infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
10,742 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

60 Commits (27cba3d7ecf307e08c5adb5fae48feb5ac324702)

Author SHA1 Message Date
James Lee d50577066f remove some silliness of registering UserAgent as an option since it's already an advanced option for HttpClient, make the default obvious 
git-svn-id: file:///home/svn/framework3/trunk@13394 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-28 22:57:47 +00:00
HD Moore e3f909cef9 Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers. 
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 07:37:09 +00:00
HD Moore 5b43ea2c15 Buffer data before sending it to the response parser, handle buffered data on disconnect 
git-svn-id: file:///home/svn/framework3/trunk@11286 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 06:19:36 +00:00
Joshua Drake 5a01ede38a only assign the original request if a response was returned 
git-svn-id: file:///home/svn/framework3/trunk@11193 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-01 16:32:40 +00:00
HD Moore 54f3563c7e Store the http request in the http response object when Rex::HTTP::Client.send_recv() is used. Let Anemone store the request as well, passing it into the Page object for further analysis. 
git-svn-id: file:///home/svn/framework3/trunk@11023 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-13 05:25:39 +00:00
Joshua Drake 8353bf7bf3 move 100-continue processing into Rex, fixes #3109 
git-svn-id: file:///home/svn/framework3/trunk@10919 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-05 16:20:13 +00:00
James Lee eddd6d481d add some documentation for request_cgi 
git-svn-id: file:///home/svn/framework3/trunk@10293 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-11 17:31:26 +00:00
Joshua Drake 8463e026bd read responses until EOF per RFC 
git-svn-id: file:///home/svn/framework3/trunk@10045 4d416f70-5f16-0410-b530-b9f4589650da
 2010-08-18 22:41:07 +00:00
HD Moore 843b6ffa00 Make the http client try harder 
git-svn-id: file:///home/svn/framework3/trunk@9698 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-06 23:08:28 +00:00
Joshua Drake e32abab8dc a HTTP -> an HTTP (http://www.english-zone.com/grammar/a-anlessn.html) 
git-svn-id: file:///home/svn/framework3/trunk@9488 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-11 16:12:05 +00:00
James Lee 32c24b944a actually increment the loop variable; document the deficiencies of the employed technique 
git-svn-id: file:///home/svn/framework3/trunk@9449 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-07 23:56:35 +00:00
Tod Beardsley 1a2be34a63 Fixes #2002. Needed to work with some pipelining to get this all to work right, but it seems to function now pretty well -- if the target takes Basic, do basic, if the target takes NTLM, do NTLM. Should implement Digest too, but I don't think hardly anyone uses that. 
git-svn-id: file:///home/svn/framework3/trunk@9346 4d416f70-5f16-0410-b530-b9f4589650da
 2010-05-22 17:58:01 +00:00
HD Moore cd71cfbad1 Handle buggy HTTP servers better 
git-svn-id: file:///home/svn/framework3/trunk@8921 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 21:35:37 +00:00
HD Moore a753666073 Switch sysread back to get_once(). This reverts a previous change, but the sysread breaks SSL support 
git-svn-id: file:///home/svn/framework3/trunk@8124 4d416f70-5f16-0410-b530-b9f4589650da
 2010-01-14 21:40:30 +00:00
HD Moore 4c6fd97b0e Handles some broken TCP stack implementations better (but not perfectly) 
git-svn-id: file:///home/svn/framework3/trunk@7991 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-27 07:02:55 +00:00
HD Moore a16feb01bc Minor tweaks to http processing 
git-svn-id: file:///home/svn/framework3/trunk@7805 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-10 18:12:38 +00:00
HD Moore 5ef9a1c040 Wipe the headers before reparsing 
git-svn-id: file:///home/svn/framework3/trunk@7801 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-10 17:04:52 +00:00
HD Moore 006d5d51fc Fixes #674 by adding 100-continue support 
git-svn-id: file:///home/svn/framework3/trunk@7799 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-10 16:54:27 +00:00
HD Moore fc983ef7e3 Many bug fixes to db_autopwn, cross-referencing of OS-level vulnerabilities, small bug fixes to HTTP client API 
git-svn-id: file:///home/svn/framework3/trunk@7676 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-03 01:36:17 +00:00
HD Moore ed7b7ac6f0 Fixes #491 and fixes #543 by updating the HTTP stack and validating configuration options 
git-svn-id: file:///home/svn/framework3/trunk@7652 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-30 21:15:06 +00:00
HD Moore 83fece42fe Handle HTTP failures more gracefully 
git-svn-id: file:///home/svn/framework3/trunk@7335 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-03 18:10:09 +00:00
HD Moore 075b8c5fa4 Fixes #434. Always use Timeout.timeout() -- on Ruby 1.9 this results in the Timeout::TimeoutError exception vs RuntimeError 
git-svn-id: file:///home/svn/framework3/trunk@7323 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-02 18:14:57 +00:00
HD Moore 5e137e92fd Fixes #381. To scan for TLSv1 only services, set SSLVersion TLS1 
git-svn-id: file:///home/svn/framework3/trunk@7282 4d416f70-5f16-0410-b530-b9f4589650da
 2009-10-26 19:48:15 +00:00
et a8b64c56b5 Handle encoding of special chars 
git-svn-id: file:///home/svn/framework3/trunk@6508 4d416f70-5f16-0410-b530-b9f4589650da
 2009-04-29 04:04:40 +00:00
James Lee 96c8f6127c Replace += with << for Strings in a bunch of places. 
git-svn-id: file:///home/svn/framework3/trunk@6318 4d416f70-5f16-0410-b530-b9f4589650da
 2009-03-08 07:55:47 +00:00
Ramon de C Valle f124597a56 Code cleanups 
git-svn-id: file:///home/svn/framework3/trunk@5773 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-19 21:03:39 +00:00
James Lee 36a06e7576 initial commit of php findsock. This patch makes all http connections global and removes the "close if (!pipelining)" checks, so beware of bugs. 
git-svn-id: file:///home/svn/framework3/trunk@5678 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-24 04:41:51 +00:00
Matt Miller 3b74c476a1 patch from Kris K 
git-svn-id: file:///home/svn/framework3/trunk@5210 4d416f70-5f16-0410-b530-b9f4589650da
 2007-11-29 06:57:14 +00:00
HD Moore 7498562eb5 Add proxy support to HTTP mixin using modules. Fix socks proxy support. 
git-svn-id: file:///home/svn/framework3/trunk@5113 4d416f70-5f16-0410-b530-b9f4589650da
 2007-09-24 04:44:44 +00:00
HD Moore ebb84d5b32 Check for typos next time =P 
git-svn-id: file:///home/svn/framework3/trunk@4879 4d416f70-5f16-0410-b530-b9f4589650da
 2007-05-06 22:33:21 +00:00
bmc 21e37f1b0c * older IIS allowed you to encode multiple times. Expose the ability to encode as many times as you wish. 1 is default 
git-svn-id: file:///home/svn/framework3/trunk@4867 4d416f70-5f16-0410-b530-b9f4589650da
 2007-05-04 15:17:25 +00:00
HD Moore 65cfd287e5 Improvements to the SSL socket support in Rex, fixes #102, and a HTTP client response parsing bug 
git-svn-id: file:///home/svn/framework3/trunk@4851 4d416f70-5f16-0410-b530-b9f4589650da
 2007-05-03 20:01:29 +00:00
bmc c79649ebc3 add chunked encoding evasion back into the client API (not in the mixin yet) 
git-svn-id: file:///home/svn/framework3/trunk@4790 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-26 21:08:22 +00:00
HD Moore affc5fb958 fixes #85 (basic auth to http) 
git-svn-id: file:///home/svn/framework3/trunk@4744 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-23 22:48:22 +00:00
Matt Miller 1e1cc94831 req_string rather than req 
git-svn-id: file:///home/svn/framework3/trunk@4732 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-22 07:50:07 +00:00
HD Moore d14221898d Merge in the new generic PHP exploit with new targets 
Added type definitions to HTTP::Client



