Commit Graph

58 Commits (6e86ac6e1b223755360f9a3a89b6bda4d1eec555)

Author SHA1 Message Date
Jeffrey Martin 1558db375d
update CVE reference in where modules report_vuln 2017-06-05 16:36:44 -05:00
William Vu 64452de06d Fix msf/core and self.class msftidy warnings
Also fixed rex requires.
2017-05-03 15:44:51 -05:00
Christian Mehlmauer 3123175ac7
use MetasploitModule as a class name 2016-03-08 14:02:44 +01:00
Brent Cook f703fa21d6 Revert "change Metasploit3 class names"
This reverts commit 666ae14259.
2016-03-07 13:19:55 -06:00
Christian Mehlmauer 666ae14259
change Metasploit3 class names 2016-03-07 09:56:58 +01:00
William Vu 88159edf9f Fix double raise in vnc_none_auth
Not necessary for what it's trying to accomplish, being a scanner.
2015-10-19 18:22:06 -05:00
jvazquez-r7 a99e44b43a
Update vnc_login to have into account advanced TCP options 2015-09-28 14:13:08 -05:00
Th3R3p0 a6c7f93bbe changed text to show support for RFB version 4.001 2015-06-17 13:09:03 -04:00
root 4bd40fed7f yard doc and comment corrections for auxiliary 2015-04-03 16:12:23 +05:00
HD Moore 8d982e3286 Pass the framework/module down into LoginScanner 2015-02-07 11:50:30 -06:00
Tod Beardsley b533f74024
Add a bruteforce_speed option to all LoginScanners 2014-12-11 11:06:32 -06:00
James Lee 46acf08e2d Merge remote-tracking branch 'upstream/master' into bug/msp-11497/loginscanner-tcp-evasions 2014-10-22 09:09:34 -05:00
sinn3r 6d11ec8477 These mods support Proxies, so make the option visible for the user 2014-10-21 15:39:24 -05:00
James Lee 4705aeb762
Restore tcp evasions to ftp, pop3, vnc 2014-10-21 11:06:55 -05:00
URI Assassin 35d3bbf74d
Fix up comment splats with the correct URI
See the complaint on #4039. This doesn't fix that particular
issue (it's somewhat unrelated), but does solve around
a file parsing problem reported by @void-in
2014-10-17 11:47:33 -05:00
sinn3r 9500038695 Fix #3995 - Make negative messages less verbose
As an user testing against a large network, I only want to see
good news, not bad news.
2014-10-11 11:11:09 -05:00
David Maloney 00ec47fb83
call new prepend cred methods
add method calls o all the lgoinscanner modules
so that they call the prepend_db_* methods as approrpiate
these methods automatically check to see if DB_ALL_CREDS was
selected
2014-09-04 12:32:35 -05:00
David Maloney ab7111120b
and all the rest
finally!
2014-08-01 14:54:18 -05:00
Trevor Rosen bebf11c969
Resolves some Login::Status migration issues
MSP-10730
2014-07-16 21:52:08 -05:00
David Maloney 52a29856b3
Merge branch 'master' into staging/electro-release
Conflicts:
	Gemfile
	Gemfile.lock
2014-07-16 09:38:44 -05:00
jvazquez-r7 8937fbb2f5 Fix email format 2014-07-11 12:45:23 -05:00
David Maloney dc590008a7
add invalidate_login call
add the new invalidate login call to make sure
we update the status on failed logins appropriately
2014-06-10 10:58:27 -05:00
David Maloney 61fd962331
refactor vnc_login
refactor for new credential usage
2014-06-09 13:55:24 -05:00
Tod Beardsley 23d058067a
Redo the boilerplate / splat
[SeeRM #8496]
2013-10-15 13:51:57 -05:00
Tab Assassin 41e4375e43 Retab modules 2013-08-30 16:28:54 -05:00
Christian Mehlmauer 95948b9d7c msftidy: remove $Revision$ 2013-01-03 00:58:09 +01:00
Christian Mehlmauer ca890369b1 msftidy: remove $Id$ 2013-01-03 00:54:48 +01:00
HD Moore c388cba421 Fix up modules calling report_vuln() to use new syntax 2012-06-17 23:39:20 -05:00
sinn3r aeb691bbee Massive whitespace cleanup 2012-03-18 00:07:27 -05:00
HD Moore ceb4888772 Fix up the boilerplate comment to use a better url 2012-02-20 19:40:50 -06:00
David Maloney c984ea41d1 Quick fix to cred sourcing to eliminate spaces in the source type 2011-11-10 20:39:13 -08:00
