Commit Graph

618 Commits (88ed614b7ee86271fb146811b718e2baba05a765)

Author SHA1 Message Date
Mario Ceballos 296144fa9c added exploit module xmplay_asx.rb
git-svn-id: file:///home/svn/framework3/trunk@4151 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-24 01:12:05 +00:00
HD Moore 58c45ed272 Netgear module updates
git-svn-id: file:///home/svn/framework3/trunk@4150 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-22 21:36:38 +00:00
Mario Ceballos 28ba2a23ad added auxiliary module nfsd_mount.rb
git-svn-id: file:///home/svn/framework3/trunk@4149 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-19 00:01:41 +00:00
HD Moore cb5f183a07 Denial of service module for now...
git-svn-id: file:///home/svn/framework3/trunk@4148 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-18 17:57:39 +00:00
HD Moore 7bf91d6760 Updates to the dlink exploit, shiny new netgear exploit
git-svn-id: file:///home/svn/framework3/trunk@4146 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-16 06:00:21 +00:00
HD Moore 5c0176e2dd Better credit to Gil in the comments, made ADDR_DST do something
git-svn-id: file:///home/svn/framework3/trunk@4141 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-15 21:23:03 +00:00
pusscat 2ce2ff8a3a Trying to add this again...
git-svn-id: file:///home/svn/framework3/trunk@4140 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-15 19:04:37 +00:00
pusscat 3c8315d2ad Boyahh muthahfuckers.
git-svn-id: file:///home/svn/framework3/trunk@4139 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-15 17:27:36 +00:00
Mario Ceballos 6117311fe0 fixed spacing...
git-svn-id: file:///home/svn/framework3/trunk@4138 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-15 01:04:34 +00:00
Mario Ceballos dbb3cf8482 fixed spacing...
git-svn-id: file:///home/svn/framework3/trunk@4137 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-15 01:02:04 +00:00
Mario Ceballos dd8c1d3ffe fixed spacing ...
git-svn-id: file:///home/svn/framework3/trunk@4136 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-14 01:44:57 +00:00
Mario Ceballos c2afef0978 fixed spacing..
git-svn-id: file:///home/svn/framework3/trunk@4135 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-14 01:43:42 +00:00
HD Moore 8863474c57 Release time :-)
git-svn-id: file:///home/svn/framework3/trunk@4134 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-13 17:03:34 +00:00
Mario Ceballos 313fb089fb added exploit module cesarftp_mkd.rb, with spacing fixed ;)
git-svn-id: file:///home/svn/framework3/trunk@4131 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-12 15:57:37 +00:00
Mario Ceballos e65978b86d added exploit module navicopa_get_overflow.rb, with spacing fixed ;)
git-svn-id: file:///home/svn/framework3/trunk@4130 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-12 15:55:06 +00:00
HD Moore f925120ddd Wifi updates
git-svn-id: file:///home/svn/framework3/trunk@4129 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-11 21:45:28 +00:00
HD Moore 03927d92ff Cosmetic and exit when a session is created
git-svn-id: file:///home/svn/framework3/trunk@4125 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-11 10:05:20 +00:00
HD Moore 3d546243a6 Minor cosmetic change
git-svn-id: file:///home/svn/framework3/trunk@4124 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-11 05:00:23 +00:00
HD Moore 7cdcf9b269 First kernel remote for Metasploit 3!
git-svn-id: file:///home/svn/framework3/trunk@4123 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-11 04:56:11 +00:00
Matt Miller 364df6eac1 fixed MC spacing
git-svn-id: file:///home/svn/framework3/trunk@4118 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-09 17:32:56 +00:00
Mario Ceballos 820ef5d853 added exploit module goodtech_telnet.rb
git-svn-id: file:///home/svn/framework3/trunk@4116 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-08 23:26:16 +00:00
HD Moore 777e70b088 Addition of the new Pcap interface
Force user to install the pcapx and lorcon libs



