7f8a5d3834
improved credential reporting
2017-12-20 15:09:11 -06:00
b4262662dc
Add missing mqtt login helper
2017-12-20 12:33:49 -08:00
66b1a555a1
Bump version of framework to 4.16.25
2017-12-18 16:33:25 -08:00
be2a3ca270
edited sid comment
2017-12-18 08:18:02 -05:00
f447fa1a12
Added DirectAdmin Login Utillity
2017-12-17 22:43:37 -05:00
b99f044de5
Implement VNC security type 30 (Apple Remote Desktop) authentication
2017-12-14 13:57:38 -06:00
be4f9236f2
Bump version of framework to 4.16.24
2017-12-14 10:08:05 -08:00
973f3bacd8
Remove require statements for remote_service_endpoint
2017-12-13 11:31:29 -06:00
74c00cf8ba
WIP: Enable HTTPS client.
...
Removed RemoteServiceEndpoint and using URI instead.
2017-12-12 16:42:20 -06:00
c7e7b5861d
Fix error in exception message
2017-12-11 17:52:24 -05:00
348cbe54b6
Bump version of framework to 4.16.23
2017-12-08 10:01:55 -08:00
8835dae6f0
Switch to net/http header handling
2017-12-05 15:06:15 -06:00
35b217b748
Merge branch 'goliath' into http_client_change
2017-12-05 11:13:53 -06:00
fd1681edd9
Bump version of framework to 4.16.22
2017-12-01 10:04:07 -08:00
174d0d46de
Bump version of framework to 4.16.21
2017-11-29 10:45:55 -08:00
c9da8f7a18
Bump version of framework to 4.16.20
2017-11-24 10:01:50 -08:00
770f092e5d
Use more accurate variable name
2017-11-22 12:34:24 -06:00
e0837fb01d
Create local copies of loot
2017-11-21 16:28:19 -06:00
82a30ed618
Fix bug in db_nmap with RDS
...
The cmd_db_nmap method was cleaning up the nmap XML file
before it could be read. Making the call synchronous will prevent
it from hitting the ensure block before the processing is done
when running msfdb locally.
2017-11-20 15:40:27 -06:00
602406a423
Bump version of framework to 4.16.19
2017-11-17 10:02:22 -08:00
5cdd364590
Bump version of framework to 4.16.18
2017-11-15 19:46:12 -08:00
fe1af35107
First pass at changes needed for module metadata caching
2017-11-15 16:38:01 -06:00
9647f8d951
DRY up HTTP request code.
2017-11-14 15:31:31 -06:00
4f660d7dd7
Bump version of framework to 4.16.17
2017-11-10 10:05:05 -08:00
029d3b718d
Connect and get working with net/http.
...
POST looks to be working too.
2017-11-09 17:10:26 -06:00
fbbc8da8fb
Fix raise(s) in MSSQL client aborting mssql_login
2017-11-07 14:30:47 -06:00
deb5a7b015
Bump version of framework to 4.16.16
2017-11-03 10:03:38 -07:00
a14102083c
Bump version of framework to 4.16.15
2017-11-02 10:01:12 -07:00
04f5f41265
Merge branch 'port_dbnmap' into loot_and_creds
2017-10-31 17:03:40 -05:00
cfdda37f62
Send nmap file across the wire.
2017-10-31 10:12:45 -05:00
f42b980cf0
fix misspelled RuntimeError
2017-10-30 15:42:11 -05:00
140955f220
Bump version of framework to 4.16.14
2017-10-27 10:03:00 -07:00
9d00093d81
Initial commit for nmap proxying
2017-10-25 16:04:31 -05:00
a4914074fb
Merge branch 'goliath' into loot_and_creds
2017-10-24 12:01:32 -05:00
d63b087610
Fix bug with creating session_events
2017-10-24 11:51:27 -05:00
ffcec527a7
Successfully storing creds remotely
2017-10-23 11:30:50 -05:00
884b68fa60
Bump version of framework to 4.16.13
2017-10-20 10:02:23 -07:00
2c8f27cd98
More general cleanup including is_local db check
2017-10-16 17:07:26 -05:00
5232e9926e
creds command converted
2017-10-16 15:27:53 -05:00
88585a5cfd
Bump version of framework to 4.16.12
2017-10-13 10:03:48 -07:00
4c164fafb0
WIP: proxy credentials
2017-10-10 13:52:30 -05:00
4acef04e0d
Bump version of framework to 4.16.11
2017-10-06 10:01:51 -07:00
0dbfc9d447
WIP: Drop session objects before JSON conversion
...
