Tod Beardsley
9cf896ffa1
Pre-release fixups on titles and grammar
...
Fixing squid_pivot_scanning and enum_xchat
2012-04-02 11:24:49 -05:00
sinn3r
1853f8b0c2
Merge pull request #291 from wchen-r7/enum_xchat
...
Add post module enum_xchat.rb
2012-03-31 00:42:15 -07:00
sinn3r
543f5ebfe2
Only display the retry message when necessary
2012-03-31 02:40:24 -05:00
sinn3r
4215030eb3
Set a limit to how many times we can retry
2012-03-31 02:38:46 -05:00
sinn3r
6e4ccaae6b
Add post module to collect xchat's configs and chat logs
2012-03-31 00:15:21 -05:00
sinn3r
e723704a32
Merge pull request #289 from wchen-r7/enum_colloquy
...
Add post module enum_colloquy.rb to collect chatlogs and the plist
2012-03-30 09:24:32 -07:00
sinn3r
18a13a4bfb
Correct description
2012-03-30 11:22:55 -05:00
sinn3r
8d2a58dfd8
Add post module enum_colloquy.rb to collect chatlogs and the preferences list
2012-03-29 16:24:43 -05:00
Tod Beardsley
b1683c94ef
Merge pull request #281 from jlee-r7/module-tests
...
Module tests
2012-03-27 10:23:20 -07:00
James Lee
812457fed0
Rename enum_user_dirs
2012-03-27 10:52:16 -06:00
Tod Beardsley
5f9000efb3
Merge pull request #280 from wchen-r7/osx_airport
...
Add OSX Gather Airport post module
2012-03-27 05:48:26 -07:00
sinn3r
e44f9d06ec
Remove the extra 'require'
2012-03-27 01:24:12 -05:00
sinn3r
670e15b40f
Add OSX Gather Airport post module
2012-03-27 01:18:38 -05:00
Tod Beardsley
7a74cc7694
Quoting "Chicken of the VNC"
...
Otherwise, this looks like a nonsense string to people not familiar with
this application.
2012-03-26 16:26:40 -05:00
Tod Beardsley
2f3bbdc00c
Sed replacement of exploit-db links with EDB refs
...
This is the result of:
find modules/ -name \*.rb -exec sed -i -e 's#\x27URL\x27,
\x27http://www.exploit-db.com/exploits/ \([0-9]\+\).*\x27#\x27EDB\x27,
\1#' modules/*.rb {} \
2012-03-21 16:43:21 -05:00
sinn3r
c64226f4b8
Fix regex
2012-03-21 04:31:49 -05:00
sinn3r
e973da7c6d
Add Chicken of the VNC client profile collector module
2012-03-21 04:04:35 -05:00
sinn3r
aeb691bbee
Massive whitespace cleanup
2012-03-18 00:07:27 -05:00
sinn3r
acac3fa38d
Add back enum_protections with some new changes
2012-03-17 16:00:20 -05:00
ohdae
14d427fa87
Added fix for enum_protections
2012-03-17 13:28:31 -04:00
sinn3r
78331bb4c1
A bunch of fixes
2012-03-17 03:14:26 -05:00
sinn3r
4a0c75f4b3
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework
2012-03-17 02:38:35 -05:00
sinn3r
ff093c3f93
The comments in get_chatlogs need an update
2012-03-17 00:28:05 -05:00
sinn3r
39cfa43250
Correct license format
2012-03-17 00:25:41 -05:00
sinn3r
3479a314e3
Add enum_adium.rb post module
2012-03-17 00:22:03 -05:00
ohdae
c3f98fe284
Changed store_note to store_loot. Fixed local/remote file retrieval
2012-03-16 16:54:36 -03:00
sinn3r
d3a87b59aa
This module is not ready, yanked.
2012-03-16 11:49:31 -05:00
ohdae
c5a4dc39c3
fix
2012-03-16 09:17:35 -04:00
ohdae
9b4ecc2777
Merge branch 'post-mods' of github.com:ohdae/metasploit-framework into post-mods
2012-03-16 09:15:47 -04:00
ohdae
b635019d56
saves each config to loot instead of notes
2012-03-16 09:14:48 -04:00
sinn3r
9f0a293a53
Correct variable name
2012-03-16 01:17:39 -05:00
ohdae
13b92b97e9
Fixed incorrect variable within get_sql_history
2012-03-16 01:40:12 -03:00
ohdae
f6a2e2b890
Enumerate important and interesting configuration files
2012-03-15 22:59:42 -04:00
sinn3r
e53938b9d7
Merge branch 'ohdae-post-mods'
2012-03-15 14:30:23 -05:00
sinn3r
2770199d28
enum_protections is now find_apps
2012-03-15 14:27:40 -05:00
sinn3r
e5c420b676
File rename, as well as design and cosmetic changes
2012-03-15 14:22:23 -05:00
sinn3r
8b91cc54c3
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework into ohdae-post-mods
2012-03-15 13:50:43 -05:00
ohdae
7e7b220b70
added report_note, removed store_loot function, cleaned up info/author
2012-03-15 15:29:52 -03:00
ohdae
b88af39f74
fixed output newline issue
2012-03-15 12:18:29 -03:00
ohdae
32002c595d
fixed save line
2012-03-15 01:05:35 -03:00
ohdae
c165b7b7c2
removed unneeded comments
2012-03-15 01:02:07 -03:00
ohdae
58b2d570c9
fixed output issue
2012-03-15 01:00:55 -03:00
ohdae
ffc41bf265
removed unneeded dependency
2012-03-14 18:26:53 -03:00
Jonathan Cran
c38aaede03
duplicate of enum_users_history.rb
2012-03-14 16:07:49 -05:00
ohdae
5c74b7741b
locates installed 3rd part av, fws, etc
2012-03-14 13:30:16 -04:00
sinn3r
d1efb40d2d
Fix bad path for Windows (bug #6523 ) - Thanks Francesco
2012-03-14 12:27:40 -05:00
sinn3r
3b880359fe
Change module name to better describe the purpose of it. Also some cosmetic corrections.
