:56:55 +00:00
HD Moore f20adabf8c Fixes #4626 by checking for an out of bounds value before using the type as an array index
git-svn-id: file:///home/svn/framework3/trunk@12809 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-01 23:47:16 +00:00
Wei Chen d54f632ea0 Add print_status() as requested by author
git-svn-id: file:///home/svn/framework3/trunk@12726 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 23:50:05 +00:00
Wei Chen eb72982751 Fixed a typo for variable res
git-svn-id: file:///home/svn/framework3/trunk@12725 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 23:46:16 +00:00
Wei Chen 869a6dbbe5 Added Rosewill RXS-3211 IP Camera Password Retriever
git-svn-id: file:///home/svn/framework3/trunk@12724 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 22:06:51 +00:00
Tod Beardsley 81e1b41840 Fixes #4578. If the user has Nokogiri of a reasonable version installed, use that to parse Nmap-created XML documents. Otherwise, fall back to the existing REXML parser.
git-svn-id: file:///home/svn/framework3/trunk@12702 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-24 19:40:50 +00:00
amaloteaux ee55e0cf76 http_ntlm & smb capture : correct john/cain output, Fixes #4565 and completly Fixes #4362 now
git-svn-id: file:///home/svn/framework3/trunk@12683 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 14:05:55 +00:00
Tod Beardsley 5ecc8d2551 Spelling.
git-svn-id: file:///home/svn/framework3/trunk@12682 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 14:00:35 +00:00
amaloteaux 305e3ca308 typo
git-svn-id: file:///home/svn/framework3/trunk@12681 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 11:54:51 +00:00
amaloteaux 097f954e7b arp spoof : re-Arping the hosts after user interupt
git-svn-id: file:///home/svn/framework3/trunk@12680 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 11:47:54 +00:00
HD Moore a8c474d7d6 Add the versioned (1.0) RPC backend
git-svn-id: file:///home/svn/framework3/trunk@12679 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 03:50:14 +00:00
amaloteaux 39978dca42 arp spoof : -add an auto_add option to automatically detect new host and spoof them
-move broadcast option back to advanced 
-enable listener by default


git-svn-id: file:///home/svn/framework3/trunk@12678 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-21 16:26:11 +00:00
Tod Beardsley 520aa7d01c Fixes #4558. Since the arp spoofer is the only module that actually uses lookupaddrs, don't require every other pcaprub module to check for it.
git-svn-id: file:///home/svn/framework3/trunk@12672 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 14:26:24 +00:00
James Lee 9a2e655c53 test for java explicitly when we have javascript, refactor several things, add a 'list' command, and make the info description more descriptive
git-svn-id: file:///home/svn/framework3/trunk@12670 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 09:11:43 +00:00
HD Moore e2e27341be Rename this thing
git-svn-id: file:///home/svn/framework3/trunk@12668 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 19:50:11 +00:00
Mario Ceballos 3fedad5715 add matteo's patch.
git-svn-id: file:///home/svn/framework3/trunk@12666 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 19:02:58 +00:00
James Lee f7178bf4de somehow typo'd this between testing and commit... fixes #4510
git-svn-id: file:///home/svn/framework3/trunk@12642 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-17 04:46:52 +00:00
James Lee 158e196e20 don't bail when we get a '550 user unknown' error, try harder for domain checks. fixes #4031, thanks Lonnie Benavides for the patch
git-svn-id: file:///home/svn/framework3/trunk@12641 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 23:45:28 +00:00
James Lee 554ebd7040 make author field consistent, fixes #4336
git-svn-id: file:///home/svn/framework3/trunk@12636 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 17:21:59 +00:00
HD Moore cf3bcf2bcf Revert to old behavior for now
git-svn-id: file:///home/svn/framework3/trunk@12635 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 14:45:37 +00:00
HD Moore 9c93eda851 Disable Java attacks for IE (breaks the chaining)
git-svn-id: file:///home/svn/framework3/trunk@12632 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 04:21:58 +00:00
Tod Beardsley 056cde292f Deprecate the exploited_host table. Vulns that indicate a successful exploit without opening a session should set the :exploited_at timestamp.
git-svn-id: file:///home/svn/framework3/trunk@12623 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 22:19:00 +00:00
Joshua Drake 28ae2316a4 Fixes #4390, such a bute
git-svn-id: file:///home/svn/framework3/trunk@12578 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-10 20:52:59 +00:00
HD Moore 244e251d7b Keywords
git-svn-id: file:///home/svn/framework3/trunk@12567 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 21:36:29 +00:00
amaloteaux af87e1def0 weird, was pretty sure those lines are some how automatically updated ....