The session object is not intended to be store in the DB.
There are a ton of subobjects and unneeded data that causes the JSON conversion
to hang or fail with 'stack level too deep' errors.
2017-10-06 11:43:01 -05:00
08b62db061
Pass loot contents over the API and write file
2017-10-03 12:31:57 -05:00
49f5256f88
Make session_events retrievable from the API
2017-09-29 16:04:17 -05:00
eb927663ff
use a better method for storing session_events
2017-09-29 14:59:08 -05:00
32104eb90e
Bump version of framework to 4.16.10
2017-09-29 10:04:04 -07:00
293d1edeb1
Merge master: 8853193542
2017-09-29 11:06:16 -05:00
ed74c3726f
Proxy session events.
...
This enables modules to use report_loot with a remote data service
2017-09-28 17:03:09 -05:00
0b29408aa2
Allow filtering of loot
2017-09-26 13:48:01 -05:00
ee3e354f4f
Get posting working with loot -a
2017-09-22 16:13:58 -05:00
40abbccb03
Merge remote-tracking branch 'rapid7/master' into proxy_loot
2017-09-22 14:10:02 -05:00
68fa3d45f3
Bump version of framework to 4.16.9
2017-09-22 10:05:19 -07:00
812ad9f9cb
loot printing (maybe) working
2017-09-21 15:20:49 -05:00
9f95f88035
Fix a couple of bugs.
2017-09-19 16:35:18 -05:00
765ea01e9f
loot posting working
2017-09-18 15:58:40 -05:00
b2f5bd16e6
Bump version of framework to 4.16.8
2017-09-15 10:02:38 -07:00
2cd9649139
Added msf red connection mechanism
2017-09-14 12:57:03 -05:00
faa84faf25
Bump version of framework to 4.16.7
2017-09-08 15:38:22 -07:00
f5a73f3efe
Bump version of framework to 4.16.6
2017-09-08 10:03:41 -07:00
000f561d6f
Added session data export
2017-09-08 11:09:15 -05:00
92f5290a50
Bump version of framework to 4.16.5
2017-09-01 10:08:40 -07:00
a0131f450e
Bump version of framework to 4.16.4
2017-08-28 14:34:39 -07:00
779b25bdf6
Bump version of framework to 4.16.3
2017-08-25 10:02:45 -07:00
2f72404b26
Bump version of framework to 4.16.2
2017-08-23 19:11:11 -07:00
7c2fa20191
Bump version of framework to 4.16.1
2017-08-23 10:36:19 -07:00
c09796ea7e
Merge master
2017-08-23 11:37:04 -05:00
ca7d481658
Bump version of framework to 4.16.0
2017-08-20 16:57:48 -07:00
95824ce132
Bump version of framework to 4.15.8
2017-08-18 10:03:23 -07:00
be926e1d75
Bump version of framework to 4.15.7
2017-08-11 10:12:37 -07:00
83cd0bc977
Bump version of framework to 4.15.6
2017-08-04 10:07:09 -07:00
70f659370f
Bump version of framework to 4.15.5
2017-07-28 10:21:44 -07:00
50474a1ea7
Bump version of framework to 4.15.4
2017-07-21 10:03:44 -07:00
39b2e824ec
Bump version of framework to 4.15.3
2017-07-17 15:43:31 -07:00
f80c053114
Bump version of framework to 4.15.2
2017-07-17 12:01:22 -07:00
d6ee0ca94d
Merge branch 'master' into kill-cucumber
2017-07-14 10:23:38 -05:00
03691cc35f
Bump version of framework to 4.15.1
2017-07-12 20:08:07 -07:00
dbef4ee816
kill cucumber in framework
2017-07-12 08:00:29 -05:00
b81e9a4d2a
Pass 1: externalize database
2017-07-07 13:33:42 -05:00
fad696ed58
Bump version of framework to 4.15.0
2017-06-22 18:02:38 -07:00
c0efb7bc76
Land #8573 , Adapted the authentitcity_token scheme
2017-06-19 15:45:20 -05:00
9ce0bb9345
Bump version of framework to 4.14.28
2017-06-16 10:02:07 -07:00
ef7434b59b
added new authentitcity_token scheme
2017-06-16 16:54:38 +02:00
0515980138
Bump version of framework to 4.14.27
2017-06-12 07:39:14 -07:00
77b1125e77
Bump version of framework to 4.14.26
2017-06-09 10:03:35 -07:00
42aa2e5acf
add some attempts at debugging to ntds
...
