7a9e875a25
use uuid aware generate_uri_uuid_mode
2015-05-22 05:21:08 +01:00
10bd75348c
Merge branch 'upstream/master' into uuid-stagers
2015-05-22 13:07:25 +10:00
a6a274d3a3
Merge recent stager changes
2015-05-22 13:01:45 +10:00
c63077f037
Land #5405 - larger service templates
...
Fixes #5403
2015-05-22 12:33:18 +10:00
9b17b63259
Switch to append mode for x86 service templates, fixes #5403
2015-05-21 20:42:20 -05:00
ea9059f930
Fix broken endian specification (<I vs I<)
2015-05-21 20:00:22 -05:00
9430d38a09
Adding AVTECH744_DVR Module
...
This module retrieves account information from
an AVTECH 744 DVR, including username, cleartext
password, account role, and the device PIN.
2015-05-21 16:33:06 -05:00
e1f10772b3
Use create_cracked_credential
2015-05-21 16:30:42 -05:00
305da46491
Land #5301 , @m-1-k-3's aux module to extract passwords from Netgear soap interfaces
2015-05-21 16:07:05 -05:00
f35d7a85d3
Adjust numbers
2015-05-21 15:56:11 -05:00
4890882beb
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2015-05-21 15:03:17 -05:00
6da94b1dd5
Deprecate windows module
2015-05-21 15:01:41 -05:00
a8e9b0fb54
Update ActionScript
2015-05-21 14:58:38 -05:00
80d4f3cfb0
Update swf
2015-05-21 14:55:00 -05:00
13e673cc7e
Land #5400 , bump metasploit_data_models
2015-05-21 14:27:26 -05:00
b9f9647ab1
Use all the BES power
2015-05-21 14:06:41 -05:00
91c26643dc
Add polymorphic relationship to Mdm::Vuln
...
and :origin
MSP-12395
* update db/schema.rb
2015-05-21 13:39:25 -05:00
7d46f428e8
Add polymorphic relationship to Mdm::Vuln
...
and :origin
MSP-12395
* Update Gemfile.lock to use metasploit_data_models 1.1.0,
which support the polymorphic relationship
2015-05-21 13:18:38 -05:00
4a5d2d1d24
Revert BrowserExploitServer mixin
2015-05-21 13:18:15 -05:00
c7df2c7cf1
Update the gemspecs for recog 2.0 / mdm 1.2.0
2015-05-21 12:55:24 -05:00
c29bb35e28
Change datastore name
2015-05-21 10:15:03 -05:00
356f361b40
add sid to the the yard docs
...
you win this round OJ ;)
MSP-12722
2015-05-21 09:30:09 -05:00
d9d8634948
Changes the message displayed when vulnerable
2015-05-21 08:46:16 +01:00
5fce00f827
Land #5395 , fixes #5378 , corrects search -S
2015-05-21 01:14:46 -05:00
ee1a366e2b
Use select with ActiveRecord::Associations::CollectionProxy for subset selection
2015-05-21 11:04:03 +05:00
eac1663fed
Ensure that the base directory exists before creating the file
2015-05-21 00:40:49 -05:00
4622fa60eb
Register the init_* URLs and whitelist these
2015-05-21 00:22:41 -05:00
27406204ed
Disable payload UUID registration by default
2015-05-20 23:56:15 -05:00
e07576ce20
Indicate whether a session has a registered UUID
2015-05-20 23:55:49 -05:00
bdf30dd383
Land #5374 , --smallest option in msfvenom
2015-05-20 21:06:10 -05:00
a8d111ce89
Merge branch 'master' into feature/uuid-registration
2015-05-20 19:48:39 -05:00
ac0004ea0a
Implement IgnoreUnknownPayloads
2015-05-20 19:47:17 -05:00
aa919da84d
Add the multiplatform exploit
2015-05-20 18:57:59 -05:00
8d6cbf0568
Make adobe_flash_uncompress_zlib_af multiplatform
2015-05-20 18:57:37 -05:00
0fc8abc6a7
Land #5341 , session command search and Rex table improvements
2015-05-20 17:28:21 -05:00
2cadd5e658
Resolve #5373 , Add ActiveX info in BrowserRequirements
...
Resolve #5373
2015-05-20 16:34:09 -05:00
b9ac612db1
Land #5358 , set uniqueness constraint on http title notes
2015-05-20 16:30:03 -05:00
a4df3468de
unique: should be update:, include uri in data hash
2015-05-20 16:20:09 -05:00
c85b82e8a7
Merge branch 'master' into land-5358-notes
2015-05-20 16:02:59 -05:00
4f6fe2abce
Avoids swallowing exceptions
2015-05-20 21:36:03 +01:00
93900087c7
Resolve #5219 , user-configurable HTTP timeout
...
Resolve #5219
2015-05-20 13:30:45 -05:00
e34c751034
only use regex matches if they are specified
2015-05-20 12:22:36 -05:00
202a77fc12
Improves detection of the MS15-034
2015-05-20 18:08:00 +01:00
23c77adc68
Land #5377 , Update cred reporting method for http_ntlm
2015-05-20 11:57:42 -05:00
e9be0d3f7a
Allow cmd_arp to use -S flag
...
Allow searching for regex' through ARP output using Table's new
'SearchTerm' parameter.
Example:
```
meterpreter > arp -S 10.2.1.1
ARP cache
=========
IP address MAC address Interface
---------- ----------- ---------
10.2.1.1 00:01:02:03:04:05 15
```
2015-05-20 11:26:06 -05:00
b20c1c51b5
Import -S option for netstat
...
Allow searching through netstat output tables for specific strings.
Example:
```
meterpreter > netstat -S 192
Connection list
===============
Proto Local address Remote address State User Inode PID/Program name
----- ------------- -------------- ----- ---- ----- ----------------
tcp 10.1.1.20:3389 192.168.100.186:38470 ESTABLISHED 0 0 3076/svchost.exe
tcp 10.1.1.20:63826 192.168.100.186:31158 ESTABLISHED 0 0 4568/powershell.exe
tcp 10.1.1.20:64887 192.168.100.186:31158 ESTABLISHED 0 0 -
```
2015-05-20 11:26:06 -05:00
e4165d3ae0
whitespace fixes
...
from @sempervictus
2015-05-20 11:26:04 -05:00
66bd881ac5
support filtering on processes with a regex
...
from @sempervictus
Merge forked changes to cmd_ps allowing for the use of string
matching on listing output via Rex::Ui::Text::Table's SearchTerm
facility
Example:
```
meterpreter > ps -S x64.*Auth.*Sys
Process list
============
PID Name Arch Session User Path
--- ---- ---- ------- ---- ----
400 smss.exe x64 0 NT AUTHORITY\SYSTEM C:\Windows\System32\smss.exe
...
```
2015-05-20 11:25:56 -05:00
d97ad5f8e4
support more consistent table output formatting
...
from @sempervictus
2015-05-20 11:25:55 -05:00
8a0bb6735e
support creating Rex Tables from CSV
...
from @sempervictus
2015-05-20 11:25:53 -05:00
Tim
OJ
HD Moore
Nicholas Starke
jvazquez-r7
Samuel Huckins
Brent Cook
Sonny Gonzalez
wchen-r7
David Maloney
erwanlr
root
RageLtMan