Commit Graph

4584 Commits (1d5f1e5f6939d61bfd00b8b1d658be7281c5f1c8)

Author SHA1 Message Date
James Lee f90a222fa0 better vnc protocol parsing, fixes #374
git-svn-id: file:///home/svn/framework3/trunk@7196 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:59:35 +00:00
HD Moore 4ac27c9803 Consolidate common APIs into the mixin
git-svn-id: file:///home/svn/framework3/trunk@7195 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:58:01 +00:00
et 6a818c0c64 Fixed #371. Included target information
git-svn-id: file:///home/svn/framework3/trunk@7194 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:51:47 +00:00
et 6cfd1675c4 Fixed #375. Removed the module as frontpage_login provides same information
git-svn-id: file:///home/svn/framework3/trunk@7193 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:45:30 +00:00
et c501187ca4 Fixed typo #368.
git-svn-id: file:///home/svn/framework3/trunk@7192 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:39:40 +00:00
et bfd359f0d8 Fixed #367. Adder error code detection and signatures
git-svn-id: file:///home/svn/framework3/trunk@7191 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:37:40 +00:00
et f085e7cf59 Remove generic modules at this time, until proxy is created and then it can be proxy modules.
git-svn-id: file:///home/svn/framework3/trunk@7190 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:23:33 +00:00
et 249cc10cf5 Fixed #365. Added signatures and error code detection
git-svn-id: file:///home/svn/framework3/trunk@7189 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:18:22 +00:00
et 814675f952 Changed variable name for consistency purposes
git-svn-id: file:///home/svn/framework3/trunk@7188 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:01:43 +00:00
et dc415c76ca Fixes #364. Added error message detection and signatures
git-svn-id: file:///home/svn/framework3/trunk@7187 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 19:46:30 +00:00
James Lee f85c522a07 don't try to parse an empty banner, fixes #373
git-svn-id: file:///home/svn/framework3/trunk@7186 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 18:23:19 +00:00
HD Moore 4d4c0905ef Slightly improved error handling for auxiliary and exploit modules. Improved brute forcing mode for mssql_login. Serious errors (broken code, etc) are bubbled up in auxiliary scanners now. Fixes #384 by reading wordlists one line at a time and not buffering
git-svn-id: file:///home/svn/framework3/trunk@7185 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 18:03:02 +00:00
Stephen Fewer e72b347794 Add a remote Vista kernel DoS against the srv2.sys driver. This issue was fixed with MS09-050 but does not appear to be referenced in the advisory so was either silently or inadvertently fixed.
git-svn-id: file:///home/svn/framework3/trunk@7184 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 15:41:51 +00:00
HD Moore 5ea99ac421 Remove from the db_autopwn set for now
git-svn-id: file:///home/svn/framework3/trunk@7183 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 09:31:17 +00:00
HD Moore a17d96a1ab Remove the last usage of ReadWriteLock in the Socket class. Fixes #383
git-svn-id: file:///home/svn/framework3/trunk@7182 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 09:24:36 +00:00
et bee78d3b51 First round of fixes for wmap modules
git-svn-id: file:///home/svn/framework3/trunk@7181 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 07:10:32 +00:00
HD Moore 88fba8c38a Handle a null response better
git-svn-id: file:///home/svn/framework3/trunk@7180 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 03:09:30 +00:00
HD Moore 490545602a Chunk long sql queries into blocks, fixes mssql_payload
git-svn-id: file:///home/svn/framework3/trunk@7179 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 03:07:25 +00:00
HD Moore 681e2c940c Fixes #379. Massive rewrite of the MSSQL mixin. This moves everything to TDS 7.0 instead of the old crusty protocol
git-svn-id: file:///home/svn/framework3/trunk@7178 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 01:17:58 +00:00
HD Moore 8d9356f40d Minor tweak allows the 'quit' command to work inside of a resource script
git-svn-id: file:///home/svn/framework3/trunk@7177 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-17 16:53:21 +00:00
HD Moore d0b07c0c3f Fixes #353. If the problem persists, make sure 'cygpath' is installed, it sounds like the root cause is 3.3-dev being run inside of an existing cygwin environment.
git-svn-id: file:///home/svn/framework3/trunk@7176 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-17 06:41:37 +00:00
HD Moore 27192b303b Fixes #270. Allow the user to set BasicAuthUser and BasicAuthPass in order to authenticate using the HTTP mixin
git-svn-id: file:///home/svn/framework3/trunk@7175 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-17 06:20:14 +00:00
HD Moore ed021ad08d Fixes #260. Remove the 'raw' option for payloads ni msfweb, this just causes encoding issues to pop up and isn't useful.