git-svn-id: file:///home/svn/framework3/trunk@4114 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-06 05:29:56 +00:00
Mario Ceballos e659032c35 added exploit module mirc_irc_url.rb
git-svn-id: file:///home/svn/framework3/trunk@4104 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-03 19:35:42 +00:00
Mario Ceballos 51a85bc4fb fixed type :(
git-svn-id: file:///home/svn/framework3/trunk@4103 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-02 12:20:05 +00:00
Mario Ceballos 000f8d2e2b add exploit module aim_triton_cseq.rb
git-svn-id: file:///home/svn/framework3/trunk@4102 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-02 01:16:40 +00:00
HD Moore c38037cb17 Renamed for consistencuy
git-svn-id: file:///home/svn/framework3/trunk@4101 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-01 20:17:21 +00:00
HD Moore d9835c65e6 Adding a quick module for empty SSID bug
git-svn-id: file:///home/svn/framework3/trunk@4100 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-01 20:14:27 +00:00
Mario Ceballos 4330ed57e0 added exploit module sipxphone_cseq.rb
git-svn-id: file:///home/svn/framework3/trunk@4097 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-01 12:14:54 +00:00
Mario Ceballos 1823a3df8e added exploit module ipswitch_wug_maincfgret.rb
git-svn-id: file:///home/svn/framework3/trunk@4096 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-01 12:14:17 +00:00
HD Moore 704bb6d43d Added the kernel stack trace:
git-svn-id: file:///home/svn/framework3/trunk@4095 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-01 03:37:26 +00:00
HD Moore 4c62b9c8b0 Typos fixed
git-svn-id: file:///home/svn/framework3/trunk@4094 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-01 03:32:45 +00:00
HD Moore 254a78a2a7 Oh look, Apple bugs...
git-svn-id: file:///home/svn/framework3/trunk@4093 4d416f70-5f16-0410-b530-b9f4589650da
2006-11-01 03:28:44 +00:00
HD Moore b9834c8524 VoIP module from david maynor
git-svn-id: file:///home/svn/framework3/trunk@4091 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-31 23:18:54 +00:00
HD Moore b4742a1252 Bug fixes to SMB OS detection
git-svn-id: file:///home/svn/framework3/trunk@4084 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-29 16:35:37 +00:00
Mario Ceballos 2f071d49f5 added exploit module edirectory_host.rb
git-svn-id: file:///home/svn/framework3/trunk@4060 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-27 14:25:42 +00:00
Mario Ceballos a2cc409833 added exploit module oracle9i_xdb_pass.rb
git-svn-id: file:///home/svn/framework3/trunk@4059 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-26 13:17:43 +00:00
HD Moore 925ad4878a Some new wireless modules
git-svn-id: file:///home/svn/framework3/trunk@4058 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-26 05:38:11 +00:00
Mario Ceballos 2b0ad5de47 added exploit module eudora_list.rb.
git-svn-id: file:///home/svn/framework3/trunk@4054 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-25 22:03:40 +00:00
HD Moore d366f3a90c Working lorcon interface
git-svn-id: file:///home/svn/framework3/trunk@4053 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-25 19:16:55 +00:00
Matt Miller 2c5cf95d0f removed modules that don't currently function
git-svn-id: file:///home/svn/framework3/trunk@4052 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-25 13:29:25 +00:00
Matt Miller a164297f2a updated target name
git-svn-id: file:///home/svn/framework3/trunk@4046 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-17 01:59:09 +00:00
Matt Miller 465ea3c677 initial integration of basic kernel-mode payload support
git-svn-id: file:///home/svn/framework3/trunk@4044 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-16 23:59:14 +00:00
HD Moore 667adc68e9 Import from MC
git-svn-id: file:///home/svn/framework3/trunk@4024 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-15 07:58:48 +00:00
HD Moore b5fb11ac91 Added by LMH
git-svn-id: file:///home/svn/framework3/trunk@4022 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-15 07:53:19 +00:00
Matt Miller b354c82258 ypops overflow ported
git-svn-id: file:///home/svn/framework3/trunk@4021 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-12 03:24:31 +00:00
Matt Miller f1fb05690f misc bugfixes in the http subsystem
git-svn-id: file:///home/svn/framework3/trunk@4019 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-11 09:27:39 +00:00
Matt Miller 7f981714a6 ported realserver describe exploit
git-svn-id: file:///home/svn/framework3/trunk@4018 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-11 09:18:01 +00:00
Matt Miller abf2e057c8 apache chunked encoding win32 port
git-svn-id: file:///home/svn/framework3/trunk@4017 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-11 08:31:54 +00:00
HD Moore 33d594e887 Code from MC
git-svn-id: file:///home/svn/framework3/trunk@4016 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-10 19:33:49 +00:00
HD Moore 2284ebe9b0 Updated to reflect the MSB name
git-svn-id: file:///home/svn/framework3/trunk@4015 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-10 18:08:23 +00:00
Matt Miller b477547a3d partial fix for mod cache issue? committed vlad's new stagers
git-svn-id: file:///home/svn/framework3/trunk@4013 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-10 06:44:15 +00:00
Matt Miller 56780bed66 ia webmail port, not tested
git-svn-id: file:///home/svn/framework3/trunk@4009 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-03 05:42:34 +00:00
HD Moore c0f55ed478 Corrected the authors line
git-svn-id: file:///home/svn/framework3/trunk@3999 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-01 16:52:55 +00:00
HD Moore 7376f9a421 Imported the download-exec payload from msf 2.x
git-svn-id: file:///home/svn/framework3/trunk@3998 4d416f70-5f16-0410-b530-b9f4589650da
2006-10-01 16:50:13 +00:00
HD Moore 634fbd3205 Evasion and bug fixes
git-svn-id: file:///home/svn/framework3/trunk@3979 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 04:06:33 +00:00
HD Moore f2ed69b991 User-Agent detection for VML exploit.
Randomization for the setSlice() exploit



git-svn-id: file:///home/svn/framework3/trunk@3978 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 04:01:22 +00:00
HD Moore 432337a331 Exploit module for the new VML fill method.
git-svn-id: file:///home/svn/framework3/trunk@3977 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 03:52:54 +00:00
HD Moore e73a959d46 New exploit module from MC
git-svn-id: file:///home/svn/framework3/trunk@3976 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 03:23:23 +00:00
HD Moore 0e917a21eb New exploit module from MC
git-svn-id: file:///home/svn/framework3/trunk@3975 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-27 03:18:57 +00:00
HD Moore 7c09ab1191 Update from MC:
it needed the 
 'PrependEncoder' for some help. I also just cleaned up the exploit() 
 a bit.




