1085357dbb
Talked to Todb, we like "." better
2012-11-30 14:53:57 -06:00
01fc69b2b5
Merge branch 'mandreko-http_hsts'
2012-11-30 14:26:49 -06:00
61a74bf257
Minor changes here and there
...
Changes include:
* Some corrections in metadata
* report_note()
* Removes connect(), usually don't need it in modules
2012-11-30 14:24:27 -06:00
bc63ee9c46
Merge branch 'jvazquez-r7-file_dropper_support_local' into rapid7
2012-11-30 13:43:02 -06:00
a73d8792ee
Changed RPORT definition per egypt
2012-11-30 13:57:25 -05:00
7ae8f5b338
Modify name a little
2012-11-30 12:11:06 -06:00
9db84a16fa
Change output
2012-11-30 12:06:21 -06:00
44022baefa
Fix bug: NoMethodError undefined method `empty?' for nil:NilClass
2012-11-30 12:02:32 -06:00
37367bbaa0
Mostly cosmetic changes
2012-11-30 12:01:47 -06:00
4df86c08db
Merge branch 'ftpx_post_gather' of git://github.com/bcoles/metasploit-framework into bcoles-ftpx_post_gather
2012-11-30 11:19:32 -06:00
40b8c93ef8
Added HSTS scanner for HTTPS sites
2012-11-30 09:30:11 -05:00
9d52048d7f
Forgot to remove this after badchar analysis
2012-11-30 02:17:08 -06:00
37f731fe7d
Add OSVDB-80896 BlazeVideo HDTV Player Pro 6.6 Buffer Overflow
2012-11-30 02:14:22 -06:00
0472d60c4a
Add FTP Explorer (FTPx) post->gather->credentials module
...
This module finds saved login credentials for the
FTP Explorer (FTPx) FTP client for Windows.
2012-11-30 15:09:14 +10:30
7d4982b47b
Fixed description area and authoer section
2012-11-29 14:21:27 -06:00
d6a3f6666d
Fixed simple return form get_output method
2012-11-29 14:15:57 -06:00
cf53588ab7
Removed Version
2012-11-29 14:14:41 -06:00
3ebbee5b1f
Removed generic URLs
2012-11-29 14:13:49 -06:00
bf41d3d0fd
Merge branch 'network_shutdown_creds' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-network_shutdown_creds
2012-11-29 10:43:03 -06:00
b0e4931de8
When 'credentials' is empty, it is empty.......
2012-11-29 10:22:20 -06:00
3ae8594f53
Fix typo
2012-11-29 10:17:44 -06:00
93a69ea62e
Fix instances of invalid lower-case datastore use
2012-11-29 00:05:36 -06:00
8b3d200986
Add a check for nil
2012-11-28 23:50:29 -06:00
b3a473aec0
Forgot to remove this option
2012-11-28 18:48:33 -06:00
0415d31c61
Update description
2012-11-28 16:07:21 -06:00
52c2437d5a
Add OSVDB-83199 as a cred collecting aux module
...
From #1102
2012-11-28 15:56:13 -06:00
17518f035c
support for local exploits on file_dropper
2012-11-28 22:17:27 +01:00
b2f906e83e
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-11-28 15:10:51 -06:00
b764110e6e
Use PhpEXE to be able to support PHP and Linux native payloads
2012-11-28 15:06:39 -06:00
85ed074674
Final cleanup on always_install_elevated
2012-11-28 21:50:08 +01:00
fd1557b6d2
Merge branch 'msi_elevated' of https://github.com/Meatballs1/metasploit-framework into Meatballs1-msi_elevated
2012-11-28 21:49:36 +01:00
fd2296317d
Strip the credential dumping stuff (making it auxiliary)
...
