Commit Graph

926 Commits (3577a364be80008f33d9b902e9ea3f6a3257173c)

Author SHA1 Message Date
sinn3r f6baf824b6 The USER_FILE path is wrong. 2012-09-27 01:33:11 -05:00
sinn3r 75d40d4d82 Make msftidy happy 2012-09-27 01:33:11 -05:00
Cristiano Maruti 99ec988485 Updated with wordlist path registered options 2012-09-27 01:33:11 -05:00
Cristiano Maruti 75f5e24178 Dell iDrac login aux scanner 2012-09-27 01:33:11 -05:00
jvazquez-r7 270fa1b87b updated descriptions for hp sitescope modules tested over linux 2012-09-05 23:25:08 +02:00
sinn3r bed3c7bbac Merge branch 'hp_sitescope_loadfilecontent_fileaccess' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-hp_sitescope_loadfilecontent_fileaccess 2012-09-05 13:59:49 -05:00
sinn3r 598fdb5c50 Merge branch 'hp_sitescope_getsitescopeconfiguration' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-hp_sitescope_getsitescopeconfiguration 2012-09-05 13:58:39 -05:00
jvazquez-r7 20655232d7 cleanup, tested and added osvdb reference 2012-09-05 20:03:46 +02:00
jvazquez-r7 c6f5b1f072 cleanup, test, osvdb reference 2012-09-05 19:56:04 +02:00
jvazquez-r7 ea2eb046c3 cleanup, final test, osvdb reference 2012-09-05 19:45:50 +02:00
jvazquez-r7 166f68b194 added module for ZDI-12-177 2012-09-05 12:54:30 +02:00
jvazquez-r7 534ab55e5c Added module for ZDI-12-173 2012-09-05 12:53:03 +02:00
jvazquez-r7 8a50ca2f47 Added module for ZDI-12-176 2012-09-05 12:51:25 +02:00
sinn3r 638d9d1095 Fix nil res bug, change action name, etc 2012-08-25 02:41:50 -05:00
Ewerson Guimaraes (Crash) cad590488d Update modules/auxiliary/scanner/http/http_traversal.rb 2012-08-24 15:47:07 -03:00
Tod Beardsley 586d937161 Msftidy fix and adding OSVDB 2012-08-15 13:43:50 -05:00
Daniel Miller db4f31de76 Fix use of URI option for glassfish_login
auxiliary/scanner/http/glassfish_login offers URI option to set the path
where Glassfish is installed, but it doesn't work. Replaced it with
TARGETURI and call target_uri.path to get a base path.
2012-08-10 15:44:53 -05:00
sinn3r b46fb260a6 Comply with msftidy
*Knock, knock!*  Who's there? Me, the msftidy nazi!
2012-08-07 15:59:01 -05:00
sinn3r f1e7ef06cc Add webpagetest dir traversal module
How did I forget this while writing the exploit?
2012-08-06 03:11:07 -05:00
sinn3r ecb4e20c92 Instead of deleting the "/", here's a different approach 2012-07-06 01:23:41 -05:00
sinn3r 7876d7fd60 Delete the extra "/" 2012-07-06 01:20:31 -05:00
sinn3r 686f176a99 Correct path 2012-07-06 01:12:47 -05:00
sinn3r 0c18662d46 Make msftidy happy and change the traversal option 2012-07-06 01:10:39 -05:00
sinn3r 3b7e1cd73a Add Dillion's module for Wangkongbao 2012-07-06 00:54:55 -05:00
sinn3r 68c582873b Add the MSF license text 2012-06-27 17:11:00 -05:00
jvazquez-r7 d3bc78c53b applied changes proposed by sinn3r 2012-06-27 23:55:51 +02:00
jvazquez-r7 2c5cc697c9 Added auxiliary module for CVE-2012-2926 2012-06-27 10:21:18 +02:00
HD Moore 348a0b8f6e Merge branch 'master' into feature/vuln-info 2012-06-24 23:00:13 -05:00
HD Moore c28d47dc70 Take into account an integer-normalized datastore 2012-06-24 23:00:02 -05:00
HD Moore e31a09203d Take into account an integer-normalized datastore 2012-06-24 22:59:14 -05:00
sinn3r 05eaac9085 Fix possible param duplicates 2012-06-24 19:05:42 -05:00
HD Moore c388cba421 Fix up modules calling report_vuln() to use new syntax 2012-06-17 23:39:20 -05:00
HD Moore 5006db7550 The cert module now defaults SSL to true (didnt make sense) 2012-06-15 10:55:53 -05:00
HD Moore b55f233f16 The cert module now defaults SSL to true (didnt make sense) 2012-06-15 10:55:07 -05:00
James Lee ef84ce68e4 Fixes a module that used Wmap stuff without including it
[FIXRM #6983]
2012-06-13 15:58:54 -06:00
sinn3r 698e2eab68 Fix nil res when vprints 2012-06-06 09:53:19 -05:00
sinn3r 462a91b005 Massive whitespace destruction
Remove tabs at the end of the line
2012-06-06 00:44:38 -05:00
sinn3r 3f0431cf51 Massive whitespace destruction
Remove whitespace found at the end of the line
2012-06-06 00:36:17 -05:00
sinn3r c30af98b53 Massive whitespace destruction
Remove all the lines that have nothing but whitespace
2012-06-06 00:22:36 -05:00
sinn3r 0fcc53b0a2 Handle nil for get_once 2012-06-04 15:31:10 -05:00
sinn3r a071d2805e Fix the rest of possible nil res bugs I've found 2012-06-04 14:56:27 -05:00
sinn3r 01803c4a33 Fix possible nil res. Bug #6939. Part 1. 2012-06-04 13:11:47 -05:00
Steve Tornio 0759c3b75c Adding swtornio's OSVDB ref
Watch the trailing commas, that wangs up Ruby 1.8.7 and prior.

Squashed commit of the following:

commit c00363993a726cd0c87fbaee769c44f680feff72
Author: Tod Beardsley <todb@metasploit.com>
Date:   Mon Jun 4 09:33:18 2012 -0500

    Removing trailing comma

commit 594cae0cab60ba0493a6c50a001cd6885f05522b
Author: Steve Tornio <swtornio@gmail.com>
Date:   Mon Jun 4 09:10:36 2012 -0500

    add osvdb ref
2012-06-04 09:34:28 -05:00
Christian Mehlmauer 3752c10ccf Adding FireFart's RPORT(80) cleanup
This was tested by creating a resource script to load every changed
module and displaying the options, like so:

````
use auxiliary/admin/2wire/xslt_password_reset
show options
use auxiliary/admin/http/contentkeeper_fileaccess
show options
````

...etc. This was run in both the master branch and FireFart's branch
while spooling out the results of msfconsole, then diffing those
results. All modules loaded successfully, and there were no changes to
the option sets, so it looks like a successful fix.

Thanks FireFart!

Squashed commit of the following:

commit 7c1eea53fe3743f59402e445cf34fab84cf5a4b7
Author: Christian Mehlmauer <FireFart@gmail.com>
Date:   Fri May 25 22:09:42 2012 +0200

    Cleanup Opt::RPORT(80) since it is already registered by Msf::Exploit::Remote::HttpClient
2012-06-02 09:53:19 -05:00
sinn3r 4d94eeb79d Merge pull request #430 from wchen-r7/s40_traversal
Add s40 dir traversal vuln
2012-05-31 02:46:53 -07:00
sinn3r a19583624e Add s40 dir traversal vuln
I can't believe I stayed up all night, and this is all I could find.
2012-05-31 04:43:57 -05:00
sinn3r 84269f399b Correct EDB reference 2012-05-14 15:10:21 -05:00
sinn3r f4a446a6c1 Add module CVE-2011-4404 2012-05-14 15:08:43 -05:00
sinn3r 91a8ff2766 Use print_good when SQL injection is found 2012-05-08 01:30:13 -05:00
sinn3r fa9d23d839 When a blind SQL injection, it's a good thing (for the attacker), so we should use print_good 2012-05-08 01:26:39 -05:00
sinn3r 9c3d2355b1 Allow this module to be more verbose for future debugging 2012-05-04 15:47:30 -05:00
sinn3r 8b3b952ccd Fix bug #6761 - false negative when OWA brings the user to the Options page insetad of inbox 2012-05-04 12:30:43 -05:00
HD Moore a1f9d2c27a Bump up the wait_timeout (works with the recent AR patch) and fix a typo in the http_version commit 2012-04-23 02:44:56 -05:00
HD Moore 59ecc8584d Force http_version to always make a new request, even if the information is in the DB 2012-04-23 02:39:02 -05:00
sinn3r b955569b10 Update the use of get2() in order to support ruby 1.9.3 2012-04-20 01:37:24 -05:00
sinn3r 45997b8dd4 Fix typos 2012-04-19 10:54:05 -05:00
Tod Beardsley ce3d98bc88 vcms_login.rb description 2012-04-19 07:44:28 -05:00
sinn3r 5fde6b759f Add VCMS brute-force module 2012-04-19 02:25:03 -05:00
Tod Beardsley 4bcbdc54c9 Cutting over rails3 to master.
This switches the Metasploit Framework to a Rails 3 backend. If you run
into new problems (especially around Active Record or your postgresql
gem) you should try first updating your Ruby installation to 1.9.3 and
use a more recent 'pg' gem.

If that fails, we'd love to see your bug report (just drop all the
detail you can into an issue on GitHub). In the meantime, you can
checkout the rails2 branch, which was branched from master immediately
before this cutover.

Squashed commit of the following:

commit 5802ec851580341c6717dfea529027c12678d35f
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 23:30:12 2012 -0500

    Enable MSF_BUNDLE_GEMS mode by default (set to N/F/0 to disable)

commit 8102f98dce9eb0c73c4374e40dce09af7b51d060
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 23:30:03 2012 -0500

    Add a method to expand win32 file paths

commit bda6479d154cf75572dd5de8b66bfde661a55de9
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 18:53:44 2012 -0500

    Fix 1.8.x compatibility

commit 101ce4eb17bfdf755ef8c0a5198174668b6cd6fd
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 18:40:59 2012 -0500

    Use verbose instead of stringio

commit 5db467ffb593488285576d183b1662093e454b3e
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 18:30:06 2012 -0500

    Hide the iconv warning, were stuck with it due to EBCDIC support

commit 63b9cb20eb6a61daf4effb4c8d2761c16ff0c4e0
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 18:29:58 2012 -0500

    Dont use GEM_HOME by default

commit ca49271c22c314a4465fff934334df18c704cbc0
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 18:23:34 2012 -0500

    Move Gemfile to root (there be dragons, lets find them) and catch failed bundler loads

commit 34af04076a068e9f60c5526045ddbba5fca359fd
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 18:18:29 2012 -0500

    Fallback to bundler when not running inside of a installer env

commit ed1066a4f3f12fae7d4afc03eb1ab70ffe2f9cf3
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 16:26:55 2012 -0500

    Remove a mess of gems that were not actually required

commit 21290a73926809e9049a59359449168f740d13d2
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 15:59:10 2012 -0500

    Hack around a gem() call that is well-intentioned but an obstacle in this case

commit 8e414a8bfab9641c81088d22f73033be5b37a700
Author: Tod Beardsley <todb@metasploit.com>
Date:   Sun Apr 15 15:06:08 2012 -0500

    Ruby, come on. Ducktype this. Please.