git-svn-id: file:///home/svn/framework3/trunk@3946 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-24 17:49:46 +00:00
HD Moore c2ef34a420 autoexploit magic
git-svn-id: file:///home/svn/framework3/trunk@3914 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-18 00:54:29 +00:00
HD Moore 6d04cd15a8 Move non-exploit into auxiliary
git-svn-id: file:///home/svn/framework3/trunk@3913 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-18 00:33:16 +00:00
HD Moore e892e6d0c3 Disable the auto exploitation
git-svn-id: file:///home/svn/framework3/trunk@3912 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-18 00:30:29 +00:00
HD Moore c3876b6dd6 Updates for the autopwn stuff...
git-svn-id: file:///home/svn/framework3/trunk@3906 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-17 08:00:37 +00:00
HD Moore f2cbcedf4d Break the loop when a session is created
git-svn-id: file:///home/svn/framework3/trunk@3890 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-14 06:22:24 +00:00
HD Moore 4c37fe428d A replacement for payload_handler
git-svn-id: file:///home/svn/framework3/trunk@3889 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-14 06:09:46 +00:00
HD Moore c9b90c1587 Minor cosmetic changes
git-svn-id: file:///home/svn/framework3/trunk@3887 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-14 05:51:15 +00:00
HD Moore 603843382d Trigger a nice blue screen :-)
git-svn-id: file:///home/svn/framework3/trunk@3886 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-14 05:42:20 +00:00
HD Moore 41c81a1e12 Consistency changes for exploit titles and additional references
git-svn-id: file:///home/svn/framework3/trunk@3878 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:49:39 +00:00
HD Moore c62905f475 More cosmetic fixes, plus some removal of static string
git-svn-id: file:///home/svn/framework3/trunk@3877 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:30:54 +00:00
HD Moore e52fda25fd Consistency in naming conventions
git-svn-id: file:///home/svn/framework3/trunk@3876 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:28:35 +00:00
HD Moore 1902b1809d Consistency fixes for IIS modules
git-svn-id: file:///home/svn/framework3/trunk@3875 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:25:40 +00:00
HD Moore 339b5193f3 More modules from MC
git-svn-id: file:///home/svn/framework3/trunk@3874 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 06:20:05 +00:00
HD Moore 78e482fd0b Bugfix reported by MC
git-svn-id: file:///home/svn/framework3/trunk@3873 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-13 05:40:09 +00:00
HD Moore a82dce4d5b Import from 2.6, bug fix to transfermode
git-svn-id: file:///home/svn/framework3/trunk@3872 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-12 06:05:23 +00:00
HD Moore abe9027abb More modules from MC
git-svn-id: file:///home/svn/framework3/trunk@3870 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-12 05:58:09 +00:00
HD Moore 0b438ae5b4 Two new modules from MC
git-svn-id: file:///home/svn/framework3/trunk@3868 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-12 05:46:42 +00:00
Matt Miller 2822ef3c4c added support for manual ranking
git-svn-id: file:///home/svn/framework3/trunk@3867 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-12 05:35:07 +00:00
HD Moore ef6bbb649c Bug fix, thanks MC
git-svn-id: file:///home/svn/framework3/trunk@3865 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-10 16:18:35 +00:00
HD Moore 667897ee25 Remove commented block of debugging code
git-svn-id: file:///home/svn/framework3/trunk@3864 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-10 05:11:39 +00:00
HD Moore 47039ff3fa First round of bugfixes for encoders. Alphanumeric encoders no longer default the BufferRegister option, since this can lead to non-compatible exploits falling through to these encoders, selecting them, and then crashing. The new method uses a dynamic (not quite poly) geteip generator, that while not yet alphanumeric compatible, it handles most of the known use cases. Remaining items:
1) Figure out how to handle unicode geteip (unicode encoded, alphanum probably)
2) Add keys to the unicode payloads to force a corresponding keyu on the exploit side to enable 




git-svn-id: file:///home/svn/framework3/trunk@3863 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-10 05:10:48 +00:00
HD Moore f02cf4576e New exploit from MC
git-svn-id: file:///home/svn/framework3/trunk@3857 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-08 18:35:30 +00:00
pusscat 73678e2375 Add PoC DoS for the ms06-019 exchange modprops vuln - crashes HEAVILY dependant on modprops used and current heap state :(
git-svn-id: file:///home/svn/framework3/trunk@3856 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-06 17:45:17 +00:00
HD Moore e0465b92aa Bug fix
git-svn-id: file:///home/svn/framework3/trunk@3852 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-01 19:45:00 +00:00
Matt Miller ea06abe5bb support for generic payloads
git-svn-id: file:///home/svn/framework3/trunk@3843 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-26 02:13:25 +00:00
HD Moore d38e41e96b DNS and SNMP decoding
git-svn-id: file:///home/svn/framework3/trunk@3841 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-24 05:37:40 +00:00
Matt Miller 66b99d69ae more fixes for the meterpreter pivoting issues
git-svn-id: file:///home/svn/framework3/trunk@3840 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-22 07:19:59 +00:00
Matt Miller d8b2f95178 auto load stdapi before interact, implement type? interface
git-svn-id: file:///home/svn/framework3/trunk@3833 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-15 04:07:25 +00:00
HD Moore 77263c71de Rename to be consistent with other modules
git-svn-id: file:///home/svn/framework3/trunk@3832 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-15 02:49:28 +00:00
Matt Miller a230c3f800 credit
git-svn-id: file:///home/svn/framework3/trunk@3831 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-14 09:00:50 +00:00
Matt Miller a724d42aa0 added mcafee mcsubmgr exploit, added functional avoid utf8 encoder
git-svn-id: file:///home/svn/framework3/trunk@3830 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-14 08:55:37 +00:00
HD Moore 3682e30261 Added mssql response parsing
git-svn-id: file:///home/svn/framework3/trunk@3829 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-13 18:14:38 +00:00
HD Moore a6cb1142e9 From MC, with small mods
git-svn-id: file:///home/svn/framework3/trunk@3828 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-13 18:03:49 +00:00
HD Moore 7bab6241e6 Port of the 2.x version
git-svn-id: file:///home/svn/framework3/trunk@3826 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-13 04:19:28 +00:00
HD Moore 9ff6072274 Added UDP sweeper
git-svn-id: file:///home/svn/framework3/trunk@3825 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-13 02:06:27 +00:00
HD Moore d3b9cf1b20 Added rerun command to auxiliary
Fixed range_walker to allow multiple ranges
Version scanner now mostly works



