031f48725f
add missing quotes
2017-08-21 16:16:03 -05:00
edbe8d73c2
Revert "Revert passive stance for multi/handler"
...
This reverts commit 66a4ea4f0b
2017-08-21 16:14:23 -05:00
c14daf3fcc
Land #8857 , Reverse and bind shells in R
2017-08-21 15:49:24 -05:00
605330faf6
Land #8842 , add linux/aarch64/shell_reverse_tcp
2017-08-21 15:44:28 -05:00
970a784066
Land #8869 , fix php create_function errors with non-suhosin environments
2017-08-21 15:40:24 -05:00
430251b8f6
fix compatibility with php meterpreter
2017-08-21 15:37:31 -05:00
d39fb1ca07
Land #8867 , Fix typo s/rport/port/ in build_brute_message
2017-08-21 15:28:14 -05:00
8876919f38
Fix typo s/rport/port/ in build_brute_message
...
I missed this in #7202 .
2017-08-21 12:32:41 -05:00
8f4fcb5094
tcp.md
...
This module does a complete full tcp scan of each port on the target host. It does a full 3 way handshake on each port.
2017-08-21 13:09:12 -04:00
14b49bff06
Land #8863 - Fix packet parser and payload specs
2017-08-21 19:08:34 +10:00
22e245ac99
call from_r before checking packet output
2017-08-21 03:44:13 -05:00
429824b5c9
guid is hex values
2017-08-21 03:44:02 -05:00
8700a36858
make session_guid default with the correct length
2017-08-21 03:24:37 -05:00
2a1daa6ffc
prefer create_request, use StringIO over custom slice operators
2017-08-21 03:23:06 -05:00
2873a899db
Address msftidy complaint
2017-08-21 03:39:03 -04:00
d6d6c67f33
add stage_shell.s and cleanup
2017-08-21 14:42:30 +08:00
ac6495a7eb
formatting
2017-08-21 12:35:13 +08:00
e1a7494724
linux payloads should default to /bin/sh
2017-08-21 12:25:27 +08:00
9768a89bcd
aarch64 staged shell
2017-08-21 11:14:42 +08:00
7ab097a784
Unix cmd versions of R payloads
...
Use R to connect back from a unix shell.
Notes:
We need to DRY this up - tons of copy pasta here, when we should
really be instantiating the language specific payloads and just
wrapping them with CLI execution strings.
Testing:
None, yet, just did the quick port to wrap this and push to CI
now that rex-arch #4 is in.
2017-08-20 21:25:57 -04:00
2660a5b558
add missing osx specs
2017-08-20 19:25:22 -05:00
f961495860
Land #8625 , Remove OpenSSL from Windows Meterp, packet header changes, and TLV packet encryption
2017-08-20 19:13:51 -05:00
851c0f4373
disable metasploit-aggregator while we sort out crypttlv updates
2017-08-20 19:05:10 -05:00
b864083cbd
update payload sizes
2017-08-20 19:03:53 -05:00
20b6f37fb8
bump payloads with crypttlv format awareness
2017-08-20 19:01:42 -05:00
ca7d481658
Bump version of framework to 4.16.0
2017-08-20 16:57:48 -07:00
5e8c2200ac
Merge branch 'master' into land-8625-crypttlv2
2017-08-20 18:54:51 -05:00
eabe4001c2
Land #8492 , Add IBM OpenAdmin Tool SOAP welcomeServer PHP Code Execution module
2017-08-20 18:48:22 -05:00
cbd7790e95
Land #8751 , Add Asterisk Gather Credentials auxiliary module
2017-08-20 18:34:27 -05:00
07ee33578d
Land 8804, tidy up mdaemon credential extraction module
2017-08-20 18:26:56 -05:00
85df247c84
DRY up module, fix remaining style violations
2017-08-20 18:24:41 -05:00
367c760927
window move is now directly in the template
2017-08-20 17:48:59 -05:00
e734a7923a
Land #8267 , Handle multiple entries in PSModulePath
2017-08-20 17:44:30 -05:00
d5a5321a8c
Merge remote-tracking branch 'upstream/pr/8299' into land-8267-
2017-08-20 17:43:56 -05:00
1225555125
remove unnecessary require
2017-08-20 17:37:42 -05:00
840c0d5f56
Land #7808 , add exploit for VMware VDP with known ssh private key (CVE-2016-7456)
2017-08-20 17:36:45 -05:00
88f39d924b
Land #8816 , added Jenkins v2 cookie support
2017-08-20 14:58:38 -05:00
f7dc831e9a
Land #8799 , Add module to detect Docker, LXC, and systemd-nspawn containers
2017-08-20 14:45:57 -05:00
aa797588e8
Land #8847 , Look for sp_execute_external_script in mssql_enum
2017-08-20 14:32:35 -05:00
2eba188166
Land #8789 , Add COM class ID hijack method for bypassing UAC
2017-08-20 13:57:17 -05:00
9f3dbba17a
Land #8854 , fix scheduleme meterpreter script
2017-08-20 13:54:41 -05:00
05011930b1
Land #8861 , link updates
2017-08-20 13:34:41 -05:00
b9b779da9e
update references to sourceforge ML
2017-08-20 13:23:54 -05:00
6afd90b7f0
Land #8848 , fix extra sleep on linux x86 stager
2017-08-19 22:12:19 -05:00
e8ab518d76
Land #8853 , Revert passive stance for multi/handler
2017-08-19 22:04:26 -05:00
0145fc3972
payload/r.rb and UUID update
2017-08-19 06:43:28 -04:00
d76616e8e8
Reverse and bind shells in R
...
Initial implementation of bind and reverse TCP shells in R.
Supports IPv4 and 6, provides stateless sessions which wont change
the cwd when cd is invoked since each command invocation actually
spawns a pipe to execute that specific line's invocation.
R injections are common in academic software written in a hurry by
students or lab administrators. The language runtimes are also
commonly found adjacent to valuable data, and often used by teams
which are not directly responsible for information security.
Testing:
Local testing with netcat bind and rev handlers.
TODO:
Add the appropriate platform/language library definitions
2017-08-19 06:12:05 -04:00
46852e8ab0
Update scheduleme.rb
...
Fixed a bug introduced in commit #aa03db1f5c4a694d258879ccdf0dcaaf7f576355
2017-08-18 22:27:26 +02:00
6ecdb8f2cc
Land #8852 , convert quest_pmmasterd_bof to cmd_interact/find
2017-08-18 13:20:17 -05:00
66a4ea4f0b
Revert passive stance for multi/handler
...
It's gotten to be a bit annoying. ExitOnSession=false was good, but this
was too much. Typing run -j isn't difficult.
2017-08-18 13:16:12 -05:00
Brent Cook
William Vu
Deepanshu Gajbhiye
OJ
RageLtMan
Tim
Metasploit
Franci Šacer
William Webb