Matt Miller
2c5cf95d0f
removed modules that don't currently function
...
git-svn-id: file:///home/svn/framework3/trunk@4052 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-25 13:29:25 +00:00
HD Moore
667adc68e9
Import from MC
...
git-svn-id: file:///home/svn/framework3/trunk@4024 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-15 07:58:48 +00:00
HD Moore
b5fb11ac91
Added by LMH
...
git-svn-id: file:///home/svn/framework3/trunk@4022 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-15 07:53:19 +00:00
Matt Miller
b354c82258
ypops overflow ported
...
git-svn-id: file:///home/svn/framework3/trunk@4021 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-12 03:24:31 +00:00
Matt Miller
f1fb05690f
misc bugfixes in the http subsystem
...
git-svn-id: file:///home/svn/framework3/trunk@4019 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-11 09:27:39 +00:00
Matt Miller
7f981714a6
ported realserver describe exploit
...
git-svn-id: file:///home/svn/framework3/trunk@4018 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-11 09:18:01 +00:00
Matt Miller
abf2e057c8
apache chunked encoding win32 port
...
git-svn-id: file:///home/svn/framework3/trunk@4017 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-11 08:31:54 +00:00
HD Moore
33d594e887
Code from MC
...
git-svn-id: file:///home/svn/framework3/trunk@4016 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-10 19:33:49 +00:00
Matt Miller
56780bed66
ia webmail port, not tested
...
git-svn-id: file:///home/svn/framework3/trunk@4009 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-03 05:42:34 +00:00
HD Moore
634fbd3205
Evasion and bug fixes
...
git-svn-id: file:///home/svn/framework3/trunk@3979 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 04:06:33 +00:00
HD Moore
f2ed69b991
User-Agent detection for VML exploit.
...
Randomization for the setSlice() exploit
git-svn-id: file:///home/svn/framework3/trunk@3978 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 04:01:22 +00:00
HD Moore
432337a331
Exploit module for the new VML fill method.
...
git-svn-id: file:///home/svn/framework3/trunk@3977 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 03:52:54 +00:00
HD Moore
e73a959d46
New exploit module from MC
...
git-svn-id: file:///home/svn/framework3/trunk@3976 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 03:23:23 +00:00
HD Moore
0e917a21eb
New exploit module from MC
...
git-svn-id: file:///home/svn/framework3/trunk@3975 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 03:18:57 +00:00
HD Moore
7c09ab1191
Update from MC:
...
it needed the
'PrependEncoder' for some help. I also just cleaned up the exploit()
a bit.
git-svn-id: file:///home/svn/framework3/trunk@3946 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-24 17:49:46 +00:00
HD Moore
c2ef34a420
autoexploit magic
...
git-svn-id: file:///home/svn/framework3/trunk@3914 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-18 00:54:29 +00:00
HD Moore
c3876b6dd6
Updates for the autopwn stuff...
...
git-svn-id: file:///home/svn/framework3/trunk@3906 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-17 08:00:37 +00:00
HD Moore
41c81a1e12
Consistency changes for exploit titles and additional references
...
git-svn-id: file:///home/svn/framework3/trunk@3878 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:49:39 +00:00
HD Moore
c62905f475
More cosmetic fixes, plus some removal of static string
...
git-svn-id: file:///home/svn/framework3/trunk@3877 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:30:54 +00:00
HD Moore
e52fda25fd
Consistency in naming conventions
...
git-svn-id: file:///home/svn/framework3/trunk@3876 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:28:35 +00:00
HD Moore
1902b1809d
Consistency fixes for IIS modules
...
git-svn-id: file:///home/svn/framework3/trunk@3875 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:25:40 +00:00
HD Moore
339b5193f3
More modules from MC
...
git-svn-id: file:///home/svn/framework3/trunk@3874 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:20:05 +00:00
HD Moore
78e482fd0b
Bugfix reported by MC
...
git-svn-id: file:///home/svn/framework3/trunk@3873 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 05:40:09 +00:00
HD Moore
a82dce4d5b
Import from 2.6, bug fix to transfermode
...
git-svn-id: file:///home/svn/framework3/trunk@3872 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-12 06:05:23 +00:00
HD Moore
abe9027abb
More modules from MC
...
