fa1680b262
added exploit module ms08_059_his2006.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5760 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-15 22:41:01 +00:00
b1349daf8f
updated with new module format.
...
git-svn-id: file:///home/svn/framework3/trunk@5759 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-15 22:25:35 +00:00
1503250a5b
added aux module open_x11.rb provided by tebo.
...
git-svn-id: file:///home/svn/framework3/trunk@5758 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-15 15:15:29 +00:00
f59a3f04b2
Commit the simple tcp port scanner
...
git-svn-id: file:///home/svn/framework3/trunk@5757 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-15 14:00:56 +00:00
727f893ad8
added exploit module quick_tftp_pro_mode.rb from Patrik Wellsly.
...
git-svn-id: file:///home/svn/framework3/trunk@5756 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-15 11:21:06 +00:00
6cfdb104c4
Added titan626_site.rb module from Kris Katterjohn
...
git-svn-id: file:///home/svn/framework3/trunk@5755 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-15 04:23:05 +00:00
fd95f81cd6
added exploit module systemrequirementslab_unsafe.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5754 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-14 19:19:39 +00:00
86148b4802
Added patch and module from Kris Katterjohn
...
git-svn-id: file:///home/svn/framework3/trunk@5752 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-14 14:25:41 +00:00
8d760ebc1e
Added patch and module from Kris Katterjohn
...
git-svn-id: file:///home/svn/framework3/trunk@5751 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-14 14:22:34 +00:00
b508358132
added exploit modules lpviewer_url.rb and softartisans_getdrivename.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5750 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-14 13:41:52 +00:00
c178428bc6
added aux module xmeasy560_nlst.rb from Kris Katterjohn
...
git-svn-id: file:///home/svn/framework3/trunk@5749 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-13 23:52:08 +00:00
e016ff2d76
cleanup patch from antoine
...
git-svn-id: file:///home/svn/framework3/trunk@5748 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-13 14:22:38 +00:00
4c091edac1
fixes #198 ; generic php eval exploit
...
git-svn-id: file:///home/svn/framework3/trunk@5746 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-13 05:55:10 +00:00
76dc2920d5
implemented in lib/msf/core/payload/php.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5745 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-13 05:49:11 +00:00
38b565399e
actually randomize myexec function name
...
git-svn-id: file:///home/svn/framework3/trunk@5744 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-13 05:31:36 +00:00
a7a7da9e28
Newer mercury module, more reliable using 0x0c0c0c0c return
...
git-svn-id: file:///home/svn/framework3/trunk@5742 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-12 17:11:14 +00:00
478c8b0824
Added wmap simple directoty listing module
...
git-svn-id: file:///home/svn/framework3/trunk@5741 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-12 04:59:39 +00:00
b1f3c83f7b
add support for finding .swp files
...
git-svn-id: file:///home/svn/framework3/trunk@5739 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-11 06:38:28 +00:00
de780fb2da
typo fix
...
git-svn-id: file:///home/svn/framework3/trunk@5738 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-11 05:49:27 +00:00
d7e706f6af
added aux module alphastor_librarymanager_exec.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5737 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-11 00:56:47 +00:00
2977f0741c
added aux module alphastor_librarymanager.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5735 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 15:28:01 +00:00
7e5c759dd0
Fixed and reference to browser autopwn.
...
git-svn-id: file:///home/svn/framework3/trunk@5733 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 04:25:18 +00:00
929ba19cc7
Switch packet dcoding from scruby to packetfu
...
git-svn-id: file:///home/svn/framework3/trunk@5728 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 02:26:05 +00:00
386eac82fa
fixer.
...
git-svn-id: file:///home/svn/framework3/trunk@5725 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 00:17:44 +00:00
48667711e6
added aux module alphastor_devicemanager.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5724 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-09 23:53:54 +00:00
7d85b1d198
Added Medal of Honor module from Jacopo Cervini.
...
git-svn-id: file:///home/svn/framework3/trunk@5721 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-07 12:03:12 +00:00
35240108de
Added patch and module from Kris Katterjohn
...
git-svn-id: file:///home/svn/framework3/trunk@5720 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-06 13:16:08 +00:00
183830fab5
Make the MSSQL scanner a little better for automation
...
git-svn-id: file:///home/svn/framework3/trunk@5716 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-04 21:55:26 +00:00
02780a1d88
Improvements to the FTP mixin and scanner, still needs multiline read support
...
git-svn-id: file:///home/svn/framework3/trunk@5715 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-04 21:42:37 +00:00
2965f3b238
updated with better coverage.
...
git-svn-id: file:///home/svn/framework3/trunk@5712 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-04 12:00:43 +00:00
c1aa7babb7
Add the telnet capture module from Kris Katterjohn
...
git-svn-id: file:///home/svn/framework3/trunk@5711 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-02 22:43:20 +00:00
6ad1a82101
fixed tabbing.
...
git-svn-id: file:///home/svn/framework3/trunk@5710 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-02 15:48:25 +00:00
fd256ec4a1
This massive commit changes the metasploit 3 module format. The new syntax allows for greater scalability and future improvements to the metasploit module loader. This change also makes it easier for users to add new modules, since the class name no longer needs to match the directory structure.
...
git-svn-id: file:///home/svn/framework3/trunk@5709 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-02 05:23:59 +00:00
67a25b6ce8
added exploit modules ms08_053_mediaencoder.rb, macrovision_unsafe.rb and
...
ms08_041_snapshotviewer.rb
git-svn-id: file:///home/svn/framework3/trunk@5707 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-01 22:40:57 +00:00
422e58c51f
Close the listening socket, allows the same shellcode to beused on the same port repeatedly, thanks antoine!
...
git-svn-id: file:///home/svn/framework3/trunk@5705 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-01 16:16:34 +00:00
fa3ce57fed
Implemented Auxiliary::WMAPScanUniqueQuery.
...
git-svn-id: file:///home/svn/framework3/trunk@5704 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-01 03:57:57 +00:00
cef8153df2
add aux module from Kris Katterjohn.
...
git-svn-id: file:///home/svn/framework3/trunk@5703 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-30 23:28:24 +00:00
647118f333
remove debug statements, add disabled_functions evasion in php findsock stuff
...
git-svn-id: file:///home/svn/framework3/trunk@5700 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-30 19:56:16 +00:00
12af69ed03
added exploit module realwin.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5699 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-30 13:32:29 +00:00
a4ee57c476
Applied patch from Kris Katterjohn to to correct the status message printed for logins.
...
git-svn-id: file:///home/svn/framework3/trunk@5697 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-30 01:50:08 +00:00
36a06e7576
initial commit of php findsock. This patch makes all http connections global and removes the "close if (!pipelining)" checks, so beware of bugs.
...
git-svn-id: file:///home/svn/framework3/trunk@5678 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-24 04:41:51 +00:00
b001e4684d
Import first version of WMAP from ET LoWNOISE
...
git-svn-id: file:///home/svn/framework3/trunk@5675 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-22 22:32:20 +00:00
b0225127cf
Patch for Ruby 1.9 compat (not there yet)
...
git-svn-id: file:///home/svn/framework3/trunk@5674 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-22 15:52:18 +00:00
309618a3f8
Fixed indentation
...
git-svn-id: file:///home/svn/framework3/trunk@5673 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-21 21:59:15 +00:00
40b8f1896e
Moving it in again. Thanks antoine for the fix!
...
git-svn-id: file:///home/svn/framework3/trunk@5672 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-21 19:35:27 +00:00
89ba4c289c
Moving out temporarily
...
git-svn-id: file:///home/svn/framework3/trunk@5671 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-20 18:18:29 +00:00
590ac24121
Moving out temporarily
...
git-svn-id: file:///home/svn/framework3/trunk@5670 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-20 18:17:05 +00:00
58cef5775e
Added ARCH_POWER constant and fixed AIX payload modules
...
git-svn-id: file:///home/svn/framework3/trunk@5663 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-17 01:42:51 +00:00
07c838e4e0
Merge patch and module from Robert, adds a x86 int3 payload for debugging, patches for the testsrv
...
git-svn-id: file:///home/svn/framework3/trunk@5660 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-15 19:38:50 +00:00
87c9cd9547
New module from Julien TINNES for Linksys Apply.CGI overflow
...
git-svn-id: file:///home/svn/framework3/trunk@5659 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-15 18:51:45 +00:00
6772685f3e
Merge patch from Julien TINNES for MIPS support (LE/BE)
...
git-svn-id: file:///home/svn/framework3/trunk@5658 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-15 18:50:34 +00:00
8e97503333
fix bug where random URIPATHs sent 404 instead of exploits
...
git-svn-id: file:///home/svn/framework3/trunk@5657 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-13 04:07:28 +00:00
4dd9b23f37
Added AIX POWER/PowerPC payload modules
...
git-svn-id: file:///home/svn/framework3/trunk@5655 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-10 20:15:38 +00:00
f0976fad87
avoid logging socket errors
...
git-svn-id: file:///home/svn/framework3/trunk@5651 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-04 03:52:02 +00:00
1ef66ec2ff
added auxiliary/exploits modules for emc alphastor.
