David Maloney
aa4038d539
allow the postgres librry to take an md5 hash
...
allow the raw md5 password hash to be passed in instead of
a password for md5 authentication in postgres. Adds an extra exception
class for when an md5 hash is given but the server expects
a different form of authentication.
MSP-12244
2015-03-03 13:16:46 -06:00
jvazquez-r7
a2a24c56d6
Add specs for QueryFileInformation
2015-03-03 13:04:30 -06:00
jvazquez-r7
1322cb0d3f
Clean find_first2 specs
2015-03-03 12:46:25 -06:00
jvazquez-r7
8328c5c5e9
Add specs for SMB_FIND_FILE_BOTH_DIRECTORY_INFO requests
2015-03-03 12:43:41 -06:00
jvazquez-r7
597f99ade9
Finish TRANS2 specs
2015-03-03 11:46:13 -06:00
jvazquez-r7
a204b550d2
Add specs for TRANSACTION2 helper methods
2015-03-03 10:55:55 -06:00
jvazquez-r7
bece2e7088
Really add the specs
2015-03-03 10:32:35 -06:00
jvazquez-r7
63a3ab16fe
Add specs for SMB_COM_SESSION_SETUP_ANDX commands
2015-03-03 10:31:43 -06:00
jvazquez-r7
4bbc0b5b0b
Fix valid_request on negotiate_spec
2015-03-02 17:39:39 -06:00
jvazquez-r7
a92dc7e73d
Fix nt_create_andx specs
2015-03-02 17:38:24 -06:00
jvazquez-r7
4fc08d7243
Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::ReadAndX
2015-03-02 17:32:03 -06:00
jvazquez-r7
b5e5d390ac
Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::NtCreateAndx
2015-03-02 16:55:36 -06:00
jvazquez-r7
584e5f7d8b
Add specs for Exploit::Remote::SMB::Server::Share::Command::Negotiate
2015-03-02 16:29:33 -06:00
Brent Cook
4b54517b95
Land #4864 @wvu-r7 changes reverse_python to be non-interactive
...
This avoids sourcing the shell RC scripts, writing history, etc.
2015-03-02 16:21:49 -06:00
jvazquez-r7
50f5baa7c6
Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::Close
2015-03-02 16:00:02 -06:00
William Vu
a648e74c4b
Remove unnecessary semicolon
2015-03-02 15:36:45 -06:00
William Vu
80169de4d0
Remove -i from shell in reverse_python
2015-03-02 15:29:50 -06:00
William Vu
ecd7ae9c3b
Land #4857 , symantec_web_gateway_restore module
2015-03-02 15:00:10 -06:00
sinn3r
ad28f9767f
Use include
2015-03-02 14:41:25 -06:00
jvazquez-r7
b0bc69b832
Add @todo comment
2015-03-02 14:25:56 -06:00
jvazquez-r7
d57e220f00
Delete unnecessary case on smb_cmd_trans_query_path_info_basic
2015-03-02 14:19:20 -06:00
jvazquez-r7
2004aea7b7
Add helpers for path handling on TRANS2 requests
2015-03-02 14:15:25 -06:00
sinn3r
cb140434f9
Update
2015-03-02 12:59:21 -06:00
jvazquez-r7
8acde11aaf
Use file_contents instead of exe_contents
2015-03-02 12:56:48 -06:00
jvazquez-r7
34bd6a4365
Add documentation for the Share mixin
2015-03-02 12:42:32 -06:00
jvazquez-r7
9a8e17508f
Add documentation for QUERY information levels
2015-03-02 12:00:34 -06:00
jvazquez-r7
750022806b
Add documentation for FIND information levels
2015-03-02 11:46:20 -06:00
sinn3r
5f3ed83922
Land #4836 , Solarwinds Core Orion Service SQL injection
2015-03-02 11:44:26 -06:00
jvazquez-r7
0d8632dae9
Add documentation for TRANSACTION2 subcommands
2015-03-02 11:19:34 -06:00
jvazquez-r7
6a5dae4549
Add documentation for SMB_COM_TRANSACTION2 handling
2015-03-02 11:12:57 -06:00
jvazquez-r7
3923589286
Add documentation for SMB_COM_SESSION_SETUP_ANDX handling
2015-03-02 11:06:41 -06:00
jvazquez-r7
e8dd9c1971
Add documentation for SMB_COM_READ_ANDX
2015-03-02 10:59:07 -06:00
jvazquez-r7
1ad3f91c50
Add documentation for SMB_COM_NT_CREATE_ANDX handling
2015-03-02 10:52:30 -06:00
jvazquez-r7
19061121b3
Add documentation for SMB_COM_NEGOTIATE handling
2015-03-02 10:45:43 -06:00
jvazquez-r7
3e8bbb6c9e
Add documentation for SMB_COM_CLOSE handling
2015-03-02 10:36:13 -06:00
Brandon Turner
6b3de2850b
Merge remote-tracking branch 'origin/release'
2015-03-01 00:50:34 -06:00
Brandon Turner
c86b56684a
Fix bug preventing updates in pro
...
The RPC code previously tested return values to see if an error key was
equal to true. In 251c284458
, this was
changed to check if the error key was truthy.
The pro updater returns an error key with a string describing an error
(or an empty string for no error). Ruby strings evaluate as truthy
which caused the new behavior to throw an error. This prevented
checking for and applying updates.
This reverts to the original behavior of checking for true explicitly
instead of checking for a truthy value.
MSP-12235
2015-02-28 23:46:57 -06:00
William Vu
ef330b970b
Land #4860 , @OJ's Seagate 0day hotness
2015-02-28 21:55:54 -06:00
OJ
905a539a00
Add exploit for Seagate Business NAS devices
...
This module is an exploit for a pre-authenticated remote code execution
vulnerability in Seagate Business NAS products.
2015-03-01 13:25:28 +10:00
Brandon Perry
f8e3874203
add nil check
2015-02-28 20:43:19 -06:00
sinn3r
4a1fbbdc3b
Use datastore to find payload name
2015-02-28 19:56:32 -06:00
jvazquez-r7
227cf4500d
define constants for tree connect access rights
2015-02-28 18:38:45 -06:00
jvazquez-r7
e322aca1ba
Merge constants for reponses wordcounts
2015-02-28 18:24:47 -06:00
jvazquez-r7
eb3aedf4a7
Define constants for WordCount in responses
2015-02-28 18:15:14 -06:00
Matthew Hall
402fa127e6
Merge pull request #3 from jvazquez-r7/review_3074_clean_server
...
Land the merge. Code looks good to me! :-) thanks @jvazquez-r7
2015-02-28 22:10:17 +00:00
jvazquez-r7
7d8b78c2e8
Merge session_setup refactoring
2015-02-28 15:14:33 -06:00
sinn3r
5f8c14c958
Fix check for TrueClass, plus other small changes
2015-02-28 14:11:15 -06:00
sinn3r
6f4259f2de
Revert #4859 , temporary solution for unbreaking client
...
This reverts commit 7ab86be72a
, reversing
changes made to 49ae173057
.
2015-02-28 14:07:26 -06:00
sinn3r
1b699b0ddc
Resolve merge conflict
...
Conflicts:
lib/msf/core/rpc/v10/client.rb
2015-02-28 14:07:01 -06:00
jvazquez-r7
eb7ac02d1a
Normalize handlers names
2015-02-28 12:14:58 -06:00