Also a little description update
2012-11-28 14:27:01 -06:00
6b524ff22a
Merge branch 'eaton_network_shutdown' of git://github.com/h0ng10/metasploit-framework into h0ng10-eaton_network_shutdown
2012-11-28 11:22:36 -06:00
7fea0d4af6
Add initial auto run script
2012-11-28 16:38:31 +00:00
82dc8e8814
Added check for LOGONSERVER and HOMEPATH
2012-11-28 09:02:19 -06:00
a3fbf276f9
Reinstated cleanup
2012-11-28 11:23:08 +00:00
b5b47152fc
Changed to static msi filename
2012-11-28 11:21:02 +00:00
d130d38bad
Merge branch 'module-rpcapd-start' of https://github.com/bmerinofe/metasploit-framework into bmerinofe-module-rpcapd-start
2012-11-28 12:09:08 +01:00
cdd9eb19cf
Licence Changed. Return added when RHOST is nil
2012-11-28 10:38:24 +01:00
897ae102d4
fixed msftidy.rb complains
2012-11-28 01:22:19 -05:00
7109d63f36
Code clean up, thanks to Brandon Perry
2012-11-28 01:20:41 -05:00
76f7abe5b6
Little tidy up
2012-11-27 23:58:58 +00:00
81c2182424
Msftidy
2012-11-27 23:33:07 +00:00
9741d55724
Moved to agnostic post module commands
2012-11-27 23:26:19 +00:00
6fe378b594
Minor changes to description
2012-11-27 20:56:52 +00:00
d067b040a0
Minor changes to description
2012-11-27 20:55:36 +00:00
a24ebde3e3
Fix syntax on @@loaded_msfrpc
2012-11-27 14:10:46 -06:00
84294655aa
Update the require, error handling, casing
2012-11-27 11:44:51 -08:00
b008eb93c9
Fix msgpack issue
2012-11-27 12:45:01 -06:00
7727f3d6e8
Msftidy
2012-11-27 18:31:54 +00:00
889c8ac12d
Add build instructions and removed binary
2012-11-27 18:18:20 +00:00
bc9065ad42
Move MSI source and binary location
2012-11-27 18:12:49 +00:00
0440708453
I missed this sucker: var in a quote
2012-11-27 11:57:51 -06:00
0a0195e6c8
Merge branch 'kost-aux-scan-nexpose'
2012-11-27 11:57:11 -06:00
24f44e7a82
Lots of small changes
...
Basically the same changes I've been correcting like the rest of
other modules.
2012-11-27 11:52:58 -06:00
6ccceedcb7
final cleanup for sip_deregister
2012-11-27 18:34:31 +01:00
496fb63fad
Merge branch 'sip_deregister' of https://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-sip_deregister
2012-11-27 18:34:05 +01:00
4ef0d8699a
added exploit for OSVDB 83199
2012-11-27 12:29:10 -05:00
4dbb82d0bc
Merge branch 'aux-scan-nexpose' of git://github.com/kost/metasploit-framework into kost-aux-scan-nexpose
2012-11-27 11:25:44 -06:00
139c149583
This variable doesn't have to be in a quote
2012-11-27 11:19:04 -06:00
673c519fa3
msg() isn't needed, because it's already implemented in HttpClient
2012-11-27 11:18:27 -06:00
7c3e478070
Final changes
2012-11-27 11:16:12 -06:00
bb34fb8dec
Actually, this is the exact reason why res can be nil
2012-11-27 11:14:52 -06:00
eb30765509
Use vars_post instead of data
2012-11-27 11:13:21 -06:00
4796fb4415
These don't need to be in a quote
2012-11-27 11:12:15 -06:00
5b787406b9
Correct output messages
...
When HttpClient is used, it's actually not necessary to put the
target's IP/port and the module name in the output, because it's
already included in there.
2012-11-27 11:10:31 -06:00
46f86f46fa
Merge branch 'aux-scan-nessus' of git://github.com/kost/metasploit-framework into kost-aux-scan-nessus
2012-11-27 11:01:36 -06:00
b395f8f96d
Only XP for target coverage
2012-11-27 10:48:20 -06:00
2e71fc740e
No badchars, then no need to have the key
2012-11-27 10:46:20 -06:00
8c53b275c6
Added module for cve-2012-3753
2012-11-27 12:10:00 +01:00
319fa04c16
Fix Ruby 1.8 comma of death
2012-11-26 16:45:43 -06:00
9ccc69c4c1
Mostly cosmetic changes. Plus a nil token bug fix.
