Commit Graph

428 Commits (86500aad4784f2b2e31f2e20ba7a07ef2577ec50)

Author SHA1 Message Date
Joshua Drake d26ebfa365 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9476 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:31:21 +00:00
Steve Tornio bccd9a4b94 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9472 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 14:14:02 +00:00
Tod Beardsley 744dcf9616 Adding attribution tage to axis LFI.
git-svn-id: file:///home/svn/framework3/trunk@9471 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:36:03 +00:00
Tod Beardsley 468aa07f48 Adding Axis LFI module, submitted by Tiago Ferreira. Thanks!
Also normalizing auth info for DB reporting.



git-svn-id: file:///home/svn/framework3/trunk@9470 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:32:27 +00:00
Tod Beardsley 6e98191bdd Adding authentication brute forcer for Apache Axis2, submitted by Leandro Oliveira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9467 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 01:53:54 +00:00
Steve Tornio 3b8319a545 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9465 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:25:04 +00:00
Tod Beardsley 0e442ff74c Adding Tomcat user enumeration module for CVE-2009-0580, submitted by Heyder Andrade. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9464 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:15:49 +00:00
Steve Tornio 922d362fdc add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9463 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:10:08 +00:00
Tod Beardsley 9d1ace25ce Adding BID and CVE to wordpress_login_enum
git-svn-id: file:///home/svn/framework3/trunk@9462 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:43:47 +00:00
Tod Beardsley 336a9bdb37 Adding Wordpress login brute forcer and account enumeration module, submitted by Tiago Ferreira. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@9461 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:37:56 +00:00
Tod Beardsley 1500858d2d Fixes #2043. Thanks Heyder!
git-svn-id: file:///home/svn/framework3/trunk@9453 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-08 21:14:19 +00:00
James Lee d655521c93 Clarify description for USER_FILE and PASS_FILE
git-svn-id: file:///home/svn/framework3/trunk@9433 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:30:33 +00:00
James Lee 36041419f9 Clarify description for USER_FILE and PASS_FILE
git-svn-id: file:///home/svn/framework3/trunk@9432 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:26:41 +00:00
Joshua Drake 4d0a64fcd8 add additional references
git-svn-id: file:///home/svn/framework3/trunk@9429 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 16:34:13 +00:00
Joshua Drake 7824ab661a style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9412 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:25:29 +00:00
Joshua Drake 55f82f0b09 add open proxy detection aux from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@9411 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:18:00 +00:00
Mario Ceballos ed79d649da didn't know the default accounts where added. add the cognoss port.
git-svn-id: file:///home/svn/framework3/trunk@9382 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-31 17:16:50 +00:00
Joshua Drake 14a6a1b95f another error message update, see #1994
git-svn-id: file:///home/svn/framework3/trunk@9351 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:23 +00:00
Tod Beardsley 1a2be34a63 Fixes #2002. Needed to work with some pipelining to get this all to work right, but it seems to function now pretty well -- if the target takes Basic, do basic, if the target takes NTLM, do NTLM. Should implement Digest too, but I don't think hardly anyone uses that.
git-svn-id: file:///home/svn/framework3/trunk@9346 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-22 17:58:01 +00:00
Tod Beardsley e02fd71de9 See #2002. Skip authentication schemes that we don't know how to do.
