Commit Graph

4118 Commits (1fb64f099dc70e5cb491adc7e2a4c97aafe6bd28)

Author SHA1 Message Date
James Lee c412a836ed add VERBOSE option to all modules and vprint_* methods to use it
git-svn-id: file:///home/svn/framework3/trunk@13183 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 15:33:35 +00:00
James Lee 6c8bde17b0 works for meterpreter, too (tested with java)
git-svn-id: file:///home/svn/framework3/trunk@13175 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 20:29:19 +00:00
James Lee 39c20b2935 cosmetic
git-svn-id: file:///home/svn/framework3/trunk@13174 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 20:27:25 +00:00
James Lee a1299f90c8 don't break if /proc/scsi/scsi doesn't exist or is unreadable
git-svn-id: file:///home/svn/framework3/trunk@13173 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 19:43:09 +00:00
James Lee ccf891c788 remove superfluous junk in print_* calls
git-svn-id: file:///home/svn/framework3/trunk@13171 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 19:24:07 +00:00
Matt Weeks 7122ccbbd1 wscript necessary in certain contexts.
Also can avoid warnings in certain cases.



git-svn-id: file:///home/svn/framework3/trunk@13166 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 02:35:33 +00:00
Matt Weeks 0318379ca8 These are not necessary options; the DHCP server has reasonably intelligent defaults. Mark them as such.
git-svn-id: file:///home/svn/framework3/trunk@13164 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 02:32:28 +00:00
Tod Beardsley b9c5835b5e Touching up the ssh key login module to be smarter about duplicate user names, not be so chatty in its messaging to the console, deal with whitespace, and avoid storing duplicate keys when we don't need to.
git-svn-id: file:///home/svn/framework3/trunk@13162 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-13 20:51:18 +00:00
Carlos Perez 8e5c5e114d Check for when reg key list is nil
git-svn-id: file:///home/svn/framework3/trunk@13157 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-12 21:05:44 +00:00
Tod Beardsley dc84ee6aab More fixups for ssh_login_pubkey and special handlers for long strings of keys.
git-svn-id: file:///home/svn/framework3/trunk@13156 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-12 20:58:25 +00:00
Steve Tornio 9278b0a5f5 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13152 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-11 06:59:00 +00:00
HD Moore 90ced404b3 Updates to the jtr code, supports ruby 1.8.7 now, fixes #4908
git-svn-id: file:///home/svn/framework3/trunk@13149 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-11 01:07:46 +00:00
Wei Chen 94aea207d3 Remove extra tabs and spaces
git-svn-id: file:///home/svn/framework3/trunk@13148 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-10 21:10:45 +00:00
Wei Chen 9892eb39eb Syntax fix
git-svn-id: file:///home/svn/framework3/trunk@13147 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-10 20:50:52 +00:00
Wei Chen 32a7eb0000 svn propset
git-svn-id: file:///home/svn/framework3/trunk@13146 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-10 19:19:00 +00:00
David Rude 7958516549 Adds Xeros Firefox nstreerange exploit
git-svn-id: file:///home/svn/framework3/trunk@13143 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-10 17:12:53 +00:00
Wei Chen 5b69b52ec4 "InitialAutoRunScript" is more like it
git-svn-id: file:///home/svn/framework3/trunk@13142 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-10 07:28:12 +00:00
Wei Chen 6448daf571 MS10-018, y u no InitialAutoRunScript
git-svn-id: file:///home/svn/framework3/trunk@13141 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-10 07:02:38 +00:00
Wei Chen 15f82402af I changed my mind. The ATTEMPTS options is required.