git-svn-id: file:///home/svn/framework3/trunk@3870 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-12 05:58:09 +00:00
HD Moore
0b438ae5b4
Two new modules from MC
...
git-svn-id: file:///home/svn/framework3/trunk@3868 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-12 05:46:42 +00:00
HD Moore
667897ee25
Remove commented block of debugging code
...
git-svn-id: file:///home/svn/framework3/trunk@3864 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-10 05:11:39 +00:00
HD Moore
47039ff3fa
First round of bugfixes for encoders. Alphanumeric encoders no longer default the BufferRegister option, since this can lead to non-compatible exploits falling through to these encoders, selecting them, and then crashing. The new method uses a dynamic (not quite poly) geteip generator, that while not yet alphanumeric compatible, it handles most of the known use cases. Remaining items:
...
1) Figure out how to handle unicode geteip (unicode encoded, alphanum probably)
2) Add keys to the unicode payloads to force a corresponding keyu on the exploit side to enable
git-svn-id: file:///home/svn/framework3/trunk@3863 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-10 05:10:48 +00:00
HD Moore
f02cf4576e
New exploit from MC
...
git-svn-id: file:///home/svn/framework3/trunk@3857 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-08 18:35:30 +00:00
pusscat
73678e2375
Add PoC DoS for the ms06-019 exchange modprops vuln - crashes HEAVILY dependant on modprops used and current heap state :(
...
git-svn-id: file:///home/svn/framework3/trunk@3856 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-06 17:45:17 +00:00
Matt Miller
a230c3f800
credit
...
git-svn-id: file:///home/svn/framework3/trunk@3831 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-14 09:00:50 +00:00
Matt Miller
a724d42aa0
added mcafee mcsubmgr exploit, added functional avoid utf8 encoder
...
git-svn-id: file:///home/svn/framework3/trunk@3830 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-14 08:55:37 +00:00
HD Moore
7bab6241e6
Port of the 2.x version
...
git-svn-id: file:///home/svn/framework3/trunk@3826 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-13 04:19:28 +00:00
HD Moore
13260cc003
Minor changes, LSASS still broked
...
git-svn-id: file:///home/svn/framework3/trunk@3805 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-05 18:18:27 +00:00
HD Moore
8cc12d1a3d
StackAdjustment added to most exploits, PNP tweaked
...
git-svn-id: file:///home/svn/framework3/trunk@3783 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-31 02:01:14 +00:00
HD Moore
0824394ce4
Prepend -> StackAdjustment
...
git-svn-id: file:///home/svn/framework3/trunk@3782 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-31 00:41:02 +00:00
HD Moore
d0bc17f17a
Minor updates
...
git-svn-id: file:///home/svn/framework3/trunk@3778 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-30 21:31:02 +00:00
HD Moore
817c4c189f
Timeouts added for handlers
...
git-svn-id: file:///home/svn/framework3/trunk@3773 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-29 22:37:39 +00:00
HD Moore
167f787fcf
Bug fix from nico
...
git-svn-id: file:///home/svn/framework3/trunk@3744 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-18 01:09:42 +00:00
HD Moore
1de5abe8e8
Hurray, it now drops a shell! :)
...
git-svn-id: file:///home/svn/framework3/trunk@3723 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-23 06:21:10 +00:00
pusscat
56b15b1f3f
EIP and RegCloseKey handle offsets correct now
...
git-svn-id: file:///home/svn/framework3/trunk@3721 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-22 21:06:22 +00:00
HD Moore
0468c771b8
Added credit
...
git-svn-id: file:///home/svn/framework3/trunk@3720 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-21 23:41:28 +00:00
HD Moore
b7b5bf56d8
Cosmetic
...
git-svn-id: file:///home/svn/framework3/trunk@3717 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-21 21:48:50 +00:00
HD Moore
fdd7f4fd74
MC asked us to place his code under MSF license
...
git-svn-id: file:///home/svn/framework3/trunk@3714 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-21 18:38:40 +00:00
HD Moore
bb0def749f
Closer...
