Commit Graph

72 Commits (30f3e8fda20021a5a4972ca868724af4eb07e5c8)

Author SHA1 Message Date
HD Moore c71ca00efb Remove debugging line
git-svn-id: file:///home/svn/framework3/trunk@9224 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 16:17:36 +00:00
HD Moore 48a03e1dd3 Handle OS X better
git-svn-id: file:///home/svn/framework3/trunk@9223 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 16:08:59 +00:00
Joshua Drake 0ea6eca4bc big module whitespace/formatting cleanup pass
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Tod Beardsley 08117ca000 Forcing :critical => true for report_auth_info
git-svn-id: file:///home/svn/framework3/trunk@9150 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 22:23:37 +00:00
Tod Beardsley 1c6891a3f8 For smb_login, quit trying a username if we learn that the password is expired or if the account is locked out or disabled.
git-svn-id: file:///home/svn/framework3/trunk@9117 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-22 22:12:13 +00:00
Tod Beardsley bd94145d8d Allows reporting auth credentials to be optional with exploit/windows/smb/psexec. Sometimes you don't want this, especially if you already have an auth credential via smb_login.
For auxiliary/scanner/smb/smb_login, if a password hash is used instead of a password, record it as a :hash instead of a :pass when reporting to the DB.



git-svn-id: file:///home/svn/framework3/trunk@9116 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-22 17:23:29 +00:00
Tod Beardsley 888e80f92c Fixes up various usability bugs with AuthBrute, many of which revolved around smb_login tests.
git-svn-id: file:///home/svn/framework3/trunk@9086 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 17:29:47 +00:00
HD Moore 56d50d6794 match enumusers output more closely
git-svn-id: file:///home/svn/framework3/trunk@9069 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-14 04:39:51 +00:00
Mario Ceballos 29755d7445 updated with the db2remotecmd pipe.
git-svn-id: file:///home/svn/framework3/trunk@9067 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-14 00:59:32 +00:00
HD Moore 1de8e13378 Remove the stack traces from these scanners
git-svn-id: file:///home/svn/framework3/trunk@9024 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 03:57:22 +00:00
Tod Beardsley 6d606a7587 Fixes #1304. Removes the this_cred bit since that got swapped out for the new auth_brute scheme.
git-svn-id: file:///home/svn/framework3/trunk@8915 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 13:27:29 +00:00
James Lee dd26a227ef targ_host -> target_host
git-svn-id: file:///home/svn/framework3/trunk@8908 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:05:23 +00:00
Tod Beardsley 83d96d713c Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently.
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 20:07:26 +00:00
HD Moore 9632f8251a Move OS-level fingerprints out, report note-level fingerprints instead
git-svn-id: file:///home/svn/framework3/trunk@8869 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:09:04 +00:00
HD Moore 480380003c Make verbose status printing standardized across login modules
git-svn-id: file:///home/svn/framework3/trunk@8866 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-21 18:42:47 +00:00
HD Moore 0f7a6cd1f2 Store the name and domain in the service info
git-svn-id: file:///home/svn/framework3/trunk@8826 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 21:35:21 +00:00
HD Moore 821a0bcf37 SMB share enumeration
git-svn-id: file:///home/svn/framework3/trunk@8813 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-14 03:44:50 +00:00
Tod Beardsley a5e187bd69 Add the ability to slow down brute force sessions.
git-svn-id: file:///home/svn/framework3/trunk@8719 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 23:29:26 +00:00
HD Moore c9973be2d7 make the smb_login module smarted about lockouts, disabled accounts, and samba
git-svn-id: file:///home/svn/framework3/trunk@8577 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-21 19:31:20 +00:00
HD Moore a2383611c2 Fix single user/pass usage
git-svn-id: file:///home/svn/framework3/trunk@8576 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-21 19:08:36 +00:00
Tod Beardsley f58558f605 Updated all the brute force login modules to record successful logins and avoid duplicating credentials.
git-svn-id: file:///home/svn/framework3/trunk@8553 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 19:04:51 +00:00
kris 5a5fb84e2c strings, not constants
git-svn-id: file:///home/svn/framework3/trunk@8502 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-15 13:34:07 +00:00
HD Moore ca4b9bbd52 Ignore lang/service pack for non-Windows hosts in the OS information
git-svn-id: file:///home/svn/framework3/trunk@8490 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 17:25:05 +00:00
HD Moore 337e00d57e Swap flavor/name
git-svn-id: file:///home/svn/framework3/trunk@8489 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 17:13:55 +00:00
HD Moore 352a367857 Handle OS X better
git-svn-id: file:///home/svn/framework3/trunk@8488 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 17:13:00 +00:00
HD Moore 9c227ea0e7 Improved auxiliary detection
git-svn-id: file:///home/svn/framework3/trunk@8481 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 23:26:07 +00:00