...
git-svn-id: file:///home/svn/framework3/trunk@5649 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-01 11:28:55 +00:00
49e0daf140
bug fix for firefox 1.0; minor code cleanup, better naming
...
git-svn-id: file:///home/svn/framework3/trunk@5648 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-01 05:19:28 +00:00
98632ac069
add simple command execution payload for php
...
git-svn-id: file:///home/svn/framework3/trunk@5646 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-01 04:41:18 +00:00
d53dd66701
Adds initial support for IPv6, including two stager. Tested Meterpreter over IPv6 stages on XP and Vista. Using this is still tricky, I will add a wiki page tomorrow to explain the ScopeID stuff for link-local testing. This commit also includes the raw (oversized) assembler for the stagers as well as the entire old metasploit assembly set (useful for development).
...
git-svn-id: file:///home/svn/framework3/trunk@5635 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-22 06:34:57 +00:00
e203311af7
updated references for ms06_066
...
git-svn-id: file:///home/svn/framework3/trunk@5630 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-15 15:46:47 +00:00
cb2efe6356
Swap the new NX-enabled stagers for the old ones, keep the old ones since they are still much smaller.
...
git-svn-id: file:///home/svn/framework3/trunk@5628 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-13 01:49:07 +00:00
33afd40526
added exploit module nowsms.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5626 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-11 23:48:45 +00:00
fae008d1b0
Adds the bind_nx_tcp stager (NX support)
...
git-svn-id: file:///home/svn/framework3/trunk@5625 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-11 22:51:28 +00:00
eaa91fd8f4
Adds a reverse_tcp stager that downloads the stage into a RWX page created with VirtualAlloc. Results in NX support
...
git-svn-id: file:///home/svn/framework3/trunk@5624 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-11 22:41:35 +00:00
9159623ec2
Added ms00_094_pbserver.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5622 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-10 10:12:45 +00:00
eae5315ab7
Apply patch for disabling console logging of DNS requests
...
git-svn-id: file:///home/svn/framework3/trunk@5621 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-08 21:20:25 +00:00
83248c3d60
Better parsing in proxy mode, ignore checkbox values
...
git-svn-id: file:///home/svn/framework3/trunk@5620 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-08 06:38:59 +00:00
cc8ae206b6
First batch of karmetasploit updates
...
git-svn-id: file:///home/svn/framework3/trunk@5618 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-08 06:00:30 +00:00
bfa20906fb
Fix a bug in fakedns when TARGETHOST is not an IP address
...
git-svn-id: file:///home/svn/framework3/trunk@5616 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-08 03:46:07 +00:00
3cf81f257e
Ensure that the Content-Type is set to text/html by default.
...
git-svn-id: file:///home/svn/framework3/trunk@5615 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-08 02:37:54 +00:00
8fb167d7ff
added exploit module lgserver_rxsuselicenseini.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5614 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-02 15:03:13 +00:00
a212bfba99
fix PrepenEncoder typo, replace it with 'StackAdjustment' => -3500
...
git-svn-id: file:///home/svn/framework3/trunk@5613 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-01 20:04:42 +00:00
a97dbb0106
fix missing semicolon in js
...
git-svn-id: file:///home/svn/framework3/trunk@5612 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-01 02:48:32 +00:00
c3c53cae67
Adds a simplistic DNS diffing module. Useful for looking for poisoned cache servers and geo-location enabled DNS.
...
git-svn-id: file:///home/svn/framework3/trunk@5610 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-29 22:09:49 +00:00
ed3ab97100
Better randomization of the hostname element
...
git-svn-id: file:///home/svn/framework3/trunk@5609 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-28 18:51:24 +00:00
5371549968
Remove the static (and quite obvious) TTL from the requests
...
git-svn-id: file:///home/svn/framework3/trunk@5608 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-28 18:49:39 +00:00
f589f5cdb8
Fix an exception when the cached entry is a non-A, better descriptions for the timing detection
...
git-svn-id: file:///home/svn/framework3/trunk@5607 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-28 05:05:04 +00:00
ee0f6ed5cc
module update from Elazar Broad.
...
git-svn-id: file:///home/svn/framework3/trunk@5606 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-27 11:23:42 +00:00
a531785372
Better check method
...
git-svn-id: file:///home/svn/framework3/trunk@5605 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-26 21:09:36 +00:00
b4fc255a41
Adds an option to randomize the source address of the queries as well as some cosmetic changes. The tuning code should be forwarding queries properly now.
...
git-svn-id: file:///home/svn/framework3/trunk@5602 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-26 04:35:28 +00:00
9b56053974
Add timestamps, researching something
...
git-svn-id: file:///home/svn/framework3/trunk@5601 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-26 03:16:25 +00:00
afa0623e6e
Better logging
...
git-svn-id: file:///home/svn/framework3/trunk@5600 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-26 02:59:56 +00:00
067d19051e
Do not reply to non TXT records for now
...
git-svn-id: file:///home/svn/framework3/trunk@5599 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-26 02:53:49 +00:00
6c0356e9e0
This patch changes how we determine the number of spoofed replies to send to each query. When XIDS is set to zero (now the default), the code will now determine the length of time it takes for the target server to query the real nameserver for the target domain. This leads to much more accurate testing and is recalculated every 1000 attempts to handle servers which change under load.
...
git-svn-id: file:///home/svn/framework3/trunk@5597 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-25 22:01:12 +00:00
07f2ece645
Fix authoritativeness check
...
git-svn-id: file:///home/svn/framework3/trunk@5593 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 22:26:02 +00:00
1e0e99259b
Test commit to verify my new account.
...
git-svn-id: file:///home/svn/framework3/trunk@5592 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 20:21:47 +00:00
204072159a
Credit Cedric for his help in implementing the NS injection/domain module. Thanks again!
...
git-svn-id: file:///home/svn/framework3/trunk@5591 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 04:29:14 +00:00
360f13d11e
Tweak the XIDs again (this seems better), correct the module descriptions
...
git-svn-id: file:///home/svn/framework3/trunk@5590 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 03:53:35 +00:00
e2f8704aac
Be nice to Dan's server :P
...
git-svn-id: file:///home/svn/framework3/trunk@5589 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 03:15:59 +00:00
04420662df
Be more accomodating of longer domains
...
git-svn-id: file:///home/svn/framework3/trunk@5588 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 02:44:16 +00:00
1c6b3581de
Adds the domain version of this exploit, which replaces the cached nameservers with the one we specify.
...
git-svn-id: file:///home/svn/framework3/trunk@5587 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 02:40:48 +00:00
b2f2e4cab6
Correct the TTL variable usage (was getting squished and then setting way too low TTLs)
...
git-svn-id: file:///home/svn/framework3/trunk@5586 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-24 01:15:12 +00:00
e0bdbacb5d
Better XID mixing
...
git-svn-id: file:///home/svn/framework3/trunk@5585 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 23:09:21 +00:00
255998f3b3
set HOSTNAME pwned.doxpara.com
...
git-svn-id: file:///home/svn/framework3/trunk@5584 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 22:47:36 +00:00
8948ac5f2a
Proper spelling for the win.
...
git-svn-id: file:///home/svn/framework3/trunk@5583 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 22:23:43 +00:00
4f67ae9186
Log the name correctly and fix the whitespace issues
...
git-svn-id: file:///home/svn/framework3/trunk@5582 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 21:59:57 +00:00
b9fc41cf9c
Indentation
...
git-svn-id: file:///home/svn/framework3/trunk@5581 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 21:40:58 +00:00
b9b0f05add
Correct the advisory URL
...
git-svn-id: file:///home/svn/framework3/trunk@5580 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 21:21:41 +00:00
c7ba912c94
ZOMG. What is this? >:-)
...
git-svn-id: file:///home/svn/framework3/trunk@5579 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 21:15:50 +00:00
e0f773d14d
Lower the ttl
...
git-svn-id: file:///home/svn/framework3/trunk@5576 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 17:46:07 +00:00
5cfdffc395
add ie_createobject to browser_autpwn
...
git-svn-id: file:///home/svn/framework3/trunk@5573 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 08:26:42 +00:00
10f57cedcd
fix stupid missing quote bug, thanks MC
...
git-svn-id: file:///home/svn/framework3/trunk@5571 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 06:06:41 +00:00
894606aab4
bug fix in javascript
...
git-svn-id: file:///home/svn/framework3/trunk@5570 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 00:55:21 +00:00
627999574a
added aux module for the ldap bug in wireshark.
...
git-svn-id: file:///home/svn/framework3/trunk@5569 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-22 23:49:05 +00:00
43f9501c52
Adds a new module that demonstrates IP spoofing.
...
git-svn-id: file:///home/svn/framework3/trunk@5567 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-22 19:37:05 +00:00
e5018eeec8
Adds a helper service for finding a DNS server's source port
...
git-svn-id: file:///home/svn/framework3/trunk@5564 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-22 15:51:01 +00:00
2d344e64df
browser_autopwn now works with mozilla_compareto, mozilla_navigatorjava, and firefox_queryinterface; increased reliability of OS and browser detection
...
git-svn-id: file:///home/svn/framework3/trunk@5563 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-22 07:28:05 +00:00
6e212a5981
I'm on crack. mozilla_navigatorjava is the one that works on 1.5.0.5; reverting from 5559
...
git-svn-id: file:///home/svn/framework3/trunk@5562 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-22 06:02:03 +00:00
3effb133cc
Added spamassassin_exec module.