...
git-svn-id: file:///home/svn/framework3/trunk@3713 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-20 20:45:50 +00:00
HD Moore
0cf2909fda
Updted
...
git-svn-id: file:///home/svn/framework3/trunk@3712 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-20 19:28:13 +00:00
pusscat
08b268aa65
updated for hd
...
git-svn-id: file:///home/svn/framework3/trunk@3710 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-20 14:35:55 +00:00
HD Moore
0633be5a93
Better error handling for patched systems
...
git-svn-id: file:///home/svn/framework3/trunk@3708 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-19 16:16:50 +00:00
pusscat
3027e76384
Add non-working (bad stub) start for rasmans.dll registry corruption - correct function (I think ;)
...
git-svn-id: file:///home/svn/framework3/trunk@3707 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-19 13:54:21 +00:00
HD Moore
14dabc399e
Added DOS aux modules
...
Temporarily added RRAS_MAGIC
git-svn-id: file:///home/svn/incoming/trunk@3666 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-15 15:52:01 +00:00
HD Moore
93eefee44f
Consistency and cosmetics..
...
git-svn-id: file:///home/svn/incoming/trunk@3665 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-15 15:31:56 +00:00
HD Moore
1e5745ecd4
Added support for Windows XP SP1
...
git-svn-id: file:///home/svn/incoming/trunk@3664 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-15 15:30:46 +00:00
HD Moore
7a3bfce2b0
Straight port from anonymous
...
git-svn-id: file:///home/svn/incoming/trunk@3662 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-14 21:26:43 +00:00
HD Moore
372edb7957
Wee
...
git-svn-id: file:///home/svn/incoming/trunk@3661 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-14 20:39:16 +00:00
HD Moore
a53bdd04e2
Removed debug
...
git-svn-id: file:///home/svn/incoming/trunk@3655 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-08 20:59:33 +00:00
HD Moore
a8050a09ff
Exploit from MC
...
git-svn-id: file:///home/svn/incoming/trunk@3653 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-08 19:19:22 +00:00
HD Moore
eb93375277
Remove debugging statement
...
git-svn-id: file:///home/svn/incoming/trunk@3647 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-30 16:11:35 +00:00
HD Moore
dd20a7a633
Exploit order change to get correct default options
...
git-svn-id: file:///home/svn/incoming/trunk@3644 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-30 15:44:33 +00:00
HD Moore
615104b6ab
Other licensing updates (MSF->BSD) and minor cleanups
...
git-svn-id: file:///home/svn/incoming/trunk@3637 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-06 16:43:45 +00:00
HD Moore
d086a1bedf
BSD license the default for non-msfdev created modules.
...
git-svn-id: file:///home/svn/incoming/trunk@3636 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-06 16:34:39 +00:00
HD Moore
1a54cc810a
Fixed numerous issues involving smb/dcerpc interaction
...
Fixed 'bad' use of method definition (space after method name, will be depreciated soon)
git-svn-id: file:///home/svn/incoming/trunk@3626 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-30 19:49:27 +00:00
HD Moore
42bc7496cf
All sorts of fun changes to smb/dcerpc, the basics are:
...
1) Clean up SMB constants, add new ones, define which ones are supported by dialect
2) DCERPC over SMB uses a 'OpenPipe' class, not an 'OpenFile'
3) A new DCERPC option called 'smb_pipeio' allows the user to switch between Read/Write and TransactNamedPipe()
git-svn-id: file:///home/svn/incoming/trunk@3622 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-26 16:59:44 +00:00
HD Moore
7e0f539b12
Updated
...
git-svn-id: file:///home/svn/incoming/trunk@3601 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-16 06:29:44 +00:00
HD Moore
bf6ac76cd7
new code, needs encoders
...
git-svn-id: file:///home/svn/incoming/trunk@3597 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-14 20:22:15 +00:00
HD Moore
ca72b7e2ed
Woops, tenable-license check blob
...
git-svn-id: file:///home/svn/incoming/trunk@3595 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-13 16:13:48 +00:00
HD Moore
86671cef89
PeerCast exploits
...
git-svn-id: file:///home/svn/incoming/trunk@3583 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-30 21:05:42 +00:00
HD Moore
46709d6222
cosmetic
...
git-svn-id: file:///home/svn/incoming/trunk@3581 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-30 15:06:41 +00:00
bmc
5916642428
* using command paylods give a pipe error, so trap that exception
...