git-svn-id: file:///home/svn/framework3/trunk@12566 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 04:49:11 +00:00
amaloteaux 09a2bceec5 arp_spoof: add an arp poisoning auxiliary module with several config mode
git-svn-id: file:///home/svn/framework3/trunk@12564 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 04:26:16 +00:00
amaloteaux 5d8db916d7 pcap_replay: small fix on th delay
git-svn-id: file:///home/svn/framework3/trunk@12563 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 01:44:09 +00:00
amaloteaux fd661770ed Fix #4362, thanks to Zack Fasel for report and initial patch
git-svn-id: file:///home/svn/framework3/trunk@12560 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-07 18:52:17 +00:00
Matt Weeks fea1459c50 Update description
git-svn-id: file:///home/svn/framework3/trunk@12559 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-07 02:46:30 +00:00
David Rude 3b5cf3826a Added TheLightCosines OpenSSL ChangeCipherSpec DoS aux module
git-svn-id: file:///home/svn/framework3/trunk@12538 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 19:08:28 +00:00
Tod Beardsley 98831c3285 Clean up an SNMP rescue clause that makes Windows Ruby builds sad.
git-svn-id: file:///home/svn/framework3/trunk@12530 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 07:51:09 +00:00
HD Moore 23c355ba2c Just use :mac not :host_mac
git-svn-id: file:///home/svn/framework3/trunk@12517 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 03:03:38 +00:00
HD Moore 9f53aa15a5 Catch other error types from SNMP
git-svn-id: file:///home/svn/framework3/trunk@12504 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-02 05:38:13 +00:00
HD Moore 77328e7327 Fix report calls, thanks Minga!
git-svn-id: file:///home/svn/framework3/trunk@12457 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 19:39:28 +00:00
Wei Chen e39739231d Added CVE reference
git-svn-id: file:///home/svn/framework3/trunk@12431 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 05:37:41 +00:00
Tod Beardsley 3829d2606b Removing the un-used USER_AS_PASS option for ssh_login_pubkey.
git-svn-id: file:///home/svn/framework3/trunk@12411 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 21:05:27 +00:00
amaloteaux 91bb4b0130 auxiliary: add a basic pcap replay module
git-svn-id: file:///home/svn/framework3/trunk@12403 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 18:25:19 +00:00
Tod Beardsley ea6b1bb626 Fixes #4190 by reseting self.ssh_socket after the connection is established.
git-svn-id: file:///home/svn/framework3/trunk@12402 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 15:32:00 +00:00
James Lee 2a06f2b70c remove extraneous options, fixes #4146. note that INTERFACE is not extraneous (since the user needs to be able to specify which iface to inject on)
git-svn-id: file:///home/svn/framework3/trunk@12398 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 21:05:17 +00:00
Tod Beardsley 794dfc502f Avoid trying duplicate SNMP community strings against the same host.
git-svn-id: file:///home/svn/framework3/trunk@12396 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 19:25:50 +00:00
Joshua Drake 78d3998854 Fixes #4125, add hostname support to the Rex DHCP server & aux module
git-svn-id: file:///home/svn/framework3/trunk@12375 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 14:21:36 +00:00
Tod Beardsley 8b5d004997 Adding an nmap version checker so NSE modules can tell if it's okay to run or not.
git-svn-id: file:///home/svn/framework3/trunk@12357 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 19:52:13 +00:00
HD Moore f1f15ba448 Allow socks4a to relay through meterpreter
git-svn-id: file:///home/svn/framework3/trunk@12353 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 18:17:49 +00:00
amaloteaux d9e68141e0 arp sweep: correct a bug on the timeout to better detect the latest reply
git-svn-id: file:///home/svn/framework3/trunk@12316 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 16:29:56 +00:00
Steve Tornio 6dc526f22b add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12295 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 18:12:17 +00:00
David Rude 5e89b22aae Added ISC DHCP Zero Length ClientID DoS Module thx TheLightCosine
git-svn-id: file:///home/svn/framework3/trunk@12293 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 15:56:39 +00:00
Patrick Webster fb33b0cbfd Added contentkeeper_fileaccess aux traversal module.
git-svn-id: file:///home/svn/framework3/trunk@12288 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-10 15:27:17 +00:00
Wei Chen 8efd5ce82c Added denial-of-service module for HP Data Protector's RDS service
git-svn-id: file:///home/svn/framework3/trunk@12278 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 07:56:48 +00:00
Mike Smith d5d9d56081 Create a dedicated db table to track sessions & session events.