2012-03-14 11:44:03 -05:00
sinn3r
704f8e391d
Remove the line that's commented out
2012-03-14 11:37:43 -05:00
ohdae
60b3ee7b16
Added user specific tasks to enum_users, removed bash_hist from enum_sys, added disk space info to enum_system
2012-03-14 09:06:51 -04:00
sinn3r
50f8b6088b
Fix cosmetic problems
2012-03-14 05:20:19 -05:00
sinn3r
4872e80385
Cleanup whitespace and author format
2012-03-14 05:18:00 -05:00
sinn3r
9d7e22876c
Merge branch 'my-branch' of https://github.com/ohdae/metasploit-framework
2012-03-14 05:14:33 -05:00
ohdae
fbd076e749
removed old/ folder
2012-03-13 22:49:01 -04:00
ohdae
b86fa5c85b
Combined network tasks into enum_network.rb, Combined user/system tasks into enum_system.rb
2012-03-13 22:24:49 -04:00
ohdae
0fe26780b9
Merge branch 'my-branch' of github.com:ohdae/metasploit-framework into my-branch
2012-03-13 22:20:59 -04:00
ohdae
96fb9fd458
Combined network tasks into one module, Combined system/user tasks into one module
2012-03-13 22:18:24 -04:00
ohdae
f79bda2dc7
Update modules/post/linux/gather/enum_linux.rb
2012-03-13 21:15:47 -03:00
ohdae
3260bc6b65
Update modules/post/linux/gather/enum_linux.rb
2012-03-13 21:14:49 -03:00
ohdae
bd5950ea52
added active connections, iwconfig, if-up/down, open ports
2012-03-13 20:09:41 -04:00
ohdae
4b7e380581
Linux post ssh enum, Linux post network info
2012-03-13 17:27:21 -04:00
James Lee
2b9acb61ad
Clean up some incosistent verbosity
...
Modules should use `vprint_*` instead of `print... if
datastore["VERBOSE"]` or similar constructs
2012-03-06 12:01:20 -07:00
James Lee
70162fde73
A few more author typos
2012-03-05 13:28:46 -07:00
James Lee
82c23e95d3
Module author typo
2012-03-05 13:28:46 -07:00
sinn3r
9258cda144
Change :info and file name so it's easier to identify it's a Firefox profile
2012-03-02 16:45:42 -06:00
sinn3r
8f30e5548c
Fix bug: "TypeError can't convert nil into String" when fd.read can be nil
2012-03-02 02:18:07 -06:00
sinn3r
d06848ba56
Default to token impersonation before migrating to a different process
2012-03-01 18:31:33 -06:00
sinn3r
687c50d0cd
Indent level fix
2012-03-01 16:14:29 -06:00
Gregory Man
eaf41769ed
Fixed gather/apple_ios_backup to work with OSX
...
Also moved it to post/multi/gather
2012-02-29 10:31:26 +02:00
James Lee
f3e0b46e5c
Post mods should use session_host when reporting
...
target_host probably never worked anyway
2012-02-28 18:40:17 -07:00
James Lee
624e19fd8b
Merge session-host-rework branch back to master
...
Squashed commit of the following:
commit 2f4e8df33c5b4baa8d6fd67b400778a3f93482aa
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 16:31:03 2012 -0700
Clean up some rdoc comments
This adds categories for the various interfaces that meterpreter and
shell sessions implement so they are grouped logically in the docs.
commit 9d31bc1b35845f7279148412f49bda56a39c9d9d
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 13:00:25 2012 -0700
Combine the docs into one output dir
There's really no need to separate the API sections into their own
directory. Combining them makes it much easier to read.
commit eadd7fc136a9e7e4d9652d55dfb86e6f318332e0
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 08:27:22 2012 -0700
Keep the order of iface attributes the same accross rubies
1.8 doesn't maintain insertion order for Hash keys like 1.9 does so we
end up with ~random order for the display with the previous technique.