git-svn-id: file:///home/svn/incoming/trunk@3536 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-21 16:18:38 +00:00
bmc
5699f17499
* add platform
...
git-svn-id: file:///home/svn/incoming/trunk@3535 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-21 14:27:28 +00:00
bmc
f6c6c9669c
add Platform
...
git-svn-id: file:///home/svn/incoming/trunk@3533 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-19 04:18:21 +00:00
bmc
b99a9e5075
* a few updates to make it a bit more like reality, still doesn't work though
...
git-svn-id: file:///home/svn/incoming/trunk@3518 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-07 15:23:54 +00:00
bmc
16156c8aea
* the XML isn't required, random shit works just fine
...
* only normalizing of the stuff that SHOULD be normalizes works for shit with this exploit
git-svn-id: file:///home/svn/incoming/trunk@3515 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-06 22:47:06 +00:00
bmc
1c35f492a8
* turn into an HTTP client request
...
git-svn-id: file:///home/svn/incoming/trunk@3514 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-06 21:12:37 +00:00
bmc
d7e2e99cef
* display something when the exploit is sent so the user has some indication of status
...
git-svn-id: file:///home/svn/incoming/trunk@3499 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-03 19:57:28 +00:00
bmc
fe608d1676
general cleanups
...
add space evasions to the playlist
git-svn-id: file:///home/svn/incoming/trunk@3495 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-03 18:28:13 +00:00
HD Moore
83be4703d6
modules/
...
git-svn-id: file:///home/svn/incoming/trunk@3493 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-02 20:43:55 +00:00
HD Moore
3a69fe2fae
More features
...
git-svn-id: file:///home/svn/incoming/trunk@3492 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-02 05:54:06 +00:00
bmc
7f270f55b0
its really an html exploit...
...
git-svn-id: file:///home/svn/incoming/trunk@3484 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-30 22:12:17 +00:00
HD Moore
7ee4d05bec
Woo, neat krad winamp exploit :)
...
git-svn-id: file:///home/svn/incoming/trunk@3479 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-30 19:28:19 +00:00
HD Moore
c1b9129bca
A couple more assertions in the tcp_server test suite.
...
Added template for the winamp pls overflow (unc computer name)
git-svn-id: file:///home/svn/incoming/trunk@3474 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-30 17:25:44 +00:00
bmc
f1e0f7bcc9
* use zlib
...
git-svn-id: file:///home/svn/incoming/trunk@3460 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 22:06:06 +00:00
bmc
9996207faf
* make me an HTML exploit
...
git-svn-id: file:///home/svn/incoming/trunk@3459 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 22:04:28 +00:00
bmc
5be5aa0033
* less fingerprintable
...
* less ugly
instead of blobs of hex for ...
nops, use make_nops
short jumps, use jmp_short
unicode strings, use to_unicode
math.to_s, use #{math}
random junk, use rand_text with payload_badchars
git-svn-id: file:///home/svn/incoming/trunk@3456 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 21:18:52 +00:00
HD Moore
e249d9ebe5
Massive update to tab indentation (used ./dev/tabify.rb)
...
git-svn-id: file:///home/svn/incoming/trunk@3450 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 05:00:35 +00:00
HD Moore
f485585e7c
License information displayed by info
...
git-svn-id: file:///home/svn/incoming/trunk@3428 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-22 19:25:55 +00:00
HD Moore
1bffccf605
New licensing terms, revision bump to v3
...
git-svn-id: file:///home/svn/incoming/trunk@3425 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-21 22:10:20 +00:00
HD Moore
7e7fd98927
prevented it frmo loading
...
git-svn-id: file:///home/svn/incoming/trunk@3418 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-21 02:21:54 +00:00
bmc
eeca3cb4bc
* fix exploit name
...
git-svn-id: file:///home/svn/incoming/trunk@3416 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-20 21:11:38 +00:00
HD Moore
2bd530b8e0
Fix
...
git-svn-id: file:///home/svn/incoming/trunk@3407 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-19 06:20:33 +00:00
HD Moore
b9bdd96f97
typo
...
git-svn-id: file:///home/svn/incoming/trunk@3398 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-17 01:11:10 +00:00
Matt Miller
68a8a5262b
change unknown license to GPL
...