git-svn-id: file:///home/svn/framework3/trunk@13137 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-09 04:10:52 +00:00
HD Moore 7754f0d8f2 This commit adds a basic "analyzer" module for creds
git-svn-id: file:///home/svn/framework3/trunk@13136 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-09 02:14:24 +00:00
Wei Chen 1246fd5731 Added Blue Coat Authentication Authorization Agent exploit
git-svn-id: file:///home/svn/framework3/trunk@13134 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-09 01:40:29 +00:00
Carlos Perez c97971732d cleaned up the logic and added the mods to enum_osx
git-svn-id: file:///home/svn/framework3/trunk@13131 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-08 20:45:56 +00:00
James Lee ff53057965 Use consistent case for Spawn option
git-svn-id: file:///home/svn/framework3/trunk@13130 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-08 20:08:40 +00:00
Carlos Perez 0f7166335d removed unused code and added comments, also improve a bit the extraction of the hashes in the case Lion is configured and integrated with AD
git-svn-id: file:///home/svn/framework3/trunk@13125 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-08 02:35:50 +00:00
Carlos Perez 08e8f3aba7 Improvements for dumping OSX Lion NT Hashes
git-svn-id: file:///home/svn/framework3/trunk@13122 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 21:28:32 +00:00
Wei Chen a795dc7552 Added 2Wire Password Reset module by Travis
git-svn-id: file:///home/svn/framework3/trunk@13121 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 20:48:53 +00:00
Wei Chen 0fd6c8880e Added DoS module for kaillera, and a new 'games' folder under windows
git-svn-id: file:///home/svn/framework3/trunk@13118 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 19:33:55 +00:00
Carlos Perez 4cfaa74194 Improvements and fixes for dumping OSX Lion Hashes
git-svn-id: file:///home/svn/framework3/trunk@13117 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 14:53:10 +00:00
Steve Tornio 94640b6bc4 add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@13115 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 11:54:54 +00:00
Wei Chen 47e6c4a89f Added #4870 - MicroP .mppl buffer overflow exploit
git-svn-id: file:///home/svn/framework3/trunk@13114 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 06:29:37 +00:00
Carlos Perez 283537d5c6 Updated for Lion, tested against Development Gold Master
git-svn-id: file:///home/svn/framework3/trunk@13113 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 03:53:44 +00:00
Carlos Perez d381682ae5 update description
git-svn-id: file:///home/svn/framework3/trunk@13112 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 03:51:36 +00:00
Carlos Perez b8a232eaf5 Support for dumping OSX Lion SHA512 Salted hashes, thanks to hammackj for helping in figuring out how to parse the new format
git-svn-id: file:///home/svn/framework3/trunk@13111 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 03:46:33 +00:00
HD Moore 78f2525fdc Fixes #4879 by adding a new target from bperry
git-svn-id: file:///home/svn/framework3/trunk@13110 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 03:33:04 +00:00
Carlos Perez 9b146c7b3e Outlook Saved Password Enumeration Post Module by Justin Cacak
git-svn-id: file:///home/svn/framework3/trunk@13109 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 03:04:06 +00:00
Wei Chen 1058948419 Updated ROP, no more hardcoded ntdll addresses
git-svn-id: file:///home/svn/framework3/trunk@13106 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-06 07:22:24 +00:00
Wei Chen 7589f8d2f1 Updated target name that works against multiple systems (thx corelanc0d3r)
git-svn-id: file:///home/svn/framework3/trunk@13105 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-06 01:59:24 +00:00
James Lee ba3594b7c4 don't run commands we don't need if previous commands gave us the answer. also add a check for /dev/vmnet to detect VMWare hosts
git-svn-id: file:///home/svn/framework3/trunk@13101 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-05 17:11:18 +00:00
HD Moore ab4961bfa9 Timeline
git-svn-id: file:///home/svn/framework3/trunk@13099 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-05 05:20:47 +00:00
HD Moore e678bb0a8e Update the description to match the latest information
git-svn-id: file:///home/svn/framework3/trunk@13098 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-05 05:11:00 +00:00
HD Moore c82063d708 Update based on feedback from mc, indicating this backdoor was in place since February 15th 2011 and likely even earlier
git-svn-id: file:///home/svn/framework3/trunk@13097 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-05 01:49:05 +00:00
Wei Chen 1e4dfaf6de Change author name for dookie
git-svn-id: file:///home/svn/framework3/trunk@13096 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-04 22:33:47 +00:00
HD Moore 5482a59910 Exit cleanly if the shell as not valid
git-svn-id: file:///home/svn/framework3/trunk@13095 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-04 21:18:44 +00:00
HD Moore bd12c8c6a9 Fix a couple small typos
git-svn-id: file:///home/svn/framework3/trunk@13094 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-04 21:10:30 +00:00
HD Moore e6968c202a A couple bug fixes to enable cmd_interact and a new module for the VSFTPD backdoor
git-svn-id: file:///home/svn/framework3/trunk@13093 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-04 20:09:32 +00:00
Wei Chen 2f6b89516a Added HP Data Protector omniinet buffer overflow with opcode 20
git-svn-id: file:///home/svn/framework3/trunk@13092 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-04 17:02:40 +00:00
HD Moore db6b8c3545 Probably time to fess up :)
git-svn-id: file:///home/svn/framework3/trunk@13088 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-02 01:09:46 +00:00
James Lee 44d7503cc1 prefix most browser autopwn output with the address of the associated client
git-svn-id: file:///home/svn/framework3/trunk@13086 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-01 23:50:07 +00:00
Wei Chen dbd04d754a Change to a better P/P/R, tested on 4 different machines. Thx fdiskyou.
