Commit Graph

3026 Commits (70774ba7cfd9cf4d1343660cf5bbd8be9f0d1676)

Author SHA1 Message Date
Mario Ceballos a42f49481e renamed one, add coverage for hndlrsvc issue.
git-svn-id: file:///home/svn/framework3/trunk@9943 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-01 19:50:40 +00:00
Tod Beardsley 8daeccafa6 Changing logic for the VRFY test.
git-svn-id: file:///home/svn/framework3/trunk@9940 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-27 22:12:18 +00:00
James Lee e1ed341136 remove debug prints
git-svn-id: file:///home/svn/framework3/trunk@9938 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-27 21:05:41 +00:00
Steve Tornio 580eb5aaac add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9936 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-27 03:14:46 +00:00
Joshua Drake a31e133e80 add 3 easy ftp server exploits, 1 chemview activex
git-svn-id: file:///home/svn/framework3/trunk@9935 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-27 02:25:15 +00:00
Joshua Drake 73ef3db468 fix statement order, lol
git-svn-id: file:///home/svn/framework3/trunk@9934 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-26 23:22:42 +00:00
Joshua Drake f4103fd7f5 increase ranking
git-svn-id: file:///home/svn/framework3/trunk@9933 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-26 19:30:02 +00:00
Joshua Drake 2448f6b1a8 fix lnk file generation, tested OK on win7 x86
git-svn-id: file:///home/svn/framework3/trunk@9930 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-26 01:51:17 +00:00
Joshua Drake f6033b9bd6 change some print_status to print_error, rename a few msft modules using msb convention
git-svn-id: file:///home/svn/framework3/trunk@9929 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 21:37:54 +00:00
Joshua Drake 2482a83526 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9927 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 19:14:00 +00:00
HD Moore 12d8aad562 Fix the filename to bypass outlook filters (patch from Yorick).
git-svn-id: file:///home/svn/framework3/trunk@9926 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 17:31:04 +00:00
HD Moore 92ad463657 Make the title consistent
git-svn-id: file:///home/svn/framework3/trunk@9925 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 16:04:22 +00:00
HD Moore 3a8bbbd295 Match the browser module
git-svn-id: file:///home/svn/framework3/trunk@9924 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 16:02:51 +00:00
HD Moore 3c505a7b10 Rename ani to match msb
git-svn-id: file:///home/svn/framework3/trunk@9923 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 16:02:26 +00:00
HD Moore 8eab8d79e0 Adds two exploit modules for ms10-045 from Yorick Koster
git-svn-id: file:///home/svn/framework3/trunk@9922 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 16:00:52 +00:00
Joshua Drake 136c8d2ecc change print_status to print_error
git-svn-id: file:///home/svn/framework3/trunk@9919 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-24 21:38:57 +00:00
James Lee 2a2f6fde56 not a command shell, it's a stager
git-svn-id: file:///home/svn/framework3/trunk@9912 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-22 16:29:01 +00:00
Joshua Drake 84e3a95d2b yield the session faster by not waiting for a response
git-svn-id: file:///home/svn/framework3/trunk@9911 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 23:40:34 +00:00
Steve Tornio 018af7f690 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9906 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 21:09:54 +00:00
Tod Beardsley 19aab08526 Adding SMTP enumerator, provided by Heyder Andrade. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9905 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 15:23:16 +00:00
Steve Tornio ad04fd4f3f add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9903 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 11:05:07 +00:00
Joshua Drake 719ce5d551 use ntlm explicitly, fixes #2158
git-svn-id: file:///home/svn/framework3/trunk@9900 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 06:04:20 +00:00
Joshua Drake 2ccf0a0c81 add UNCHOST var, remove \r chars
git-svn-id: file:///home/svn/framework3/trunk@9897 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 00:02:47 +00:00
Joshua Drake dd7a8178d7 actually use Msf::Exploit::EXE
git-svn-id: file:///home/svn/framework3/trunk@9896 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 00:02:04 +00:00
Joshua Drake 1ca054ba53 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9893 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 23:28:47 +00:00
Mario Ceballos a5590b4115 added auxiliary module osb_execqr3.rb
git-svn-id: file:///home/svn/framework3/trunk@9891 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 21:57:54 +00:00
James Lee 929163834a change the name to not lie
git-svn-id: file:///home/svn/framework3/trunk@9889 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 20:21:54 +00:00
HD Moore 99e2c9aa72 Looks like my initial testing was wrong - you can trigger this entirely through HTTP with a meta refresh, just not with a 301 (IE only).
git-svn-id: file:///home/svn/framework3/trunk@9888 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 19:54:56 +00:00
HD Moore a066ebc85b Remove rescue
git-svn-id: file:///home/svn/framework3/trunk@9886 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 14:16:12 +00:00
James Lee d4e5f17d62 reduce the rank of the php encoder so it is no longer the default for msfencode. kind of a hacky solution, should probably default the arch to x86 directly, but i'm afraid of breaking something in msfencode
git-svn-id: file:///home/svn/framework3/trunk@9884 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 06:27:14 +00:00
Joshua Drake 786ccb3d5f add support for OWC11 (from DSR!)