...
git-svn-id: file:///home/svn/framework3/trunk@5560 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-19 15:40:30 +00:00
324703669b
typo fix -- really works on <1.5.0.5, not <1.0.5
...
git-svn-id: file:///home/svn/framework3/trunk@5559 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-19 05:04:33 +00:00
a0a203fba7
don't hang the browser building the exploit buffer if we can't exploit it
...
git-svn-id: file:///home/svn/framework3/trunk@5558 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-19 05:03:01 +00:00
9b3c8e2d72
tebodell's patch to autorun meterpeter scripts on session creation
...
git-svn-id: file:///home/svn/framework3/trunk@5557 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-19 04:52:12 +00:00
45f8b5502f
Try 445 before 139 these days
...
git-svn-id: file:///home/svn/framework3/trunk@5554 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-14 05:37:07 +00:00
798ea895b8
Lots of little tweaks the fake HTTP service
...
git-svn-id: file:///home/svn/framework3/trunk@5553 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-14 05:36:21 +00:00
d9331e8754
Make browser exploits identify themselves for use with browser_autopwn
...
git-svn-id: file:///home/svn/framework3/trunk@5551 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-13 01:36:27 +00:00
301b1514f3
Added pop2 mixin, aux module, typos.
...
git-svn-id: file:///home/svn/framework3/trunk@5550 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-08 14:21:48 +00:00
4459fdd71d
Added imap_uw_lsub.rb module.
...
git-svn-id: file:///home/svn/framework3/trunk@5549 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-06 08:27:41 +00:00
2401799e72
added 2.0 target.
...
git-svn-id: file:///home/svn/framework3/trunk@5548 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-04 11:47:38 +00:00
255ee89873
added exploit module groupwisemessenger_client.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5547 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-03 18:59:29 +00:00
8800372e46
initial commit of browser_autopwn;
...
revamp php payloads;
socks5 for IPv6 (untested)
git-svn-id: file:///home/svn/framework3/trunk@5546 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-01 01:44:56 +00:00
5221b25aba
Check for an empty HTTP request before trying to process it
...
git-svn-id: file:///home/svn/framework3/trunk@5542 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-27 19:57:53 +00:00
d700c51e1a
Updated to not log DNS queries by default
...
git-svn-id: file:///home/svn/framework3/trunk@5540 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-25 23:04:19 +00:00
13859c23d9
added exploit module novelliprint_getdriversettings.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5533 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-19 00:06:18 +00:00
8e7ac6c9ac
added exploit module creative_software_cachefolder.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5531 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-17 15:11:17 +00:00
8414b5bc6a
Added asus module from Jacopo Cervini.
...
git-svn-id: file:///home/svn/framework3/trunk@5529 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-09 05:13:44 +00:00
1c6a33cb01
Added gld_postfix.rb module
...
git-svn-id: file:///home/svn/framework3/trunk@5528 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-07 02:16:34 +00:00
dd643436ee
Module typo correction
...
git-svn-id: file:///home/svn/framework3/trunk@5527 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-06 04:41:05 +00:00
06c6ad6acd
Add riot's DoubleTake exploit. Set the svn:keywords properties where it was missing
...
git-svn-id: file:///home/svn/framework3/trunk@5526 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-06 04:39:44 +00:00
3f519b6d9b
Brightstor module from toto
...
git-svn-id: file:///home/svn/framework3/trunk@5525 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-06 04:30:56 +00:00
ed43da5b07
Modules from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@5524 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-06 04:29:41 +00:00
d437a0edda
Added NTP probe from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@5523 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-06 04:29:19 +00:00
405637297f
Added guestbook_ssi_exec.rb module.
...
git-svn-id: file:///home/svn/framework3/trunk@5517 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-04 12:19:43 +00:00
777095f572
added winvnc_http_get.rb module.
...
git-svn-id: file:///home/svn/framework3/trunk@5516 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-03 14:56:10 +00:00
4aad680752
added exploit module borland_starteam.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5515 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-01 11:42:31 +00:00
d94bfaf373
better support for nx with dllinject payloads/meterp
...
git-svn-id: file:///home/svn/framework3/trunk@5510 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-26 06:34:12 +00:00
2327063569
Added a fix
...
git-svn-id: file:///home/svn/framework3/trunk@5509 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-20 20:55:01 +00:00
2db9dd6ab2
Reversing over greedy commit. =(
...
git-svn-id: file:///home/svn/framework3/trunk@5506 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-17 06:17:41 +00:00
93199c5610
"set foo" prints the value of foo if it exists
...
git-svn-id: file:///home/svn/framework3/trunk@5505 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-17 05:29:32 +00:00
9871f14f32
added exploit module bigant_server.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5503 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-15 00:58:44 +00:00
0adab629ba
Added ntp module, linux egghunter
...
git-svn-id: file:///home/svn/framework3/trunk@5502 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-12 14:49:45 +00:00
477933a0a7
added exploit module lgserver_rxrlogin.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5501 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-05 23:27:33 +00:00
88a04a0ba0
New FrontPage modules from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@5500 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-01 18:53:28 +00:00
899973b7ea
Send 404 when we can't exploit a mozilla browser so client doesn't hang.
...
git-svn-id: file:///home/svn/framework3/trunk@5497 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-26 18:10:41 +00:00
faa5f7c967
randomize_space
...
git-svn-id: file:///home/svn/framework3/trunk@5496 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-25 05:29:29 +00:00
297e4f4b4d
Fork doesn't work on windows
...
git-svn-id: file:///home/svn/framework3/trunk@5495 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-25 04:37:53 +00:00
16170bd716
Let the GUI handle -r, change default window size to fit smaller screens, updated HTTP capture code, added keywords to payload
...
git-svn-id: file:///home/svn/framework3/trunk@5491 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-22 23:20:35 +00:00
84d921633b
Fun with saved passwords
...
git-svn-id: file:///home/svn/framework3/trunk@5490 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-22 18:48:21 +00:00
70fde3052d
Place the UNC url last
...
git-svn-id: file:///home/svn/framework3/trunk@5487 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-21 22:02:39 +00:00
2084024822
Small bugfixes to HTTP capture
...
git-svn-id: file:///home/svn/framework3/trunk@5486 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-21 21:49:10 +00:00
1b96107f3a
Bugfix
...
git-svn-id: file:///home/svn/framework3/trunk@5485 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-21 21:37:40 +00:00
929888a714
Configurable HTTP capture service
...
git-svn-id: file:///home/svn/framework3/trunk@5484 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-21 21:04:11 +00:00
3cdb74e572
Add the CTS/RTS and DEAUTH modules. Improve HTTP capture module error handling
...
git-svn-id: file:///home/svn/framework3/trunk@5483 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-21 05:41:53 +00:00
82330fff7e
Importing two new wireless DoS modules, setting svn:keywords flags where needed.
...
git-svn-id: file:///home/svn/framework3/trunk@5482 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-21 05:27:06 +00:00
46bcd7fa4f
updated to support ca brightstor arcserv 11.5.
...
git-svn-id: file:///home/svn/framework3/trunk@5480 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-20 23:58:21 +00:00
caa9619368
fix the source port for this exploit
...
git-svn-id: file:///home/svn/framework3/trunk@5479 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-20 20:46:11 +00:00
b9f68f1bf9
Added sasser_ftpd_port module port.
...
git-svn-id: file:///home/svn/framework3/trunk@5478 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-19 12:40:50 +00:00
57131f98c3
Adding I)ruids's yp exploit. Fixing a streamserver bug thats been causing problems for a while. Updating the HTTP capture module to do better fingerprinting
...
git-svn-id: file:///home/svn/framework3/trunk@5477 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-18 01:33:09 +00:00
094333edce
Updated targets, references.
...
git-svn-id: file:///home/svn/framework3/trunk@5476 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-16 13:08:11 +00:00
6a329ea831
Update title to match code
...
git-svn-id: file:///home/svn/framework3/trunk@5474 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-14 18:24:06 +00:00
48957744d9
Added exploit module ca_igateway_debug
...
git-svn-id: file:///home/svn/framework3/trunk@5473 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-14 14:14:23 +00:00
c1555ac449
added exploit module etrust_itm_alert.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5472 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-12 02:26:41 +00:00
4b51c4d616
Updated targets for BrightStor.
...
git-svn-id: file:///home/svn/framework3/trunk@5471 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-09 13:04:15 +00:00
ade70d182c
Added tumbleweed_filetransfer module.
...
git-svn-id: file:///home/svn/framework3/trunk@5470 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-07 07:57:10 +00:00
1f6a89b08a
Exploit module from Jacopo Cervini
...
git-svn-id: file:///home/svn/framework3/trunk@5469 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-06 10:45:29 +00:00
06e47726ba
Handle DCERPC reads over SMB pipes in a more efficient fashion. Rename the sadmind exploit, since Solaris is redundant
...
git-svn-id: file:///home/svn/framework3/trunk@5467 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-04 21:15:55 +00:00
6cb21b2dc7
Windows port of the Perl based cmd payloads
...
git-svn-id: file:///home/svn/framework3/trunk@5465 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-03 09:36:01 +00:00
d41a814ed5
added exploit modules mysql_yassl(win32/linux) and realplayer_console from EB.
