Commit Graph

29704 Commits (6613745d566a92525e3e731d052c65998dad1096)

Author SHA1 Message Date
William Vu 6613745d56
Land #4453, OptRegexp default attr fix 2014-12-24 10:50:22 -06:00
Brent Cook 725a17c70b override default attr for OptRegexp
Rather than literally returning the default Regex object, override the accessor
to return the string representation. This allows the RPC backend to properly
serialize the options hash values, since msgpack does not know how to serialize
a Regexp object. Fixes #3798.

To verify the fix, run the steps for issue #3798 and ensure that the module
options are returned instead of a backtrace. Also, ensure that the module
continues to work as expected:

```
$ ./msfconsole -q
msf > use auxiliary/scanner/http/scraper
msf auxiliary(scraper) > info

       Name: HTTP Page Scraper
     Module: auxiliary/scanner/http/scraper
    License: Metasploit Framework License (BSD)
       Rank: Normal

Provided by:
  et <et@metasploit.com>

Basic options:
  Name     Current Setting               Required  Description
  ----     ---------------               --------  -----------
  PATH     /                             yes       The test path to the page to analize
  PATTERN  (?i-mx:<title>(.*)<\/title>)  yes       The regex to use (default regex is a sample to grab page title)
  Proxies                                no        Use a proxy chain
  RHOSTS                                 yes       The target address range or CIDR identifier
  RPORT    80                            yes       The target port
  THREADS  1                             yes       The number of concurrent threads
  VHOST                                  no        HTTP server virtual host

override default attr for OptRegexp
Description:
  Scrap defined data from a specific web page based on a regular
  expresion

msf auxiliary(scraper) > set RHOSTS lwn.net
RHOSTS => lwn.net
msf auxiliary(scraper) > set RHOSTS 72.51.34.34
RHOSTS => 72.51.34.34
msf auxiliary(scraper) > set VHOST lwn.net
VHOST => lwn.net
msf auxiliary(scraper) > run

[*] [72.51.34.34] / [Welcome to LWN.net [LWN.net]]
[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
```
2014-12-24 09:57:14 -06:00
William Vu 76627ec921
Land #4463, smart_hashdump user regex update 2014-12-23 23:37:37 -06:00
Mark Judice 30228bcfe7 Added underscore to user regex in smart_hashdump.rb to support usernames that contain underscores. Issue #4349. 2014-12-23 22:36:11 -06:00
jvazquez-r7 ebb05a64ea
Land #4357, @Meatballs1 Kerberos Support for current_user_psexec 2014-12-23 20:38:31 -06:00
Meatballs c2bcde24ef
Land #4377, Support DYNAMIC_BASE templates - resolves #4366 2014-12-23 11:57:33 +00:00
sinn3r 36404eb67f
Land #4457 - Fix firefox in-memory payload execution
Fix #4374
2014-12-23 01:34:11 -06:00
jvazquez-r7 01cf14d44e Fix banner 2014-12-23 01:02:09 -06:00
jvazquez-r7 4928cd36e4
Land #4187, @BorjaMerino's post module to get output rules 2014-12-23 01:01:03 -06:00
jvazquez-r7 49fef9e514 Do minor module clean up 2014-12-23 01:00:21 -06:00
Joe Vennix e974d272f0
Remove stray line comment that ruined things when minified. 2014-12-23 00:22:50 -06:00
sinn3r 30916e35ad
Land #4454 - Fix duplicate :ua_maxver key in firefox exploit 2014-12-22 23:43:17 -06:00
Joe Vennix 0bf3a9cd55
Fix duplicate :ua_maxver key. 2014-12-22 14:57:44 -06:00
William Vu 58e4d39993
Land #3394, for real 2014-12-22 12:27:50 -06:00
William Vu 6c252e3492
Land #3394, bind_hidden_tcp stager 2014-12-22 11:31:34 -06:00
Borja Merino 1013ca6298 Merge pull request #10 from wvu-r7/pr/3394
Fix invalid URL in splat
2014-12-22 18:27:29 +01:00
William Vu 93be828738
Fix invalid URL in splat 2014-12-22 11:26:20 -06:00
Borja Merino 2035f606c1 Merge pull request #9 from wvu-r7/pr/3394
Align shellcode in bind_hidden_tcp
2014-12-22 18:18:56 +01:00
William Vu f1b9862665
Align shellcode in bind_hidden_tcp 2014-12-22 11:17:14 -06:00
Borja Merino 7efa85ea3f Merge pull request #8 from wvu-r7/pr/3394
Readd block_hidden_bind_tcp.asm
2014-12-22 18:15:18 +01:00
William Vu e34c37042a
Readd block_hidden_bind_tcp.asm
Because stager_hidden_bind_tcp.asm includes it.
2014-12-22 11:13:07 -06:00
Borja Merino 25fabfcab1 Merge pull request #7 from wvu-r7/pr/3394
Add bind_hidden_tcp to payload spec
2014-12-22 17:45:03 +01:00
William Vu e4191866d9
Add bind_hidden_tcp to payload spec 2014-12-22 10:37:46 -06:00
root 9a7e431a4a New block_api applied 2014-12-22 17:21:13 +01:00
Peregrino Gris 42636fb3c0 Handler and block_hidden_bind_tcp deleted 2014-12-22 17:21:13 +01:00
root fa8e944e34 AHOST OptAddress moved to the payload 2014-12-22 17:21:11 +01:00
Peregrino Gris c0fa8c0e3f Add stager for hidden bind shell payload 2014-12-22 17:21:11 +01:00
William Vu 416483415a
Land #4450, MSB reference fix 2014-12-22 05:28:48 -06:00
Jon Cave 44084b4ef6 Correct Microsoft security bulletin for ppr_flatten_rec 2014-12-22 10:40:23 +00:00
Christian Mehlmauer 2e4ac41548
Land #4437, msfvenoms new output switch 2014-12-21 20:48:33 +01:00
William Vu ded1765d73
Land #4439, rm Redmine references in code 2014-12-20 17:19:55 -06:00
Tod Beardsley 80d3c5b757
Normalize links to metakitty, unleashed, and wiki 2014-12-20 12:53:34 -06:00
Samuel Huckins 067bda43e7
Updating lockfile post MDM version bump 2014-12-19 20:58:09 -06:00
Samuel Huckins c8d80d5de5
Lands #4436, latest version of MDM
Fixes an issue with protocol inclusion when adding an NX console
2014-12-19 20:56:02 -06:00
Tod Beardsley 1213aa1875
Missed one in CONTRIBUTING.md 2014-12-19 17:32:28 -06:00
Tod Beardsley d3050de862
Remove references to Redmine in code
See #4400. This should be all of them, except for, of course, the module
that targets Redmine itself.