Switch to an Array instead of a Hash so it's always the same.
commit 6f66dd40f39959711f9bacbda99717253a375d21
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 08:23:35 2012 -0700
Fix a few more compiler warnings
commit f39cb536a80c5000a5b9ca1fec5902300ae4b440
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 08:17:39 2012 -0700
Fix a type-safety warning
commit 1e52785f38146515409da3724f858b9603d19454
Author: James Lee <egypt@metasploit.com>
Date: Mon Feb 27 15:21:36 2012 -0700
LHOST should be OptAddress, not OptAddressRange
commit acef978aa4233c7bd0b00ef63646eb4da5457f67
Author: James Lee <egypt@metasploit.com>
Date: Sun Feb 26 17:45:59 2012 -0700
Fix a couple of warnings and a typo
commit 29d87f88790aa1b3e5db6df650ecfb3fb93c675b
Author: HD Moore <hdm@digitaloffense.net>
Date: Mon Feb 27 11:54:29 2012 -0600
Fix ctype vs content_type typo
commit 83b5400356c47dd1973e6be3aa343084dfd09c73
Author: Gregory Man <man.gregory@gmail.com>
Date: Sun Feb 26 15:38:33 2012 +0200
Fixed scripts/meterpreter/enum_firefox to work with firefox > 3.6.x
commit 49c2c80b347820d02348d694cc71f1b3028b4365
Author: Steve Tornio <swtornio@gmail.com>
Date: Sun Feb 26 07:13:13 2012 -0600
add osvdb ref
commit e18e1fe97b89c3a2b8c22bc6c18726853d2c2bee
Author: Matt Andreko <mandreko@gmail.com>
Date: Sat Feb 25 18:02:56 2012 -0500
Added aspx target to msfvenom. This in turn added it to msfencode as well.
Ref: https://github.com/rapid7/metasploit-framework/pull/188
Tested on winxp with IIS in .net 1.1 and 2.0 modes
commit e6aa5072112d79bbf8a4d2289cf8d301db3932f5
Author: Joshua J. Drake <github.jdrake@qoop.org>
Date: Sat Feb 25 13:00:48 2012 -0600
Fixes #6308 : Fall back to 127.0.0.1 when SocketError is raised from the resolver
commit b3371e8bfeea4d84f9d0cba100352b57d7e9e78b
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 17:07:42 2012 -0700
Simplify logic for whether an inner iface has the same address
commit 5417419f35a40d1c08ca11ca40744722692d3b0d
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 16:58:16 2012 -0700
Whitespace
commit 9036875c2918439ae23e11ee7b958e30ccc29545
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 16:53:45 2012 -0700
Set session info before worrying about address
get_interfaces can take a while on Linux, grab uid and hostname earlier
so we can give the user an idea of what they popped as soon as possible.
commit f34b51c6291031ab25b5bfb1ac6307a516ab0ee9
Author: James Lee <egypt@metasploit.com>
Date: Tue Feb 28 16:48:42 2012 -0700
Clean up rdoc
commit e61a0663454400ec66f59a80d18b0baff4cb8cd9
Author: HD Moore <hd_moore@rapid7.com>
Date: Tue Feb 28 04:54:45 2012 -0600
Ensure the architecture is only the first word (not the full WOW64
message in some cases)
commit 4c701610976a92298c1182eecc9291a1b301e43b
Author: HD Moore <hd_moore@rapid7.com>
Date: Tue Feb 28 04:49:17 2012 -0600
More paranoia code, just in case RHOST is set to whitespace
commit c5ff89fe3dc9061e0fa9f761e6530f6571989d28
Author: HD Moore <hd_moore@rapid7.com>
Date: Tue Feb 28 04:47:01 2012 -0600
A few more small bug fixes to handle cases with an empty string target
host resulting in a bad address
commit 462d0188a1298f29ac83b10349aec6737efc5b19
Author: HD Moore <hd_moore@rapid7.com>
Date: Tue Feb 28 03:55:10 2012 -0600
Fix up the logic (reversed by accident)
commit 2b2b0adaec2448423dbd3ec54d90a5721965e2df
Author: HD Moore <hd_moore@rapid7.com>
Date: Mon Feb 27 23:29:52 2012 -0600
Automatically parse system information and populate the db, identify and
report NAT when detected, show the real session_host in the sessions -l
listing
commit 547a4ab4c62dc3248f847dd5d305ad3b74157348
Author: HD Moore <hd_moore@rapid7.com>
Date: Mon Feb 27 22:16:03 2012 -0600
Fix typo introduced
commit 27a7b7961e61894bdecd55310a8f45d0917c5a5c
Author: HD Moore <hd_moore@rapid7.com>
Date: Mon Feb 27 22:11:38 2012 -0600
More session.session_host tweaks
commit e447302a1a9915795e89b5e29c89ff2ab9b6209b
Author: HD Moore <hd_moore@rapid7.com>
Date: Mon Feb 27 22:08:20 2012 -0600
Additional tunnel_peer changes
commit 93369fcffaf8c6b00d992526b4083acfce036bb3
Author: HD Moore <hd_moore@rapid7.com>
Date: Mon Feb 27 22:06:21 2012 -0600
Additional changes to session.session_host
commit c3552f66d158685909e2c8b51dfead7c240c4f40
Author: HD Moore <hd_moore@rapid7.com>
Date: Mon Feb 27 22:00:19 2012 -0600
Merge changes into the new branch
2012-02-28 18:29:39 -07:00
James Lee
e69c8ca422
LHOST should be OptAddress, not OptAddressRange
2012-02-28 08:16:06 -07:00
HD Moore
139136e033
Fix a handful of typos in the regex/parsing code
2012-02-26 02:10:06 -06:00
Gregory Man
8a158c3a00
Added OSX support to post/multi/gather/firefox_creds
...
Tested on OSX 10.7.3 and FF 9.0.1
2012-02-24 16:44:42 +02:00
James Lee
9ddca81ab5
Fix test that always evals to false
...
Meterpreter does not respond_to? extension names, they're magic.