...
git-svn-id: file:///home/svn/framework3/trunk@5463 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-01 11:22:32 +00:00
9019b077bd
fix timeout issues in reverse php shell
...
git-svn-id: file:///home/svn/framework3/trunk@5461 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-01 02:08:19 +00:00
9c7f5d7130
Simple fix for bad calls to negotiate, remove useless disconnect call in the relay daemon
...
git-svn-id: file:///home/svn/framework3/trunk@5460 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-26 22:36:42 +00:00
00c2355da4
Switch back to client.put
...
git-svn-id: file:///home/svn/framework3/trunk@5459 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-26 22:05:40 +00:00
a018fdc49b
Support a background image
...
git-svn-id: file:///home/svn/framework3/trunk@5458 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-26 22:00:23 +00:00
78f66dc33c
Handle PTR records
...
git-svn-id: file:///home/svn/framework3/trunk@5457 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-24 13:37:41 +00:00
36376e10be
Add sigs for iphone usage
...
git-svn-id: file:///home/svn/framework3/trunk@5455 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-22 07:13:47 +00:00
9b4c7faf6c
Handle STAT and QUIT and RSET and LIST
...
git-svn-id: file:///home/svn/framework3/trunk@5454 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-22 06:52:11 +00:00
44dd367da2
Allow logins and print unhandled commands.
...
git-svn-id: file:///home/svn/framework3/trunk@5453 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-22 06:47:05 +00:00
1ea29ba8f0
Fixes #218 . Updates the http password capture module. Removes a bogus makefile from the tree
...
git-svn-id: file:///home/svn/framework3/trunk@5452 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-22 06:34:52 +00:00
8138c2259f
Busted constant
...
git-svn-id: file:///home/svn/framework3/trunk@5451 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-22 05:40:34 +00:00
7f5d7c5a29
Update payloads from toto
...
git-svn-id: file:///home/svn/framework3/trunk@5449 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-18 15:57:38 +00:00
ba9a415b8e
Added sami_ftpd_user exploit module
...
git-svn-id: file:///home/svn/framework3/trunk@5448 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-17 14:23:01 +00:00
66d8f7e8b6
Added clamav_milter_blackhole.rb exploit module
...
git-svn-id: file:///home/svn/framework3/trunk@5447 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-17 11:51:30 +00:00
cfaa70cf30
New chmod payload from Kris Katterjohn
...
git-svn-id: file:///home/svn/framework3/trunk@5439 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-10 21:21:51 +00:00
1f7eb2147f
phpBB2_highlight module port
...
git-svn-id: file:///home/svn/framework3/trunk@5432 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-05 09:42:57 +00:00
c546d6ec9c
Really fix the empty LHOST bug
...
git-svn-id: file:///home/svn/framework3/trunk@5431 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-04 21:40:04 +00:00
7b10ffbae6
Fix empty LHOST problem and space generation
...
git-svn-id: file:///home/svn/framework3/trunk@5430 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-04 20:50:39 +00:00
dfa0f6c0c4
More reliable reverse shell
...
git-svn-id: file:///home/svn/framework3/trunk@5429 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-04 07:34:26 +00:00
77f431fea3
autoload meterpreter's priv extension if the exploit gave us admin
...
git-svn-id: file:///home/svn/framework3/trunk@5427 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-02 23:07:33 +00:00
09cee75408
Adds the start of a http responder, fixes for dns and smb
...
git-svn-id: file:///home/svn/framework3/trunk@5426 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-02 08:03:27 +00:00
25670d238c
Fake DNS server, spawned from Dino's KARMA DnsService
...
git-svn-id: file:///home/svn/framework3/trunk@5425 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-02 07:24:05 +00:00
509fc09382
Lots of updates related to <secret project X>.
...
git-svn-id: file:///home/svn/framework3/trunk@5424 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-02 04:46:13 +00:00
3e81678f93
added exploit modules winamp_ultravox.rb and
...
novelliprint_executerequest.rb.
git-svn-id: file:///home/svn/framework3/trunk@5423 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-01 17:20:24 +00:00
845af72226
New exploit module from EB.
...
git-svn-id: file:///home/svn/framework3/trunk@5422 4d416f70-5f16-0410-b530-b9f4589650da
2008-03-01 02:02:34 +00:00
6a3ccc2955
Fixes for the JS try/catch from EB.
...
git-svn-id: file:///home/svn/framework3/trunk@5420 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-20 16:45:03 +00:00
93d390e2da
Replacement module (more reliable) from EB
...
git-svn-id: file:///home/svn/framework3/trunk@5416 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-14 16:15:20 +00:00
685241ab31
I suck.
...
git-svn-id: file:///home/svn/framework3/trunk@5414 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-13 16:02:39 +00:00
ffe2fa80d9
added exploit module badblue_passthru.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5412 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-11 15:18:22 +00:00
2dfb607b49
New exploit module from EB and MC
...
git-svn-id: file:///home/svn/framework3/trunk@5410 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-11 02:28:03 +00:00
1ad44793bf
added exploit module saplpd.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5409 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-10 01:48:30 +00:00
d8d9db3299
Fixes #188 . This adds an exec stage to the OSX payloads
...
git-svn-id: file:///home/svn/framework3/trunk@5405 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-09 07:58:38 +00:00
806946b71a
updated return to something more useful.
...
git-svn-id: file:///home/svn/framework3/trunk@5400 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-08 22:54:12 +00:00
f4708d774f
added exploit modules wincomlpd_admin.rb and facebook_extractiptc.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5399 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-07 23:08:14 +00:00
190593479f
Just touching the file so I can pull it in via merge
...
git-svn-id: file:///home/svn/framework3/trunk@5395 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-02 21:33:17 +00:00
fca877cfdd
added exploit module xtacacsd_report.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5390 4d416f70-5f16-0410-b530-b9f4589650da
2008-02-02 16:06:39 +00:00
3110b821b0
Merged revisions 5380-5381 via svnmerge from
...
svn+ssh://metasploit.com/home/svn/framework3/branches/framework-3.1
........
r5381 | hdm | 2008-01-27 21:26:56 -0600 (Sun, 27 Jan 2008) | 3 lines
Update msdns modules to reference the spanish target for 2003
........
git-svn-id: file:///home/svn/framework3/trunk@5382 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-28 03:27:38 +00:00
6677beb174
Merged revisions 5366-5377 via svnmerge from
...
svn+ssh://metasploit.com/home/svn/framework3/branches/framework-3.1
........
r5366 | hdm | 2008-01-26 20:30:53 -0600 (Sat, 26 Jan 2008) | 2 lines
Update version information
........
r5367 | hdm | 2008-01-26 21:10:57 -0600 (Sat, 26 Jan 2008) | 3 lines
Updated for version 3.1
........
r5369 | hdm | 2008-01-26 21:13:31 -0600 (Sat, 26 Jan 2008) | 3 lines
Wipe the private directories from the branch.
........
r5371 | hdm | 2008-01-27 17:24:24 -0600 (Sun, 27 Jan 2008) | 5 lines
Timeout options added for dcerpc connect and read times. Addition of novell netware as a supported target platform. Inclusion of the serverprotect exploit (still works on the latest version). Addition of the first remote netware kernel exploit that leads to a shell, addition of netware stager and shell, and first draft of the release notes for 3.1
........
r5372 | hdm | 2008-01-27 17:30:08 -0600 (Sun, 27 Jan 2008) | 3 lines
Formatting, indentation, fixed the static IP embedded in the request
........
r5373 | hdm | 2008-01-27 20:02:48 -0600 (Sun, 27 Jan 2008) | 3 lines
Correctly trap exploit errors in a way that works with all of the UIs
........
r5374 | hdm | 2008-01-27 20:23:25 -0600 (Sun, 27 Jan 2008) | 3 lines
More last-minute bug fixes
........
r5375 | hdm | 2008-01-27 20:37:43 -0600 (Sun, 27 Jan 2008) | 3 lines
Force multi-bind off in netware, correct label display in gtk gui labels
........
r5376 | hdm | 2008-01-27 20:50:03 -0600 (Sun, 27 Jan 2008) | 3 lines
More exception handling fun
........
git-svn-id: file:///home/svn/framework3/trunk@5378 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-28 03:06:31 +00:00
9b6b0990b1
Correct the cve reference format
...
git-svn-id: file:///home/svn/framework3/trunk@5364 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-27 02:13:54 +00:00
eec19d108e
Handling empty strings as a valid required option is tricky, just make the password option non-required
...
git-svn-id: file:///home/svn/framework3/trunk@5363 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-27 02:08:13 +00:00
557a7bad9c
Set the defaults for psexec to Administrator/""
...
git-svn-id: file:///home/svn/framework3/trunk@5361 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-27 02:06:02 +00:00
31d121da82
Speedup to local relay
...
git-svn-id: file:///home/svn/framework3/trunk@5358 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-26 22:17:59 +00:00
d931374844
Add -f to generate. Add SMBUser/SMBPass options to psexec (regular vs advanced)
...
git-svn-id: file:///home/svn/framework3/trunk@5354 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-25 23:24:06 +00:00
9d2abb9287
The capture mixin is now working again (with scruby)
...
git-svn-id: file:///home/svn/framework3/trunk@5352 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-25 05:59:06 +00:00
f0f7c03f06
Handle weird socket errors better
...
git-svn-id: file:///home/svn/framework3/trunk@5347 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-25 04:47:56 +00:00
3af853fa56
Print the IP along with the result
...
git-svn-id: file:///home/svn/framework3/trunk@5340 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-24 05:45:18 +00:00
6e42e86e9d
Complete move of test modules to test subdirectory
...
git-svn-id: file:///home/svn/framework3/trunk@5330 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:28:12 +00:00
b5177e1dae
module reoi
...
git-svn-id: file:///home/svn/framework3/trunk@5329 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:26:52 +00:00
d514dc1c3d
Relocation
...
git-svn-id: file:///home/svn/framework3/trunk@5328 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:25:06 +00:00
93f80dd562
Minor update for capture backend
...
git-svn-id: file:///home/svn/framework3/trunk@5326 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:23:52 +00:00
e189b2f6cd
More better randomization
...
git-svn-id: file:///home/svn/framework3/trunk@5325 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:22:36 +00:00
4f45051b18
Supress errors
...
git-svn-id: file:///home/svn/framework3/trunk@5324 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-22 06:21:03 +00:00
931aec0a9f
added auxiliary module maxdb_cons_exec.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5294 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-20 22:52:05 +00:00
c07105c70a
updated.
