Commit Graph

31968 Commits (5ac1ee1d734b43db4813260b5695a1bd1223ebf3)

Author SHA1 Message Date
David Maloney aa4038d539
allow the postgres librry to take an md5 hash
allow the raw md5 password hash to be passed in instead of
a password for md5 authentication in postgres. Adds an extra exception
class for when an md5 hash is given but the server expects
a different form of authentication.

MSP-12244
2015-03-03 13:16:46 -06:00
jvazquez-r7 a2a24c56d6 Add specs for QueryFileInformation 2015-03-03 13:04:30 -06:00
jvazquez-r7 1322cb0d3f Clean find_first2 specs 2015-03-03 12:46:25 -06:00
jvazquez-r7 8328c5c5e9 Add specs for SMB_FIND_FILE_BOTH_DIRECTORY_INFO requests 2015-03-03 12:43:41 -06:00
jvazquez-r7 597f99ade9 Finish TRANS2 specs 2015-03-03 11:46:13 -06:00
jvazquez-r7 a204b550d2 Add specs for TRANSACTION2 helper methods 2015-03-03 10:55:55 -06:00
jvazquez-r7 bece2e7088 Really add the specs 2015-03-03 10:32:35 -06:00
jvazquez-r7 63a3ab16fe Add specs for SMB_COM_SESSION_SETUP_ANDX commands 2015-03-03 10:31:43 -06:00
jvazquez-r7 4bbc0b5b0b Fix valid_request on negotiate_spec 2015-03-02 17:39:39 -06:00
jvazquez-r7 a92dc7e73d Fix nt_create_andx specs 2015-03-02 17:38:24 -06:00
jvazquez-r7 4fc08d7243 Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::ReadAndX 2015-03-02 17:32:03 -06:00
jvazquez-r7 b5e5d390ac Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::NtCreateAndx 2015-03-02 16:55:36 -06:00
jvazquez-r7 584e5f7d8b Add specs for Exploit::Remote::SMB::Server::Share::Command::Negotiate 2015-03-02 16:29:33 -06:00
Brent Cook 4b54517b95
Land #4864 @wvu-r7 changes reverse_python to be non-interactive
This avoids sourcing the shell RC scripts, writing history, etc.
2015-03-02 16:21:49 -06:00
jvazquez-r7 50f5baa7c6 Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::Close 2015-03-02 16:00:02 -06:00
William Vu a648e74c4b Remove unnecessary semicolon 2015-03-02 15:36:45 -06:00
William Vu 80169de4d0 Remove -i from shell in reverse_python 2015-03-02 15:29:50 -06:00
William Vu ecd7ae9c3b
Land #4857, symantec_web_gateway_restore module 2015-03-02 15:00:10 -06:00
sinn3r ad28f9767f Use include 2015-03-02 14:41:25 -06:00
jvazquez-r7 b0bc69b832 Add @todo comment 2015-03-02 14:25:56 -06:00
jvazquez-r7 d57e220f00 Delete unnecessary case on smb_cmd_trans_query_path_info_basic 2015-03-02 14:19:20 -06:00
jvazquez-r7 2004aea7b7 Add helpers for path handling on TRANS2 requests 2015-03-02 14:15:25 -06:00
sinn3r cb140434f9 Update 2015-03-02 12:59:21 -06:00
jvazquez-r7 8acde11aaf Use file_contents instead of exe_contents 2015-03-02 12:56:48 -06:00
jvazquez-r7 34bd6a4365 Add documentation for the Share mixin 2015-03-02 12:42:32 -06:00
jvazquez-r7 9a8e17508f Add documentation for QUERY information levels 2015-03-02 12:00:34 -06:00
jvazquez-r7 750022806b Add documentation for FIND information levels 2015-03-02 11:46:20 -06:00
sinn3r 5f3ed83922
Land #4836, Solarwinds Core Orion Service SQL injection 2015-03-02 11:44:26 -06:00
jvazquez-r7 0d8632dae9 Add documentation for TRANSACTION2 subcommands 2015-03-02 11:19:34 -06:00
jvazquez-r7 6a5dae4549 Add documentation for SMB_COM_TRANSACTION2 handling 2015-03-02 11:12:57 -06:00
jvazquez-r7 3923589286 Add documentation for SMB_COM_SESSION_SETUP_ANDX handling 2015-03-02 11:06:41 -06:00
jvazquez-r7 e8dd9c1971 Add documentation for SMB_COM_READ_ANDX 2015-03-02 10:59:07 -06:00
jvazquez-r7 1ad3f91c50 Add documentation for SMB_COM_NT_CREATE_ANDX handling 2015-03-02 10:52:30 -06:00
jvazquez-r7 19061121b3 Add documentation for SMB_COM_NEGOTIATE handling 2015-03-02 10:45:43 -06:00
jvazquez-r7 3e8bbb6c9e Add documentation for SMB_COM_CLOSE handling 2015-03-02 10:36:13 -06:00
Brandon Turner 6b3de2850b
Merge remote-tracking branch 'origin/release' 2015-03-01 00:50:34 -06:00
Brandon Turner c86b56684a
Fix bug preventing updates in pro
The RPC code previously tested return values to see if an error key was
equal to true.  In 251c284458, this was
changed to check if the error key was truthy.

The pro updater returns an error key with a string describing an error
(or an empty string for no error).  Ruby strings evaluate as truthy
which caused the new behavior to throw an error.  This prevented
checking for and applying updates.

This reverts to the original behavior of checking for true explicitly
instead of checking for a truthy value.

MSP-12235
2015-02-28 23:46:57 -06:00
William Vu ef330b970b
Land #4860, @OJ's Seagate 0day hotness 2015-02-28 21:55:54 -06:00
OJ 905a539a00 Add exploit for Seagate Business NAS devices
This module is an exploit for a pre-authenticated remote code execution
vulnerability in Seagate Business NAS products.
2015-03-01 13:25:28 +10:00
Brandon Perry f8e3874203 add nil check 2015-02-28 20:43:19 -06:00
sinn3r 4a1fbbdc3b Use datastore to find payload name 2015-02-28 19:56:32 -06:00
jvazquez-r7 227cf4500d define constants for tree connect access rights 2015-02-28 18:38:45 -06:00
jvazquez-r7 e322aca1ba
Merge constants for reponses wordcounts 2015-02-28 18:24:47 -06:00
jvazquez-r7 eb3aedf4a7 Define constants for WordCount in responses 2015-02-28 18:15:14 -06:00
Matthew Hall 402fa127e6 Merge pull request #3 from jvazquez-r7/review_3074_clean_server
Land the merge. Code looks good to me! :-) thanks @jvazquez-r7
2015-02-28 22:10:17 +00:00
jvazquez-r7 7d8b78c2e8
Merge session_setup refactoring 2015-02-28 15:14:33 -06:00
sinn3r 5f8c14c958 Fix check for TrueClass, plus other small changes 2015-02-28 14:11:15 -06:00
sinn3r 6f4259f2de Revert #4859, temporary solution for unbreaking client
This reverts commit 7ab86be72a, reversing
changes made to 49ae173057.
2015-02-28 14:07:26 -06:00
sinn3r 1b699b0ddc Resolve merge conflict
Conflicts:
	lib/msf/core/rpc/v10/client.rb
2015-02-28 14:07:01 -06:00
jvazquez-r7 eb7ac02d1a Normalize handlers names 2015-02-28 12:14:58 -06:00