jvazquez-r7
|
708cbd7b65
|
Allow to provide USER SID
|
2014-12-22 18:24:50 -06:00 |
|
jvazquez-r7
|
56eadc0d55
|
Delete default values from options
|
2014-12-22 18:11:43 -06:00 |
|
jvazquez-r7
|
787dab998d
|
Fix description
|
2014-12-22 17:51:44 -06:00 |
|
jvazquez-r7
|
a7faf798bf
|
Use explicit encryption algorithms
|
2014-12-22 15:51:17 -06:00 |
|
jvazquez-r7
|
f37cf555bb
|
Use random subkey
|
2014-12-22 15:39:08 -06:00 |
|
jvazquez-r7
|
b0a178e0a3
|
Delete blank line
|
2014-12-22 14:40:32 -06:00 |
|
jvazquez-r7
|
5a6c915123
|
Clean options
|
2014-12-22 14:37:37 -06:00 |
|
jvazquez-r7
|
20ab14d7a3
|
Clean module code
|
2014-12-22 14:29:02 -06:00 |
|
jvazquez-r7
|
dabc890b2f
|
Change module filename again
|
2014-12-22 12:35:15 -06:00 |
|
jvazquez-r7
|
2b46bdd929
|
Add references and authors
|
2014-12-22 12:34:31 -06:00 |
|
jvazquez-r7
|
4319dbaaef
|
Change module filename
|
2014-12-22 12:29:28 -06:00 |
|
jvazquez-r7
|
60d4525632
|
Add specs for Msf::Kerberos::Client::Pac
|
2014-12-21 17:49:36 -06:00 |
|
jvazquez-r7
|
9f1403a63e
|
Add initial specs for Msf::Kerberos::Client::TgsResponse
|
2014-12-20 20:29:00 -06:00 |
|
jvazquez-r7
|
b0ac68fbc3
|
Create build_subkey method
|
2014-12-19 19:46:57 -06:00 |
|
jvazquez-r7
|
4a106089b9
|
Move options to build_tgs_request_body
|
2014-12-19 19:12:17 -06:00 |
|
jvazquez-r7
|
e6781fcbea
|
Build AuthorizationData from the module
|
2014-12-19 18:59:39 -06:00 |
|
jvazquez-r7
|
9bd454d288
|
Build PAC extensions from the module
|
2014-12-19 18:47:41 -06:00 |
|
jvazquez-r7
|
def1695e80
|
Use options by call
|
2014-12-19 18:23:11 -06:00 |
|
jvazquez-r7
|
f332860c19
|
Clean creation of client and server principal names
|
2014-12-19 18:16:22 -06:00 |
|
jvazquez-r7
|
bd85723a9d
|
Build pre auth array out of the mixin
|
2014-12-19 18:10:14 -06:00 |
|
jvazquez-r7
|
d058bd5259
|
Refact extraction of kerberos cache credentials
|
2014-12-19 15:53:24 -06:00 |
|
jvazquez-r7
|
fad08d7fca
|
Add specs for Rex Kerberos client
|
2014-12-19 12:14:33 -06:00 |
|
jvazquez-r7
|
f325d2f60e
|
Add support for cache credentials in the mixin
|
2014-12-18 16:31:46 -06:00 |
Tod Beardsley
|
c15bad44a6
|
Be clearer on backslash usage.
See #4282
|
2014-12-18 16:16:02 -06:00 |
|
jvazquez-r7
|
9a58617387
|
Add dummy test module
|
2014-12-17 19:57:10 -06:00 |
|
jvazquez-r7
|
c683e7bc67
|
Fix banner
|
2014-12-12 13:01:51 -06:00 |
|
jvazquez-r7
|
047bc3d752
|
Make msftidi happy
|
2014-12-12 12:49:12 -06:00 |
|
jvazquez-r7
|
a1876ce6fc
|
Land #4282, @pedrib's module for CVE-2014-5445, NetFlow Analyzer arbitrary download
|
2014-12-12 12:47:50 -06:00 |
|
jvazquez-r7
|
a0b181b698
|
Land #4335, @us3r777 JBoss DeploymentFileRepository aux module
|
2014-12-12 10:40:03 -06:00 |
|
jvazquez-r7
|
3059cafbcb
|
Do minor cleanup
|
2014-12-12 10:37:50 -06:00 |
Christian Mehlmauer
|
0f27c63720
|
fix msftidy warnings
|
2014-12-12 13:16:21 +01:00 |
|
Christian Mehlmauer
|
544f75e7be
|
fix invalid URI scheme, closes #4362
|
2014-12-11 23:34:10 +01:00 |
Spencer McIntyre
|
86ae104580
|
Land #4325, consistent mssql module names
|
2014-12-09 21:52:05 -05:00 |
sinn3r
|
87c83cbb1d
|
Another round of name corrections
|
2014-12-09 20:16:24 -06:00 |
|
sinn3r
|
bb8dfdb15f
|
Ensure consistency for mssql modules
|
2014-12-09 10:28:45 -06:00 |
us3r777
|
4abfb84cfc
|
Upload WAR through Jboss DeploymentFileRepository
|
2014-12-08 19:02:51 +01:00 |
Pedro Ribeiro
|
98e416f6ec
|
Correct OSVDB id
|
2014-12-07 17:54:31 +00:00 |
|
Pedro Ribeiro
|
e474ecc9cf
|
Add OSVDB id
|
2014-12-07 17:41:35 +00:00 |
|
jvazquez-r7
|
54705eee48
|
Fix option parsing
|
2014-12-06 21:50:54 -06:00 |
|
sinn3r
|
4b06334455
|
Minor title change for mssql_enum_domain_accounts_sqli
We don't really do "-" for naming
Kind of stands up on a list
|
2014-12-05 11:42:08 -06:00 |
|
Pedro Ribeiro
|
e5bdf225a9
|
Update netflow_file_download.rb
|
2014-12-04 21:32:19 +00:00 |
|
Tod Beardsley
|
79f2708a6e
|
Slight fixes to grammar/desc/whitespace
Note that the format_all_drives module had a pile of CRLFs that should
have been caught by msftidy. Not sure why it didn't.
