James Lee
825a2747c1
remove unnecessary dup, unused var
...
git-svn-id: file:///home/svn/framework3/trunk@13509 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-10 17:27:09 +00:00
amaloteaux
377c987c1d
report hashes captured by htp_ntlm server
...
git-svn-id: file:///home/svn/framework3/trunk@13496 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-06 14:50:15 +00:00
Carlos Perez
f8d50b7705
Applied and tested patch from Thomas Ring in bug 5206
...
git-svn-id: file:///home/svn/framework3/trunk@13490 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-04 22:55:06 +00:00
HD Moore
842bfdebe8
Lets just leave this here (insurance against my laptop melting down between now and tomorrow morning). Nothing to see here, move along ;)
...
git-svn-id: file:///home/svn/framework3/trunk@13483 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-03 22:58:55 +00:00
HD Moore
f3e4c860a7
Slow down a little bit to prevent packet loss
...
git-svn-id: file:///home/svn/framework3/trunk@13468 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-02 00:47:51 +00:00
James Lee
021fa0d8cb
missed a line in the conversion to packetfu, see #5038
...
git-svn-id: file:///home/svn/framework3/trunk@13442 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 04:41:17 +00:00
HD Moore
a5e63c2ca9
Grab the instance from the query vs the ping (via TheLightCosine)
...
git-svn-id: file:///home/svn/framework3/trunk@13435 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 21:20:57 +00:00
HD Moore
c216219573
Add mssql_ping back in
...
git-svn-id: file:///home/svn/framework3/trunk@13434 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 21:11:53 +00:00
HD Moore
e916e06b6e
Closes #5142 by merging (with some small changes)
...
git-svn-id: file:///home/svn/framework3/trunk@13433 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 21:07:22 +00:00
Tod Beardsley
486241cc99
SSH scanners shouldn't die just because they're on Windows and they try to talk to reserved addresses.
...
git-svn-id: file:///home/svn/framework3/trunk@13407 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 15:51:11 +00:00
James Lee
d50577066f
remove some silliness of registering UserAgent as an option since it's already an advanced option for HttpClient, make the default obvious
...
git-svn-id: file:///home/svn/framework3/trunk@13394 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 22:57:47 +00:00
Tod Beardsley
df52bfaa4f
Ensure that we check for pcaprub before doing much anything else for those modules that actually require it. In some cases, that means moving open_pcap() up to be the first method call, in others, insert check_pcaprub_loaded first. Also removes a few cases of redundant checking (the Capture mixin does all this already anyway).
...
git-svn-id: file:///home/svn/framework3/trunk@13381 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 20:21:47 +00:00
Jonathan Cran
78849b2837
check that pcaprub is loaded up front, before checking configuration options
...
git-svn-id: file:///home/svn/framework3/trunk@13376 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 18:53:59 +00:00
amaloteaux
61645c03f2
psnuffle : apply some corrections from hdm
...
git-svn-id: file:///home/svn/framework3/trunk@13373 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 17:56:15 +00:00
amaloteaux
08322fc7ea
smb capture: split creds.ptype from smb_net_hash to smb_netv1_hash and smb_netv2_hash
...
smb_netv1_hash correspond to netlmv1/netntlmv1 and netntlm2_session hash type
smb_netv2_hash correspond to netlmv2/netntlmv2 hash type
also removed the domain name from creds.user and added it to the pass column like this DOMAIN:NETLMHASH:NETNTLMHASH:CHALLENGE
git-svn-id: file:///home/svn/framework3/trunk@13372 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 17:53:09 +00:00
Tod Beardsley
b22ca615c7
Fixes #5038 , missed a couple mentions of Racket. Excised now for sure.
...
git-svn-id: file:///home/svn/framework3/trunk@13371 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 17:44:36 +00:00
amaloteaux
95577d3b1b
smb_net_hash instead of smb_hash
...
git-svn-id: file:///home/svn/framework3/trunk@13356 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 01:49:53 +00:00
amaloteaux
2ed2bf59ed
don't need this option
...
git-svn-id: file:///home/svn/framework3/trunk@13355 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 01:33:35 +00:00
amaloteaux
67a3f7bd75
same for http_ntlm capture
...
git-svn-id: file:///home/svn/framework3/trunk@13354 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 23:47:40 +00:00
amaloteaux
8809182f62
smb capture : correct some minor bug and allow ntlm2_session hashes to be dumped in john and cain format has they can easily crack them too
...
git-svn-id: file:///home/svn/framework3/trunk@13353 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 23:36:45 +00:00
amaloteaux
d5ce83e136
pcapreplay: use optpath
...
git-svn-id: file:///home/svn/framework3/trunk@13345 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 20:18:24 +00:00
Tod Beardsley
c54e18d757
Fixes #5038 . Removes all instances of Racket objects, as far as I can tell. If I missed any through my mighty grep -ril racket . statement, please reopen!
...
git-svn-id: file:///home/svn/framework3/trunk@13342 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 01:29:21 +00:00
Tod Beardsley
0797b585db
See #5029 . Moved these over to the unstable modules branch.
