infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
31,968 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

31968 Commits (5ac1ee1d734b43db4813260b5695a1bd1223ebf3)

Author SHA1 Message Date
jvazquez-r7 1d602d38c9 Refactor SessionSetupAndx handler 2015-02-28 12:10:48 -06:00
William Vu b27c9b9efc
Land #4838, reverse_http{,s} listening service fix 2015-02-27 21:02:58 -06:00
Tod Beardsley 7ab86be72a
Land #4859, reverting #4823. 
PR #4823 caused some update issues. I think #4823's heart was in the
right place, and I imagine it was only one or two lines that caused the
failures.
 2015-02-27 17:55:29 -06:00
sinn3r ac81318e7a Revert #4823, changes for ruby style guide 
This reverts commit 885469ca52, reversing
changes made to fd73445d9b.

Please see: #4823 for why.
 2015-02-27 17:28:00 -06:00
sinn3r bdc9f684c2 Check True in error response for mspc 
Without this check, it causes Pro to behave different (malfunction)
 2015-02-27 17:21:23 -06:00
sinn3r ef9196ba6c Correct comment 2015-02-27 13:27:49 -06:00
sinn3r 7b6c39058a Correct target name 2015-02-27 13:24:57 -06:00
sinn3r 90aff51676 Add CVE-2014-7285, Symantec Web Gateway restore.php Command Injection 2015-02-27 12:31:29 -06:00
jvazquez-r7 544f88620d
Merge more mixin refactor 2015-02-27 01:55:14 -06:00
jvazquez-r7 e5e13108ed Refactor close handling 2015-02-26 23:50:10 -06:00
jvazquez-r7 5418cdad11 Refactor negotiate handling 2015-02-26 23:49:07 -06:00
jvazquez-r7 5ed1f8d44f Make opts optional 2015-02-26 23:39:17 -06:00
jvazquez-r7 882f0bdc0e Refactor read_andx request handling 2015-02-26 23:35:12 -06:00
jvazquez-r7 5b770f9f7a Refactor nt_create_andx requests 2015-02-26 23:31:09 -06:00
jvazquez-r7 70033576fe Refactor query information level 2015-02-26 23:22:57 -06:00
Brent Cook 49ae173057
Land #4844: the final tweaks to @wv-r7's PJL extensions 2015-02-26 17:39:49 -06:00
Brent Cook 1454ad79d8
Land #4844: @wv-r7 extends the PJL repetoire 2015-02-26 17:29:28 -06:00
jvazquez-r7 a3097b2854
Merge find information level refactoring 2015-02-26 16:50:16 -06:00
jvazquez-r7 d544da22b5 Always send answer 2015-02-26 16:47:05 -06:00
jvazquez-r7 45be95747f Refactor Find Information Levels 2015-02-26 16:46:34 -06:00
jvazquez-r7 89a033c194 Delete unnecessary paddings due to miscalculations 2015-02-26 15:54:00 -06:00
David Maloney 095431c323
fix note search conditions 
note search conditions needed to know about
vuln_id or else vuln notes would get overwritten

MSP-12183
 2015-02-26 15:48:04 -06:00
Tod Beardsley 14b46161e3
Land #4851, fix rb-readline-r7 checker 2015-02-26 15:19:17 -06:00
William Vu 260c603ffb Fix msfconsole -L 
s/rb-readline/rb-readline-r7/

Should have been in #4816 (#4128).
 2015-02-26 15:14:38 -06:00
Tod Beardsley f9b47a329d
Land #4800, remove Lorcon source 
It's maintained upstream, mentioned in #3200, and the modules that did
use these were themselves broken.
 2015-02-26 15:03:32 -06:00
jvazquez-r7 387c966550 Fix unnecessary paddings 2015-02-26 15:00:53 -06:00
David Maloney a72d49678a
only match by CVE refs 
the other refs can be non-specific and refer
to multiple distinct vulns, resulting in
incorrect refs being attached to a vuln leading to
a snowball effect with more and more vulns being
misidentified.

MSP-12183
 2015-02-26 14:57:16 -06:00
William Vu b35011012c Remove LORCON from LICENSE 2015-02-26 14:53:23 -06:00
William Vu b223dbdfcf Nuke external LORCON code from orbit 2015-02-26 14:52:01 -06:00
jvazquez-r7 500e4707ab Use smb_error 2015-02-26 14:35:52 -06:00
Bazin Danil 3aa68c30b0 => not => ! 2015-02-26 21:31:01 +01:00
Bazin Danil a427e417a3 -consomation +consumption 2015-02-26 21:23:09 +01:00
William Vu 3efae77212 Use /dev/null instead of /etc/passwd 
File.read returns "" on /dev/null. Don't try it on /dev/zero. :-)
 2015-02-26 14:19:25 -06:00
William Vu f625ad4f9c Remove unnecessary tests in spec 2015-02-26 14:12:39 -06:00
William Vu 0a51ca12a5 Download all of every file implicitly 2015-02-26 14:10:53 -06:00
Bazin Danil 1d03b9a166 Maj debug output 2015-02-26 21:06:20 +01:00
William Vu d0ca1b2dc6 Delete a thing I added for no reason 2015-02-26 14:06:10 -06:00
William Vu 5996256ccc Fix formatting 2015-02-26 14:05:50 -06:00
jvazquez-r7 c73ffea1b9 Do minor cleanup 2015-02-26 12:50:45 -06:00
David Maloney 8351920d1e
don't match based on URL refs 
multiple vulns may be listed for
the same URL making matches based on
these refs entirely unreliable

MSP-12183
 2015-02-26 11:40:15 -06:00
jvazquez-r7 6d6d5a7dca
Land @0x41414141's bugfixing 2015-02-26 11:40:08 -06:00
jvazquez-r7 b1e6de2eeb Add todo 2015-02-26 11:39:17 -06:00
jvazquez-r7 26bfebf1bb Add dummy wildcard handling 2015-02-26 11:39:05 -06:00
jvazquez-r7 d0ab9206b9 Do minor cleanup 2015-02-26 10:58:36 -06:00
jvazquez-r7 970f0c94b2 Create CREATE_ANDX constants 2015-02-26 10:44:07 -06:00
Matthew Hall ab1bb0e50d bugfixes to https://github.com/jvazquez-r7/metasploit-framework/tree/review_3074_clean_server 
to provide consistent support for various exploits and OS SMB Commands.

Reintroduces smb_cmd_trans_query_path_info_network for use with the Struts2 JSP injection vulnerability.
Reintroduces smb_cmd_trans_query_file_info_basic for common use with rundll32.
Corrects some issues with filename formatting and pattern matching for file requests (can still be improved).
 2015-02-26 16:10:34 +00:00
rastating 3b21de3906 Add WPVDB reference 2015-02-26 13:37:23 +00:00
Brandon Perry ceb92cdf5e update login method 2015-02-26 07:33:51 -06:00
William Vu 4aedd7e5d3 Fix spec for fsquery support 2015-02-25 18:14:17 -06:00
William Vu f24da1b178 Add file checking to printer_delete_file 2015-02-25 18:14:13 -06:00