2012-02-23 14:52:48 -07:00
Gregory Man
ace28a8388
1.9 compatibility fix
...
Strings in ruby 1.9 doesn't have #each method
2012-02-22 18:01:17 +02:00
Gregory Man
66fa56cc49
Fixed post/multi/gather/ssh_creds to work with shell session
2012-02-22 15:16:11 +02:00
James Lee
464cf7f65f
Normalize service names
...
Downcases lots and standardizes a few. Notably, modules that reported a
service name of "TNS" are now "oracle". Modules that report http
now check for SSL and report https instead.
[Fixes #6437 ]
2012-02-21 22:59:20 -07:00
David Maloney
d3fad51f3a
Fix my screwup in winscp for servicename
2012-02-21 20:31:52 -06:00
David Maloney
dcf3f3579d
Fix to the awful sname in this module
2012-02-21 20:28:27 -06:00
Tod Beardsley
4a631e463c
Module title normalization
...
Module titles should read like titles. For
capitalization rules in English, see:
http://owl.english.purdue.edu/owl/resource/592/01/
The only exceptions are function names (like 'thisFunc()') and specific
filenames (like thisfile.ocx).
2012-02-21 11:07:44 -06:00
HD Moore
ceb4888772
Fix up the boilerplate comment to use a better url
2012-02-20 19:40:50 -06:00
sinn3r
f09ce04b00
Show where store_loot() saves the info
2012-02-20 14:22:05 -06:00
sinn3r
cda9166180
This module should show where store_loot() saves the results
2012-02-20 14:15:55 -06:00
sinn3r
779e3cdcda
Correct more post modules for naming style consistency
2012-02-20 13:49:23 -06:00
sinn3r
fd283dd95b
Correct naming style
2012-02-20 12:38:43 -06:00
sinn3r
3180d75168
Correct naming style
2012-02-20 12:38:31 -06:00
sinn3r
22e40d9da4
Change naming style for consistency
2012-02-20 12:35:53 -06:00
sinn3r
300558e009
Correct post module naming style
2012-02-20 12:34:35 -06:00
sinn3r
ef2c261ce9
Change print() to print_line()
2012-02-18 00:22:02 -06:00
sinn3r
1f34c1ffd2
Correct print() and sleep() to print_line and select()
2012-02-18 00:20:52 -06:00
sinn3r
afe6bce1c6
More documentation on the file format
2012-02-16 21:58:12 -06:00
Rob Fuller
c38ad92ade
Post module to upload shortcut (LNK) files with UNC path ICONs for post exploitation
2012-02-16 18:34:19 +00:00
Tod Beardsley
ab65a1ad8c
Name caps and readability for new post modules
2012-02-14 16:23:12 -06:00
sinn3r
7129ec8e3a
Change indent level for the metadata
2012-02-12 17:33:03 -06:00
Jon Hart
49bf9435c2
Post module to loot creds from .fetchmailrc
2012-02-12 11:24:21 -08:00
Rob Fuller
1f1e67cb16
Moved railgun function definitions into central storage and out of individual modules where possible
2012-02-09 04:56:13 +00:00
RageLtMan
858401463d
add exec timeout
2012-02-05 14:52:38 -05:00
RageLtMan
53ec982385
download_exec_fix
2012-02-05 14:35:44 -05:00
HD Moore
e4faa33517
Fix a typo introduce in the usb dumper
2012-02-04 00:03:20 -06:00
HD Moore
0737ccb8e2
Remove nulls from the unicode drive name
2012-02-04 00:03:03 -06:00
sinn3r
1676bd3c4f
Add MSF License header. Use print once to print the whole table instead of running print multiple times. Show where the results are save.
2012-02-02 11:13:08 -06:00
sinn3r
d230eeedc0
Merge branch 'mount.smbfs-creds' of https://github.com/jhartftw/metasploit-framework into jhartftw-mount.smbfs-creds
2012-02-02 10:21:21 -06:00
David Maloney
36e37e04fb
Fixes to post module cred reporting.
...
call to session.db_record.id would error if no db
was connected.
Fixes #6325
2012-02-01 12:26:35 -06:00
Tod Beardsley
e371f0f64c
MSFTidy commits
...
Whitespace fixes, grammar fixes, and breaking up a multiline SOAP
request.
Squashed commit of the following:
commit 2dfd2472f7afc1a05d3647c7ace0d031797c03d9
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:58:53 2012 -0600
Break up the multiline SOAP thing
commit 747e62c5be2e6ba99f70c03ecd436fc444fda99e
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:48:16 2012 -0600
More whitespace and indent
commit 12c42aa1efdbf633773096418172e60277162e22
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:39:36 2012 -0600
Whitespace fixes
commit 32d57444132fef3306ba2bc42743bfa063e498df
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:35:37 2012 -0600
Grammar fixes for new modules.