git-svn-id: file:///home/svn/framework3/trunk@9343 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 17:32:54 +00:00
Joshua Drake 793e6ddd52 tweak error message, see #1994
git-svn-id: file:///home/svn/framework3/trunk@9342 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 15:38:07 +00:00
Joshua Drake 688c76f7a0 catch ConnectionError exception before it gets passed higher up, fixes #1994
git-svn-id: file:///home/svn/framework3/trunk@9335 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:33:12 +00:00
James Lee 62fbc0ad5b use empty strings instead of nil. fixes #1717
git-svn-id: file:///home/svn/framework3/trunk@9228 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 20:03:47 +00:00
Joshua Drake 4bc86e603e fix a couple more silly regex mishaps
git-svn-id: file:///home/svn/framework3/trunk@9220 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-04 23:09:32 +00:00
Joshua Drake 0e72894e58 more cleanups
git-svn-id: file:///home/svn/framework3/trunk@9212 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 17:13:09 +00:00
Joshua Drake 0ea6eca4bc big module whitespace/formatting cleanup pass
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Tod Beardsley 08117ca000 Forcing :critical => true for report_auth_info
git-svn-id: file:///home/svn/framework3/trunk@9150 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 22:23:37 +00:00
Joshua Drake a953c47cfb remove carriage returns
git-svn-id: file:///home/svn/framework3/trunk@9140 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 18:29:24 +00:00
HD Moore 498c225555 If its required, it better have a valid default. Fixing
git-svn-id: file:///home/svn/framework3/trunk@9028 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 16:36:28 +00:00
HD Moore ba12ddd280 Allow authbrute modules to use a single username/password in a sane way
git-svn-id: file:///home/svn/framework3/trunk@8945 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 23:52:43 +00:00
HD Moore b0425f10cd Cleanup some of the output
git-svn-id: file:///home/svn/framework3/trunk@8942 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 22:13:50 +00:00
HD Moore cd71cfbad1 Handle buggy HTTP servers better
git-svn-id: file:///home/svn/framework3/trunk@8921 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 21:35:37 +00:00
James Lee dd26a227ef targ_host -> target_host
git-svn-id: file:///home/svn/framework3/trunk@8908 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:05:23 +00:00
HD Moore af3ab0a260 Handle situations where any user/pass is allowed
git-svn-id: file:///home/svn/framework3/trunk@8904 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 21:11:00 +00:00
HD Moore 3a88909c06 Rename for consistency
git-svn-id: file:///home/svn/framework3/trunk@8903 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:33:21 +00:00
HD Moore aa1c65f4e6 Add a quick and dirty HTTP scanner
git-svn-id: file:///home/svn/framework3/trunk@8901 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:28:09 +00:00
Tod Beardsley 1458fbad54 Adds some fingerprinting to the tomcat manager login auxiliary module.
git-svn-id: file:///home/svn/framework3/trunk@8883 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 22:19:46 +00:00
Tod Beardsley 83d96d713c Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently.
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 20:07:26 +00:00
HD Moore 9632f8251a Move OS-level fingerprints out, report note-level fingerprints instead
git-svn-id: file:///home/svn/framework3/trunk@8869 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:09:04 +00:00
HD Moore a35817f0cc Store more information
git-svn-id: file:///home/svn/framework3/trunk@8742 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 13:52:39 +00:00
HD Moore d5b85db27f Fixes a false positive when the server always replies with 200 OK
git-svn-id: file:///home/svn/framework3/trunk@8740 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 05:26:33 +00:00
Tod Beardsley 5ce7b4d186 Pass this_cred for tomcat_mgr_login
git-svn-id: file:///home/svn/framework3/trunk@8730 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-05 20:05:01 +00:00
Tod Beardsley a5e187bd69 Add the ability to slow down brute force sessions.
git-svn-id: file:///home/svn/framework3/trunk@8719 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 23:29:26 +00:00
Tod Beardsley e2af2f9ab9 Again.
git-svn-id: file:///home/svn/framework3/trunk@8680 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:37 +00:00
Tod Beardsley e1a02d602d Fixing up the tomcat login scanner.
git-svn-id: file:///home/svn/framework3/trunk@8679 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:20 +00:00
Joshua Drake e1c5334d56 add register_autofilter_ports
git-svn-id: file:///home/svn/framework3/trunk@8652 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 01:53:02 +00:00
James Lee 7b7f3de307 allow a single user/pass
git-svn-id: file:///home/svn/framework3/trunk@8646 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 22:45:33 +00:00
James Lee dfe9698cb3 stop bruting if the page isn't there
git-svn-id: file:///home/svn/framework3/trunk@8641 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 20:50:46 +00:00
Steve Tornio 4e7f242230 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@8636 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 12:03:44 +00:00
Joshua Drake ff703cdb73 fix whitespace and add keywords
git-svn-id: file:///home/svn/framework3/trunk@8633 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 00:13:56 +00:00
cg aa3836dbc2 vmware directory traversal module
git-svn-id: file:///home/svn/framework3/trunk@8632 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-24 23:58:51 +00:00
HD Moore 0ba3d18032 Updated the report format to match new syntax
git-svn-id: file:///home/svn/framework3/trunk@8566 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-20 05:50:05 +00:00
Tod Beardsley f58558f605 Updated all the brute force login modules to record successful logins and avoid duplicating credentials.