git-svn-id: file:///home/svn/framework3/trunk@9883 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 06:24:19 +00:00
HD Moore 2ce616fa1a Hide this exception until loader.jar is checked in
git-svn-id: file:///home/svn/framework3/trunk@9880 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 03:10:15 +00:00
HD Moore d388c1bc4f Handle unknown requests in a cleaner way
git-svn-id: file:///home/svn/framework3/trunk@9879 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 03:08:43 +00:00
James Lee 08d705c1db add java meterpreter and update java_calendar_deserialize to be able to use it, see #406
git-svn-id: file:///home/svn/framework3/trunk@9874 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 00:53:24 +00:00
Joshua Drake e30164e09e possibly fix a bug
git-svn-id: file:///home/svn/framework3/trunk@9873 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 00:23:18 +00:00
Steve Tornio 3674a11fa5 add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@9870 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-19 23:02:22 +00:00
HD Moore fcd23fbdce Adds coverage for the Windows Shell LNK code execution flaw (CVE-2010-2568)
git-svn-id: file:///home/svn/framework3/trunk@9869 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-19 22:36:26 +00:00
James Lee 515edead31 make DOMAINBYPASS an OptString instead of OptAddress so it doesn't have to be a single domain and doesn't have to resolv at startup. fixes #2272
git-svn-id: file:///home/svn/framework3/trunk@9857 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-19 16:10:30 +00:00
Joshua Drake dec6bfee0a add missing includes
git-svn-id: file:///home/svn/framework3/trunk@9856 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-19 04:28:09 +00:00
James Lee 2a8a058519 add a bind stager for php
git-svn-id: file:///home/svn/framework3/trunk@9855 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-17 22:42:12 +00:00
Joshua Drake 45303646d4 switch to using jmp ecx :-/
git-svn-id: file:///home/svn/framework3/trunk@9854 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-17 04:34:39 +00:00
Joshua Drake 899ecc2604 use a more indirect method, more reliable
git-svn-id: file:///home/svn/framework3/trunk@9852 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-17 01:28:27 +00:00
Joshua Drake 3b4c732ec0 typos
git-svn-id: file:///home/svn/framework3/trunk@9843 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-16 03:34:22 +00:00
Joshua Drake d07e613504 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9842 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-16 02:33:25 +00:00
Joshua Drake f4f1c1105d add exploit for cve-2010-2063
git-svn-id: file:///home/svn/framework3/trunk@9841 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-16 02:31:37 +00:00
Joshua Drake 9e360f19e0 ignore timeout errors, see #2260
git-svn-id: file:///home/svn/framework3/trunk@9839 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-15 20:54:03 +00:00
Joshua Drake b73e13bd62 add xpsp1-jp target from Masashi, fixes #2255
git-svn-id: file:///home/svn/framework3/trunk@9838 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-15 20:18:34 +00:00
Joshua Drake 8bbd1c3c7b adds updated cert scanner from Thomas Ring, fixes #1752
git-svn-id: file:///home/svn/framework3/trunk@9837 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-15 19:23:05 +00:00
James Lee b4634a98d7 whitspace
git-svn-id: file:///home/svn/framework3/trunk@9833 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 20:27:42 +00:00
HD Moore fb57dde60c Do not spew HTML to the screen
git-svn-id: file:///home/svn/framework3/trunk@9829 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 18:23:47 +00:00
HD Moore bb67f56ee8 Clean up two samba modules to prevent them from brute forcing invalid targets
git-svn-id: file:///home/svn/framework3/trunk@9828 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 17:27:23 +00:00
HD Moore b44ba8e8bf Treat no-reply and general errors as indication to try the next port
git-svn-id: file:///home/svn/framework3/trunk@9827 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 17:08:08 +00:00
Joshua Drake cef24f7098 forgot comma, bleh
git-svn-id: file:///home/svn/framework3/trunk@9822 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 16:56:39 +00:00
Joshua Drake 4b44fdb8c2 adds ftp data functionality from Thomas Ring, after some modifications
git-svn-id: file:///home/svn/framework3/trunk@9821 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 14:04:27 +00:00
Joshua Drake ccd4416b5f add another httpfingerprint, thx again mc
git-svn-id: file:///home/svn/framework3/trunk@9820 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 13:59:38 +00:00
Joshua Drake edb593987a add more http fingerprints, thx mc
git-svn-id: file:///home/svn/framework3/trunk@9818 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-14 00:02:21 +00:00
Mario Ceballos 21babc2bfa updated due to reliability. all payloads work now.
git-svn-id: file:///home/svn/framework3/trunk@9814 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 22:38:44 +00:00
Joshua Drake 6d23204c6f add more http fingerprints
git-svn-id: file:///home/svn/framework3/trunk@9812 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 22:11:40 +00:00
HD Moore 24800ca1ec Add reference for the help center bug
git-svn-id: file:///home/svn/framework3/trunk@9810 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 19:31:40 +00:00
HD Moore 19f1583ba5 Change to match MSB
git-svn-id: file:///home/svn/framework3/trunk@9809 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 19:30:47 +00:00
HD Moore edae6e2d02 Change to match MSB
git-svn-id: file:///home/svn/framework3/trunk@9808 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 19:30:36 +00:00
James Lee f2bbb368ea datastore values are always set to default during initialize(), do stuff like this in setup() instead
git-svn-id: file:///home/svn/framework3/trunk@9805 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 19:05:34 +00:00
Tod Beardsley e67e231659 Adds Rex::Text.to_hex_ascii(), replaces the gsub on the banner checks to use it.