git-svn-id: file:///home/svn/framework3/trunk@13081 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-01 22:26:12 +00:00
Mario Ceballos b6e1c6a967 add exploit module hp_omniinet_3.rb
git-svn-id: file:///home/svn/framework3/trunk@13080 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-01 17:07:38 +00:00
Matt Weeks afbf445a87 Custom payload.
Fixes #4708



git-svn-id: file:///home/svn/framework3/trunk@13058 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-29 01:26:24 +00:00
HD Moore 9220506ba2 Merge in recent meterpreter work. These are not the commits you are looking for (more info on what all this is later this week).
git-svn-id: file:///home/svn/framework3/trunk@13053 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-28 21:26:43 +00:00
Wei Chen fc33b1d20e '\x00' isn't the same as "\x00"
git-svn-id: file:///home/svn/framework3/trunk@13051 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-28 19:45:51 +00:00
Wei Chen 73dc5c605b Change ranking. Because looks like it works better than "average"
git-svn-id: file:///home/svn/framework3/trunk@13042 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 18:00:12 +00:00
Wei Chen e6995b4912 Added ZDI-11-023 Citrix Provisioning Services bof exploit (Feature #4798)
git-svn-id: file:///home/svn/framework3/trunk@13041 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 17:54:18 +00:00
David Rude 0107d52d5b Adds FlashFXP FTP Password Gathering post module by thelightcosine
git-svn-id: file:///home/svn/framework3/trunk@13040 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 17:42:28 +00:00
Steve Tornio 7e02e7abd6 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13038 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 11:43:54 +00:00
Joshua Drake 2e4fd81740 add CVE-2011-0657 DoS module
git-svn-id: file:///home/svn/framework3/trunk@13037 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-27 01:17:07 +00:00
Wei Chen 1b25cf3c43 Using SEH instead of egghunter. Verified again on Win2k3. thx to MC.
git-svn-id: file:///home/svn/framework3/trunk@13036 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-26 19:28:14 +00:00
Joshua Drake bf20ace73e totally noobd out on that one, thx
git-svn-id: file:///home/svn/framework3/trunk@13035 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-26 18:09:21 +00:00
Wei Chen 6325515ca7 Minor name change
git-svn-id: file:///home/svn/framework3/trunk@13034 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-26 16:09:53 +00:00
Wei Chen 07f415f4e0 Forgot to switch back to random paddings
git-svn-id: file:///home/svn/framework3/trunk@13033 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-26 16:06:39 +00:00
Joshua Drake a29002ee2e handle a few corner cases
git-svn-id: file:///home/svn/framework3/trunk@13032 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-26 06:03:23 +00:00
Wei Chen f0e6159a35 Minor name change for the exploit
git-svn-id: file:///home/svn/framework3/trunk@13031 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-26 06:01:21 +00:00
Wei Chen 13b2209f3d Added Microsoft Visio DXF File Buffer Overflow Exploit by Juan
git-svn-id: file:///home/svn/framework3/trunk@13030 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-26 05:59:37 +00:00
Wei Chen 0cf51f8d5a Exploit name change. Also, this thing doesn't use seh.