2012-02-01 10:59:58 -06:00
Jon Hart
4aa52203da
Renamed, switched partially to store_loot
2012-02-01 08:50:50 -08:00
sinn3r
98fbf84dac
Module should inform where the files are saved
2012-02-01 03:41:19 -06:00
sinn3r
06f7165ee6
Add Metasploit license header (it's already MSF licensed)
2012-02-01 00:49:45 -06:00
sinn3r
f23ebbc7b5
Change how creds are displayed and saved
2012-02-01 00:48:14 -06:00
sinn3r
187f630283
Merge branch 'netrc-creds' of https://github.com/jhartftw/metasploit-framework into jhartftw-netrc-creds
2012-01-31 22:45:47 -06:00
Jon Hart
b0df29c3ff
Switch to store_loot, since report_auth_info only works with Host
...
objects or IPs, currently (see
https://dev.metasploit.com/redmine/issues/6313 )
2012-01-30 23:08:02 -08:00
sinn3r
25fbe1c7d0
Merge branch 'master' of https://github.com/darkoperator/metasploit-framework
2012-01-30 19:57:29 -06:00
Tod Beardsley
6068580813
Should fix the report_auth_info call -- needs a host, not a session. Be nice if it handled a session, though.
...
[See #146 ]
2012-01-30 19:23:05 -06:00
Carlos Perez
24747e18e3
The directory path for the accounts.xml was not set properly for windows systems
2012-01-30 18:19:17 -04:00
sinn3r
1dec4c0c45
These modules should use vprint_xxx() instead of print_xxx() ... if datastore['VERBOSE']
2012-01-30 13:08:35 -06:00
Jon Hart
1b03a48540
Use desired [at] format for email
2012-01-30 08:21:58 -08:00
Jon Hart
16610d8852
Update email address to use desired [at] format
2012-01-30 08:05:08 -08:00
sinn3r
21a05ce1d6
Fix bug: NoMethodError undefined method `report_vm' ( #6298 )
2012-01-30 00:44:45 -06:00
Jon Hart
37d467ea79
Loot .netrc files, generic enum_user_directories
2012-01-29 14:03:57 -08:00
Jon Hart
5294fb57a4
Add post module to obtain SMB credentials stored for mount.smbfs
2012-01-29 12:04:26 -08:00
David Maloney
c5e667a1dc
Post Module to enumerate VirtualBox VMs for the current user.
2012-01-27 11:12:59 -06:00
David Maloney
0e0aa33c47
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-01-27 11:12:35 -06:00
David Maloney
56be45f3a4
A few minor fixes to the find vmx module
2012-01-27 11:12:17 -06:00
sinn3r
a4c876a424
No need to manually add VERBOSE as an option, it already is (built-in)
2012-01-27 02:17:59 -06:00
sinn3r
3f4dbd9df6
Merge branch 'master' of https://github.com/averagesecurityguy/metasploit-framework
2012-01-27 01:58:42 -06:00
Stephen Haywood
efda420e5f
Updates to enum_artifacts
2012-01-26 19:35:39 -05:00
sinn3r
9b78b6bd17
Hmm, the indent level of the description looks a bit funny. Fixing.
2012-01-26 17:24:05 -06:00
David Maloney
494c37c659
Adds a Multi-System post module for finding VMWare Virtual Machines
2012-01-26 16:25:50 -06:00
Tod Beardsley
33c53b1f3f
Updates vm checking
2012-01-26 13:02:39 -06:00
Dave Hull
76ebbc48ec
Update modules/post/windows/gather/dumplinks.rb
2012-01-24 23:16:40 -06:00
sinn3r
ea9e9852cf
ah man, typo!
2012-01-23 11:59:13 -06:00
sinn3r
afc547e0fb
Improve: Proper use of cmd_exec() and correct cmd path. More error handling for exec and rm. Fix bug with path setting, etc.
2012-01-23 11:54:19 -06:00
RageLtMan
5671e2f691
Downloand and execute (railgun)
2012-01-22 23:25:49 -05:00
Tod Beardsley
ad6f8257e1
MSFTidy fixes.
2012-01-18 15:01:32 -06:00
Stephen Haywood
6ad2eda24c
Windows artifacts module
2012-01-12 17:26:35 -06:00
sinn3r
02bd1f3407
Merge branch 'master' of https://github.com/averagesecurityguy/metasploit-framework
2012-01-12 17:06:14 -06:00
Stephen Haywood
cb146f9021
Used msf library for digest, fixed name.
2012-01-12 12:49:50 -05:00
David Maloney
81acfd2126
Adds hashdump and cracking modules for AIX
2012-01-06 20:31:22 -08:00
Stephen Haywood
2e60d2e01a
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2012-01-06 17:46:42 -05:00
Stephen Haywood
72072c4ef3
Added enum_artifacts
2012-01-06 17:43:50 -05:00
Tod Beardsley
7b692aa0b9
Adding references to vss modules.
2012-01-04 12:10:03 -06:00
David Maloney
12221b0433
UAC will disrupt these modules
...
Added checks for UAC.
UAC must be bypassed before using these modules.
2012-01-03 12:07:38 -08:00
David Maloney
dd0b07b2cc
Adds mixin and post modules to manipulate Volume shadowcopy Service(VSS)
2011-12-30 15:03:04 -08:00
sinn3r
a330a5c63a
Add e-mail for Brandon
2011-12-29 10:53:39 -06:00
David Maloney
05f3af1e77
Fixed typo in the windows autlogin post module
2011-12-26 11:17:17 -08:00
sinn3r
a00937b4d8
Fix typo.