git-svn-id: file:///home/svn/framework3/trunk@9804 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 18:52:27 +00:00
James Lee 9891ea5374 Typo which caused this exploit never to get run in browser_autopwn
git-svn-id: file:///home/svn/framework3/trunk@9802 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 09:03:56 +00:00
Joshua Drake 4b5f4b896a add a note about why this module is not an HttpClient module
git-svn-id: file:///home/svn/framework3/trunk@9798 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-12 23:25:49 +00:00
Joshua Drake 16ff17c9d1 add more http fingerprints -- thx mc
git-svn-id: file:///home/svn/framework3/trunk@9797 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-12 23:25:31 +00:00
James Lee b4643b6c4c add advanced options to mimic meterpreter payload options and pass them on appropriately. fixes #2186
git-svn-id: file:///home/svn/framework3/trunk@9790 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-12 05:19:38 +00:00
HD Moore 06e49b9287 Use a form of the socket create call that actually pivots
git-svn-id: file:///home/svn/framework3/trunk@9789 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-12 03:30:08 +00:00
James Lee a5786cdc64 stop using some older exploits in browser_autopwn in favor of ie_behaviors which works on more versions
git-svn-id: file:///home/svn/framework3/trunk@9787 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-12 02:51:50 +00:00
James Lee f80d08651f document.write breaks stuff. build a div and put stuff in it instead
git-svn-id: file:///home/svn/framework3/trunk@9786 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-12 00:45:37 +00:00
James Lee eab025103c include non-javascript exploits when javascript is on
git-svn-id: file:///home/svn/framework3/trunk@9785 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-11 23:53:47 +00:00
James Lee 9f37d46f7b minimize autopwn settings
git-svn-id: file:///home/svn/framework3/trunk@9784 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-11 23:21:04 +00:00
James Lee 28e40bdc9f add java_calendar_deserialize to browser_autopwn
git-svn-id: file:///home/svn/framework3/trunk@9783 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-11 23:16:51 +00:00
Joshua Drake ec39be6e11 workaround odd racket bug
git-svn-id: file:///home/svn/framework3/trunk@9777 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-11 07:23:46 +00:00
James Lee 212d9c3fd3 workaround the new module behaviour of copying for jobs by grabbing the copy out of the job context
git-svn-id: file:///home/svn/framework3/trunk@9761 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-09 23:57:54 +00:00
HD Moore 55763051aa Enable threading of the tcp connect scan (per host)
git-svn-id: file:///home/svn/framework3/trunk@9760 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-09 22:21:34 +00:00
Joshua Drake 0c2c35cc47 fix disclosure date
git-svn-id: file:///home/svn/framework3/trunk@9748 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-09 16:54:25 +00:00
Joshua Drake 3b7842eb0e add dtp spoofer module from Spencer McIntyre
git-svn-id: file:///home/svn/framework3/trunk@9746 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-09 16:23:53 +00:00
Joshua Drake c1f74794eb style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9744 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-08 23:34:50 +00:00
Joshua Drake ad9f0d91b9 add tftp server auxiliary
git-svn-id: file:///home/svn/framework3/trunk@9743 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-08 23:34:33 +00:00
Joshua Drake d83ca6c901 add a few more strings
git-svn-id: file:///home/svn/framework3/trunk@9741 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-08 21:05:36 +00:00
Tod Beardsley 64fb3624d6 Clean up UDP probe module a little, add an nbname_probe module that's nearly identical to nbname, but allows for pivot scans.
git-svn-id: file:///home/svn/framework3/trunk@9735 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-08 17:31:48 +00:00
Joshua Drake ace74d991e add ftp fuzzer module from Peter Van Eeckhoutte
git-svn-id: file:///home/svn/framework3/trunk@9729 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 21:59:02 +00:00
Joshua Drake 4705998f6c do not access res.code if res is nil, fixes #2184
git-svn-id: file:///home/svn/framework3/trunk@9726 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 19:52:05 +00:00
Joshua Drake 663b863b6d http fingerprint checking update
git-svn-id: file:///home/svn/framework3/trunk@9719 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 17:38:59 +00:00
Joshua Drake ba76698b5a remove extraneous parenthesis
git-svn-id: file:///home/svn/framework3/trunk@9718 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 17:38:26 +00:00
Joshua Drake ea12f49bc7 fix type, thx xanda, fixes #2198
git-svn-id: file:///home/svn/framework3/trunk@9713 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 16:36:21 +00:00
HD Moore bfcd09c982 Fix up the data printer
git-svn-id: file:///home/svn/framework3/trunk@9708 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 14:57:50 +00:00
HD Moore ea0129ff35 Add Robin Wood's MSSQL Interesting Data Finder
git-svn-id: file:///home/svn/framework3/trunk@9706 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 14:48:08 +00:00
Joshua Drake 389259c5d4 reworked module significantly, updated for latest installer from badblue.com, added http_fingerprint
git-svn-id: file:///home/svn/framework3/trunk@9705 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 06:54:20 +00:00
Joshua Drake 163d273dff convert module to HttpClient, check fingerprint -- untested
git-svn-id: file:///home/svn/framework3/trunk@9704 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 01:43:12 +00:00
Joshua Drake dfce4901fe change error message
git-svn-id: file:///home/svn/framework3/trunk@9703 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 01:34:11 +00:00
Joshua Drake d84c519678 switch to HttpClient, check fingerprint first
git-svn-id: file:///home/svn/framework3/trunk@9702 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 01:33:38 +00:00
Joshua Drake a018149278 check fingerprint first
git-svn-id: file:///home/svn/framework3/trunk@9701 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 01:33:03 +00:00
Joshua Drake 81cce81969 convert modules to HttpClient, use http_fingerprint
git-svn-id: file:///home/svn/framework3/trunk@9700 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 01:22:26 +00:00
Joshua Drake ac267c5856 minor tweaks
git-svn-id: file:///home/svn/framework3/trunk@9697 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-06 22:15:16 +00:00
Joshua Drake 8c0e5fdf73 fix references, whitespace
git-svn-id: file:///home/svn/framework3/trunk@9696 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-06 21:59:16 +00:00
Joshua Drake e5bf3301fb note ORD recommendation
git-svn-id: file:///home/svn/framework3/trunk@9695 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-06 21:58:57 +00:00
Joshua Drake 11bb8dee28 convert to httpclient module, use fingerprint
git-svn-id: file:///home/svn/framework3/trunk@9694 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-06 21:54:58 +00:00
Tod Beardsley 6c0c3c25ee Fixes #2191. Reports closed ports, and also alters the print_status messages to be consistent with other scan modules.
