d95d60670e
Fix up desc again on enum_dns
2012-03-26 16:20:00 -05:00
14b45f9fb1
More fixes to enum_dns.rb
...
* Should use 'and', not & (bitwise AND)
* Made capitalization sane for Anglophones. See: http://owl.english.purdue.edu/owl/resource/592/1/
2012-03-26 16:14:04 -05:00
dc6f76eb20
Style fixes for enum_dns.rb
...
* Use a dotted.notation for note types
* Changed title to something more descriptive
* Expanded description
* Other trivial changes
2012-03-26 16:08:39 -05:00
79d74b8768
ADD OSVDB-80262
2012-03-26 12:58:18 -05:00
19fc8d9883
Add OSVDB-80262
2012-03-26 12:42:24 -05:00
507dd423ce
Rogue period, DELETED.
2012-03-26 10:54:26 -05:00
182f3744de
Cosmetic cleanup
2012-03-26 09:23:14 -05:00
ad32911b1a
probably safer to use regex
2012-03-26 09:01:40 -05:00
e2606764cb
forgot to add renamed module
2012-03-25 09:08:38 -07:00
7ea37253a0
modifications recommended by sinn3r
2012-03-25 09:04:35 -07:00
d8ddb19b56
cve-2008-0610 windows exploit module
2012-03-25 00:14:19 -07:00
135cf7ba04
remove trailing comma, thanks troulouliou
2012-03-23 17:00:04 -05:00
e1783acd6f
Adding newline to end of ricoh_dl_bof.rb
2012-03-23 16:31:11 -05:00
2bcf259301
Setting correct LFs on freepbx_callmenum.rb
2012-03-23 16:29:42 -05:00
71462bc73d
Merging in freepbx_callmenum.rb and ricoh_dl_bof.rb
...
[Closes #266 ]
2012-03-23 16:23:36 -05:00
fbfd308d79
This actually shouldn't go it now because it's still being code reviewed
2012-03-23 15:32:24 -05:00
47493af103
Merge pull request #259 from todb-r7/edb-2
...
Convert Exploit-DB references to first-tier "EDB-12345" references
2012-03-23 12:09:07 -07:00
6f0f9041c8
Merge pull request #267 from wchen-r7/hp_data_protector_win_cmd
...
Add HP Data Protector aux module for executing commands on Windows
2012-03-23 11:06:52 -07:00
10733f6a1c
Update description
2012-03-23 13:05:40 -05:00
fef1e31e2a
Merge branch 'olliwolli-3cdaemonsp3'
2012-03-23 08:52:19 -05:00
e30623a2c9
Merge pull request #264 from wchen-r7/ricoh_dc_exploit
...
Add Ricoh DC DL-10 FTP Buffer Overflow
2012-03-23 06:45:02 -07:00
20f0a58c6a
Minor fixes
2012-03-23 08:23:30 -05:00
41bc8ded3d
Add HP Data Protector aux module for executing commands on Windows
2012-03-23 07:57:13 -05:00
30a3d8bb96
Add Windows SP3 to targets.
2012-03-23 13:52:18 +01:00
17a044db89
Print the full URI
...
Makes everything obvious from output alone, don't need to show options
to see what RHOST is.
2012-03-22 18:44:55 -06:00
6625d97599
Add Ricoh DC DL-10 FTP Buffer Overflow
2012-03-22 15:30:00 -05:00
3dc0e97998
Updating description and refs to Patrick's module
...
There was some weirdness with the commit log on this module but it
should all be kosher now.
[Closes #260 ]
2012-03-22 10:30:25 -05:00
2d29184adc
Use interpolation to ensure LPORT is a string for gsub
...
[Fixes #6542 ]
2012-03-21 21:05:05 -06:00
ddacf1dde8
Merge pull request #258 from wchen-r7/ms10_002_ie
...
Add CVE-2010-0248 Internet Explorer Object Handling Use After Free
2012-03-21 17:20:27 -07:00
0a24c354db
Update ms10-002 with dyphens
2012-03-21 19:19:20 -05:00
7d12a3ad3a
Manual fixup on remaining exploit-db references
2012-03-21 16:43:21 -05:00
2f3bbdc00c
Sed replacement of exploit-db links with EDB refs
...