2011-12-24 15:32:08 -06:00
sinn3r
87cf4cefea
Fix bug #6164
2011-12-24 15:26:20 -06:00
sinn3r
062f661991
Fix bug #6161 - Must explicitly convert e to e.to_s
2011-12-24 15:11:26 -06:00
sinn3r
8a705c9223
Fix bug #6158 - session.db_record might return nil but wasn't checked
2011-12-24 15:06:43 -06:00
sinn3r
dcb66307be
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-12-24 14:58:40 -06:00
sinn3r
2e2e28afb8
Fix bug #6160 - undefined method '[] for nil:NilClass' due to an invalid path
2011-12-24 14:57:46 -06:00
Tod Beardsley
06077a37f8
Fixes typo, variable name is paths not path.
2011-12-24 14:39:08 -06:00
sinn3r
3fe076bcd6
Check nil before using .empty?
2011-12-23 17:42:58 -06:00
Carlos Perez
3c08836f51
Typo on the file opening mode
2011-12-16 01:13:06 -04:00
sinn3r
e991094bd2
Fix host info for report_auth_info(). Change print_status vs print_line order
2011-12-15 13:05:03 -06:00
sinn3r
2648e533a2
nil bug fix
2011-12-15 12:58:21 -06:00
sinn3r
829d96ffbe
Add Windows Gather RazorSQL cred collector (Feature #6117 )
2011-12-15 11:15:44 -06:00
HD Moore
a9e4474eda
Add missing require, fix load error on invalid constant
2011-12-12 23:24:03 -06:00
sinn3r
cd0679ab5d
Increase timeout for cmd_exec()
2011-12-12 21:15:28 -06:00
sinn3r
6e8fdf1ce1
Apply patch #6081
2011-12-12 19:51:02 -06:00
sinn3r
5ba5bbf077
Apply feature #6074
2011-12-12 12:03:34 -06:00
sinn3r
4e95eb5d34
Update description (Feature #6080 )
2011-12-12 11:33:17 -06:00
sinn3r
1694e22e74
Merge pull request #42 from chao-mu/master
...
Fix for issue #6012 ; post/windows/manage/enable_rdp broken
2011-12-06 23:01:20 -08:00
sinn3r
fd1935b3de
show is_admin
2011-12-07 00:23:06 -06:00
David Maloney
8fdfd9f97b
Additional verbosity on WLAN error message
...
to explain that the modules will error if the
Wireless Zero Configuration Service is turned off.
2011-12-06 20:42:11 -05:00
David Maloney
459eafd96d
Fix to WLAN mdoules for when wLAN not installed on target
...
The modules did not close out properly when WLAN was determined not to be
installed on the host. This fix corrects that.
fixes #6070
2011-12-06 20:22:47 -05:00
sinn3r
679ef457d8
Correct spelling, thx bannedit
2011-12-04 14:59:54 -06:00
sinn3r
f26447e021
Correct my own weird grammar
2011-12-04 14:50:53 -06:00
sinn3r
e07868d613
Catch possible exception if WTSGetActiveConsoleSessionId isn't available on the target machine
2011-12-04 14:48:45 -06:00
chao-mu
e52ebd602f
Encorporating patch submitted by Boris Lukashev to fix issue 6012 (Post module enable rdp broken and fixed (here)). Fix was to have the module include Msf::Post::Windows::WindowsServices, make service_change_startup available
2011-12-04 15:26:43 -05:00
sinn3r
89ed25978d
Add feature #6048
2011-12-04 13:44:21 -06:00
sinn3r
950b4a54a0
Fix bug #6050
2011-12-03 22:00:48 -06:00
HD Moore
27974c4c27
Merge branch 'master' of github.com:rapid7/metasploit-framework into fastlib
...
Conflicts:
modules/auxiliary/scanner/http/axis_login.rb
modules/exploits/multi/http/axis2_deployer.rb
modules/post/multi/gather/thunderbird_creds.rb
modules/post/windows/gather/credentials/imvu.rb
msfopcode
2011-12-03 14:07:09 -06:00
sinn3r
30e3607ec0
The SUCCESS message may not be constant across foreign language verions according to jduck, chaning back to the old way
2011-12-02 15:11:27 -06:00
sinn3r
2d320b1828
Fix bug: table being saved while empty
2011-12-01 22:47:42 -06:00
sinn3r
608a5586b2
Actually, don't really have a good reason for that exception handling anymore. I think.
2011-12-01 22:47:42 -06:00
sinn3r
0eb3b5a49b
Fix undefined method 'cmd_exec' bug. Thx Boris.
2011-12-01 22:47:42 -06:00
sinn3r
19fae182da
Add Thunderbird credential collector (Feature #6014 )
2011-12-01 22:47:42 -06:00
James Lee
a91926716d
don't dup the last part of the key, fixes #6036
2011-12-01 15:24:58 -07:00
sinn3r
d0db88d35d
Make key_base an instance var so other functions can access it. Bug #6036
2011-12-01 14:41:44 -06:00
sinn3r
8399ce6e41
Fix bug #6031
2011-11-30 15:22:52 -06:00
Rob Fuller
e439aba779
switched %USERPROFILE% to %APPDATA% to make the code a bit more universal
2011-11-29 20:08:44 +00:00
Tod Beardsley
f503bd9488
Fixes #5749 by converting to unix-style linefeeds and forcing jtr modules to read files as binary, and updating msftidy to allow for r+b as a ghetto append.
