James Lee
|
529ded22ae
|
reverting last commit; somebody didn't cross their fingers
git-svn-id: file:///home/svn/framework3/trunk@6847 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-19 20:48:47 +00:00 |
|
James Lee
|
c3dc1ecb55
|
reintegrate browser_autopwn into trunk; cross your fingers and hope this works
git-svn-id: file:///home/svn/framework3/trunk@6846 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-19 17:27:36 +00:00 |
HD Moore
|
309acbaa22
|
Remove extraneous comma
git-svn-id: file:///home/svn/framework3/trunk@6833 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-18 00:27:15 +00:00 |
|
HD Moore
|
282bcb4fae
|
Updated with osvdb and bid references.
git-svn-id: file:///home/svn/framework3/trunk@6832 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-18 00:15:48 +00:00 |
|
HD Moore
|
2d319e9b5b
|
Updated to work better on OS X and avoid 'script is taking too long' errors on all platforms
git-svn-id: file:///home/svn/framework3/trunk@6830 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-17 23:57:59 +00:00 |
|
HD Moore
|
99bc63b11d
|
Adds support for Mac OS X intel (use the vforkshell payloads)
git-svn-id: file:///home/svn/framework3/trunk@6828 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-17 21:28:59 +00:00 |
|
HD Moore
|
f8c2a203fd
|
OSVDB references updates from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6812 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-16 16:02:24 +00:00 |
Patrick Webster
|
f151ecc0ca
|
Added mirc_privmsg_server exploit module.
git-svn-id: file:///home/svn/framework3/trunk@6806 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-15 11:44:55 +00:00 |
Mario Ceballos
|
6005ac7c3f
|
added exploit module tns_service_name.rb. updated ora_ntlm_stealer.rb to use the new mixin.
git-svn-id: file:///home/svn/framework3/trunk@6804 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-15 03:50:45 +00:00 |
|
HD Moore
|
6624dbd5ff
|
Adds coverage for SBerry's Firefox 3.5 exploit (win32 only atm).
git-svn-id: file:///home/svn/framework3/trunk@6803 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-14 21:59:35 +00:00 |
|
HD Moore
|
b018df89da
|
Some minor tweaks, looks like this module doesnt play nice with the new JS encrypter
git-svn-id: file:///home/svn/framework3/trunk@6799 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-14 11:59:33 +00:00 |
|
HD Moore
|
b2a0f8adf5
|
Comment out references for now
git-svn-id: file:///home/svn/framework3/trunk@6795 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-14 02:42:52 +00:00 |
|
HD Moore
|
298ba64734
|
Fix the references section
git-svn-id: file:///home/svn/framework3/trunk@6794 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-14 00:25:26 +00:00 |
|
HD Moore
|
306841cc69
|
Adds coverage for the new OWC ActiveX control exploit
git-svn-id: file:///home/svn/framework3/trunk@6792 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-13 23:39:42 +00:00 |
|
James Lee
|
d84c87fa36
|
updated version info and disclosure date for opera_historysearch
git-svn-id: file:///home/svn/framework3/trunk@6788 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-13 23:12:25 +00:00 |
|
HD Moore
|
5fb316b383
|
Integrates L4teral's JS encoder/encrypter
git-svn-id: file:///home/svn/framework3/trunk@6784 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-13 22:17:11 +00:00 |
|
James Lee
|
3e072dd66e
|
add Opera historysearch module; works on linux, windows will come later
git-svn-id: file:///home/svn/framework3/trunk@6777 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-13 07:48:12 +00:00 |
|
Mario Ceballos
|
055c58b82e
|
rename module to make room for new one.