...
git-svn-id: file:///home/svn/framework3/trunk@5292 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-13 14:44:29 +00:00
be39365331
updated.
...
git-svn-id: file:///home/svn/framework3/trunk@5291 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-13 14:44:01 +00:00
f47d2660ec
added exploit module ms07_064_sami.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5290 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-12 14:11:31 +00:00
81b677820c
New module from antoine
...
git-svn-id: file:///home/svn/framework3/trunk@5282 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-06 22:02:01 +00:00
71c632c9c3
Typo
...
git-svn-id: file:///home/svn/framework3/trunk@5281 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-06 21:56:21 +00:00
45bfed7eaf
More handled error cases
...
git-svn-id: file:///home/svn/framework3/trunk@5280 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-06 21:55:40 +00:00
f6327e74ac
Log the class name of exceptions
...
git-svn-id: file:///home/svn/framework3/trunk@5279 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-06 21:52:59 +00:00
22655fb651
added default RPORT.
...
git-svn-id: file:///home/svn/framework3/trunk@5269 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-06 14:46:01 +00:00
04a8a58ad9
Bugfix from h2h2
...
git-svn-id: file:///home/svn/framework3/trunk@5268 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-02 23:55:02 +00:00
9994c385ee
add french target
...
git-svn-id: file:///home/svn/framework3/trunk@5257 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-31 16:57:56 +00:00
2d5be3df04
add french target
...
git-svn-id: file:///home/svn/framework3/trunk@5256 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-31 16:57:13 +00:00
17ce70f24b
change spaces to tabs
...
git-svn-id: file:///home/svn/framework3/trunk@5241 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-31 03:03:08 +00:00
5eda38fa5f
IE6...
...
git-svn-id: file:///home/svn/framework3/trunk@5225 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-27 01:29:04 +00:00
29569b6689
added exploit module hploadrunner.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5224 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-27 00:34:33 +00:00
c09840e49e
added exploit module macrovision_downloadandexecute.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5223 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-26 12:17:05 +00:00
8da8522fc1
New module from <yann.senotier@cyber-networks.fr>
...
git-svn-id: file:///home/svn/framework3/trunk@5222 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-18 04:39:59 +00:00
27b6680f2a
New exploit module from Moritz Jodeit <moritz@jodeit.org>
...
git-svn-id: file:///home/svn/framework3/trunk@5221 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-18 04:30:12 +00:00
1b2c154ddb
Added module based on full-dis post, maybe it works? :)
...
git-svn-id: file:///home/svn/framework3/trunk@5220 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-18 04:04:51 +00:00
8393f4fc38
added exploit module hp_nnm.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5219 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-17 23:47:14 +00:00
cde3a61065
Calculate offset based on name length
...
git-svn-id: file:///home/svn/framework3/trunk@5218 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-12 22:50:54 +00:00
204d488778
Coverage for MS07_065
...
git-svn-id: file:///home/svn/framework3/trunk@5217 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-12 22:06:21 +00:00
0eaeb4288d
Same bug as mailapp_image_exec.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5215 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-10 17:25:14 +00:00
cad72d16e4
Add the stackadjustment parameter
...
git-svn-id: file:///home/svn/framework3/trunk@5214 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-04 20:13:50 +00:00
f2103a4a93
added exploit module realplayer_import.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5213 4d416f70-5f16-0410-b530-b9f4589650da
2007-12-02 17:58:44 +00:00
3a06bf9ad5
Remove julien's test path :)
...
git-svn-id: file:///home/svn/framework3/trunk@5211 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-30 20:21:24 +00:00
9b343c7149
New mail.app exploit for leopard
...
git-svn-id: file:///home/svn/framework3/trunk@5209 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-28 22:23:31 +00:00
2c7b3a7bfd
updated.. thanks grutz!
...
git-svn-id: file:///home/svn/framework3/trunk@5207 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 23:43:23 +00:00
29f382b95c
Adds support for shellcode payloads via exe wrappers (targets 1/2)
...
git-svn-id: file:///home/svn/framework3/trunk@5206 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 22:29:07 +00:00
5ebeacda65
Automaticalyl use the ipwn file path
...
git-svn-id: file:///home/svn/framework3/trunk@5204 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 22:22:18 +00:00
2ab4819cd2
added exploit module apple_quicktime_rtsp_response.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5200 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 14:41:16 +00:00
393bc0e78c
Add the content-Id on its own line
...
git-svn-id: file:///home/svn/framework3/trunk@5199 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 06:11:10 +00:00
eedc8054d6
Back to 7bit
...
git-svn-id: file:///home/svn/framework3/trunk@5198 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 05:52:32 +00:00
c9147e0659
Adding the content-id
...
git-svn-id: file:///home/svn/framework3/trunk@5197 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 05:44:10 +00:00
f1f4337ac5
Typo
...
git-svn-id: file:///home/svn/framework3/trunk@5196 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 05:38:56 +00:00
033344b686
This one might actually work :-) Credit to KF
...
git-svn-id: file:///home/svn/framework3/trunk@5195 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-26 05:37:49 +00:00
084aed0218
Adds support for the old mail.app exploit which affects leapord.
...
git-svn-id: file:///home/svn/framework3/trunk@5194 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-21 17:30:51 +00:00
e15dd5a7dc
Added SPHPBlog exploit module.
...
git-svn-id: file:///home/svn/framework3/trunk@5193 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-11 09:17:49 +00:00
525a13acb8
added exploit module mercury_cram_md5.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5192 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-07 18:42:19 +00:00
a985158a88
added exploit module sonicwall_addrouteentry.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5191 4d416f70-5f16-0410-b530-b9f4589650da
2007-11-01 23:15:34 +00:00
e2835eec60
added exploit module gom_openurl.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5189 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-30 21:48:56 +00:00
d59235fe22
Fixed typo
...
git-svn-id: file:///home/svn/framework3/trunk@5188 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-30 13:32:59 +00:00
0ebb7c95bd
Updated module by Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@5187 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-30 13:22:46 +00:00
c6b9084a50
Remove the fork() prepend, since its now done properly in the shellcode
...
git-svn-id: file:///home/svn/framework3/trunk@5186 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-28 17:25:51 +00:00
96c56ab760
added exploit module ibm_tsm_cad.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5185 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-27 23:48:34 +00:00
af8cce2c74
Thanks for noticing this diaul!
...
git-svn-id: file:///home/svn/framework3/trunk@5184 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-25 15:50:31 +00:00
599aaff600
Correct the module title
...
git-svn-id: file:///home/svn/framework3/trunk@5183 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-24 16:07:08 +00:00
a7626884f6
New module from Trirat Puttaraksa
...
git-svn-id: file:///home/svn/framework3/trunk@5182 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-24 13:56:18 +00:00
053165eb72
git-svn-id: file:///home/svn/framework3/trunk@5164 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-20 17:32:46 +00:00
3a5a25c133
A new iphone/itouch stages which remounts the drive rwx, writes an exe, and executes it with stdio mapped to the socket
...
git-svn-id: file:///home/svn/framework3/trunk@5163 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-20 03:51:15 +00:00
a927464cd8
8Mb > 32k :-)
...
git-svn-id: file:///home/svn/framework3/trunk@5162 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-20 02:08:42 +00:00
ad050b492d
Adding the staged versions of the OS X payloads. One step closer to download + execute
...
git-svn-id: file:///home/svn/framework3/trunk@5160 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-19 07:53:23 +00:00
83fdda022e
Correct the euid to 0
...
git-svn-id: file:///home/svn/framework3/trunk@5158 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-19 06:39:10 +00:00
cf58bec41b
Typo
...
git-svn-id: file:///home/svn/framework3/trunk@5152 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-16 14:11:03 +00:00
3c1dab7715
Added a MobileMail version of the tiff exploit, adjusted stack size, made a new copy of the safari exploit
...
git-svn-id: file:///home/svn/framework3/trunk@5151 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-16 06:32:55 +00:00
c70217b982
Cut down the payload space to support MobileMail
...
git-svn-id: file:///home/svn/framework3/trunk@5150 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-16 06:15:10 +00:00
d3c96f0b45
hehe-ified.
...
git-svn-id: file:///home/svn/framework3/trunk@5149 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-16 05:40:36 +00:00
49a54dfb6f
Total rewrite using a supah-sweet new return method.
...
git-svn-id: file:///home/svn/framework3/trunk@5148 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-16 05:29:13 +00:00
3050615029
Automatic targetting
...
git-svn-id: file:///home/svn/framework3/trunk@5147 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-15 21:00:10 +00:00
ad4d4db792
Updated to support 1.1.1 correctly :-) Thanks again KF!
...
git-svn-id: file:///home/svn/framework3/trunk@5146 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-15 19:00:50 +00:00
8368e383de
Add 1.1.1 target (thanks KF!)
...
git-svn-id: file:///home/svn/framework3/trunk@5145 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-15 03:15:21 +00:00
41088c3ea4
First version of the iPhone libtiff exploit
...
git-svn-id: file:///home/svn/framework3/trunk@5144 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-14 22:15:41 +00:00
6130f7ed23
Rewrote exploit module mcafee_epolicy_source.
