infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,362 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

15362 Commits (32373c1a6a8966d8f98b58e849459507aa948f2b)

Author SHA1 Message Date
sinn3r c5262a3e64 Update the description about AllowUnencrypted 2012-10-31 15:11:00 -05:00
David Maloney d2d137ce68 adds the WinRM CMD execution module 2012-10-31 15:10:45 -05:00
jvazquez-r7 c27a4d5de2 Merge branch 'master' into bug/handle-100-continue 2012-10-31 18:56:33 +01:00
m m e170c1e3e3 typo in centos5 range 2012-10-31 18:28:26 +01:00
m m f7481b160c add centos5 target 2012-10-31 18:21:41 +01:00
Luke Imhoff de07ca5f07 Merge branch 'bug/wrong-file_changed-argument' of github.com:/rapid7/metasploit-framework into bug/wrong-file_changed-argument 2012-10-31 11:49:02 -05:00
jvazquez-r7 ef0f415c51 related to #980 adds support for HttpClient 2012-10-31 17:46:57 +01:00
Luke Imhoff 471ac6d15d Use typed_enable?(type) instead of protected enablement_by_type[type] 
Msf::Modules::Loader::Archive#each_module_reference_name tried to check
the enabled types for the module_manager by accessing the
enabledment_by_type Hash, which is protected.  Instead, it should use
the public type_enabled? method.

Add specs to test all of Msf::Modules::Loader::Archive while testing
each_module_reference_name.  In order to properly test that modules
could be found in archives, I had to produce a fastlib archive, so there
is now a spec for FastLib.dump and FastLib.load.  Some specs are marked
pending as I found a bug in FastLib, which has a work-around.  The bug
is filed in PivotalTracker as
https://www.pivotaltracker.com/story/show/38730815 and the pending tests
include the URL also in their tags.
 2012-10-31 11:43:28 -05:00
jvazquez-r7 91e6b7cd28 added ie8 target 2012-10-31 11:57:38 +01:00
jvazquez-r7 a3358a471f Merge branch 'aladdin_bof' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-aladdin_bof 2012-10-31 11:57:20 +01:00
esmnemon 81e56663fd a few ruby cleanups 2012-10-31 09:59:47 +01:00
corelanc0d3r da4012a31f Merge branch 'master' of git://github.com/rapid7/metasploit-framework 2012-10-31 09:56:56 +01:00
sinn3r ec8a2955e1 Add OSVDB-86723 Aladdin Knowledge System ChooseFilePath Bof 2012-10-31 03:32:43 -05:00
jvazquez-r7 a2fd377326 module cleanup 2012-10-31 09:20:00 +01:00
jvazquez-r7 38a9761d6e Merge branch 'ntp_readvars' of https://github.com/crashbrz/metasploit-framework into crashbrz-ntp_readvars 2012-10-31 09:06:31 +01:00
Ewerson Guimaraes (Crash) ffe8a980f4 NTP Module - Remove [WARNING] Carriage return EOL 2012-10-30 22:25:23 -02:00
Ewerson Guimaraes (Crash) b085e8ed73 Revert "Update NTP Module" 
This reverts commit 8fd34a4475.
 2012-10-30 21:43:21 -02:00
Ewerson Guimaraes (Crash) 8fd34a4475 Update NTP Module 
Changed the branche and remove CR
 2012-10-30 21:08:01 -02:00
corelanc0d3r 6346f0d772 Merge branch 'master' of git://github.com/rapid7/metasploit-framework 2012-10-30 20:48:36 +01:00
James Lee 4073bec136 Add missing require 2012-10-30 13:38:51 -05:00
James Lee be57f7ca74 Merge branch 'bug/wrong-file_changed-argument' of github.com:rapid7/metasploit-framework into bug/wrong-file_changed-argument 2012-10-30 13:07:07 -05:00
Luke Imhoff 6c11b870da Check for payload in :type instead of :modification_time 
Just had a brain fart when converting the hash key names and translated
:mtype to :modification_time instead of the correct :type.  Correct key
names are in
Msf::ModuleManager::Cache#module_info_by_path_from_database!.
 2012-10-30 12:10:31 -05:00
jvazquez-r7 357fd1b955 add peer info to print_error message 2012-10-30 17:47:17 +01:00
jvazquez-r7 201f7766d8 Merge branch 'clansphere_lfi_read' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-clansphere_lfi_read 2012-10-30 17:45:45 +01:00
sinn3r a636971b71 Change error message 2012-10-30 11:39:25 -05:00
m m f819ec8e75 typo 2012-10-30 17:19:23 +01:00
m m 3e3c518753 remove SessionTypes as per egypt 2012-10-30 17:13:57 +01:00
David Maloney d3bb2b4891 minor fixups 2012-10-30 11:08:57 -05:00
Tod Beardsley 432b317edc Merge remote branch 'jlee-r7/bug/rm7350-broken-http-tunneling' 
Tested and works, screens in Pull #990.