git-svn-id: file:///home/svn/framework3/trunk@6775 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-13 03:50:18 +00:00 |
druid
|
c846f02c79
|
Final commit of working CLSIDs
git-svn-id: file:///home/svn/framework3/trunk@6755 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-08 22:15:59 +00:00 |
|
druid
|
7a7b2df5a5
|
Updated list of working ClassIDs
git-svn-id: file:///home/svn/framework3/trunk@6754 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-08 21:34:13 +00:00 |
|
druid
|
b9e7e0b902
|
Removed some CLSIDs that didn't work
git-svn-id: file:///home/svn/framework3/trunk@6753 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-08 21:25:23 +00:00 |
|
druid
|
02f7d6b586
|
Exploit now uses a random ClassID from the list provided by the Microsoft Advisory rather than a static one (also configurable via an advanced option).
git-svn-id: file:///home/svn/framework3/trunk@6751 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-08 19:47:44 +00:00 |
|
HD Moore
|
a54b9a06ef
|
Exploit module for the new MS Video ActiveX flaw from Trancer. See more at http://www.rec-sec.com/2009/07/06/ms-directshow-msvidctl-exploit/
git-svn-id: file:///home/svn/framework3/trunk@6750 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-07 11:11:46 +00:00 |
|
Patrick Webster
|
a4e0c88a1b
|
Added MDaemon WorldClient Form2Raw.cgi exploit module.
git-svn-id: file:///home/svn/framework3/trunk@6736 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-03 01:26:21 +00:00 |
|
druid
|
1df854bee7
|
Removed unused options, added success message.
git-svn-id: file:///home/svn/framework3/trunk@6730 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-30 14:09:19 +00:00 |
|
druid
|
e03428dd8f
|
Disabled debugging output
git-svn-id: file:///home/svn/framework3/trunk@6727 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-30 01:52:48 +00:00 |
|
druid
|
bb0408e570
|
Exploit for /bin/login over dialup
git-svn-id: file:///home/svn/framework3/trunk@6725 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-29 14:13:41 +00:00 |
|
Mario Ceballos
|
f90d4123ab
|
added exploit module bopup_comm.rb
git-svn-id: file:///home/svn/framework3/trunk@6721 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-27 14:31:29 +00:00 |
Ramon de C Valle
|
c2362ec409
|
All your POWER are belong to us.
git-svn-id: file:///home/svn/framework3/trunk@6698 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-23 03:49:25 +00:00 |
|
HD Moore
|
d0fe4e8610
|
Remove overzealous change for 1.9.1 compat
git-svn-id: file:///home/svn/framework3/trunk@6697 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-22 13:22:50 +00:00 |
|
HD Moore
|
66a6bfe9c0
|
Make the PDF modules 1.9.1 compatible
git-svn-id: file:///home/svn/framework3/trunk@6696 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-22 13:21:08 +00:00 |
|
HD Moore
|
2ec7693d94
|
Fix up the modules to pass in the framework object into the new API call
git-svn-id: file:///home/svn/framework3/trunk@6687 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-20 18:18:04 +00:00 |
|
HD Moore
|
2283e0ffe4
|
Update executable template and API
git-svn-id: file:///home/svn/framework3/trunk@6682 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-20 17:42:17 +00:00 |
|
James Lee
|
bc037bbbac
|
make php findsock work again for php_eval and php_include
git-svn-id: file:///home/svn/framework3/trunk@6678 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-20 05:50:52 +00:00 |
|
HD Moore
|
3a9e42ceb8
|
Green dam exploit from Trancer
git-svn-id: file:///home/svn/framework3/trunk@6671 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-18 01:54:15 +00:00 |
|
HD Moore
|
67b307557d
|
fix eol-style settings
git-svn-id: file:///home/svn/framework3/trunk@6668 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-17 20:54:52 +00:00 |
|
HD Moore
|
5fb2b95190
|
Patch to simplify the fileformat options from antoine
git-svn-id: file:///home/svn/framework3/trunk@6666 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-17 20:34:28 +00:00 |
|
HD Moore
|
b8efb1bbf9
|
Add Stephen Fewer's shiny exploit for the Java deserialization flaw
git-svn-id: file:///home/svn/framework3/trunk@6664 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-16 17:19:44 +00:00 |
|
HD Moore
|
697f0946e1
|
Reference correction
git-svn-id: file:///home/svn/framework3/trunk@6637 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-11 23:23:58 +00:00 |
|
HD Moore
|
a5f567e76e
|
Massive OSVDB reference update from Steve Tornio.
