7403239de7
cleanup for psexec_ntdsgrab
2013-03-14 13:40:45 +01:00
97023413cb
Added advanced option for temp filenames prefix
2013-03-14 01:50:52 -05:00
abbb3b248d
methods that use @ip now reference it directly instead of being passed in as paramaters
2013-03-13 19:35:53 -05:00
462ffb78c1
Simplified copy_ntds & copy_sys check on line 91
2013-03-13 19:31:36 -05:00
4e9af74763
All print statements now use #{peer}
2013-03-13 19:28:09 -05:00
edf2804bb5
Added simple.disconnect to end of cleanup_after method
2013-03-13 19:23:22 -05:00
8eba71ebe2
Added simple.disconnect to end of download_sys_hive method
2013-03-13 19:20:58 -05:00
e5f7c08d6f
Added module for CVE-2012-4940
2013-03-13 11:52:54 +01:00
91fbeda062
up to date
2013-03-12 17:04:27 +01:00
6055438476
up to date
2013-03-12 17:04:27 +01:00
9a970415bc
Module uses store_loot now instead of logdir which has been removed
2013-03-11 20:05:23 -05:00
aa4cc11640
Removed Scanner class running as stand-alone single target module now
2013-03-11 13:39:47 -05:00
a96753e9df
Added licensing stuff at the top
2013-03-10 20:07:04 -05:00
bf9a2e4f52
Fixed module to use psexec mixin
2013-03-10 15:15:50 -05:00
907983db4a
updating with r7-msf
2013-03-10 14:19:20 -05:00
2160718250
Fix file header comment
...
[See #1555 ]
2013-03-07 17:53:19 -06:00
db1f4d7e1d
added license info
2013-03-07 00:20:02 +00:00
e8c1899dc2
added license info
2013-03-07 00:18:32 +00:00
3946cdf91e
added license info
2013-03-07 00:17:55 +00:00
1b493d0e4c
added license info
2013-03-07 00:16:26 +00:00
9e89d9608f
added license info
2013-03-07 00:11:45 +00:00
56639e7f15
added license info
2013-03-07 00:10:46 +00:00
1d8c759a34
yeah
2013-03-06 16:01:36 -06:00
ca43900a7c
Merge remote-tracking branch 'R3dy/psexec-mixin2' into rapid7
2013-03-05 16:34:11 -06:00
27727df415
Merge branch 'R3dy-psexec-mixin2' into rapid7
2013-03-05 14:36:55 -06:00
4212c36566
Fix up basic auth madness
2013-03-01 11:59:02 -06:00
ac50c32d51
Tested, works on server 2k8
2013-02-20 10:02:50 -06:00
4703278183
Move SMB mixins into their own directory
2013-02-19 12:55:06 -06:00
ede804e6af
Make psexec mixin a bit better
...
* Removes copy-pasted code from psexec_command module and uses the mixin
instead
* Uses the SMB protocol to delete files rather than psexec'ing to call
cmd.exe and del
* Replaces several instances of "rescue StandardError" with better
exception handling so we don't accidentally swallow things like
NoMethodError
* Moves file reading and existence checking into the Exploit::SMB mixin
2013-02-19 12:33:19 -06:00
ec5c8e3a88
Merge branch 'dlink-dir300-600-execution' of https://github.com/m-1-k-3/metasploit-framework into m-1-k-3-dlink-dir300-600-execution
2013-02-16 19:12:42 +01:00
c2f8e4adbd
Minor - Note Rails 3.1.11 patch in Description.
2013-02-13 22:30:54 -06:00
d1784babea
little cleanup plus msftidy compliant
2013-02-13 20:24:49 +01:00
0ae473b010
info updated with rails information
2013-02-13 09:52:17 +01:00
f46eda2fa9
Merge branch 'rails_devise_pw_reset' of https://github.com/jjarmoc/metasploit-framework into jjarmoc-rails_devise_pw_reset
2013-02-13 09:51:37 +01:00
799beb5adc
minor cleanup
2013-02-13 01:00:25 +01:00
1d5d33f306
use normalize_uri()
2013-02-12 14:58:07 -06:00
c6a7a4e68d
/URIPATH/TARGETURI/g
2013-02-12 14:50:10 -06:00
c7719bf4cb
Verify response is non-nil.
2013-02-12 13:41:21 -06:00
9e1f106a87
msftidy cleanup
2013-02-12 13:38:58 -06:00
766257d26a
pointed by @m-1-k-3 while working on #1472
2013-02-11 21:21:43 +01:00
5f0a3c6b9e
Removes pry, oops.
