infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,323 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

6323 Commits (65ec171c2bcad3cbe15abde0f8d7d3bd8ad11c98)

Author SHA1 Message Date
Tod Beardsley 3f69bb8053 Fixes the handling for telnet services when the server is "busy" -- this is common wit HP JetDirect servers, where the server will respond with a busy message up to several seconds after the last connection logged off. While this does mean that credential tests will be skipped, they will at least not be scored incorrectly as false postives. 
Also, this removes the disconnect() method in favor of self.sock.close(). Disconnect seems to have a tendency to leave sessions half-closed, which will cause a busy state to never clear. self.sock.close doesn't appear to have this effect if you use a slower bruteforce_speed option (3 seems to work all right).



git-svn-id: file:///home/svn/framework3/trunk@8835 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 18:45:50 +00:00
Joshua Drake ef299e71d2 candy mountain whitespace fixes! 
git-svn-id: file:///home/svn/framework3/trunk@8834 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 18:07:49 +00:00
Joshua Drake 7fcad1f4b8 add exploit module for cve-2010-0188 (possibly cve-2006-3549) 
git-svn-id: file:///home/svn/framework3/trunk@8833 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 18:06:50 +00:00
Tod Beardsley cb640571b0 Fixes #1109 -- ARP is now less picky about ARP replies, but does conform to normal networking standards. 
git-svn-id: file:///home/svn/framework3/trunk@8832 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 16:04:02 +00:00
Joshua Drake 32fb7653ca only set .info if its nil or empty 
git-svn-id: file:///home/svn/framework3/trunk@8831 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 15:20:48 +00:00
HD Moore 18075f9b68 Store session UUID and username 
git-svn-id: file:///home/svn/framework3/trunk@8830 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 15:11:07 +00:00
Joshua Drake f9267498e3 save initial command shell session output into session.info 
git-svn-id: file:///home/svn/framework3/trunk@8829 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 04:50:47 +00:00
Joshua Drake 7cf8b4c43f distinguish the error message for sessions that die from EOF 
git-svn-id: file:///home/svn/framework3/trunk@8828 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 03:15:52 +00:00
HD Moore d03342fa49 Store the full module paths 
git-svn-id: file:///home/svn/framework3/trunk@8827 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 23:40:12 +00:00
HD Moore 0f7a6cd1f2 Store the name and domain in the service info 
git-svn-id: file:///home/svn/framework3/trunk@8826 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 21:35:21 +00:00
HD Moore 1b54c0e493 Closes #1129. Merges in Thomas's xdb_sid_brute patch 
git-svn-id: file:///home/svn/framework3/trunk@8825 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 20:31:53 +00:00
HD Moore b0be430657 Add L4teral's screen unlocker 
git-svn-id: file:///home/svn/framework3/trunk@8824 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 20:28:10 +00:00
HD Moore 2dd91d4f88 Allow API tokens to be used instead of user/pass 
git-svn-id: file:///home/svn/framework3/trunk@8823 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 20:16:37 +00:00
HD Moore 9f4ba25823 Add shiny new Oracle 0day (found by David Litchfield, ported to Metasploit by sid) 
git-svn-id: file:///home/svn/framework3/trunk@8822 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 16:34:46 +00:00
HD Moore 9ccce2a166 Move the nexpose api code into a separate file 
git-svn-id: file:///home/svn/framework3/trunk@8821 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 03:19:25 +00:00
Carlos Perez f49d84992c Applied Patch provided by Rob Fuller Mubix 
git-svn-id: file:///home/svn/framework3/trunk@8820 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 00:37:45 +00:00
Carlos Perez 5c7045e680 Applied Patch provided by Rob Fuller Mubix 
git-svn-id: file:///home/svn/framework3/trunk@8819 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 00:37:26 +00:00
HD Moore 5dd404abd6 Fix an issue with 1.9.1 compat 
git-svn-id: file:///home/svn/framework3/trunk@8818 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 16:20:24 +00:00
HD Moore 9ae8422c05 Fix info field 
git-svn-id: file:///home/svn/framework3/trunk@8817 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 16:09:46 +00:00
HD Moore 5e26eb9498 Adds name and info to the loot table: 
git-svn-id: file:///home/svn/framework3/trunk@8816 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 15:38:52 +00:00
HD Moore b1af1feb3f Use double not single quotes 
git-svn-id: file:///home/svn/framework3/trunk@8815 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 04:13:00 +00:00
HD Moore 8464a36bf5 Bump pool to 256; may still be driver limited. See #976. 
git-svn-id: file:///home/svn/framework3/trunk@8814 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 03:54:54 +00:00
HD Moore 821a0bcf37 SMB share enumeration 
git-svn-id: file:///home/svn/framework3/trunk@8813 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 03:44:50 +00:00
HD Moore 84b7f4bb85 Store the nfs service and export information into the db 
git-svn-id: file:///home/svn/framework3/trunk@8812 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 00:34:46 +00:00
Joshua Drake 40dd65494e add notes about vulnerable versions 
git-svn-id: file:///home/svn/framework3/trunk@8811 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-13 18:15:06 +00:00
Joshua Drake 0f0d6b9dff add OWASP BWA root user/pass to default lists 
git-svn-id: file:///home/svn/framework3/trunk@8810 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-13 08:28:48 +00:00
Joshua Drake ec325f9ab1 adjust help text, see #394 