git-svn-id: file:///home/svn/framework3/trunk@9677 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-06 15:53:05 +00:00
HD Moore 1ab0237591 Adds a pivot friendly version of the sweeper
git-svn-id: file:///home/svn/framework3/trunk@9675 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-06 14:56:36 +00:00
Joshua Drake a3d901a6b9 various minor fixes, some added fingerprinting
git-svn-id: file:///home/svn/framework3/trunk@9671 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 06:21:31 +00:00
Joshua Drake c7f5ba801c add lots of disclosure dates from OSVDB (missed a few)
git-svn-id: file:///home/svn/framework3/trunk@9670 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 03:19:07 +00:00
Joshua Drake 7d945ed9dc add lots of disclosure dates from OSVDB
git-svn-id: file:///home/svn/framework3/trunk@9669 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 03:13:45 +00:00
Joshua Drake 56ea22716e oops, broke the tree
git-svn-id: file:///home/svn/framework3/trunk@9668 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 01:38:15 +00:00
Joshua Drake 9984b662e0 switch some URL references to US-CERT-VU type
git-svn-id: file:///home/svn/framework3/trunk@9666 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 01:09:32 +00:00
James Lee 8ba9d6254a prioritize the base64 encoder over chr()
git-svn-id: file:///home/svn/framework3/trunk@9661 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-02 01:53:35 +00:00
Joshua Drake f6f954a18c add missing CVE/OSVDB references, plenty still missing *wink wink*
git-svn-id: file:///home/svn/framework3/trunk@9659 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-02 00:10:51 +00:00
Carlos Perez 684f604448 small fix
git-svn-id: file:///home/svn/framework3/trunk@9657 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:50:47 +00:00
Joshua Drake 310b548b67 indent-fu
git-svn-id: file:///home/svn/framework3/trunk@9656 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:48:55 +00:00
Joshua Drake 2f5970e30b set keywords property
git-svn-id: file:///home/svn/framework3/trunk@9655 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:46:05 +00:00
Joshua Drake 97b016cb70 missed one binary mode change
git-svn-id: file:///home/svn/framework3/trunk@9654 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:45:49 +00:00
Joshua Drake 0882838491 ensure binary mode when opening files, whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9653 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:33:07 +00:00
Joshua Drake b9a4105786 see #1000, remove encoder in favor of auto-selection
git-svn-id: file:///home/svn/framework3/trunk@9648 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 21:35:10 +00:00
Joshua Drake bfaa9a9a6f modify badchars, minor cleanups, fixes #1000
git-svn-id: file:///home/svn/framework3/trunk@9647 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 21:31:51 +00:00
Joshua Drake 8676a88ce3 fix typo, thx chad
git-svn-id: file:///home/svn/framework3/trunk@9646 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 20:35:56 +00:00
Joshua Drake bcf61758d1 add scanner module from xanda, fixes #2164
git-svn-id: file:///home/svn/framework3/trunk@9645 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 20:09:08 +00:00
HD Moore 771deac360 Adds domain bypass support from Rudy Ruiz
git-svn-id: file:///home/svn/framework3/trunk@9644 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 19:57:03 +00:00
Joshua Drake c1c64e5bc0 add exploits from dookie for ufo alian invasion on osx/windows
git-svn-id: file:///home/svn/framework3/trunk@9643 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 19:54:48 +00:00
Joshua Drake 93b09648c7 add additional CVE reference, cleanup references
git-svn-id: file:///home/svn/framework3/trunk@9642 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 19:42:11 +00:00
James Lee 42f540258a really, actually commit the meterpreter stage
git-svn-id: file:///home/svn/framework3/trunk@9638 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-30 23:51:29 +00:00
James Lee 571aeb119c make this much less verbose.