* Add new db tables for session & session_events
* Migrate existing session data from events db table
* Modify session report methods to log to the new tables


git-svn-id: file:///home/svn/framework3/trunk@12273 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:59:32 +00:00
Patrick Webster 1c2e08d95d Added SonicWall SSL-VPN format string module.
git-svn-id: file:///home/svn/framework3/trunk@12261 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 03:56:35 +00:00
Tod Beardsley e07147142f See #3781. smb_login implements the special keyword of <BLANK> (but also needs to be nil safe, which this fixes)
git-svn-id: file:///home/svn/framework3/trunk@12257 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:26:46 +00:00
Tod Beardsley 30fb75c676 In smb_login, work around an odd error where you get an InvalidPacket for ACCESS_DENIED rather than a login failure.
git-svn-id: file:///home/svn/framework3/trunk@12256 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:15:08 +00:00
Tod Beardsley b91c81a182 Fixes #4074 -- corrects the affected regexes.
git-svn-id: file:///home/svn/framework3/trunk@12238 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 22:19:59 +00:00
amaloteaux 7e522d9979 http capture : add challenge as an option
git-svn-id: file:///home/svn/framework3/trunk@12231 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 23:31:14 +00:00
HD Moore 86fac4ef95 This module does not meet standards for inclusion:
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs




git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 16:11:59 +00:00
Carlos Perez 8c96711c6c shroretel user login brute force module by Keith Lee
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 14:13:15 +00:00
Steve Tornio 8aff852f5a add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12218 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 13:41:19 +00:00
Mario Ceballos cab7a1b3e4 added auxiliary module zend/java_bridge.rb
git-svn-id: file:///home/svn/framework3/trunk@12212 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 22:01:46 +00:00
natron 6743776c75 Fixing ugly spacing
git-svn-id: file:///home/svn/framework3/trunk@12193 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:24:14 +00:00
natron e1c7be1acf Tim Medin's NBNS spoofer / world domination ensurer.
git-svn-id: file:///home/svn/framework3/trunk@12192 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:22:13 +00:00
Wei Chen e86040f04f Added Solar FTP Server DOS
git-svn-id: file:///home/svn/framework3/trunk@12184 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-30 19:13:46 +00:00
James Lee 792bb4da7a allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038, thanks mubix!
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 05:42:33 +00:00
Tod Beardsley 64c3c86e1f Adding carnal0wnage's iSQL*Plus SID and login brute forcers.
git-svn-id: file:///home/svn/framework3/trunk@12163 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 01:20:51 +00:00
Tod Beardsley 8d8696eb8c Fixes #4026, the HTTP options scanner now reports its vulnerability in the normal way.
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 17:03:16 +00:00
amaloteaux ec5e61966d oops revert the unwanted early commit on mssql
git-svn-id: file:///home/svn/framework3/trunk@12114 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:53:57 +00:00
amaloteaux 46cf938475 fix typo
git-svn-id: file:///home/svn/framework3/trunk@12112 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:47:49 +00:00
David Rude c9e4aa11df Fixed the report note to not use the proper data format
git-svn-id: file:///home/svn/framework3/trunk@12108 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:15:40 +00:00
HD Moore fff99db43d Fix the report_note not to clash with smb_enumusers format
git-svn-id: file:///home/svn/framework3/trunk@12107 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:14:05 +00:00
David Rude 2ea46486a4 fixed report_note
git-svn-id: file:///home/svn/framework3/trunk@12104 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:16:29 +00:00
David Rude 3a0c71f98b Added Xerox Workcenter aux module for enumerating users
git-svn-id: file:///home/svn/framework3/trunk@12102 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:13:37 +00:00
Mario Ceballos 3f7e3ee93f added auxiliary module igss_exec_17.rb
git-svn-id: file:///home/svn/framework3/trunk@12077 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 01:58:09 +00:00
Tod Beardsley 46dfafa81f Fixes #3987. Don't raise on the attr set, raise when the command actually wants to get run.
git-svn-id: file:///home/svn/framework3/trunk@12063 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 20:52:08 +00:00
HD Moore 99d9dc69cd Merge in cookie support from paulino calderon
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 04:59:02 +00:00
Tod Beardsley 42dd4fa717 Allow for duplicates for vnc_login since there's no username.