    Use interpolated strings to get the to_s behavior you don't get with
    just plussing.

commit 0fa92c58750f8f84edbecfaab72cd2da5062743f
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 15:05:42 2012 -0500

    Add new eventmachine/thin gems

commit 819d5e7d45e0a16741d3852df3ed110b4d7abc44
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 15:01:18 2012 -0500

    Purge (reimport in a second)

commit ea6f3f6c434537ca15b6c6674e31081e27ce7f86
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 14:54:42 2012 -0500

    Cleanup uncessary .so files (ext vs lib)

commit d219330a3cc563e9da9f01fade016c9ed8cda21c
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 14:53:02 2012 -0500

    PG gems built against the older installation environment

commit d6e590cfa331ae7b25313ff1471c6148a6b36f3b
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 14:06:35 2012 -0500

    Rename to include the version

commit a893de222b97ce1222a55324f1811b0262aae2d0
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 13:56:47 2012 -0500

    Detect older installation environments and load the arch-lib directories into the search path

commit 6444bba0a421921e2ebe2df2323277a586f9736f
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 13:49:25 2012 -0500

    Merge in windows gems

commit 95efbcfde220917bc7ee08e6083d7b383240d185
Author: Tod Beardsley <todb@metasploit.com>
Date:   Sun Apr 15 13:49:33 2012 -0500

    Report_vuln shouldn't use :include in finder

    find_or_create_by doesn't take :include as a param.

commit c5f99eb87f0874ef7d32fa42828841c9a714b787
Author: David Maloney <DMaloney@rapid7.com>
Date:   Sun Apr 15 12:44:09 2012 -0500

    One more msised Mdm namespace issue

commit 2184e2bbc3dd9b0993e8f21d2811a65a0c694d68
Author: David Maloney <DMaloney@rapid7.com>
Date:   Sun Apr 15 12:33:41 2012 -0500

    Fixes some mroe Mdm namespace confusion
    Fixes #6626

commit 10cee17f391f398bb2be3409137ff7348c7a66ee
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 03:40:44 2012 -0500

    Add robots gem (required by webscan)

commit 327e674c83850101364c9cca8f8d16da1de3dfb5
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 03:39:05 2012 -0500

    Fix missing error checks

commit a5a24641866e47e611d7636a3f19ba3b3ed10ac5
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 01:15:37 2012 -0500

    Reorder requires and add a method for injecting a new migration path

commit 250a5fa5ae8cb05807af022aa4168907772c15f8
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 00:56:09 2012 -0500

    Remove missing constant (use string) and add gemcache cleaner

commit 37ad6063fce0a41dddedb857fa49aa2c4834a508
Merge: d47ee82 4be0361
Author: Tod Beardsley <todb@metasploit.com>
Date:   Sun Apr 15 00:40:16 2012 -0500

    Merge branch 'master-clone' into rails3-clone

commit d47ee82ad7e66de53dd3d3a65649cc37299a2479
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 00:30:03 2012 -0500

    cleanup leftovers from gems

commit 6d883b5aa8a3a7ddbcde5bfd4521d57c5b30d3c2
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sun Apr 15 00:25:47 2012 -0500

    MDM update with purged DBSave module

commit 71e4f2d81f6da221b76150562a16c730888f5925
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 23:19:37 2012 -0500

    Add new mdm

commit 651cd5adac8211d65e0c8079371d8264e549533a
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 23:19:13 2012 -0500

    Update mdm

commit 0191a8bd0acec30ddb2a9e9c291111a12378537f
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 22:30:40 2012 -0500

    This fixes numerous cases of missed Mdm:: prefixes on db objects

commit a2a9bb3f2148622c135663dead80b3367b6f7695
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 18:30:18 2012 -0500

    Add eventmachine

commit 301ddeb12b906ed3c508613ca894347bedc3b499
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 18:18:12 2012 -0500

    A nicer error for folks who need to upgrade pg

commit fa6bde1e67b12e2d3d9978f59bbc98e0c1a1a707
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 17:54:55 2012 -0500

    Remove bundler requirements

commit 2e3ab9ed211303f1116e602b9a450141b71e56a4
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 17:35:38 2012 -0500

    Pull in eventmachine with actual .so's this time

commit 901fb33ff6b754ce2c2cfd51e3b0b669f6ec600b
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 17:19:12 2012 -0500

    Update deps, still need to add eventmachine

commit 6b0e17068e8caa0601f3ef81e8dbdb672758fcbe
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 13:07:06 2012 -0500

    Handle older installer environments and only allow binary gems when the
    environment specifically asks for it

commit b98eb7873a6342834840424699caa414a5cb172a
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 04:05:13 2012 -0500

    Bump version to -testing

commit 6ac508c4ba3fdc278aaf8cfe2c58d01de3395431
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 02:25:09 2012 -0500

    Remove msf3 subdir

commit a27dac5067635a95b4cbb773df1985f2a2dc2c5a
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 02:24:39 2012 -0500

    Remove the old busted external

commit 5fb5a0fc642b6c301934c319db854cc3145427a1
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 02:03:10 2012 -0500

    Add the gemcache loader

commit 09e2d89dfd09b9ac0c123fcc4e19816c86725627
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Apr 14 02:02:23 2012 -0500

    Purge gemfile/bundler configure in exchange for new gemcache setup

commit 3cc0264e1cfb027b515d7f24b95a74b023bd905c
Author: Tod Beardsley <todb@metasploit.com>
Date:   Thu Apr 12 14:11:45 2012 -0500

    Mode change on modicon_ladder.apx

commit c18b3d56efd639e461137acdc76b4b283fe978d4
Author: HD Moore <hd_moore@rapid7.com>
Date:   Thu Apr 12 01:38:56 2012 -0500

    The go faster button

commit ca2a67d51d6d4c7c3ca2e745f8b018279aef668a
Merge: 674ee09 b8129f9
Author: Tod Beardsley <todb@metasploit.com>
Date:   Mon Apr 9 15:50:33 2012 -0500

    Merge branch 'master-clone' into rails3-clone

    Picking up Packetfu upstream changes, all pretty minor

commit 674ee097ab8a6bc9608bf377479ccd0b87e7302b
Merge: e9513e5 a26e844
Author: Tod Beardsley <todb@metasploit.com>
Date:   Mon Apr 9 13:57:26 2012 -0500

    Merge branch 'master-clone' into rails3-clone

    Conflicts:
    	lib/msf/core/handler/reverse_http.rb
    	lib/msf/core/handler/reverse_https.rb
    	modules/auxiliary/scanner/discovery/udp_probe.rb
    	modules/auxiliary/scanner/discovery/udp_sweep.rb

    Resolved conflicts with the reverse_http handlers and the udp probe /
    scanners byt favoring the more recent changes (which happened to be the
    intent anyway). The reverse_http and reverse_https changes were mine so
    I know what the intent was, and @dmaloney-r7 changed udp_probe and
    udp_sweep to use pcAnywhere_stat instead of merely pcAnywhere, so the
    intent is clear there as well.

commit e9513e54f984fdb100c13b44a1724246779ccb76
Author: David Maloney <dmaloney@melodie.gateway.2wire.net>
Date:   Fri Apr 6 18:21:46 2012 -0500

    Some fixes to how services get reported to prevent issues with the web interface

commit adeb44e9aaf1a329a0e587d2b26e678398730422
Author: David Maloney <David_Maloney@rapid7.com>
Date:   Mon Apr 2 15:39:46 2012 -0500

    Some corrections to pcAnywhere discovery modules to distinguish between the two services

commit b13900176484fea8f5217a2ef925ae2ad9b7af47
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Mar 31 12:03:21 2012 -0500

    Enable additional migration-path parameters, use a temporary directory to bring the database online

commit 526b4c56883f461417f71269404faef38639917c
Author: David Maloney <David_Maloney@rapid7.com>
Date:   Wed Mar 28 23:24:56 2012 -0500

    A bunch of Mdsm fixes for .kind_of? calls, to make sure we ponit to the right place

commit 2cf3143370af808637d164ce59400605300f922c
Author: HD Moore <hd_moore@rapid7.com>
Date:   Mon Mar 26 16:22:09 2012 -0500

    Check for ruby 2.0 as well as 1.9 for encoding override

commit 4d0f51b76d89f00f7acbce6b1f00dc6e4c4545ee
Author: HD Moore <hd_moore@rapid7.com>
Date:   Mon Mar 26 15:36:04 2012 -0500

    Remove debug statement

commit f5d2335e7745aa1a354f4d6c8fc9d0b3876c472a
Author: HD Moore <hd_moore@rapid7.com>
Date:   Mon Mar 26 15:01:55 2012 -0500

    Be explicit about the Mdm namespace

commit bc8be225606d6ea38dd2a85ab4310c1c181a94ee
Author: hdm <hdm@hypo.(none)>
Date:   Mon Mar 26 11:49:51 2012 -0500

    Precalculate some uri strings in case the 1000-round generation fails

commit 4254f419723349ffb93e4aebdaeabbd7d66bf8c0
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Sat Mar 24 14:03:44 2012 -0500

    Removed some non-namespaced calls to Host

commit c8190e1bb8ad365fb0d7a1c4a9173e6c739be85c
Author: HD Moore <hd_moore@rapid7.com>
Date:   Tue Mar 20 00:37:00 2012 -0500

    Purge the rvmrc, this is causing major headaches

commit 76df18588917b7150a3bedf2569710a80bab51f8
Author: HD Moore <hd_moore@rapid7.com>
Date:   Tue Mar 20 00:31:52 2012 -0500

    Switch .rvmrc to the shipping 1.9.3 version

commit 7124971d0032b268f4ddf89aca125f15e284f345
Author: David Maloney <David_Maloney@rapid7.com>
Date:   Mon Mar 12 16:56:40 2012 -0500

    Adds mixin for looking up Mime Types by extension

commit b7ca8353164c43db6bacb2f3f16afa1269f66e43
Merge: a0b0c75 6b9a219
Author: Matt Buck <techpeace@gmail.com>
Date:   Tue Mar 6 19:38:53 2012 -0600

    Merge from develop.

commit a0b0c7528d2b8fabb76b2246a15004bc89239cf0
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Tue Mar 6 11:08:59 2012 -0600

    Somehow migration file is new?

commit 84d2b3cb1ad6290413c3ea3222ddf9932270b105
Author: David Maloney <David_Maloney@rapid7.com>
Date:   Wed Feb 29 16:38:55 2012 -0600

    Added ability to specify headers to redirects in http server

commit e50d27cda83872c616722adb03dc1a6a5e685405
Author: HD Moore <hd_moore@rapid7.com>
Date:   Sat Feb 4 04:44:50 2012 -0600

    Tweak the event dispatcher to enable customer events without a category
    and trigger http request events from the main exploit mixin.
    Experimental

commit 0e4fd2040df49df2e6cb0e8d2c6240a03d108033
Author: Matt Buck <Matthew_Buck@rapid7.com>
Date:   Thu Feb 2 22:09:05 2012 -0600

    Change Msm -> Mdm in migrations. This is what was preventing migrations from finishing on first boot.

commit c94a2961d04eee84adfd42bb01ed7a3e3846b83a
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Wed Feb 1 12:48:48 2012 -0600

    Changed Gemfile to use new gem name

commit 245c2063f06b4fddbfc607d243796669ef236136
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Wed Feb 1 12:47:42 2012 -0600

    Did find/replace for final namespace of Mdm

commit 6ed9bf8430b555dcbe62daeddb2f33bd400ab5bc
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Tue Jan 24 10:47:44 2012 -0600

    Fix a bunch of namespace issues

commit 2fe08d9e4226c27e78d07a00178c58f528cbc72e
Author: Matt Buck <Matthew_Buck@rapid7.com>
Date:   Fri Jan 20 14:37:37 2012 -0600