git-svn-id: file:///home/svn/framework3/trunk@6629 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-07 20:20:42 +00:00 |
|
HD Moore
|
b7cac075e0
|
Adds the itunes overflow from Will Drewry: http://redpig.dataspill.org/2009/05/drive-by-attack-for-itunes-811.html
git-svn-id: file:///home/svn/framework3/trunk@6627 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-05 02:30:24 +00:00 |
|
Mario Ceballos
|
fe463072d6
|
added exploit module ibmegath_getxmlvalue.rb
git-svn-id: file:///home/svn/framework3/trunk@6609 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-01 11:19:06 +00:00 |
|
HD Moore
|
f17ee863bc
|
Three new unpatched exploits from trancer: http://www.rec-sec.com
git-svn-id: file:///home/svn/framework3/trunk@6578 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-24 15:06:12 +00:00 |
|
HD Moore
|
92d242cc2f
|
osvdb references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6568 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-19 13:20:32 +00:00 |
|
James Lee
|
6c8a93035f
|
make the new random header stuff work with magic_quotes
git-svn-id: file:///home/svn/framework3/trunk@6559 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-17 00:35:56 +00:00 |
|
James Lee
|
685535c61d
|
add php compatibility to multi/handler
git-svn-id: file:///home/svn/framework3/trunk@6558 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-17 00:26:17 +00:00 |
|
HD Moore
|
1eddbbf332
|
More references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6551 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-14 19:56:07 +00:00 |
|
HD Moore
|
9d8581a17e
|
More osvdb references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6550 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-13 17:39:42 +00:00 |
|
Mario Ceballos
|
6e84b4ea7f
|
missed a , which borked stuff.
git-svn-id: file:///home/svn/framework3/trunk@6549 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-12 21:42:33 +00:00 |
|
HD Moore
|
0981295879
|
More osvdb references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6547 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-12 19:56:54 +00:00 |
|
HD Moore
|
0ab728c6a5
|
Added OSVDB references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6546 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-12 19:03:25 +00:00 |
|
Patrick Webster
|
4bafe57fe3
|
Added cain_abel_4918_rdp.rb from Trancek.
git-svn-id: file:///home/svn/framework3/trunk@6521 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-03 13:29:42 +00:00 |
|
Patrick Webster
|
de43887fdd
|
Added destinymediaplayer16.rb from Trancek.
git-svn-id: file:///home/svn/framework3/trunk@6520 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-03 12:12:08 +00:00 |
|
Patrick Webster
|
d78b615190
|
Added racer_503beta5.rb from Trancek.
git-svn-id: file:///home/svn/framework3/trunk@6519 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-03 11:10:37 +00:00 |
|
Patrick Webster
|
a99354abce
|
Added zinfaudioplayer221_pls from Trancek. Added SEH, universal target and references.
git-svn-id: file:///home/svn/framework3/trunk@6507 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-29 03:45:37 +00:00 |
|
James Lee
|
b31abbc6f9
|
move the payload into a random X- header so it doesn't show up in access logs
git-svn-id: file:///home/svn/framework3/trunk@6493 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-19 15:47:14 +00:00 |
|
Patrick Webster
|
e9776552ad
|
Added domino_http_accept_language from riaf.