...
git-svn-id: file:///home/svn/framework3/trunk@13338 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-25 22:37:51 +00:00
Wei Chen
5fdf482a8b
Add MSB reference
...
git-svn-id: file:///home/svn/framework3/trunk@13331 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-24 19:50:56 +00:00
Wei Chen
067f9bf053
Fix URL reference
...
git-svn-id: file:///home/svn/framework3/trunk@13329 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-24 19:36:37 +00:00
Wei Chen
e115e78f8d
Fix CVE
...
git-svn-id: file:///home/svn/framework3/trunk@13327 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-24 19:20:02 +00:00
Wei Chen
410d124ec5
Change name for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@13294 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 05:56:04 +00:00
Wei Chen
465f3f2739
Update metadata
...
git-svn-id: file:///home/svn/framework3/trunk@13293 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 05:45:46 +00:00
Steve Tornio
b930b2622f
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@13271 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-21 01:20:22 +00:00
Steve Tornio
46451acec5
add/fix some cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@13270 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-21 01:10:40 +00:00
David Rude
88125b53b8
remove stray puts
...
git-svn-id: file:///home/svn/framework3/trunk@13268 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-20 17:11:04 +00:00
David Rude
b96bf9754e
more logic fixes
...
git-svn-id: file:///home/svn/framework3/trunk@13240 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 21:19:34 +00:00
David Rude
a934004a2b
Fix the loop
...
git-svn-id: file:///home/svn/framework3/trunk@13239 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 21:12:44 +00:00
David Rude
bea802ea60
Fix the RPORT default
...
git-svn-id: file:///home/svn/framework3/trunk@13238 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 20:59:13 +00:00
David Rude
1fda05f128
Added SIPDroid extension enumeration module - thanks nibu
...
git-svn-id: file:///home/svn/framework3/trunk@13237 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 20:42:02 +00:00
Joshua Drake
486ca773e4
unpack the bytes so that we can do proper math on them
...
git-svn-id: file:///home/svn/framework3/trunk@13226 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 17:33:02 +00:00
Carlos Perez
f3b404b971
Misspelled variable
...
git-svn-id: file:///home/svn/framework3/trunk@13196 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-17 14:30:06 +00:00
James Lee
bd07523c35
send the fuzz case instead of a constant value. fixes #4939 , thanks Silent Dream for the patch
...
git-svn-id: file:///home/svn/framework3/trunk@13188 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 23:09:33 +00:00
James Lee
c412a836ed
add VERBOSE option to all modules and vprint_* methods to use it
...
git-svn-id: file:///home/svn/framework3/trunk@13183 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 15:33:35 +00:00
James Lee
39c20b2935
cosmetic
...
git-svn-id: file:///home/svn/framework3/trunk@13174 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 20:27:25 +00:00
James Lee
ccf891c788
remove superfluous junk in print_* calls
...
git-svn-id: file:///home/svn/framework3/trunk@13171 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 19:24:07 +00:00
Matt Weeks
0318379ca8
These are not necessary options; the DHCP server has reasonably intelligent defaults. Mark them as such.
...
git-svn-id: file:///home/svn/framework3/trunk@13164 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 02:32:28 +00:00
Tod Beardsley
b9c5835b5e
Touching up the ssh key login module to be smarter about duplicate user names, not be so chatty in its messaging to the console, deal with whitespace, and avoid storing duplicate keys when we don't need to.
...
git-svn-id: file:///home/svn/framework3/trunk@13162 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-13 20:51:18 +00:00
Tod Beardsley
dc84ee6aab
More fixups for ssh_login_pubkey and special handlers for long strings of keys.
...
git-svn-id: file:///home/svn/framework3/trunk@13156 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-12 20:58:25 +00:00
HD Moore
90ced404b3
Updates to the jtr code, supports ruby 1.8.7 now, fixes #4908
...
git-svn-id: file:///home/svn/framework3/trunk@13149 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-11 01:07:46 +00:00
HD Moore
7754f0d8f2
This commit adds a basic "analyzer" module for creds
...
git-svn-id: file:///home/svn/framework3/trunk@13136 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-09 02:14:24 +00:00
Wei Chen
a795dc7552
Added 2Wire Password Reset module by Travis
...
git-svn-id: file:///home/svn/framework3/trunk@13121 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 20:48:53 +00:00
Wei Chen
0fd6c8880e
Added DoS module for kaillera, and a new 'games' folder under windows
...
git-svn-id: file:///home/svn/framework3/trunk@13118 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 19:33:55 +00:00
James Lee
44d7503cc1
prefix most browser autopwn output with the address of the associated client
...
git-svn-id: file:///home/svn/framework3/trunk@13086 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-01 23:50:07 +00:00
Steve Tornio
7e02e7abd6
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@13038 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 11:43:54 +00:00
Joshua Drake
2e4fd81740
add CVE-2011-0657 DoS module
...
git-svn-id: file:///home/svn/framework3/trunk@13037 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 01:17:07 +00:00
David Rude
ac61cd0427
Changed from web.archive.org to classic-web.archive.org
...
git-svn-id: file:///home/svn/framework3/trunk@13018 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-24 14:43:59 +00:00
Carlos Perez
191e783662
Fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@13008 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 00:25:32 +00:00
Tod Beardsley
824022fde3
Adds a more universal print_error message for :abort in auth_brute.rb
...
git-svn-id: file:///home/svn/framework3/trunk@13005 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-22 20:53:51 +00:00
HD Moore
e223931a46
Commit a bug fix from Yori Kvitchko
...
git-svn-id: file:///home/svn/framework3/trunk@12994 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 03:56:47 +00:00
Tod Beardsley
04e2eb43ef
Removing the load() line from ssh_login, just wanted it for dev.