    Update Msm contstants in migrations for initial DB builds.

commit 4cc6b8fb0440c6258bf70de77a9153468fea4ea5
Author: Matt Buck <Matthew_Buck@rapid7.com>
Date:   Fri Jan 20 14:37:25 2012 -0600

    Update Gemfile.lock.

commit 1cc655b678f0a054a9a783da119237fe3f67faa4
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Thu Jan 19 11:48:29 2012 -0600

    Errant Workspaces needed namespace

commit 607a78285582c530a68985add33ccf4d899c467a
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Tue Jan 17 15:44:02 2012 -0600

    Refactored all models to use the new namespace

    * Every model using DBManager::* namespace is now Msm namespace
    * Almost all of this in msf/base/core
    * Some in modules

commit a690cd959b3560fa2284975ca7ecca10c228fb05
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Tue Jan 17 13:41:44 2012 -0600

    Move bundler setup

commit dae115cc8f7619ca7a827123079cb67fb4d9354b
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Mon Jan 9 15:51:07 2012 -0600

    Moved ActiveSupport dep to gem

commit d32f8edb6e7f82079b775ffbc2b9a405d1f32b3b
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Mon Jan 9 14:40:05 2012 -0600

    Removed model require file

commit d0c74cff8c44771e566ec63b03eda10d03b25c42
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Tue Jan 3 16:06:10 2012 -0600

    Update some more finds

commit 4eb79ea6b58b74c309ab1f1bb0bd35fe9041de46
Author: Trevor Rosen <Trevor_Rosen@rapid7.com>
Date:   Tue Jan 3 14:21:15 2012 -0600

    Yet another dumb commit

commit a75febcb593d52fdfe930306b4275829759d81d1
Author: Trevor Rosen <trevor@catapult-creative.com>
Date:   Thu Dec 29 19:20:51 2011 -0600

    Fixing deletion

commit dc139ff2fdfc4e7cdee3901dfb863e70913d6b92
Author: Trevor Rosen <trevor@catapult-creative.com>
Date:   Wed Dec 7 17:06:45 2011 -0600

    Fixed erroneous commit

commit 531c1e611cf4d23aeb9c48350dabf7630d662d25
Author: Trevor Rosen <trevor@catapult-creative.com>
Date:   Mon Nov 21 16:11:35 2011 -0600

    Remove AR patch stuff; attempting to debug non-connection between MSF and Pro

commit 458611224189c7aa27e500aabd373d85dc2dc5c0
Author: Trevor Rosen <trevor@catapult-creative.com>
Date:   Fri Nov 18 16:17:27 2011 -0600

    Drop ActiveRecord/ActiveSupport in preparation for upgrade
2012-04-15 23:35:38 -05:00
sinn3r 9cec9639c7 Add an aux module to brute force Dolibarr's login interface 2012-04-08 18:16:38 -05:00
Tod Beardsley 9cf896ffa1 Pre-release fixups on titles and grammar
Fixing squid_pivot_scanning and enum_xchat
2012-04-02 11:24:49 -05:00
Tod Beardsley 220ad7875f Merge pull request #285 from wvandevanter-r7/squid_pivot_scanning
Squid pivot scanning
2012-03-29 05:02:05 -07:00
Willis Vandevanter f5e05461f6 changed the false positive check IP to a user set variable 2012-03-28 22:18:56 -04:00
Willis Vandevanter 0fcab521d2 fixed print_bad 2012-03-28 02:32:03 -04:00
Tod Beardsley fb9163caf9 Merge pull request #278 from wchen-r7/manageengine_deviceexpert
Add OSVDB-80262 ManageEngine DeviceExpert
2012-03-26 14:42:36 -07:00
sinn3r 79d74b8768 ADD OSVDB-80262 2012-03-26 12:58:18 -05:00
sinn3r 19fc8d9883 Add OSVDB-80262 2012-03-26 12:42:24 -05:00
Tod Beardsley 2f3bbdc00c Sed replacement of exploit-db links with EDB refs
This is the result of:

find modules/ -name \*.rb -exec sed -i -e 's#\x27URL\x27,
\x27http://www.exploit-db.com/exploits/\([0-9]\+\).*\x27#\x27EDB\x27,
\1#' modules/*.rb {} \
2012-03-21 16:43:21 -05:00
sinn3r aeb691bbee Massive whitespace cleanup 2012-03-18 00:07:27 -05:00
sinn3r 7c77fe20cc Some variables don't need to be in a double-quote. 2012-03-17 20:37:42 -05:00
Gregory Man ba6928cbf1 sockso_traversal 1.8 compatibility fix 2012-03-16 18:12:09 +02:00
sinn3r 46dbaf8283 Fix typos and output 2012-03-15 16:10:05 -05:00
sinn3r 81b3eaa482 Fix typo 2012-03-15 15:56:24 -05:00
sinn3r db4538389c Add sockso dir traversal 2012-03-15 15:55:54 -05:00
James Lee 74e40763d6 Fix syntax error in 1.8, thanks Jun Koi for the patch 2012-03-15 14:32:16 -06:00
sinn3r d5f83be2d0 Cosmetic changes 2012-03-15 11:21:41 -05:00
Gregory Man 9928b102b5 Added rails_mass_assignment module. 2012-03-15 16:56:38 +02:00
sinn3r 65bde7ec99 Add OSVDB-79863 NetDecision Directory Traversal 2012-03-14 16:50:54 -05:00
James Lee 2b9acb61ad Clean up some incosistent verbosity
Modules should use `vprint_*` instead of `print... if
datastore["VERBOSE"]` or similar constructs
2012-03-06 12:01:20 -07:00
sinn3r 003fa3e22c Apply patch for #6495 2012-03-06 11:43:28 -06:00
Willis Vandevanter 461a59e28d modified description and lowered the number of required requests 2012-03-06 00:48:54 -05:00
Willis Vandevanter 0f17bbdfdd squid pivot scanning module 2012-03-06 00:30:30 -05:00
sinn3r 1005de0523 Port should not contain a non-numeric value or even empty when assigned to :port 2012-03-05 11:10:16 -06:00
Tod Beardsley 7447052b38 Convert WMAP constant name to the new format. 2012-03-02 10:18:32 -06:00
Tod Beardsley 302853f5a4 Unpolluting SVN Revision keyword
Sometimes Revision keywords get expanded, too. Fix those.
2012-03-02 10:18:32 -06:00
Tod Beardsley 3626d48db2 Un-polluting SVN Id keyword
Sometimes the SVN Id keyword sneaks back into the github repo already
expanded.
2012-03-02 10:18:32 -06:00
Efrain Torres 36a3341acd Fix body cero. 2012-03-02 10:18:32 -06:00
Efrain Torres 6fba0698e5 Adding another detection method for blind sqli 2012-03-02 10:18:32 -06:00
Efrain Torres 02f6e3fcb2 Improving report on blind sqli module 2012-03-02 10:18:32 -06:00
Efrain Torres 126a6133cd Improving blind sql inj. detection 2012-03-02 10:18:32 -06:00
Efrain Torres b608aeeeb7 Migrating modules to use report_web_vulns and minor fixes 2012-03-02 10:18:32 -06:00
Efrain Torres 1a09a49f69 Starting getting rid of report_note to use report_web_vuln on all http aux modules 2012-03-02 10:18:32 -06:00
Efrain Torres 2ce7dc9331 One more module. 2012-03-02 10:18:32 -06:00
Efrain Torres 9c6fec3c33 First step on module cleaning. 2012-03-02 10:18:32 -06:00
Efrain Torres eaecdb487c Fix sname in report_ calls to check the use of ssl and report http or
https
2012-03-02 10:18:31 -06:00
Efrain Torres 6d80aa0a44 Renaming duh. 2012-03-02 10:18:31 -06:00
Efrain Torres 3cb65e24a1 Fix blind sqli module description and bug with http_method 2012-03-02 10:18:31 -06:00
Efrain Torres 6938b91d07 Execute tests agains a specific path and bug fix in blind sqli module 2012-03-02 10:18:31 -06:00
Efrain Torres a2e5a4d9d5 New wmap version 1.5. Plugin and mixin changes. Modules edited to adjust to naming convention 2012-03-02 10:18:31 -06:00
sinn3r e9df9d6c2c Increase default depth 2012-02-29 16:24:18 -06:00
HD Moore 8d212849dc Fix typos that result in stack traces when matching the response codes 2012-02-22 16:04:24 -06:00
James Lee 464cf7f65f Normalize service names
Downcases lots and standardizes a few.  Notably, modules that reported a
service name of "TNS" are now "oracle".  Modules that report http
now check for SSL and report https instead.

[Fixes #6437]
2012-02-21 22:59:20 -07:00
HD Moore acb4446e45 Fix #6407 by treating redirects as successful authentication 2012-02-21 16:02:21 -06:00
HD Moore ceb4888772 Fix up the boilerplate comment to use a better url 2012-02-20 19:40:50 -06:00
sinn3r ea698864bd Add aux module to disclose IIS internal IP (Feature #6405) 2012-02-19 22:44:30 -06:00
sinn3r 95fa97cbd7 This module should be using store_loot() to save downloaded data 2012-02-19 20:48:00 -06:00
sinn3r 6037a2fc7a Correct type and name for store_loot 2012-02-19 20:20:44 -06:00
sinn3r 825ea01f79 Correct report_web_vuln 2012-02-19 16:37:42 -06:00
sinn3r 199e9c518b Add Generic HTTP Directory Traversal Utility (Feature #6338) 2012-02-19 00:30:18 -06:00
sinn3r ebd5438984 Add POST to method 2012-02-17 22:36:33 -06:00
sinn3r 3390bdf312 Validate METHOD with OptEnum 2012-02-17 18:54:53 -06:00
sinn3r ec58b4669e This module only handles GET, so that's the only option we'll allow 2012-02-17 18:20:16 -06:00
sinn3r 9e17b09632 This module is only meant to handle GET and PUT, so let's be strict on that 2012-02-17 18:17:28 -06:00
sinn3r 7ae58bfd9d Make sure the HTTP method is always upper-case to make Apache happy 2012-02-17 18:15:23 -06:00
sinn3r ae57a8d9fd Make sure the HTTP method is always uppercase so we don't get a 501 2012-02-17 03:34:39 -06:00
Tod Beardsley e371f0f64c MSFTidy commits
Whitespace fixes, grammar fixes, and breaking up a multiline SOAP
request.