git-svn-id: file:///home/svn/framework3/trunk@3824 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-13 00:08:40 +00:00
HD Moore e3ce04667f Re-org
git-svn-id: file:///home/svn/framework3/trunk@3821 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-12 08:52:54 +00:00
HD Moore c5542fd347 Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that
supports per-range, per-host, and per-batch requests. The reporting stuff has been moved
into a new mixin for it. The old recon stuff was pulled out and sample modules for the
scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-)




git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-12 08:31:38 +00:00
Matt Miller 86c400a8bd sup
git-svn-id: file:///home/svn/framework3/trunk@3809 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-08 18:39:49 +00:00
HD Moore 13260cc003 Minor changes, LSASS still broked
git-svn-id: file:///home/svn/framework3/trunk@3805 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-05 18:18:27 +00:00
HD Moore 25c08bb206 Bug fixes, list of known bugs, final prep for beta-1
git-svn-id: file:///home/svn/framework3/trunk@3803 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-02 06:30:36 +00:00
HD Moore 6a821b59f9 Removed alert() :-)
git-svn-id: file:///home/svn/framework3/trunk@3785 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-31 02:51:43 +00:00
HD Moore e55cff59e1 Fixed Rex::Arch.endian()
Added Rex::Text.to_unescape()
Added two mozilla exploits
Fixed firefox exploit to use new api




git-svn-id: file:///home/svn/framework3/trunk@3784 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-31 02:50:41 +00:00
HD Moore 8cc12d1a3d StackAdjustment added to most exploits, PNP tweaked
git-svn-id: file:///home/svn/framework3/trunk@3783 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-31 02:01:14 +00:00
HD Moore 0824394ce4 Prepend -> StackAdjustment
git-svn-id: file:///home/svn/framework3/trunk@3782 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-31 00:41:02 +00:00
HD Moore d0bc17f17a Minor updates
git-svn-id: file:///home/svn/framework3/trunk@3778 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-30 21:31:02 +00:00
HD Moore 817c4c189f Timeouts added for handlers
git-svn-id: file:///home/svn/framework3/trunk@3773 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-29 22:37:39 +00:00
HD Moore c572f4cb8c Typo fix
git-svn-id: file:///home/svn/framework3/trunk@3765 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-27 21:03:24 +00:00
HD Moore 167f787fcf Bug fix from nico
git-svn-id: file:///home/svn/framework3/trunk@3744 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-18 01:09:42 +00:00
HD Moore 35568b570a Demo code added for MS06-035, mailslot write added to client.rb
git-svn-id: file:///home/svn/framework3/trunk@3740 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-11 20:02:45 +00:00
HD Moore 5b47ff422f Putting non-modules into the module tree will cause them to execute on Framework load!
git-svn-id: file:///home/svn/framework3/trunk@3733 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-28 00:33:34 +00:00
pusscat 4e99e7aafb Add PoC for no-user-action-necessary Outlook vuln - 0day
git-svn-id: file:///home/svn/framework3/trunk@3725 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-23 19:03:09 +00:00
HD Moore 29389ad2dc Adding a README
git-svn-id: file:///home/svn/framework3/trunk@3724 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-23 18:46:24 +00:00
HD Moore 1de5abe8e8 Hurray, it now drops a shell! :)
git-svn-id: file:///home/svn/framework3/trunk@3723 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-23 06:21:10 +00:00
pusscat 56b15b1f3f EIP and RegCloseKey handle offsets correct now
git-svn-id: file:///home/svn/framework3/trunk@3721 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-22 21:06:22 +00:00
HD Moore 0468c771b8 Added credit
git-svn-id: file:///home/svn/framework3/trunk@3720 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-21 23:41:28 +00:00
HD Moore b7b5bf56d8 Cosmetic
git-svn-id: file:///home/svn/framework3/trunk@3717 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-21 21:48:50 +00:00
HD Moore fdd7f4fd74 MC asked us to place his code under MSF license
git-svn-id: file:///home/svn/framework3/trunk@3714 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-21 18:38:40 +00:00
HD Moore bb0def749f Closer...
git-svn-id: file:///home/svn/framework3/trunk@3713 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-20 20:45:50 +00:00
HD Moore 0cf2909fda Updted
git-svn-id: file:///home/svn/framework3/trunk@3712 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-20 19:28:13 +00:00
pusscat 08b268aa65 updated for hd
git-svn-id: file:///home/svn/framework3/trunk@3710 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-20 14:35:55 +00:00
HD Moore 0633be5a93 Better error handling for patched systems
git-svn-id: file:///home/svn/framework3/trunk@3708 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-19 16:16:50 +00:00
pusscat 3027e76384 Add non-working (bad stub) start for rasmans.dll registry corruption - correct function (I think ;)
git-svn-id: file:///home/svn/framework3/trunk@3707 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-19 13:54:21 +00:00
HD Moore 14dabc399e Added DOS aux modules
Temporarily added RRAS_MAGIC