git-svn-id: file:///home/svn/incoming/trunk@3379 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-16 03:48:36 +00:00
Matt Miller
2e19a86843
added license to all modules
...
git-svn-id: file:///home/svn/incoming/trunk@3377 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-16 02:59:47 +00:00
HD Moore
3783e27fc7
Fixed handler/disconnect order in FTP, fixes to metafile
...
git-svn-id: file:///home/svn/incoming/trunk@3348 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 14:27:59 +00:00
Matt Miller
e4556d2688
fix syntax errors
...
git-svn-id: file:///home/svn/incoming/trunk@3347 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 10:38:35 +00:00
HD Moore
b0aeeb47aa
Code from MC
...
git-svn-id: file:///home/svn/incoming/trunk@3346 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 06:26:30 +00:00
HD Moore
4148a17b19
Committed new name
...
git-svn-id: file:///home/svn/incoming/trunk@3312 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 22:48:19 +00:00
HD Moore
5550a72d1f
rename, tweak
...
git-svn-id: file:///home/svn/incoming/trunk@3311 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 22:27:52 +00:00
HD Moore
8049b32cbc
Patches from <anon>
...
git-svn-id: file:///home/svn/incoming/trunk@3310 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 22:20:28 +00:00
HD Moore
46a1ce0721
More tweaks
...
git-svn-id: file:///home/svn/incoming/trunk@3308 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 03:56:20 +00:00
Matt Miller
e63ba080a8
added support for use_gzip
...
git-svn-id: file:///home/svn/incoming/trunk@3303 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-03 04:24:03 +00:00
HD Moore
9452249c09
Updated
...
git-svn-id: file:///home/svn/incoming/trunk@3301 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-03 04:06:03 +00:00
HD Moore
96d4591b87
Updates to httpserver mixin, gzip encoding added to text, bugfix to wordstar, added metafile exploit, will rename and make it nice later
...
git-svn-id: file:///home/svn/incoming/trunk@3299 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-02 07:49:52 +00:00
Matt Miller
76549787e5
fix response for 404
...
git-svn-id: file:///home/svn/incoming/trunk@3298 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-02 04:07:28 +00:00
HD Moore
9fc93bbe56
Miscellaneous fixes, changes to CMD payloads
...
git-svn-id: file:///home/svn/incoming/trunk@3296 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-02 01:12:36 +00:00
HD Moore
3fa5d999a2
No more select(nil, nil, nil, X)
...
git-svn-id: file:///home/svn/incoming/trunk@3259 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-27 04:40:06 +00:00
HD Moore
53a49f55d4
Removing dupes
...
git-svn-id: file:///home/svn/incoming/trunk@3255 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-26 14:36:25 +00:00
HD Moore
97129d0303
New modules, module renames
...
git-svn-id: file:///home/svn/incoming/trunk@3254 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-26 14:34:22 +00:00
HD Moore
412629e5c3
Stuff.. more changes to come
...
git-svn-id: file:///home/svn/incoming/trunk@3253 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-25 22:47:38 +00:00
HD Moore
c30d4403b8
Wewp
...
git-svn-id: file:///home/svn/incoming/trunk@3245 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-18 07:50:48 +00:00
Matt Miller
410770bae6
fixes for some socket association stuff
...
git-svn-id: file:///home/svn/incoming/trunk@3233 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-15 04:46:52 +00:00
HD Moore
ad6d2f3f9d
wtf
...
git-svn-id: file:///home/svn/incoming/trunk@3230 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-15 04:20:28 +00:00
HD Moore
3d2bfd521c
Fixed options() problem in the mixin, minor tweak in remote_agent
...
git-svn-id: file:///home/svn/incoming/trunk@3229 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-15 04:16:30 +00:00
HD Moore
18122316e4
This might work :-)
...
git-svn-id: file:///home/svn/incoming/trunk@3224 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-14 03:15:04 +00:00
HD Moore
2ecec3db87
More
...
git-svn-id: file:///home/svn/incoming/trunk@3223 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-14 03:14:51 +00:00
HD Moore
b8ac1a993e
Latest - demo it
...