Squashed commit of the following:

commit 2dfd2472f7afc1a05d3647c7ace0d031797c03d9
Author: Tod Beardsley <todb@metasploit.com>
Date:   Wed Feb 1 10:58:53 2012 -0600

    Break up the multiline SOAP thing

commit 747e62c5be2e6ba99f70c03ecd436fc444fda99e
Author: Tod Beardsley <todb@metasploit.com>
Date:   Wed Feb 1 10:48:16 2012 -0600

    More whitespace and indent

commit 12c42aa1efdbf633773096418172e60277162e22
Author: Tod Beardsley <todb@metasploit.com>
Date:   Wed Feb 1 10:39:36 2012 -0600

    Whitespace fixes

commit 32d57444132fef3306ba2bc42743bfa063e498df
Author: Tod Beardsley <todb@metasploit.com>
Date:   Wed Feb 1 10:35:37 2012 -0600

    Grammar fixes for new modules.
2012-02-01 10:59:58 -06:00
sinn3r a0ac4125cd Add aux module CMS400 default pass scanner (feature #6301) 2012-01-30 10:40:59 -06:00
Jonathan Cran 54ffb01080 This module should use the default list of tomcat users 2012-01-28 18:13:34 -06:00
Tod Beardsley f6a6963726 Msftidy run over the recent changed+added modules 2012-01-24 15:52:41 -06:00
James Lee 455bcda6e8 Print the port so we know which http service 2012-01-23 10:17:32 -07:00
HD Moore bb035bfec2 Fix up API option names so they can be set globally 2012-01-18 15:05:39 -06:00
Jon Hart 6a057560fa Improvements to auxiiliary/scanner/http/soap_xml to:
* Detect additional SOAP faults to reduce false positives
* More obviously support SSL
* Report http/https
* Make it obvious when a SOAP endpoint falls over mid-scan
* Add a few more nouns/verbs
* Add an optional SLEEP to play nice with old/slow SOAP endpoints

https://dev.metasploit.com/redmine/issues/6249
2012-01-16 12:27:17 -08:00
Tod Beardsley 7e25f9a6cc Death to unicode
Apologies to the authors whose names I am now intentionally misspelling.
Maybe in another 10 years, we can guarantee that all terminals and
machine parsers are okay with unicode suddenly popping up in strings.

Also adds a check in msftidy for stray unicode.
2012-01-10 14:54:55 -06:00
sinn3r b76767669c Update Nenad's author name and e-mail 2012-01-09 20:14:47 -06:00
David Maloney e12d5588c6 Set data on webdav scanner notes to include webdav path.
'Enabled' in the data field was useless since the note existing
already tells you webdav is enabled.
The path that webdav was running on wasn't kept anywhere though.
2012-01-09 08:33:45 -08:00
sinn3r 6d401b48d1 Fix typo 2012-01-07 00:02:51 -06:00
sinn3r b7e29191f5 Add Drupal 'Views' module username enumeration (Feature #6194) 2012-01-06 23:51:32 -06:00
sinn3r 6ceb2f04a3 Add CVE-2011-2474 Sybase EAServer directory traversal vulnerability 2012-01-06 14:24:49 -06:00
David Maloney ba86e8a04f Added PROPFIND support to http_login
This allows http_login to test against WebDAV.
Also added XAMPP default usernames and passwords to default wordlists
2012-01-05 12:10:53 -08:00
sinn3r ce6b1d6b8c Improve:
- Use 'Actions' to configure which OWA version to try
- Fix a bug where the USER_AS_PASS option might overwrite PASSWORD (and not restoring it) even though a password is already set.
- Increase timeout to 25
- Update description
2011-12-22 16:26:02 -06:00
HD Moore 4736cb1cbe Merge pull request #48 from swtornio/master
add osvdb ref
2011-12-11 20:37:43 -08:00
HD Moore a9db05e53b Fix regular expression 2011-12-10 13:24:58 -06:00
Steve Tornio 25685c4c74 add osvdb ref 2011-12-10 08:07:21 -06:00
sinn3r d6d9ac17d2 use store_loot() instead of store_local() 2011-12-08 11:10:31 -06:00
sinn3r aa5c0c46b6 Fix indent level 2011-12-07 18:44:49 -06:00
sinn3r feab7f5077 Add CVE-2011-4350 2011-12-07 18:42:52 -06:00
HD Moore cf28713f9a Mark specific modules as incompatible due to use of quad-dot code 2011-12-05 13:07:36 -06:00
sinn3r 897731f3a5 Check creds (feature #6025). Also bringing the 'Inbox' regex back 2011-11-29 11:01:39 -06:00
Rob Fuller c411c216c0 Solved most of msftidy issues with the /modules directory 2011-11-28 17:10:29 -06:00
sinn3r 3a84c31326 Using a better regex for a successful login. Thanks Borys. 2011-11-28 14:29:42 -06:00
sinn3r 5165865560 Merge branch 'master' of github.com:rapid7/metasploit-framework 2011-11-28 14:07:19 -06:00
sinn3r 59ab0c3a18 Fix bug #6021, Thanks Borys 2011-11-28 14:06:56 -06:00
Tod Beardsley 44a47f9913 Fixing up OWA bruteforce module to conform with the usual print_status
messages.
2011-11-28 13:31:54 -06:00
sinn3r a578db7f56 Apply fix for #6019 2011-11-28 01:12:18 -06:00
sinn3r 5e08c93ac9 Apply patch #5580 2011-11-26 15:32:43 -06:00
David Maloney c61d02686a HTTP login scanners need to set duplicate_ok to true
or different web applications on the same server
may wipe eachother's creds out.
2011-11-22 13:04:10 -08:00
David Maloney 9e40fac8b1 Added a check to the Axis login scanner to ensure
that the supplied url is valid.
Need this because we don't currently have a way to fingerprint
for Axis2 so we are relying on Tomcat fingerpinting.
2011-11-22 11:52:06 -08:00
James Lee 67120d4263 msftidy on aux modules, see #5749 2011-11-20 13:12:07 +11:00
Tod Beardsley 96d2209ca2 Minor fixups for trace report_note patch 2011-11-14 10:40:11 -06:00
andurin 5d5c9464cc Do some report_note while TRACE detection 2011-11-14 12:10:53 +01:00
Andurin 71599f5ef9 Fix sqlmap aux to work with actual sqlmap.py
Commit relates to IssueID #5807
2011-11-13 09:18:33 +01:00
sinn3r e4ebb890d8 Apply patch for bug #5963 2011-11-12 13:17:26 -06:00
sinn3r 35f84f5e42 yo, ruby 1.8 fix 2011-11-11 11:38:28 -06:00
sinn3r e972234629 yo, owa bruteforce utility in the house (Feature #4725) 2011-11-11 11:23:35 -06:00
David Maloney c984ea41d1 Quick fix to cred sourcing to eliminate spaces in the source type 2011-11-10 20:39:13 -08:00
David Maloney a88f954640 More Cred Sourcing
git-svn-id: file:///home/svn/framework3/trunk@14197 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-09 01:49:57 +00:00
Wei Chen 16fc275853 whitespace cleanup
git-svn-id: file:///home/svn/framework3/trunk@14191 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 16:09:31 +00:00
Patrick Webster 77a3edbb4f Added squiz_matrix_user_enum aux module.
git-svn-id: file:///home/svn/framework3/trunk@14185 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 03:14:39 +00:00
Wei Chen 12378b45d6 Fix #5502
git-svn-id: file:///home/svn/framework3/trunk@14180 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-07 07:44:02 +00:00
David Maloney 585a7cc4a2 Adding the HTTP Trace scanner from CG
Fixes #3390


git-svn-id: file:///home/svn/framework3/trunk@14150 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 20:09:11 +00:00
Wei Chen d5cee2dedf Apply patch #5411 to allow user-specified path
git-svn-id: file:///home/svn/framework3/trunk@14137 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-01 17:57:11 +00:00
Mario Ceballos d55dc551b6 syntax issue
git-svn-id: file:///home/svn/framework3/trunk@14131 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-31 20:22:02 +00:00
Wei Chen e14668ece9 Add ColdFusion version scanner - feature #4079
git-svn-id: file:///home/svn/framework3/trunk@14127 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-31 18:18:11 +00:00
Wei Chen fb56e23197 Apply fix for bug #5516 to correct a possible false positive on Apache Tomcat
(yup, tomcats are tricky like that)


git-svn-id: file:///home/svn/framework3/trunk@14124 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-31 16:39:03 +00:00
Wei Chen dd72e1ce9d Longer timeout. #5851
git-svn-id: file:///home/svn/framework3/trunk@14074 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-26 19:35:03 +00:00
Wei Chen ab4f9d65c7 Add PATH option. Feature #5412
git-svn-id: file:///home/svn/framework3/trunk@14067 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-25 18:32:02 +00:00
Joshua Drake 62c8c6ea9f big msftidy pass, ping me if there are issues
git-svn-id: file:///home/svn/framework3/trunk@14034 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-23 11:56:13 +00:00
Wei Chen 14cf0deb29 Add feature #5398
git-svn-id: file:///home/svn/framework3/trunk@14032 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-22 22:20:55 +00:00
Steve Tornio 1f698e09c9 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@14004 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-19 11:19:59 +00:00
Wei Chen 0a661ec227 Add CVE-2011-3305 (#5673)
git-svn-id: file:///home/svn/framework3/trunk@13985 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-18 04:40:21 +00:00
Wei Chen 975cc52bac Fix spelling errors
git-svn-id: file:///home/svn/framework3/trunk@13983 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-18 00:54:05 +00:00
Tod Beardsley 30ac88694f More msftidy fixes. Now I'm going to get a little more surgical to get this to move faster.
git-svn-id: file:///home/svn/framework3/trunk@13963 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 02:58:53 +00:00
Tod Beardsley e9461c766e Msftidy run against a bunch of whitespace violations, a few line too longs.
git-svn-id: file:///home/svn/framework3/trunk@13962 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 02:42:01 +00:00
Tod Beardsley ea2c9d1a46 Adding missing Id and Rev SVN keywords.
git-svn-id: file:///home/svn/framework3/trunk@13961 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 01:27:28 +00:00
HD Moore cf8524b1b4 Fixes #5414 by applying Joshua Taylor's patch that corrects bad reference types
git-svn-id: file:///home/svn/framework3/trunk@13949 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-16 09:53:53 +00:00
Chao Mu 53b807abee Adding the "this file is part of" comment to the top of the module and proper comment formatting
git-svn-id: file:///home/svn/framework3/trunk@13886 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-12 00:36:55 +00:00
Chao Mu df56110dd9 Fixing $Id so that it is prefaced by a comment.
git-svn-id: file:///home/svn/framework3/trunk@13885 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-12 00:32:14 +00:00
Chao Mu 667c00161d Remembering to Propset and include $Id: $ this time. Also, switching from BSD_LICENSE to MSF_LICENSE.
git-svn-id: file:///home/svn/framework3/trunk@13884 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-12 00:30:25 +00:00
HD Moore 558894e100 Test cases don't live in the module directory
git-svn-id: file:///home/svn/framework3/trunk@13871 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 15:51:22 +00:00
Chao Mu 9414747945 jruby was barfing on super(a, b, c,), so I changed the syntax and wrote a very simple unit test for rewrite_proxy_bypass.
git-svn-id: file:///home/svn/framework3/trunk@13870 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 13:52:39 +00:00
Chao Mu dcb6de2b58 Fixes #5667 this module scans for reverse proxy servers that exhibit a misconfiguration like the one detailed in www.contextis.com/research/blog/reverseproxybypass/. By default it requests a URI of @... and checks for a 502
git-svn-id: file:///home/svn/framework3/trunk@13864 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-10 22:34:50 +00:00
Wei Chen 612cdc8c73 No need to check if version is 'unknown' if nothing else (other than default) is assigned to it
git-svn-id: file:///home/svn/framework3/trunk@13799 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-27 19:12:31 +00:00
Wei Chen 8d1763484d Fix metadata format
git-svn-id: file:///home/svn/framework3/trunk@13792 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-26 03:21:37 +00:00
Wei Chen 5d4b562e62 Add GlassFish BruteForce auxiliary module by Josh (See #5515)
git-svn-id: file:///home/svn/framework3/trunk@13790 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-25 19:24:53 +00:00
James Lee 2cb5dbdb10 fix a silly output bug, thanks mezzendo for noticing
git-svn-id: file:///home/svn/framework3/trunk@13785 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-23 22:28:11 +00:00
Wei Chen f9d74b0701 Printing res code for DELETE should be optional. It's not like we can always trust it anyway.
git-svn-id: file:///home/svn/framework3/trunk@13763 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-20 00:41:42 +00:00
Joshua Drake 7c74954461 remove silly comma
git-svn-id: file:///home/svn/framework3/trunk@13762 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-19 23:06:35 +00:00
Wei Chen 7f80ba939a Apparently I can't speaks engrish
git-svn-id: file:///home/svn/framework3/trunk@13760 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-19 21:18:48 +00:00
Wei Chen ec530955ce Checking response codes is a terrible way for HTTP modules. #5470.
git-svn-id: file:///home/svn/framework3/trunk@13759 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-19 20:36:09 +00:00
Jonathan Cran a1675bfbc6 replaced by http_put
git-svn-id: file:///home/svn/framework3/trunk@13758 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-19 20:14:26 +00:00
Jonathan Cran 8b1fd95f66 Add a module to check HTTP PUT / DELETE file access. Thanks CG! Resolves 5089.
git-svn-id: file:///home/svn/framework3/trunk@13755 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-19 01:18:23 +00:00
et 3dffd09875 Generic HTML data scraper
git-svn-id: file:///home/svn/framework3/trunk@13736 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-16 02:36:32 +00:00
HD Moore 85eb581c16 Quick fix to match service changes
git-svn-id: file:///home/svn/framework3/trunk@13726 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-13 06:48:07 +00:00
Matt Weeks acae5dcdc8 Killing puts.
Die, puts, die!!



