Commit Graph

4577 Commits (1dad276f58519f5b0933b8eb5907d24fc9966737)

Author SHA1 Message Date
Patrick Webster b0c9e8b8e5 Added BigAnt 2.5 exploit module from Dr_IDE.
git-svn-id: file:///home/svn/framework3/trunk@7039 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-17 17:04:47 +00:00
Mario Ceballos e0e9ad670f added auxiliary module osb_execqr2.rb
git-svn-id: file:///home/svn/framework3/trunk@7038 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-16 12:07:07 +00:00
HD Moore b5da2c72f2 Fixes #333. Adds core and api version checks to all module loads. To specify a minimum version, add the following constant to the top of the module (outside of the class definition):
RequiredVersions = [3.3, 1.0] # MSF 3.3+ API 1.0+


git-svn-id: file:///home/svn/framework3/trunk@7037 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-15 13:50:32 +00:00
HD Moore 110e89fd19 Fix a raise() call that was printing a warning with Ruby 1.8.6
git-svn-id: file:///home/svn/framework3/trunk@7036 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-14 18:46:41 +00:00
James Lee e30e850ba7 shave a few bytes off of the windows stagers
git-svn-id: file:///home/svn/framework3/trunk@7035 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-14 08:45:01 +00:00
James Lee 8b0a92ba1b fix a 1.9 bug where elements of a string are assumed to be Integers; fixes #309
git-svn-id: file:///home/svn/framework3/trunk@7034 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-13 16:56:54 +00:00
HD Moore 41aa5baa6d Fix the check for verbose flag
git-svn-id: file:///home/svn/framework3/trunk@7033 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-12 15:43:08 +00:00
HD Moore 0885a7262e Merge the DECT code from DK, clean some things up
git-svn-id: file:///home/svn/framework3/trunk@7032 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-12 15:40:33 +00:00
Patrick Webster b0d1c2681f Added sendmail_prescan aux dos module.
git-svn-id: file:///home/svn/framework3/trunk@7031 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-12 10:56:36 +00:00
James Lee 9ace8f33eb OSVDB references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@7030 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-12 04:22:58 +00:00
HD Moore 0c584bae10 Match against the fullname not just the refname for -m regex filters in db_autopwn
git-svn-id: file:///home/svn/framework3/trunk@7029 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-11 15:32:23 +00:00
Stephen Fewer 1937839e79 Patch meterpreter's sysinfo command to resolve the system language and architecture.
git-svn-id: file:///home/svn/framework3/trunk@7028 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-10 13:09:48 +00:00
James Lee 782f830abf make cd work by special-casing it to call chdir()
git-svn-id: file:///home/svn/framework3/trunk@7027 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-10 06:19:10 +00:00
James Lee 0f957f236e make cd work by special-casing it to call chdir()
git-svn-id: file:///home/svn/framework3/trunk@7026 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-10 06:11:47 +00:00
James Lee 85a4f1b9db add a simple check for the generic php exploits
git-svn-id: file:///home/svn/framework3/trunk@7025 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-10 05:24:03 +00:00
HD Moore 185b93bf29 Enforce max password length of 14 to avoid a default policy warning about back compat
git-svn-id: file:///home/svn/framework3/trunk@7024 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-10 03:29:51 +00:00
Mario Ceballos 13f5e1c2e5 added exploit module symantec_altirisdeployment_downloadandinstall.rb
git-svn-id: file:///home/svn/framework3/trunk@7023 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 22:30:01 +00:00
HD Moore 71d644e72e Fix the Payload->Space to match the new max size limit for the EXE generator. Thanks for catching it MC
git-svn-id: file:///home/svn/framework3/trunk@7022 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 21:23:11 +00:00
HD Moore 7505a4568f This commit adds a SMB 2.0 scanner - it also reports uptime and dialect version
git-svn-id: file:///home/svn/framework3/trunk@7021 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 15:51:06 +00:00
Patrick Webster 086d5daaba Try again :)
git-svn-id: file:///home/svn/framework3/trunk@7020 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 15:20:10 +00:00
Patrick Webster d1268286f0 Renamed to correct spelling based on the SAP service.
git-svn-id: file:///home/svn/framework3/trunk@7019 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 15:01:25 +00:00
Patrick Webster 63702412b0 Added exploit module sap_2005_licence from Jacopo Cervini.
git-svn-id: file:///home/svn/framework3/trunk@7018 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 14:59:34 +00:00
HD Moore 858d57acdd Updated referencse and description
git-svn-id: file:///home/svn/framework3/trunk@7017 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 13:41:14 +00:00
HD Moore a7afd1a6c8 Updated referencse and description
git-svn-id: file:///home/svn/framework3/trunk@7016 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 13:34:13 +00:00
HD Moore eeefc4dd27 Fix a typo
git-svn-id: file:///home/svn/framework3/trunk@7015 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 02:06:46 +00:00
HD Moore 56b2ab3f63 Fix the Space and mistyped StackAdjustment in the metaphish merge
git-svn-id: file:///home/svn/framework3/trunk@7014 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 00:55:13 +00:00
HD Moore d6d7b0e43f Raise an alert if the code size is > 2048
git-svn-id: file:///home/svn/framework3/trunk@7013 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-08 20:33:43 +00:00
HD Moore 232ca24b46 Updated to make it clear that 2003 is not affected (thanks for the feedback for those who tested)
git-svn-id: file:///home/svn/framework3/trunk@7012 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-08 20:27:41 +00:00
HD Moore 7006acc1a8 Cosmetic cleanup
git-svn-id: file:///home/svn/framework3/trunk@7011 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-08 17:48:12 +00:00
HD Moore 989989077a Adds a first pass at the new SMB flaw - set the OFFSET variable to test different function table indices. This module contains some offsets/notes from my early attempts at code execution.
git-svn-id: file:///home/svn/framework3/trunk@7010 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-08 17:41:40 +00:00
Stephen Fewer 36d60d5d12 Commit the x64 build of the meterpreter incognito extension.
git-svn-id: file:///home/svn/framework3/trunk@7009 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-07 09:25:25 +00:00
Stephen Fewer ff9efacffa Commit the x64 build of the meterpreter priv extension.
git-svn-id: file:///home/svn/framework3/trunk@7008 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-07 09:17:29 +00:00
kris da61141a79 Fixes #281, pt2. This time fixing unrelated whitespace changes from the
original patch.  I (lazily) kept it because 'svn diff -x -b' showed no
difference and it was formatted fine in vi.  This is obviously not a good
way of assessing bad whitespace formatting :)


