Commit Graph

8881 Commits (36b83cde6f4f81e9683b4f2ae77defc21b72cf05)

Author SHA1 Message Date
David Rude 36b83cde6f Added exploit for CVE-2010-3747 RealPlayer CDDA URI Code Execution
git-svn-id: file:///home/svn/framework3/trunk@12009 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 15:42:28 +00:00
James Lee ded3ff9c75 add support for actions in post modules. fixes #3965~
git-svn-id: file:///home/svn/framework3/trunk@12008 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 05:39:30 +00:00
David Rude 382e63e16e fixed a typo in javascript
git-svn-id: file:///home/svn/framework3/trunk@12007 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 04:40:36 +00:00
Matt Weeks c4bd210eae Fixes #3959.
git-svn-id: file:///home/svn/framework3/trunk@12006 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 04:12:51 +00:00
Matt Weeks 91a48cd04b Fix error with undefined variable 'name' when clearing default workspace
git-svn-id: file:///home/svn/framework3/trunk@12005 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 04:10:22 +00:00
Matt Weeks 6cd1699c42 Enable command passthru in "web" console, since it's awfully convenient and no longer provides any security since msfweb was removed.
(console access already provides the ability to execute OS commands)



git-svn-id: file:///home/svn/framework3/trunk@12004 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 00:17:45 +00:00
Carlos Perez a5e899cb04 Fix loading problem on one of the test boxes
git-svn-id: file:///home/svn/framework3/trunk@12003 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 00:10:07 +00:00
Carlos Perez 6a1acd6a54 small typo
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
James Lee b20a247eac typo fix, thanks knicklighter
git-svn-id: file:///home/svn/framework3/trunk@12001 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:10:34 +00:00
Mario Ceballos 09f58f0091 removed for carlos
git-svn-id: file:///home/svn/framework3/trunk@12000 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:57:57 +00:00
Carlos Perez 4031daa1fb update modules to use is_system? to ensure SID is used to verify when running in certain languages in Windows
git-svn-id: file:///home/svn/framework3/trunk@11999 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:54:40 +00:00
Carlos Perez 89795f1784 Update Meterpreter scripts to use is_system? and make getgui script language independent thru the use of SID for group identification
git-svn-id: file:///home/svn/framework3/trunk@11998 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:48:43 +00:00
Carlos Perez e49ab08e21 Add support to scripts for Meterpreter Accounts Mixin and add new method is_system? for checking if sessions is running as SYSTEM, uses SID so as at to ensure compatibility with multiple language versions of windows.
git-svn-id: file:///home/svn/framework3/trunk@11997 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:44:36 +00:00
Joshua Drake 5bfd574029 fix parse error
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Tod Beardsley d289aa8733 Another touchup on author credit for oracle-brute NSE script integration.
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:05:09 +00:00
Wei Chen 5800608356 Not ready to be part of msf repo, killing it
git-svn-id: file:///home/svn/framework3/trunk@11993 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 20:42:56 +00:00
amaloteaux f4ceb83e40 send spn avp by default ; it wont hurt at all
git-svn-id: file:///home/svn/framework3/trunk@11992 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 20:01:28 +00:00
HD Moore f317d60e04 Fix a few cosmetic issues with the kingview module
git-svn-id: file:///home/svn/framework3/trunk@11991 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 18:04:15 +00:00
Wei Chen 26bee16b5c I should probably add myself as an author.
git-svn-id: file:///home/svn/framework3/trunk@11990 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:45:12 +00:00
Carlos Perez 8d1b37a452 save hashes to DB
git-svn-id: file:///home/svn/framework3/trunk@11989 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:26:49 +00:00
Carlos Perez cb9abd8b13 saved sha1 instead of the proper hash, major typo on my part
git-svn-id: file:///home/svn/framework3/trunk@11988 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:19:37 +00:00
Mario Ceballos dfd2df6b47 puts this in the appropiate place
git-svn-id: file:///home/svn/framework3/trunk@11987 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:22:07 +00:00
Steve Tornio 78d4822d27 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11986 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:15:54 +00:00