git-svn-id: file:///home/svn/framework3/trunk@6488 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-16 06:08:40 +00:00 |
|
Mario Ceballos
|
89d0cb3954
|
added exploit module mswhale_checkforupdates.rb
git-svn-id: file:///home/svn/framework3/trunk@6486 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-15 21:38:50 +00:00 |
|
kris
|
37c2e301ed
|
replacing defunct framework URL in header comments in most modules and pcap_log
git-svn-id: file:///home/svn/framework3/trunk@6479 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-13 14:33:26 +00:00 |
|
kris
|
cc78d9a59c
|
turn off svn:executable in modules
git-svn-id: file:///home/svn/framework3/trunk@6470 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-08 20:04:25 +00:00 |
|
Mario Ceballos
|
3c54e15590
|
added exploit module sapgui_saveviewtosessionfile.rb
git-svn-id: file:///home/svn/framework3/trunk@6455 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-02 20:43:06 +00:00 |
|
natron
|
edbaada754
|
Reliable write address location; bringing in line with windows/browser version
git-svn-id: file:///home/svn/framework3/trunk@6452 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-31 16:46:50 +00:00 |
|
natron
|
8d7c6d6367
|
Browser version of jbig2decode
git-svn-id: file:///home/svn/framework3/trunk@6451 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-31 14:58:37 +00:00 |
|
kris
|
9482b4080e
|
set a few more modules' Versions to Revision, only did aux by accident last time
git-svn-id: file:///home/svn/framework3/trunk@6439 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-30 01:09:09 +00:00 |
|
Mario Ceballos
|
6203b02ffc
|
fix tab.
git-svn-id: file:///home/svn/framework3/trunk@6412 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 16:27:01 +00:00 |
|
Mario Ceballos
|
64b12fdb61
|
added exploit module adobe_collectemailfinfo.rb
git-svn-id: file:///home/svn/framework3/trunk@6411 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 16:14:32 +00:00 |
|
HD Moore
|
9d2382f5f5
|
Adds the PDF geticon modules from jduck
git-svn-id: file:///home/svn/framework3/trunk@6409 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 07:40:29 +00:00 |
|
HD Moore
|
eccfcdfced
|
Sets svn keywords on modules missing it, tweaks the emailer module
git-svn-id: file:///home/svn/framework3/trunk@6407 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 06:03:35 +00:00 |
|
HD Moore
|
86bc12940a
|
Fix tabstops for weblogic module
git-svn-id: file:///home/svn/framework3/trunk@6405 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 06:00:23 +00:00 |
|
HD Moore
|
a5125c6c87
|
Update the module description
git-svn-id: file:///home/svn/framework3/trunk@6404 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 05:52:40 +00:00 |
|
natron
|
3b704ecf46
|
Add support for Reader 8.1.2, increase heapspray reliability
git-svn-id: file:///home/svn/framework3/trunk@6400 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 02:40:27 +00:00 |
|
pusscat
|
41960b0300
|
Add jsessionid exploit
git-svn-id: file:///home/svn/framework3/trunk@6399 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-27 19:03:39 +00:00 |
|
natron
|
bee2e44254
|
Remove debug messages, fix nops.
git-svn-id: file:///home/svn/framework3/trunk@6398 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-27 02:34:40 +00:00 |
|
natron
|
989a0bf88f
|
Backed off the heapspray, will hopefully work on low and high RAM systems now.
git-svn-id: file:///home/svn/framework3/trunk@6397 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-27 02:32:13 +00:00 |
|
natron
|
8784ee930f
|
Adobe JBIG2Decode Exploit (CVE-2009-0658)
git-svn-id: file:///home/svn/framework3/trunk@6395 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-27 00:08:19 +00:00 |
|
HD Moore
|
13706d1bde
|
Tons of new Mac OS X code from Dino Dai Zovi and Charlie Miller, more to follow
git-svn-id: file:///home/svn/framework3/trunk@6353 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-18 23:28:24 +00:00 |
|
Mario Ceballos
|
a036178737
|
added exploit module orbit_connecting.rb
git-svn-id: file:///home/svn/framework3/trunk@6348 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-17 01:24:16 +00:00 |
|
kris
|
804ff61df6
|
big svn:keywords run
git-svn-id: file:///home/svn/framework3/trunk@6345 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-15 18:12:33 +00:00 |
|
Mario Ceballos
|
f7dafe0156
|
added exploit module belkin_bulldog.rb.