2011-11-28 17:52:34 -06:00
Rob Fuller
c411c216c0
Solved most of msftidy issues with the /modules directory
2011-11-28 17:10:29 -06:00
sinn3r
82a5da866a
Fix bug: table being saved while empty
2011-11-25 00:54:17 -06:00
sinn3r
ec3c37d963
Actually, don't really have a good reason for that exception handling anymore. I think.
2011-11-25 00:41:28 -06:00
sinn3r
3e7c821119
Fix undefined method 'cmd_exec' bug. Thx Boris.
2011-11-25 00:34:33 -06:00
sinn3r
7571466014
Add Thunderbird credential collector (Feature #6014 )
2011-11-24 19:39:34 -06:00
David Maloney
4ef7c373e9
Fix to typo in the tables being pushed.
2011-11-22 00:06:58 -06:00
David Maloney
f81567fb6f
Fix to typo in the tables being pushed.
2011-11-21 15:49:57 -08:00
James Lee
f35b6c5269
msftidy on post modules for spaces at EOL
2011-11-20 12:53:25 +11:00
sinn3r
a4cadf0d53
remove the extra comment that's not used
2011-11-19 12:48:39 -06:00
Tod Beardsley
eca1253439
updating sudo
2011-11-18 10:17:43 -06:00
Tod Beardsley
356e0e6fb5
Moving sudo from linux to multi, because it is.
2011-11-18 10:16:57 -06:00
Tod Beardsley
fa77909c67
whitespace fix
2011-11-18 08:51:07 -06:00
Tod Beardsley
55367fad4f
Merge pull request #25 from rapid7/post_module_sudo
...
Post module sudo
2011-11-18 06:30:40 -08:00
David Maloney
11c1f0983f
Fixes #5993
2011-11-17 18:05:36 -08:00
David Maloney
77cba9de7c
Merge branch 'cbdfix'
...
Conflicts:
modules/post/windows/gather/credentials/imvu.rb
modules/post/windows/gather/forensics/duqu_check.rb
modules/post/windows/recon/computer_browser_discovery.rb
2011-11-17 14:55:20 -08:00
Tod Beardsley
d8b77564ef
Tidying up, fixing csh echo behavior
2011-11-17 16:29:02 -06:00
David Maloney
3bfe7e9b98
fix to comptuer browser discovery to output properly and sotre as loot
...
added additional option to save detected hosts in the db.
2011-11-17 14:17:28 -08:00
Tod Beardsley
9878517f80
Cleanup and light refactoring, deal with slowpoke linux telnet cmd_exec()
2011-11-17 13:19:13 -06:00
Tod Beardsley
84fb5b441a
Cleaning up some names and descs
2011-11-17 07:47:26 -06:00
David Maloney
eae171b216
Addresses issue #5984
2011-11-16 19:07:56 -08:00
Tod Beardsley
93a133d5de
Always try both export and setenv. Fixups to allow for correct reading from echoy nix shells. Fixes is_root? to not treat an empty string as 0
2011-11-16 16:48:19 -06:00
Tod Beardsley
725431dbdb
Simpler method for setenv vs export. Tested on csh, ksh, zsh, sh, bash
2011-11-15 19:31:15 -06:00
Tod Beardsley
d969006268
Adding zsh
2011-11-15 19:10:25 -06:00
Tod Beardsley
5cdab2ef41
Less repetitive error messages
2011-11-15 18:17:25 -06:00
Tod Beardsley
26659d8b17
Adding a sudo post module for easier automation
2011-11-15 17:38:45 -06:00
David Maloney
d8347a1245
Fixes to post modules that store creds as loot.
...
All post modules that store creds as loot now store in
a CSV format with User and then Password always as the
first two columns.
2011-11-15 14:13:51 -08:00
David Maloney
f6b0ffd630
Cleanup of the stack traces in the pidgin and filezilla client cred modules
2011-11-15 12:19:15 -08:00
David Maloney
8d47883af0
Moving the wlan directory up a level. It makes more sense in it's own area
...
instead of under gather.
2011-11-15 08:29:13 -08:00
David Maloney
c8142043e9
Fixes to credential handling to downcase usernames whenever they are not case sensitive.
...
Also report_auth_info now checks to see if a non-case sensitive version of the cred
may already exist.
2011-11-14 22:50:52 -08:00
andurin
5856112797
Quickfix: missing require in post/windows/escalate/getsystem.rb
...
Resolves:
[-] WARNING! The following modules could not be loaded!
[-] contrib/metasploit-framework/modules/post/windows/escalate/getsystem.rb: NameError uninitialized constant Msf::Post::Windows
2011-11-13 14:25:31 +01:00
HD Moore
2ec21858c6
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-11 16:20:27 -06:00
HD Moore
65fc693c66
Add a getsystem post module for automation
2011-11-11 16:19:49 -06:00
Tod Beardsley
2f6c9d6d08
Removing a hated semi-colon, noting that the rescue does nothing
2011-11-11 13:59:14 -06:00
sinn3r
e1cea699a7
yo, format police is in town for some law and order around here
2011-11-11 11:39:13 -06:00
Tod Beardsley
184eee0e64
Merge branch 'duqu'
2011-11-11 10:22:12 -06:00
Tod Beardsley
e03b6d27d2
Adding a colon to Request keyword mostly just to test local changes
2011-11-11 10:20:52 -06:00
Marcus J. Carey
ef1a86e839
adding email address
2011-11-11 09:44:18 -06:00
David Maloney
6ae8bbb6ce
Fixes #5832
2011-11-10 21:57:24 -08:00
Marcus J. Carey
5a75a67830
cleaning up tabs and rename variables for clarity
2011-11-10 23:26:19 -06:00
sinn3r
7191542503
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-10 18:09:55 -06:00
sinn3r
457b7cb6d1
sinn3r: *knock, knock* Whitespace: who's there? sinn3r:Me, I kill you
2011-11-10 18:08:28 -06:00
wchen-r7
0675def3d4
Whitespace, I kill you.