git-svn-id: file:///home/svn/incoming/trunk@3666 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-15 15:52:01 +00:00
HD Moore 93eefee44f Consistency and cosmetics..
git-svn-id: file:///home/svn/incoming/trunk@3665 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-15 15:31:56 +00:00
HD Moore 1e5745ecd4 Added support for Windows XP SP1
git-svn-id: file:///home/svn/incoming/trunk@3664 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-15 15:30:46 +00:00
HD Moore 7a3bfce2b0 Straight port from anonymous
git-svn-id: file:///home/svn/incoming/trunk@3662 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-14 21:26:43 +00:00
HD Moore 372edb7957 Wee
git-svn-id: file:///home/svn/incoming/trunk@3661 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-14 20:39:16 +00:00
HD Moore a53bdd04e2 Removed debug
git-svn-id: file:///home/svn/incoming/trunk@3655 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-08 20:59:33 +00:00
HD Moore a8050a09ff Exploit from MC
git-svn-id: file:///home/svn/incoming/trunk@3653 4d416f70-5f16-0410-b530-b9f4589650da
2006-06-08 19:19:22 +00:00
HD Moore eb93375277 Remove debugging statement
git-svn-id: file:///home/svn/incoming/trunk@3647 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-30 16:11:35 +00:00
HD Moore dd20a7a633 Exploit order change to get correct default options
git-svn-id: file:///home/svn/incoming/trunk@3644 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-30 15:44:33 +00:00
pusscat c02749067f Add nonupper encoder, like nonalpha, but with badchar support instead of lowercase char range
git-svn-id: file:///home/svn/incoming/trunk@3641 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-08 15:04:50 +00:00
HD Moore 615104b6ab Other licensing updates (MSF->BSD) and minor cleanups
git-svn-id: file:///home/svn/incoming/trunk@3637 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-06 16:43:45 +00:00
HD Moore d086a1bedf BSD license the default for non-msfdev created modules.
git-svn-id: file:///home/svn/incoming/trunk@3636 4d416f70-5f16-0410-b530-b9f4589650da
2006-05-06 16:34:39 +00:00
HD Moore 1a54cc810a Fixed numerous issues involving smb/dcerpc interaction
Fixed 'bad' use of method definition (space after method name, will be depreciated soon)


git-svn-id: file:///home/svn/incoming/trunk@3626 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-30 19:49:27 +00:00
HD Moore f9b23371b8 aux -> auxiliary to fix a windows isue
git-svn-id: file:///home/svn/incoming/trunk@3624 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-27 05:16:03 +00:00
HD Moore 42bc7496cf All sorts of fun changes to smb/dcerpc, the basics are:
1) Clean up SMB constants, add new ones, define which ones are supported by dialect
2) DCERPC over SMB uses a 'OpenPipe' class, not an 'OpenFile'
3) A new DCERPC option called 'smb_pipeio' allows the user to switch between Read/Write and TransactNamedPipe()


git-svn-id: file:///home/svn/incoming/trunk@3622 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-26 16:59:44 +00:00
HD Moore 07e157efdf Working on encoder fixes
git-svn-id: file:///home/svn/incoming/trunk@3618 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-26 05:14:55 +00:00
pusscat bc9cc35f3e Fix offset for table
git-svn-id: file:///home/svn/incoming/trunk@3613 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-24 15:42:05 +00:00
pusscat 003c3444eb Change to reflect lib change
git-svn-id: file:///home/svn/incoming/trunk@3612 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-24 15:01:53 +00:00
pusscat f678425f07 Add non-alpha encoder (not quite done, but passes tests with \xcc)
git-svn-id: file:///home/svn/incoming/trunk@3604 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-20 21:11:33 +00:00
HD Moore 7e0f539b12 Updated
git-svn-id: file:///home/svn/incoming/trunk@3601 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-16 06:29:44 +00:00
HD Moore bf6ac76cd7 new code, needs encoders
git-svn-id: file:///home/svn/incoming/trunk@3597 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-14 20:22:15 +00:00
HD Moore ca72b7e2ed Woops, tenable-license check blob
git-svn-id: file:///home/svn/incoming/trunk@3595 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-13 16:13:48 +00:00
HD Moore 86671cef89 PeerCast exploits
git-svn-id: file:///home/svn/incoming/trunk@3583 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-30 21:05:42 +00:00
HD Moore 46709d6222 cosmetic
git-svn-id: file:///home/svn/incoming/trunk@3581 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-30 15:06:41 +00:00
HD Moore bd862a5049 Mods
git-svn-id: file:///home/svn/incoming/trunk@3570 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-12 02:06:57 +00:00
HD Moore f82decbb74 Added
git-svn-id: file:///home/svn/incoming/trunk@3569 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-10 22:33:24 +00:00
HD Moore 5d284866d9 Fixed
git-svn-id: file:///home/svn/incoming/trunk@3568 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-10 08:03:14 +00:00
HD Moore 05bda2529a More aux, first hack on multi-target firefox exploit
git-svn-id: file:///home/svn/incoming/trunk@3565 4d416f70-5f16-0410-b530-b9f4589650da
2006-03-09 17:32:53 +00:00
bmc 9eaa03d43b * uniq exploit class name
git-svn-id: file:///home/svn/incoming/trunk@3540 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-22 20:34:43 +00:00
bmc 5916642428 * using command paylods give a pipe error, so trap that exception
git-svn-id: file:///home/svn/incoming/trunk@3536 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-21 16:18:38 +00:00
bmc 5699f17499 * add platform
git-svn-id: file:///home/svn/incoming/trunk@3535 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-21 14:27:28 +00:00
Matt Miller 3a37749de6 support for demand-loading of modules to improve load speed, expect problems
git-svn-id: file:///home/svn/incoming/trunk@3534 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-21 03:10:58 +00:00
bmc f6c6c9669c add Platform
git-svn-id: file:///home/svn/incoming/trunk@3533 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-19 04:18:21 +00:00
bmc b99a9e5075 * a few updates to make it a bit more like reality, still doesn't work though
git-svn-id: file:///home/svn/incoming/trunk@3518 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-07 15:23:54 +00:00
bmc 16156c8aea * the XML isn't required, random shit works just fine
* only normalizing of the stuff that SHOULD be normalizes works for shit with this exploit