...
git-svn-id: file:///home/svn/framework3/trunk@12980 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 19:23:00 +00:00
HD Moore
6ccbaedd57
Add the CVE reference
...
git-svn-id: file:///home/svn/framework3/trunk@12972 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-18 17:52:21 +00:00
Tod Beardsley
6827495d17
Adds a # of passwords per username limiter to authbrute.
...
git-svn-id: file:///home/svn/framework3/trunk@12970 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-18 04:14:06 +00:00
Tod Beardsley
db1619d035
Rejiggers the max credentials limiter a little, and adds a max time limiter per service.
...
git-svn-id: file:///home/svn/framework3/trunk@12967 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 22:40:25 +00:00
Tod Beardsley
ab37580056
Refactored the AuthBrute mixin some to make the each_user_pass function a little cleaner and easier to maintain.
...
And maintain it I shall! Added in a standardized print_brute method to normalize the AuthBrute output to always include host, port, proto, and number of guesses over number remaining.
Also adds support for a MaxGuessesPerService datastore option for AuthBrute modules.
Currently, only ssh_login supports the new stuff, but now it's just a conversion matter. Will get to that in a bit.
git-svn-id: file:///home/svn/framework3/trunk@12958 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 22:08:45 +00:00
Steve Tornio
ffbdc59add
fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@12954 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 16:19:51 +00:00
Tod Beardsley
78703400c4
Sourcing the ineffective bruteforce error message on smb_login.
...
git-svn-id: file:///home/svn/framework3/trunk@12953 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 14:56:07 +00:00
HD Moore
d11e1f3294
Make all keywords consistent for modules.
...
git-svn-id: file:///home/svn/framework3/trunk@12936 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 03:38:31 +00:00
Carlos Perez
0ea7516e09
forgot to cover some checks for when no rows where returned.
...
git-svn-id: file:///home/svn/framework3/trunk@12864 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-06 01:45:55 +00:00
Jonathan Cran
68d8a68a36
apply mubix's patch, fixes #4640
...
git-svn-id: file:///home/svn/framework3/trunk@12857 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-05 07:11:22 +00:00
HD Moore
911583930b
Add the missing note type
...
git-svn-id: file:///home/svn/framework3/trunk@12840 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-03 00:49:45 +00:00
James Lee
bee19278d7
add a new javascript obfuscation engine using rkelly for parsing. use it in browser_autopwn and ms10_018_ie_behaviors. see #1003
...
git-svn-id: file:///home/svn/framework3/trunk@12839 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-03 00:36:26 +00:00
amaloteaux
b1bb7116ed
arp_sweep : automatically detect SHOST and SMAC and do not request localhost
...
git-svn-id: file:///home/svn/framework3/trunk@12823 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 21:31:36 +00:00
amaloteaux
f1b8bbd436
arp poisoning : auto detect SMAC through new pcaprub code and avoid spoofing local host
...
git-svn-id: file:///home/svn/framework3/trunk@12822 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 21:12:21 +00:00
HD Moore
55b4142ddf
Minor cleanup
...
git-svn-id: file:///home/svn/framework3/trunk@12821 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 20:56:55 +00:00
HD Moore
f20adabf8c
Fixes #4626 by checking for an out of bounds value before using the type as an array index
...
git-svn-id: file:///home/svn/framework3/trunk@12809 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-01 23:47:16 +00:00
Wei Chen
d54f632ea0
Add print_status() as requested by author
...
git-svn-id: file:///home/svn/framework3/trunk@12726 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 23:50:05 +00:00
Wei Chen
eb72982751
Fixed a typo for variable res
...
git-svn-id: file:///home/svn/framework3/trunk@12725 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 23:46:16 +00:00
Wei Chen
869a6dbbe5
Added Rosewill RXS-3211 IP Camera Password Retriever
...
git-svn-id: file:///home/svn/framework3/trunk@12724 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 22:06:51 +00:00
Tod Beardsley
81e1b41840
Fixes #4578 . If the user has Nokogiri of a reasonable version installed, use that to parse Nmap-created XML documents. Otherwise, fall back to the existing REXML parser.
...
git-svn-id: file:///home/svn/framework3/trunk@12702 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-24 19:40:50 +00:00
amaloteaux
ee55e0cf76
http_ntlm & smb capture : correct john/cain output, Fixes #4565 and completly Fixes #4362 now
...
git-svn-id: file:///home/svn/framework3/trunk@12683 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 14:05:55 +00:00
Tod Beardsley
5ecc8d2551
Spelling.
...
git-svn-id: file:///home/svn/framework3/trunk@12682 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 14:00:35 +00:00
amaloteaux
305e3ca308
typo
...
git-svn-id: file:///home/svn/framework3/trunk@12681 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 11:54:51 +00:00
amaloteaux
097f954e7b
arp spoof : re-Arping the hosts after user interupt
...
git-svn-id: file:///home/svn/framework3/trunk@12680 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 11:47:54 +00:00
HD Moore
a8c474d7d6
Add the versioned (1.0) RPC backend
...
git-svn-id: file:///home/svn/framework3/trunk@12679 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 03:50:14 +00:00
amaloteaux
39978dca42
arp spoof : -add an auto_add option to automatically detect new host and spoof them
...