2013-02-11 14:02:46 -06:00
753fa2c853
Handles error when TARGETEMAIL is invalid.
2013-02-11 13:58:56 -06:00
61ffcedbfd
Address HD's other comments, fixes mismatched var name in last commit.
2013-02-11 11:17:26 -06:00
e72dc47448
Uses REXML for encoding of password.
2013-02-11 11:12:29 -06:00
43a1fbb6f2
Make msftiday happy.
2013-02-10 21:13:18 -06:00
55cba56591
Aux module for joernchen's devise vuln - CVE-2013-0233
2013-02-10 21:10:00 -06:00
63c6791473
return
2013-02-09 11:17:02 +01:00
6cccf86a00
Merge branch 'master' of git://github.com/rapid7/metasploit-framework into dlink-dir300-600-execution
2013-02-09 11:09:56 +01:00
5357e23675
Fixups to the Linksys module
...
Professionalizes the description a little, but more importantly, handles
LANIP better, I think. Instead of faking a 1.1.1.1 address, just detect
if it's set or not in a method and return the right thing accordingly.
Please test this before landing, obviously. I think it's what's
intended.
2013-02-06 12:46:50 -06:00
faeaa74a49
Msftidy whitespace
2013-02-06 11:06:13 -06:00
43f3bb4fe6
small updates
2013-02-05 13:54:10 +01:00
5ca0e45388
initial commit
2013-02-04 08:44:12 +01:00
2bf2d4d8a4
Merge branch 'netgear_sph200d_traversal' of https://github.com/m-1-k-3/metasploit-framework into m-1-k-3-netgear_sph200d_traversal
2013-02-03 23:35:29 +01:00
c24c926ffa
add aditional check to detect valid device
2013-02-01 20:55:06 +01:00
996ee06b0f
fix another print_ call
2013-02-01 20:43:54 +01:00
152f397a1f
first module cleanup
2013-02-01 20:38:11 +01:00
988761a6de
more updates, BID, Exploit-DB
2013-02-01 20:18:53 +01:00
fdd5fe77c1
more updates ...
2013-02-01 19:59:19 +01:00
0e22ee73b5
updates ...
2013-02-01 19:26:34 +01:00
c174e6a208
Correctly use normalize_uri()
...
normalize_uri() should be used when you're joining URIs. Because if
you're merging URIs after it's normalized, you could get double
slashes again.
2013-01-30 23:23:41 -06:00
ea5e993bf3
initial
2013-01-29 22:02:29 +01:00
690ef85ac1
Fix trailing slash problem
...
These modules require the target URI to be a directory path. So
if you remove the trailing slash, the web server might return a
301 or 404 instead of 200.
Related to: [SeeRM: #7727 ]
2013-01-28 13:19:31 -06:00
15253f23bf
added RHOSTS funct
2013-01-24 15:29:35 -06:00
1fc747994e
cleanup for linksys_wrt54gl_exec
2013-01-24 17:50:14 +01:00
3a5e92ba6f
hopefully all fixex included
2013-01-23 12:15:34 +01:00
c601ceba3c
Fixed error deleting ntds and sys files
2013-01-22 09:42:49 -06:00
ed3b886b61
working with psexec mixin
2013-01-22 09:36:43 -06:00
11c13500be
small fix
2013-01-21 13:41:42 +01:00
62ff52280a
initial linksys OS command injection
2013-01-21 13:19:29 +01:00
a89db93891
psexec_command - Unable to execute specified command: can't convert nil into Integer
...
Patched as described in Redmine bug #7680
2013-01-14 15:54:40 -05:00
ff9ef80cc6
Fixed terrible tab issues that occured because of an evil vimrc filegit add ntdsgrab.rb
2013-01-07 12:49:58 -06:00
e4546b13f3
Creating new pull request to beat Travis build strange errors...
2013-01-07 12:21:59 -06:00
c1f0e1172b
Still fighing with Travis build errors
2013-01-07 11:52:37 -06:00
33751c7ce4
Merges and resolves CJR's normalize_uri fixes
...
Merge remote-tracking branch 'ChrisJohnRiley/set_normalize_uri_on_modules'
into set_normalize_uri_on_modules
Note that this trips all kinds of msftidy warnings, but that's for another
day.