Note that this also updates the README.md with more current information
as well.
2014-12-19 17:27:08 -06:00
sinn3r fb35a4574f Well, should be -1 2014-12-19 16:36:05 -06:00
sinn3r cd444ed2db No point to save if there's no payload 2014-12-19 16:35:17 -06:00
sinn3r 3c03f3697a
Land #4433 - Update mailmap 2014-12-19 16:29:14 -06:00
sinn3r c2bc182db5 Fix #4430 - Add support for -o to save the payload to disk
Fix #4430
2014-12-19 16:14:43 -06:00
Fernando Arias 337b2d784f
Land #4416, define rails version dep in one place
* Bump rails to 3.2.21
2014-12-19 15:17:54 -06:00
David Maloney 82e7cd99b5
pull latest mdm 2014-12-19 14:58:01 -06:00
HD Moore fffa8cfdd1
Lands #4426 by cleaning up the module description 2014-12-19 14:54:17 -06:00
HD Moore 9ede2c2ca5
Lands #4429 by fixing windows/messagebox with EXITFUNC=none 2014-12-19 14:51:57 -06:00
Brent Cook 85ec71bd1e
Land #4434, fix for metasm invalid opcode 2014-12-19 14:43:55 -06:00
David Maloney 24527d7a55
Land #4427, Misfortune Cookie Scanner
lands Jhart's scanner module for the RomPager
Misofrtune Cookie vuln.
2014-12-19 14:03:00 -06:00
Matt Buck db0aeb2a05
Make the version constraint a range 2014-12-19 13:54:13 -06:00
Tod Beardsley 38a4776b39
Add and sort other contributors in mailmap 2014-12-19 13:41:06 -06:00
Tod Beardsley df4f86047d
Add new/updated r7 employees to mailmap 2014-12-19 13:39:42 -06:00
sinn3r 650a68c994 Fix jcxz to jecxz for x86_64 in metasm
This fixes "invalid opcode near 'jecxz'" for x64 metasm encoding.
2014-12-19 13:34:56 -06:00