This is the result of:
find modules/ -name \*.rb -exec sed -i -e 's#\x27URL\x27,
\x27http://www.exploit-db.com/exploits/ \([0-9]\+\).*\x27#\x27EDB\x27,
\1#' modules/*.rb {} \
2012-03-21 16:43:21 -05:00
2c16eb29b6
Add CVE-2010-0248 Internet Explorer Object Handling Use After Free exploit
2012-03-21 16:11:26 -05:00
31228ed65a
Comment indentation
2012-03-21 15:21:10 -05:00
482a1a8511
Merge pull request #253 from corelanc0d3r/dnspayload
...
rewrote DNS TXT query out-of-band payload delivery shellcode
2012-03-21 13:19:55 -07:00
8f17cc3f5c
MS12-020 not MS12-002
2012-03-21 13:58:18 -05:00
23c9c51014
Fixing CVE format on sit_file_upload.
2012-03-21 09:59:20 -05:00
b09d91d1c7
Removing enum_bing_url
...
Moving this over to unstable until the described http request problem
gets resolved.
2012-03-21 09:33:31 -05:00
89d7363a8f
fixed crash
2012-03-21 10:39:05 +01:00
c64226f4b8
Fix regex
2012-03-21 04:31:49 -05:00
056985625d
damn comma
2012-03-21 04:06:54 -05:00
e973da7c6d
Add Chicken of the VNC client profile collector module
2012-03-21 04:04:35 -05:00
f81730a7e1
changes to the way jmp to payload is done
2012-03-21 09:52:22 +01:00
45ef7fc35d
reset author
2012-03-20 20:43:56 +01:00
ed542e2b6c
Change dns_enum to enum_dns for naming style consistency
2012-03-20 14:11:04 -05:00
b8b5c79957
No need for net/http
2012-03-20 14:09:40 -05:00
777e221232
Add Bing URL enumerator by Royce (Feature #6499 )
2012-03-20 14:07:42 -05:00
da963fc8b2
Adding OSVDB for dell_webcam_crazytalk.rb
2012-03-20 07:52:50 -05:00
e325469f6e
Grammar fix for dell_webcam_crazytalk module
2012-03-20 07:43:02 -05:00
f4dac59894
Add Dell Webcam CrazyTalk component BackImage overflow exploit
2012-03-20 03:46:37 -05:00
a3035dc6d0
Adding corelandc0d3r's http/https/ftp payload
...
Picks up the one http/https/ftp payload, but not the other two DNS
payloads listed as part of the original pull request.
[Closes #173 ]
2012-03-19 16:50:59 -05:00
bff860c62d
s/brute force/bruteforce
...
This is the preferred spelling in Metasploit, at least, according to
grep consensus:
./metasploit-framework$ grep -ri "brute force" . | wc -l
111
./metasploit-framework$ grep -ri "bruteforce" . | wc -l
183
2012-03-19 16:14:00 -05:00
4391c24d2f
Trivial touchups on RDP DoS module.
...
Dropping a line about what it can't do, adding freenode comment.
2012-03-19 14:27:27 -05:00
3a851ef2c2
Fix typo
2012-03-19 13:20:59 -05:00
3d72d52625
Add reporting to MS12-020
2012-03-19 13:18:51 -05:00
fa4504e1f6
Let's make this clear, it's just a DoS
2012-03-19 13:00:29 -05:00
13f16daca7
Actually, that date is way off. Corrected.
2012-03-19 12:58:52 -05:00
d8be328b89
Ported Daniel/Alex/jduck's MS12-020 PoC as a Metasploit module
2012-03-19 12:53:34 -05:00
cdd7a16603
Apply egypt's fix for "\n"
2012-03-19 10:19:10 -05:00
aeb691bbee
Massive whitespace cleanup
2012-03-18 00:07:27 -05:00
7c77fe20cc
Some variables don't need to be in a double-quote.