git-svn-id: file:///home/svn/framework3/trunk@13026 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-25 14:25:45 +00:00
Steve Tornio 27eb48f650 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13025 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-25 11:27:55 +00:00
Wei Chen f16f850fc6 Added Siemens FactoryLink 8 csservice.exe (port 7580)
git-svn-id: file:///home/svn/framework3/trunk@13019 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-25 00:54:18 +00:00
David Rude ac61cd0427 Changed from web.archive.org to classic-web.archive.org
git-svn-id: file:///home/svn/framework3/trunk@13018 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-24 14:43:59 +00:00
David Rude 37b7345fea Adds Ranking and Fileformat version of the Lotus Notes LZH Exploit
git-svn-id: file:///home/svn/framework3/trunk@13015 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 15:43:54 +00:00
Steve Tornio 59943cb367 add osvdb and cve refs
git-svn-id: file:///home/svn/framework3/trunk@13014 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 12:05:09 +00:00
David Rude 7b5860d0ab Fix a bug if the RHOST length is 15 or longer
git-svn-id: file:///home/svn/framework3/trunk@13013 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 09:58:50 +00:00
David Rude df8bf68722 Adds Lotus Notes .lzh Autonomy Keyview Exploit
git-svn-id: file:///home/svn/framework3/trunk@13012 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 09:51:16 +00:00
Wei Chen 1223275330 Change ranking for now until we have a better solution for SP3
git-svn-id: file:///home/svn/framework3/trunk@13009 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 01:04:29 +00:00
Carlos Perez 191e783662 Fix typo
git-svn-id: file:///home/svn/framework3/trunk@13008 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-23 00:25:32 +00:00
Wei Chen bd62c13fb0 Added RealWin SCADA Server DATAC Login Buffer Overflow (Feature #4787))
git-svn-id: file:///home/svn/framework3/trunk@13007 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-22 22:36:55 +00:00
Tod Beardsley 824022fde3 Adds a more universal print_error message for :abort in auth_brute.rb
git-svn-id: file:///home/svn/framework3/trunk@13005 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-22 20:53:51 +00:00
David Rude d4ed8d7984 Fix the Registry mixin include
git-svn-id: file:///home/svn/framework3/trunk@13003 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-22 13:53:37 +00:00
David Rude 9f96f73d53 Added CoreFTP Gather Post Module from thelightcosine
git-svn-id: file:///home/svn/framework3/trunk@13002 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-22 12:17:14 +00:00
James Lee 57cf0b04a7 stack overflow != stack buffer overflow
git-svn-id: file:///home/svn/framework3/trunk@13001 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 23:27:16 +00:00
Steve Tornio 465bc8ce88 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13000 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 22:42:53 +00:00
Mario Ceballos a5a1f1587f add another scada module. winlog_runtime.rb
git-svn-id: file:///home/svn/framework3/trunk@12999 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 21:48:30 +00:00
Wei Chen 0400a72ab0 RCA, description update, and some text randomness
git-svn-id: file:///home/svn/framework3/trunk@12998 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 21:08:57 +00:00
Joshua Drake 69963a45ab Fixes #4752 - Auto-detect the windows directory and use it for subsequent requests
git-svn-id: file:///home/svn/framework3/trunk@12997 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 18:55:28 +00:00
Steve Tornio 03464a168e add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12996 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 18:02:35 +00:00
David Rude d796f523a6 Adds FactorLink vrn.exe exploit from hal
git-svn-id: file:///home/svn/framework3/trunk@12995 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 13:20:18 +00:00
HD Moore e223931a46 Commit a bug fix from Yori Kvitchko
git-svn-id: file:///home/svn/framework3/trunk@12994 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 03:56:47 +00:00
HD Moore 18c8f8dbe2 This adds IllWill's Bitcoin waller.dat Post module
git-svn-id: file:///home/svn/framework3/trunk@12993 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 03:26:07 +00:00