-move broadcast option back to advanced
-enable listener by default
git-svn-id: file:///home/svn/framework3/trunk@12678 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-21 16:26:11 +00:00
Tod Beardsley
520aa7d01c
Fixes #4558 . Since the arp spoofer is the only module that actually uses lookupaddrs, don't require every other pcaprub module to check for it.
...
git-svn-id: file:///home/svn/framework3/trunk@12672 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 14:26:24 +00:00
James Lee
9a2e655c53
test for java explicitly when we have javascript, refactor several things, add a 'list' command, and make the info description more descriptive
...
git-svn-id: file:///home/svn/framework3/trunk@12670 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 09:11:43 +00:00
HD Moore
e2e27341be
Rename this thing
...
git-svn-id: file:///home/svn/framework3/trunk@12668 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 19:50:11 +00:00
Mario Ceballos
3fedad5715
add matteo's patch.
...
git-svn-id: file:///home/svn/framework3/trunk@12666 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 19:02:58 +00:00
James Lee
f7178bf4de
somehow typo'd this between testing and commit... fixes #4510
...
git-svn-id: file:///home/svn/framework3/trunk@12642 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-17 04:46:52 +00:00
James Lee
158e196e20
don't bail when we get a '550 user unknown' error, try harder for domain checks. fixes #4031 , thanks Lonnie Benavides for the patch
...
git-svn-id: file:///home/svn/framework3/trunk@12641 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 23:45:28 +00:00
James Lee
554ebd7040
make author field consistent, fixes #4336
...
git-svn-id: file:///home/svn/framework3/trunk@12636 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 17:21:59 +00:00
HD Moore
cf3bcf2bcf
Revert to old behavior for now
...
git-svn-id: file:///home/svn/framework3/trunk@12635 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 14:45:37 +00:00
HD Moore
9c93eda851
Disable Java attacks for IE (breaks the chaining)
...
git-svn-id: file:///home/svn/framework3/trunk@12632 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 04:21:58 +00:00
Tod Beardsley
056cde292f
Deprecate the exploited_host table. Vulns that indicate a successful exploit without opening a session should set the :exploited_at timestamp.
...
git-svn-id: file:///home/svn/framework3/trunk@12623 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 22:19:00 +00:00
Joshua Drake
28ae2316a4
Fixes #4390 , such a bute
...
git-svn-id: file:///home/svn/framework3/trunk@12578 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-10 20:52:59 +00:00
HD Moore
244e251d7b
Keywords
...
git-svn-id: file:///home/svn/framework3/trunk@12567 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 21:36:29 +00:00
amaloteaux
af87e1def0
weird, was pretty sure those lines are some how automatically updated ....
...
git-svn-id: file:///home/svn/framework3/trunk@12566 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 04:49:11 +00:00
amaloteaux
09a2bceec5
arp_spoof: add an arp poisoning auxiliary module with several config mode
...
git-svn-id: file:///home/svn/framework3/trunk@12564 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 04:26:16 +00:00
amaloteaux
5d8db916d7
pcap_replay: small fix on th delay
...
git-svn-id: file:///home/svn/framework3/trunk@12563 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 01:44:09 +00:00
amaloteaux
fd661770ed
Fix #4362 , thanks to Zack Fasel for report and initial patch
...
git-svn-id: file:///home/svn/framework3/trunk@12560 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-07 18:52:17 +00:00
Matt Weeks
fea1459c50
Update description
...
git-svn-id: file:///home/svn/framework3/trunk@12559 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-07 02:46:30 +00:00
David Rude
3b5cf3826a
Added TheLightCosines OpenSSL ChangeCipherSpec DoS aux module
...
git-svn-id: file:///home/svn/framework3/trunk@12538 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 19:08:28 +00:00
Tod Beardsley
98831c3285
Clean up an SNMP rescue clause that makes Windows Ruby builds sad.
...
git-svn-id: file:///home/svn/framework3/trunk@12530 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 07:51:09 +00:00
HD Moore
23c355ba2c
Just use :mac not :host_mac
...
git-svn-id: file:///home/svn/framework3/trunk@12517 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 03:03:38 +00:00
HD Moore
9f53aa15a5
Catch other error types from SNMP
...
git-svn-id: file:///home/svn/framework3/trunk@12504 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-02 05:38:13 +00:00
HD Moore
77328e7327
Fix report calls, thanks Minga!
...
git-svn-id: file:///home/svn/framework3/trunk@12457 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 19:39:28 +00:00
Wei Chen
e39739231d
Added CVE reference
...
git-svn-id: file:///home/svn/framework3/trunk@12431 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 05:37:41 +00:00
Tod Beardsley
3829d2606b
Removing the un-used USER_AS_PASS option for ssh_login_pubkey.