git-svn-id: file:///home/svn/framework3/trunk@4537 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-17 20:10:57 +00:00
HD Moore 4d87a3f9fb Adding the missing raw_headers function required for the recent php bug 
git-svn-id: file:///home/svn/framework3/trunk@4518 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-11 16:28:13 +00:00
HD Moore 547ec3c6c6 This patch adds header folding, fixed hex-random and u-random encoding, fake uri end, fake uri parameters. This fixes #16, the remaining two options (chunked and pipelining), will be added in a future version. 
git-svn-id: file:///home/svn/framework3/trunk@4513 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-10 05:58:14 +00:00
Matt Miller c61e0e8931 change the behavior of nil non-required options, fixes #49 
git-svn-id: file:///home/svn/framework3/trunk@4509 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-09 06:12:28 +00:00
HD Moore e6f221ad80 Major updates to the HTTP api, re-addition of HTTP evasion, see #16 
git-svn-id: file:///home/svn/framework3/trunk@4506 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-08 14:08:41 +00:00
HD Moore 2db1945637 Fix a bone-headed error when adding http evasion, this fixes #31 
git-svn-id: file:///home/svn/framework3/trunk@4459 4d416f70-5f16-0410-b530-b9f4589650da
 2007-02-22 07:33:00 +00:00
HD Moore 51d61c161d Sessions can be detached and killed from the console 
git-svn-id: file:///home/svn/framework3/trunk@4437 4d416f70-5f16-0410-b530-b9f4589650da
 2007-02-18 22:35:07 +00:00
Matt Miller 279c0e3e52 defanged mode 
git-svn-id: file:///home/svn/framework3/trunk@4303 4d416f70-5f16-0410-b530-b9f4589650da
 2007-01-30 04:48:35 +00:00
HD Moore 2bc1d4be18 Updates to the client API 
git-svn-id: file:///home/svn/framework3/trunk@4242 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-28 23:42:54 +00:00
HD Moore 804df25240 Initial overhaul of the HTTP client api. This removes nearly all of the client evasion methods, but leaves the code in a great state to reimplement them with less issues. 
git-svn-id: file:///home/svn/framework3/trunk@4222 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-19 07:11:55 +00:00
Matt Miller f1fb05690f misc bugfixes in the http subsystem 
git-svn-id: file:///home/svn/framework3/trunk@4019 4d416f70-5f16-0410-b530-b9f4589650da
 2006-10-11 09:27:39 +00:00
Matt Miller abf2e057c8 apache chunked encoding win32 port 
git-svn-id: file:///home/svn/framework3/trunk@4017 4d416f70-5f16-0410-b530-b9f4589650da
 2006-10-11 08:31:54 +00:00
HD Moore 1a54cc810a Fixed numerous issues involving smb/dcerpc interaction 
Fixed 'bad' use of method definition (space after method name, will be depreciated soon)