git-svn-id: file:///home/svn/framework3/trunk@6334 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-11 22:33:51 +00:00 |
|
Patrick Webster
|
7209271870
|
Added exploit module apache_mod_rewrite_ldap.
git-svn-id: file:///home/svn/framework3/trunk@6327 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-10 06:42:11 +00:00 |
|
Patrick Webster
|
46351557bc
|
Added dogfood_spell_exec exploit module from LSO.
git-svn-id: file:///home/svn/framework3/trunk@6282 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-03 03:32:36 +00:00 |
|
Patrick Webster
|
2df5dc3204
|
Added exploit module ebook_flipviewer_fviewerloading from LSO.
git-svn-id: file:///home/svn/framework3/trunk@6281 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-02 23:14:54 +00:00 |
|
Patrick Webster
|
a71b3e8c22
|
Added exploit module efs_easychatserver_username from LSO.
git-svn-id: file:///home/svn/framework3/trunk@6280 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-02 06:57:00 +00:00 |
|
natron
|
b6731747c4
|
added ie_unsafe_scripting exploit module
git-svn-id: file:///home/svn/framework3/trunk@6260 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-27 22:35:50 +00:00 |
|
Patrick Webster
|
d5c625b803
|
Added exploit module dlink_long_filename from LSO.
git-svn-id: file:///home/svn/framework3/trunk@6256 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-26 08:19:01 +00:00 |
|
Patrick Webster
|
c902c035aa
|
Typo in vendor name. Steamcast.
git-svn-id: file:///home/svn/framework3/trunk@6255 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-25 11:50:24 +00:00 |
|
Patrick Webster
|
415b4c2593
|
Added exploit module streamcast_useragent.rb from LSO.
git-svn-id: file:///home/svn/framework3/trunk@6254 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-25 11:35:36 +00:00 |
|
Patrick Webster
|
92c45abf2d
|
Added contentkeeperweb_mimencode exploit module.
git-svn-id: file:///home/svn/framework3/trunk@6250 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-25 03:41:25 +00:00 |
|
Mario Ceballos
|
7118ef0a2c
|
added aux module osb_execqr.rb and exploit module osb_ndmp_auth.rb.
git-svn-id: file:///home/svn/framework3/trunk@6248 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-23 16:26:00 +00:00 |
|
cg
|
8fe4bf88b9
|
MS09-002 coverage by dean
git-svn-id: file:///home/svn/framework3/trunk@6238 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-20 17:46:52 +00:00 |
|
Mario Ceballos
|
092db8229c
|
added exploit module fdm_auth_header.rb
git-svn-id: file:///home/svn/framework3/trunk@6205 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-02-02 18:27:36 +00:00 |
|
HD Moore
|
f927320eda
|
Wrap the telephony require properly
git-svn-id: file:///home/svn/framework3/trunk@6201 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-30 04:28:40 +00:00 |
|
Mario Ceballos
|
b321790c04
|
added exploit module license_gcr.rb.
git-svn-id: file:///home/svn/framework3/trunk@6183 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-25 02:22:18 +00:00 |
|
HD Moore
|
1f523d78c9
|
Configure the architecture list to be ALL, not just a small set of archs
git-svn-id: file:///home/svn/framework3/trunk@6171 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-22 05:35:19 +00:00 |
|
Mario Ceballos
|
ff8323e6d2
|
added modules from Matteo Cantoni.
git-svn-id: file:///home/svn/framework3/trunk@6170 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-21 12:51:30 +00:00 |
|
Mario Ceballos
|
9637e98cc4
|
added exploit module hp_nnm_toolbar.rb
git-svn-id: file:///home/svn/framework3/trunk@6167 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-19 23:07:28 +00:00 |
|
Mario Ceballos
|
7ef0ddeec5
|
added exploit module symantec_appstream_unsafe.rb
git-svn-id: file:///home/svn/framework3/trunk@6162 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-18 02:19:26 +00:00 |
|
Patrick Webster
|
33ba28346d
|
Added exploit module awstats_migrate_exec.