git-svn-id: file:///home/svn/framework3/trunk@8553 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 19:04:51 +00:00
Joshua Drake 534d56cdd8 adjust text wrap
git-svn-id: file:///home/svn/framework3/trunk@8550 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 18:04:11 +00:00
HD Moore 993ba44fcf SMB updates, better reporting of SSL status for HTTP
git-svn-id: file:///home/svn/framework3/trunk@8459 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 22:37:00 +00:00
et 36c61ff5ed Fix typo
git-svn-id: file:///home/svn/framework3/trunk@8423 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 01:10:29 +00:00
HD Moore 79c68e3784 Fix the description
git-svn-id: file:///home/svn/framework3/trunk@8406 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 13:53:50 +00:00
James Lee 509b2aab3a use new api
git-svn-id: file:///home/svn/framework3/trunk@8376 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 23:00:51 +00:00
Joshua Drake 4f9490f63f add default username/passwords for IBM Cognos Express Tomcat Manager
git-svn-id: file:///home/svn/framework3/trunk@8368 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-04 20:34:55 +00:00
James Lee 1ee79780e9 fix the http option scanner
git-svn-id: file:///home/svn/framework3/trunk@8355 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 23:11:18 +00:00
et edc64f824e Added trace.axd scanner by C4an
git-svn-id: file:///home/svn/framework3/trunk@8337 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 02:49:18 +00:00
et 7964d0f38a Renaming wmap modules
git-svn-id: file:///home/svn/framework3/trunk@8335 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 02:12:30 +00:00
et 7e5793af2a New enumeration modules by Mubix
git-svn-id: file:///home/svn/framework3/trunk@8331 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-31 00:52:51 +00:00
Joshua Drake 4bb3adc397 move new tomcat_mgr_login scanner into scanner/http
git-svn-id: file:///home/svn/framework3/trunk@8202 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-22 20:33:11 +00:00
HD Moore 0b7df74615 Rename modules to be consistent with the new convention
git-svn-id: file:///home/svn/framework3/trunk@8129 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-15 02:55:08 +00:00
Joshua Drake 2283e029db crossing fingers, big cr removal batch
git-svn-id: file:///home/svn/framework3/trunk@8038 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-30 22:24:22 +00:00
HD Moore 131462fa8b Fix service name reporting
git-svn-id: file:///home/svn/framework3/trunk@7999 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-28 00:37:56 +00:00
HD Moore 166489ad5f Update a few scanner modules to write to the database properly
git-svn-id: file:///home/svn/framework3/trunk@7992 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-27 07:30:50 +00:00
HD Moore 1cc9fa7dad Print the site name for the 404 message
git-svn-id: file:///home/svn/framework3/trunk@7980 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-26 05:53:29 +00:00
HD Moore 3d421cfefd SQLMap update and consitency fix for Bernardo's name
git-svn-id: file:///home/svn/framework3/trunk@7979 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-26 05:24:37 +00:00
et 20222a44ea Fix. Thats next step
git-svn-id: file:///home/svn/framework3/trunk@7847 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:58:57 +00:00
et d6ee7c58ce New wmap moule for generic checks
git-svn-id: file:///home/svn/framework3/trunk@7846 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:49:44 +00:00
HD Moore c287573213 A few more wmap cleanups
git-svn-id: file:///home/svn/framework3/trunk@7839 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 06:56:01 +00:00
HD Moore 1029ecd7f8 Cleanup wmap, add the missing database tables back, rename to have a wmap_prefix
git-svn-id: file:///home/svn/framework3/trunk@7837 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 05:24:48 +00:00
et 75ca12439e Added new testing options
git-svn-id: file:///home/svn/framework3/trunk@7638 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-29 04:00:26 +00:00
et 6e975b57ee Include Auxiliary Report
git-svn-id: file:///home/svn/framework3/trunk@7629 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-26 20:39:15 +00:00
et 5b81d85447 Replaced reporting to use notes
git-svn-id: file:///home/svn/framework3/trunk@7605 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-25 06:08:28 +00:00
et e354c8dbcc Multiple headers handling bug fixes
git-svn-id: file:///home/svn/framework3/trunk@7588 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-24 05:27:11 +00:00
et f70cf1e74f Make EXT optional so other dictionaries with files containing extensions can be used
git-svn-id: file:///home/svn/framework3/trunk@7583 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-23 03:01:46 +00:00
HD Moore 61e233df91 Keywords on all modules, plugins, and scripts
git-svn-id: file:///home/svn/framework3/trunk@7550 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-17 00:05:19 +00:00
et 7b832b9d3e Wmap checking for vulnerabilities and launching exploits
git-svn-id: file:///home/svn/framework3/trunk@7399 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-07 21:55:33 +00:00
HD Moore f38b43f236 Specify the language as none
git-svn-id: file:///home/svn/framework3/trunk@7321 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-02 17:10:06 +00:00