git-svn-id: file:///home/svn/incoming/trunk@3626 4d416f70-5f16-0410-b530-b9f4589650da
 2006-04-30 19:49:27 +00:00
bmc 20fec01d68 * add junk pipelined request support 
* fix socket creation on pipelined requests
* when a server says that the connection should be closed (Connection: closed), then close the connection, since its going to regardless, and we don't want to loose our state
* support non-standard line termination in headers.  ie \n instead of \r\n
* add junk headers (X-rand: rand)
* add header folding (for evasion)
* add parse_header_re (still leaving parse_header around, though its dead code ATM) that does the right thing on non-standard line endings
* move 'gzip' to a 'compression' option
* add 'deflate' compression option (really, just raw zlib, and only firefox does deflate right)
* fix a bunch of TE:chunked decoding bugs based based on the fact that Apache doesn't always close chunks appropriately
* modify parse_body to not return state, since it doesn't always do that, and the return isn't used... self.state is.
* add TE:chunked request support
* normalize URIs in requests before saving them
* Move params out of the URI, but when the uri is requested, and the method is GET, and there are params, return a URI that has the params that are approrpiately encoded (needed for junk_params, see below)
* move request.to_s support of params to use the request params array when a POST, allows use of junk params support (see below).  NOTE:  If the body is provided, use the body instead of params, in case you want to hardcode the params in a POST request, eg: php_xmlrpc_eval.rb
* Add junk params when building a param list, eg: a=b becomes asdfasdf=asdrt32a&asdfad=okhgasd&a=b&hjklasdf=hkasgd
* add URI junk slash support (eg: /////foo.html)
* param splitting now supports both '&', and ';', which CGI.pm and PHP both allow
* add URI junk directory support, eg: /asdf/../foo.html
* add param encoding support, eg: param A with value '=' is  A=%3d
* add URI junk self referring directory support, eg: /././foo.html


git-svn-id: file:///home/svn/incoming/trunk@3457 4d416f70-5f16-0410-b530-b9f4589650da
 2006-01-27 21:57:44 +00:00
HD Moore b4ad4a5d75 Tabs vs Spaces 
git-svn-id: file:///home/svn/incoming/trunk@3453 4d416f70-5f16-0410-b530-b9f4589650da
 2006-01-27 05:33:08 +00:00