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 18:10:49 +00:00
Tod Beardsley f2057f54a8 De-dup'ed get_link_filter() in the crawler module. Added some comment
docs on crawler_process_page(). Nothing exciting.



git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
Carlos Perez 6a1acd6a54 small typo
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Joshua Drake 5bfd574029 fix parse error
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Tod Beardsley d289aa8733 Another touchup on author credit for oracle-brute NSE script integration.
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:05:09 +00:00
Tod Beardsley c6a9a6efd7 Am I really updating for a misplaced comment? Why yes I am!
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:45:29 +00:00
Tod Beardsley 424eb1f192 Adding a reference to NSE as well.
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:26:20 +00:00
Tod Beardsley 9b431c0c8d Adding Patrik Karlsson as an author for the nmap nse script
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:19:57 +00:00
Tod Beardsley ecb89c785b Actually use the API for appending command line arguments for nmap.
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:59:35 +00:00
Tod Beardsley 5e715c22db Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist.
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:16:18 +00:00
Tod Beardsley 292f357f7a Moving requires from oracle_login to nmap. Duh.
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 20:46:03 +00:00
James Lee 7d12151ec6 add support for http digest authentication. fixes #2504, thanks oliver kleinecke for the patch!
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
Tod Beardsley 6e0e23f5ba Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions.
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:13:57 +00:00
Tod Beardsley f568b3e0d8 Normalize the print_status banners for sid_brute
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 18:25:34 +00:00
Tod Beardsley 70127c09fb Fixes #3939 by setting the racket bits correctly.
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 15:58:17 +00:00
Tod Beardsley 03f227817e blarg lost a commit in there.
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:41:46 +00:00
Tod Beardsley b8b175fd5c See #3941. Don't report the same thing a billion times.
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:34:19 +00:00
Tod Beardsley b68396351a See #3941. This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it.
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.

Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.

Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.



git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 22:52:50 +00:00
HD Moore 5ab60f2966 Fixes #3938 by correcting the path for the filename
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 15:04:16 +00:00
HD Moore 293a6f2ef4 Remove unused RHOST option and fix call to .id in ICMP
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 04:20:19 +00:00
HD Moore 09b3ecff33 Move the module to the correct location
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore 2578a0e16b Correct formatting and API usage in the Majordomo2 module
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:17 +00:00
amaloteaux 544fb61aa2 server capture smb will check for empty pass and not display on screen
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:27:22 +00:00
Steve Tornio 03cd23a2d0 remove extra osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:27:27 +00:00
David Rude 00c756ee27 Added patches from Chris John Riley for SAP aux scanner modules
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:50:18 +00:00
David Rude 370c42736c Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:37:02 +00:00
Tod Beardsley 8771b871da Whitespace cleanup on sid_brute.rb, remove redundant target_host def.
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 16:55:08 +00:00
Tod Beardsley e2af0510f6 wanged up the revision splat.
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:16:20 +00:00
Tod Beardsley 676fc22249 Fixes #3927. Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does.
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:15:15 +00:00
HD Moore 5299bbb8db Add ip/port prefixes to the jboss scanner
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux 5f6995e8d3 enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
Mario Ceballos 94d21dde8e fix a load error
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:54:03 +00:00
Mario Ceballos 5e60545446 fix a load error
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:35:31 +00:00
David Rude 2a90817b80 Fixes more style and API usage issues
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 18:46:00 +00:00
David Rude 27ba761cd3 Fixed indentation of the cldap_payload
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 14:01:04 +00:00
David Rude 6c1f49e73d Added Wireshark Auxiliary DoS module from joernchen
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 13:44:41 +00:00
David Rude 37e9ad1ed4 Added SAP Management Console auxiliary scanner modules
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 10:18:31 +00:00
Tod Beardsley 57966c66d8 This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins.
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 20:42:14 +00:00
Tod Beardsley 5f70c705c1 Committing the Kippo ssh honeypot detection as seen at AHA!.
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 13:57:26 +00:00
James Lee aea8192c7f apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\!