Wei Chen fdbc038bd0 Add BlackIce Cover Page ActiveX downloadimagefileurl exploit
git-svn-id: file:///home/svn/framework3/trunk@12992 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 02:51:39 +00:00
Carlos Perez 68e3691411 Change Post Mixin for Windows platform in its own separate class and minor fixes on modules and scripts
git-svn-id: file:///home/svn/framework3/trunk@12990 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-21 00:38:04 +00:00
Carlos Perez ff7f68b470 Change Post Mixin for Solaris platform in its own separate class
git-svn-id: file:///home/svn/framework3/trunk@12988 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 23:33:59 +00:00
Carlos Perez 5d3bb04ac0 Change Post Mixin for Linux platform in its own separate class
git-svn-id: file:///home/svn/framework3/trunk@12985 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 23:27:57 +00:00
HD Moore 346018c321 Disable NTLMv2 Session for Windows 2000 servers
git-svn-id: file:///home/svn/framework3/trunk@12984 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 22:54:13 +00:00
HD Moore 846172fa1a Split options based on shellwords, pass as a hash, this prevents commas in option values from breaking things and allows quotes to be used
git-svn-id: file:///home/svn/framework3/trunk@12983 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 20:54:46 +00:00
James Lee d31dd42c69 whitespace
git-svn-id: file:///home/svn/framework3/trunk@12981 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 19:41:35 +00:00
Tod Beardsley 04e2eb43ef Removing the load() line from ssh_login, just wanted it for dev.
git-svn-id: file:///home/svn/framework3/trunk@12980 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 19:23:00 +00:00
James Lee 399efb965f fix missing require, add meterp to session types so it works in php/java meterp. and who knows maybe posix, too.
git-svn-id: file:///home/svn/framework3/trunk@12979 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 16:50:11 +00:00
Steve Tornio 8ee3bf7f54 add cve, osvdb and bugtraq id.
git-svn-id: file:///home/svn/framework3/trunk@12978 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 11:07:22 +00:00
HD Moore 3831e49455 See #4506 for Macro handling
git-svn-id: file:///home/svn/framework3/trunk@12977 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 07:23:16 +00:00
James Lee 2217a454a9 missing include, fixes stack trace when running checkvm on a physical victim machine
git-svn-id: file:///home/svn/framework3/trunk@12976 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 05:21:52 +00:00
Wei Chen 0b30256203 Add licensing
git-svn-id: file:///home/svn/framework3/trunk@12975 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 04:01:47 +00:00
Wei Chen eff703b3ad Add SCADA Realwin On_FC_CONNECT_FCS_a_FILE buffer overflow
git-svn-id: file:///home/svn/framework3/trunk@12974 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-20 00:37:13 +00:00
HD Moore 6ccbaedd57 Add the CVE reference
git-svn-id: file:///home/svn/framework3/trunk@12972 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-18 17:52:21 +00:00
Tod Beardsley 6827495d17 Adds a # of passwords per username limiter to authbrute.
git-svn-id: file:///home/svn/framework3/trunk@12970 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-18 04:14:06 +00:00
Tod Beardsley db1619d035 Rejiggers the max credentials limiter a little, and adds a max time limiter per service.
git-svn-id: file:///home/svn/framework3/trunk@12967 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 22:40:25 +00:00
Steve Tornio 650762517f update CVE and OSVDB to match what the author said
git-svn-id: file:///home/svn/framework3/trunk@12964 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 17:35:57 +00:00
Steve Tornio 7c47b48f5b add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12962 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 01:56:20 +00:00
Wei Chen 23cc89482b CVE correction, thanks Kurt.
git-svn-id: file:///home/svn/framework3/trunk@12961 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 00:56:11 +00:00
Wei Chen eae350b88b CVE-2011-1260 seems to be the right one
git-svn-id: file:///home/svn/framework3/trunk@12959 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 22:27:10 +00:00
Tod Beardsley ab37580056 Refactored the AuthBrute mixin some to make the each_user_pass function a little cleaner and easier to maintain.