add some logging and more status outputs to the
NTDS domain hasdump. Also force the encoding on
strings to UTF8
2017-06-05 15:21:50 -05:00
92a65f5c63
Bump version of framework to 4.14.25
2017-06-02 10:03:44 -07:00
0c792798a7
Bump version of framework to 4.14.24
2017-05-30 07:26:35 -07:00
15b3b7de41
Bump version of framework to 4.14.23
2017-05-26 10:02:14 -07:00
18f520382b
Bump version of framework to 4.14.22
2017-05-19 12:12:27 -07:00
c54c999efc
Bump version of framework to 4.14.21
2017-05-19 10:02:32 -07:00
126c078ced
Bump version of framework to 4.14.20
2017-05-18 11:53:33 -07:00
94e4dc2938
fix for smb_login errors
...
do not try the TreeConnect if the SESSION_SETUP
has already failed.
2017-05-18 11:26:03 -05:00
729f2a9ab8
Bump version of framework to 4.14.19
2017-05-16 14:09:45 -07:00
405f2c6ca1
Bump version of framework to 4.14.18
2017-05-12 10:10:30 -07:00
a0b50390c5
Bump version of framework to 4.14.17
2017-05-05 10:02:17 -07:00
2f1df4d4c2
Bump version of framework to 4.14.16
2017-05-02 11:11:20 -07:00
89e81253ed
Bump version of framework to 4.14.15
2017-04-21 10:02:32 -07:00
6b37e1ecfc
Land #8268 , Improve metasploit-aggregator UX
2017-04-21 11:21:49 -05:00
32da0ed3d7
fix some comment typos
2017-04-19 14:14:26 -05:00
f90911e09e
Bump version of framework to 4.14.14
2017-04-19 09:35:29 -07:00
8d4ccb5d51
SMB over NtBIOS no longer works
...
don't try to run the smb loginscanner
against port 139
2017-04-18 13:34:00 -05:00
05e15cee18
Bump version of framework to 4.14.13
2017-04-18 08:17:22 -07:00
9634248211
treat socket reads as a connection error
...
treat failures to read from the socket
as a connection error
2017-04-17 21:58:22 -05:00
a597de516d
actually use the coerced values
2017-04-17 11:24:57 -05:00
bbdf06af5d
coerece nil credentials to empty strings
...
rubySMB doesn't take nils for credential data, so coerce any nils into
empty strings bfore sending it on
2017-04-17 11:17:09 -05:00
42122d2835
Land #8238 , move SMB2 support back into smb_login, add simpler permissions checks
2017-04-14 14:06:46 -05:00
036d579228
Bump version of framework to 4.14.12
2017-04-14 10:04:35 -07:00
91fb3ce6b8
collapse SMB2 support into smb_login
...
converge the SMB and SMB loginscanners so that
there is only one SMB loginscanner that supports both
MS-2636
2017-04-13 15:22:03 -05:00
89bd110422
reinsert guest checks and uniq fallback
...
add checks back from original loginscanner
MS-2636
2017-04-13 14:55:37 -05:00
adeb4d10d7
smb2 login scanner admin check now working
...
we can now check for admin privs in the smb2
login scanner
MS-2636
2017-04-13 14:40:32 -05:00
ced1412ee0
Bump version of framework to 4.14.11
2017-04-12 14:39:40 -07:00
7fc05bcb25
Bump version of framework to 4.14.10
2017-04-07 10:07:31 -07:00
3103decc98
Add -H/--history-file to msfconsole
...
Save command history to an alternative file instead of ~/.msf4/history.