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 21:47:52 +00:00
Joshua Drake 8ef05017b8 style compliance fixes, naughty naughty
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
et dd05954b34 Fix wmap to test parameters, error inj. module as example
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
Steve Tornio 13809850a3 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-19 13:35:57 +00:00
Joshua Drake 8b4ef42fa3 randomize name string
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:21:24 +00:00
Joshua Drake 2ef3e79c3d add cve/bid refs
git-svn-id: file:///home/svn/framework3/trunk@11764 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 14:41:48 +00:00
Joshua Drake 7365ca9509 add aux module to trigger browser election DoS
git-svn-id: file:///home/svn/framework3/trunk@11756 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-16 18:12:28 +00:00
Joshua Drake 7fb3094bb0 remove "File" from title
git-svn-id: file:///home/svn/framework3/trunk@11746 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-12 22:30:54 +00:00
HD Moore 070f48e16a Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:32:37 +00:00
et baab86fc52 WMAP 1.0 and first pass on some modules
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 05:57:26 +00:00
Tod Beardsley 3f1ceea349 Fixes #3655. Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters.
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:54:32 +00:00
James Lee 16fad17453 snmp_enum improvements from Kashif Iftikhar, fixes #3654
git-svn-id: file:///home/svn/framework3/trunk@11706 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:26:23 +00:00
Jonathan Cran 5b5e7028ad quick mod from daniel clemens to show the ip with the url
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 19:04:54 +00:00
Tod Beardsley 671659841b On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley e31f35e3ae Fixes #3643. These modules now report_vuln() correctly.
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley 99b1703416 Trailing comma on cisco_ios_auth_bypass
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:07:31 +00:00
Tod Beardsley cec851a5ed Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references.
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:06:40 +00:00
Joshua Drake 2c93910f4b switch to .html per reports of brokennes
git-svn-id: file:///home/svn/framework3/trunk@11683 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-31 06:18:13 +00:00
HD Moore ac651fba6b Merge code from Alexandre Maloteaux, fixes #3615
git-svn-id: file:///home/svn/framework3/trunk@11678 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-30 19:26:35 +00:00
Joshua Drake 89a731b789 Prevent trying to call .map on nil
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:39:19 +00:00
Joshua Drake c9d3d60b23 Rework external command invocation
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake a0a8ea8cbd re-order includes a bit
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 21:32:59 +00:00
HD Moore 3794ed35cc Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk:
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf



git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:24:37 +00:00
Joshua Drake d9fe9da849 add DoS module from Paulino Calderon
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 00:11:41 +00:00
natron 1be3448959 svn propset
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:21:08 +00:00
natron bb4343bf63 Add new domain user enumeration aux mod. Still needs an update to include db reporting.
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:14:57 +00:00
James Lee d7cda0f85a accept a client argument for get_uri()
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:16:57 +00:00
Joshua Drake 80eb7bad52 Fixes #3257, Adds two mod_negotiation scanner modules from DiabloHorn
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Tod Beardsley aeb1f684c0 Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs).
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:24:03 +00:00
Joshua Drake e821f7e757 Fixes #3567, apply patch to make ports/payloads configurable
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:32:18 +00:00
Joshua Drake 362c409623 Fixes #3554, add missing variable to published_applications (from published_bruteforce), some clean ups
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 00:22:21 +00:00
Joshua Drake be0169cef1 add android file snarfer exploit
git-svn-id: file:///home/svn/framework3/trunk@11601 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-19 18:04:54 +00:00
Tod Beardsley 1d7745d449 Add some tracking datastore objects (ParentUUID and AutopwnUUID) to browser_autopwn.rb's exploits and multi/handlers to make exploit tracking a little easier.
git-svn-id: file:///home/svn/framework3/trunk@11592 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-17 22:15:22 +00:00
James Lee f2661e68db don't respond with 404's for requests that don't match the URIPATH exactly. allows for more generic hash stealing and fixes 3442
git-svn-id: file:///home/svn/framework3/trunk@11576 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 20:57:33 +00:00
Joshua Drake 14617450d0 catch connection errors
git-svn-id: file:///home/svn/framework3/trunk@11537 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 20:03:53 +00:00
Joshua Drake b9836dcf50 fix success detection read loop
git-svn-id: file:///home/svn/framework3/trunk@11535 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 19:40:39 +00:00
Joshua Drake 287f4c87fe style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:13:26 +00:00
HD Moore 74bf5199f1 Patches from goony, fixes #3438
git-svn-id: file:///home/svn/framework3/trunk@11497 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:35:57 +00:00
Joshua Drake 4ae8b8b14a add snmp_set scanner from Matteo Cantoni (Fixes #3437), remove executable property from enums
git-svn-id: file:///home/svn/framework3/trunk@11494 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:23:22 +00:00
James Lee 1ecb293010 pass the listener bind address through to handlers
git-svn-id: file:///home/svn/framework3/trunk@11493 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:18:24 +00:00
Tod Beardsley 24388f3a38 Adding a CVE reference for weak/blank/guessable passwords.
