Commit Graph

306 Commits (684c45a5ff5d098e5336ae11fc45c1bcece4b34c)

Author SHA1 Message Date
James Lee 684c45a5ff Merge remote-tracking branch 'upstream/pr/2766' into merge-2766 2014-02-18 17:36:13 -06:00
jvazquez-r7 3d4d5a84b6
Land #2957, @zeroSteiner's exploit for CVE-2013-3881 2014-02-10 13:59:45 -06:00
jvazquez-r7 502dbb1370 Add references 2014-02-10 13:55:02 -06:00
jvazquez-r7 abb03d0bbe Fixing messages 2014-02-10 13:10:42 -06:00
jvazquez-r7 541bb6134e Change exploit filename 2014-02-10 13:06:23 -06:00
jvazquez-r7 2e130ce843 Make it work with Reader Sandbox 2014-02-10 13:04:13 -06:00
Tod Beardsley 7c43565ea8
Include missing require for powershell 2014-02-10 11:02:53 -06:00
Spencer McIntyre 0ac1acda70 Upgrade toolchain to Visual Studio 2013 v120. 2014-02-10 09:35:07 -05:00
Spencer McIntyre f686385349 Remove an unnecessary VS file and modify version check. 2014-02-07 08:45:51 -05:00
Spencer McIntyre cc32c877a9 Add CVE-2013-3881 win32k Null Page exploit 2014-02-06 17:23:38 -05:00
Meatballs 08493f2670
Merge remote-tracking branch 'upstream/master' into upgrade_psh
Conflicts:
	lib/msf/core/post/file.rb
2014-02-03 18:02:09 +00:00
Meatballs 95eb758642
Initial commit 2014-02-02 19:04:38 +00:00
sinn3r cdc425e4eb Update some checks 2014-01-24 12:08:23 -06:00
sinn3r e5dc6a9911 Update exploit checks
Progress group 1: Making sure these checks comply with the new
guidelines. Please read: "How to write a check() method" found in
the wiki.
2014-01-20 14:26:10 -06:00
Meatballs c426946886
Final tidyups 2014-01-03 15:55:03 +00:00
Meatballs 9028060f7d
Refactor service_create 2014-01-03 15:44:59 +00:00
Meatballs 5adc9e93f4
Merge remote-tracking branch 'upstream/master' into extapi_service_post 2014-01-03 14:39:55 +00:00
sinn3r 4bddd077ec
Land #2762 - Use new ntdll railgun functions 2013-12-18 15:18:47 -06:00
Meatballs c3aee714af
shadowcopy should use service_restart 2013-12-18 12:12:34 +00:00
Meatballs 42bc5ab75f
Use Services calls in enable_rdp
Update calls to change_service_config to check success
2013-12-18 11:34:12 +00:00
Meatballs 55a5a7e032
Fix typo 2013-12-18 11:06:03 +00:00
Meatballs bce7fab2cd
Fixup IKEEXT 2013-12-18 00:08:01 +00:00
Meatballs 0bac2415ca
Some post testing fixes
Also deprecate net escalate as it is covered by service_permissions
as a generic exploit
2013-12-18 00:00:14 +00:00
Meatballs 067e6d89bb
Use service_restart in IKEEXT and ServicePermissions
Service_restart is aggressive so should attempt to leave as Auto
2013-12-17 17:21:35 +00:00
jvazquez-r7 52cb43e6a8 Fix typo 2013-12-16 20:28:49 -06:00
Meatballs c2dd174e3c Merge remote-tracking branch 'upstream/master' into extapi_service_post 2013-12-17 01:54:24 +00:00
Meatballs a33721f444
service_change_config keys should match extapi 2013-12-17 01:48:09 +00:00
Meatballs 101e5a8ccf
Tidyup trusted_service_path
Use filedropper, use service exe, dont migrate
2013-12-17 01:46:45 +00:00
Meatballs 560080fa21
Update start_service return value
Add service_restart
2013-12-17 00:43:35 +00:00
Meatballs f39bc0b07a
Update service_stop return 2013-12-17 00:22:37 +00:00
jvazquez-r7 84759a552a Save one variable 2013-12-16 16:49:44 -06:00
jvazquez-r7 042bd4f80b Fix ms_ndproxy to work under a sandboxed Reader 2013-12-16 16:19:17 -06:00
Tod Beardsley 040619c373
Minor description changes
No code changes (one comment made on play_youtube to suggest xdg-open
rather than firefox for linux targets).
2013-12-16 14:57:33 -06:00
Meatballs 5be9622782
Tidy and constants 2013-12-16 18:35:24 +00:00
Meatballs 87fe6ecfaa
Fixup modules 2013-12-15 18:43:55 +00:00
Meatballs f10a35ed08
Use :display correctly 2013-12-15 18:28:29 +00:00
Meatballs cd837ebe16
ikeext_service service_info fixup 2013-12-15 18:28:06 +00:00
Meatballs c89b7cb4ee
nvidia_nvsvc service_info fixup 2013-12-15 18:20:25 +00:00
Meatballs 375103b930
trusted_service_path service_info fixup 2013-12-15 18:15:48 +00:00
Meatballs 7d7495a5dd
Large refactor of service_permissions 2013-12-15 18:00:14 +00:00
Meatballs fe7852b524
Unworking refactor of serv_perm 2013-12-15 04:02:11 +00:00
Meatballs 2a819d4b08
Tidyup trusted_Path
We dont just want to escalate to SYSTEM it would be handy to know
if we can escalate to anything e.g. Domain logins etc.
2013-12-15 04:01:02 +00:00
Meatballs ddf23ae8e8
Refactor service_list to return array of hashes
Update trusted_service_path, service_permissions,
net_runtime_modify and enum_services to handle change.

Refactor enum_services to tidy it up a bit
2013-12-15 03:00:29 +00:00
Meatballs 3dec7f61a5 Check in sysnative if wow64 2013-12-15 01:12:52 +00:00
Meatballs 2dc4faad72 Resplat license 2013-12-15 01:12:51 +00:00
Meatballs 8203274256 Small fixes
Remove " from service command if it is quoted.
Spawn SYSWOW64 notepad.
2013-12-15 01:12:51 +00:00
OJ f2e2147065 Change unless with else to if with else 2013-12-15 01:12:50 +00:00
OJ cff7008500 Fix final issues with merge
Hopefully this will be the last of the changes.
2013-12-15 01:12:50 +00:00
OJ 41c538856a Re-add RDI mixin changes 2013-12-15 01:12:49 +00:00
OJ db29af0f97 First batch of submodule refactorings 2013-12-15 01:12:48 +00:00