...
git-svn-id: file:///home/svn/framework3/trunk@5142 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-10 16:56:30 +00:00
46d14f16b3
typo fix
...
git-svn-id: file:///home/svn/framework3/trunk@5138 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-05 21:10:37 +00:00
6f79e14c91
Fixes #157 . Patches from egypt@nmt.edu
...
git-svn-id: file:///home/svn/framework3/trunk@5137 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-05 19:23:45 +00:00
5d1bf914bf
Added InterBase/Firebird stuff.
...
git-svn-id: file:///home/svn/framework3/trunk@5136 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-04 03:03:13 +00:00
66bd69097c
added exploit module kazaa_altnet_heap.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5135 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-03 16:09:53 +00:00
90c54f45de
Added exploit module tftpdwin, fixed tabs and name for savant module.
...
git-svn-id: file:///home/svn/framework3/trunk@5134 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-03 12:17:37 +00:00
dc23f5b8dc
default to first architecture in architecture array for egghunter, fixes #148
...
git-svn-id: file:///home/svn/framework3/trunk@5131 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-02 03:24:21 +00:00
aebfc6cffa
fixed typo.
...
git-svn-id: file:///home/svn/framework3/trunk@5130 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-01 13:12:55 +00:00
eb88fb1875
added exploit module yahoomessenger_fvcom.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5129 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-01 10:58:50 +00:00
e6a7184cf8
Fixed tab indents.
...
git-svn-id: file:///home/svn/framework3/trunk@5127 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-30 00:05:10 +00:00
3c6e385c17
Added Xitami module.
...
git-svn-id: file:///home/svn/framework3/trunk@5125 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-29 04:30:59 +00:00
09485b52e7
First commit. Added Netcat NT module.
...
git-svn-id: file:///home/svn/framework3/trunk@5123 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-26 13:44:25 +00:00
b113940b03
Buzzer payload! http://securityevaluators.com/iphone/bh07.pdf
...
git-svn-id: file:///home/svn/framework3/trunk@5121 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-25 04:21:48 +00:00
c4868b4cb3
added exploit module ask_shortformat.rb.
...
git-svn-id: file:///home/svn/framework3/trunk@5120 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-25 02:02:56 +00:00
1527d92154
Correct offset typos in the new iphone modules. Add EXE output support for OS X PPC, Linux x86, and make the OS X ARM smaller.
...
git-svn-id: file:///home/svn/framework3/trunk@5119 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-25 01:50:05 +00:00
fb50691c12
New modules from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5116 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-24 14:05:37 +00:00
06ab097c34
New module from Patrick
...
git-svn-id: file:///home/svn/framework3/trunk@5115 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-24 13:55:30 +00:00
aa51f559e8
Keywords for SVN
...
git-svn-id: file:///home/svn/framework3/trunk@5111 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-24 03:13:50 +00:00
b6e1dc00f7
nops and payloads for arm-darwin (aka iphone) :-)
...
git-svn-id: file:///home/svn/framework3/trunk@5110 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-24 03:13:08 +00:00
4e666aca1c
Updates from Patrick
...
git-svn-id: file:///home/svn/framework3/trunk@5103 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-13 14:02:16 +00:00
e461a2c47f
Updated references from Patrick
...
git-svn-id: file:///home/svn/framework3/trunk@5101 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-10 01:46:45 +00:00
04c6dbc748
Updated svn:keywords
...
git-svn-id: file:///home/svn/framework3/trunk@5100 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-10 01:01:20 +00:00
eabc0b511d
New module from toto
...
git-svn-id: file:///home/svn/framework3/trunk@5099 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:56:35 +00:00
ce033a4336
New module from Jacopo Cervini
...
git-svn-id: file:///home/svn/framework3/trunk@5098 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:51:43 +00:00
fa70a1ce4a
New module from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5097 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:44:40 +00:00
22f154778d
New module from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5096 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:44:33 +00:00
d8a7f23714
New module from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5095 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:43:03 +00:00
140868ac74
New module from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5094 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:42:14 +00:00
9286b36884
New module from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5093 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:39:55 +00:00
2eaabf5c90
New module from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5092 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:38:53 +00:00
e65056f477
New module from Patrick Webster
...
git-svn-id: file:///home/svn/framework3/trunk@5091 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:37:43 +00:00
c09dc40f40
Fixes #62 . Adds the correct DSI header.
...
git-svn-id: file:///home/svn/framework3/trunk@5089 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-09 22:16:21 +00:00
5c1c233c77
added exploit module trendmicro_serverprotect_createbinding.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5087 4d416f70-5f16-0410-b530-b9f4589650da
2007-09-08 13:42:59 +00:00
8dcba76799
added exploit module trendmicro_officescan.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5083 4d416f70-5f16-0410-b530-b9f4589650da
2007-08-31 11:58:31 +00:00
f61cde59c4
initial support for context encoding
...
git-svn-id: file:///home/svn/framework3/trunk@5081 4d416f70-5f16-0410-b530-b9f4589650da
2007-08-31 04:01:30 +00:00
c1b03a8670
added exploit module hp_ovtrace.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5080 4d416f70-5f16-0410-b530-b9f4589650da
2007-08-19 19:13:24 +00:00
7b65a56d65
initial support for metasm integration, ported sample payload to use it
...
git-svn-id: file:///home/svn/framework3/trunk@5076 4d416f70-5f16-0410-b530-b9f4589650da
2007-08-11 00:37:50 +00:00
31f84d6d16
added module windows_rsh.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5073 4d416f70-5f16-0410-b530-b9f4589650da
2007-08-10 16:25:05 +00:00
92e3b2eef5
Adding the fake socks server
...
git-svn-id: file:///home/svn/framework3/trunk@5069 4d416f70-5f16-0410-b530-b9f4589650da
2007-08-08 02:46:31 +00:00
6462ede937
Fixes #106 . Added new single shell_bind_tcp payload module for Linux x86. See #106 .
...
git-svn-id: file:///home/svn/framework3/trunk@5068 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-31 02:10:49 +00:00
e4aeff2f71
Added Borland Interbase 2007 Create Request Buffer Overflow exploit module for linux x86
...
git-svn-id: file:///home/svn/framework3/trunk@5065 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-30 01:38:14 +00:00
3fc1b0923c
updated.
...
git-svn-id: file:///home/svn/framework3/trunk@5064 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-29 20:57:13 +00:00
69beed0fc9
added exploit module ipswitch_search.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5063 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-29 14:38:47 +00:00
a0efef604e
addex exploit module borland_interbase.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5062 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-26 01:26:21 +00:00
f60810d00c
Added more advanced payload options and advanced payload options support for Solaris.
...
git-svn-id: file:///home/svn/framework3/trunk@5060 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-25 03:24:51 +00:00
0744aa075d
Improved reliability (thanks fab).
...
git-svn-id: file:///home/svn/framework3/trunk@5059 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-24 23:44:44 +00:00
6deb8a18a4
added module enjoysapgui_preparetoposthtml.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5058 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-18 21:49:44 +00:00
490f687f2e
The Samba lsa_io_trans_names heap overflow exploit module for Mac OS X now also works when the smbd process is started by launchd.
...
git-svn-id: file:///home/svn/framework3/trunk@5057 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-18 17:17:22 +00:00
5b3768ef29
added exploit module squirrelmail_pgp_plugin from Nicob
...
git-svn-id: file:///home/svn/framework3/trunk@5047 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-14 17:59:53 +00:00
bf28aff38e
Adjusted target.
...
git-svn-id: file:///home/svn/framework3/trunk@5046 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-12 00:41:00 +00:00
2b4a3d88e3
added exploit module sapdb_webtools.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5045 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-11 21:16:30 +00:00
f3dd74cfc9
Added advanced payload options for *BSD, improved solaris targets of lsa_transnames_heap.rb, some code cleanups.
...
git-svn-id: file:///home/svn/framework3/trunk@5044 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-11 03:19:28 +00:00
d186725ac6
Added new Samba lsa_io_trans_names heap overflow exploit module for Solaris x86 and SPARC.
...
git-svn-id: file:///home/svn/framework3/trunk@5039 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-08 04:11:53 +00:00
c46cb1e466
updated ref.
...
git-svn-id: file:///home/svn/framework3/trunk@5038 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-08 02:31:17 +00:00
7488351910
added exploit module mcafeevisualtrace_tracetarget.rb
...
git-svn-id: file:///home/svn/framework3/trunk@5037 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-08 02:24:22 +00:00
ced17e0138
Adjusted target step.
...
git-svn-id: file:///home/svn/framework3/trunk@5035 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-06 23:48:05 +00:00
99f806b0e9
Added OSX payloads advanced options and improved Samba exploit module.
...
git-svn-id: file:///home/svn/framework3/trunk@5033 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-06 01:22:54 +00:00
febc0feb28
Increase the brute force range (thanks toto_)
...
git-svn-id: file:///home/svn/framework3/trunk@5032 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-05 15:12:02 +00:00
735c0b5d4e
Added svn:keywords and adjusted code indentation.