[Fixes #990]
[FixRM #7350]
 2012-10-30 10:57:38 -05:00
James Lee d402b3fd08 Merge branch 'bug/wrong-file_changed-argument' of github.com:rapid7/metasploit-framework into bug/wrong-file_changed-argument 2012-10-30 10:54:26 -05:00
Luke Imhoff 5709ffc42b Use Msf::Config.install_root instead of Msf.root 
Msf::Config.install_root already existed, but I didn't know about it
until egypt pointed it out, so remove the new Msf.root and use
Msf::Config.install_root in the specs instead.
 2012-10-30 10:46:02 -05:00
sinn3r 3f3e6814a3 Make sure no extra '/' in there 2012-10-30 10:40:56 -05:00
jvazquez-r7 26808093d8 Merge branch 'nil_res_bug_fixes' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-nil_res_bug_fixes 2012-10-30 16:18:05 +01:00
James Lee 2f41452879 Merge branch 'rapid7' into bug/wrong-file_changed-argument 2012-10-30 10:11:06 -05:00
David Maloney 736b8354d8 Merge branch 'upstream-master' into WinRM_piecemeal 2012-10-30 09:15:36 -05:00
David Maloney c91f0ca535 Adds the WQL execution module 2012-10-30 09:13:55 -05:00
corelanc0d3r 5b6aca1c27 Merge branch 'master' of git://github.com/rapid7/metasploit-framework 2012-10-30 14:23:42 +01:00
jvazquez-r7 5e873d0697 adding peer information to error message 2012-10-30 12:15:01 +01:00
jvazquez-r7 196d53aee4 Merge branch 'manageengine_traversal' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-manageengine_traversal 2012-10-30 12:12:04 +01:00
James Lee d0650dfb25 Put a bandaid over getsockname 
Depending on how a socket was created, #getsockname will return either a
struct sockaddr as a String (the default ruby Socket behavior) or an
Array (the extend'd Rex::Socket::Tcp behavior). Avoid the ambiguity when
generating SSL certificates for meterpreter handlers by always picking a
random hostname.

This is by no means a proper fix for the underlying problem of
Socket#getsockname having ambiguous behavior before and after being
extended with Rex::Socket::Tcp. It does, however, solve the immediate
problem of not being able to create tunneled meterpreter sessions over
http(s) sessions.

[SeeRM #7350]
 2012-10-29 22:45:46 -05:00
Zach Grace 5c27c9c953 Added a print_good from the results of store_loot 2012-10-29 15:18:13 -05:00
corelanc0d3r d9764bf383 Merge branch 'master' of git://github.com/rapid7/metasploit-framework 2012-10-29 20:30:56 +01:00
Zach Grace eda5e8a12f Changed platform type from windows to win and fixed an indentation error. 2012-10-29 14:23:50 -05:00
sagishahar 53c7479d70 Add Windows 8 support 
Verified with Windows 8 Enterprise Evaluation
 2012-10-29 20:12:47 +02:00
sagishahar 8c46c59142 Add support to Windows 8 
Verified with Windows 8 Enterprise Evaluation
 2012-10-29 20:11:27 +02:00
sinn3r c878b9077b Rename the DeviceExpert module to avoid confusion 2012-10-29 12:25:07 -05:00
sinn3r 2a202e9035 Add OSVDB-86563 ManageEngine SecurityManager dir traversal 2012-10-29 12:23:48 -05:00
m m 3855ba88b1 add meterpreter/command support to samba exploit using ROP 2012-10-29 17:33:00 +01:00
Tod Beardsley 5c0fb2789f Merge branch 'module-metasploit-pcaplog-privesc' into rapid7-master 2012-10-29 11:32:32 -05:00
Tod Beardsley 65e27ff38a Warn about the potential to jack up /etc/passwd 
This needs to be underlined. It's too easy to wang up /etc/passwd by
accident.

This closes PR #632
[Fixes #38593685]
 2012-10-29 11:28:27 -05:00