David Rude eeb1aae9d0 Added Japanese NO NX Target
git-svn-id: file:///home/svn/framework3/trunk@11985 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 07:58:50 +00:00
Wei Chen f7afe01f8d propset
git-svn-id: file:///home/svn/framework3/trunk@11984 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 06:25:29 +00:00
Joshua Drake 4a1e59be8d oops =D
git-svn-id: file:///home/svn/framework3/trunk@11983 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 05:01:29 +00:00
Joshua Drake 4644110962 add exploit for cve-2010-4452, currently windows only and no payloads :(
git-svn-id: file:///home/svn/framework3/trunk@11982 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 04:50:25 +00:00
Raphael Mudge ebb41c327e Armitage 03.16.11: Fixed a deadlock conditon, improved responsiveness of meterpreter and command shell, and added an execute option to the file browser.
git-svn-id: file:///home/svn/framework3/trunk@11981 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 04:20:56 +00:00
Wei Chen 7308a032f9 Added kingview historysvr exploit. by rick2600 & Dillon.
git-svn-id: file:///home/svn/framework3/trunk@11980 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:46:20 +00:00
Tod Beardsley c6a9a6efd7 Am I really updating for a misplaced comment? Why yes I am!
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:45:29 +00:00
Wei Chen e1ff12292f wrong directory
git-svn-id: file:///home/svn/framework3/trunk@11978 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:44:50 +00:00
Wei Chen 36c05de02e Added kingview historysvr exploit. By rick2600 and Dillon.
git-svn-id: file:///home/svn/framework3/trunk@11977 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:39:45 +00:00
Tod Beardsley 424eb1f192 Adding a reference to NSE as well.
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:26:20 +00:00
Tod Beardsley 9b431c0c8d Adding Patrik Karlsson as an author for the nmap nse script
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:19:57 +00:00
Mario Ceballos 6d3d0adf93 added exploit module coldfusion_traversal.rb from webDEViL
git-svn-id: file:///home/svn/framework3/trunk@11974 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 01:38:16 +00:00
amaloteaux 91c50f7683 use self.rhost instead of datastore['RHOST']
git-svn-id: file:///home/svn/framework3/trunk@11973 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 00:34:07 +00:00
amaloteaux a7d2a34fe2 move comment
git-svn-id: file:///home/svn/framework3/trunk@11972 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 00:27:44 +00:00
amaloteaux b7a0a305ee allow psexec to success when SPN validation level is required on windows seven / 2008r2 servers
git-svn-id: file:///home/svn/framework3/trunk@11971 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 00:12:07 +00:00
Tod Beardsley ecb89c785b Actually use the API for appending command line arguments for nmap.
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:59:35 +00:00
Steve Tornio abcce881b2 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11969 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:56:11 +00:00
Mario Ceballos 8189a1f7a9 added exploit module hp_openview_insight_backdoor.rb
git-svn-id: file:///home/svn/framework3/trunk@11968 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:22:07 +00:00
Tod Beardsley 5e715c22db Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist.
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:16:18 +00:00
Tod Beardsley 292f357f7a Moving requires from oracle_login to nmap. Duh.
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 20:46:03 +00:00
James Lee cdb1a50c7f add war support for java, in addition to the jsp exe dropper
git-svn-id: file:///home/svn/framework3/trunk@11965 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 19:53:41 +00:00
Tod Beardsley 9e15c487b5 Adding pid info for nmap.
git-svn-id: file:///home/svn/framework3/trunk@11964 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 18:31:17 +00:00
Matt Weeks fa3c038f1d Check for nulls/nils when retrieving client list
git-svn-id: file:///home/svn/framework3/trunk@11963 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 16:52:01 +00:00
Matt Weeks f3ddb869be Clean these too.
git-svn-id: file:///home/svn/framework3/trunk@11962 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 01:53:45 +00:00
James Lee 7d12151ec6 add support for http digest authentication. fixes #2504, thanks oliver kleinecke for the patch!
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
Tod Beardsley 6e0e23f5ba Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions.
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:13:57 +00:00