2017-04-07 03:00:37 -05:00
4e79aaccb7
Bump version of framework to 4.14.9
2017-04-04 16:14:28 -07:00
98ffa4d380
Land #7652 , add varnish cache CLI authentication scanner module
2017-04-02 21:52:45 -05:00
4c0539d129
Land #8178 , Add support for non-Ruby modules
2017-04-02 21:02:37 -05:00
2de8f1b97d
Fixups for specs
2017-03-31 22:19:53 -05:00
9edc08cd36
Bump version of framework to 4.14.8
2017-03-31 14:38:29 -07:00
7b9772376a
deregeister smb2_login from pro bruteforce
...
this loginscanner is temporary while we continue
to add the smb2 support and so we don't want the
Metasploit Pro bruteforcer picking it up
MS-2609
2017-03-31 13:34:10 -05:00
b6085e188d
Bump version of framework to 4.14.7
2017-03-31 10:02:19 -07:00
418e371e35
add SMB2 login scanner and module
...
add smb2_login module backed by an smb2
LoginScanner class. This is a temporary alternative
to smb_login until ruby_smb catches up more on feature parity
MS-2557
2017-03-29 11:36:33 -05:00
51646e44a1
Bump version of framework to 4.14.6
2017-03-24 10:02:24 -07:00
8976faa3d1
Bump version of framework to 4.14.5
2017-03-23 08:41:49 -07:00
df181c1792
Bump version of framework to 4.14.4
2017-03-21 14:58:37 -07:00
6200a3abb8
Bump version of framework to 4.14.3
2017-03-17 10:02:41 -07:00
db581a040a
Bump version of framework to 4.14.2
2017-03-07 07:01:57 -08:00
f9e4fd54fe
Bump version of framework to 4.14.1
2017-02-24 13:31:17 -08:00
a954521d75
bump minor version
2017-02-24 15:07:07 -06:00
0f4e03be7b
Bump version of framework to 4.13.27
2017-02-24 10:03:33 -08:00
01558d3d51
Bump version of framework to 4.13.26
2017-02-21 14:01:15 -08:00
93f75746c4
Fix logic error in #7985
...
The check_setup method expects an error message if the
web server is not compatible with the module, and false otherwise.
We were previously returning the opposite of the expected behavior.
2017-02-21 13:49:59 -06:00
adf1385427
Fix #7984 , Fix NoMethodError `match' for bavision_cameras.rb
...
Fix #7984
2017-02-21 12:00:01 -06:00
647020289f
Bump version of framework to 4.13.25
2017-02-17 17:03:42 -08:00
17b88da080
Land #7964 , fix running a scanner with USER_AS_PASS and USER_FILE
2017-02-17 17:16:49 -06:00
6e62899e1c
Bump version of framework to 4.13.24
2017-02-17 10:02:51 -08:00
4e5dabf35f
fix cred_scanner's has_privates? method
2017-02-15 16:05:49 -05:00
184707c6fc
Bump version of framework to 4.13.23
2017-02-13 16:04:35 -08:00
44d229ad49
Bump version of framework to 4.13.22
2017-02-10 10:02:43 -08:00
4f13bde471
Override `empty?` for the weird ones
...
Fixes #7899
2017-02-09 14:57:20 -06:00
d81bdc1c02
Bump version of framework to 4.13.21
2017-02-07 17:27:47 -08:00
9a5d5eec2e
Bump version of framework to 4.13.20
2017-02-03 10:04:05 -08:00
1bb8c9bd93
missed userpass_file on CredentialCollection.empty?
2017-02-01 15:42:21 -06:00
321fa91c75
Bump version of framework to 4.13.19
2017-02-01 11:28:53 -08:00
f925793d70
Land #7894 , refactor empty test on CredentialCollection
2017-02-01 11:57:31 -06:00
be170ab8b2
Bump version of framework to 4.13.18
2017-01-31 14:20:40 -08:00
0dcf0002ae
refactor empty test on CredentialCollection
2017-01-31 15:16:26 -06:00
4480ea7877
Land #7827 , Cisco Firepower Management Console LoginScanner
2017-01-27 16:26:40 -06:00
95449a846b
Bump version of framework to 4.13.17
2017-01-27 10:02:17 -08:00
781bc8420a
Add Advantech WebAccess LoginScanner module
2017-01-26 13:54:50 -06:00
253e39e18c
Land #7680 , Fix #7679 , LoginScanner should abort if there is no creds to try
2017-01-23 14:08:32 -06:00
5de09d3455
Check username & password options
2017-01-23 11:42:04 -06:00
9581f18392