Conflicts:
modules/exploits/unix/webapp/tikiwiki_jhot_exec.rb
modules/exploits/windows/http/xampp_webdav_upload_php.rb
2013-01-07 11:16:58 -06:00
ac2182c69b
Edited to fix Travis build process
2013-01-07 11:10:21 -06:00
44e07c8577
Created psexec mixin to get rid of ugly copy-paste
2013-01-04 09:58:48 -06:00
4d8a2a0885
msftidy: remove $Revision$
2013-01-03 01:01:18 +01:00
95948b9d7c
msftidy: remove $Revision$
2013-01-03 00:58:09 +01:00
ca890369b1
msftidy: remove $Id$
2013-01-03 00:54:48 +01:00
321a4ecb74
Escaped quotes in windows command
2012-12-29 13:46:22 -06:00
02bbcb5803
surrounded ntdspath in a space
2012-12-29 13:33:32 -06:00
174e6e8f17
Fixed array instantiation
2012-12-29 13:31:54 -06:00
0344c568fd
Merge branch 'smb_fixes' of git://github.com/alexmaloteaux/metasploit-framework into alexmaloteaux-smb_fixes
2012-12-18 11:38:14 -06:00
10511e8281
Merge remote branch 'origin/bug/fix-double-slashes'
...
Ran the new normalize_uri() specs, all passes, so I'm quite confident in
this change.
2012-12-17 13:29:19 -06:00
2eb01168c8
Cleaned build junk
2012-12-14 10:44:53 -06:00
82a6519dc4
cleaned up print_status and print_errors
2012-12-14 10:41:40 -06:00
1b26036028
removed junk
2012-12-14 09:23:26 -06:00
ae663b2a08
removed | from author section
2012-12-14 09:02:19 -06:00
27ca43c915
Added to create new pull request
2012-12-14 08:53:22 -06:00
d2885d9045
Correct US Cert references
2012-12-13 14:19:53 -06:00
c66777d028
Merge branch 'command' of git://github.com/R3dy/metasploit-framework into R3dy-command
2012-12-06 16:08:04 -06:00
205276c38f
Update modules/auxiliary/admin/smb/psexec_command.rb
...
Fixed static path to Windows directory. This causes problems with directory is 'WINNT' for example.
2012-12-06 16:03:44 -06:00
3dada00f43
fix typo accor ding to redmine 7550
2012-12-04 22:37:08 +01:00
c0c3dff4e6
Several fixes for smb, mainly win 8 compatibility
2012-11-28 22:49:40 +01:00
319fa04c16
Fix Ruby 1.8 comma of death
2012-11-26 16:45:43 -06:00
414fd052c1
final cleanup
2012-11-24 15:03:14 +01:00
f7fb8bb862
change module filename
2012-11-23 11:43:34 +01:00
cb7e98ea29
Cleanup for command module
2012-11-23 11:42:59 +01:00
e16cea6db8
Fixed execerror, redundant if statement, and poor exception handling
2012-11-20 18:46:07 -06:00
795ea5bec2
Fix randomize of dislayname and removed filename from command.rb
2012-11-19 14:34:06 -06:00
7fa8717860
Fixed cleanup method to report an Error on command.rb
2012-11-19 13:59:58 -06:00
f9b4971fc3
Fixed hard coded paths in psexec on command.rb
2012-11-13 10:28:16 -06:00
683bcd4b82
Added disconnect method to command.rb
2012-11-12 11:25:12 -06:00
e57275d3f6
added check cleanup method to command.rb
2012-11-12 09:46:02 -06:00
cffedd0c97
Set back to target_uri.path
2012-11-11 12:04:31 +01:00
6e257d5f57
Simplify main method
2012-11-09 08:50:09 -06:00
0dd4f4d03d
Formatting
2012-11-08 17:51:06 +01:00
f88ec5cbc8
Add normalize_uri to modules that may have
...
been missed by PULL 1045.
Please ensure PULL 1045 is in place prior to
looking at this (as it implements normalize_uri)
ref --> https://github.com/rapid7/metasploit-framework/pull/1045
2012-11-08 17:42:48 +01:00
4d2147f392
Adds normalize_uri() and fixes double-slash typos
2012-11-08 07:16:51 -06:00
22ecd6afa9
Edit command.rb
2012-11-07 15:17:13 -06:00
18aab8bcc7
Remove extrat comment lines from command.rb
2012-11-07 15:09:57 -06:00
d159aa6f9f
Changed error handeling of command.rb module
2012-11-07 15:03:31 -06:00
ac518f7091
Removed double lines in Author field and general URLs
2012-11-07 08:22:09 -06:00
aec4d99549
ran msftidy on command.rb
2012-11-06 16:33:47 -06:00
9f87b7b674
Removed smb_exec from this branch
2012-11-06 16:18:38 -06:00
0b940d8087
New module command.rb
2012-11-05 12:03:51 -06:00
aa6e8c7437
smb_exec
2012-11-05 11:46:39 -06:00
a9db705b60
New module for submission smb_exec
2012-11-05 11:45:03 -06:00
2c4273e478
Correct some modules with res nil
2012-10-29 04:41:30 -05:00
f1423bf0b4
If a message is clearly a warning, then use print_warning
2012-10-24 00:44:53 -05:00
910644400d
References EDB cleanup
...
