Joshua Drake
26480092e0
add exploit for sompl m3u parsing - from dookie
...
git-svn-id: file:///home/svn/framework3/trunk@9415 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:11:31 +00:00
Joshua Drake
d7f2324b7b
update the set_ecx method to work on both win7 and xpsp3
...
git-svn-id: file:///home/svn/framework3/trunk@9414 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 00:47:14 +00:00
Joshua Drake
7824ab661a
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9412 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:25:29 +00:00
Joshua Drake
55f82f0b09
add open proxy detection aux from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@9411 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:18:00 +00:00
Joshua Drake
716fe39e1f
minor whitespace fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9410 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:14:20 +00:00
Joshua Drake
8ed40b77a2
add simple smtp fuzzer from justme
...
git-svn-id: file:///home/svn/framework3/trunk@9409 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:13:12 +00:00
Joshua Drake
0a907a2e6f
add exploit for cve-2009-0546
...
git-svn-id: file:///home/svn/framework3/trunk@9405 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 05:10:45 +00:00
HD Moore
faefb09b8c
Only gsub datastore variables if they aren't nil
...
git-svn-id: file:///home/svn/framework3/trunk@9403 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 01:23:02 +00:00
James Lee
9dc298f56d
make it work for more than localhost...
...
git-svn-id: file:///home/svn/framework3/trunk@9401 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 00:21:24 +00:00
James Lee
f974f59c32
make sure we have reverse_tcp
...
git-svn-id: file:///home/svn/framework3/trunk@9400 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 23:20:45 +00:00
Joshua Drake
a8186ae6ae
add suggestion when auto-targeting fails, see #2022
...
git-svn-id: file:///home/svn/framework3/trunk@9396 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 16:29:14 +00:00
James Lee
2470470405
stupid debug print
...
git-svn-id: file:///home/svn/framework3/trunk@9394 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 08:31:44 +00:00
James Lee
fe43e91bad
initial commit of php meterpreter, see #391 . upload, download, cd, pwd, ls, cat, sysinfo, getpid, and ps all work fine.
...
* execute works with channel read/write but no interact yet
* getuid is weird, since php's get_current_user() and getmyuid() return the owner of the file instead of the running uid (wtf?)
git-svn-id: file:///home/svn/framework3/trunk@9393 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 08:28:39 +00:00
James Lee
ce8a9e9318
update space requirements
...
git-svn-id: file:///home/svn/framework3/trunk@9392 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 05:04:24 +00:00
Tod Beardsley
d41e94050e
See #2034 . This adds a basic FTP bruteforce module. It also makes some minor changes to auth_brute (allows for both SMB and FTP credentials to get mapped to the basic 'USERNAME' and 'PASSWORD' datastores), and touches up the other FTP modules slightly.
...
git-svn-id: file:///home/svn/framework3/trunk@9388 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-01 18:17:26 +00:00
Mario Ceballos
ed79d649da
didn't know the default accounts where added. add the cognoss port.
...
git-svn-id: file:///home/svn/framework3/trunk@9382 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-31 17:16:50 +00:00
HD Moore
a1ee346d59
Try a little harder to read the full image
...
git-svn-id: file:///home/svn/framework3/trunk@9379 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-29 02:20:23 +00:00
HD Moore
6dc55df402
Add TCP versions of the udp enumerators
...
git-svn-id: file:///home/svn/framework3/trunk@9378 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-27 21:19:53 +00:00
Joshua Drake
24eb0f035f
point to nt4 template
...
git-svn-id: file:///home/svn/framework3/trunk@9376 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-26 22:46:10 +00:00
Joshua Drake
6d1e7bdaa5
big commit - lots of cmdstager changes
...
created 4 cmd stagers (instead of just one): CmdStagerVBS, CmdStagerDebugAsm, CmdStagerDebugWrite, CmdStagerTFTP
created a TFTPServer mixin
created Msf::Exploit::EXE mixin to generate executables
updated all uses of CmdStager to use CmdStagerVBS for the time being
add exploit for cve-2001-0333 using CmdStagerTFTP
updated tftp server to wait for transfers to finish (up to 30 seconds) before shutting down
write debug.exe stager stub in 16-bit assembly (used in CmdStagerDebugAsm)
git-svn-id: file:///home/svn/framework3/trunk@9375 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-26 22:39:56 +00:00
Joshua Drake
3a5d4792ee
print_good for summary line too
...
git-svn-id: file:///home/svn/framework3/trunk@9365 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 18:14:27 +00:00
Tod Beardsley
bf4cf3cc85
Gives the finger user enumeration module an overhaul -- more descriptive status messages, more friendly connect/disconnect, and if the target supports multiple usernames per request, do that.