handle nil pathname
2017-01-22 10:20:04 -06:00
dc506c1dd6
present? is not a method of Pathname
2017-01-22 10:20:04 -06:00
f69b4a330e
handle Ruby 2.4 Fixnum/Bignum -> Integer deprecations
2017-01-22 10:20:03 -06:00
c2e4a50924
Bump version of framework to 4.13.16
2017-01-20 10:02:29 -08:00
a687073416
Add Cisco Firepower Management Console LoginScanner
2017-01-13 16:59:20 -06:00
56ed8bc021
Bump version of framework to 4.13.15
2017-01-13 10:05:02 -08:00
f311511e6d
Bump version of framework to 4.13.14
2017-01-10 14:03:16 -08:00
99f47158b3
Update base.rb for checking empty creds
2017-01-09 17:23:11 -06:00
bdb99bbcf2
Check cred_details for empty creds
2017-01-09 17:16:09 -06:00
5cba9b0034
Land #7747 , Add LoginScanner module for BAVision IP cameras
2017-01-06 16:25:44 -06:00
b074042b99
Bump version of framework to 4.13.13
2017-01-06 12:00:26 -08:00
1ef2e54539
Bump version of framework to 4.13.12
2017-01-06 10:03:13 -08:00
7ef4db1465
Bump version of framework to 4.13.11
2017-01-04 14:53:33 -08:00
81b310f928
Up to date
2016-12-23 17:24:01 -06:00
5e5aa8cd03
Fix a typo
2016-12-23 16:23:24 -06:00
144f886e8b
Add LoginScanner module for BAVision IP cameras
2016-12-23 16:22:17 -06:00
f50fa516f4
Bump version of framework to 4.13.10
2016-12-23 10:01:58 -08:00
3a998fada2
Bump version of framework to 4.13.9
2016-12-18 13:22:52 -08:00
f74fd9e5dd
Land #7672 , support LOCKED_OUT and DISABLED login status
2016-12-16 15:11:05 -06:00
c5c710f837
Bump version of framework to 4.13.8
2016-12-16 10:02:02 -08:00
12af07d8cb
Bump version of framework to 4.13.7
2016-12-09 10:03:22 -08:00
4614b7023d
Land #7604 , @godinezj's post module for creating AWS IAM accounts
2016-12-08 14:26:22 -08:00
ce5c1f07c3
Fix rspecs
2016-12-08 16:11:06 -06:00
b537146393
Fix #7679 , LoginScanner should abort if there is no creds to try
...
Fix #7679
2016-12-08 15:01:30 -06:00
aaa49550a7
Move call_api printing to verbose
2016-12-08 11:20:53 -08:00
0110b97fa2
Fix #7671 , support LOCKED_OUT and DISABLED login status
...
This allows login scanner modules to skip a user if it is
locked out, or disabled.
Fix #7671
2016-12-07 16:49:16 -06:00
ba9ce3fcfb
Land #7665 , Add ABORT_ON_LOCKOUT option for smb_login
2016-12-07 15:52:50 -06:00
99ba1e45ff
Removed unused params
2016-12-07 10:10:09 -08:00
a54c0c4e1f
Bump version of framework to 4.13.6
2016-12-07 09:00:16 -08:00
d3a8409a49
prevent further lockouts in smb_login
2016-12-06 21:53:08 -05:00
0b46e90bbb
Only print out AWS API responses when in verbose mode
2016-12-06 17:32:48 -08:00
a13382c80b
Address most of rubocop's nits
2016-12-06 17:10:34 -08:00
7edb5e19e2
Bump version of framework to 4.13.5
2016-12-05 15:09:06 -08:00
3d09e283cf
module ready
2016-12-02 22:03:23 -05:00
76db530a86
Bump version of framework to 4.13.4
2016-12-02 10:02:53 -08:00
260f793f2c
y no update challenge
2016-11-30 22:57:12 -05:00
8369855e4f
pushing for help
2016-11-30 20:47:47 -05:00
c190cc775e
pushing for help
2016-11-30 19:45:24 -05:00
f46ca66858
Bump version of framework to 4.13.3
2016-11-28 06:35:44 -08:00
79e8ffd983
Bump version of framework to 4.13.2
2016-11-25 10:03:24 -08:00
0700b17f7e
Added sanity checks
2016-11-24 21:04:10 -08:00
b4add59a3d
Moved metadata_creds() so Client can be included in Aux/Post modules
2016-11-24 21:03:38 -08:00
0eaeeb4aa7
Adds a generic AWS client module
2016-11-22 14:54:18 -08:00
372cf740da
saving before changing branches
2016-11-21 22:06:20 -05:00
05e59bbe19
non-working copy of varnish
2016-11-19 22:09:19 -05:00
643a5511cf
Bump version of framework to 4.13.1
2016-11-18 10:01:48 -08:00
cd01b07682
Land #7565
...