git-svn-id: file:///home/svn/framework3/trunk@6155 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-15 07:09:56 +00:00 |
|
HD Moore
|
cb327d40fc
|
Fix up the dialup code
git-svn-id: file:///home/svn/framework3/trunk@6150 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-14 05:46:10 +00:00 |
|
Mario Ceballos
|
430d7cb424
|
fixed BID number.
git-svn-id: file:///home/svn/framework3/trunk@6145 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-13 14:41:14 +00:00 |
|
Mario Ceballos
|
bc1f2da254
|
added exploit module winzip_fileview.rb from dean.
git-svn-id: file:///home/svn/framework3/trunk@6144 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-13 14:04:53 +00:00 |
|
druid
|
0d1ca42ed6
|
Adds support for exploitation over dialup via the new Telephony library.
git-svn-id: file:///home/svn/framework3/trunk@6120 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-11 06:09:02 +00:00 |
|
James Lee
|
288075f7a0
|
add report_auth_info to some modules that authenticate. thanks, tebo
git-svn-id: file:///home/svn/framework3/trunk@6118 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-11 05:52:07 +00:00 |
|
Mario Ceballos
|
3ee6eaede8
|
added exploit module nis2004_antispam.rb that makes use of egypts newly added heap spray stuff.
git-svn-id: file:///home/svn/framework3/trunk@6109 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-10 14:00:49 +00:00 |
|
Patrick Webster
|
2de1dc9947
|
No need for string cast. thanks kris/raif.
git-svn-id: file:///home/svn/framework3/trunk@6094 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-09 03:22:04 +00:00 |
|
Mario Ceballos
|
ddafdad942
|
added support for 2k3.
git-svn-id: file:///home/svn/framework3/trunk@6092 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-09 00:39:08 +00:00 |
|
Patrick Webster
|
a41e16ded3
|
Added ursoft_w32dasm.rb file format module.
git-svn-id: file:///home/svn/framework3/trunk@6083 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-07 11:18:44 +00:00 |
|
Mario Ceballos
|
ee86b19834
|
added tns mixin to support oracle8i listener overflow and other tns
related stuff.
git-svn-id: file:///home/svn/framework3/trunk@6082 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-07 03:07:01 +00:00 |
|
Patrick Webster
|
204ebd411f
|
Updated with changes from raif.
git-svn-id: file:///home/svn/framework3/trunk@6080 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-07 00:15:55 +00:00 |
|
Mario Ceballos
|
fa950d64ef
|
updated with the authors email address.
git-svn-id: file:///home/svn/framework3/trunk@6076 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-05 13:09:18 +00:00 |
|
Mario Ceballos
|
e132179b2d
|
added exploit modules djvu_imageurl.rb, msworks_wkspictureinterface.rb and
sascam_get.rb from dean.
git-svn-id: file:///home/svn/framework3/trunk@6074 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-05 00:55:29 +00:00 |
|
Mario Ceballos
|
33940517c5
|
added exploit modules ca_brightstor_addcolumn.rb and verypdf_pdfview.rb from dean.
git-svn-id: file:///home/svn/framework3/trunk@6073 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-01-04 21:51:04 +00:00 |
|
Mario Ceballos
|
f1093ee6a9
|
added exploit module realtek_playlist.rb.
git-svn-id: file:///home/svn/framework3/trunk@6029 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-20 01:49:40 +00:00 |
|
kris
|
248f1e9fc3
|
Remove "#{xxx.to_s}" redundancies ('s/\(#{[^}]*\)\.to_s}/\1}/g')
git-svn-id: file:///home/svn/framework3/trunk@6022 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-19 07:11:08 +00:00 |
|
HD Moore
|
45c08a9011
|
Fallback to heap spray if the .NET DLL does not load
git-svn-id: file:///home/svn/framework3/trunk@6015 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-17 04:19:54 +00:00 |
|
Mario Ceballos
|
aa53df6535
|
add exploit module adobe_utilprintf.rb, browser based.