2012-03-17 20:37:42 -05:00
acac3fa38d
Add back enum_protections with some new changes
2012-03-17 16:00:20 -05:00
14d427fa87
Added fix for enum_protections
2012-03-17 13:28:31 -04:00
78331bb4c1
A bunch of fixes
2012-03-17 03:14:26 -05:00
4a0c75f4b3
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework
2012-03-17 02:38:35 -05:00
ff093c3f93
The comments in get_chatlogs need an update
2012-03-17 00:28:05 -05:00
39cfa43250
Correct license format
2012-03-17 00:25:41 -05:00
3479a314e3
Add enum_adium.rb post module
2012-03-17 00:22:03 -05:00
c3f98fe284
Changed store_note to store_loot. Fixed local/remote file retrieval
2012-03-16 16:54:36 -03:00
d3a87b59aa
This module is not ready, yanked.
2012-03-16 11:49:31 -05:00
ba6928cbf1
sockso_traversal 1.8 compatibility fix
2012-03-16 18:12:09 +02:00
c5a4dc39c3
fix
2012-03-16 09:17:35 -04:00
9b4ecc2777
Merge branch 'post-mods' of github.com:ohdae/metasploit-framework into post-mods
2012-03-16 09:15:47 -04:00
b635019d56
saves each config to loot instead of notes
2012-03-16 09:14:48 -04:00
9f0a293a53
Correct variable name
2012-03-16 01:17:39 -05:00
13b92b97e9
Fixed incorrect variable within get_sql_history
2012-03-16 01:40:12 -03:00
f6a2e2b890
Enumerate important and interesting configuration files
2012-03-15 22:59:42 -04:00
6011da7db8
More Virtualisation SSL fixes
2012-03-15 19:06:48 -05:00
e4778c2ba4
Default SSL to true for esx_fingerprint module
2012-03-15 18:15:29 -05:00
e3f2610985
Msftidy run through on the easy stuff.
...
Still have some hits, but that requires a little more code contortion to
fix.
2012-03-15 17:06:20 -05:00
9144c33345
MSFTidy check for capitalization in modules
...
And also fixes up a dozen or so failing modules.
2012-03-15 16:38:12 -05:00
46dbaf8283
Fix typos and output
2012-03-15 16:10:05 -05:00
81b3eaa482
Fix typo
2012-03-15 15:56:24 -05:00
db4538389c
Add sockso dir traversal
2012-03-15 15:55:54 -05:00
74e40763d6
Fix syntax error in 1.8, thanks Jun Koi for the patch
2012-03-15 14:32:16 -06:00
e53938b9d7
Merge branch 'ohdae-post-mods'
2012-03-15 14:30:23 -05:00
2770199d28
enum_protections is now find_apps
2012-03-15 14:27:40 -05:00
e5c420b676
File rename, as well as design and cosmetic changes
2012-03-15 14:22:23 -05:00
8b91cc54c3
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework into ohdae-post-mods
2012-03-15 13:50:43 -05:00
7e7b220b70
added report_note, removed store_loot function, cleaned up info/author
2012-03-15 15:29:52 -03:00
d5f83be2d0
Cosmetic changes
2012-03-15 11:21:41 -05:00
0389e47dfe
fix little mistake
2012-03-15 16:21:00 +01:00
b88af39f74
fixed output newline issue
2012-03-15 12:18:29 -03:00
9928b102b5
Added rails_mass_assignment module.
2012-03-15 16:56:38 +02:00
5250b179c8
Add CVE and OSVDB ref
2012-03-15 04:40:27 -05:00
32002c595d
fixed save line
2012-03-15 01:05:35 -03:00
c165b7b7c2
removed unneeded comments
2012-03-15 01:02:07 -03:00
58b2d570c9
fixed output issue
2012-03-15 01:00:55 -03:00
65bde7ec99
Add OSVDB-79863 NetDecision Directory Traversal
2012-03-14 16:50:54 -05:00
f91b894375
added posibilities for generating payload from asm to more arch's
...
added linux/x64/shell_find_port payload
2012-03-14 22:39:56 +01:00
Tod Beardsley
sinn3r
corelanc0d3r
Kurtis Miller
Jonathan Cran
wchen-r7
Tod Beardsley
Oliver-Tobias Ripka
James Lee
Patrick Webster
ohdae
Gregory Man
David Maloney
Maciej Kotowicz