git-svn-id: file:///home/svn/framework3/trunk@9634 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-28 23:42:50 +00:00
Joshua Drake b5aac2860c add DEP bypass targets for XPSP2 and 2k3SP1, add 2k3 SP0 target
git-svn-id: file:///home/svn/framework3/trunk@9632 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-28 16:01:23 +00:00
Joshua Drake 2ddab423ce commit updates from Tyler Krpata
git-svn-id: file:///home/svn/framework3/trunk@9630 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-27 07:15:17 +00:00
cg 61bee576c2 updated version module
git-svn-id: file:///home/svn/framework3/trunk@9629 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-26 14:39:51 +00:00
Joshua Drake 12fbdcd878 add http_fingerprint calls to modules that use various headers
git-svn-id: file:///home/svn/framework3/trunk@9627 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 20:53:12 +00:00
Joshua Drake 2ab5983e2a more whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9626 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 19:49:23 +00:00
HD Moore 816b769b3f Add a 10 second timeout, remove Wfs
git-svn-id: file:///home/svn/framework3/trunk@9624 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 16:09:33 +00:00
HD Moore 453c9fc3c4 Increases the WfsDelay
git-svn-id: file:///home/svn/framework3/trunk@9623 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 15:03:09 +00:00
James Lee 96cd7bddae compatibility for 1.9. fixes #2143
git-svn-id: file:///home/svn/framework3/trunk@9622 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 05:52:05 +00:00
James Lee 73c680eeff reduce the timeout. it's annoying to have to wait 25 seconds for my shell
git-svn-id: file:///home/svn/framework3/trunk@9621 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 05:45:15 +00:00
Joshua Drake 3cb116db99 clarify limitations, update to use PrintfUtil encoder
git-svn-id: file:///home/svn/framework3/trunk@9614 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-24 22:39:54 +00:00
Joshua Drake f0a4812644 add special encoder for piranha_passwd_exec vuln (rh62)
git-svn-id: file:///home/svn/framework3/trunk@9613 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-24 22:36:51 +00:00
James Lee e47f38365d make the description a little more descriptive.
git-svn-id: file:///home/svn/framework3/trunk@9611 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-24 18:34:37 +00:00
Joshua Drake 48994d234a oops, remove java from platform list
git-svn-id: file:///home/svn/framework3/trunk@9609 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-24 16:38:24 +00:00
Joshua Drake 2712ebb23f add aux module for cve-2003-0027, closes #655
git-svn-id: file:///home/svn/framework3/trunk@9605 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-24 05:03:12 +00:00
Tod Beardsley 5f9680d902 Fixes #2133. This seems to handle many keyfiles pretty well, even if they're concatenated together. Calling it closed.
git-svn-id: file:///home/svn/framework3/trunk@9602 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-24 01:00:08 +00:00
James Lee 43799f505b not a command execution anymore.
git-svn-id: file:///home/svn/framework3/trunk@9601 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 23:12:59 +00:00
Tod Beardsley d0e7736b2e See #2133 Ack dropping ugly timestamp
git-svn-id: file:///home/svn/framework3/trunk@9600 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 23:01:03 +00:00
Tod Beardsley dbdab1f282 See #2133. Needs more testing, but solves the immediate problem of dying in the face of MaxAuthTries.
git-svn-id: file:///home/svn/framework3/trunk@9599 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 22:58:56 +00:00
James Lee 1f957891fb ARCH_CMD -> ARCH_PHP. tested with php/reverse_php and php/meterpreter[/_]reverse_tcp. see #2105
git-svn-id: file:///home/svn/framework3/trunk@9598 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 22:51:50 +00:00
Joshua Drake 099b90b0d6 another update for jboss stuff, thanks Patrick!
git-svn-id: file:///home/svn/framework3/trunk@9596 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 22:25:03 +00:00
James Lee 920710a5fd actually commit the stager, see #2128
git-svn-id: file:///home/svn/framework3/trunk@9595 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 22:24:50 +00:00
James Lee c3d183c98d split stadpi out into an extension, add a reverse_tcp stager, make the main meterpreter stage-aware so it will work as a standalone or eval'd by a stager that sets $msgsock and $msgsock_type; see #2128
git-svn-id: file:///home/svn/framework3/trunk@9594 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 20:00:27 +00:00
James Lee dcc52ff3f0 add a last-ditch effort in case alphanums are badchars
git-svn-id: file:///home/svn/framework3/trunk@9592 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 08:23:00 +00:00
Joshua Drake 9d86466285 clean up whitespace
git-svn-id: file:///home/svn/framework3/trunk@9587 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 23:57:05 +00:00
Joshua Drake 58cbf5d6ad oops, fixed app_base mistake
git-svn-id: file:///home/svn/framework3/trunk@9586 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 23:10:30 +00:00
Tod Beardsley 9d46383040 Fixes #2134. Subs select for sleep in exploit modules.
git-svn-id: file:///home/svn/framework3/trunk@9583 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 19:11:05 +00:00
Tod Beardsley 2cf9944681 See #2134. Fixes all aux modules that uses sleep().
git-svn-id: file:///home/svn/framework3/trunk@9582 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 18:58:38 +00:00
Joshua Drake 171543624a fix typos
git-svn-id: file:///home/svn/framework3/trunk@9581 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 16:11:02 +00:00
James Lee f14b3221ca move http version reporting into the HttpClient mixin
git-svn-id: file:///home/svn/framework3/trunk@9579 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 01:39:43 +00:00
Mario Ceballos 9780efabdd missed Version
git-svn-id: file:///home/svn/framework3/trunk@9578 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 01:24:52 +00:00
Mario Ceballos ccece11b9b changed from the orignal method, thanks patrick.