git-svn-id: file:///home/svn/framework3/trunk@13715 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-11 02:42:39 +00:00
Wei Chen dd56f976f4 Fix indents
git-svn-id: file:///home/svn/framework3/trunk@13563 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-15 15:12:55 +00:00
David Rude 1823f20a50 Add apache_userdir_enum aux module
git-svn-id: file:///home/svn/framework3/trunk@13562 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-15 05:56:55 +00:00
James Lee b6f845ee91 UserAgent is already an advanced option, and that's already the default
git-svn-id: file:///home/svn/framework3/trunk@13511 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-10 17:30:30 +00:00
James Lee d50577066f remove some silliness of registering UserAgent as an option since it's already an advanced option for HttpClient, make the default obvious
git-svn-id: file:///home/svn/framework3/trunk@13394 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 22:57:47 +00:00
Steve Tornio b930b2622f add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13271 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-21 01:20:22 +00:00
James Lee c412a836ed add VERBOSE option to all modules and vprint_* methods to use it
git-svn-id: file:///home/svn/framework3/trunk@13183 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 15:33:35 +00:00
David Rude ac61cd0427 Changed from web.archive.org to classic-web.archive.org
git-svn-id: file:///home/svn/framework3/trunk@13018 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-24 14:43:59 +00:00
HD Moore d11e1f3294 Make all keywords consistent for modules.
git-svn-id: file:///home/svn/framework3/trunk@12936 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-13 03:38:31 +00:00
Jonathan Cran 68d8a68a36 apply mubix's patch, fixes #4640
git-svn-id: file:///home/svn/framework3/trunk@12857 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-05 07:11:22 +00:00
Tod Beardsley 056cde292f Deprecate the exploited_host table. Vulns that indicate a successful exploit without opening a session should set the :exploited_at timestamp.
git-svn-id: file:///home/svn/framework3/trunk@12623 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 22:19:00 +00:00
Wei Chen e39739231d Added CVE reference
git-svn-id: file:///home/svn/framework3/trunk@12431 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 05:37:41 +00:00
HD Moore 86fac4ef95 This module does not meet standards for inclusion:
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs




git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 16:11:59 +00:00
Carlos Perez 8c96711c6c shroretel user login brute force module by Keith Lee
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 14:13:15 +00:00
James Lee 792bb4da7a allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038, thanks mubix!
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 05:42:33 +00:00
Tod Beardsley 8d8696eb8c Fixes #4026, the HTTP options scanner now reports its vulnerability in the normal way.
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 17:03:16 +00:00
Tod Beardsley f2057f54a8 De-dup'ed get_link_filter() in the crawler module. Added some comment
docs on crawler_process_page(). Nothing exciting.



git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
Carlos Perez 6a1acd6a54 small typo
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Joshua Drake 5bfd574029 fix parse error
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
James Lee 7d12151ec6 add support for http digest authentication. fixes #2504, thanks oliver kleinecke for the patch!
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
HD Moore 09b3ecff33 Move the module to the correct location
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore 5299bbb8db Add ip/port prefixes to the jboss scanner
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux 5f6995e8d3 enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
Joshua Drake 8ef05017b8 style compliance fixes, naughty naughty
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
et dd05954b34 Fix wmap to test parameters, error inj. module as example
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
HD Moore 070f48e16a Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:32:37 +00:00
et baab86fc52 WMAP 1.0 and first pass on some modules
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 05:57:26 +00:00
Tod Beardsley 3f1ceea349 Fixes #3655. Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters.
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:54:32 +00:00
Jonathan Cran 5b5e7028ad quick mod from daniel clemens to show the ip with the url
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 19:04:54 +00:00
Tod Beardsley 671659841b On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley e31f35e3ae Fixes #3643. These modules now report_vuln() correctly.
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley 99b1703416 Trailing comma on cisco_ios_auth_bypass
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:07:31 +00:00
Tod Beardsley cec851a5ed Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references.
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:06:40 +00:00
Joshua Drake c9d3d60b23 Rework external command invocation
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake 80eb7bad52 Fixes #3257, Adds two mod_negotiation scanner modules from DiabloHorn
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Tod Beardsley 24388f3a38 Adding a CVE reference for weak/blank/guessable passwords.
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
Joshua Drake 885545a94e add http:bl scanner from mubix, fixes #3346
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 18:33:45 +00:00
HD Moore 3f7809ca5a Patch to fix vuln reporting by swtornio
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-18 18:55:36 +00:00
HD Moore fb7a06b218 Correct typo, find coffee
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 20:03:35 +00:00
HD Moore 909eeefc8f Change of plan, keep this as a single module
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:54:47 +00:00
HD Moore 37ffccde08 Rename this module for clarity
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:27:26 +00:00
HD Moore 8162d100fd Add keywords
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:49:22 +00:00
HD Moore e3f909cef9 Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers.
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:37:09 +00:00
HD Moore 26aca9d6ba Swap some module locations, add loot and cred reporting
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 05:47:33 +00:00
HD Moore 9d5ac80cb5 Fix to work with IIS 7
git-svn-id: file:///home/svn/framework3/trunk@11254 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 16:22:04 +00:00
HD Moore 2a22713804 Fix up match
git-svn-id: file:///home/svn/framework3/trunk@11252 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 15:29:45 +00:00
James Lee e673187895 don't do ErrorCode detection if the user specified one explicitly, fixes #3293
git-svn-id: file:///home/svn/framework3/trunk@11239 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-07 00:59:28 +00:00
Joshua Drake 26a9fe6fc7 add some missing CVE references
git-svn-id: file:///home/svn/framework3/trunk@11180 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-30 20:19:18 +00:00
Joshua Drake b55633af60 update enum_delicious, fixes #3230
git-svn-id: file:///home/svn/framework3/trunk@11107 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-23 01:26:59 +00:00
Joshua Drake f4d2af3e73 fix typo
git-svn-id: file:///home/svn/framework3/trunk@11052 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-16 20:17:25 +00:00
Joshua Drake 25611afb6c add sap businessobject modules from jabra, woot!
git-svn-id: file:///home/svn/framework3/trunk@11046 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-15 05:12:48 +00:00
Joshua Drake 32c26f18f3 style compliance fixes, set test exploits to manual rank, fix s/ranking/rank/ in some exploits
git-svn-id: file:///home/svn/framework3/trunk@11039 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-14 19:03:24 +00:00
HD Moore dc5116f9df Move the crawler mixin to an auxiliary
git-svn-id: file:///home/svn/framework3/trunk@11026 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-13 06:55:19 +00:00
HD Moore f457ccb8f7 Add the crawler mixin and a sample form extractor crawler
git-svn-id: file:///home/svn/framework3/trunk@11025 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-13 06:40:56 +00:00
HD Moore a12d9f8dbf This patch adds detailed thread tracking across the metasploit framework, along with a new console command (threads) to manage these. This level of tracking is required to accurately monitor background tasks, assist with debugging, and kill orphaned threads.
git-svn-id: file:///home/svn/framework3/trunk@11003 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-12 06:19:49 +00:00
Joshua Drake 3992eb7ef8 Mass RE-update: fix all framework URL references
git-svn-id: file:///home/svn/framework3/trunk@10998 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-11 22:43:22 +00:00
Joshua Drake 9fc6f2f3a3 Mass update: fix all framework URL references
git-svn-id: file:///home/svn/framework3/trunk@10996 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-11 22:25:13 +00:00
cg b3713f9d46 handle 302's, print error codes since its important
git-svn-id: file:///home/svn/framework3/trunk@10928 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-06 14:45:22 +00:00
Joshua Drake dee671318e style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10895 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-04 02:54:16 +00:00
cg 5421be199a adobe xml inject aux module
git-svn-id: file:///home/svn/framework3/trunk@10894 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-04 02:11:31 +00:00
Joshua Drake e78aa83021 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10821 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-25 20:58:49 +00:00
Tod Beardsley 6f56086df9 See #2888. Editing the title and description to reflect the multitude of Barracuda products affected by this module. Only three are actually listed specifically, but users can always refer to the OSVDB listing to get the complete list.
git-svn-id: file:///home/svn/framework3/trunk@10772 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-21 01:18:38 +00:00
Joshua Drake 04858c69fc style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10758 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 22:54:19 +00:00
Joshua Drake 7c1d8c7d05 fix false negatives, slightly reworked, fixes #2888
git-svn-id: file:///home/svn/framework3/trunk@10751 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 21:55:19 +00:00
Joshua Drake 042e71c357 add ports/refs for ZDI-10-214
git-svn-id: file:///home/svn/framework3/trunk@10747 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 14:28:52 +00:00
Joshua Drake 9e6e29428a add disclosure date
git-svn-id: file:///home/svn/framework3/trunk@10638 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-11 04:00:57 +00:00
HD Moore 06291bb78e Clean up the barracuda module a bit (grammar and removal of the report_auth_info until its refactored)
git-svn-id: file:///home/svn/framework3/trunk@10631 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-10 17:45:30 +00:00
Joshua Drake 54133b79fd add barracuda module from Tiago
git-svn-id: file:///home/svn/framework3/trunk@10627 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-10 01:42:26 +00:00
Joshua Drake 7c1dc98456 switch logic around, add some debug/verbose prints
git-svn-id: file:///home/svn/framework3/trunk@10478 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 18:14:54 +00:00
Patrick Webster e6969ba30e Fixed spelling mistake.
git-svn-id: file:///home/svn/framework3/trunk@10445 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-23 05:48:07 +00:00
Joshua Drake 4590844871 tons of indentation fixes, some other style tweaks
git-svn-id: file:///home/svn/framework3/trunk@10394 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-20 08:06:27 +00:00
James Lee 5f0cc946b1 document report_note a little better, and modify several modules to use it correctly. fixes #2568
git-svn-id: file:///home/svn/framework3/trunk@10377 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-19 22:25:56 +00:00
Mario Ceballos 9975827d22 updated module from Thomas Ring.
git-svn-id: file:///home/svn/framework3/trunk@10371 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-18 23:59:28 +00:00
Joshua Drake 5de3146533 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10273 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-09 15:47:35 +00:00
cg 8cf89d7e05 fix a typo
git-svn-id: file:///home/svn/framework3/trunk@10211 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-01 01:57:22 +00:00
cg 6b1eb27ab5 put scanner modules in the scanner directory
git-svn-id: file:///home/svn/framework3/trunk@10210 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-01 01:49:06 +00:00
Tod Beardsley 6d6a547b34 Fixes #2412. Adds a creds table, modifies the db_report_auth API, adds the db_creds and db_add_cred commands.
git-svn-id: file:///home/svn/framework3/trunk@10034 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-18 00:58:20 +00:00
Joshua Drake acb82fa857 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10010 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-13 23:11:14 +00:00
Joshua Drake 7a612cd6af fix up vuln version info, fixes #2353
git-svn-id: file:///home/svn/framework3/trunk@9974 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-09 17:34:59 +00:00
Joshua Drake f6033b9bd6 change some print_status to print_error, rename a few msft modules using msb convention
git-svn-id: file:///home/svn/framework3/trunk@9929 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 21:37:54 +00:00
Joshua Drake 8bbd1c3c7b adds updated cert scanner from Thomas Ring, fixes #1752
git-svn-id: file:///home/svn/framework3/trunk@9837 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-15 19:23:05 +00:00
Joshua Drake c1f74794eb style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9744 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-08 23:34:50 +00:00
Joshua Drake 4705998f6c do not access res.code if res is nil, fixes #2184
git-svn-id: file:///home/svn/framework3/trunk@9726 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 19:52:05 +00:00
Joshua Drake ea12f49bc7 fix type, thx xanda, fixes #2198
git-svn-id: file:///home/svn/framework3/trunk@9713 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 16:36:21 +00:00
Carlos Perez 684f604448 small fix
git-svn-id: file:///home/svn/framework3/trunk@9657 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:50:47 +00:00
Joshua Drake 0882838491 ensure binary mode when opening files, whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9653 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:33:07 +00:00
Joshua Drake bcf61758d1 add scanner module from xanda, fixes #2164
git-svn-id: file:///home/svn/framework3/trunk@9645 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 20:09:08 +00:00
Joshua Drake 93b09648c7 add additional CVE reference, cleanup references
git-svn-id: file:///home/svn/framework3/trunk@9642 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 19:42:11 +00:00
Joshua Drake 2ddab423ce commit updates from Tyler Krpata
git-svn-id: file:///home/svn/framework3/trunk@9630 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-27 07:15:17 +00:00
Joshua Drake 12fbdcd878 add http_fingerprint calls to modules that use various headers
git-svn-id: file:///home/svn/framework3/trunk@9627 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 20:53:12 +00:00
Joshua Drake 2ab5983e2a more whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9626 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 19:49:23 +00:00
James Lee f14b3221ca move http version reporting into the HttpClient mixin
git-svn-id: file:///home/svn/framework3/trunk@9579 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 01:39:43 +00:00
Tod Beardsley 1874ce3ac3 Fixes typo and a to_s problem in AXIS LFI module.
git-svn-id: file:///home/svn/framework3/trunk@9572 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 20:42:41 +00:00
Joshua Drake 752905a777 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9571 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:53:52 +00:00
Joshua Drake 71fd2152aa add jboss vuln scanner from Tyler Krpata
git-svn-id: file:///home/svn/framework3/trunk@9570 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:49:44 +00:00
Tod Beardsley be6e0b3393 Fixes #1493, applying patch provided by Vitor Moreira. Thanks a ton for the audit work!
git-svn-id: file:///home/svn/framework3/trunk@9550 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 14:03:53 +00:00
Steve Tornio 98b0de2c3f add osvd ref
git-svn-id: file:///home/svn/framework3/trunk@9549 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 11:00:04 +00:00
Tod Beardsley 19596276ab Adding nginx source disclosure aux module (CVE-2010-2263), contributed by Tiago Ferreira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9548 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 01:56:09 +00:00
Tod Beardsley cb69b0c134 Fixes #2101. Introduces a proper :skip_user, and adds better comment docs to auth_brute to describe the intended use of each return code.
git-svn-id: file:///home/svn/framework3/trunk@9529 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 19:10:15 +00:00
HD Moore 35630e3c17 Fix CVE references and invalid author entries
git-svn-id: file:///home/svn/framework3/trunk@9511 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-13 16:01:01 +00:00
Joshua Drake 698da3bdea add CVE for cognos express
git-svn-id: file:///home/svn/framework3/trunk@9502 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:37:21 +00:00
Joshua Drake 5194476191 fix problem reported by Vitor Moreira, see #1493
git-svn-id: file:///home/svn/framework3/trunk@9501 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:15:50 +00:00
Joshua Drake e32abab8dc a HTTP -> an HTTP (http://www.english-zone.com/grammar/a-anlessn.html)
git-svn-id: file:///home/svn/framework3/trunk@9488 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:12:05 +00:00
Joshua Drake c62b62d35d style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9486 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 15:17:23 +00:00
Joshua Drake d26ebfa365 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9476 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:31:21 +00:00
Steve Tornio bccd9a4b94 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9472 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 14:14:02 +00:00
Tod Beardsley 744dcf9616 Adding attribution tage to axis LFI.
git-svn-id: file:///home/svn/framework3/trunk@9471 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:36:03 +00:00
Tod Beardsley 468aa07f48 Adding Axis LFI module, submitted by Tiago Ferreira. Thanks!
Also normalizing auth info for DB reporting.