...
git-svn-id: file:///home/svn/framework3/trunk@5031 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-05 02:02:39 +00:00
7a5c4c29cc
Added new Samba lsa_io_trans_names heap overflow exploit module for Mac OS X x86 and PowerPC
...
git-svn-id: file:///home/svn/framework3/trunk@5030 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-05 01:41:39 +00:00
457b4eb8f3
added some comments and better handling of payloads with invalid sizes
...
git-svn-id: file:///home/svn/framework3/trunk@5028 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-04 06:24:45 +00:00
f11c160946
This commit adds the smb_sniffer module
...
git-svn-id: file:///home/svn/framework3/trunk@5021 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-03 04:33:54 +00:00
6c82ffbdc2
Minor bug fix (send 0xc0000022 for tree connects)
...
git-svn-id: file:///home/svn/framework3/trunk@5020 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-03 04:31:08 +00:00
fe56bc418f
Sample payload rewrite that uses METASM
...
git-svn-id: file:///home/svn/framework3/trunk@5017 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-03 04:22:32 +00:00
fb7291877d
Fix for the crash error when a specific target is selected
...
git-svn-id: file:///home/svn/framework3/trunk@5016 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-03 04:21:44 +00:00
d0b15d3d72
Lots of SMB fun, all preparation for Black Hat talk :-) More to come...
...
git-svn-id: file:///home/svn/framework3/trunk@5015 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-03 04:20:50 +00:00
91f65449aa
added exploit modules logitechvideocall_start.rb and
...
trendmicro_serverprotect_earthagent.rb
git-svn-id: file:///home/svn/framework3/trunk@5010 4d416f70-5f16-0410-b530-b9f4589650da
2007-07-01 16:04:22 +00:00
c2baae789a
Adding the first exploit to use metasm
...
git-svn-id: file:///home/svn/framework3/trunk@5009 4d416f70-5f16-0410-b530-b9f4589650da
2007-06-30 22:08:19 +00:00
c844826266
use exploit base class method
...
git-svn-id: file:///home/svn/framework3/trunk@5007 4d416f70-5f16-0410-b530-b9f4589650da
2007-06-29 00:29:53 +00:00
2fc2baab0b
Brand new ANI module from Solar Eclipse
...
git-svn-id: file:///home/svn/framework3/trunk@4996 4d416f70-5f16-0410-b530-b9f4589650da
2007-06-18 03:00:08 +00:00
d33675d870
framework now properly handles using singles without handlers as both stages and singles, fixes #115
...
git-svn-id: file:///home/svn/framework3/trunk@4994 4d416f70-5f16-0410-b530-b9f4589650da
2007-06-16 05:04:03 +00:00
40511cffb7
This adds a Linux-payload specific mixin which allows for new advanced options, such as setuid/chroot prepends.
...
git-svn-id: file:///home/svn/framework3/trunk@4984 4d416f70-5f16-0410-b530-b9f4589650da
2007-06-09 02:25:31 +00:00
04f35ada87
added exploit module yahoomessenger_server.rb (SEH)
...
git-svn-id: file:///home/svn/framework3/trunk@4982 4d416f70-5f16-0410-b530-b9f4589650da
2007-06-07 21:32:23 +00:00
d35adad50e
Revision 1, still some bugs to work out
...
git-svn-id: file:///home/svn/framework3/trunk@4977 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-29 22:56:18 +00:00
0984380230
This module was never finished
...
git-svn-id: file:///home/svn/framework3/trunk@4975 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-29 15:03:55 +00:00
8f8f5d799c
Patch from Nicob
...
git-svn-id: file:///home/svn/framework3/trunk@4970 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-28 12:38:52 +00:00
0f70d5bdb0
Typo
...
git-svn-id: file:///home/svn/framework3/trunk@4964 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-23 15:51:55 +00:00
858e33a842
Update from Jean-Baptiste Marchand
...
git-svn-id: file:///home/svn/framework3/trunk@4962 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-23 14:51:20 +00:00
55d04baf33
Adding svn:keywords to new modules, adding identd/gamsoft modules
...
git-svn-id: file:///home/svn/framework3/trunk@4961 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-22 21:15:14 +00:00
44f4f9f55b
New code from Nicob, thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@4960 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-22 21:08:47 +00:00
aa4066f5c5
Adding Mandriva targets
...
git-svn-id: file:///home/svn/framework3/trunk@4959 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-22 01:46:25 +00:00
01bb0a25db
3.0.20 -> 3.0.21
...
git-svn-id: file:///home/svn/framework3/trunk@4955 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-21 21:03:12 +00:00
fc7dcf82dc
Adding the PoC modules for transnames/addprivs
...
git-svn-id: file:///home/svn/framework3/trunk@4954 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-21 20:54:00 +00:00
26ccc3be69
Adds the first version of the new samba module. Adds keywords to MC's new modules.
...
git-svn-id: file:///home/svn/framework3/trunk@4953 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-21 20:51:13 +00:00
d16aa226b1
Changed H D Moore -> hdm
...
git-svn-id: file:///home/svn/framework3/trunk@4951 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-21 20:44:34 +00:00
b47efb9d4b
added exploit module nis2004_get.rb
...
git-svn-id: file:///home/svn/framework3/trunk@4928 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-18 04:19:21 +00:00
00ea0f9932
added exploit module bearshare_setformatlikesample.rb
...
git-svn-id: file:///home/svn/framework3/trunk@4916 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-16 15:12:22 +00:00
7630941970
Fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@4912 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-15 12:51:30 +00:00
5740a85c7c
Adding the new MSB references
...
git-svn-id: file:///home/svn/framework3/trunk@4895 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-11 23:05:18 +00:00
ff8d5e6ee3
Fixed a bug reported by Dan Faerch (typos)
...
git-svn-id: file:///home/svn/framework3/trunk@4892 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-09 12:47:47 +00:00
d95a0d8d90
Updated svn:keywords, merging minor changes
...
git-svn-id: file:///home/svn/framework3/trunk@4886 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-07 04:48:45 +00:00
135e426d60
Updated prepend from topo
...
git-svn-id: file:///home/svn/framework3/trunk@4864 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-04 13:50:29 +00:00
3604c87c22
From topo:
...
1) It uses the rembo.exe Data section to prevent a crash
2) The prepend code has been modified to only disable NX on 2K3 SP1-2
(else it crashes 2K3 SP0)
git-svn-id: file:///home/svn/framework3/trunk@4863 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-04 13:48:45 +00:00
88d3193020
Removed the old pcap mixin, replaced with Capture, updated the test_pcap module
...
git-svn-id: file:///home/svn/framework3/trunk@4860 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-04 02:56:35 +00:00
56b74bb586
New module from toto
...
git-svn-id: file:///home/svn/framework3/trunk@4855 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-03 20:02:28 +00:00
4738f40b4b
New module from toto, with crazy NX bypass ninjaness
...
git-svn-id: file:///home/svn/framework3/trunk@4848 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-03 13:04:01 +00:00
df60900e34
Remove a duplicate target (thanks Ramon)
...
git-svn-id: file:///home/svn/framework3/trunk@4845 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-03 03:14:22 +00:00
fe4f3119c1
More payloads from Ramon ( fixes #98 , #99 , #100 , #101 )
...
git-svn-id: file:///home/svn/framework3/trunk@4840 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-03 03:11:49 +00:00
a812c8860a
Corrects the SMTP DoS, fixes #95 .
...
git-svn-id: file:///home/svn/framework3/trunk@4835 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-02 03:34:42 +00:00
98c22b5754
added exploit module trendmicro_serverprotect.rb
...
git-svn-id: file:///home/svn/framework3/trunk@4834 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-01 23:22:35 +00:00
1f4e53dbd6
Fix class line
...
git-svn-id: file:///home/svn/framework3/trunk@4832 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-01 15:21:05 +00:00
bf705e9dc8
Move exchange dos out of exploits
...
git-svn-id: file:///home/svn/framework3/trunk@4829 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-01 13:31:11 +00:00
b279f69277
add german and italian targets for msdns_zonename
...
git-svn-id: file:///home/svn/framework3/trunk@4822 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-30 15:15:47 +00:00
adc6441d07
add italian target for Win2003 SP1-SP2
...
git-svn-id: file:///home/svn/framework3/trunk@4821 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-30 15:00:08 +00:00
2af13aa4ef
Fixes #88 #89 #90 #91 #92 . Replaces bind/reverse for BSD x86, replaces bind for OS X x86, adds reverse/find for OS X x86.
...
git-svn-id: file:///home/svn/framework3/trunk@4803 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-28 19:00:34 +00:00
7d7f244bf6
Fixes #87 . Adds new targets to the ANI exploits, fixes Vista target for OE
...
git-svn-id: file:///home/svn/framework3/trunk@4795 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-28 18:32:36 +00:00
daf5936870
Merging minor changes to HTTP, adding NX support to landesk from NP
...
git-svn-id: file:///home/svn/framework3/trunk@4786 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-25 02:51:49 +00:00
f8760b1f6b
Typo :(
...
git-svn-id: file:///home/svn/framework3/trunk@4782 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-24 13:47:18 +00:00
740c88e60a
Resolve a typo
...
git-svn-id: file:///home/svn/framework3/trunk@4781 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-24 13:44:17 +00:00
69441ffc72
Merge minor changes
...
git-svn-id: file:///home/svn/framework3/trunk@4750 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-24 06:28:28 +00:00
4d1c274387
Merging all of the auxilliary/scanner related features
...
git-svn-id: file:///home/svn/framework3/trunk@4749 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-24 06:27:39 +00:00
48823e61c6
typo
...
git-svn-id: file:///home/svn/framework3/trunk@4741 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-23 05:30:48 +00:00
ba6e319408
French targets
...
git-svn-id: file:///home/svn/framework3/trunk@4731 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-22 00:03:43 +00:00
29f850131d
add french target for win2003 SP0
...
git-svn-id: file:///home/svn/framework3/trunk@4724 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-21 15:30:36 +00:00
d1e876703f
add french target for Win2000 SP0-SP4
...
git-svn-id: file:///home/svn/framework3/trunk@4723 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-21 11:56:27 +00:00
bf16736e59
shikata improvements from vlad902
...
git-svn-id: file:///home/svn/framework3/trunk@4721 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-21 02:10:22 +00:00
0aaad5f9c2
off
...
git-svn-id: file:///home/svn/framework3/trunk@4720 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-21 01:53:49 +00:00
52eca4b049
fixes #83
...
git-svn-id: file:///home/svn/framework3/trunk@4716 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-20 23:47:00 +00:00
3c41dfccb9
Adding the SMB version of the MSDNS module
...
git-svn-id: file:///home/svn/framework3/trunk@4715 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-20 16:14:05 +00:00
e39dd847b9
fixed description.