et fdce355f3b Option NoDetailMessages added
git-svn-id: file:///home/svn/framework3/trunk@7313 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-01 01:09:53 +00:00
et fbbbde55f2 Fix #443. This module should not be use as a directory scanner as there are more suitable modules for such task. This specific module is only made to test a specific vulnerability and will be mode to a per directory check instead of trying to identify directories requiring authentication to be bypassed
git-svn-id: file:///home/svn/framework3/trunk@7312 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-01 00:59:41 +00:00
HD Moore 5e137e92fd Fixes #381. To scan for TLSv1 only services, set SSLVersion TLS1
git-svn-id: file:///home/svn/framework3/trunk@7282 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-26 19:48:15 +00:00
HD Moore b38a74c961 Another mega-patch from Yoann Guillot: fixes warnings generated by method calls with a space betwee the method and the parans, corrects a problem with the alpha encoders that causes them to overwrite the allowed charset, hardcodes the metasm output size of some modules in order to reduce load time, more to come
git-svn-id: file:///home/svn/framework3/trunk@7246 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-25 16:40:19 +00:00
HD Moore 03b753fd12 Fixes #360. Report each path individually
git-svn-id: file:///home/svn/framework3/trunk@7207 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-19 10:55:11 +00:00
et 5524e9aae2 Fixed #370. Test if uploaded file exists
git-svn-id: file:///home/svn/framework3/trunk@7203 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-19 00:02:54 +00:00
et 6ce7011cba Fixed #369. Added RHOST info and second round to determine error page
git-svn-id: file:///home/svn/framework3/trunk@7202 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 23:26:58 +00:00
et 6a818c0c64 Fixed #371. Included target information
git-svn-id: file:///home/svn/framework3/trunk@7194 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:51:47 +00:00
et 6cfd1675c4 Fixed #375. Removed the module as frontpage_login provides same information
git-svn-id: file:///home/svn/framework3/trunk@7193 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:45:30 +00:00
et c501187ca4 Fixed typo #368.
git-svn-id: file:///home/svn/framework3/trunk@7192 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:39:40 +00:00
et bfd359f0d8 Fixed #367. Adder error code detection and signatures
git-svn-id: file:///home/svn/framework3/trunk@7191 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:37:40 +00:00
et f085e7cf59 Remove generic modules at this time, until proxy is created and then it can be proxy modules.
git-svn-id: file:///home/svn/framework3/trunk@7190 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:23:33 +00:00
et 249cc10cf5 Fixed #365. Added signatures and error code detection
git-svn-id: file:///home/svn/framework3/trunk@7189 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:18:22 +00:00
et 814675f952 Changed variable name for consistency purposes
git-svn-id: file:///home/svn/framework3/trunk@7188 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:01:43 +00:00
et dc415c76ca Fixes #364. Added error message detection and signatures
git-svn-id: file:///home/svn/framework3/trunk@7187 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 19:46:30 +00:00
et bee78d3b51 First round of fixes for wmap modules
git-svn-id: file:///home/svn/framework3/trunk@7181 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 07:10:32 +00:00
et 09ec91d9bf Use name convention
git-svn-id: file:///home/svn/framework3/trunk@7146 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 23:07:34 +00:00
et c14bd99aff Base for an error based sql inj. scanner
git-svn-id: file:///home/svn/framework3/trunk@7145 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:52:54 +00:00
et 95bf9f84f7 Basic robots scanner for wmap
git-svn-id: file:///home/svn/framework3/trunk@7144 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:48:25 +00:00
et 97ae32a318 Minor display changes
git-svn-id: file:///home/svn/framework3/trunk@7143 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:40:57 +00:00
et ec00f69e66 Subversion scanner
git-svn-id: file:///home/svn/framework3/trunk@7142 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 20:49:34 +00:00
cg 56d4345830 updated options module
git-svn-id: file:///home/svn/framework3/trunk@7078 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-27 22:42:24 +00:00
HD Moore 5972666f63 See #339. Massive cleanup of author names, make them consistent across modules
git-svn-id: file:///home/svn/framework3/trunk@7075 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-27 21:30:45 +00:00
et d0289671f6 Basic generic wmap modules
git-svn-id: file:///home/svn/framework3/trunk@6948 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-10 00:04:01 +00:00
et 87d59b4512 More webdav modules to grab information
git-svn-id: file:///home/svn/framework3/trunk@6947 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-10 00:01:38 +00:00
et a92fa0b424 Add test case
git-svn-id: file:///home/svn/framework3/trunk@6946 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-09 23:59:44 +00:00
Patrick Webster 9080dd1f0d Added references and MSB to unicode bypass modules.