David Maloney a88f954640 More Cred Sourcing
git-svn-id: file:///home/svn/framework3/trunk@14197 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-09 01:49:57 +00:00
Wei Chen 91c5a15eb4 Actually, this is the right fix for bug #5363
git-svn-id: file:///home/svn/framework3/trunk@13685 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-03 02:20:22 +00:00
Wei Chen 14d2a45c5b This fix is to make sure BLANK_PASSWORDS functions properly. See bug #5363.
git-svn-id: file:///home/svn/framework3/trunk@13684 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-03 02:09:00 +00:00
Tod Beardsley 056cde292f Deprecate the exploited_host table. Vulns that indicate a successful exploit without opening a session should set the :exploited_at timestamp.
git-svn-id: file:///home/svn/framework3/trunk@12623 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 22:19:00 +00:00
Tod Beardsley 42dd4fa717 Allow for duplicates for vnc_login since there's no username.
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 18:10:49 +00:00
Tod Beardsley 671659841b On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley e31f35e3ae Fixes #3643. These modules now report_vuln() correctly.
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley 24388f3a38 Adding a CVE reference for weak/blank/guessable passwords.
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
Joshua Drake 1da08b0bdc abort if retries count exceeded
git-svn-id: file:///home/svn/framework3/trunk@11263 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:57:14 +00:00
Joshua Drake b88f18c7e5 add one to the delay for todb
git-svn-id: file:///home/svn/framework3/trunk@11260 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:13:08 +00:00
Joshua Drake f788425865 add retry for vnc4server
git-svn-id: file:///home/svn/framework3/trunk@11259 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:07:10 +00:00
Tod Beardsley 0b1e3e12ea Adds autofilter ports to vnc_login.
git-svn-id: file:///home/svn/framework3/trunk@11257 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 22:13:51 +00:00
Joshua Drake 4c26dfbfd8 lol? skip on error?!
git-svn-id: file:///home/svn/framework3/trunk@11147 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-25 07:38:12 +00:00
Joshua Drake c50fd9466f ignore usernames, we dont use them
git-svn-id: file:///home/svn/framework3/trunk@11144 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-25 06:09:57 +00:00
Joshua Drake 1a771d5192 retry up to 5 times with exponential back off
git-svn-id: file:///home/svn/framework3/trunk@11132 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-24 20:58:42 +00:00
Joshua Drake 32c26f18f3 style compliance fixes, set test exploits to manual rank, fix s/ranking/rank/ in some exploits
git-svn-id: file:///home/svn/framework3/trunk@11039 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-14 19:03:24 +00:00
Joshua Drake 77bc5cf6cd Big VNC update:
* Created Rex::Proto::RFB
 * Updated vnc_none_auth scanner to use Rex::Proto::RFB::Client
 * Added vnc_login (refactored from carstein)
 * Created an initial vnc_passwords.txt file
 * Removed cipher/des.rb - incompatible license
 * Updated getvncpw script to use new Rex::Proto::RFB::Cipher.decrypt




git-svn-id: file:///home/svn/framework3/trunk@11033 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-14 03:37:45 +00:00
Joshua Drake 0ea6eca4bc big module whitespace/formatting cleanup pass
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Joshua Drake 5aea21fcb8 speel more godoer
git-svn-id: file:///home/svn/framework3/trunk@9080 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 02:09:08 +00:00