|
2014-12-04 13:11:33 -06:00 |
|
jvazquez-r7
|
ff30a272f3
|
Windows paths need 2 backslashes
|
2014-11-30 18:54:41 -06:00 |
|
jvazquez-r7
|
223bc340e4
|
Prepend peer
|
2014-11-30 18:46:15 -06:00 |
|
jvazquez-r7
|
5ad3cc6296
|
Make FILEPATH mandatory
|
2014-11-30 18:45:23 -06:00 |
|
jvazquez-r7
|
b1b10cf4e5
|
Use Rex::ConnectionError
|
2014-11-30 18:44:25 -06:00 |
|
jvazquez-r7
|
a549cbbef8
|
Beautify metadata
|
2014-11-30 18:44:03 -06:00 |
|
Pedro Ribeiro
|
26d9ef4edd
|
Explain about Windows back slashes on option
|
2014-11-30 00:15:44 +00:00 |
|
Pedro Ribeiro
|
2fb38ec7bb
|
Create exploit for CVE-2014-5445
|
2014-11-30 00:12:37 +00:00 |
|
jvazquez-r7
|
5f4760c58e
|
Print final results in a table
|
2014-11-25 14:01:29 -06:00 |
|
jvazquez-r7
|
d998d97aaa
|
Refactor build_user_sid
|
2014-11-25 13:58:47 -06:00 |
|
jvazquez-r7
|
aad860a310
|
Make conditional easier
|
2014-11-25 13:54:08 -06:00 |
|
jvazquez-r7
|
ba57bc55b0
|
Don't report service
|
2014-11-25 13:52:22 -06:00 |
|
jvazquez-r7
|
059b0e91da
|
Don't report service
* The mssql could be in a third host, not rhost
|
2014-11-25 13:50:42 -06:00 |
|
jvazquez-r7
|
b467bda2d6
|
Reuse local variable
|
2014-11-25 13:49:24 -06:00 |
|
jvazquez-r7
|
31a84ef6ff
|
Make ternary operator more readable
|
2014-11-25 13:44:50 -06:00 |
|
jvazquez-r7
|
be566e5ad3
|
Use a lower fuzz number by default
|
2014-11-25 13:42:47 -06:00 |
|
jvazquez-r7
|
cd43f83cd7
|
Delete unnecessary comments
* No need to comment every step, just relevant
comments to undrestad code.
