infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
31,968 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

31968 Commits (5ac1ee1d734b43db4813260b5695a1bd1223ebf3)

Author SHA1 Message Date
jvazquez-r7 b24b94ddd3 Do first cleanup of find_first2 handlers 2015-02-19 19:08:56 -06:00
Ferenc Spala c498ba64e4 Added a new pair of default Tomcat credentials. QLogic's QConvergeConsole comes with a bundled Tomcat with a hard-coded username and password for the manager app. 2015-02-19 15:08:50 -06:00
jvazquez-r7 74c43f5527 Delete more unused local variables 2015-02-19 14:39:55 -06:00
jvazquez-r7 1d5a977280 Delete a lot of verbose prints 2015-02-19 14:37:16 -06:00
jvazquez-r7 0940ceae75 Delete unused local variables 2015-02-19 14:26:46 -06:00
jvazquez-r7 c38c3519d8 Delete more unused code 2015-02-19 14:24:18 -06:00
jvazquez-r7 7487f9611b Do some extra prints 2015-02-19 14:11:27 -06:00
jvazquez-r7 d9b9de8e89 Delete unused code 2015-02-19 13:16:24 -06:00
jvazquez-r7 5510000bf1 Use constant for FLAGS2 2015-02-19 13:02:50 -06:00
jvazquez-r7 392137292e Old delete register prototype comment 2015-02-19 13:00:12 -06:00
sinn3r 49f4b68671
Land #4790, injecting code into eval-based Javascript unpackers 2015-02-19 12:33:52 -06:00
jvazquez-r7 39ceb5b90f Update smb_error on Exploit::Remote::SMB::Server 2015-02-19 12:10:28 -06:00
Matthew Hall 0f0c955287 Merge pull request #2 from jvazquez-r7/mixin_design_3074 
Move code from Rex to mixin
 2015-02-19 17:32:29 +00:00
sinn3r 036a6089eb Drop ungenuine x64 support in ms13_022_silverlight_script_object 
The MS13-022 exploit does not actually run as x64. IE by default
still runs x86 so BES will always automatically select that target.

If IE forces x64 (which can be done manually), the BES detection
code will see it as ARCH_X86_64, and the payload generator will
still end up generating a x86 payload anyway.

If the user actually chooses a x64 payload, such as
windows/x64/meterpreter/reverse_tcp, the exploit is going to crash
because you can't run x64 shellcode on an x86 architecture.
 2015-02-19 10:39:43 -06:00
William Vu 27a8c460bd
Land #4797, revert of #4780 (issue #4669) 2015-02-19 09:58:20 -06:00
Brent Cook 4781ac4b39 the http service needs to keep running to handle meterpreter loading 
revert a8f44ca68f
 2015-02-19 09:38:48 -06:00
dnkolegov f6c871a8e5 Deleted spaces at EOL 2015-02-19 05:06:00 -05:00
dnkolegov caabb82975 Fixed indentation errors 2015-02-19 05:02:10 -05:00
sinn3r 1835120851 Update rspec for get_payload in BES 2015-02-19 02:45:54 -06:00
dnkolegov 2a584da6d9 Added cookie value in print function 2015-02-19 00:43:57 -05:00
Tod Beardsley 7a3bc017ff
Land #4794, fix some db stuff, drop 1.9 tests 2015-02-18 17:26:02 -06:00
darkbushido e0e9445a40
removing 1.9.3 from travis 
metasploit_data_models requires Ruby version >= 2.1.
 2015-02-18 17:19:01 -06:00
darkbushido 67c0f590a0
Restoring mysteriusly changed db constraints... 2015-02-18 17:07:25 -06:00
jvazquez-r7 b85324435e Don't waste instance variables 2015-02-18 16:42:52 -06:00
jvazquez-r7 91d9d93fec Handle instance variables correctly 2015-02-18 16:35:20 -06:00
Tod Beardsley c57dee569c
Land #3650, the last Meterpreter script ever. 2015-02-18 16:21:00 -06:00
jvazquez-r7 438b38dfe4 Use Rex::Text 2015-02-18 16:20:47 -06:00
jvazquez-r7 a815858644 Fix setup 2015-02-18 16:19:05 -06:00
Spencer McIntyre fe840635e5
Land #4791, fix ms14-070 CreateFile arguments 
The arguments to CreateFileA used to require that the user had
some level of access on the \\.\tcp device.
 2015-02-18 17:15:45 -05:00
Trevor Rosen 1099084fb0
Land #4761, enforce unique port number per service 2015-02-18 15:22:46 -06:00
Trevor Rosen 62fbf81f8a
Update Gemfile.lock and schema.rb 2015-02-18 15:17:17 -06:00
David Maloney ffa6550aec
Land #4787, HD's new Zabbix and Chef LoginScanners 
Lands the new LoginScanners HD wrote for Zabbix
and the Chef WebUI
 2015-02-18 14:51:16 -06:00
David Maloney 804db0ff0c
add leixcal sorting to methods 
lexical sort the new methods except for
msf module entrypoint methods which should always be at
the top
 2015-02-18 14:50:33 -06:00
joev 483a145d19 Fix msftidy issues. 2015-02-18 14:08:03 -06:00
jvazquez-r7 3ca67ed294 Delete specs 2015-02-18 13:59:57 -06:00
jvazquez-r7 06dfa6b5be Fix initialize 2015-02-18 13:56:06 -06:00
jvazquez-r7 62c08094fd Delete the old FileServer mixin 2015-02-18 13:54:24 -06:00
jvazquez-r7 9068397fff Delete code commented by myself 2015-02-18 13:47:05 -06:00
jvazquez-r7 a446df95b2 Make Msf::Exploit::Remote::SMB::Server::Share a mixin 2015-02-18 13:45:48 -06:00
jvazquez-r7 874031b96d Delete require 2015-02-18 13:44:31 -06:00
jvazquez-r7 415c671416 Move Rex code, we'll redesign as mixin 2015-02-18 13:44:02 -06:00
jakxx 44a7e7e4bc publish-it fileformat exploit 2015-02-18 13:22:54 -05:00
William Vu 35511636cc
Land #4788, splunk_web_login new version support 2015-02-18 11:54:54 -06:00
Jay Smith e40772efe2
Fixed open device issue for non-priv users 
Fixed the open_device call to work for users without Administrator
privileges
 2015-02-18 12:44:58 -05:00
jvazquez-r7 ff4aa1f9da Require FileServer mixin 2015-02-18 11:43:13 -06:00
jvazquez-r7 f960a77754 Solve merging conflicts 2015-02-18 11:36:47 -06:00
joev f8609ab0ba Add file format exploit for injecting code into unpackers. 2015-02-18 11:26:45 -06:00
jvazquez-r7 01bedb7351 Merge #3074, @0x41414141 SMBFileServer mixin 2015-02-18 10:53:05 -06:00
Matt Buck a9931cd410
Land #4725, convert Rails 3 AR calls in RPC_Db 
Converts Rails 3 style ActiveRecord calls in RPC_Db to their Rails 4
counterparts.

Fixes #4725, also see MSP-12017
 2015-02-18 09:59:40 -06:00
William Vu 10960310da
Land #4786, cosmetic fixes from @hmoore-r7 
For {axis,glassfish}_login.
 2015-02-18 03:56:13 -06:00