...
git-svn-id: file:///home/svn/framework3/trunk@4714 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-20 14:52:14 +00:00
6896272645
New codes :)
...
git-svn-id: file:///home/svn/framework3/trunk@4710 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-19 17:43:30 +00:00
c319373649
added handler to landesk_aolnsrvr.rb
...
git-svn-id: file:///home/svn/framework3/trunk@4701 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-16 21:28:46 +00:00
55a1576ca5
Add the default target
...
git-svn-id: file:///home/svn/framework3/trunk@4696 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-16 02:11:33 +00:00
35ab9bfb89
Bug fixes and a new "hidden" service detection module
...
git-svn-id: file:///home/svn/framework3/trunk@4685 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-16 01:41:50 +00:00
2612ad5f2f
Cleanup, getting ready for stable
...
git-svn-id: file:///home/svn/framework3/trunk@4684 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-16 01:40:59 +00:00
17082dda1a
Almost done...
...
git-svn-id: file:///home/svn/framework3/trunk@4683 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-15 21:43:30 +00:00
66a87c8802
Updated to use the SEH vs stack return
...
git-svn-id: file:///home/svn/framework3/trunk@4682 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-15 17:00:34 +00:00
be33707745
added exploit module landesk_aolnsrvr.rb
...
git-svn-id: file:///home/svn/framework3/trunk@4681 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-15 00:46:09 +00:00
b5b4556ee7
Typo
...
git-svn-id: file:///home/svn/framework3/trunk@4680 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-14 07:59:13 +00:00
3c9007a7be
Switch from pattern to alpha
...
git-svn-id: file:///home/svn/framework3/trunk@4679 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-14 07:56:32 +00:00
a80b937638
Added svn:keywords
...
git-svn-id: file:///home/svn/framework3/trunk@4678 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-14 07:54:53 +00:00
1bb398de59
Adding the Microsoft DNS service exploit, targetting Windows 2000
...
git-svn-id: file:///home/svn/framework3/trunk@4677 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-14 07:16:33 +00:00
fdd9f96145
Adds endpoint mapper and management interface support to the DCERPC exploit mixin
...
git-svn-id: file:///home/svn/framework3/trunk@4676 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-14 05:22:22 +00:00
e0b8f5cb9e
browser exploits auto inherit check dep and autofilter now
...
git-svn-id: file:///home/svn/framework3/trunk@4670 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-13 04:15:38 +00:00
2f365ca59b
added exploit module windvd7_applicationtype.rb
...
git-svn-id: file:///home/svn/framework3/trunk@4663 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-11 23:00:09 +00:00
53a1d7e988
added exploit module hpmqc_progcolor.rb
...
git-svn-id: file:///home/svn/framework3/trunk@4661 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-06 20:37:30 +00:00
f60785b2f5
Adds a target for French SP2
...
git-svn-id: file:///home/svn/framework3/trunk@4658 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-06 04:48:41 +00:00
3453b58820
Consistent use of handler(cli), removed the autofilter and dependency check stubs
...
git-svn-id: file:///home/svn/framework3/trunk@4646 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-04 04:37:30 +00:00
0c8f9e96b5
Consistent use of handler(cli) after the payload is sent to the user
...
git-svn-id: file:///home/svn/framework3/trunk@4645 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-04 04:34:17 +00:00
a319b8e582
got rid of duplicated code in browser exploits, fixes #71
...
git-svn-id: file:///home/svn/framework3/trunk@4642 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-04 02:04:37 +00:00
317f95d4a2
use the correct payload
...
git-svn-id: file:///home/svn/framework3/trunk@4640 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-03 07:50:02 +00:00
ddf9c8bac1
correct disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@4639 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-03 07:49:27 +00:00
ed030e4807
correct disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@4638 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-03 07:48:58 +00:00
4abe720796
correct disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@4637 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-03 07:48:07 +00:00
b74311c71d
initial integration of alex's heaplib, and a port of the keyframe exploit
...
git-svn-id: file:///home/svn/framework3/trunk@4635 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-03 07:35:54 +00:00
080300605a
Fix KCODE in Rails (msfweb). Revert ANI exploits back after resolving the issue
...
git-svn-id: file:///home/svn/framework3/trunk@4633 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-03 04:10:09 +00:00
e39233c32b
Switch to a 40 byte block of null ptrs for the padding, required for reliability on XP
...
git-svn-id: file:///home/svn/framework3/trunk@4631 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-03 02:59:26 +00:00
4e1a79ada4
Merged in a patch from Matt for fixing Vista support
...
git-svn-id: file:///home/svn/framework3/trunk@4627 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 21:38:20 +00:00
97db1f3fd7
Two quick fixes
...
git-svn-id: file:///home/svn/framework3/trunk@4625 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 07:04:22 +00:00
c6d5ac1968
Consistency between http/smtp modules
...
git-svn-id: file:///home/svn/framework3/trunk@4615 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:55:53 +00:00
e2029b9d9c
Merged in copy_to_stack feature from HTTP exploit
...
git-svn-id: file:///home/svn/framework3/trunk@4614 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:54:44 +00:00
97b6cf3636
here we go
...
git-svn-id: file:///home/svn/framework3/trunk@4613 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:51:22 +00:00
fd44163b37
Adding SVN keywords
...
git-svn-id: file:///home/svn/framework3/trunk@4612 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:48:11 +00:00
7e23cef93c
Removed the extraneous sub esp, changed payload space to be 1024 on the http version
...
git-svn-id: file:///home/svn/framework3/trunk@4611 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:46:10 +00:00
b2ff98b4e9
Fixed the copy-to-stack stub, should work great now
...
git-svn-id: file:///home/svn/framework3/trunk@4610 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:42:27 +00:00
ac19614bb3
This adds the stack copy prefixer to the ANI code
...
git-svn-id: file:///home/svn/framework3/trunk@4609 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:27:41 +00:00
dd2e9d87fb
This adds SMTPDeliver exploit mixin, the SMTP version of the ANI exploit, accessor to Ole::Storage
...
git-svn-id: file:///home/svn/framework3/trunk@4608 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 05:27:19 +00:00
b16fc9fd53
Minor updates for targetting
...
git-svn-id: file:///home/svn/framework3/trunk@4606 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-02 03:10:01 +00:00
aba1959d44
tab vs. space :)
...
git-svn-id: file:///home/svn/framework3/trunk@4605 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 22:24:42 +00:00
f9d8c4e820
modifications to support using an explicit target to regen payloads
...
git-svn-id: file:///home/svn/framework3/trunk@4602 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 21:21:10 +00:00
0c263cf036
Woops, forgot to change all references to the 'All Target's item
...
git-svn-id: file:///home/svn/framework3/trunk@4601 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 21:10:15 +00:00
775d8bc95b
Automatic target detection based on the user agent
...
git-svn-id: file:///home/svn/framework3/trunk@4600 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 21:05:05 +00:00
f0fcedf728
raw encoder type wasn't being enforced
...
git-svn-id: file:///home/svn/framework3/trunk@4599 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 21:00:51 +00:00
6cfab21bcb
fixes for Vista, brute forcing
...
git-svn-id: file:///home/svn/framework3/trunk@4598 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 20:33:35 +00:00
86f4bfd514
This module should be ready for the stable tree...
...
git-svn-id: file:///home/svn/framework3/trunk@4597 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 19:00:32 +00:00
24ba17aceb
This module now defaults to using all targets at once :-)
...
git-svn-id: file:///home/svn/framework3/trunk@4596 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 18:25:14 +00:00
e707423987
Too early this morning...
...
git-svn-id: file:///home/svn/framework3/trunk@4595 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 18:02:22 +00:00
3a8d90bb62
Woops, introduced a typo
...
git-svn-id: file:///home/svn/framework3/trunk@4594 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 18:01:58 +00:00
0cc8db610b
Merged in skape's Vista support, cleaned things up
...
git-svn-id: file:///home/svn/framework3/trunk@4593 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 17:58:12 +00:00
3858b33e9c
Comitting with a slightly better name and more information
...
git-svn-id: file:///home/svn/framework3/trunk@4592 4d416f70-5f16-0410-b530-b9f4589650da
2007-03-31 15:26:23 +00:00
473c2c98f9
Rename 1
...
git-svn-id: file:///home/svn/framework3/trunk@4591 4d416f70-5f16-0410-b530-b9f4589650da
2007-03-31 15:25:55 +00:00
Mario Ceballos
HD Moore
Ramon de C Valle
James Lee
et
Patrick Webster
Matt Miller