git-svn-id: file:///home/svn/framework3/trunk@6914 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-28 07:39:34 +00:00
James Lee 529ded22ae reverting last commit; somebody didn't cross their fingers
git-svn-id: file:///home/svn/framework3/trunk@6847 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-19 20:48:47 +00:00
James Lee c3dc1ecb55 reintegrate browser_autopwn into trunk; cross your fingers and hope this works
git-svn-id: file:///home/svn/framework3/trunk@6846 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-19 17:27:36 +00:00
HD Moore 4a421dbb33 Fix some busted code in the frontpage_login module, thanks to bill.e.ghote
git-svn-id: file:///home/svn/framework3/trunk@6691 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-21 06:30:55 +00:00
HD Moore a113343d00 Fix a broken next
git-svn-id: file:///home/svn/framework3/trunk@6649 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-14 15:02:32 +00:00
HD Moore 314d1a27a2 Adds a new module from nebulous for checking SSL expiry
git-svn-id: file:///home/svn/framework3/trunk@6636 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-09 21:12:48 +00:00
et fdff151442 More threading
git-svn-id: file:///home/svn/framework3/trunk@6626 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:52:22 +00:00
et 65c3f5981d just rename it
git-svn-id: file:///home/svn/framework3/trunk@6625 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:27:23 +00:00
et 07bd36232f minor fixes
git-svn-id: file:///home/svn/framework3/trunk@6624 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:21:22 +00:00
et 509233262c Advanced options to remove detail messages and handle multithreads
git-svn-id: file:///home/svn/framework3/trunk@6622 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-03 05:49:38 +00:00
HD Moore 16806be1a7 Adds threading
git-svn-id: file:///home/svn/framework3/trunk@6621 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-03 05:19:42 +00:00
et 36a21436ff Fix DAV header match. Applied patch by grutz
git-svn-id: file:///home/svn/framework3/trunk@6610 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-02 04:43:57 +00:00
et ee70866e08 Small fix on authenticated dir check. Thanks Rhys Kidd
git-svn-id: file:///home/svn/framework3/trunk@6603 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-31 01:34:04 +00:00
et 166e1ebf2c Added simplified version of webdav unicode bypass scanner
git-svn-id: file:///home/svn/framework3/trunk@6589 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-28 03:30:52 +00:00
et e1c5c72c82 Added check for authenticated directories
git-svn-id: file:///home/svn/framework3/trunk@6588 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-28 03:27:25 +00:00
HD Moore b6ab8ffd21 Fix up the unicoding
git-svn-id: file:///home/svn/framework3/trunk@6580 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-25 20:21:20 +00:00
et 823fcc30d1 Added WebDAV scanner
git-svn-id: file:///home/svn/framework3/trunk@6576 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-23 01:55:34 +00:00
HD Moore d434be3ae8 Patch from Erik Fichtner to enable unicode overlong encoding
git-svn-id: file:///home/svn/framework3/trunk@6575 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-22 21:33:20 +00:00
et f8cac0cedf Fix proxy issue. Added datastore PROXIES to the parameters. Thanks spinbad
git-svn-id: file:///home/svn/framework3/trunk@6564 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-19 01:40:58 +00:00
HD Moore 8f5dc1305e Fix bad variable, reported by bill.e.ghote
git-svn-id: file:///home/svn/framework3/trunk@6563 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-18 18:02:21 +00:00
Patrick Webster 79c7abba8e Added wmap_dir_webdav_unicode_bypass.rb to detect vulnerable IIS6 WebDAV Unicode bypass folders.
git-svn-id: file:///home/svn/framework3/trunk@6562 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-18 03:57:13 +00:00
Patrick Webster 4426bc2df0 Added SOAP brute forcer module. YMMV.