git-svn-id: file:///home/svn/framework3/trunk@6014 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-15 15:44:02 +00:00 |
|
HD Moore
|
5822ab75a7
|
Adds an exploit module (universal) for the new internet explorer xml bug. This module shows off the .NET memory techniques discovered by Alexander Sotirov and Mark Dowd. This code should bypass DEP, ASLR, and NX :-)
git-svn-id: file:///home/svn/framework3/trunk@6012 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-12 01:45:00 +00:00 |
|
HD Moore
|
42da7926ba
|
See #263. Testing post-commit hook
git-svn-id: file:///home/svn/framework3/trunk@6010 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-11 03:56:52 +00:00 |
|
HD Moore
|
c838c7ef2f
|
See #263. Testing post-commit hook
git-svn-id: file:///home/svn/framework3/trunk@6009 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-11 03:55:12 +00:00 |
|
HD Moore
|
d64cf0f22f
|
See #263. Testing post-commit hook
git-svn-id: file:///home/svn/framework3/trunk@6008 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-11 03:53:52 +00:00 |
|
HD Moore
|
cb8230f817
|
Fixes #263. Correct the max read() size for DCERPC over SMB
git-svn-id: file:///home/svn/framework3/trunk@6007 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-11 03:50:30 +00:00 |
|
Mario Ceballos
|
1485e0564e
|
updated with some awesome stuff from Didier Stevens.
git-svn-id: file:///home/svn/framework3/trunk@6006 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-08 13:16:54 +00:00 |
|
Mario Ceballos
|
6df3ed8b25
|
git-svn-id: file:///home/svn/framework3/trunk@6001 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-07 15:02:20 +00:00 |
|
Mario Ceballos
|
29c94ece40
|
removed hardcoded length for xrefPosition. thanks Didier Stevens.
git-svn-id: file:///home/svn/framework3/trunk@5999 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-05 13:13:57 +00:00 |
|
Mario Ceballos
|
103e507635
|
newer version breaks..
git-svn-id: file:///home/svn/framework3/trunk@5998 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-04 21:57:54 +00:00 |
|
Mario Ceballos
|
d47511baf2
|
updated target.
git-svn-id: file:///home/svn/framework3/trunk@5996 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-03 20:20:39 +00:00 |
|
Mario Ceballos
|
381f6da682
|
added exploit module adobe_utilprintf.rb
git-svn-id: file:///home/svn/framework3/trunk@5995 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-03 16:19:25 +00:00 |
|
Mario Ceballos
|
e1e1f5d6a4
|
added fileformat mixin, fileformat exploit videolan_tivo.rb, and network based exploit videolan_tivo.rb
git-svn-id: file:///home/svn/framework3/trunk@5993 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-12-03 01:23:27 +00:00 |
|
HD Moore
|
3266bd9ecd
|
Add a better autofilter() / check()
git-svn-id: file:///home/svn/framework3/trunk@5950 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-18 20:15:20 +00:00 |
|
kris
|
85926eb4ff
|
fix svn keywords
git-svn-id: file:///home/svn/framework3/trunk@5923 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-16 03:09:22 +00:00 |
|
Patrick Webster
|
e14bf65099
|
Added domino_sametime_stmux module.
git-svn-id: file:///home/svn/framework3/trunk@5919 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-14 11:04:33 +00:00 |
|
Patrick Webster
|
086e9fb89a
|
Added veritas_netbackup_cmdexec module.
git-svn-id: file:///home/svn/framework3/trunk@5914 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-13 09:45:47 +00:00 |
|
Patrick Webster
|
97ffd10f89
|
Updated to support Windows targets.