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
Joshua Drake 5e2abcc88c add DoS module for IIS FTP server
git-svn-id: file:///home/svn/framework3/trunk@11456 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-31 18:32:55 +00:00
HD Moore bec8a95b02 Merges pello's Cisco uploader module, merges changes back into the TFTP server class. Fixes #3429
git-svn-id: file:///home/svn/framework3/trunk@11454 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-30 16:37:58 +00:00
HD Moore b7a05f03b0 Remove duplicate line
git-svn-id: file:///home/svn/framework3/trunk@11449 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:12:14 +00:00
Joshua Drake 885545a94e add http:bl scanner from mubix, fixes #3346
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 18:33:45 +00:00
HD Moore d202a5abf2 Add missing mixin
git-svn-id: file:///home/svn/framework3/trunk@11423 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 18:10:41 +00:00
HD Moore 30affd4b2c This commit adds a new set of discovery modules from wuntee and some useful utility methods for working with link-local addresses
git-svn-id: file:///home/svn/framework3/trunk@11417 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 16:43:53 +00:00
Steve Tornio 37a3ca4643 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11415 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 13:16:15 +00:00
HD Moore 2f97c61f86 Add the uber SNMP enumeration module from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@11412 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:31:38 +00:00
HD Moore 5875fdb701 Two new SNMP community enumeration tools for Windows by tebo (local account list and SMB shares). Addition of a Meterpreter script for snagging the SNMP community from the registry
git-svn-id: file:///home/svn/framework3/trunk@11410 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:08:34 +00:00
HD Moore b7eec06041 Deregister username-specific options since they aren't supported anyways, a suggestion from tebo
git-svn-id: file:///home/svn/framework3/trunk@11409 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:02:35 +00:00
HD Moore 8a4f6de5c4 Correct state processing in the additional address discovery code.
git-svn-id: file:///home/svn/framework3/trunk@11385 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 02:22:56 +00:00
HD Moore 3f7809ca5a Patch to fix vuln reporting by swtornio
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-18 18:55:36 +00:00
James Lee 9c1f7b28e2 pass SSL opt on to submodules
git-svn-id: file:///home/svn/framework3/trunk@11346 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 23:02:04 +00:00
HD Moore 55b21d4aaf Fixes to enable password parsing and rw/ro detection in snmp brute force
git-svn-id: file:///home/svn/framework3/trunk@11336 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 20:51:17 +00:00
Joshua Drake b30270e742 fix version
git-svn-id: file:///home/svn/framework3/trunk@11310 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 19:06:18 +00:00
HD Moore cff22d7a56 Consistency change to make snmp act like other login modules
git-svn-id: file:///home/svn/framework3/trunk@11303 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:27:35 +00:00
HD Moore 58565cd53f Rename community to snmp_login and include the brute force mixin
git-svn-id: file:///home/svn/framework3/trunk@11302 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:09:43 +00:00
HD Moore 4e4eb14887 This adds a TFTP version of #3345 (Pello's snmp config downloader). Still more work to do for the generic module
git-svn-id: file:///home/svn/framework3/trunk@11300 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 23:36:37 +00:00
HD Moore fb7a06b218 Correct typo, find coffee
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 20:03:35 +00:00
HD Moore 909eeefc8f Change of plan, keep this as a single module
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:54:47 +00:00
HD Moore 37ffccde08 Rename this module for clarity
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:27:26 +00:00
HD Moore 8162d100fd Add keywords
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:49:22 +00:00
HD Moore e3f909cef9 Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers.
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:37:09 +00:00
HD Moore 26aca9d6ba Swap some module locations, add loot and cred reporting
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 05:47:33 +00:00
Tod Beardsley e18548387c Ensure that UDP services are set to "open" in case they already had a "closed" record.
git-svn-id: file:///home/svn/framework3/trunk@11270 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 01:13:44 +00:00
HD Moore b3b2bf6675 Stop testing users if the device doesn't support it
git-svn-id: file:///home/svn/framework3/trunk@11269 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 00:58:55 +00:00
Tod Beardsley 493db14006 Adds a "duplicate_ok" option to report_auth_info to allow for multiple passwords on the same username. Never came up before I took a look at SNMP.
Also normalizes the print_status messages to be explicit about which module is reporting (important when you're running several at once).



git-svn-id: file:///home/svn/framework3/trunk@11267 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-09 21:23:39 +00:00