git-svn-id: file:///home/svn/framework3/trunk@6495 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-23 03:16:29 +00:00
cg 0ea4bec847 updated for db usage
git-svn-id: file:///home/svn/framework3/trunk@6485 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-15 04:15:25 +00:00
kris 37c2e301ed replacing defunct framework URL in header comments in most modules and pcap_log
git-svn-id: file:///home/svn/framework3/trunk@6479 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-13 14:33:26 +00:00
et 0c859dc35e Minor fixes regarding target_host handling
git-svn-id: file:///home/svn/framework3/trunk@6477 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-12 02:00:50 +00:00
kris cc78d9a59c turn off svn:executable in modules
git-svn-id: file:///home/svn/framework3/trunk@6470 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-08 20:04:25 +00:00
et cf424edd73 fixed error case for ssl module
git-svn-id: file:///home/svn/framework3/trunk@6449 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-31 00:43:41 +00:00
HD Moore ae21a15dc4 Make these a little future-compatible with ruby 1.9
git-svn-id: file:///home/svn/framework3/trunk@6443 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-30 02:55:48 +00:00
HD Moore 3d6a0bab52 Fix up the version/options modules, make wmap_base_url display the vhost and use the host/port separator correctly
git-svn-id: file:///home/svn/framework3/trunk@6414 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 17:57:12 +00:00
HD Moore 89ad4df087 Fix WMAP modules to use the new scanner api; add wmap_base_url as a shorthand (extend in the future to do VHOST as well), general cosmetic cleanups
git-svn-id: file:///home/svn/framework3/trunk@6413 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 17:45:14 +00:00
HD Moore eccfcdfced Sets svn keywords on modules missing it, tweaks the emailer module
git-svn-id: file:///home/svn/framework3/trunk@6407 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 06:03:35 +00:00
et 07b3f614ce New plain HTTP XPath 1.0 blind injection module
git-svn-id: file:///home/svn/framework3/trunk@6355 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-20 03:53:02 +00:00
cg 9b210702a3 add scanner functionality to oracle_version.rb and removed some comments from options.rb
git-svn-id: file:///home/svn/framework3/trunk@6088 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-08 01:57:28 +00:00
et e7dda0000b Wmap SSL module renamed and updated to check for MD5 signature algorithm.
git-svn-id: file:///home/svn/framework3/trunk@6062 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-03 05:20:20 +00:00
kris 248f1e9fc3 Remove "#{xxx.to_s}" redundancies ('s/\(#{[^}]*\)\.to_s}/\1}/g')
git-svn-id: file:///home/svn/framework3/trunk@6022 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-19 07:11:08 +00:00
et daf317c25b Added wmap generic email extractor as an example of direct access to the database.
git-svn-id: file:///home/svn/framework3/trunk@6003 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-08 00:51:16 +00:00
et 3e19245054 Fixed handling of root website directory. Minor presentation fixes in test modules
git-svn-id: file:///home/svn/framework3/trunk@5987 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-30 22:41:09 +00:00
kris 0c0b171be4 use OptInt for numeric options
git-svn-id: file:///home/svn/framework3/trunk@5979 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-24 18:42:59 +00:00
et 110e7be0e9 Added wmap OPTIONS module by Chris Gates
git-svn-id: file:///home/svn/framework3/trunk@5977 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-23 19:42:42 +00:00
et 9144789a9b Added module authentication verb bypass
git-svn-id: file:///home/svn/framework3/trunk@5976 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-22 04:34:59 +00:00
et c92a64e687 Added module to test for file copies
git-svn-id: file:///home/svn/framework3/trunk@5975 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-22 04:34:00 +00:00
HD Moore cef75433ec Fix non-404 errors
git-svn-id: file:///home/svn/framework3/trunk@5909 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:59:52 +00:00
HD Moore af686334c9 Fix ecode processing
git-svn-id: file:///home/svn/framework3/trunk@5908 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:51:21 +00:00
HD Moore e90c534500 Changes to the directory scanner
git-svn-id: file:///home/svn/framework3/trunk@5907 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:10:03 +00:00
et 4cbe6f975a Added new modules for file detection based on the name of the path directory
git-svn-id: file:///home/svn/framework3/trunk@5905 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 02:26:09 +00:00
et 2a1536d8d6 Fixed reporting variable wmap dir listing module
git-svn-id: file:///home/svn/framework3/trunk@5901 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 01:59:51 +00:00
HD Moore 07f087b969 Switch to the new exception format
git-svn-id: file:///home/svn/framework3/trunk@5880 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-11 05:12:52 +00:00
et b4cbe4ff8d Multiple bug fixes. Fixed query modules now resolved to correct function. Corrected in proxy and wmap code handling of RHOSTS as hostnames are not in use. Fixed reporting as target port was not handled properly and modules modified to reflect new wmap_target methods.