git-svn-id: file:///home/svn/incoming/trunk@3220 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-14 00:36:28 +00:00
HD Moore
e79c9f8658
Something is still breaking, use w3who, show payloads, exploit, breaks
...
git-svn-id: file:///home/svn/incoming/trunk@3218 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-14 00:21:23 +00:00
HD Moore
557153e01c
Code from Brian Caswell
...
git-svn-id: file:///home/svn/incoming/trunk@3210 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-13 06:08:40 +00:00
HD Moore
e591af64bd
Added default target 0
...
git-svn-id: file:///home/svn/incoming/trunk@3202 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-12 20:05:32 +00:00
HD Moore
6c2da4d313
Imap exploits
...
Addition of MC as a common author
Added the IMAP mixin
Fixed bug in base64
git-svn-id: file:///home/svn/incoming/trunk@3172 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-05 05:00:27 +00:00
HD Moore
86c5cf44c3
Renamed
...
git-svn-id: file:///home/svn/incoming/trunk@3171 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-05 04:57:41 +00:00
HD Moore
9b977bee1b
Fixed some authors
...
git-svn-id: file:///home/svn/incoming/trunk@3163 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-02 01:18:51 +00:00
HD Moore
b931b02c14
Changes from Brian Caswell
...
git-svn-id: file:///home/svn/incoming/trunk@3161 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-30 19:42:19 +00:00
HD Moore
4d43e8f482
mnor
...
git-svn-id: file:///home/svn/incoming/trunk@3159 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-29 02:57:04 +00:00
HD Moore
19563a62b2
Wee, portr
...
git-svn-id: file:///home/svn/incoming/trunk@3138 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-27 19:08:44 +00:00
HD Moore
9340ecdeab
IIS exploits ported
...
Added on_new_session callback and session_created? flag to exploit
Fixed socket fd leak in Comm::Local
git-svn-id: file:///home/svn/incoming/trunk@3135 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-27 18:42:44 +00:00
HD Moore
53425595e7
Ported
...
git-svn-id: file:///home/svn/incoming/trunk@3133 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-27 07:26:58 +00:00
HD Moore
7624b4d78a
Bug fixes for alphanum vs alphanumeric
...
Added some target print code to the brightstor explotis
Added the backupexec epxloits
git-svn-id: file:///home/svn/incoming/trunk@3132 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-27 01:51:50 +00:00
HD Moore
1ca0837a3b
Brightstor exploits
...
git-svn-id: file:///home/svn/incoming/trunk@3130 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 22:12:54 +00:00
HD Moore
40aa62968f
Arkeia exploits added
...
git-svn-id: file:///home/svn/incoming/trunk@3129 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 19:56:03 +00:00
HD Moore
a990e20067
Woops
...
git-svn-id: file:///home/svn/incoming/trunk@3128 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 16:46:49 +00:00
HD Moore
e2ab431a57
Ported
...
git-svn-id: file:///home/svn/incoming/trunk@3126 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 16:42:22 +00:00
HD Moore
7403e8bf23
Mssql code!
...
git-svn-id: file:///home/svn/incoming/trunk@3122 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 11:16:36 +00:00
HD Moore
b30dd91e82
Woop
...
git-svn-id: file:///home/svn/incoming/trunk@3116 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 04:04:49 +00:00
HD Moore
0902ca6962
Reorganization, adding asn1, pnp, and msmq.
...
git-svn-id: file:///home/svn/incoming/trunk@3113 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 02:33:39 +00:00
HD Moore
fb8b56f55f
Changed up the way mixins are handled, all exploits just require 'msf/core' and
...
all current mixins will be loaded. Egghunter was moved to a mixin and generates
based on target arch and platform.
git-svn-id: file:///home/svn/incoming/trunk@3111 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-26 00:04:26 +00:00
HD Moore
c2856b34fb
Fixed namespace foo
...
git-svn-id: file:///home/svn/incoming/trunk@3105 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-25 20:33:54 +00:00
HD Moore
fb47661a8f
Serv-U exploit working, depends on searcher() in x86, many fixes to FTP mixin
...
git-svn-id: file:///home/svn/incoming/trunk@3103 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-25 20:02:21 +00:00
HD Moore
7679d8e891
Dun dun dun.. da dun!