git-svn-id: file:///home/svn/framework3/trunk@7007 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-05 23:57:42 +00:00
Mario Ceballos c1aa1b5f22 updated targets list
git-svn-id: file:///home/svn/framework3/trunk@7006 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-05 14:54:22 +00:00
kris 53775ed59b Fixes #281. Add .nessus db support via db_import_nessus_xml
Based on work by mephux and erwinp.  I started with the latter's patch and
reworked it to avoid all of duplication from the .nbe stuff.


git-svn-id: file:///home/svn/framework3/trunk@7005 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-05 04:29:53 +00:00
HD Moore 64ff8b5181 Add missing -oX argument
git-svn-id: file:///home/svn/framework3/trunk@7004 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 15:14:19 +00:00
HD Moore 09eb693a97 Fix cygwin check
git-svn-id: file:///home/svn/framework3/trunk@7003 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 15:11:28 +00:00
HD Moore e7b200bc23 Expand cygwin to win32 path for db_nmap on windows inside of cygwin
git-svn-id: file:///home/svn/framework3/trunk@7002 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 15:04:06 +00:00
Stephen Fewer 402608ec6f Commit the openssl x64 static libraries required for compilation. These are freshly built using the latest stable release (openssl-0.9.8k). Instructions for re-building the libraries also included.
git-svn-id: file:///home/svn/framework3/trunk@7001 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 01:58:17 +00:00
Stephen Fewer 5dee5819b1 Commit the source code for the cross compilable reflective dll injection module. Some minor modifications to the stdapi extension were also required. All the projects (.vcproj) now have an x64 debug/release target as well as an x86 counterpart.
git-svn-id: file:///home/svn/framework3/trunk@7000 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 01:53:58 +00:00
Stephen Fewer d584b4d314 Fixed migrate for x64 meterpreter (Tested on Win 7 and 2003).
git-svn-id: file:///home/svn/framework3/trunk@6999 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 01:40:48 +00:00
Stephen Fewer 8bb0efb97e the first binaries for the windows x64 meterpreter. only metsrv and stdapi for now. source code to follow later.
git-svn-id: file:///home/svn/framework3/trunk@6998 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-03 17:50:41 +00:00
Stephen Fewer 40ca641a96 Initial commit of the windows x64 meterpreter payloads!
git-svn-id: file:///home/svn/framework3/trunk@6997 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-03 17:47:21 +00:00
Mario Ceballos cf0f690e4d added exploit module safenet_ike_11.rb
git-svn-id: file:///home/svn/framework3/trunk@6996 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-02 22:04:35 +00:00
Stephen Fewer 1184f01742 Added Aki Immonen's target for Windows 2000 SP3, thanks Aki!
git-svn-id: file:///home/svn/framework3/trunk@6995 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-02 21:24:34 +00:00
HD Moore 41ab69c600 Updated return address from Stephen Fewer, should work for a wider range now
git-svn-id: file:///home/svn/framework3/trunk@6994 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-01 17:34:47 +00:00
HD Moore 251810685f Fix the target patch
git-svn-id: file:///home/svn/framework3/trunk@6993 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-01 17:22:43 +00:00
HD Moore ca22f6fa98 Updated patch and return address for better compatibility with more targets
git-svn-id: file:///home/svn/framework3/trunk@6992 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-01 16:38:52 +00:00
HD Moore 660ae9444b Adds coverage for Kingcope's new IIS FTP exploit, this is a direct port with minimal changes
git-svn-id: file:///home/svn/framework3/trunk@6991 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-01 15:01:57 +00:00
Patrick Webster ff317936db Added alcatel_omnipcx_mastercgi command execution module.
git-svn-id: file:///home/svn/framework3/trunk@6990 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-01 03:43:16 +00:00