Tod Beardsley
63c66f66a0
Add a second_chance on cmd_use
...
This is a weak attempt to solve a race condition between modules loading
and cmd_use being fired. Upon startup, saved configurations, running
resource scripts, and running commands will sometimes jump ahead of the
module loading procedure.
I have not discovered where the race actually is and how to cause the
race to happen. However, the timing seems to be fairly close to a second;
by waiting three seconds after trying use again, we seem to be in the
clear, at least according to testing.
Fixes #4549 , but better solutions are welcome!
2015-01-20 15:46:29 -06:00
Tod Beardsley
2cc44cc7c9
Fix typo on module title
...
Brazenly ignoring process and merging myself.
At least it's still a signed merge commit.
2015-01-16 16:31:58 -06:00
Tod Beardsley
375a7e1fe9
Typo. Filtering.
2015-01-16 16:30:52 -06:00
Brent Cook
a2a1a90678
Land #4316 , Meatballs1 streamlines payload execution for exploits/windows/local/wmi
...
also fixes a typo bug in WMIC
2015-01-16 11:16:22 -06:00
Brent Cook
6a68888712
Land #4590 , jvennix-r7's fix for same-scheme URLs
...
made a trivial string formatting tweak
2015-01-16 09:10:56 -06:00
Brent Cook
7ef721bdd6
Might as well format the url all at once.
2015-01-16 09:01:25 -06:00
Joe Vennix
8c3d4c8d07
Spelling tweak.
2015-01-15 15:19:46 -06:00
Joe Vennix
35c9a13199
Handle the usage of // (same-scheme) URLs.
2015-01-15 15:09:50 -06:00
Brent Cook
c1e604f201
Land #4562 : wchen-r7's CVE addition
2015-01-15 14:34:37 -06:00
Brent Cook
bc895ab4d1
Land #4582 , jhart-r7's Apple Airport Authentication Avalanche
2015-01-15 14:07:18 -06:00
Brent Cook
47cd5a3e59
Land #4562 , wchen-r7's Win8 NtApphelpCacheControl privilege escalation
2015-01-15 13:52:07 -06:00
sinn3r
09eaf80a90
Add CVE
2015-01-15 13:22:00 -06:00
sinn3r
7628b119c6
Land #4588 - GetGo Download Manager module
2015-01-15 12:55:00 -06:00
sgabe
68dc3ce876
Minor code formatting
2015-01-15 19:33:08 +01:00
Gabor Seljan
e3450d71de
Merge pull request #3 from wchen-r7/pr4588_update
...
Support configurable resource for getgodm_http_response_bof
2015-01-15 19:28:53 +01:00
William Vu
204f0f8ea7
Land #4573 , Date/Subject support for SMTPDeliver
2015-01-15 10:53:30 -06:00
sinn3r
57904773e7
Configurable resource
2015-01-15 10:28:03 -06:00
Gabor Seljan
ef0be946b1
Use HttpServer instead of TcpServer
2015-01-15 10:39:17 +01:00
sgabe
da0fce1ea8
Add module for CVE-2014-2206
2015-01-14 22:04:30 +01:00
dmaloney-r7
052c14be69
Merge pull request #15 from wvu-r7/pr/4573
...
Fix typo and add Subject support
2015-01-14 09:45:47 -06:00
William Vu
f0de45c371
Fix typo and add Subject support
2015-01-14 02:17:29 -06:00
Jon Hart
b7eb4d24aa
Squash another rogue 5009
2015-01-13 10:36:43 -08:00
Jon Hart
5cc7d5d1a8
Remove errant pry
2015-01-13 10:35:05 -08:00
Jon Hart
ac4eb3bb90
Land #4578 , @dlanner's fix for rails_secret_deserialization
2015-01-13 09:37:28 -08:00
David Lanner
c5cfc11d84
fix cookie regex by removing a space
2015-01-12 23:13:18 -05:00
Jon Hart
69f03f5c5d
Move ACPP default port into Rex
2015-01-12 19:43:57 -08:00
Jon Hart
4e6879fb1e
Add tests for Rex::Proto:ACPP::Message#succesful?
2015-01-12 19:36:12 -08:00
Jon Hart
01a9fb1483
Spelling
2015-01-12 19:29:41 -08:00
Jon Hart
a076a9ab89
report_vuln
2015-01-12 19:23:08 -08:00
Jon Hart
d5cdfe73ed
Big style cleanup
2015-01-12 19:11:14 -08:00
Jon Hart
9721993b8f
Allow blank password, remote more unused opts, print private
2015-01-12 18:43:54 -08:00
Jon Hart
44059a6e34
Disable more unused options
2015-01-12 14:15:40 -08:00
Jon Hart
ec506af8ea
Make ACPP login work
2015-01-12 14:01:23 -08:00
Jon Hart
e9557ffe58
Simplify module in prep for some authbrute cleanups
2015-01-12 13:08:12 -08:00
Jon Hart
691ed2cf14
More cleanup
...
Don't validate checksums by default until they are better understood
Handle the unknowns a bit better
Make checksum failures more obvious why it failed
2015-01-12 13:08:12 -08:00
Jon Hart
97f5cbdf08
Add initial Airport ACPP login scanner
2015-01-12 13:08:12 -08:00
Jon Hart
fba6945e9a
Doc payload oddness. Add more checksum tests
2015-01-12 13:08:12 -08:00
Jon Hart
54eab4ea3d
Checksum validation, more tests
2015-01-12 13:08:12 -08:00
Jon Hart
7e4dd4e55b
Add ACPP decoding capabilities
2015-01-12 13:08:12 -08:00
Jon Hart
2af82ac987
Some preliminary Apple Airport admin protocol (ACPP?) support
2015-01-12 13:08:11 -08:00
David Maloney
6dad66c04c
add Date header support to SMTP deliver
...
the SMTP mixin now supports the Date header.
The user can supply a a value for the Date Header
or else it will automatically use the current local
DateTime. This will help alleviate certain issues
caused by servers setting this field for the cliebnt incorrectly
MSP-9390
2015-01-12 11:18:07 -06:00
sinn3r
7876401419
Land #4476 - Lexmark MarkVision Enterprise Arbitrary File Upload
2015-01-12 10:44:23 -06:00
sinn3r
34bbc5be90
print error message about limitation
2015-01-11 20:12:40 -06:00
Jon Hart
c8f5026fd2
Land #4565 , @FireFart's improvement to the msftidy check for bad msf URLs
2015-01-10 11:10:37 -08:00
sinn3r
46d1616994
Hello ARCH_X86_64
2015-01-10 06:16:22 -06:00
jvazquez-r7
49f04faf3f
Land #4065 , @fozavci's Cisco CUCDM auxiliary modules
2015-01-10 01:11:45 -06:00
jvazquez-r7
05d364180b
Beautify descriptions
2015-01-10 01:10:08 -06:00
jvazquez-r7
a2d479a894
Refactor run method
2015-01-10 01:06:56 -06:00
jvazquez-r7
cf9d7d583e
Do first code cleanup
2015-01-10 00:51:31 -06:00
jvazquez-r7
000d7dd1eb
Minor beautification
2015-01-10 00:32:10 -06:00