...
git-svn-id: file:///home/svn/framework3/trunk@12411 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 21:05:27 +00:00
amaloteaux
91bb4b0130
auxiliary: add a basic pcap replay module
...
git-svn-id: file:///home/svn/framework3/trunk@12403 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 18:25:19 +00:00
Tod Beardsley
ea6b1bb626
Fixes #4190 by reseting self.ssh_socket after the connection is established.
...
git-svn-id: file:///home/svn/framework3/trunk@12402 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 15:32:00 +00:00
James Lee
2a06f2b70c
remove extraneous options, fixes #4146 . note that INTERFACE is not extraneous (since the user needs to be able to specify which iface to inject on)
...
git-svn-id: file:///home/svn/framework3/trunk@12398 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 21:05:17 +00:00
Tod Beardsley
794dfc502f
Avoid trying duplicate SNMP community strings against the same host.
...
git-svn-id: file:///home/svn/framework3/trunk@12396 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 19:25:50 +00:00
Joshua Drake
78d3998854
Fixes #4125 , add hostname support to the Rex DHCP server & aux module
...
git-svn-id: file:///home/svn/framework3/trunk@12375 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 14:21:36 +00:00
Tod Beardsley
8b5d004997
Adding an nmap version checker so NSE modules can tell if it's okay to run or not.
...
git-svn-id: file:///home/svn/framework3/trunk@12357 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 19:52:13 +00:00
HD Moore
f1f15ba448
Allow socks4a to relay through meterpreter
...
git-svn-id: file:///home/svn/framework3/trunk@12353 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 18:17:49 +00:00
amaloteaux
d9e68141e0
arp sweep: correct a bug on the timeout to better detect the latest reply
...
git-svn-id: file:///home/svn/framework3/trunk@12316 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 16:29:56 +00:00
Steve Tornio
6dc526f22b
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12295 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 18:12:17 +00:00
David Rude
5e89b22aae
Added ISC DHCP Zero Length ClientID DoS Module thx TheLightCosine
...
git-svn-id: file:///home/svn/framework3/trunk@12293 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 15:56:39 +00:00
Patrick Webster
fb33b0cbfd
Added contentkeeper_fileaccess aux traversal module.
...
git-svn-id: file:///home/svn/framework3/trunk@12288 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-10 15:27:17 +00:00
Wei Chen
8efd5ce82c
Added denial-of-service module for HP Data Protector's RDS service
...
git-svn-id: file:///home/svn/framework3/trunk@12278 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 07:56:48 +00:00
Mike Smith
d5d9d56081
Create a dedicated db table to track sessions & session events.
...
* Add new db tables for session & session_events
* Migrate existing session data from events db table
* Modify session report methods to log to the new tables
git-svn-id: file:///home/svn/framework3/trunk@12273 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:59:32 +00:00
Patrick Webster
1c2e08d95d
Added SonicWall SSL-VPN format string module.
...
git-svn-id: file:///home/svn/framework3/trunk@12261 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 03:56:35 +00:00
Tod Beardsley
e07147142f
See #3781 . smb_login implements the special keyword of <BLANK> (but also needs to be nil safe, which this fixes)
...
git-svn-id: file:///home/svn/framework3/trunk@12257 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:26:46 +00:00
Tod Beardsley
30fb75c676
In smb_login, work around an odd error where you get an InvalidPacket for ACCESS_DENIED rather than a login failure.
...
git-svn-id: file:///home/svn/framework3/trunk@12256 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:15:08 +00:00
Tod Beardsley
b91c81a182
Fixes #4074 -- corrects the affected regexes.
...
git-svn-id: file:///home/svn/framework3/trunk@12238 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 22:19:59 +00:00
amaloteaux
7e522d9979
http capture : add challenge as an option
...
git-svn-id: file:///home/svn/framework3/trunk@12231 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 23:31:14 +00:00
HD Moore
86fac4ef95
This module does not meet standards for inclusion:
...
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs
git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 16:11:59 +00:00
Carlos Perez
8c96711c6c
shroretel user login brute force module by Keith Lee
...
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 14:13:15 +00:00
Steve Tornio
8aff852f5a
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12218 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 13:41:19 +00:00
Mario Ceballos
cab7a1b3e4
added auxiliary module zend/java_bridge.rb
...
git-svn-id: file:///home/svn/framework3/trunk@12212 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 22:01:46 +00:00
natron
6743776c75
Fixing ugly spacing
...
git-svn-id: file:///home/svn/framework3/trunk@12193 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:24:14 +00:00
natron
e1c7be1acf
Tim Medin's NBNS spoofer / world domination ensurer.
...
git-svn-id: file:///home/svn/framework3/trunk@12192 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:22:13 +00:00
Wei Chen
e86040f04f
Added Solar FTP Server DOS
...
git-svn-id: file:///home/svn/framework3/trunk@12184 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-30 19:13:46 +00:00
James Lee
792bb4da7a
allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038 , thanks mubix!
...
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 05:42:33 +00:00
Tod Beardsley
64c3c86e1f
Adding carnal0wnage's iSQL*Plus SID and login brute forcers.
...
git-svn-id: file:///home/svn/framework3/trunk@12163 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 01:20:51 +00:00
Tod Beardsley
8d8696eb8c
Fixes #4026 , the HTTP options scanner now reports its vulnerability in the normal way.
...