git-svn-id: file:///home/svn/framework3/trunk@9577 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 01:08:02 +00:00
James Lee ef5c0f77eb move copy-paste into a mixin
git-svn-id: file:///home/svn/framework3/trunk@9576 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 00:46:52 +00:00
James Lee d1d2f8af0a explain to the user that we couldn't find a vncviewer
git-svn-id: file:///home/svn/framework3/trunk@9575 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 00:14:08 +00:00
James Lee 6fb4a5630a explain to the user that we couldn't find a vncviewer
git-svn-id: file:///home/svn/framework3/trunk@9574 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 00:13:43 +00:00
Tod Beardsley 1874ce3ac3 Fixes typo and a to_s problem in AXIS LFI module.
git-svn-id: file:///home/svn/framework3/trunk@9572 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 20:42:41 +00:00
Joshua Drake 752905a777 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9571 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:53:52 +00:00
Joshua Drake 71fd2152aa add jboss vuln scanner from Tyler Krpata
git-svn-id: file:///home/svn/framework3/trunk@9570 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:49:44 +00:00
Joshua Drake 19742afb38 use pack instead of Base64
git-svn-id: file:///home/svn/framework3/trunk@9569 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:45:26 +00:00
Joshua Drake 4ceb936533 some jboss updates, much thanks to Patrick Hof
git-svn-id: file:///home/svn/framework3/trunk@9568 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:26:14 +00:00
Tod Beardsley 3bca9baa25 Login failures are verbose errors, not just verbose statuses, for DB2.
git-svn-id: file:///home/svn/framework3/trunk@9567 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 15:10:58 +00:00
Joshua Drake f951dca1b2 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9566 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 05:59:53 +00:00
Joshua Drake 2c91164494 allow x64 payloads to be used with psexec
git-svn-id: file:///home/svn/framework3/trunk@9565 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 03:49:39 +00:00
Tod Beardsley 613f288226 Fix up ssh_login_pubkey's session management for more effective session reuse.
git-svn-id: file:///home/svn/framework3/trunk@9563 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-19 15:03:27 +00:00
James Lee 3cb992ac47 demonstrate how to use rangewalker in the scanner_range example
git-svn-id: file:///home/svn/framework3/trunk@9558 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-18 21:34:22 +00:00
James Lee c5203f72a0 missed deleting this when moving it to meterpreter_reverse_tcp
git-svn-id: file:///home/svn/framework3/trunk@9557 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-18 21:33:21 +00:00
Steve Tornio 806a3bfcab add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9556 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-18 11:10:42 +00:00
Joshua Drake 5474b89cb7 add exploit for titanftp XCRC traversal, cute one
git-svn-id: file:///home/svn/framework3/trunk@9555 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-18 04:33:53 +00:00
Joshua Drake 121fe70e65 oops, fix error when printing error message
git-svn-id: file:///home/svn/framework3/trunk@9552 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 22:11:43 +00:00
Tod Beardsley 15bf5ff773 Handle RSTs specifically, manage the probe timeout better.
git-svn-id: file:///home/svn/framework3/trunk@9551 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 15:16:39 +00:00
Tod Beardsley be6e0b3393 Fixes #1493, applying patch provided by Vitor Moreira. Thanks a ton for the audit work!
git-svn-id: file:///home/svn/framework3/trunk@9550 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 14:03:53 +00:00
Steve Tornio 98b0de2c3f add osvd ref
git-svn-id: file:///home/svn/framework3/trunk@9549 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 11:00:04 +00:00
Tod Beardsley 19596276ab Adding nginx source disclosure aux module (CVE-2010-2263), contributed by Tiago Ferreira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9548 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 01:56:09 +00:00
James Lee b03047094d make the payload name match the standard
git-svn-id: file:///home/svn/framework3/trunk@9534 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-16 16:55:05 +00:00
Tod Beardsley 14706a17e8 Actually report the DAS port as an open service, not just a note.
git-svn-id: file:///home/svn/framework3/trunk@9533 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-16 16:20:30 +00:00
Joshua Drake a040b3708a add some MSB numbers that were missing, rename ms08-070 msmask32 module
git-svn-id: file:///home/svn/framework3/trunk@9532 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 23:49:17 +00:00
Tod Beardsley cb69b0c134 Fixes #2101. Introduces a proper :skip_user, and adds better comment docs to auth_brute to describe the intended use of each return code.
git-svn-id: file:///home/svn/framework3/trunk@9529 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 19:10:15 +00:00
Tod Beardsley 0e8bdca1e2 Allows mssql_login to bail on a host if it's unresponsive.