git-svn-id: file:///home/svn/framework3/trunk@9470 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:32:27 +00:00
Tod Beardsley 6e98191bdd Adding authentication brute forcer for Apache Axis2, submitted by Leandro Oliveira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9467 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 01:53:54 +00:00
Steve Tornio 3b8319a545 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9465 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:25:04 +00:00
Tod Beardsley 0e442ff74c Adding Tomcat user enumeration module for CVE-2009-0580, submitted by Heyder Andrade. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9464 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:15:49 +00:00
Steve Tornio 922d362fdc add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9463 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:10:08 +00:00
Tod Beardsley 9d1ace25ce Adding BID and CVE to wordpress_login_enum
git-svn-id: file:///home/svn/framework3/trunk@9462 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:43:47 +00:00
Tod Beardsley 336a9bdb37 Adding Wordpress login brute forcer and account enumeration module, submitted by Tiago Ferreira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9461 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:37:56 +00:00
Tod Beardsley 1500858d2d Fixes #2043. Thanks Heyder!
git-svn-id: file:///home/svn/framework3/trunk@9453 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-08 21:14:19 +00:00
James Lee d655521c93 Clarify description for USER_FILE and PASS_FILE
git-svn-id: file:///home/svn/framework3/trunk@9433 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:30:33 +00:00
James Lee 36041419f9 Clarify description for USER_FILE and PASS_FILE
git-svn-id: file:///home/svn/framework3/trunk@9432 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:26:41 +00:00
Joshua Drake 4d0a64fcd8 add additional references
git-svn-id: file:///home/svn/framework3/trunk@9429 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 16:34:13 +00:00
Joshua Drake 7824ab661a style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9412 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:25:29 +00:00
Joshua Drake 55f82f0b09 add open proxy detection aux from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@9411 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:18:00 +00:00
Mario Ceballos ed79d649da didn't know the default accounts where added. add the cognoss port.
git-svn-id: file:///home/svn/framework3/trunk@9382 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-31 17:16:50 +00:00
Joshua Drake 14a6a1b95f another error message update, see #1994
git-svn-id: file:///home/svn/framework3/trunk@9351 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:23 +00:00
Tod Beardsley 1a2be34a63 Fixes #2002. Needed to work with some pipelining to get this all to work right, but it seems to function now pretty well -- if the target takes Basic, do basic, if the target takes NTLM, do NTLM. Should implement Digest too, but I don't think hardly anyone uses that.
git-svn-id: file:///home/svn/framework3/trunk@9346 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-22 17:58:01 +00:00
Tod Beardsley e02fd71de9 See #2002. Skip authentication schemes that we don't know how to do.
git-svn-id: file:///home/svn/framework3/trunk@9343 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 17:32:54 +00:00
Joshua Drake 793e6ddd52 tweak error message, see #1994
git-svn-id: file:///home/svn/framework3/trunk@9342 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 15:38:07 +00:00
Joshua Drake 688c76f7a0 catch ConnectionError exception before it gets passed higher up, fixes #1994
git-svn-id: file:///home/svn/framework3/trunk@9335 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:33:12 +00:00
James Lee 62fbc0ad5b use empty strings instead of nil. fixes #1717
git-svn-id: file:///home/svn/framework3/trunk@9228 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 20:03:47 +00:00
Joshua Drake 4bc86e603e fix a couple more silly regex mishaps
git-svn-id: file:///home/svn/framework3/trunk@9220 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-04 23:09:32 +00:00
Joshua Drake 0e72894e58 more cleanups
git-svn-id: file:///home/svn/framework3/trunk@9212 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 17:13:09 +00:00
Joshua Drake 0ea6eca4bc big module whitespace/formatting cleanup pass
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Tod Beardsley 08117ca000 Forcing :critical => true for report_auth_info
git-svn-id: file:///home/svn/framework3/trunk@9150 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 22:23:37 +00:00
Joshua Drake a953c47cfb remove carriage returns
git-svn-id: file:///home/svn/framework3/trunk@9140 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 18:29:24 +00:00
HD Moore 498c225555 If its required, it better have a valid default. Fixing
git-svn-id: file:///home/svn/framework3/trunk@9028 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 16:36:28 +00:00
HD Moore ba12ddd280 Allow authbrute modules to use a single username/password in a sane way
git-svn-id: file:///home/svn/framework3/trunk@8945 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 23:52:43 +00:00
HD Moore b0425f10cd Cleanup some of the output
git-svn-id: file:///home/svn/framework3/trunk@8942 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 22:13:50 +00:00
HD Moore cd71cfbad1 Handle buggy HTTP servers better
git-svn-id: file:///home/svn/framework3/trunk@8921 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 21:35:37 +00:00
James Lee dd26a227ef targ_host -> target_host
git-svn-id: file:///home/svn/framework3/trunk@8908 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:05:23 +00:00
HD Moore af3ab0a260 Handle situations where any user/pass is allowed
git-svn-id: file:///home/svn/framework3/trunk@8904 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 21:11:00 +00:00
HD Moore 3a88909c06 Rename for consistency
git-svn-id: file:///home/svn/framework3/trunk@8903 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:33:21 +00:00
HD Moore aa1c65f4e6 Add a quick and dirty HTTP scanner
git-svn-id: file:///home/svn/framework3/trunk@8901 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:28:09 +00:00
Tod Beardsley 1458fbad54 Adds some fingerprinting to the tomcat manager login auxiliary module.
git-svn-id: file:///home/svn/framework3/trunk@8883 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 22:19:46 +00:00
Tod Beardsley 83d96d713c Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently.
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 20:07:26 +00:00
HD Moore 9632f8251a Move OS-level fingerprints out, report note-level fingerprints instead
git-svn-id: file:///home/svn/framework3/trunk@8869 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:09:04 +00:00
HD Moore a35817f0cc Store more information
git-svn-id: file:///home/svn/framework3/trunk@8742 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 13:52:39 +00:00
HD Moore d5b85db27f Fixes a false positive when the server always replies with 200 OK
git-svn-id: file:///home/svn/framework3/trunk@8740 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 05:26:33 +00:00
Tod Beardsley 5ce7b4d186 Pass this_cred for tomcat_mgr_login
git-svn-id: file:///home/svn/framework3/trunk@8730 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-05 20:05:01 +00:00
Tod Beardsley a5e187bd69 Add the ability to slow down brute force sessions.
git-svn-id: file:///home/svn/framework3/trunk@8719 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 23:29:26 +00:00
Tod Beardsley e2af2f9ab9 Again.
git-svn-id: file:///home/svn/framework3/trunk@8680 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:37 +00:00
Tod Beardsley e1a02d602d Fixing up the tomcat login scanner.
git-svn-id: file:///home/svn/framework3/trunk@8679 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:20 +00:00
Joshua Drake e1c5334d56 add register_autofilter_ports
git-svn-id: file:///home/svn/framework3/trunk@8652 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 01:53:02 +00:00
James Lee 7b7f3de307 allow a single user/pass
git-svn-id: file:///home/svn/framework3/trunk@8646 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 22:45:33 +00:00
James Lee dfe9698cb3 stop bruting if the page isn't there
git-svn-id: file:///home/svn/framework3/trunk@8641 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 20:50:46 +00:00
Steve Tornio 4e7f242230 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@8636 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 12:03:44 +00:00
Joshua Drake ff703cdb73 fix whitespace and add keywords
git-svn-id: file:///home/svn/framework3/trunk@8633 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 00:13:56 +00:00
cg aa3836dbc2 vmware directory traversal module
git-svn-id: file:///home/svn/framework3/trunk@8632 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-24 23:58:51 +00:00
HD Moore 0ba3d18032 Updated the report format to match new syntax
git-svn-id: file:///home/svn/framework3/trunk@8566 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-20 05:50:05 +00:00
Tod Beardsley f58558f605 Updated all the brute force login modules to record successful logins and avoid duplicating credentials.
git-svn-id: file:///home/svn/framework3/trunk@8553 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 19:04:51 +00:00
Joshua Drake 534d56cdd8 adjust text wrap
git-svn-id: file:///home/svn/framework3/trunk@8550 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 18:04:11 +00:00
HD Moore 993ba44fcf SMB updates, better reporting of SSL status for HTTP
git-svn-id: file:///home/svn/framework3/trunk@8459 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 22:37:00 +00:00
et 36c61ff5ed Fix typo
git-svn-id: file:///home/svn/framework3/trunk@8423 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 01:10:29 +00:00
HD Moore 79c68e3784 Fix the description
git-svn-id: file:///home/svn/framework3/trunk@8406 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 13:53:50 +00:00
James Lee 509b2aab3a use new api
git-svn-id: file:///home/svn/framework3/trunk@8376 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 23:00:51 +00:00
Joshua Drake 4f9490f63f add default username/passwords for IBM Cognos Express Tomcat Manager
git-svn-id: file:///home/svn/framework3/trunk@8368 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-04 20:34:55 +00:00
James Lee 1ee79780e9 fix the http option scanner
git-svn-id: file:///home/svn/framework3/trunk@8355 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 23:11:18 +00:00
et edc64f824e Added trace.axd scanner by C4an
git-svn-id: file:///home/svn/framework3/trunk@8337 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 02:49:18 +00:00
et 7964d0f38a Renaming wmap modules
git-svn-id: file:///home/svn/framework3/trunk@8335 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 02:12:30 +00:00
et 7e5793af2a New enumeration modules by Mubix
git-svn-id: file:///home/svn/framework3/trunk@8331 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-31 00:52:51 +00:00
Joshua Drake 4bb3adc397 move new tomcat_mgr_login scanner into scanner/http