2011-11-10 18:00:50 -06:00
Marcus J. Carey
e140361ffd
change keys to array instead of comma delimited string
2011-11-10 16:11:11 -06:00
Marcus J. Carey
7348a71c24
adding duqu_check.rb
2011-11-10 15:20:48 -06:00
wchen-r7
a9ebfbd604
Add feature #5912
2011-11-10 03:13:57 -06:00
wchen-r7
3ff1449995
Do report_note()
2011-11-10 02:16:25 -06:00
Carlos Perez
3ac11b7d44
Whitespace clean up
...
git-svn-id: file:///home/svn/framework3/trunk@14190 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 15:48:04 +00:00
Carlos Perez
4490bb4683
handle better certain options that may use = sign
...
git-svn-id: file:///home/svn/framework3/trunk@14189 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 15:14:00 +00:00
David Maloney
2d80d1e144
Fixes Cred Sourcing in report_auth_info() for post modules.
...
git-svn-id: file:///home/svn/framework3/trunk@14187 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 03:34:49 +00:00
Carlos Perez
28c2408fdd
handle better certain options that may use = sign
...
git-svn-id: file:///home/svn/framework3/trunk@14186 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 03:22:54 +00:00
Wei Chen
e767214411
Fix: whitespaces, svn propset, author e-mail format
...
git-svn-id: file:///home/svn/framework3/trunk@14175 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-06 22:02:26 +00:00
Wei Chen
b1d38a44a4
Clenaup
...
git-svn-id: file:///home/svn/framework3/trunk@14174 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-06 21:23:21 +00:00
Wei Chen
70a64bf4db
Fix indent level and whitespace
...
git-svn-id: file:///home/svn/framework3/trunk@14170 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-05 23:18:30 +00:00
Wei Chen
1272736b72
indent level fix
...
git-svn-id: file:///home/svn/framework3/trunk@14162 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 21:04:54 +00:00
David Maloney
a0aebe98bb
Adds the community submitted ePO database password post module
...
Did some minor code cleanup and replaced the hostname resolution with mubix's railgun
code to make the victim do the resolution. This should be more reliable.
Fixes #5210
git-svn-id: file:///home/svn/framework3/trunk@14160 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 20:15:14 +00:00
David Maloney
69193f9fe4
Some quick fixes to enum_cred_store
...
Fixes #5218
git-svn-id: file:///home/svn/framework3/trunk@14159 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 19:28:53 +00:00
David Maloney
07a41924a6
Added mubix's enum_termserv post module.
...
Fixes #5914
git-svn-id: file:///home/svn/framework3/trunk@14158 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 18:47:22 +00:00
Wei Chen
057725450c
svn propset. fix author email format
...
git-svn-id: file:///home/svn/framework3/trunk@14154 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 08:16:36 +00:00
Carlos Perez
f23389390b
better handling of hosts with no USB History
...
git-svn-id: file:///home/svn/framework3/trunk@14153 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 22:59:39 +00:00
Carlos Perez
86a7807b97
Added a couple more checks for the names of the post modules provided
...
git-svn-id: file:///home/svn/framework3/trunk@14152 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 22:40:29 +00:00
Carlos Perez
1c5d44c40a
Fix variable declaration
...
git-svn-id: file:///home/svn/framework3/trunk@14151 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 22:28:08 +00:00
HD Moore
c7f0568769
Fix next vs return issue
...
git-svn-id: file:///home/svn/framework3/trunk@14149 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 18:34:30 +00:00
David Maloney
7091fc1eea
Adding mubix's post modules
...
Fixes #5916
Fixes #5913
Fixes #5915
git-svn-id: file:///home/svn/framework3/trunk@14148 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 03:00:51 +00:00
David Maloney
131ffe4ab2
Fixed inconsistencies in how data was being passed to report_auth_info(). The command dispatcher and filezilla
...
server cred module both used the accessor :ptype but report_auth_info looks for :type.
While ptype is what the db field is called, almsot everything else references :type so it is better
for consistency to keep everything at :type.
Fixes #5906
git-svn-id: file:///home/svn/framework3/trunk@14141 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-02 02:47:28 +00:00
David Maloney
4ab4a2cec7
fixes issues with with imvu, forgot the require statement.
...
git-svn-id: file:///home/svn/framework3/trunk@14140 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-01 21:50:06 +00:00
Wei Chen
1b9a6bb20f
Fix :host key
...
git-svn-id: file:///home/svn/framework3/trunk@14130 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-31 19:50:22 +00:00
Wei Chen
10dd6ff38e
Fix "TypeError can't convert String into Hash" when using report_note()
...
git-svn-id: file:///home/svn/framework3/trunk@14129 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-31 19:48:20 +00:00
Wei Chen
f64893d305
Consistent naming
...
git-svn-id: file:///home/svn/framework3/trunk@14122 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-30 08:20:18 +00:00