git-svn-id: file:///home/svn/framework3/trunk@9528 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 18:43:25 +00:00
Joshua Drake 79190edba3 throw an error when ExitOnSession is false with no job_id
git-svn-id: file:///home/svn/framework3/trunk@9526 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 17:25:14 +00:00
Joshua Drake fa505a4069 various fixes, mostly consistency changes to disclosure dates
git-svn-id: file:///home/svn/framework3/trunk@9525 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 07:18:08 +00:00
Joshua Drake 30f3e8fda2 silly minor fix
git-svn-id: file:///home/svn/framework3/trunk@9524 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 07:16:51 +00:00
Joshua Drake 4ce87baa27 fix name string
git-svn-id: file:///home/svn/framework3/trunk@9523 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 07:16:18 +00:00
Joshua Drake c65ed27857 convert osx/solaris versions to use brute mixin, see #2
git-svn-id: file:///home/svn/framework3/trunk@9522 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 07:16:04 +00:00
Joshua Drake afddb802ea add freebsd version, see #2
git-svn-id: file:///home/svn/framework3/trunk@9519 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 05:45:43 +00:00
Joshua Drake 09f4c42aee fix whitespace
git-svn-id: file:///home/svn/framework3/trunk@9518 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 05:44:29 +00:00
Joshua Drake 0bc6d38294 tested succesfully on rh9 w/samba, see #2
git-svn-id: file:///home/svn/framework3/trunk@9515 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-14 22:54:03 +00:00
HD Moore 35630e3c17 Fix CVE references and invalid author entries
git-svn-id: file:///home/svn/framework3/trunk@9511 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-13 16:01:01 +00:00
Steve Tornio fcb05df3d8 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9510 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-13 12:41:48 +00:00
HD Moore 53acdcc98b Prevent constant replies from hanging the scan
git-svn-id: file:///home/svn/framework3/trunk@9509 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-13 12:16:30 +00:00
HD Moore 843d632d55 Change the advisory link
git-svn-id: file:///home/svn/framework3/trunk@9504 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 19:33:42 +00:00
HD Moore cb9a3211ee Exploit for the UnrealIRCD backdoor
git-svn-id: file:///home/svn/framework3/trunk@9503 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 19:25:48 +00:00
Joshua Drake 698da3bdea add CVE for cognos express
git-svn-id: file:///home/svn/framework3/trunk@9502 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:37:21 +00:00
Joshua Drake 5194476191 fix problem reported by Vitor Moreira, see #1493
git-svn-id: file:///home/svn/framework3/trunk@9501 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:15:50 +00:00
Joshua Drake b8c8880e44 re-enable exploitation of cve-2003-0201 on linux, see #2
git-svn-id: file:///home/svn/framework3/trunk@9500 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 04:28:01 +00:00
Joshua Drake 1961ee2a7e minor whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9499 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 04:27:25 +00:00
Tod Beardsley d9ffa9753e Skip users that are explicitly disallowed from loggin in over telnet.
git-svn-id: file:///home/svn/framework3/trunk@9498 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 22:28:59 +00:00
natron 7cbc566c7b Bug fixes for WMP11 and IE8, new configurable setting for exploit trigger, and output cleanup.
git-svn-id: file:///home/svn/framework3/trunk@9495 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 20:54:35 +00:00
Jonathan Cran 33212ae5ba small typo fixed. Thanks to Craig Hand.
git-svn-id: file:///home/svn/framework3/trunk@9494 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 19:01:17 +00:00
Joshua Drake 85973b68dd comment out EXETEMPLATE setting until #2046 is resolved
git-svn-id: file:///home/svn/framework3/trunk@9492 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:56:37 +00:00
Joshua Drake 75b906ac4c switch to %uFFFF per secunia analysis, fix regexp handling
git-svn-id: file:///home/svn/framework3/trunk@9491 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:40:42 +00:00
Joshua Drake cb69258fb2 fix regexp handling
git-svn-id: file:///home/svn/framework3/trunk@9490 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:40:12 +00:00
Joshua Drake e32abab8dc a HTTP -> an HTTP (http://www.english-zone.com/grammar/a-anlessn.html)
git-svn-id: file:///home/svn/framework3/trunk@9488 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:12:05 +00:00
Joshua Drake 565397e989 fix CVE reference -- shakes stick
git-svn-id: file:///home/svn/framework3/trunk@9487 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:10:12 +00:00
Joshua Drake c62b62d35d style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9486 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 15:17:23 +00:00
Steve Tornio e2f4a6ad0d add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9485 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 10:39:41 +00:00
HD Moore 7c87a96e65 Add CVE from Kurt S.
git-svn-id: file:///home/svn/framework3/trunk@9484 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 06:49:54 +00:00
natron f4394bf0e0 Initial commit for Tavis Ormandy's Help Ctr bug. Needs improvement on stealthiness, but works for now.
-n


git-svn-id: file:///home/svn/framework3/trunk@9483 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 06:10:08 +00:00
James Lee 3635af92bc use the system tmpdir instead of hardcoding /tmp/
git-svn-id: file:///home/svn/framework3/trunk@9482 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 05:52:03 +00:00
James Lee 1535a79f3a remove debug prints
git-svn-id: file:///home/svn/framework3/trunk@9481 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 05:31:51 +00:00
James Lee b4d7c16c5d no more shelling out to msfpayload, use the proper payload creation methods. this fix also adds support for payloads targetting more than x86 windows
git-svn-id: file:///home/svn/framework3/trunk@9480 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 05:29:56 +00:00
Joshua Drake 619d088ada updated test results
git-svn-id: file:///home/svn/framework3/trunk@9477 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:55:17 +00:00
Joshua Drake d26ebfa365 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9476 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:31:21 +00:00
Joshua Drake 07ed2d636c add browser version of cve-2010-1297
git-svn-id: file:///home/svn/framework3/trunk@9475 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:28:05 +00:00
Joshua Drake 1434aa8f23 add fileformat exploit for cve-2010-1297
git-svn-id: file:///home/svn/framework3/trunk@9473 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 19:52:43 +00:00
Steve Tornio bccd9a4b94 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9472 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 14:14:02 +00:00
Tod Beardsley 744dcf9616 Adding attribution tage to axis LFI.
git-svn-id: file:///home/svn/framework3/trunk@9471 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:36:03 +00:00
Tod Beardsley 468aa07f48 Adding Axis LFI module, submitted by Tiago Ferreira. Thanks!