git-svn-id: file:///home/svn/framework3/trunk@7174 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-17 06:09:59 +00:00
HD Moore d3aa513773 Fixes #339. Cleans up author names for the most part - there are still some stragglers, but this should fix up the frequent contributors
git-svn-id: file:///home/svn/framework3/trunk@7173 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-17 05:55:15 +00:00
HD Moore ce25403e18 Fixes #356. Delete poorly formatted reference entries, preventing bad reference objects from being stored in the actual module
git-svn-id: file:///home/svn/framework3/trunk@7172 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-17 05:25:29 +00:00
kris efe44ba6b5 bleh.. a bit of tabs vs spaces
git-svn-id: file:///home/svn/framework3/trunk@7171 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-16 18:27:18 +00:00
Mario Ceballos 378b7f29d5 added exploit modules talkative_response.rb, blazedvd_plf.rb, vuplayer_cue.rb and vuplayer_m3u.rb
git-svn-id: file:///home/svn/framework3/trunk@7170 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-16 17:02:44 +00:00
Mario Ceballos 37fa36ed12 fix a typo.
git-svn-id: file:///home/svn/framework3/trunk@7169 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-16 16:51:16 +00:00
Mario Ceballos 7e1c769eef added exploit modules poppeeper_uidl.rb and poppeeper_date.rb
git-svn-id: file:///home/svn/framework3/trunk@7168 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-15 18:04:58 +00:00
Mario Ceballos 62dc4c74d7 added activepdf_webgrabber.rb, etrust_pestscan.rb, ea_checkrequirements.rb and mcafee_hercules_deletesnapshot.rb exploit modules.
git-svn-id: file:///home/svn/framework3/trunk@7167 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-15 15:22:16 +00:00
HD Moore 5f57666f44 Woops! Commit the h2b script needed for mssql_payload
git-svn-id: file:///home/svn/framework3/trunk@7166 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-15 13:52:14 +00:00
HD Moore 90504e3ea7 Fix email formatting
git-svn-id: file:///home/svn/framework3/trunk@7165 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-15 12:29:07 +00:00
HD Moore 6e95d1f637 Detect when xp_cmdshell is disabled and re-enable it
git-svn-id: file:///home/svn/framework3/trunk@7164 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-15 12:14:28 +00:00
HD Moore c4bfae59aa Minor cleanups
git-svn-id: file:///home/svn/framework3/trunk@7163 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-15 01:44:00 +00:00
HD Moore 59676df4db Adds ReL1K's mssql_payload module
git-svn-id: file:///home/svn/framework3/trunk@7162 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 21:11:28 +00:00
HD Moore 3b49e2af58 Add an optional timeout for mssql
git-svn-id: file:///home/svn/framework3/trunk@7161 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 20:56:36 +00:00
HD Moore ce9bfec34f Fix string handling
git-svn-id: file:///home/svn/framework3/trunk@7160 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 17:51:44 +00:00
HD Moore cd2968a32a Updated mssql_sql and backend mixin, can handle most column types and is somewhat usable as a mssql client
git-svn-id: file:///home/svn/framework3/trunk@7159 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 17:41:12 +00:00
HD Moore c5b23fbb02 Better result parsing, fix a slice!() on nil
git-svn-id: file:///home/svn/framework3/trunk@7158 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 14:25:26 +00:00
Mario Ceballos aae4ac74c1 more adjusting of the cve entries.
git-svn-id: file:///home/svn/framework3/trunk@7157 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 12:56:13 +00:00
Mario Ceballos 8e365c17fa fixed the cve entrys.
git-svn-id: file:///home/svn/framework3/trunk@7156 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 11:45:14 +00:00
Mario Ceballos aee16a85ab fixed the cve entry.
git-svn-id: file:///home/svn/framework3/trunk@7155 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-14 11:28:50 +00:00
HD Moore a782a68c42 Complete overhaul of the MSSQL API, fixes 1.9 compat issues and makes the MSSQL testing easier
git-svn-id: file:///home/svn/framework3/trunk@7154 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-13 22:24:47 +00:00
Mario Ceballos 63ad9ebf27 added exploit module aol_icq_downloadagent.rb
git-svn-id: file:///home/svn/framework3/trunk@7153 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-13 17:04:05 +00:00
Carlos Perez 627f0b7261 Fixed problem when parsing options
git-svn-id: file:///home/svn/framework3/trunk@7152 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-12 23:42:50 +00:00
Carlos Perez e259c04c23 Corrected error, calling undefined method instead of the session
git-svn-id: file:///home/svn/framework3/trunk@7151 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-12 23:34:41 +00:00
HD Moore 5d9f3323e8 Last two reference updates from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@7150 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-12 14:42:51 +00:00
HD Moore 26db223636 OSVDB reference update from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@7149 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-12 14:39:51 +00:00
Mario Ceballos a8ccd1fe98 updated references with bid/cve.
git-svn-id: file:///home/svn/framework3/trunk@7148 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-12 12:39:15 +00:00
Mario Ceballos 5b6f16a0f9 added exploit modules athocgov_completeinstallation.rb and symantec_iao.rb
git-svn-id: file:///home/svn/framework3/trunk@7147 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-12 12:31:52 +00:00