Lands print_bad and vprint_bad from todb-r7
2016-11-18 13:29:39 -05:00
383314530a
Bump version of framework to 4.13.0
2016-11-16 07:48:26 -08:00
1deacad2be
Add a print_bad alias for print_error
...
Came up on Twitter, where Justin may have been trolling a little:
https://twitter.com/jstnkndy/status/798671298302017536
We have a `print_good` method, but not a `print_bad`, which seems a
little weird for Ruby -- opposite methods should be intuitive as Justin
is implying.
Anyway, I went with alias_method, thanks to the compelling argument at
https://github.com/bbatsov/ruby-style-guide#alias-method
...since Metasploit is all about the singleton, and didn't want to risk
some unexpected scoping thing.
Also dang, we define the `print_` methods like fifty billion times!
Really should fix that some day.
2016-11-15 19:20:42 -06:00
f116ad2c59
Bump version of framework to 4.12.42
2016-11-11 10:02:14 -08:00
2c39a14ada
Bump version of framework to 4.12.41
2016-11-04 10:02:13 -07:00
6577728fa9
enable auto-negotiation for TLS version with SQL Server
2016-11-01 05:45:27 -05:00
ffc62964d6
Bump version of framework to 4.12.40
2016-10-28 10:02:36 -07:00
6a23168800
Bump version of framework to 4.12.39
2016-10-25 12:22:52 -07:00
e29567f390
Bump version of framework to 4.12.38
2016-10-24 14:25:47 -07:00
bf59ba526a
Bump version of framework to 4.12.37
2016-10-24 07:35:41 -07:00
8e0d866976
Bump version of framework to 4.12.36
2016-10-21 10:02:09 -07:00
74340e9eb7
Bump version of framework to 4.12.35
2016-10-14 15:13:45 -07:00
b3666ff7ab
Bump version of framework to 4.12.34
2016-10-14 10:04:05 -07:00
adb6f31e36
Bump version of framework to 4.12.33
2016-10-08 20:57:08 -07:00
8a6426df48
Bump version of framework to 4.12.32
2016-10-07 10:04:32 -07:00
a0ebf5ea2d
Bump version of framework to 4.12.31
2016-10-06 11:23:08 -07:00
73c11a63b4
Bump version of framework to 4.12.30
2016-09-30 10:03:42 -07:00
5ea1e7b379
Bump version of framework to 4.12.29
2016-09-26 12:06:21 -07:00
3ddf80dd7a
Bump version of framework to 4.12.28
2016-09-23 10:02:37 -07:00
5acc17a800
Bump version of framework to 4.12.27
2016-09-16 10:02:52 -07:00
32998d938f
Bump version of framework to 4.12.26
2016-09-13 16:59:37 -07:00
245237d650
Land #7288 , Add LoginScannerfor Octopus Deploy server
2016-09-13 17:26:56 -05:00
8eb2c926f3
Bump version of framework to 4.12.25
2016-09-13 13:37:08 -07:00
aa193bf372
Set defaults in WordpressMulticall login scanner
...
This login scanner would crash it was used like a normal login scanner.
MS-2007
2016-09-12 11:22:15 -05:00
a30711ddcd
Land #7279 , Use the rubyntlm gem (again)
2016-09-07 16:33:35 -05:00
dcf0d74428
Adding module to scan for Octopus Deploy server
...
This module tries to log into one or more Octopus Deploy servers.
More information about Octopus Deploy:
https://octopus.com
2016-09-06 20:52:49 -05:00
58112d7b4d
Bump version of framework to 4.12.24
2016-09-02 10:02:44 -07:00
ea32c313d3
Bump version of framework to 4.12.23
2016-08-26 10:06:44 -07:00
226ded8d7e
Land #6921 , Support basic and form auth at the same time
2016-08-25 16:31:26 -05:00
87d34cfbba
Bump version of framework to 4.12.22
2016-08-19 10:02:28 -07:00
a6ba386728
Bump version of framework to 4.12.21
2016-08-12 10:02:36 -07:00
d57e4d6349
Bump version of framework to 4.12.20
2016-08-10 15:30:37 -07:00
280216d74d
Bump version of framework to 4.12.19
2016-08-09 14:49:58 -07:00
e7aa658893
Bump version of framework to 4.12.18
2016-08-05 10:05:03 -07:00
190bac6e0a
Bump version of framework to 4.12.17
2016-07-29 10:02:06 -07:00
4cbb3bb9b6
Bump version of framework to 4.12.16
2016-07-22 10:02:00 -07:00
ff63e6e05a
Land #7018 , unvendor net-ssh
2016-07-19 17:06:35 -05:00
b954b6d5c1
Bump version of framework to 4.12.15
2016-07-18 08:42:20 -07:00
b13d0f879a
Bump version of framework to 4.12.14
2016-07-15 10:03:28 -07:00
b6b52952f4
set ssh to non-interactive
...