...
git-svn-id: file:///home/svn/incoming/trunk@3096 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-25 04:36:56 +00:00
HD Moore
cd8b9849ce
Many fixes/updates/new ftp modules
...
Fixed the tab completion hackery - moved from driver to dispatcher_shell
git-svn-id: file:///home/svn/incoming/trunk@3094 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-25 04:11:22 +00:00
HD Moore
fac9fff4bb
Comimtting
...
git-svn-id: file:///home/svn/incoming/trunk@3087 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 19:45:46 +00:00
HD Moore
08e3078d47
more ftp`
...
git-svn-id: file:///home/svn/incoming/trunk@3085 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 19:28:47 +00:00
HD Moore
7ae0c3555b
3com now tries to read a reply from the server
...
git-svn-id: file:///home/svn/incoming/trunk@3083 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 19:04:37 +00:00
HD Moore
81a1de755b
SEH frame stuff integrated into ftp modules, added generate_seh_payload
...
git-svn-id: file:///home/svn/incoming/trunk@3081 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 18:30:56 +00:00
HD Moore
32d83b8cf4
tweaky
...
git-svn-id: file:///home/svn/incoming/trunk@3079 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 17:41:32 +00:00
HD Moore
a2acc04831
crash fix boom
...
git-svn-id: file:///home/svn/incoming/trunk@3075 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 04:05:48 +00:00
HD Moore
f6649e54c5
Fix a crash on load
...
git-svn-id: file:///home/svn/incoming/trunk@3074 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 03:53:45 +00:00
HD Moore
6e2391b667
Ported
...
git-svn-id: file:///home/svn/incoming/trunk@3072 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 03:48:16 +00:00
HD Moore
10a95de4da
Fixed
...
git-svn-id: file:///home/svn/incoming/trunk@3071 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 03:48:06 +00:00
HD Moore
4d76fb868c
Fixed bad target foo in ftp exploits
...
Added TODO item about native packign
git-svn-id: file:///home/svn/incoming/trunk@3070 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 03:46:53 +00:00
HD Moore
def6c64abf
Tweak
...
git-svn-id: file:///home/svn/incoming/trunk@3068 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 03:16:10 +00:00
HD Moore
f054bda992
picky picky
...
git-svn-id: file:///home/svn/incoming/trunk@3067 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 03:01:27 +00:00
HD Moore
55fcb7fca9
Namespace
...
git-svn-id: file:///home/svn/incoming/trunk@3066 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 03:00:37 +00:00
HD Moore
973e7d16e8
Added subdir for protocol ftp
...
git-svn-id: file:///home/svn/incoming/trunk@3065 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-24 02:58:58 +00:00
HD Moore
4edf57d731
ms04_011 works perfectly
...
updated smb, evasion can be set via SMBEvasion datastore (temporary)
added the first osx exploit, cant test for a week or so
git-svn-id: file:///home/svn/incoming/trunk@3044 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-17 19:41:54 +00:00
HD Moore
16c5e232f5
Addition of get_once() in io::stream, rewritten recv code for smb/dcerpc, error handling in exploit mixins
...
git-svn-id: file:///home/svn/incoming/trunk@3042 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-16 17:56:07 +00:00
HD Moore
3150bd2f3a
SMB mixin is mostly working now
...
git-svn-id: file:///home/svn/incoming/trunk@3037 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-15 23:02:17 +00:00
Matt Miller
9fde9ef296
extraneouslyness
...
git-svn-id: file:///home/svn/incoming/trunk@3027 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-13 18:35:44 +00:00
Matt Miller
6cd930492f
remove superfluous default
...
git-svn-id: file:///home/svn/incoming/trunk@3024 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-11 01:50:05 +00:00
Matt Miller
05a84cc7da
bug fixes in x86 asm, jmp call additive, payload generation, and new exploit
...
git-svn-id: file:///home/svn/incoming/trunk@3021 4d416f70-5f16-0410-b530-b9f4589650da
2005-11-11 01:22:03 +00:00
HD Moore
a5cde85299
More SMB
...
git-svn-id: file:///home/svn/incoming/trunk@2954 4d416f70-5f16-0410-b530-b9f4589650da
2005-10-03 13:51:05 +00:00
HD Moore
43192bdf23
Renamed
...