git-svn-id: file:///home/svn/framework3/trunk@8809 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 23:06:33 +00:00
Joshua Drake a811ad0c32 clean up, add comments, and fix bug in command dispatcher, fixes #394 
git-svn-id: file:///home/svn/framework3/trunk@8808 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 22:59:19 +00:00
Joshua Drake 7b41d08387 remove dupe "-s" option from help, add "-u" option to upgrade command shell session to meterpreter 
git-svn-id: file:///home/svn/framework3/trunk@8807 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 21:51:55 +00:00
Joshua Drake ac06e2d667 only copy user_input and user_output if they are non-nil 
git-svn-id: file:///home/svn/framework3/trunk@8806 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 21:47:27 +00:00
Joshua Drake b6851b8ee4 modify cmd stager to take a raw payload string instead of a payload instance 
git-svn-id: file:///home/svn/framework3/trunk@8805 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 21:47:01 +00:00
HD Moore 9288f34fbf Add a results column 
git-svn-id: file:///home/svn/framework3/trunk@8804 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 15:58:02 +00:00
HD Moore 1b1ec3b5dc Store the job_id for auxiliary modules running as a background job 
git-svn-id: file:///home/svn/framework3/trunk@8803 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 02:39:02 +00:00
Carlos Perez bbca886cb7 Meterpreter script by Dave Hull for extracting information from Windows lnk files 
git-svn-id: file:///home/svn/framework3/trunk@8802 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 02:01:15 +00:00
Joshua Drake a6377cc63b turn off echo for telnet sessions 
git-svn-id: file:///home/svn/framework3/trunk@8801 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 23:03:44 +00:00
Mario Ceballos 5b6442aa58 added a patch and added a new module from Thomas Ring. 
git-svn-id: file:///home/svn/framework3/trunk@8800 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 22:55:37 +00:00
HD Moore c5cbacd194 Handle long responses better 
git-svn-id: file:///home/svn/framework3/trunk@8799 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 22:21:41 +00:00
HD Moore c3d17ab48b Add hooks for input/output/error 
git-svn-id: file:///home/svn/framework3/trunk@8798 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 21:57:04 +00:00
James Lee 646044f631 move session_output events to the session where they belong (instead of in rpc). add a timeout arg to shell_read 
git-svn-id: file:///home/svn/framework3/trunk@8797 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 20:07:06 +00:00
HD Moore 7f1e5fd475 Base64 encode the console output as well 
git-svn-id: file:///home/svn/framework3/trunk@8796 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:49:39 +00:00
James Lee dbe4d05875 typo fix. how did this ever work? 
git-svn-id: file:///home/svn/framework3/trunk@8795 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:41:59 +00:00
James Lee a20b74536c add an events accessor 
git-svn-id: file:///home/svn/framework3/trunk@8794 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:38:19 +00:00
James Lee 89e378dd4c break output into 1024-byte chunks so it fits in the database 
git-svn-id: file:///home/svn/framework3/trunk@8793 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:18:39 +00:00
HD Moore aa12dc912f Add a file output type 
git-svn-id: file:///home/svn/framework3/trunk@8792 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 18:58:20 +00:00
HD Moore 5957dd5393 Add tasks 
git-svn-id: file:///home/svn/framework3/trunk@8791 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 18:42:21 +00:00
James Lee 0e537a17bb fix some pastographical errors 
git-svn-id: file:///home/svn/framework3/trunk@8790 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 17:48:59 +00:00
Stephen Fewer edf030df53 ...and finally the bins! 
git-svn-id: file:///home/svn/framework3/trunk@8789 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 17:12:31 +00:00
Stephen Fewer be93341cff Commit the ruby side for the new screenshot/session stuff. 
git-svn-id: file:///home/svn/framework3/trunk@8788 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 17:11:27 +00:00
Stephen Fewer c09ca4eba5 Commit all the code for the new 'screenshot' command in the stdapi extension. Screenshot will now work on NT4 - 7 on both x86 and x64 and on newer versions of Windows we can break out of session isolation (e.g. session 0 isolation for services) to screenshot the active desktop (or logon screen) without the need to migrate meterpreter. The majority of the migration code-injection stuff has been refactored out into base_inject.c so it can be shared with the new ps_inject() functionality to inject dlls. The 'ps' command now reports what session each process belongs to (if this is too verbose we can remove it or add a -v verbose switch to the ps command). The 'execute' command can now take a -s switch in order to create a process in a users session under the users privs (assuming you have the privs to do this). 
git-svn-id: file:///home/svn/framework3/trunk@8787 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 17:09:55 +00:00
Stephen Fewer c55e9af9ae Commit the updated APC injection stubs. fixes a nasty issue in some edge cases whereby when using APC injection for a process in another session then the current host process the injected APC can cause an access violation in kernel32 during a call the kernel32!CreateThread caused by the APC's host thread not having an initialized Activation Context inside its TEB. We now test for this and create a dummy ActivationContext entry to appease the kernel. This will both improve DLL injection reliability as well as meterpreter migration reliability. 
git-svn-id: file:///home/svn/framework3/trunk@8786 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 17:00:19 +00:00