All other types of references use String arguments, but approximately half
of the EDB references use Fixnums. Fix this by using Strings here too.
2012-10-23 21:02:09 +02:00
04a6021631
Privileged cleanup: auxiliary modules can't
2012-10-22 20:36:49 +02:00
39e81d3e53
Arch/Platform cleanup: aux modules need neither
2012-10-22 20:28:02 +02:00
ae690f5fd3
Remove that extra "," that breaks Ruby 1.8
2012-10-20 02:11:49 -05:00
7b1c35624e
Merge branch 'mssql_ntlm_stealer' of https://github.com/nullbind/metasploit-framework into nullbind-mssql_ntlm_stealer
2012-10-17 22:50:54 +02:00
1f55e02535
minor cleanup
2012-10-17 22:21:28 +02:00
12e2ff9bb5
proposed cleanup
2012-10-17 19:03:28 +02:00
c52b834f50
updated name and description
2012-10-16 14:37:02 -05:00
d8c2aa9796
added mssql ntlm stealer for sqli
2012-10-16 14:26:10 -05:00
fafa6e49ce
address comments from jvazquez
2012-10-16 12:10:37 -05:00
553ce82e79
added mssql ntlm stealer
2012-10-15 13:29:51 -05:00
54ed60e24e
Forgot to remove the second require
2012-09-24 18:50:53 -05:00
6bd450e114
Make Ruby 1.8 happy
2012-09-24 18:49:41 -05:00
f75ff8987c
updated all my authour refs to use an alias
2012-09-19 21:46:14 -05:00
c83b49ad58
Unix linefeeds, not windows
...
That's what I get for just committing willy-nilly with a fresh install
of Gvim for Windows.
Also, this is an experiment to see if linefeeds are being respected in
this editor Window. I doubt it will be, given GitHub's resistence to
50/72 as a sensible default.
2012-09-16 18:10:35 -05:00
2fc34e0073
Auth successful, not successfully
...
Just fixing up some adverb versus adjective grammar.
2012-09-16 17:51:00 -05:00
63d2d60c68
delete don't needed line
2012-09-15 23:56:38 +02:00
ff2e9fc157
add changes proposed by sinn3r
2012-09-15 23:55:55 +02:00
70ff7621d6
added module for CVE-2012-2983
2012-09-15 15:11:12 +02:00
6771466cb7
Added module for CVE-2011-2750
2012-09-13 17:24:16 +02:00
32e2232de3
Disambiguating hkm from hdm
...
Having an author name of "hkm" really looks like a typo for "hdm," but
it's not.
2012-09-11 11:13:20 -05:00
aaf7fcd5e9
Closing bracket doh
2012-09-07 08:57:27 -05:00
53e4818c2e
Humble-desser, not humble-dresser
2012-09-07 08:49:27 -05:00
ff97b1da00
Whitespace EOL
2012-09-05 14:04:20 -05:00
b8132cae5c
Add the redistribution comment splat
2012-09-04 15:58:43 -05:00
15f1dd8525
Moving greetz to Author fields
2012-09-04 15:58:43 -05:00
6e7cbe793c
Spamguard e-mail addresses, make auth name consistent
2012-09-04 15:58:43 -05:00
f80abaf0d1
Dropping trailing whitespace
2012-09-04 15:58:42 -05:00
114ade6bea
applied todb requested fixes, and added sql 2k support
2012-09-04 15:58:42 -05:00
6cd6f9d5d1
minor comment updates
2012-09-04 15:58:42 -05:00
jvazquez-r7
Trenton Ivey
Royce Davis
James Lee
J.Townsend
David Maloney
Jeff Jarmoc
m-1-k-3
Tod Beardsley
m-1-k-3
sinn3r
Brandon McCann
lmercer
Christian Mehlmauer
Royce Davis
Alexandre Maloteaux
Chris John Riley
Chris John Riley
HD Moore
Michael Schierl
nullbind