git-svn-id: file:///home/svn/incoming/trunk@3515 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-06 22:47:06 +00:00
bmc 1c35f492a8 * turn into an HTTP client request
git-svn-id: file:///home/svn/incoming/trunk@3514 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-06 21:12:37 +00:00
bmc d14646e084 * remove redundant stringification
git-svn-id: file:///home/svn/incoming/trunk@3510 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-06 15:15:41 +00:00
vlad902 b158ccb973 Initial commit
git-svn-id: file:///home/svn/incoming/trunk@3509 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-05 22:05:01 +00:00
HD Moore 5b497d5e4d Added Irix platform
Tweaked reverse.rb to use a subshell and background it
Added Irix lpdexec


git-svn-id: file:///home/svn/incoming/trunk@3505 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-05 18:10:08 +00:00
HD Moore 868d7bf561 Working findtag + samba
Removed call to evasions that didnt have corresponding definition


git-svn-id: file:///home/svn/incoming/trunk@3501 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-04 21:04:50 +00:00
HD Moore 2290b14c7d PPC fixes
git-svn-id: file:///home/svn/incoming/trunk@3500 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-04 20:40:25 +00:00
bmc d7e2e99cef * display something when the exploit is sent so the user has some indication of status
git-svn-id: file:///home/svn/incoming/trunk@3499 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-03 19:57:28 +00:00
bmc fe608d1676 general cleanups
add space evasions to the playlist


git-svn-id: file:///home/svn/incoming/trunk@3495 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-03 18:28:13 +00:00
HD Moore 792b3a8ad4 Ported, tested, and stuff.
git-svn-id: file:///home/svn/incoming/trunk@3494 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-03 03:31:41 +00:00
HD Moore 83be4703d6 modules/
git-svn-id: file:///home/svn/incoming/trunk@3493 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-02 20:43:55 +00:00
HD Moore 3a69fe2fae More features
git-svn-id: file:///home/svn/incoming/trunk@3492 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-02 05:54:06 +00:00
bmc 7bb13e2706 port from vlad, with a few cleanups
git-svn-id: file:///home/svn/incoming/trunk@3491 4d416f70-5f16-0410-b530-b9f4589650da
2006-02-01 22:35:36 +00:00
bmc 9096ecf8e7 * EVASION!
git-svn-id: file:///home/svn/incoming/trunk@3486 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-31 22:41:10 +00:00
bmc 7f270f55b0 its really an html exploit...
git-svn-id: file:///home/svn/incoming/trunk@3484 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-30 22:12:17 +00:00
HD Moore 7ee4d05bec Woo, neat krad winamp exploit :)
git-svn-id: file:///home/svn/incoming/trunk@3479 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-30 19:28:19 +00:00
HD Moore c1b9129bca A couple more assertions in the tcp_server test suite.
Added template for the winamp pls overflow (unc computer name)


git-svn-id: file:///home/svn/incoming/trunk@3474 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-30 17:25:44 +00:00
HD Moore 04341837f7 Bug fix to msfencode when invalid -e is specified
Small tweaks to type77, mostly for print_status and -find
Fixed busted payload port in shell_reverse_tcp


git-svn-id: file:///home/svn/incoming/trunk@3469 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-29 21:47:51 +00:00
bmc f1e0f7bcc9 * use zlib
git-svn-id: file:///home/svn/incoming/trunk@3460 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 22:06:06 +00:00
bmc 9996207faf * make me an HTML exploit
git-svn-id: file:///home/svn/incoming/trunk@3459 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 22:04:28 +00:00
bmc 5be5aa0033 * less fingerprintable
* less ugly

instead of blobs of hex for ...
    nops, use make_nops
    short jumps, use jmp_short
    unicode strings, use to_unicode
    math.to_s, use #{math}
    random junk, use rand_text with payload_badchars


