Tod Beardsley
14b45f9fb1
More fixes to enum_dns.rb
...
* Should use 'and', not & (bitwise AND)
* Made capitalization sane for Anglophones. See: http://owl.english.purdue.edu/owl/resource/592/1/
2012-03-26 16:14:04 -05:00
Tod Beardsley
dc6f76eb20
Style fixes for enum_dns.rb
...
* Use a dotted.notation for note types
* Changed title to something more descriptive
* Expanded description
* Other trivial changes
2012-03-26 16:08:39 -05:00
Tod Beardsley
ef0ce1c10d
Merge pull request #276 from rapid7/checksum-fixer
...
Checksum fixer, pretty well optimized.
2012-03-26 11:15:40 -07:00
sinn3r
79d74b8768
ADD OSVDB-80262
2012-03-26 12:58:18 -05:00
sinn3r
19fc8d9883
Add OSVDB-80262
2012-03-26 12:42:24 -05:00
Tod Beardsley
5cacf5f8f6
A still cleaner checksummed URI generator
...
Now with http and https support.
2012-03-26 12:34:30 -05:00
Tod Beardsley
899c6529c3
Revert "Precalculate some uri strings in case the 1000-round generation fails"
...
This reverts commit 7161a548f4
.
Prepping for a more sane solution that doesn't change the URI sizes and
succeeds without fallingback to a pre-generated list.
2012-03-26 12:34:30 -05:00
hdm
27d3f490f7
Precalculate some uri strings in case the 1000-round generation fails
2012-03-26 12:33:54 -05:00
Tod Beardsley
93244f2dc8
Revert "Precalculate some uri strings in case the 1000-round generation fails"
...
This reverts commit 7161a548f4
.
Prepping for a more sane solution that doesn't change the URI sizes and
succeeds without fallingback to a pre-generated list.
2012-03-26 12:22:19 -05:00
Tod Beardsley
9fad028d8a
A nicer checksum fixer
...
Just use a checksum digit like a cc#, no need for precalculated lists,
will be correct every time.
2012-03-26 11:59:29 -05:00
hdm
7161a548f4
Precalculate some uri strings in case the 1000-round generation fails
2012-03-26 11:50:50 -05:00
Tod Beardsley
507dd423ce
Rogue period, DELETED.
2012-03-26 10:54:26 -05:00
sinn3r
182f3744de
Cosmetic cleanup
2012-03-26 09:23:14 -05:00
corelanc0d3r
ad32911b1a
probably safer to use regex
2012-03-26 09:01:40 -05:00
Tod Beardsley
f07cc2db4c
Merge pull request #269 from jlee-r7/master
...
Some verbosity in testing Post file API.
2012-03-26 05:52:48 -07:00
Kurtis Miller
e2606764cb
forgot to add renamed module
2012-03-25 09:08:38 -07:00
Kurtis Miller
7ea37253a0
modifications recommended by sinn3r
2012-03-25 09:04:35 -07:00
Kurtis Miller
d8ddb19b56
cve-2008-0610 windows exploit module
2012-03-25 00:14:19 -07:00
Jonathan Cran
135cf7ba04
remove trailing comma, thanks troulouliou
2012-03-23 17:00:04 -05:00
James Lee
926c11139e
Don't write out debugging junk
2012-03-23 15:33:28 -06:00
James Lee
5da33c4bf1
Add some verbosity for explaining why a read failed
2012-03-23 15:31:36 -06:00
Tod Beardsley
e1783acd6f
Adding newline to end of ricoh_dl_bof.rb
2012-03-23 16:31:11 -05:00
Tod Beardsley
2bcf259301
Setting correct LFs on freepbx_callmenum.rb
2012-03-23 16:29:42 -05:00
wchen-r7
71462bc73d
Merging in freepbx_callmenum.rb and ricoh_dl_bof.rb
...
[Closes #266 ]
2012-03-23 16:23:36 -05:00
sinn3r
fbfd308d79
This actually shouldn't go it now because it's still being code reviewed
2012-03-23 15:32:24 -05:00
Tod Beardsley
47493af103
Merge pull request #259 from todb-r7/edb-2
...