git-svn-id: file:///home/svn/framework3/trunk@8202 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-22 20:33:11 +00:00
HD Moore 0b7df74615 Rename modules to be consistent with the new convention
git-svn-id: file:///home/svn/framework3/trunk@8129 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-15 02:55:08 +00:00
Joshua Drake 2283e029db crossing fingers, big cr removal batch
git-svn-id: file:///home/svn/framework3/trunk@8038 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-30 22:24:22 +00:00
HD Moore 131462fa8b Fix service name reporting
git-svn-id: file:///home/svn/framework3/trunk@7999 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-28 00:37:56 +00:00
HD Moore 166489ad5f Update a few scanner modules to write to the database properly
git-svn-id: file:///home/svn/framework3/trunk@7992 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-27 07:30:50 +00:00
HD Moore 1cc9fa7dad Print the site name for the 404 message
git-svn-id: file:///home/svn/framework3/trunk@7980 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-26 05:53:29 +00:00
HD Moore 3d421cfefd SQLMap update and consitency fix for Bernardo's name
git-svn-id: file:///home/svn/framework3/trunk@7979 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-26 05:24:37 +00:00
et 20222a44ea Fix. Thats next step
git-svn-id: file:///home/svn/framework3/trunk@7847 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:58:57 +00:00
et d6ee7c58ce New wmap moule for generic checks
git-svn-id: file:///home/svn/framework3/trunk@7846 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:49:44 +00:00
HD Moore c287573213 A few more wmap cleanups
git-svn-id: file:///home/svn/framework3/trunk@7839 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 06:56:01 +00:00
HD Moore 1029ecd7f8 Cleanup wmap, add the missing database tables back, rename to have a wmap_prefix
git-svn-id: file:///home/svn/framework3/trunk@7837 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 05:24:48 +00:00
et 75ca12439e Added new testing options
git-svn-id: file:///home/svn/framework3/trunk@7638 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-29 04:00:26 +00:00
et 6e975b57ee Include Auxiliary Report
git-svn-id: file:///home/svn/framework3/trunk@7629 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-26 20:39:15 +00:00
et 5b81d85447 Replaced reporting to use notes
git-svn-id: file:///home/svn/framework3/trunk@7605 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-25 06:08:28 +00:00
et e354c8dbcc Multiple headers handling bug fixes
git-svn-id: file:///home/svn/framework3/trunk@7588 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-24 05:27:11 +00:00
et f70cf1e74f Make EXT optional so other dictionaries with files containing extensions can be used
git-svn-id: file:///home/svn/framework3/trunk@7583 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-23 03:01:46 +00:00
HD Moore 61e233df91 Keywords on all modules, plugins, and scripts
git-svn-id: file:///home/svn/framework3/trunk@7550 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-17 00:05:19 +00:00
et 7b832b9d3e Wmap checking for vulnerabilities and launching exploits
git-svn-id: file:///home/svn/framework3/trunk@7399 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-07 21:55:33 +00:00
HD Moore f38b43f236 Specify the language as none
git-svn-id: file:///home/svn/framework3/trunk@7321 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-02 17:10:06 +00:00
et fdce355f3b Option NoDetailMessages added
git-svn-id: file:///home/svn/framework3/trunk@7313 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-01 01:09:53 +00:00
et fbbbde55f2 Fix #443. This module should not be use as a directory scanner as there are more suitable modules for such task. This specific module is only made to test a specific vulnerability and will be mode to a per directory check instead of trying to identify directories requiring authentication to be bypassed
git-svn-id: file:///home/svn/framework3/trunk@7312 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-01 00:59:41 +00:00
HD Moore 5e137e92fd Fixes #381. To scan for TLSv1 only services, set SSLVersion TLS1
git-svn-id: file:///home/svn/framework3/trunk@7282 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-26 19:48:15 +00:00
HD Moore b38a74c961 Another mega-patch from Yoann Guillot: fixes warnings generated by method calls with a space betwee the method and the parans, corrects a problem with the alpha encoders that causes them to overwrite the allowed charset, hardcodes the metasm output size of some modules in order to reduce load time, more to come
git-svn-id: file:///home/svn/framework3/trunk@7246 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-25 16:40:19 +00:00
HD Moore 03b753fd12 Fixes #360. Report each path individually
git-svn-id: file:///home/svn/framework3/trunk@7207 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-19 10:55:11 +00:00
et 5524e9aae2 Fixed #370. Test if uploaded file exists
git-svn-id: file:///home/svn/framework3/trunk@7203 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-19 00:02:54 +00:00
et 6ce7011cba Fixed #369. Added RHOST info and second round to determine error page
git-svn-id: file:///home/svn/framework3/trunk@7202 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 23:26:58 +00:00
et 6a818c0c64 Fixed #371. Included target information
git-svn-id: file:///home/svn/framework3/trunk@7194 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:51:47 +00:00
et 6cfd1675c4 Fixed #375. Removed the module as frontpage_login provides same information
git-svn-id: file:///home/svn/framework3/trunk@7193 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:45:30 +00:00
et c501187ca4 Fixed typo #368.
git-svn-id: file:///home/svn/framework3/trunk@7192 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:39:40 +00:00
et bfd359f0d8 Fixed #367. Adder error code detection and signatures
git-svn-id: file:///home/svn/framework3/trunk@7191 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:37:40 +00:00
et f085e7cf59 Remove generic modules at this time, until proxy is created and then it can be proxy modules.
git-svn-id: file:///home/svn/framework3/trunk@7190 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:23:33 +00:00
et 249cc10cf5 Fixed #365. Added signatures and error code detection
git-svn-id: file:///home/svn/framework3/trunk@7189 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:18:22 +00:00
et 814675f952 Changed variable name for consistency purposes
git-svn-id: file:///home/svn/framework3/trunk@7188 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:01:43 +00:00
et dc415c76ca Fixes #364. Added error message detection and signatures
git-svn-id: file:///home/svn/framework3/trunk@7187 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 19:46:30 +00:00
et bee78d3b51 First round of fixes for wmap modules
git-svn-id: file:///home/svn/framework3/trunk@7181 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 07:10:32 +00:00
et 09ec91d9bf Use name convention
git-svn-id: file:///home/svn/framework3/trunk@7146 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 23:07:34 +00:00
et c14bd99aff Base for an error based sql inj. scanner
git-svn-id: file:///home/svn/framework3/trunk@7145 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:52:54 +00:00
et 95bf9f84f7 Basic robots scanner for wmap
git-svn-id: file:///home/svn/framework3/trunk@7144 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:48:25 +00:00
et 97ae32a318 Minor display changes
git-svn-id: file:///home/svn/framework3/trunk@7143 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:40:57 +00:00
et ec00f69e66 Subversion scanner
git-svn-id: file:///home/svn/framework3/trunk@7142 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 20:49:34 +00:00
cg 56d4345830 updated options module
git-svn-id: file:///home/svn/framework3/trunk@7078 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-27 22:42:24 +00:00
HD Moore 5972666f63 See #339. Massive cleanup of author names, make them consistent across modules
git-svn-id: file:///home/svn/framework3/trunk@7075 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-27 21:30:45 +00:00
et d0289671f6 Basic generic wmap modules
git-svn-id: file:///home/svn/framework3/trunk@6948 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-10 00:04:01 +00:00
et 87d59b4512 More webdav modules to grab information
git-svn-id: file:///home/svn/framework3/trunk@6947 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-10 00:01:38 +00:00
et a92fa0b424 Add test case
git-svn-id: file:///home/svn/framework3/trunk@6946 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-09 23:59:44 +00:00
Patrick Webster 9080dd1f0d Added references and MSB to unicode bypass modules.
git-svn-id: file:///home/svn/framework3/trunk@6914 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-28 07:39:34 +00:00
James Lee 529ded22ae reverting last commit; somebody didn't cross their fingers
git-svn-id: file:///home/svn/framework3/trunk@6847 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-19 20:48:47 +00:00
James Lee c3dc1ecb55 reintegrate browser_autopwn into trunk; cross your fingers and hope this works
git-svn-id: file:///home/svn/framework3/trunk@6846 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-19 17:27:36 +00:00
HD Moore 4a421dbb33 Fix some busted code in the frontpage_login module, thanks to bill.e.ghote
git-svn-id: file:///home/svn/framework3/trunk@6691 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-21 06:30:55 +00:00
HD Moore a113343d00 Fix a broken next
git-svn-id: file:///home/svn/framework3/trunk@6649 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-14 15:02:32 +00:00
HD Moore 314d1a27a2 Adds a new module from nebulous for checking SSL expiry
git-svn-id: file:///home/svn/framework3/trunk@6636 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-09 21:12:48 +00:00
et fdff151442 More threading
git-svn-id: file:///home/svn/framework3/trunk@6626 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:52:22 +00:00
et 65c3f5981d just rename it
git-svn-id: file:///home/svn/framework3/trunk@6625 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:27:23 +00:00
et 07bd36232f minor fixes
git-svn-id: file:///home/svn/framework3/trunk@6624 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:21:22 +00:00
et 509233262c Advanced options to remove detail messages and handle multithreads
git-svn-id: file:///home/svn/framework3/trunk@6622 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-03 05:49:38 +00:00
HD Moore 16806be1a7 Adds threading
git-svn-id: file:///home/svn/framework3/trunk@6621 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-03 05:19:42 +00:00
et 36a21436ff Fix DAV header match. Applied patch by grutz
git-svn-id: file:///home/svn/framework3/trunk@6610 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-02 04:43:57 +00:00
et ee70866e08 Small fix on authenticated dir check. Thanks Rhys Kidd
git-svn-id: file:///home/svn/framework3/trunk@6603 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-31 01:34:04 +00:00
et 166e1ebf2c Added simplified version of webdav unicode bypass scanner