git-svn-id: file:///home/svn/incoming/trunk@3456 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 21:18:52 +00:00
bmc 4d432875d0 via perl...
git-svn-id: file:///home/svn/incoming/trunk@3454 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 15:11:16 +00:00
HD Moore e249d9ebe5 Massive update to tab indentation (used ./dev/tabify.rb)
git-svn-id: file:///home/svn/incoming/trunk@3450 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-27 05:00:35 +00:00
bmc 6ab42be37d * wee, more php bullshit
git-svn-id: file:///home/svn/incoming/trunk@3448 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-26 02:07:59 +00:00
bmc 6b1e9648be * blobs of hex strings suck.
git-svn-id: file:///home/svn/incoming/trunk@3444 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-25 21:23:26 +00:00
bmc 7cedfcc828 * connectback perl payload
git-svn-id: file:///home/svn/incoming/trunk@3435 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-23 17:14:33 +00:00
HD Moore 8ca5e60c88 Removed and replaced by Aux
git-svn-id: file:///home/svn/incoming/trunk@3432 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-23 02:29:18 +00:00
HD Moore ec46bc70fd Typo
git-svn-id: file:///home/svn/incoming/trunk@3431 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-22 20:01:38 +00:00
HD Moore f485585e7c License information displayed by info
git-svn-id: file:///home/svn/incoming/trunk@3428 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-22 19:25:55 +00:00
HD Moore 1bffccf605 New licensing terms, revision bump to v3
git-svn-id: file:///home/svn/incoming/trunk@3425 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-21 22:10:20 +00:00
HD Moore c18e5a10a9 distcc
git-svn-id: file:///home/svn/incoming/trunk@3423 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-21 05:05:19 +00:00
HD Moore 7e7fd98927 prevented it frmo loading
git-svn-id: file:///home/svn/incoming/trunk@3418 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-21 02:21:54 +00:00
bmc 49016b9d99 * perl bind shell
git-svn-id: file:///home/svn/incoming/trunk@3417 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-20 22:31:58 +00:00
bmc eeca3cb4bc * fix exploit name
git-svn-id: file:///home/svn/incoming/trunk@3416 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-20 21:11:38 +00:00
bmc 164520753c * kill the debugging info
git-svn-id: file:///home/svn/incoming/trunk@3415 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-20 20:25:07 +00:00
bmc d6608d4dd5 * xmlrpc vuln
git-svn-id: file:///home/svn/incoming/trunk@3414 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-20 20:18:55 +00:00
Matt Miller d07e5fd330 patch from bmc
git-svn-id: file:///home/svn/incoming/trunk@3410 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-19 17:03:55 +00:00
HD Moore 2bd530b8e0 Fix
git-svn-id: file:///home/svn/incoming/trunk@3407 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-19 06:20:33 +00:00
Matt Miller 5cee818623 poly encoder fixes
git-svn-id: file:///home/svn/incoming/trunk@3406 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-18 15:43:48 +00:00
Matt Miller 423b023de8 patch for badchar stuff
git-svn-id: file:///home/svn/incoming/trunk@3404 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-18 15:21:41 +00:00
HD Moore b9bdd96f97 typo
git-svn-id: file:///home/svn/incoming/trunk@3398 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-17 01:11:10 +00:00
HD Moore ae8bb233e3 Rename
git-svn-id: file:///home/svn/incoming/trunk@3386 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-16 04:24:22 +00:00
HD Moore 8c1194eccd Another port
git-svn-id: file:///home/svn/incoming/trunk@3383 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-16 04:02:38 +00:00
Matt Miller 68a8a5262b change unknown license to GPL
git-svn-id: file:///home/svn/incoming/trunk@3379 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-16 03:48:36 +00:00
Matt Miller 2e19a86843 added license to all modules
git-svn-id: file:///home/svn/incoming/trunk@3377 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-16 02:59:47 +00:00
HD Moore 4a14fa7e02 Merged them into one
git-svn-id: file:///home/svn/incoming/trunk@3376 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-16 02:32:30 +00:00
HD Moore 9c5f4776b8 Some generic encoders for commands
git-svn-id: file:///home/svn/incoming/trunk@3375 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-15 22:43:44 +00:00
HD Moore 04f13dc167 Rename
git-svn-id: file:///home/svn/incoming/trunk@3374 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-15 21:26:20 +00:00
HD Moore 75a0aa2e76 Bind added, reverse fixed module name
git-svn-id: file:///home/svn/incoming/trunk@3373 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-15 21:13:41 +00:00
HD Moore 884fffa28c Ported the unix revers command payloads and handler
git-svn-id: file:///home/svn/incoming/trunk@3372 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-14 20:12:53 +00:00
vlad902 eccdce049c Fixed attribution to reference spoonm
git-svn-id: file:///home/svn/incoming/trunk@3357 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-09 02:09:40 +00:00
Matt Miller 3b72122932 remove superfluous unit test
git-svn-id: file:///home/svn/incoming/trunk@3350 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 20:23:11 +00:00
HD Moore 3783e27fc7 Fixed handler/disconnect order in FTP, fixes to metafile
git-svn-id: file:///home/svn/incoming/trunk@3348 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 14:27:59 +00:00
Matt Miller e4556d2688 fix syntax errors
git-svn-id: file:///home/svn/incoming/trunk@3347 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 10:38:35 +00:00
HD Moore b0aeeb47aa Code from MC
git-svn-id: file:///home/svn/incoming/trunk@3346 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 06:26:30 +00:00
vlad902 c5993b7b9b Is now smaller and deletes the file after execution
git-svn-id: file:///home/svn/incoming/trunk@3345 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 06:08:43 +00:00
vlad902 b011d080b3 No stagers can use this
git-svn-id: file:///home/svn/incoming/trunk@3344 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 03:26:41 +00:00
vlad902 b2d307beb2 Minor changes