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 17:03:16 +00:00
amaloteaux
ec5e61966d
oops revert the unwanted early commit on mssql
...
git-svn-id: file:///home/svn/framework3/trunk@12114 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:53:57 +00:00
amaloteaux
46cf938475
fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@12112 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:47:49 +00:00
David Rude
c9e4aa11df
Fixed the report note to not use the proper data format
...
git-svn-id: file:///home/svn/framework3/trunk@12108 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:15:40 +00:00
HD Moore
fff99db43d
Fix the report_note not to clash with smb_enumusers format
...
git-svn-id: file:///home/svn/framework3/trunk@12107 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:14:05 +00:00
David Rude
2ea46486a4
fixed report_note
...
git-svn-id: file:///home/svn/framework3/trunk@12104 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:16:29 +00:00
David Rude
3a0c71f98b
Added Xerox Workcenter aux module for enumerating users
...
git-svn-id: file:///home/svn/framework3/trunk@12102 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:13:37 +00:00
Mario Ceballos
3f7e3ee93f
added auxiliary module igss_exec_17.rb
...
git-svn-id: file:///home/svn/framework3/trunk@12077 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 01:58:09 +00:00
Tod Beardsley
46dfafa81f
Fixes #3987 . Don't raise on the attr set, raise when the command actually wants to get run.
...
git-svn-id: file:///home/svn/framework3/trunk@12063 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 20:52:08 +00:00
HD Moore
99d9dc69cd
Merge in cookie support from paulino calderon
...
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 04:59:02 +00:00
Tod Beardsley
42dd4fa717
Allow for duplicates for vnc_login since there's no username.
...
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 18:10:49 +00:00
Tod Beardsley
f2057f54a8
De-dup'ed get_link_filter() in the crawler module. Added some comment
...
docs on crawler_process_page(). Nothing exciting.
git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
Carlos Perez
6a1acd6a54
small typo
...
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Joshua Drake
5bfd574029
fix parse error
...
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude
c5ce597483
removing coldfusion until some general code fixes can be applied
...
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Tod Beardsley
d289aa8733
Another touchup on author credit for oracle-brute NSE script integration.
...
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:05:09 +00:00
Tod Beardsley
c6a9a6efd7
Am I really updating for a misplaced comment? Why yes I am!
...
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:45:29 +00:00
Tod Beardsley
424eb1f192
Adding a reference to NSE as well.
...
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:26:20 +00:00
Tod Beardsley
9b431c0c8d
Adding Patrik Karlsson as an author for the nmap nse script
...
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:19:57 +00:00
Tod Beardsley
ecb89c785b
Actually use the API for appending command line arguments for nmap.
...
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:59:35 +00:00
Tod Beardsley
5e715c22db
Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist.
...
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:16:18 +00:00
Tod Beardsley
292f357f7a
Moving requires from oracle_login to nmap. Duh.
...
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 20:46:03 +00:00
James Lee
7d12151ec6
add support for http digest authentication. fixes #2504 , thanks oliver kleinecke for the patch!
...
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
Tod Beardsley
6e0e23f5ba
Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions.
...
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:13:57 +00:00
Tod Beardsley
f568b3e0d8
Normalize the print_status banners for sid_brute
...
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 18:25:34 +00:00
Tod Beardsley
70127c09fb
Fixes #3939 by setting the racket bits correctly.
...
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 15:58:17 +00:00
Tod Beardsley
03f227817e
blarg lost a commit in there.
...
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:41:46 +00:00
Tod Beardsley
b8b175fd5c
See #3941 . Don't report the same thing a billion times.
...
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:34:19 +00:00
Tod Beardsley
b68396351a
See #3941 . This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it.
...
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.
Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.
Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.
git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 22:52:50 +00:00
HD Moore
5ab60f2966
Fixes #3938 by correcting the path for the filename
...
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 15:04:16 +00:00
HD Moore
293a6f2ef4
Remove unused RHOST option and fix call to .id in ICMP
...
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 04:20:19 +00:00
HD Moore
09b3ecff33
Move the module to the correct location
...
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore
2578a0e16b
Correct formatting and API usage in the Majordomo2 module
...
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:17 +00:00
amaloteaux
544fb61aa2
server capture smb will check for empty pass and not display on screen
...
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:27:22 +00:00
Steve Tornio
03cd23a2d0
remove extra osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:27:27 +00:00
David Rude
00c756ee27
Added patches from Chris John Riley for SAP aux scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:50:18 +00:00
David Rude
370c42736c
Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu
...
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:37:02 +00:00
Tod Beardsley
8771b871da
Whitespace cleanup on sid_brute.rb, remove redundant target_host def.
...
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 16:55:08 +00:00
Tod Beardsley
e2af0510f6
wanged up the revision splat.
...
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:16:20 +00:00
Tod Beardsley
676fc22249
Fixes #3927 . Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does.
...
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:15:15 +00:00
HD Moore
5299bbb8db
Add ip/port prefixes to the jboss scanner
...
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux
5f6995e8d3
enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
...
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
Mario Ceballos
94d21dde8e
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:54:03 +00:00
Mario Ceballos
5e60545446
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:35:31 +00:00
David Rude
2a90817b80
Fixes more style and API usage issues
...
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 18:46:00 +00:00
David Rude
27ba761cd3
Fixed indentation of the cldap_payload
...