git-svn-id: file:///home/svn/framework3/trunk@6589 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-28 03:30:52 +00:00
et e1c5c72c82 Added check for authenticated directories
git-svn-id: file:///home/svn/framework3/trunk@6588 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-28 03:27:25 +00:00
HD Moore b6ab8ffd21 Fix up the unicoding
git-svn-id: file:///home/svn/framework3/trunk@6580 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-25 20:21:20 +00:00
et 823fcc30d1 Added WebDAV scanner
git-svn-id: file:///home/svn/framework3/trunk@6576 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-23 01:55:34 +00:00
HD Moore d434be3ae8 Patch from Erik Fichtner to enable unicode overlong encoding
git-svn-id: file:///home/svn/framework3/trunk@6575 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-22 21:33:20 +00:00
et f8cac0cedf Fix proxy issue. Added datastore PROXIES to the parameters. Thanks spinbad
git-svn-id: file:///home/svn/framework3/trunk@6564 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-19 01:40:58 +00:00
HD Moore 8f5dc1305e Fix bad variable, reported by bill.e.ghote
git-svn-id: file:///home/svn/framework3/trunk@6563 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-18 18:02:21 +00:00
Patrick Webster 79c7abba8e Added wmap_dir_webdav_unicode_bypass.rb to detect vulnerable IIS6 WebDAV Unicode bypass folders.
git-svn-id: file:///home/svn/framework3/trunk@6562 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-18 03:57:13 +00:00
Patrick Webster 4426bc2df0 Added SOAP brute forcer module. YMMV.
git-svn-id: file:///home/svn/framework3/trunk@6495 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-23 03:16:29 +00:00
cg 0ea4bec847 updated for db usage
git-svn-id: file:///home/svn/framework3/trunk@6485 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-15 04:15:25 +00:00
kris 37c2e301ed replacing defunct framework URL in header comments in most modules and pcap_log
git-svn-id: file:///home/svn/framework3/trunk@6479 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-13 14:33:26 +00:00
et 0c859dc35e Minor fixes regarding target_host handling
git-svn-id: file:///home/svn/framework3/trunk@6477 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-12 02:00:50 +00:00
kris cc78d9a59c turn off svn:executable in modules
git-svn-id: file:///home/svn/framework3/trunk@6470 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-08 20:04:25 +00:00
et cf424edd73 fixed error case for ssl module
git-svn-id: file:///home/svn/framework3/trunk@6449 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-31 00:43:41 +00:00
HD Moore ae21a15dc4 Make these a little future-compatible with ruby 1.9
git-svn-id: file:///home/svn/framework3/trunk@6443 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-30 02:55:48 +00:00
HD Moore 3d6a0bab52 Fix up the version/options modules, make wmap_base_url display the vhost and use the host/port separator correctly
git-svn-id: file:///home/svn/framework3/trunk@6414 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 17:57:12 +00:00
HD Moore 89ad4df087 Fix WMAP modules to use the new scanner api; add wmap_base_url as a shorthand (extend in the future to do VHOST as well), general cosmetic cleanups
git-svn-id: file:///home/svn/framework3/trunk@6413 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 17:45:14 +00:00
HD Moore eccfcdfced Sets svn keywords on modules missing it, tweaks the emailer module
git-svn-id: file:///home/svn/framework3/trunk@6407 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 06:03:35 +00:00
et 07b3f614ce New plain HTTP XPath 1.0 blind injection module
git-svn-id: file:///home/svn/framework3/trunk@6355 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-20 03:53:02 +00:00
cg 9b210702a3 add scanner functionality to oracle_version.rb and removed some comments from options.rb
git-svn-id: file:///home/svn/framework3/trunk@6088 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-08 01:57:28 +00:00
et e7dda0000b Wmap SSL module renamed and updated to check for MD5 signature algorithm.
git-svn-id: file:///home/svn/framework3/trunk@6062 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-03 05:20:20 +00:00
kris 248f1e9fc3 Remove "#{xxx.to_s}" redundancies ('s/\(#{[^}]*\)\.to_s}/\1}/g')
git-svn-id: file:///home/svn/framework3/trunk@6022 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-19 07:11:08 +00:00
et daf317c25b Added wmap generic email extractor as an example of direct access to the database.
git-svn-id: file:///home/svn/framework3/trunk@6003 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-08 00:51:16 +00:00
et 3e19245054 Fixed handling of root website directory. Minor presentation fixes in test modules
git-svn-id: file:///home/svn/framework3/trunk@5987 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-30 22:41:09 +00:00
kris 0c0b171be4 use OptInt for numeric options
git-svn-id: file:///home/svn/framework3/trunk@5979 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-24 18:42:59 +00:00
et 110e7be0e9 Added wmap OPTIONS module by Chris Gates
git-svn-id: file:///home/svn/framework3/trunk@5977 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-23 19:42:42 +00:00
et 9144789a9b Added module authentication verb bypass
git-svn-id: file:///home/svn/framework3/trunk@5976 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-22 04:34:59 +00:00
et c92a64e687 Added module to test for file copies
git-svn-id: file:///home/svn/framework3/trunk@5975 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-22 04:34:00 +00:00
HD Moore cef75433ec Fix non-404 errors
git-svn-id: file:///home/svn/framework3/trunk@5909 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:59:52 +00:00
HD Moore af686334c9 Fix ecode processing
git-svn-id: file:///home/svn/framework3/trunk@5908 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:51:21 +00:00
HD Moore e90c534500 Changes to the directory scanner
git-svn-id: file:///home/svn/framework3/trunk@5907 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:10:03 +00:00
et 4cbe6f975a Added new modules for file detection based on the name of the path directory
git-svn-id: file:///home/svn/framework3/trunk@5905 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 02:26:09 +00:00
et 2a1536d8d6 Fixed reporting variable wmap dir listing module
git-svn-id: file:///home/svn/framework3/trunk@5901 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 01:59:51 +00:00
HD Moore 07f087b969 Switch to the new exception format
git-svn-id: file:///home/svn/framework3/trunk@5880 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-11 05:12:52 +00:00
et b4cbe4ff8d Multiple bug fixes. Fixed query modules now resolved to correct function. Corrected in proxy and wmap code handling of RHOSTS as hostnames are not in use. Fixed reporting as target port was not handled properly and modules modified to reflect new wmap_target methods.
git-svn-id: file:///home/svn/framework3/trunk@5869 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-10 04:38:05 +00:00
et 75be2e33ad Added module reporting and wmap_reports command
git-svn-id: file:///home/svn/framework3/trunk@5789 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-27 02:22:30 +00:00
et ebc5294574 Added new wmap sqlmap module
git-svn-id: file:///home/svn/framework3/trunk@5787 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-25 03:26:50 +00:00
et 29e983567e removed reports_exist check
git-svn-id: file:///home/svn/framework3/trunk@5785 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-23 04:23:54 +00:00
et c4dc77c15b fixed ip handling and CN parsing
git-svn-id: file:///home/svn/framework3/trunk@5784 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-23 03:19:24 +00:00
Ramon de C Valle c66d6c4e46 Set property 'svn:keywords'
git-svn-id: file:///home/svn/framework3/trunk@5783 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-23 02:43:21 +00:00
et 13ab6ed2d8 added ssl host name detection module
git-svn-id: file:///home/svn/framework3/trunk@5776 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-22 05:31:55 +00:00
et f98c87ff22 added directory scanner
git-svn-id: file:///home/svn/framework3/trunk@5775 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-22 02:31:52 +00:00
Ramon de C Valle f124597a56 Code cleanups
git-svn-id: file:///home/svn/framework3/trunk@5773 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 21:03:39 +00:00
et 7e73ed8c15 first attempt of reporting implementation.
git-svn-id: file:///home/svn/framework3/trunk@5771 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 20:32:14 +00:00
et 478c8b0824 Added wmap simple directoty listing module
git-svn-id: file:///home/svn/framework3/trunk@5741 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-12 04:59:39 +00:00
James Lee b1f3c83f7b add support for finding .swp files
git-svn-id: file:///home/svn/framework3/trunk@5739 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-11 06:38:28 +00:00
James Lee de780fb2da typo fix
git-svn-id: file:///home/svn/framework3/trunk@5738 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-11 05:49:27 +00:00
et 7e5c759dd0 Fixed and reference to browser autopwn.
git-svn-id: file:///home/svn/framework3/trunk@5733 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 04:25:18 +00:00
HD Moore fd256ec4a1 This massive commit changes the metasploit 3 module format. The new syntax allows for greater scalability and future improvements to the metasploit module loader. This change also makes it easier for users to add new modules, since the class name no longer needs to match the directory structure.
git-svn-id: file:///home/svn/framework3/trunk@5709 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-02 05:23:59 +00:00
et fa3ce57fed Implemented Auxiliary::WMAPScanUniqueQuery.
git-svn-id: file:///home/svn/framework3/trunk@5704 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-01 03:57:57 +00:00
HD Moore b001e4684d Import first version of WMAP from ET LoWNOISE
git-svn-id: file:///home/svn/framework3/trunk@5675 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-22 22:32:20 +00:00
HD Moore 88a04a0ba0 New FrontPage modules from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@5500 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-01 18:53:28 +00:00
HD Moore 6e42e86e9d Complete move of test modules to test subdirectory
git-svn-id: file:///home/svn/framework3/trunk@5330 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:28:12 +00:00
HD Moore b5177e1dae module reoi
git-svn-id: file:///home/svn/framework3/trunk@5329 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:26:52 +00:00
HD Moore d95a0d8d90 Updated svn:keywords, merging minor changes
git-svn-id: file:///home/svn/framework3/trunk@4886 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-07 04:48:45 +00:00
HD Moore daf5936870 Merging minor changes to HTTP, adding NX support to landesk from NP
git-svn-id: file:///home/svn/framework3/trunk@4786 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-25 02:51:49 +00:00
HD Moore 4d1c274387 Merging all of the auxilliary/scanner related features
git-svn-id: file:///home/svn/framework3/trunk@4749 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-24 06:27:39 +00:00