git-svn-id: file:///home/svn/incoming/trunk@3342 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 02:42:52 +00:00
vlad902 ed5323e72b Smaller stager
git-svn-id: file:///home/svn/incoming/trunk@3341 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 02:23:49 +00:00
vlad902 443a34da7a Smaller stager, that also does closesocket so you can use it on the same port repeatdly.
git-svn-id: file:///home/svn/incoming/trunk@3340 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 02:23:36 +00:00
vlad902 d0a00445d7 Clear space for variables
git-svn-id: file:///home/svn/incoming/trunk@3339 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 01:47:23 +00:00
Matt Miller 4434198b02 rename block
git-svn-id: file:///home/svn/incoming/trunk@3338 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 01:17:06 +00:00
Matt Miller 9fda1582f8 rename block
git-svn-id: file:///home/svn/incoming/trunk@3337 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 01:16:49 +00:00
Matt Miller 1eead1a5e9 increase ranking
git-svn-id: file:///home/svn/incoming/trunk@3336 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 01:12:34 +00:00
Matt Miller 43495bd398 more poly
git-svn-id: file:///home/svn/incoming/trunk@3334 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 01:10:45 +00:00
vlad902 d7813bf8c7 My version of upexec,doesn't depend on hd's EBP shellcode structure
git-svn-id: file:///home/svn/incoming/trunk@3333 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 23:58:59 +00:00
Matt Miller c35e687659 jmp/call additive is no polyified
git-svn-id: file:///home/svn/incoming/trunk@3332 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 23:38:55 +00:00
Matt Miller 2f4467ebcd stupid cvs
git-svn-id: file:///home/svn/incoming/trunk@3330 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 19:41:31 +00:00
Matt Miller b5cb5e913c change name
git-svn-id: file:///home/svn/incoming/trunk@3329 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 19:39:53 +00:00
vlad902 45bfed8935 17 bytes smaller.
git-svn-id: file:///home/svn/incoming/trunk@3328 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 19:31:24 +00:00
vlad902 a6d4abb4cd My shell stage
git-svn-id: file:///home/svn/incoming/trunk@3327 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 19:26:09 +00:00
Matt Miller ab05f41a40 remove pipe shell
git-svn-id: file:///home/svn/incoming/trunk@3326 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 19:26:00 +00:00
Matt Miller 4934bd7709 rename pipe shell to shell and shell to shell_revert
git-svn-id: file:///home/svn/incoming/trunk@3325 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 19:25:18 +00:00
Matt Miller ae5c816e85 various enhancements to support passivex, seems to be functional, somewhat
git-svn-id: file:///home/svn/incoming/trunk@3322 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 10:04:30 +00:00
Matt Miller b5b9e2ac1f added to_native for unicode
git-svn-id: file:///home/svn/incoming/trunk@3319 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-06 15:34:51 +00:00
Matt Miller 90175dd5ce minor fixup
git-svn-id: file:///home/svn/incoming/trunk@3317 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-06 09:03:34 +00:00
Matt Miller cd4d7a6ff8 updates to alpha/unicode encoders
git-svn-id: file:///home/svn/incoming/trunk@3314 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-06 02:25:23 +00:00
Matt Miller f9d058887b initial import of alpha2 from pusscat
git-svn-id: file:///home/svn/incoming/trunk@3313 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-06 00:57:14 +00:00
HD Moore 4148a17b19 Committed new name
git-svn-id: file:///home/svn/incoming/trunk@3312 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 22:48:19 +00:00
HD Moore 5550a72d1f rename, tweak
git-svn-id: file:///home/svn/incoming/trunk@3311 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 22:27:52 +00:00
HD Moore 8049b32cbc Patches from <anon>
git-svn-id: file:///home/svn/incoming/trunk@3310 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 22:20:28 +00:00
HD Moore 46a1ce0721 More tweaks
git-svn-id: file:///home/svn/incoming/trunk@3308 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 03:56:20 +00:00
Matt Miller a77bdaa93c rename author to jt, fix bug in html escape in payloads section of msfweb
git-svn-id: file:///home/svn/incoming/trunk@3306 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 02:04:04 +00:00
Matt Miller e63ba080a8 added support for use_gzip
git-svn-id: file:///home/svn/incoming/trunk@3303 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-03 04:24:03 +00:00
HD Moore 9452249c09 Updated
git-svn-id: file:///home/svn/incoming/trunk@3301 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-03 04:06:03 +00:00
HD Moore 96d4591b87 Updates to httpserver mixin, gzip encoding added to text, bugfix to wordstar, added metafile exploit, will rename and make it nice later
git-svn-id: file:///home/svn/incoming/trunk@3299 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-02 07:49:52 +00:00
Matt Miller 76549787e5 fix response for 404
git-svn-id: file:///home/svn/incoming/trunk@3298 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-02 04:07:28 +00:00
HD Moore 9fc93bbe56 Miscellaneous fixes, changes to CMD payloads
git-svn-id: file:///home/svn/incoming/trunk@3296 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-02 01:12:36 +00:00
HD Moore 63683ab45f Renamed
git-svn-id: file:///home/svn/incoming/trunk@3294 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-31 22:58:57 +00:00
HD Moore 8de634c25f timing fixes
git-svn-id: file:///home/svn/incoming/trunk@3292 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-31 19:49:12 +00:00
HD Moore 2bcfd6f0e5 Bug fixen
git-svn-id: file:///home/svn/incoming/trunk@3291 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-31 19:21:39 +00:00
HD Moore d3208c97aa Finally
git-svn-id: file:///home/svn/incoming/trunk@3287 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-31 18:07:12 +00:00
HD Moore f468b10cff Tweaks
git-svn-id: file:///home/svn/incoming/trunk@3286 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-31 18:03:02 +00:00