f5415c8058
Move pro concern logic into framework
...
MS-1361
2016-04-07 10:59:40 -05:00
fa5acba400
TTL setting honors TTL option
...
* change hard-coded ttl value to TTL option
* set TTL option default to 30
2016-04-07 10:59:05 -05:00
7658014fb7
Add CVEs
2016-04-07 08:39:29 -05:00
87d59a9bfb
Add exploit for ExaGrid known credentials
2016-04-07 04:17:43 -05:00
2563634dce
Fix inverted logic introduced by #6734
...
MS-385
2016-04-06 22:03:31 -05:00
e78e12f295
Land #6515 , Autoadd for /post/windows/manage/autoroute
2016-04-06 15:29:58 -05:00
940a3c1ded
Land #6748 Unlock version constraints on gem deps in framework
2016-04-06 15:29:29 -05:00
ac051bda7f
Add check is_routable?, and change netmask if needed
2016-04-06 15:28:54 -05:00
a1cfdd0958
Land #6756 , reversion of #6748
2016-04-06 14:57:36 -05:00
22d08fdf39
Revert #6748 , premature Gemfile* changes
2016-04-06 14:52:22 -05:00
1162a06d2d
Fix #6677 , typo fix for atutor_sqli
2016-04-06 14:20:50 -05:00
11bf1018aa
Fix typo
2016-04-06 14:20:41 -05:00
78281213eb
Merge branch 'landing-6748' into upstream-master
2016-04-06 13:44:15 -05:00
d240e0b3a2
Bring #6515 up to date with upstream-master
2016-04-06 11:27:32 -05:00
616bb8399f
remove db_filter / format a json data
2016-04-06 18:39:34 +08:00
866cb5a23b
Fix usage of lport/rport while tracking rev forwards
2016-04-06 16:36:41 +10:00
6d504316ae
Add MSF-side support for reverse port forwards
...
This includes changes to the portfwd command so that the output is
nicer, things are easier to use, and users have the ability to create
reverse port forwards.
2016-04-06 15:38:39 +10:00
a4ef9980f4
Land #6677 , atutor_sqli update
2016-04-05 19:52:44 -05:00
d9d257cb1a
Fix some things
2016-04-05 19:23:11 -05:00
fa95922547
Add unicode test examples
2016-04-05 16:06:51 -05:00
8cc1d2ec89
Make advanced and evasion options readable
2016-04-05 15:05:58 -05:00
08736c798d
Correct proftp version check at module runtime
2016-04-05 13:06:10 -05:00
4d5695f7fc
Land #6743 , reimplement HD's session interrupt handler
...
MS-385
2016-04-05 11:16:32 -05:00
e5ee5b903b
Merge branch 'master' of github.com:rapid7/metasploit-framework into bug/MS-247/OpenVas-default-workspace
2016-04-05 09:36:27 -05:00
cde89b90cd
Land #6744 , Deprecation on host eager load
...
Lands SemperVictus' pr for fixing a deprecation warning
on eager loading the hosts table
2016-04-05 09:19:16 -05:00
dcb6da306c
Land #6720 , SSL scanner fixes
2016-04-04 23:37:52 -05:00
af7eef231c
Fix a few issues with the SSL scanner
...
First, we need to handle public keys with strength not measured on the same bit
scale as RSA keys. This fixes handshakes for ECDSA and others.
Second, depending on the host we are talking to, we may not have a peer cert.
Handle this properly by checking first on the socket before using it.
2016-04-04 22:08:01 -05:00
1256a5bc88
Land #6749 - fix whitespace-only badchar handling
2016-04-05 10:38:30 +10:00
3bcac49c21
Fix: badchars.present? is false for whitespace
...
badchars.present? is false in the case of badchars containing only whitespace.
Instead check for is not empty and is not nil.
2016-04-05 10:09:56 +10:00
2a7e3fb600
Fix an error in the OpenVas and Burp Issue importers where the vuln and host info would import into the default workspace instead of the current workspace
2016-04-04 17:35:31 -05:00
403696d53a
Lands #6730 Modify the open_vas importer and the nessus importer
2016-04-04 17:30:15 -05:00
5e8ed09b66
Merge branch 'task/MS-1354/OpenVAS-Nessus-Importer' of https://github.com/bpatterson-r7/metasploit-framework into bpatterson-r7-task/MS-1354/OpenVAS-Nessus-Importer
2016-04-04 17:07:05 -05:00
d3eaae3e17
Land #6404 , Add Snare Lite for Windows Registry Access module
2016-04-04 16:45:48 -05:00
51b8b4a4d1
Bring #6404 up to date with upstream-master
2016-04-04 16:35:58 -05:00
da3388248a
Uses #blank?
2016-04-04 16:34:49 -05:00
5a6d1ee0a9
Uses MetasploitModule class name
2016-04-04 16:30:55 -05:00
c3452ab982
unlock gemspec deps
...
unlock version constraints on deps
defined inside the gemspec
MS-1330
2016-04-04 15:31:09 -05:00
fea142dc6e
unlock gemfile deps first
...
unlock the gemfile deps
MS-1330
2016-04-04 13:55:53 -05:00
8de58e4b80
Merge branch 'master' into staging/rails-upgrade
2016-04-04 09:30:01 -05:00
72d631a255
Land #6745 , open_webrtc_browser fix for Windows
2016-04-02 13:54:05 -05:00
c6bdc3fa14
fix the path quoting in open_webrtc_browser
2016-04-02 13:18:23 -05:00
992df12fa7
Address ActiveRecord deprecation warning
...
AR will start to complain about eager loading in command_dispatcher
/db.rb:519 because it references hosts as string without explicitly
stating that the table is being referenced.
Add a call .references in the AR call chain after the where clause
to silence this abysmal warning.
2016-04-02 00:22:26 -04:00
f7dd326b16
Land #6455 , Fix dns labels/names size limits for lib/net/dns/names/names
2016-04-01 21:57:09 -05:00
04caa9affd
Land #6710 , Add Powershell meterpreter bindings
2016-04-01 21:32:26 -05:00
627615d47b
update to payloads 1.1.6
2016-04-01 21:30:34 -05:00
3d995546d9
check for true before empty string
2016-04-01 21:30:11 -05:00
39bd501b73
Land #6735 , bump rvm ruby version to 2.1.9
2016-04-01 20:05:44 -05:00
64b94dfe3b
reimplement HD's session interrupt handler
...
reimplement HD's work on a session interrupt handler
so that if an exploit fails the handler does not continue
waiting for a session that will never come
MS-385
2016-04-01 14:43:16 -05:00
2e1e1ca839
Land #6742 , psexec_psh restoration
2016-04-01 13:59:09 -05:00
d23a1c4551
Bump deprecation date
2016-04-01 13:57:58 -05:00
Fernando Arias
Sonny Gonzalez
James Lee
wchen-r7
Brian Patterson
William Vu
all3g
OJ
Brendan Watters
greg.mikeska@rapid7.com
David Maloney
Brent Cook
Justin Steven
RageLtMan