have to set the non-interactive flag so that it does not
prompt the user on an incorrect password
MS-1688
2016-07-14 11:12:03 -05:00
01d0d1702b
Merge branch 'master' into feature/MS-1688/net-ssh-cleanup
2016-07-14 09:48:28 -05:00
48410f3ab2
Bump version of framework to 4.12.13
2016-07-08 10:01:58 -07:00
cfb56211e7
Revert "Revert "Land #7009 , egypt's rubyntlm cleanup""
...
This reverts commit 1164c025a2
2016-07-07 15:00:41 -05:00
82e092c2df
Bump version of framework to 4.12.12
2016-07-05 14:57:43 -07:00
1164c025a2
Revert "Land #7009 , egypt's rubyntlm cleanup"
...
This reverts commit d90f0779f8e3e360cc83
2016-07-05 15:22:44 -05:00
5f9f3259f8
Merge branch 'master' into feature/MS-1688/net-ssh-cleanup
2016-07-05 10:48:38 -05:00
054ac5ac19
Bump version of framework to 4.12.11
2016-07-05 07:49:37 -07:00
ee2d1d4fdc
Merge branch 'master' into feature/MS-1688/net-ssh-cleanup
2016-06-28 15:00:35 -05:00
d90f0779f8
Land #7009 , egypt's rubyntlm cleanup
...
Land egypt's PR to replace all of our NTLM code with
the rubyntlm gem
2016-06-28 14:15:34 -05:00
97f9ca4028
Merge branch 'master' into egypt/ruby-ntlm
2016-06-28 14:14:56 -05:00
e3e360cc83
Bump version of framework to 4.12.10
2016-06-28 12:13:26 -07:00
fd07da3519
Bump version of framework to 4.12.9
2016-06-27 11:54:04 -07:00
6072697126
continued
2016-06-22 14:54:00 -05:00
0126ec61d8
Style
2016-06-22 10:15:23 -05:00
b3f59ebd19
Whitespace
2016-06-22 10:15:23 -05:00
07f7e5e148
Convert non-loginscanner MSSQL to rubyntlm
2016-06-22 10:15:22 -05:00
4b3f6c5d29
Use rubyntlm for mssql login scanner
2016-06-22 10:15:22 -05:00
fd4a51cadb
Bump version of framework to 4.12.8
2016-06-10 10:01:27 -07:00
815685992a
Bump version of framework to 4.12.7
2016-06-07 13:14:34 -07:00
c35322ec3f
Bump version of framework to 4.12.6
2016-05-30 22:34:13 -07:00
4dcddb2399
Fix #4885 , Support basic and form auth at the same time
...
When a module uses the HttpClient mixin but registers the USERNAME
and PASSWORD datastore options in order to perform a form auth,
it ruins the ability to also perform a basic auth (sometimes it's
possible to see both). To avoid option naming conflicts, basic auth
options are now HTTPUSERNAME and HTTPPASSWORD.
Fix #4885
2016-05-27 16:25:42 -05:00
54f4389d31
Bump version of framework to 4.12.5
2016-05-24 08:54:14 -07:00
100300c819
Bump version of framework to 4.12.4
2016-05-18 07:04:09 -07:00
c9dd863085
Bump version of framework to 4.12.3
2016-05-17 10:18:08 -07:00
621a908b2d
Bump version of framework to 4.12.2
2016-05-13 12:51:58 -07:00
ba4bfca806
Revert "arg bad build, resetting version back one"
...