git-svn-id: file:///home/svn/framework3/trunk@5912 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-13 09:01:24 +00:00 |
|
Patrick Webster
|
547f01f84a
|
Added new target.
git-svn-id: file:///home/svn/framework3/trunk@5911 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-13 08:31:04 +00:00 |
|
HD Moore
|
435ea807a4
|
Update the description and references to reflect (hah) MS08-068
git-svn-id: file:///home/svn/framework3/trunk@5890 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-11 20:46:21 +00:00 |
|
HD Moore
|
b665212b35
|
Make 2003 target universal
git-svn-id: file:///home/svn/framework3/trunk@5888 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-11 15:22:24 +00:00 |
|
HD Moore
|
54cd265f82
|
Purging the ms08-067 check. The check method results in memory corruption and there are still concerns about the source of the technique. We can reimplement this later when there is some free time and less angry people involved ;-)
git-svn-id: file:///home/svn/framework3/trunk@5887 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-11 15:01:45 +00:00 |
|
kris
|
7b002d4288
|
remove unused exception variables
git-svn-id: file:///home/svn/framework3/trunk@5882 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-11 06:00:54 +00:00 |
|
HD Moore
|
bc7b19f554
|
Adds keywords to some missing modules, adds an old/lame DoS module that was fixed in Vista SP1
git-svn-id: file:///home/svn/framework3/trunk@5849 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-07 22:11:58 +00:00 |
|
HD Moore
|
95d5624a96
|
Correct scratch/scratch typo
git-svn-id: file:///home/svn/framework3/trunk@5847 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-06 14:56:06 +00:00 |
|
HD Moore
|
308a90a01d
|
Complete international support for XP SP2 / XP SP3
git-svn-id: file:///home/svn/framework3/trunk@5846 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-06 06:08:45 +00:00 |
|
HD Moore
|
0881649f14
|
The psexec and smb_relay module now automatically cleanup. The ms08-06 module now supports all languages of XP SP3.
git-svn-id: file:///home/svn/framework3/trunk@5841 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-04 22:27:59 +00:00 |
|
HD Moore
|
b53695f7db
|
The psexec module now uses a service-compatible exe, shellcode is spawned in a subprocess and the service cleans up properly
git-svn-id: file:///home/svn/framework3/trunk@5829 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-03 23:06:37 +00:00 |
|
HD Moore
|
e02f740277
|
Handle multiple sessions by default
git-svn-id: file:///home/svn/framework3/trunk@5828 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-03 21:08:46 +00:00 |
|
HD Moore
|
133d7ce658
|
Adds an automatic default target to ms08-067, autodetects OS, SP, and language now.
git-svn-id: file:///home/svn/framework3/trunk@5827 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-03 20:37:51 +00:00 |
|
HD Moore
|
4b30f3ef1a
|
Update the check() comments to reflect new information >:(
git-svn-id: file:///home/svn/framework3/trunk@5825 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-03 15:29:51 +00:00 |
|
Mario Ceballos
|
97b2adcc46
|
added the connect()/smb_login()
git-svn-id: file:///home/svn/framework3/trunk@5824 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-03 13:14:06 +00:00 |
|
HD Moore
|
f1789fc1b2
|
Adds the check() method and scanner module to ms08-067, massively upgrades the smb/version scanner, with better SP detection and remote language pack detection.
git-svn-id: file:///home/svn/framework3/trunk@5823 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-03 09:17:08 +00:00 |
|
HD Moore
|
d9ffc23128
|
Adds 0x40 to the badchars list, fixes a weird issue, found by Ramon
git-svn-id: file:///home/svn/framework3/trunk@5822 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-11-02 02:35:57 +00:00 |
|
HD Moore
|
4f45818a0f
|
The prefix change makes ms08-067 more reliable vs windows 2000
git-svn-id: file:///home/svn/framework3/trunk@5820 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-10-31 21:10:45 +00:00 |