Convert Exploit-DB references to first-tier "EDB-12345" references
2012-03-23 12:09:07 -07:00
sinn3r
6f0f9041c8
Merge pull request #267 from wchen-r7/hp_data_protector_win_cmd
...
Add HP Data Protector aux module for executing commands on Windows
2012-03-23 11:06:52 -07:00
sinn3r
10733f6a1c
Update description
2012-03-23 13:05:40 -05:00
sinn3r
fef1e31e2a
Merge branch 'olliwolli-3cdaemonsp3'
2012-03-23 08:52:19 -05:00
Tod Beardsley
e30623a2c9
Merge pull request #264 from wchen-r7/ricoh_dc_exploit
...
Add Ricoh DC DL-10 FTP Buffer Overflow
2012-03-23 06:45:02 -07:00
sinn3r
20f0a58c6a
Minor fixes
2012-03-23 08:23:30 -05:00
sinn3r
41bc8ded3d
Add HP Data Protector aux module for executing commands on Windows
2012-03-23 07:57:13 -05:00
Oliver-Tobias Ripka
30a3d8bb96
Add Windows SP3 to targets.
2012-03-23 13:52:18 +01:00
James Lee
17a044db89
Print the full URI
...
Makes everything obvious from output alone, don't need to show options
to see what RHOST is.
2012-03-22 18:44:55 -06:00
HD Moore
e9d6309143
Fix 1.9.2 compatibility issues and C99 warnings
2012-03-22 19:09:16 -05:00
sinn3r
6625d97599
Add Ricoh DC DL-10 FTP Buffer Overflow
2012-03-22 15:30:00 -05:00
Tod Beardsley
b2b2580dbf
Adding the correct url for exploit-db exploits.
2012-03-22 14:26:46 -05:00
Patrick Webster
3dc0e97998
Updating description and refs to Patrick's module
...
There was some weirdness with the commit log on this module but it
should all be kosher now.
[Closes #260 ]
2012-03-22 10:30:25 -05:00
Tod Beardsley
348d0b6278
Merge pull request #263 from rsmudge/armitage
...
Armitage 03.22.12
2012-03-22 08:18:28 -07:00
Raphael Mudge
b176e660a0
last minute change to how I highlight pivots.
2012-03-22 10:22:59 -04:00
sinn3r
434b56824b
Merge pull request #261 from rsmudge/armitage
...
Armitage 03.22.12
2012-03-22 00:21:15 -07:00
Raphael Mudge
38b379ef88
Armitage 03.22.12
...
This release tweaks the payload selection logic, improves the built-in nmap profiles, and adds DNS enumeration to the Hosts menu.
2012-03-21 23:42:55 -04:00
James Lee
2d29184adc
Use interpolation to ensure LPORT is a string for gsub
...
[Fixes #6542 ]
2012-03-21 21:05:05 -06:00
sinn3r
ddacf1dde8
Merge pull request #258 from wchen-r7/ms10_002_ie
...
Add CVE-2010-0248 Internet Explorer Object Handling Use After Free
2012-03-21 17:20:27 -07:00
sinn3r
0a24c354db
Update ms10-002 with dyphens
2012-03-21 19:19:20 -05:00
Tod Beardsley
7d12a3ad3a
Manual fixup on remaining exploit-db references
2012-03-21 16:43:21 -05:00
Tod Beardsley
2f3bbdc00c
Sed replacement of exploit-db links with EDB refs
...
This is the result of:
find modules/ -name \*.rb -exec sed -i -e 's#\x27URL\x27,
\x27http://www.exploit-db.com/exploits/ \([0-9]\+\).*\x27#\x27EDB\x27,
\1#' modules/*.rb {} \
2012-03-21 16:43:21 -05:00
Tod Beardsley
c589420f42
Typo fix, missing comma
2012-03-21 16:43:21 -05:00
Tod Beardsley
75785a8b9f
Got tired of writing out Exploit-DB identifiers
...
There are 143 modules with exploit-db references, may as well make them
easier to write and find. This change introduces the EDB identifier.
2012-03-21 16:43:21 -05:00
sinn3r
2c16eb29b6
Add CVE-2010-0248 Internet Explorer Object Handling Use After Free exploit
2012-03-21 16:11:26 -05:00