Also normalizing auth info for DB reporting.



git-svn-id: file:///home/svn/framework3/trunk@9470 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:32:27 +00:00
Tod Beardsley 6e98191bdd Adding authentication brute forcer for Apache Axis2, submitted by Leandro Oliveira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9467 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 01:53:54 +00:00
Steve Tornio 3b8319a545 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9465 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:25:04 +00:00
Tod Beardsley 0e442ff74c Adding Tomcat user enumeration module for CVE-2009-0580, submitted by Heyder Andrade. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9464 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:15:49 +00:00
Steve Tornio 922d362fdc add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9463 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:10:08 +00:00
Tod Beardsley 9d1ace25ce Adding BID and CVE to wordpress_login_enum
git-svn-id: file:///home/svn/framework3/trunk@9462 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:43:47 +00:00
Tod Beardsley 336a9bdb37 Adding Wordpress login brute forcer and account enumeration module, submitted by Tiago Ferreira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9461 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:37:56 +00:00
Joshua Drake d8609b85e3 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9460 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 18:41:58 +00:00
Steve Tornio 816a149e2d add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9459 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 18:25:32 +00:00
Tod Beardsley 7677bbedea Dealing with a hung quit state. oof.
git-svn-id: file:///home/svn/framework3/trunk@9458 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 17:27:32 +00:00
HD Moore 74a68138fc Add new context-keyed encoders from Dimitris Glynos ( http://census-labs.com/news/2010/06/04/athcon-2010-update/ )
git-svn-id: file:///home/svn/framework3/trunk@9457 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 16:43:46 +00:00
HD Moore f64604e968 Merge in the evocam module
git-svn-id: file:///home/svn/framework3/trunk@9456 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 16:40:48 +00:00
Tod Beardsley 1500858d2d Fixes #2043. Thanks Heyder!
git-svn-id: file:///home/svn/framework3/trunk@9453 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-08 21:14:19 +00:00
Tod Beardsley dd71e4ac58 Fixes #2034. Adds the SINGLE_SESSION option, adds an ftp_quit method to handle sending QUIT and disconnecting.
git-svn-id: file:///home/svn/framework3/trunk@9451 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-08 16:30:03 +00:00
Tod Beardsley a0e252ad75 See #2034. This adds a pretty decent reconnection handler -- keep trying until you're dropped, so this is handy for sites that greylist the banner display.
Also ensures that anonymous:somebrowserID is always checked.



git-svn-id: file:///home/svn/framework3/trunk@9447 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-07 21:37:29 +00:00
James Lee d655521c93 Clarify description for USER_FILE and PASS_FILE
git-svn-id: file:///home/svn/framework3/trunk@9433 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:30:33 +00:00
James Lee 36041419f9 Clarify description for USER_FILE and PASS_FILE
git-svn-id: file:///home/svn/framework3/trunk@9432 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:26:41 +00:00
Joshua Drake f0c82d8646 add svn keywords
git-svn-id: file:///home/svn/framework3/trunk@9430 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 16:34:37 +00:00
Joshua Drake 4d0a64fcd8 add additional references
git-svn-id: file:///home/svn/framework3/trunk@9429 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 16:34:13 +00:00
Mario Ceballos 167e4289c4 put it back. will not play with svn for a month.
git-svn-id: file:///home/svn/framework3/trunk@9425 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:55:51 +00:00
Mario Ceballos c5925ca37e oops, not yet.
git-svn-id: file:///home/svn/framework3/trunk@9424 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:48:15 +00:00
Mario Ceballos 2444978286 remove it
git-svn-id: file:///home/svn/framework3/trunk@9423 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:46:22 +00:00
Mario Ceballos 2753f076fb move this to the appropiate place.
git-svn-id: file:///home/svn/framework3/trunk@9422 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:43:15 +00:00
Mario Ceballos 2f8c342b54 added initial coverage for BID-39114
git-svn-id: file:///home/svn/framework3/trunk@9419 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 13:36:29 +00:00
Joshua Drake 83af27d0b8 add aux module to trigger cve-2010-2115 from Elliot Cutright
git-svn-id: file:///home/svn/framework3/trunk@9417 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:20:19 +00:00
Joshua Drake b143172fff bump ranking up
git-svn-id: file:///home/svn/framework3/trunk@9416 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:14:59 +00:00
Joshua Drake 26480092e0 add exploit for sompl m3u parsing - from dookie
git-svn-id: file:///home/svn/framework3/trunk@9415 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:11:31 +00:00
Joshua Drake d7f2324b7b update the set_ecx method to work on both win7 and xpsp3
git-svn-id: file:///home/svn/framework3/trunk@9414 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 00:47:14 +00:00
Joshua Drake 7824ab661a style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9412 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:25:29 +00:00
Joshua Drake 55f82f0b09 add open proxy detection aux from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@9411 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:18:00 +00:00
Joshua Drake 716fe39e1f minor whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9410 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:14:20 +00:00
Joshua Drake 8ed40b77a2 add simple smtp fuzzer from justme
git-svn-id: file:///home/svn/framework3/trunk@9409 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:13:12 +00:00
Joshua Drake 0a907a2e6f add exploit for cve-2009-0546
git-svn-id: file:///home/svn/framework3/trunk@9405 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 05:10:45 +00:00