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 14:01:04 +00:00
David Rude
6c1f49e73d
Added Wireshark Auxiliary DoS module from joernchen
...
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 13:44:41 +00:00
David Rude
37e9ad1ed4
Added SAP Management Console auxiliary scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 10:18:31 +00:00
Tod Beardsley
57966c66d8
This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins.
...
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 20:42:14 +00:00
Tod Beardsley
5f70c705c1
Committing the Kippo ssh honeypot detection as seen at AHA!.
...
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 13:57:26 +00:00
James Lee
aea8192c7f
apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\!
...
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 21:47:52 +00:00
Joshua Drake
8ef05017b8
style compliance fixes, naughty naughty
...
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
et
dd05954b34
Fix wmap to test parameters, error inj. module as example
...
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
Steve Tornio
13809850a3
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-19 13:35:57 +00:00
Joshua Drake
8b4ef42fa3
randomize name string
...
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:21:24 +00:00
Joshua Drake
2ef3e79c3d
add cve/bid refs
...
git-svn-id: file:///home/svn/framework3/trunk@11764 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 14:41:48 +00:00
Joshua Drake
7365ca9509
add aux module to trigger browser election DoS
...
git-svn-id: file:///home/svn/framework3/trunk@11756 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-16 18:12:28 +00:00
Joshua Drake
7fb3094bb0
remove "File" from title
...
git-svn-id: file:///home/svn/framework3/trunk@11746 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-12 22:30:54 +00:00
HD Moore
070f48e16a
Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address
...
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:32:37 +00:00
et
baab86fc52
WMAP 1.0 and first pass on some modules
...
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 05:57:26 +00:00
Tod Beardsley
3f1ceea349
Fixes #3655 . Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters.
...
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:54:32 +00:00
James Lee
16fad17453
snmp_enum improvements from Kashif Iftikhar, fixes #3654
...
git-svn-id: file:///home/svn/framework3/trunk@11706 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:26:23 +00:00
Jonathan Cran
5b5e7028ad
quick mod from daniel clemens to show the ip with the url
...
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 19:04:54 +00:00
Tod Beardsley
671659841b
On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
...
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley
e31f35e3ae
Fixes #3643 . These modules now report_vuln() correctly.
...
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley
99b1703416
Trailing comma on cisco_ios_auth_bypass
...
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:07:31 +00:00
Tod Beardsley
cec851a5ed
Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references.
...
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:06:40 +00:00
Joshua Drake
2c93910f4b
switch to .html per reports of brokennes
...
git-svn-id: file:///home/svn/framework3/trunk@11683 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-31 06:18:13 +00:00
HD Moore
ac651fba6b
Merge code from Alexandre Maloteaux, fixes #3615
...
git-svn-id: file:///home/svn/framework3/trunk@11678 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-30 19:26:35 +00:00
Joshua Drake
89a731b789
Prevent trying to call .map on nil
...
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:39:19 +00:00
Joshua Drake
c9d3d60b23
Rework external command invocation
...
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake
a0a8ea8cbd
re-order includes a bit
...
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 21:32:59 +00:00
HD Moore
3794ed35cc
Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk:
...
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf
git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:24:37 +00:00
Joshua Drake
d9fe9da849
add DoS module from Paulino Calderon
...
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 00:11:41 +00:00
natron
1be3448959
svn propset
...
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:21:08 +00:00
natron
bb4343bf63
Add new domain user enumeration aux mod. Still needs an update to include db reporting.
...
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:14:57 +00:00
James Lee
d7cda0f85a
accept a client argument for get_uri()
...
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:16:57 +00:00
Joshua Drake
80eb7bad52
Fixes #3257 , Adds two mod_negotiation scanner modules from DiabloHorn
...
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Tod Beardsley
aeb1f684c0
Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs).
...
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:24:03 +00:00
Joshua Drake
e821f7e757
Fixes #3567 , apply patch to make ports/payloads configurable
...
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:32:18 +00:00
Joshua Drake
362c409623
Fixes #3554 , add missing variable to published_applications (from published_bruteforce), some clean ups
...
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 00:22:21 +00:00
Joshua Drake
be0169cef1
add android file snarfer exploit
...
git-svn-id: file:///home/svn/framework3/trunk@11601 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-19 18:04:54 +00:00
Tod Beardsley
1d7745d449
Add some tracking datastore objects (ParentUUID and AutopwnUUID) to browser_autopwn.rb's exploits and multi/handlers to make exploit tracking a little easier.
...
git-svn-id: file:///home/svn/framework3/trunk@11592 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-17 22:15:22 +00:00
James Lee
f2661e68db
don't respond with 404's for requests that don't match the URIPATH exactly. allows for more generic hash stealing and fixes 3442
...
git-svn-id: file:///home/svn/framework3/trunk@11576 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 20:57:33 +00:00
Joshua Drake
14617450d0
catch connection errors
...
git-svn-id: file:///home/svn/framework3/trunk@11537 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 20:03:53 +00:00
Joshua Drake
b9836dcf50
fix success detection read loop
...
git-svn-id: file:///home/svn/framework3/trunk@11535 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 19:40:39 +00:00
Joshua Drake
287f4c87fe
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:13:26 +00:00
HD Moore
74bf5199f1
Patches from goony, fixes #3438
...
git-svn-id: file:///home/svn/framework3/trunk@11497 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:35:57 +00:00
Joshua Drake
4ae8b8b14a
add snmp_set scanner from Matteo Cantoni ( Fixes #3437 ), remove executable property from enums
...
git-svn-id: file:///home/svn/framework3/trunk@11494 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:23:22 +00:00
James Lee
1ecb293010
pass the listener bind address through to handlers
...
git-svn-id: file:///home/svn/framework3/trunk@11493 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:18:24 +00:00
Tod Beardsley
24388f3a38
Adding a CVE reference for weak/blank/guessable passwords.