|
2014-11-25 13:40:57 -06:00 |
|
jvazquez-r7
|
f93dbc6deb
|
Use the target domain name
|
2014-11-25 13:36:48 -06:00 |
|
jvazquez-r7
|
7c87603b0e
|
Add progress information
|
2014-11-25 13:23:36 -06:00 |
|
jvazquez-r7
|
8e5b37ea6e
|
Fix reporting
|
2014-11-25 13:20:31 -06:00 |
|
jvazquez-r7
|
93539ae4c6
|
Use shorter variable name
|
2014-11-25 13:04:31 -06:00 |
|
jvazquez-r7
|
271f982f34
|
Use peer
|
2014-11-25 13:03:48 -06:00 |
|
jvazquez-r7
|
c549508abb
|
Use vprint
|
2014-11-25 13:03:18 -06:00 |
|
jvazquez-r7
|
249fb79a21
|
Fix print_* calls
|
2014-11-25 13:02:53 -06:00 |
|
jvazquez-r7
|
87cfd7c321
|
Dont use disconnect
|
2014-11-25 13:00:53 -06:00 |
|
jvazquez-r7
|
fb8372f505
|
Fix metadata
|
2014-11-25 12:59:11 -06:00 |
|
jvazquez-r7
|
71f35f5cd6
|
Update from upstream master
|
2014-11-25 12:46:44 -06:00 |
nullbind
|
4bd579bc1c
|
added mssql_enum_domain_accounts_sqli
|
2014-11-25 09:57:20 -06:00 |
|
jvazquez-r7
|
343a0d78bc
|
Delete admin check
|
2014-11-24 12:28:19 -06:00 |
|
jvazquez-r7
|
7164c4e038
|
Use shorter filename
|
2014-11-24 12:10:08 -06:00 |
|
jvazquez-r7
|
021b27dd83
|
Clean reporting
|
2014-11-24 12:01:09 -06:00 |
|
jvazquez-r7
|
f74ab34881
|
Delente unnecessary check
|
2014-11-24 11:50:41 -06:00 |
|
jvazquez-r7
|
3c858c793a
|
Use vprint
|
2014-11-24 11:49:36 -06:00 |
|
jvazquez-r7
|
4a169210ab
|
Use vprint
|
2014-11-24 11:48:16 -06:00 |
|
jvazquez-r7
|
ecb74c543a
|
Beautify description
|
2014-11-24 11:27:32 -06:00 |
|
jvazquez-r7
|
c52104e91d
|
Beautify metadata
|
2014-11-24 11:24:41 -06:00 |
|
jvazquez-r7
|
fcb4bea3c1
|
Fix code comments
|
2014-11-24 11:23:27 -06:00 |
|
jvazquez-r7
|
10d0305cb2
|
Update from upstream master
|
2014-11-24 09:48:43 -06:00 |
|
jvazquez-r7
|
fb4b6543e2
|
Handle other rex exceptions
|
2014-11-18 15:57:41 -06:00 |
|
nullbind
|
8c34f35ca9
|
added mssql_enum_windows_domain_accounts.rb
|
2014-11-17 13:03:43 -06:00 |
Jon Hart
|
9e2513d4de
|
Update solaris_kcms_readfile to gracefully handle RPC errors
|
2014-11-17 10:41:17 -08:00 |
|
Tod Beardsley
|
e2dc862121
|
Fix newly introduced typo.
|
2014-11-13 14:53:57 -06:00 |
|
Tod Beardsley
|
dd1920edd6
|
Minor typos and grammar fixes
|
2014-11-13 14:48:23 -06:00 |
|
jvazquez-r7
|
f081ede2aa
|
Land #4155, @pedrib's module for CVE-2014-8499
* Password Manager Pro privesc + password disclosure
|
2014-11-12 23:56:26 -06:00 |
|
Pedro Ribeiro
|
9df31e950f
|
Add OSVDB id
|
2014-11-12 21:32:33 +00:00 |
|
jvazquez-r7
|
70589668c2
|
Really land the #4130 module
|
2014-11-12 09:39:01 -06:00 |
|
jvazquez-r7
|
ece8013d7a
|
Use #empty?
|
2014-11-12 09:35:06 -06:00 |
|
jvazquez-r7
|
f048463ed6
|
Do minor fixupts
* Delete peer method
* Make verifications more strict
|
2014-11-12 09:33:49 -06:00 |
|
jvazquez-r7
|
a5c87db65e
|
Do minor cleanup
* Beautify description
* Use double quotes for interpolation
|
2014-11-12 09:29:53 -06:00 |
|
jvazquez-r7
|
e1164d3e14
|
Use snake_case on filename
|
2014-11-12 09:26:47 -06:00 |
|
jvazquez-r7
|
01fda27264
|
Fix title
|
2014-11-11 11:15:53 -06:00 |
|
jvazquez-r7
|
a588bfd31a
|
Use single quotes
|
2014-11-11 09:56:46 -06:00 |
|
jvazquez-r7
|
77c8dc2b64
|
Dont return nil from 'run'
|
2014-11-11 09:39:08 -06:00 |
|
jvazquez-r7
|
fb309aae11
|
Use a Fixnum as FuzzInt default value
|
2014-11-11 09:36:53 -06:00 |
|
jvazquez-r7
|
f6762b41b6
|
Use random fake db name
|
2014-11-11 09:35:51 -06:00 |
|
jvazquez-r7
|
94c353222d
|
Do small cosmetic changes
|
2014-11-11 09:31:57 -06:00 |
|
jvazquez-r7
|
e9e5869951
|
update from master
|
2014-11-11 09:24:33 -06:00 |
|
jvazquez-r7
|
091da05a86
|
update from master
|
2014-11-10 22:59:44 -06:00 |
|
jvazquez-r7
|
cac6494427
|
Use snake_case in filename
|
2014-11-10 16:58:46 -06:00 |