2012-11-26 16:32:49 -06:00
32ea36916c
Cosmetic changes
2012-11-26 16:28:16 -06:00
65ac56a7a7
Merge branch 'aux-scan-metasploit' of git://github.com/kost/metasploit-framework into kost-aux-scan-metasploit
2012-11-26 16:26:11 -06:00
472ec35adb
Merge branch 'kost-aux-scan-splunk-login'
2012-11-26 16:16:02 -06:00
af451df864
Lots of changes made
...
These changes include:
* More description
* Checks if auth is actually required.
* Collects the default credential on the webpage, and then tries it.
* Fixes possible nil 'Set-Cookie' header.
* Supports more options (USERPASS_FILE, USER_FILE, PASS_FILE)
* Removes the msg() function.
2012-11-26 16:12:11 -06:00
f1fedee63b
EOL space, deleted
2012-11-26 14:19:40 -06:00
3588787df9
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-11-26 12:59:49 -06:00
0ea63ca9c2
Merge branch 'web-modules' of git://github.com/tasos-r7/metasploit-framework into tasos-r7-web-modules
2012-11-26 12:59:29 -06:00
7795dc58f4
auxiliary/scanner/http/crawler#form_from_url: rescue => rescue URI::Error
2012-11-26 20:54:20 +02:00
36e2a4fddc
Merge branch 'splunk_nil_cookie' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-splunk_nil_cookie
2012-11-26 19:18:32 +01:00
541ecd49d6
Merge branch 'web-modules' of git://github.com/tasos-r7/metasploit-framework into tasos-r7-web-modules
2012-11-26 12:17:24 -06:00
9c3be383d0
The 'Set-Cookie' header should be checked before accessing it
2012-11-26 12:06:43 -06:00
c17cffdece
auxiliary/scanner/http: wrapped an exception-prone URL parse in a begin/rescue block
2012-11-26 18:58:06 +02:00
6dfda6da37
Added Maxthon3 Cross Context Scripting (XCS) exploits for Win
2012-11-24 15:53:58 -08:00
c22335a2f5
Remove spaces at EOL
2012-11-24 23:32:32 +01:00
7bafc97fec
Remove non needed and redundant checks
2012-11-24 23:01:08 +01:00
bbe3659093
Import of MSF web interface guesser
2012-11-24 22:56:38 +01:00
cdfe663675
initial import of splunk password guesser
2012-11-24 22:05:57 +01:00
860519099f
Removed space at EOL
2012-11-24 19:34:42 +01:00
414fd052c1
final cleanup
2012-11-24 15:03:14 +01:00
fab3427b25
Merge branch 'command' of https://github.com/R3dy/metasploit-framework into R3dy-command
2012-11-24 15:02:39 +01:00
4ad0907c29
Wrap description to 80 cols
2012-11-24 08:13:36 +01:00
14ec0c8a60
Fix http code check + be more verbose
2012-11-24 08:09:26 +01:00
83168e8b56
Correct placement of autofilter ports statement
2012-11-24 07:38:27 +01:00
d008fa0250
Make wrapping works and look better
2012-11-24 07:33:25 +01:00
f88c4491b5
Added autofilter_port to 3790(metasploit web intf)
2012-11-24 07:28:39 +01:00
8608bebbe7
Wrapped module info to col80
2012-11-24 07:27:10 +01:00
e9256de6f6
Merge branch 'jvazquez-r7-apple_quicktime_texml_font_table'
2012-11-23 18:53:31 -06:00
965efc9c8d
Last touch up
2012-11-23 18:51:51 -06:00
sinn3r
James Lee
Matt Andreko
bcoles
Royce Davis
HD Moore
jvazquez-r7
Meatballs1
Borja Merino
h0ng10
Tod Beardsley
Tasos Laskos
malerisch
Vlatko Kosturjak