git-svn-id: file:///home/svn/framework3/trunk@5869 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-10 04:38:05 +00:00
et 75be2e33ad Added module reporting and wmap_reports command
git-svn-id: file:///home/svn/framework3/trunk@5789 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-27 02:22:30 +00:00
et ebc5294574 Added new wmap sqlmap module
git-svn-id: file:///home/svn/framework3/trunk@5787 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-25 03:26:50 +00:00
et 29e983567e removed reports_exist check
git-svn-id: file:///home/svn/framework3/trunk@5785 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-23 04:23:54 +00:00
et c4dc77c15b fixed ip handling and CN parsing
git-svn-id: file:///home/svn/framework3/trunk@5784 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-23 03:19:24 +00:00
Ramon de C Valle c66d6c4e46 Set property 'svn:keywords'
git-svn-id: file:///home/svn/framework3/trunk@5783 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-23 02:43:21 +00:00
et 13ab6ed2d8 added ssl host name detection module
git-svn-id: file:///home/svn/framework3/trunk@5776 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-22 05:31:55 +00:00
et f98c87ff22 added directory scanner
git-svn-id: file:///home/svn/framework3/trunk@5775 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-22 02:31:52 +00:00
Ramon de C Valle f124597a56 Code cleanups
git-svn-id: file:///home/svn/framework3/trunk@5773 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 21:03:39 +00:00
et 7e73ed8c15 first attempt of reporting implementation.
git-svn-id: file:///home/svn/framework3/trunk@5771 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 20:32:14 +00:00
et 478c8b0824 Added wmap simple directoty listing module
git-svn-id: file:///home/svn/framework3/trunk@5741 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-12 04:59:39 +00:00
James Lee b1f3c83f7b add support for finding .swp files
git-svn-id: file:///home/svn/framework3/trunk@5739 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-11 06:38:28 +00:00
James Lee de780fb2da typo fix
git-svn-id: file:///home/svn/framework3/trunk@5738 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-11 05:49:27 +00:00
et 7e5c759dd0 Fixed and reference to browser autopwn.
git-svn-id: file:///home/svn/framework3/trunk@5733 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 04:25:18 +00:00
HD Moore fd256ec4a1 This massive commit changes the metasploit 3 module format. The new syntax allows for greater scalability and future improvements to the metasploit module loader. This change also makes it easier for users to add new modules, since the class name no longer needs to match the directory structure.
git-svn-id: file:///home/svn/framework3/trunk@5709 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-02 05:23:59 +00:00
et fa3ce57fed Implemented Auxiliary::WMAPScanUniqueQuery.
git-svn-id: file:///home/svn/framework3/trunk@5704 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-01 03:57:57 +00:00
HD Moore b001e4684d Import first version of WMAP from ET LoWNOISE
git-svn-id: file:///home/svn/framework3/trunk@5675 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-22 22:32:20 +00:00
HD Moore 88a04a0ba0 New FrontPage modules from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@5500 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-01 18:53:28 +00:00
HD Moore 6e42e86e9d Complete move of test modules to test subdirectory
git-svn-id: file:///home/svn/framework3/trunk@5330 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:28:12 +00:00
HD Moore b5177e1dae module reoi
git-svn-id: file:///home/svn/framework3/trunk@5329 4d416f70-5f16-0410-b530-b9f4589650da
2008-01-23 02:26:52 +00:00
HD Moore d95a0d8d90 Updated svn:keywords, merging minor changes
git-svn-id: file:///home/svn/framework3/trunk@4886 4d416f70-5f16-0410-b530-b9f4589650da
2007-05-07 04:48:45 +00:00
HD Moore daf5936870 Merging minor changes to HTTP, adding NX support to landesk from NP
git-svn-id: file:///home/svn/framework3/trunk@4786 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-25 02:51:49 +00:00
HD Moore 4d1c274387 Merging all of the auxilliary/scanner related features
git-svn-id: file:///home/svn/framework3/trunk@4749 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-24 06:27:39 +00:00