...
git-svn-id: file:///home/svn/framework3/trunk@9364 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 18:04:06 +00:00
Steve Tornio
cfb850b41b
add osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@9363 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 02:09:42 +00:00
Joshua Drake
1be5df045f
whitespace fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9362 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 01:52:59 +00:00
Joshua Drake
acf45118a2
add exploit module for communicrypt activex from dookie
...
git-svn-id: file:///home/svn/framework3/trunk@9356 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 22:37:59 +00:00
Joshua Drake
c08041ed21
updated description, comments, call timeout
...
git-svn-id: file:///home/svn/framework3/trunk@9355 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 22:22:04 +00:00
Tod Beardsley
f37d61922b
Adding a case for Linux and friends for finger enumeration.
...
git-svn-id: file:///home/svn/framework3/trunk@9354 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 21:44:17 +00:00
Joshua Drake
be158fbcb3
whitespace tweaks
...
git-svn-id: file:///home/svn/framework3/trunk@9352 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:49 +00:00
Joshua Drake
14a6a1b95f
another error message update, see #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9351 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:23 +00:00
Ramon de C Valle
db272ef7b5
Fix the aix/rpc_ttdbserverd_realpath.rb module to use @aixpayload instead of payload.encoded
...
git-svn-id: file:///home/svn/framework3/trunk@9350 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 02:06:14 +00:00
Ramon de C Valle
34f12a38ec
Change the base value used for calculating the system call numbers and
...
arguments to avoid null bytes in newer versions of AIX.
git-svn-id: file:///home/svn/framework3/trunk@9347 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-23 19:47:48 +00:00
Tod Beardsley
1a2be34a63
Fixes #2002 . Needed to work with some pipelining to get this all to work right, but it seems to function now pretty well -- if the target takes Basic, do basic, if the target takes NTLM, do NTLM. Should implement Digest too, but I don't think hardly anyone uses that.
...
git-svn-id: file:///home/svn/framework3/trunk@9346 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-22 17:58:01 +00:00
Tod Beardsley
e02fd71de9
See #2002 . Skip authentication schemes that we don't know how to do.
...
git-svn-id: file:///home/svn/framework3/trunk@9343 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 17:32:54 +00:00
Joshua Drake
793e6ddd52
tweak error message, see #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9342 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 15:38:07 +00:00
Joshua Drake
e5d73387e6
guess at what this address is
...
git-svn-id: file:///home/svn/framework3/trunk@9336 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:38:27 +00:00
Joshua Drake
688c76f7a0
catch ConnectionError exception before it gets passed higher up, fixes #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9335 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:33:12 +00:00
HD Moore
ce12be8533
Dont let the session socket get cleaned up
...
git-svn-id: file:///home/svn/framework3/trunk@9315 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-17 20:34:20 +00:00
James Lee
f440317225
store the name of the file we got the key from
...
git-svn-id: file:///home/svn/framework3/trunk@9300 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-14 06:00:06 +00:00
Joshua Drake
cae27f9e7e
add exploit module for cve-2010-0033
...
git-svn-id: file:///home/svn/framework3/trunk@9299 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-14 02:43:55 +00:00
Steve Tornio
365f13551b
added refs. I think all the auxiliary and exploit modules should now be covered.
...
git-svn-id: file:///home/svn/framework3/trunk@9298 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-13 16:53:50 +00:00
Tod Beardsley
0c7f1a7449
Moving MySQL version requirements even farther back.
...
git-svn-id: file:///home/svn/framework3/trunk@9295 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 20:19:09 +00:00
Steve Tornio
1192e0860e
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9294 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 19:30:54 +00:00
Tod Beardsley
ca3df5dd5e
Give an error message, don't just quietly fail.
...
git-svn-id: file:///home/svn/framework3/trunk@9293 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 18:23:30 +00:00
HD Moore
d65146ae0c
Downgrade MS04_011 to Great, as we have better exploits
...
git-svn-id: file:///home/svn/framework3/trunk@9291 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 16:36:45 +00:00
Steve Tornio
861876f10b
osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9290 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 15:44:06 +00:00
Steve Tornio
cf8d90c69f
add refs
...
git-svn-id: file:///home/svn/framework3/trunk@9289 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 15:40:25 +00:00
Tod Beardsley
f9aa3a0c70
Bumping acceptable MySQL scan target back to version 4.1.11
...
git-svn-id: file:///home/svn/framework3/trunk@9288 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 14:52:00 +00:00
Joshua Drake
a964d403be
merge patch from scriptjunkie, fixes #1875
...
git-svn-id: file:///home/svn/framework3/trunk@9286 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 22:28:18 +00:00
Joshua Drake
711e08b5e9
make sure to use correct verbs, thanks mc!
...
git-svn-id: file:///home/svn/framework3/trunk@9285 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 16:20:46 +00:00
Steve Tornio
ec4ed55d0d
add references
...
git-svn-id: file:///home/svn/framework3/trunk@9283 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 14:51:43 +00:00