And maintain it I shall! Added in a standardized print_brute method to normalize the AuthBrute output to always include host, port, proto, and number of guesses over number remaining.

Also adds support for a MaxGuessesPerService datastore option for AuthBrute modules.

Currently, only ssh_login supports the new stuff, but now it's just a conversion matter. Will get to that in a bit.




git-svn-id: file:///home/svn/framework3/trunk@12958 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 22:08:45 +00:00
James Lee 8e5311cb61 File.read is not binary safe. replace it with File.open in a few places where it matters.
git-svn-id: file:///home/svn/framework3/trunk@12957 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 22:02:00 +00:00
Wei Chen 0a04835138 Added MS11-050 by d0c_s4vage
git-svn-id: file:///home/svn/framework3/trunk@12956 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 21:19:12 +00:00
Steve Tornio ffbdc59add fix typo
git-svn-id: file:///home/svn/framework3/trunk@12954 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 16:19:51 +00:00
Tod Beardsley 78703400c4 Sourcing the ineffective bruteforce error message on smb_login.
git-svn-id: file:///home/svn/framework3/trunk@12953 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 14:56:07 +00:00
HD Moore 64ea35d743 Remove executable prop
git-svn-id: file:///home/svn/framework3/trunk@12951 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-15 20:41:27 +00:00
amaloteaux 316f1ee08b typo
git-svn-id: file:///home/svn/framework3/trunk@12950 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-15 20:08:07 +00:00
HD Moore d43a019302 Fix typo and trim whitespace
git-svn-id: file:///home/svn/framework3/trunk@12947 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-15 02:45:36 +00:00
HD Moore 092817d449 Finally merging Cachedump into the SVN tree. Thanks to everyone who helped and again for their patience
git-svn-id: file:///home/svn/framework3/trunk@12946 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-15 01:06:22 +00:00
James Lee ea5dc1c85c use the right uri for our jar when other webserver modules are running
git-svn-id: file:///home/svn/framework3/trunk@12944 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-14 23:57:10 +00:00
Carlos Perez f6a967a336 chenged pkg to pkginfo
git-svn-id: file:///home/svn/framework3/trunk@12941 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-14 20:39:16 +00:00
Patrick Webster cb39e2b5a9 Fixed typo.
git-svn-id: file:///home/svn/framework3/trunk@12939 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-14 13:48:22 +00:00
Carlos Perez 6b1891d72a checkvm post module for Solaris it will detect if Solaris is running in as a Zone, VMware, VirtualBox, Xen or Qemu/KVM virtual machine.
git-svn-id: file:///home/svn/framework3/trunk@12938 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-14 00:50:33 +00:00
Carlos Perez 709402bba6 Added IDE Model Check
git-svn-id: file:///home/svn/framework3/trunk@12937 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 23:46:25 +00:00
HD Moore d11e1f3294 Make all keywords consistent for modules.
git-svn-id: file:///home/svn/framework3/trunk@12936 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 03:38:31 +00:00
HD Moore 0ea8936c0d Fix module titles to be consistent
git-svn-id: file:///home/svn/framework3/trunk@12935 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 03:35:32 +00:00
Carlos Perez 6582d6ee58 Added Amazon Linux enumeration
git-svn-id: file:///home/svn/framework3/trunk@12934 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 01:46:54 +00:00
Carlos Perez 02b78c0cd2 Added dmidecode output checking
git-svn-id: file:///home/svn/framework3/trunk@12932 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 01:31:58 +00:00
Carlos Perez d6cdb3ec45 Initial Linux Post Module to detect is target host is a Hyper-V, Xen, VMware, Qemu/KVM or VirtualBox VM.
git-svn-id: file:///home/svn/framework3/trunk@12931 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 01:07:27 +00:00
HD Moore eea05fcaaa Correct the parent class name
git-svn-id: file:///home/svn/framework3/trunk@12930 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-12 19:31:38 +00:00
HD Moore 7f3e2d182d Fix Axis2 to inherit from the correct class, prevent a stack trace when a non-Remote exploit has the cleanup method called.