git-svn-id: file:///home/svn/incoming/trunk@2949 4d416f70-5f16-0410-b530-b9f4589650da
2005-10-02 08:47:58 +00:00
Matt Miller
550080bcfb
refactored socket api a bit, expect bugs
...
git-svn-id: file:///home/svn/incoming/trunk@2915 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-27 05:31:48 +00:00
Matt Miller
4d7a03e919
use send_html_response
...
git-svn-id: file:///home/svn/incoming/trunk@2900 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-25 23:51:41 +00:00
Matt Miller
9cccd6ee1d
smaller
...
git-svn-id: file:///home/svn/incoming/trunk@2899 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-25 19:48:03 +00:00
Matt Miller
109aa7f63b
smaller
...
git-svn-id: file:///home/svn/incoming/trunk@2898 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-25 19:47:48 +00:00
Matt Miller
b49241c90a
switched ie object type to use Egghunter class
...
git-svn-id: file:///home/svn/incoming/trunk@2897 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-25 19:42:29 +00:00
Matt Miller
8090968279
add regenerate_payload
...
git-svn-id: file:///home/svn/incoming/trunk@2891 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-24 19:37:27 +00:00
Matt Miller
501d7da9f9
aim goaway exploit ported, fixed a few bugs in sled gen
...
git-svn-id: file:///home/svn/incoming/trunk@2888 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-24 19:17:07 +00:00
Matt Miller
3116a654d4
enhanced logging a bit, added a few badchars to ie obj type, improving job support
...
git-svn-id: file:///home/svn/incoming/trunk@2868 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-23 05:51:09 +00:00
Matt Miller
579a3db148
random egg
...
git-svn-id: file:///home/svn/incoming/trunk@2862 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-22 03:37:26 +00:00
Matt Miller
fe0a151d7e
ported ie object type, more work on http stuff
...
git-svn-id: file:///home/svn/incoming/trunk@2861 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-22 03:24:32 +00:00
HD Moore
5e5f7eed24
DCERPC foo
...
git-svn-id: file:///home/svn/incoming/trunk@2852 4d416f70-5f16-0410-b530-b9f4589650da
2005-09-16 03:29:27 +00:00
HD Moore
897e69a972
Changed to match the new API
...
git-svn-id: file:///home/svn/incoming/trunk@2831 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-25 09:47:49 +00:00
HD Moore
429041cf7f
Usable now
...
git-svn-id: file:///home/svn/incoming/trunk@2794 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-18 08:35:51 +00:00
HD Moore
98244e5000
Bugfix to x86
...
More tweaks to dcerpc
Fixed up dcom
git-svn-id: file:///home/svn/incoming/trunk@2789 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-18 03:58:29 +00:00
HD Moore
649a5038d8
This might actually work
...
git-svn-id: file:///home/svn/incoming/trunk@2787 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-18 01:47:28 +00:00
Matt Miller
86d519f447
fixed up references
...
git-svn-id: file:///home/svn/incoming/trunk@2730 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-11 16:46:47 +00:00
Matt Miller
0e357337a5
started working on exploit stuff, changed aliases a bit for windows payloads, pimped targets to the max, added wrappers to exploit for payload stuff
...
git-svn-id: file:///home/svn/incoming/trunk@2729 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-11 15:34:31 +00:00
Spoon M
55f8cdb41a
motisha4lif
...
git-svn-id: file:///home/svn/incoming/trunk@2691 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-09 21:22:32 +00:00
Matt Miller
b5bd0b22aa
yoyoyoyoyoy
...
git-svn-id: file:///home/svn/incoming/trunk@2580 4d416f70-5f16-0410-b530-b9f4589650da
2005-06-05 18:03:56 +00:00
Matt Miller
1e6e29ad6d
can I get a woot woot
...
git-svn-id: file:///home/svn/incoming/trunk@2576 4d416f70-5f16-0410-b530-b9f4589650da
2005-06-05 05:42:14 +00:00
Matt Miller
04a9cbd7ad
moved
...
git-svn-id: file:///home/svn/incoming/trunk@2575 4d416f70-5f16-0410-b530-b9f4589650da
2005-06-05 04:37:48 +00:00