HD Moore 993ba44fcf SMB updates, better reporting of SSL status for HTTP
git-svn-id: file:///home/svn/framework3/trunk@8459 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 22:37:00 +00:00
HD Moore a92f5f207b Handle null user lists
git-svn-id: file:///home/svn/framework3/trunk@8429 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 16:43:26 +00:00
HD Moore 11e8710a60 Catch OpenDomain failures
git-svn-id: file:///home/svn/framework3/trunk@8428 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 16:34:49 +00:00
James Lee ca7f85c054 more consistent printing of found credentials
git-svn-id: file:///home/svn/framework3/trunk@8164 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-19 19:06:03 +00:00
James Lee cb9cf943b4 Remove the database lookups so we don't trigger lockout policies unnecessarily. We'll probably have to revisit this at some point
git-svn-id: file:///home/svn/framework3/trunk@8145 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-18 21:19:28 +00:00
HD Moore 7390b1d42d Add and improve database reporting to existing scanner modules
git-svn-id: file:///home/svn/framework3/trunk@8131 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-15 03:25:34 +00:00
HD Moore 0b7df74615 Rename modules to be consistent with the new convention
git-svn-id: file:///home/svn/framework3/trunk@8129 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-15 02:55:08 +00:00
James Lee df1cb6b36e move smb/login. see 757
git-svn-id: file:///home/svn/framework3/trunk@8121 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-14 18:51:04 +00:00
James Lee 54095a585e update the auth bruteforcer, and use it in smb/login
git-svn-id: file:///home/svn/framework3/trunk@8116 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-14 16:58:43 +00:00
HD Moore dded66d71a Fixed up to work against Windows 2000 -> Windows 7
git-svn-id: file:///home/svn/framework3/trunk@8106 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-13 14:37:15 +00:00
HD Moore de2a293c26 Lookup users via SAMR
git-svn-id: file:///home/svn/framework3/trunk@8103 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-13 00:27:11 +00:00
HD Moore a2b883ff3d Adds a SID lookup module
git-svn-id: file:///home/svn/framework3/trunk@8101 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-12 07:39:53 +00:00
HD Moore 6a10d6b6ca Cleanup for tcp mixin, report smb version better, downcase service names
git-svn-id: file:///home/svn/framework3/trunk@8074 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-05 18:47:04 +00:00
James Lee 02eb7ab80d massive changes to the database api. Auxiliary::Report is now just a bunch of stubs into the main DBManager, most aux modules should just work, but they haven't all been tested. introduces a get_auth_info method for pulling credentials out of the db. other db api methods should be more standardized now. cross your fingers
git-svn-id: file:///home/svn/framework3/trunk@8028 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-29 23:48:45 +00:00
HD Moore 922cef26fa Store the domain name in the SMB client object, along with other fields provided by NTLMSSP responses. Show the domain name and netbios name in the version scanner. Update MS06-070 to remove the default target, use the domain name from the server response, and use a more reliable return address for 2000 SP4.
git-svn-id: file:///home/svn/framework3/trunk@8022 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-29 14:00:49 +00:00
HD Moore 166489ad5f Update a few scanner modules to write to the database properly
git-svn-id: file:///home/svn/framework3/trunk@7992 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-27 07:30:50 +00:00
HD Moore 7505a4568f This commit adds a SMB 2.0 scanner - it also reports uptime and dialect version
git-svn-id: file:///home/svn/framework3/trunk@7021 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-09 15:51:06 +00:00
HD Moore 2061f2e048 Try 445 then 139 - faster in most cases
git-svn-id: file:///home/svn/framework3/trunk@6675 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-20 02:43:56 +00:00
James Lee 5ea6a1027a report os detection in smb version scanner
git-svn-id: file:///home/svn/framework3/trunk@6494 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-21 05:59:46 +00:00
kris 37c2e301ed replacing defunct framework URL in header comments in most modules and pcap_log
git-svn-id: file:///home/svn/framework3/trunk@6479 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-13 14:33:26 +00:00
HD Moore 4d00350085 Rename to be consistent
git-svn-id: file:///home/svn/framework3/trunk@6408 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 06:05:38 +00:00
HD Moore 26b9903b0d Changes Auxiliary::Scanner to use a new module instance for each thread, updates associated mixins and modules to support this change.
git-svn-id: file:///home/svn/framework3/trunk@6401 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 05:49:33 +00:00
kris 804ff61df6 big svn:keywords run
git-svn-id: file:///home/svn/framework3/trunk@6345 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-15 18:12:33 +00:00
James Lee 7874476b58 add smb_login scanner module from tebo
git-svn-id: file:///home/svn/framework3/trunk@6115 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-11 05:25:54 +00:00