infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
30,078 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

30078 Commits (26789fa76c74fc23890ed62b42d4c4ce0a109fb1)

Author SHA1 Message Date
David Maloney 24527d7a55
Land #4427, Misfortune Cookie Scanner 
lands Jhart's scanner module for the RomPager
Misofrtune Cookie vuln.
 2014-12-19 14:03:00 -06:00
Matt Buck db0aeb2a05
Make the version constraint a range 2014-12-19 13:54:13 -06:00
Tod Beardsley 38a4776b39
Add and sort other contributors in mailmap 2014-12-19 13:41:06 -06:00
Tod Beardsley df4f86047d
Add new/updated r7 employees to mailmap 2014-12-19 13:39:42 -06:00
sinn3r 650a68c994 Fix jcxz to jecxz for x86_64 in metasm 
This fixes "invalid opcode near 'jecxz'" for x64 metasm encoding.
 2014-12-19 13:34:56 -06:00
jvazquez-r7 fad08d7fca Add specs for Rex Kerberos client 2014-12-19 12:14:33 -06:00
Joe Vennix e45af903d9
Add patch discovery date. 2014-12-19 12:04:41 -06:00
Matt Buck c493ccfc06
Define the Rails version constraint in a library constant 2014-12-19 11:46:39 -06:00
jvazquez-r7 f4037b1003 Clean Kerberos Rex client code 2014-12-19 11:08:48 -06:00
sinn3r 2c0c732967 Fix #4414 & #4415 - exitfunc and proper null-terminated string 
This patch fixes the following for messagebox.rb

Issue 1 (#4415)
When exitfunc is none, the payload will not be able to generate
due to an "invalid opcode" error.

Issue 2: (#4414)
After "user32.dll" is pushed onto the stack for the LoadLibrary
call, the payload does not actually ensure bl is a null byte, it
just assumes it is and uses it to modify the stack to get a
null-terminated string.

Fix #4414
Fix #4415
 2014-12-19 03:19:06 -06:00
Joe Vennix 25313b1712
Use the hash to pass the script. 2014-12-19 02:30:37 -06:00
jvazquez-r7 dfa92da287 Add TODO 2014-12-19 01:13:56 -06:00
jvazquez-r7 77e2d4d90d Add documentation for the Kerberos PAC support classes 2014-12-19 01:12:14 -06:00
jvazquez-r7 fda4cd3440 Fix some Rex Kerberos model documentation 2014-12-18 19:30:12 -06:00
Jon Hart 8d2bd74d31
Add preliminary module to cover 'Misfortune Cookie', CVE-2014-9222 2014-12-18 17:21:26 -08:00
jvazquez-r7 b740ba4738 Add specs for Rex::Proto::Kerberos::CredentialCache::Cache 2014-12-18 18:35:20 -06:00
jvazquez-r7 8f119e0731 Add specs for Rex::Proto::Kerberos::CredentialCache::Credential 2014-12-18 18:07:44 -06:00
jvazquez-r7 0d464a7ff8 Add specs for Rex::Proto::Kerberos::CredentialCache::Time 2014-12-18 17:53:42 -06:00
jvazquez-r7 d53f5668a2 Add specs for Rex::Proto::Kerberos::CredentialCache::KeyBlock 2014-12-18 17:50:00 -06:00
jvazquez-r7 c426cf32d0 Add specs for Rex::Proto::Kerberos::CredentialCache::Principal 2014-12-18 17:40:06 -06:00
jvazquez-r7 16d5ee1aae Add documentation for the rex credential cache support 2014-12-18 17:12:58 -06:00
jvazquez-r7 e25665853c
Merge support for Kerberos credential cache encoding 2014-12-18 16:33:33 -06:00
jvazquez-r7 7275f5a5f2 Allow Rex to load credential_cache 2014-12-18 16:32:21 -06:00
jvazquez-r7 f325d2f60e Add support for cache credentials in the mixin 2014-12-18 16:31:46 -06:00
Tod Beardsley c15bad44a6
Be clearer on backslash usage. 
See #4282
 2014-12-18 16:16:02 -06:00
William Vu 723998e1d4
Land #4425, jobs tab completion NilClass fix 2014-12-18 15:25:57 -06:00
Spencer McIntyre 400bd9a094 Fix jobs NilClass tab complete bug 2014-12-18 15:43:04 -05:00
William Vu 153d7e273d
Land #4420, tentative "fix" for EXE spec 2014-12-18 13:55:56 -06:00
Tod Beardsley db474adc7b
Remove the helper as well. 
See #3807.

Again, happy to have working tests that actually test validity. But,
these ain't them.
 2014-12-18 13:28:04 -06:00
sinn3r 144daaa6bb
Land #4421 - add a deprecation message for msfcli 
please make your way to msfconsole
 2014-12-18 10:28:31 -06:00
Tod Beardsley 60099d42cf
Add deprecation warning to msfcli, 6 months 
See #3802
 2014-12-18 09:39:50 -06:00
Trevor Rosen 80cd04d76a
Land #4332, test optimization for Cucumber 
* Make Cuke run faster on TravisCI
 2014-12-18 09:34:55 -06:00
Tod Beardsley 270debea32
Remove the EXE file test spec 
This thing has been a problem since forever, given cross-platform
issues and random collisions with other file magic signatures.

See #3807 and #2793 and the even earlier redmine bug.

This should not close the bug, since we're merely avoiding the random
fails by not testing at all. We /should/ test, but in the meantime, we
can't suffer these failures that throw me (at least) into a panic every
time.
 2014-12-18 09:18:24 -06:00
jvazquez-r7 0a61e108ea Add code skeleton for credential_cache 2014-12-18 00:30:47 -06:00
jvazquez-r7 0f19f3cf2e Add classes templates 2014-12-17 23:16:58 -06:00
William Vu dcf23172be
Land #4418, threads tab completion NilClass fix 2014-12-17 22:13:17 -06:00
William Vu d41dc0d88e
Land #4419, msfbinscan NameError fix 2014-12-17 22:00:25 -06:00
jvazquez-r7 9a58617387 Add dummy test module 2014-12-17 19:57:10 -06:00
jvazquez-r7 f3f6a64f02 Add some AS response methods to a mixin 2014-12-17 19:50:42 -06:00
Jakub Nawalaniec 9f0bf85ec1 Fix typo in msfbinscan 2014-12-18 02:43:24 +01:00
jvazquez-r7 8e570cc19b Initial support to send TGS-REQ 2014-12-17 18:55:30 -06:00
Spencer McIntyre 549f3c69ff Dont crash when tab complete threads command with typos 2014-12-17 19:36:04 -05:00
Matt Buck cfc3a31289
Upgrade rails to 3.2.21 2014-12-17 17:50:10 -06:00
William Vu 5262096905
Land #4412, get_once NilClass fixes 2014-12-17 14:07:09 -06:00
sinn3r 6b0a98b69c
Resolve #4408 - bad uncaught nil get_once 2014-12-17 14:02:42 -06:00
William Vu 1ff51d5856
Land #4410, rm_f with more f 2014-12-17 13:16:46 -06:00
Spencer McIntyre 698ca2639b Do not delete files that do not exist in rm_f 2014-12-17 09:18:06 -05:00
jvazquez-r7 662160ef61 Refactor mixin 2014-12-16 23:48:53 -06:00
jvazquez-r7 594b9bcfc2 Add support for AuthorizationData 2014-12-16 23:21:13 -06:00
HD Moore 9de4137aa7 Patch UA/Proxy settings during migration, lands #3632 2014-12-16 22:21:48 -06:00