Commit Graph

8694 Commits (21ed434f24d008de817501e42829ef831ebe185a)

Author SHA1 Message Date
Joshua Drake 9682091cca Add SQLI version of MSSQL Payload from Rodrigo Marcos!
git-svn-id: file:///home/svn/framework3/trunk@11655 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:48:07 +00:00
Joshua Drake 89a731b789 Prevent trying to call .map on nil
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:39:19 +00:00
Joshua Drake a1b74eee0d Fixes #3607, Removes the module count cache since it seems to have no performance impact (and was broken)
git-svn-id: file:///home/svn/framework3/trunk@11653 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 00:13:13 +00:00
HD Moore fca00693a2 Fix trailing ruby 1.9 compat issue
git-svn-id: file:///home/svn/framework3/trunk@11652 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 22:02:20 +00:00
James Lee 47a706962a do the win32api thing if it's mingw. thanks Ludovic Courgnaud
git-svn-id: file:///home/svn/framework3/trunk@11651 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 19:20:45 +00:00
Joshua Drake 21d93be897 Add fix for WOW64 from ReL1k
git-svn-id: file:///home/svn/framework3/trunk@11650 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 16:26:08 +00:00
Joshua Drake 23808d19cd See #3531, Apply fix from Chao Mu
git-svn-id: file:///home/svn/framework3/trunk@11649 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 15:55:35 +00:00
Tod Beardsley 1c58943edd Backing out r11616 since OptFloat will surely cause problems with RPC. Nothing to see here. Verified that all OptInt options are now actually Ints and not Floats with a grep -r "OptInt" trunk | grep "[0-9]\.[0-9]"
git-svn-id: file:///home/svn/framework3/trunk@11648 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 15:29:26 +00:00
Jonathan Cran 19d9185ca3 updated for remote workstation control
git-svn-id: file:///home/svn/framework3/trunk@11647 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 07:33:59 +00:00
James Lee d2670d52ec add BufferRegister and BufferOffset support for shikata_ga_nai. see #3563. tested this pretty extensively. /me crosses fingers
git-svn-id: file:///home/svn/framework3/trunk@11646 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 04:24:41 +00:00
Joshua Drake 4b777686d8 whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@11645 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 03:13:40 +00:00
Joshua Drake c9d3d60b23 Rework external command invocation
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake 53bba0bd54 Move cache logic from statistics->module_manager, More modularization in ModuleManager
git-svn-id: file:///home/svn/framework3/trunk@11643 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 00:07:34 +00:00
Joshua Drake a2e6f0e96c add -q option to suppress banner, improve -n warning
git-svn-id: file:///home/svn/framework3/trunk@11642 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 22:58:21 +00:00
Joshua Drake a0a8ea8cbd re-order includes a bit
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 21:32:59 +00:00
Joshua Drake 56b112e03b See #3596, Only force encoding for rubies that support encoding
git-svn-id: file:///home/svn/framework3/trunk@11640 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 20:03:33 +00:00
Joshua Drake 1e6365ed58 Fixes #3596, Force Rex::Text.gzip to use ASCII-8BIT strings, Reverts r10653
git-svn-id: file:///home/svn/framework3/trunk@11639 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 19:59:56 +00:00
Carlos Perez 05fd7b4e57 Patch for railgun and post mixin; and module from cha-mou to add capability to delete users on windows hosts.
git-svn-id: file:///home/svn/framework3/trunk@11638 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 13:02:35 +00:00
Matt Weeks 8a32407375 Oops, use this one.
git-svn-id: file:///home/svn/framework3/trunk@11637 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:25:02 +00:00
HD Moore 3794ed35cc Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk:
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf



git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:24:37 +00:00
Joshua Drake 8a4c23ffd4 small adjustment
git-svn-id: file:///home/svn/framework3/trunk@11635 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:15:25 +00:00
Joshua Drake d9fe9da849 add DoS module from Paulino Calderon
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 00:11:41 +00:00
natron 1be3448959 svn propset
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:21:08 +00:00
natron bb4343bf63 Add new domain user enumeration aux mod. Still needs an update to include db reporting.
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:14:57 +00:00
Joshua Drake 81ff9483bf add ms09-004 exploit via sql injection from Rodrigo Marcos
git-svn-id: file:///home/svn/framework3/trunk@11631 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 19:37:58 +00:00
Joshua Drake 29b03701d1 Fixes #3531, Use new accounts mixin to resolve SID->Account Names
git-svn-id: file:///home/svn/framework3/trunk@11630 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:25:52 +00:00
Joshua Drake 0af8915fd5 Fixes #1936, Add accounts mixin and accompanying post module
git-svn-id: file:///home/svn/framework3/trunk@11629 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:23:48 +00:00
Joshua Drake 3346a30023 See #1936, Add FreeSid definition and convert several PSID* out params to PDWORD
git-svn-id: file:///home/svn/framework3/trunk@11628 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 05:36:38 +00:00
Matt Weeks 5ef1cbe966 Add GUI ability to disable DB, and properly restore saved options.
git-svn-id: file:///home/svn/framework3/trunk@11627 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-23 22:23:27 +00:00
Raphael Mudge 83c4e76ad7 Fixed a deadlock issue with Armitage's automatic use of sysinfo to get OS info when needed. Also fixed a bug causing the Windows command shell to not work on when using Armitage on Windows (kind of ironic).
git-svn-id: file:///home/svn/framework3/trunk@11626 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 03:40:32 +00:00
James Lee 8715d302ed don't output a newline. matters with jar payloads because the zip format has a footer
git-svn-id: file:///home/svn/framework3/trunk@11625 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 02:26:07 +00:00
James Lee 8bf60c6d11 carlos forgot to delete this, see r11550, r11551
git-svn-id: file:///home/svn/framework3/trunk@11624 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:56:37 +00:00
James Lee d7cda0f85a accept a client argument for get_uri()
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:16:57 +00:00
Tod Beardsley 8b5f0f6559 Allow getsystem to report its success as a host note.
git-svn-id: file:///home/svn/framework3/trunk@11622 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:08:35 +00:00
James Lee f8120a8e3f servers don't have a sock().
git-svn-id: file:///home/svn/framework3/trunk@11621 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 23:42:56 +00:00
James Lee e7ced5f887 disable ssl for the php include server, and try the address with the default gateway for get_uri when SRVHOST is inaddr_any
git-svn-id: file:///home/svn/framework3/trunk@11620 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 23:19:11 +00:00
Joshua Drake 80eb7bad52 Fixes #3257, Adds two mod_negotiation scanner modules from DiabloHorn
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Joshua Drake b8b3d9e00f See #1936, Apply patch from Chao Mu - PSID is kind of opaque, so we treat it as a pointer only (not a blob)
git-svn-id: file:///home/svn/framework3/trunk@11618 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:05:28 +00:00
Tod Beardsley aeb1f684c0 Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs).
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:24:03 +00:00
Tod Beardsley 63f893dd90 Adds an OptFloat option class, for when people actually want floats and not integers.
git-svn-id: file:///home/svn/framework3/trunk@11616 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:21:42 +00:00
Joshua Drake cc5a1ef731 Fixes #3287, Catch an exception from a directory scan
git-svn-id: file:///home/svn/framework3/trunk@11615 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:06:36 +00:00
Joshua Drake ae33e3ac71 Fixes #3571, normalize 2k3r2 and fix language defaulting
git-svn-id: file:///home/svn/framework3/trunk@11614 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 04:09:48 +00:00
Tod Beardsley e1e35ea15b Adds a attribute_locked? method to Host objects. If an attribute is locked, report_host() won't update it. (These aren't very serious locks since you can still set them directly on objects, but if you use the API, and you should, locks will be respected.)
git-svn-id: file:///home/svn/framework3/trunk@11613 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 23:10:27 +00:00
Joshua Drake a944cbc50d style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@11612 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:40:47 +00:00
Joshua Drake e821f7e757 Fixes #3567, apply patch to make ports/payloads configurable
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:32:18 +00:00
James Lee f3bda46333 doesn't work on IE8, fixes #3566, thanks Hauke Mehrtens for the patch
git-svn-id: file:///home/svn/framework3/trunk@11610 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 19:30:59 +00:00
Tod Beardsley a12f5556cb Fixes #3564 by better randomizing the temp directory for extraction (minimizing the chance of a filesystem name collision), correctly extracting the original workspace name, and identifying the correct XML file to work off of for importing hosts and services.
git-svn-id: file:///home/svn/framework3/trunk@11609 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 17:32:48 +00:00
Carlos Perez 13f357fedb Fixed option parsing
git-svn-id: file:///home/svn/framework3/trunk@11608 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 14:29:22 +00:00
Joshua Drake 362c409623 Fixes #3554, add missing variable to published_applications (from published_bruteforce), some clean ups
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 00:22:21 +00:00
James Lee dfbef1e38c make sure we have the right kind of args. fixes argument processing for scripts
git-svn-id: file:///home/svn/framework3/trunk@11605 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-19 23:36:11 +00:00