git-svn-id: file:///home/svn/framework3/trunk@12928 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-12 18:32:27 +00:00
Carlos Perez 611b0c9e88 Fix false positive on win 7 x64 with vmware installed
git-svn-id: file:///home/svn/framework3/trunk@12927 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-12 14:50:55 +00:00
David Rude 04d280fdd0 minor fixes
git-svn-id: file:///home/svn/framework3/trunk@12925 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-12 00:04:55 +00:00
David Rude ee7454c5e6 Added IBM Tivoli Endpoint Manager HTTP POST query buffer overflow exploit
git-svn-id: file:///home/svn/framework3/trunk@12922 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-11 23:48:18 +00:00
Matt Weeks 5faaa7db07 Update cmd vbs download payloads.
Use : instead of longer echo statements.
Add eval version.



git-svn-id: file:///home/svn/framework3/trunk@12912 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-11 20:37:08 +00:00
Wei Chen f6c54d0fae Using store_loot to store screenshots instad (see #4693). Also, if xwd fails, then we don't save it.
git-svn-id: file:///home/svn/framework3/trunk@12907 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-10 23:22:15 +00:00
Carlos Perez 2191055a71 will skip accounts locked with no password
git-svn-id: file:///home/svn/framework3/trunk@12903 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-10 11:28:30 +00:00
Wei Chen fbe81ed82a tab fix
git-svn-id: file:///home/svn/framework3/trunk@12901 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-10 05:19:09 +00:00
Wei Chen 1a1b89e59d Added post mod to enum linux cron
git-svn-id: file:///home/svn/framework3/trunk@12900 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-10 05:18:05 +00:00
Carlos Perez 37246299eb Keywords
git-svn-id: file:///home/svn/framework3/trunk@12899 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-10 03:39:34 +00:00
Carlos Perez 1fced297f4 Indents and Keywords
git-svn-id: file:///home/svn/framework3/trunk@12898 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-10 03:36:48 +00:00
Carlos Perez 2910308b3b Initial set of Solaris post modules tested against Solaris 10 and 11
git-svn-id: file:///home/svn/framework3/trunk@12896 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-10 03:08:47 +00:00
Steve Tornio 579d823070 add osvdb and cve refs
git-svn-id: file:///home/svn/framework3/trunk@12893 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-09 20:44:52 +00:00
David Rude 247251ac07 Remove references to OUTPUTPATH options, unless files are created using a different method
git-svn-id: file:///home/svn/framework3/trunk@12892 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-09 19:51:56 +00:00
HD Moore 85f5e5fb98 Fix the disclosure date to match when signing was made available to the masses
git-svn-id: file:///home/svn/framework3/trunk@12891 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-09 17:08:05 +00:00
Wei Chen f334eafca4 Changes to some commands based on Eric Romang Blog's suggestions.
git-svn-id: file:///home/svn/framework3/trunk@12890 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-09 15:33:03 +00:00
Carlos Perez 13f0c5197d Add support for Oracle and Arch linux, thanks to Robin Wood for the Arch info
git-svn-id: file:///home/svn/framework3/trunk@12888 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-09 12:51:23 +00:00
Wei Chen 24bb7c3d8d 7-Technologies IGSS v9.0 Rename command buffer overflow
git-svn-id: file:///home/svn/framework3/trunk@12886 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-09 06:04:04 +00:00
HD Moore c3c061334d Add a "disclosure date" (applets were included in the first java release) and changing the title.
git-svn-id: file:///home/svn/framework3/trunk@12883 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-08 03:31:49 +00:00
James Lee d19b5af71a add a post module for stealing mRemote saved passwords, fixes #4641; thanks David Maloney!
git-svn-id: file:///home/svn/framework3/trunk@12877 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-06 22:54:31 +00:00
David Rude e2820918ad adds Windows XP SP3 target and updates the reference link
git-svn-id: file:///home/svn/framework3/trunk@12873 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-06 20:29:02 +00:00