...
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
Joshua Drake
5e2abcc88c
add DoS module for IIS FTP server
...
git-svn-id: file:///home/svn/framework3/trunk@11456 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-31 18:32:55 +00:00
HD Moore
bec8a95b02
Merges pello's Cisco uploader module, merges changes back into the TFTP server class. Fixes #3429
...
git-svn-id: file:///home/svn/framework3/trunk@11454 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-30 16:37:58 +00:00
HD Moore
b7a05f03b0
Remove duplicate line
...
git-svn-id: file:///home/svn/framework3/trunk@11449 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:12:14 +00:00
Joshua Drake
885545a94e
add http:bl scanner from mubix, fixes #3346
...
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 18:33:45 +00:00
HD Moore
d202a5abf2
Add missing mixin
...
git-svn-id: file:///home/svn/framework3/trunk@11423 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 18:10:41 +00:00
HD Moore
30affd4b2c
This commit adds a new set of discovery modules from wuntee and some useful utility methods for working with link-local addresses
...
git-svn-id: file:///home/svn/framework3/trunk@11417 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 16:43:53 +00:00
Steve Tornio
37a3ca4643
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11415 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 13:16:15 +00:00
HD Moore
2f97c61f86
Add the uber SNMP enumeration module from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@11412 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:31:38 +00:00
HD Moore
5875fdb701
Two new SNMP community enumeration tools for Windows by tebo (local account list and SMB shares). Addition of a Meterpreter script for snagging the SNMP community from the registry
...
git-svn-id: file:///home/svn/framework3/trunk@11410 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:08:34 +00:00
HD Moore
b7eec06041
Deregister username-specific options since they aren't supported anyways, a suggestion from tebo
...
git-svn-id: file:///home/svn/framework3/trunk@11409 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:02:35 +00:00
HD Moore
8a4f6de5c4
Correct state processing in the additional address discovery code.
...
git-svn-id: file:///home/svn/framework3/trunk@11385 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 02:22:56 +00:00
HD Moore
3f7809ca5a
Patch to fix vuln reporting by swtornio
...
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-18 18:55:36 +00:00
James Lee
9c1f7b28e2
pass SSL opt on to submodules
...
git-svn-id: file:///home/svn/framework3/trunk@11346 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 23:02:04 +00:00
HD Moore
55b21d4aaf
Fixes to enable password parsing and rw/ro detection in snmp brute force
...
git-svn-id: file:///home/svn/framework3/trunk@11336 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 20:51:17 +00:00
Joshua Drake
b30270e742
fix version
...
git-svn-id: file:///home/svn/framework3/trunk@11310 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 19:06:18 +00:00
HD Moore
cff22d7a56
Consistency change to make snmp act like other login modules
...
git-svn-id: file:///home/svn/framework3/trunk@11303 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:27:35 +00:00
HD Moore
58565cd53f
Rename community to snmp_login and include the brute force mixin
...
git-svn-id: file:///home/svn/framework3/trunk@11302 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:09:43 +00:00
HD Moore
4e4eb14887
This adds a TFTP version of #3345 (Pello's snmp config downloader). Still more work to do for the generic module
...
git-svn-id: file:///home/svn/framework3/trunk@11300 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 23:36:37 +00:00
HD Moore
fb7a06b218
Correct typo, find coffee
...
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 20:03:35 +00:00
HD Moore
909eeefc8f
Change of plan, keep this as a single module
...
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:54:47 +00:00
HD Moore
37ffccde08
Rename this module for clarity
...
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:27:26 +00:00
HD Moore
8162d100fd
Add keywords
...
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:49:22 +00:00
HD Moore
e3f909cef9
Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers.
...
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:37:09 +00:00
HD Moore
26aca9d6ba
Swap some module locations, add loot and cred reporting
...
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 05:47:33 +00:00
Tod Beardsley
e18548387c
Ensure that UDP services are set to "open" in case they already had a "closed" record.
...
git-svn-id: file:///home/svn/framework3/trunk@11270 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 01:13:44 +00:00
HD Moore
b3b2bf6675
Stop testing users if the device doesn't support it
...
git-svn-id: file:///home/svn/framework3/trunk@11269 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 00:58:55 +00:00
Tod Beardsley
493db14006
Adds a "duplicate_ok" option to report_auth_info to allow for multiple passwords on the same username. Never came up before I took a look at SNMP.
...
Also normalizes the print_status messages to be explicit about which module is reporting (important when you're running several at once).
git-svn-id: file:///home/svn/framework3/trunk@11267 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-09 21:23:39 +00:00