This reverts commit d86392e96b
2016-05-13 14:48:35 -05:00
d86392e96b
arg bad build, resetting version back one
2016-05-13 14:44:02 -05:00
b6a83f734d
Bump version of framework to 4.12.1
2016-05-13 12:39:43 -07:00
31050a8da7
Rails upgrade to 4.2.6
...
lands all of the rails 4.2 upgrade work
Merge branch 'staging/rails-upgrade'
2016-05-13 14:34:50 -05:00
6c11054d5a
Bump version of framework to 4.12.0
2016-05-13 11:46:03 -07:00
6142d2cef1
Merge branch 'master' into staging/rails-upgrade
2016-05-09 09:27:17 -05:00
805f98f599
Bump version of framework to 4.11.27
2016-05-06 11:32:46 -07:00
19af279ce9
Merge branch 'master' into staging/rails-upgrade
2016-05-05 10:46:12 -05:00
e7ff4665e1
Bump version of framework to 4.11.26
2016-05-04 09:44:18 -07:00
7490ab1c78
Bump version of framework to 4.11.25
2016-05-03 17:09:07 -07:00
fb5b228984
Merge branch 'master' into staging/rails-upgrade
2016-05-02 11:33:35 -05:00
d4f1c78c5c
Bump version of framework to 4.11.24
2016-04-29 13:38:06 -07:00
d70dcbf4a4
Bump version of framework to 4.11.23
2016-04-22 09:34:10 -07:00
5e36a3128c
Fix #5197 , Fixed yard doc errors
...
Fix #5197 Fixed issues that caused errors during yard doc generation
2016-04-21 13:06:00 -05:00
d5085f6f0d
Bump version of framework to 4.11.22
2016-04-16 09:09:23 -07:00
c52f3dcb0e
update to rails 4.2.6
...
fix lost dep unlocks and upgrade rails to 4.2.6
MS-1400
2016-04-15 11:45:43 -05:00
16c599866c
Bump version of framework to 4.11.21
2016-04-08 16:23:33 -07:00
22d08fdf39
Revert #6748 , premature Gemfile* changes
2016-04-06 14:52:22 -05:00
8de58e4b80
Merge branch 'master' into staging/rails-upgrade
2016-04-04 09:30:01 -05:00
545cb11736
Bring #6409 up to date with upstream-master
2016-03-31 17:00:56 -05:00
5fdea91e93
Change naming
2016-03-31 17:00:29 -05:00
797acd625d
Land #6714 , Kill defanged mode
2016-03-30 10:54:56 -05:00
b8d53dde4a
Merge branch 'upstream-master' into staging/rails-upgrade
2016-03-29 15:56:50 -05:00
b41ac10fe8
Bump version of framework to 4.11.20
2016-03-29 12:43:20 -07:00
faaaf6b765
MS10-58 Call super in #set_sane_defaults for caidao login scanner
...
MS10-58
2016-03-29 13:40:51 -05:00
f1857d6350
Kill defanged mode
2016-03-28 09:02:07 -05:00
72bde63397
Bump version of framework to 4.11.19
2016-03-25 13:03:35 -07:00
7bd6d0c696
Merge branch 'master' into staging/rails-upgrade
2016-03-24 12:55:05 -05:00
e7b0c60e5c
Bump version of framework to 4.11.18
2016-03-23 07:55:29 -07:00
6e12e74e02
Bump version of framework to 4.11.17
2016-03-18 14:12:18 -07:00
e059f42094
Bump version of framework to 4.11.16
2016-03-11 14:17:28 -08:00
ca18996272
setup rails staging branch
...
rails 4.1 baby!
2016-03-09 15:35:00 -06:00
88697a5d3f
Merge branch 'master' into staging/rails-upgrade
2016-03-08 15:22:04 -06:00
a5cdd7e17f
Bump version of framework to 4.11.15
2016-03-04 16:56:02 -08:00
ce675330c0
Bump version of framework to 4.11.14
2016-03-04 14:49:55 -08:00
2e268a25da
Land #6596 , Apache Karaf Login Utility
2016-02-25 14:39:51 -06:00
7e25c7b87b
Handle OpenSSL::Cipher::CipherError
...
Our current net/ssh is petty outdated, so it is possible not being
able to connect to certain SSH servers.
2016-02-25 14:35:37 -06:00
Jeffrey Martin
Jon Hart
Metasploit
Nick Marcoccio
jgor
James Barnett
Matthew Kienow
christopher lee
William Vu
Brent Cook
dmaloney-r7
Brent Cook
Pearce Barry
SecureAB
Adam Cammack
wchen-r7
Rich Whitcroft
James Lee
bwatters
dmohanty-r7
Javier Godinez
h00die
Tod Beardsley
james-otten
Jenkins
thao doan
Gregory Mikeska