75e31c252e
added rex table for nas settings, still working on users and hashes rex table
2015-12-07 14:48:28 -05:00
3d892bd1d6
added rex table for grab_email func instead of printing out values
2015-12-07 10:37:36 -05:00
069a50e1b8
Revert "fixed ddns_creds import issue, by using rhost and commenting why it needs to be used"
...
Reverting to hopefully force a fix for issue #3968
2015-12-07 09:41:46 -05:00
385e5a9fe1
fixed more rubocop issues with the rex table for ddns
2015-12-04 15:28:01 -05:00
4e0ab9b68f
fixed ddns_creds import issue, by using rhost and commenting why it needs to be used
2015-12-04 15:10:02 -05:00
6ce54f15ee
added rex table for ddns func
2015-12-04 14:46:26 -05:00
16e4d6a727
fixedd more rubocop errors, still needs work
2015-12-04 14:08:18 -05:00
1498eebe1b
Merge pull request #1 from jhart-r7/pr/fixup-6241
...
Pr/fixup 6241
2015-12-04 09:44:09 -05:00
72f7efd042
Lots of style cleanup
2015-12-03 15:39:27 -08:00
4b30a56f15
Add a few missing connects
2015-12-03 15:22:27 -08:00
7346c528cd
Fix indentation
2015-12-03 15:21:06 -08:00
6c31946995
Slightly simplify regex
2015-12-03 15:19:35 -08:00
98096ab71c
Remove useless assignment
2015-12-03 15:16:54 -08:00
504f6874f2
Convert to actions
2015-12-03 15:15:48 -08:00
93cd3446db
Minor cleanup of some print_ lines
2015-12-03 15:01:27 -08:00
753eddbbd6
Correct true/false for optional options, default values
2015-12-03 14:53:27 -08:00
9d71ff6b9d
cleaned up a few misc prints and added in logic if mailport is empty
2015-12-03 15:51:49 -05:00
3d617efa88
added code to parse mailport from config
2015-12-03 15:36:08 -05:00
0d89dde4a6
changed sock.get to sock.get_once and fixed booleans hopefully. Still cleaning things up but its getting closer
2015-12-03 12:51:48 -05:00
a8887e6b77
firts iteration of moving each payload to its own function and setting optional vars, cleaning up rubocop warnings as well
2015-12-02 16:33:09 -05:00
ca496a376f
set username as a requirement and added note about randomly assinged password for user if not set
2015-12-02 14:16:36 -05:00
36f48dc945
cleaned up required opts, only left needed vars to run the rest are optional based on user preference
2015-12-01 11:02:14 -05:00
5e9a0ab3ff
removed version var in initialize method
2015-12-01 10:57:16 -05:00
cb60b41d5d
added in fixes and missing typos, randomized the password for the user
2015-12-01 10:43:58 -05:00
5acd9b283e
removed misc comments that arent needed
2015-11-18 11:54:32 -05:00
3d95bd7851
fixed issue with msftidy and fixed rubocop issues that broke the module
2015-11-18 10:40:50 -05:00
e55ac99c12
fixed a bunch more rubocop errors
2015-11-17 14:30:33 -05:00
6e4ccb46e5
knocked out a few more rubocop errors
2015-11-17 11:44:11 -05:00
38c4e4ee6c
added a few more rubocop fixes
2015-11-17 10:48:57 -05:00
f499b822cd
added more rubocop fixes, still testing issue with RHOSTS
2015-11-17 10:30:50 -05:00
afd1e43226
added rubocop fixes
2015-11-17 09:41:12 -05:00
d677a8b871
Adding Dahua DVR auth bypass auxiliary scanner per CVE-2013-6117
2015-11-16 13:54:44 -05:00
06a5b5b0bd
Land #6234 , Host header transport
2015-11-14 11:35:47 -06:00
d0c928081b
Land #6231
2015-11-13 13:30:31 -08:00
4401c6f1fd
Land #6178 , rsync modules_list improvements
2015-11-13 10:46:24 -06:00
cd4aa28d11
Transport priority changes
...
Pass in the "lhost" and "lport" options to the default transport during the native payload. This takes the following LHOST priorities:
1. OverrideLHOST, only if OverrideRequestHost is TRUE
2. The request Host: header.
3. The LHOST datastore.
2015-11-13 13:21:46 +00:00
9d9865150b
Transport priority changes
...
Default transport request should set the priority to the Host: request header, and the subsequent OverrideRequestHost, OverrideLHOST, and OverrideLPORT options in the handler for reverse_http(s).
2015-11-13 13:19:01 +00:00
9a0f0a7843
Land #6142 , uptime refactor
2015-11-12 16:58:55 -06:00
0e121df69d
Need a default template
...
The set_template_default actually needs the second argument,
otherwise we hit a RuntimeError.
2015-11-12 15:17:03 -06:00
aaea730508
Fix #6213 - Method to_linux_x86_elf fails to set set :template
...
:template by default is just the base name of the file, not the
fullname. Before we use it, we need to normalize it. Methods
in this class rely on set_template_default for normalization (
which can also handle a custom path), so we'll just use that too.
Fix #6213
2015-11-12 15:07:58 -06:00
ee25cb88b5
Land #6196 , vBulletin 5.1.2 Unserialize Code Execution
2015-11-12 14:38:39 -06:00
6077617bfd
rm res var name
...
the res variable isn't used
2015-11-12 14:37:47 -06:00
199ed9ed25
Move vbulletin_unserialize.rb to exploits/multi/http/
...
According to @all3g, this works on Windows too, so we will move
this to multi/http.
2015-11-12 14:36:01 -06:00
e8dacf32fd
Land #6182 , Heartbleed scanner improvements
2015-11-11 16:59:20 -06:00
ce3f9e2fab
Fix minor style issues
2015-11-11 16:58:20 -06:00
a2fe2fbd5e
Land #6214 , #6060 , simplify framework gem layout and version scheme
...
This merges things up and removes duplicate gemspecs so we can easily make
framework gem releases for embedding in 3rd-party projects.
2015-11-11 15:04:21 -06:00
1b951b36fe
remove -db / -pcap / -all gemspecs, merge into one
2015-11-11 15:01:50 -06:00
99607e6e4d
Land #6205 , BisonWare BisonFTP Server Directory Traversal
...
CVE-2015-7602
2015-11-11 11:47:45 -06:00
40bdd2bd01
Do module cleanup for auxiliary/scanner/ftp/bison_ftp_traversal
2015-11-11 11:46:37 -06:00
c79a66be02
Land #6204 , directory traversal for PCMan FTP server
...
CVE-2015-7601
2015-11-11 11:07:34 -06:00
Tyler Bennett
talos-arch3y
Jon Hart
scriptjunkie
William Vu
sammbertram
Louis Sato
wchen-r7
Brent Cook