bwatters-r7
dd5a91f153
Land #8008 , Added archmigrate module for windows sessions
2017-04-05 08:55:27 -05:00
Koen Riepe
08b2a97293
Changed styling to be more in line with rubocop.
2017-04-05 10:05:56 +02:00
Koen Riepe
628827cda9
Added some documentation and gracefull error handeling.
2017-03-31 12:45:30 +02:00
bwatters-r7
691811af5a
Land #7994 , Add Windows Gather DynaZIP Saved Password Extraction post module
2017-03-29 16:04:09 -05:00
bwatters-r7
be41df6de0
Land #8036 , Fix run_as_psh with domain accounts
2017-03-21 09:05:50 -05:00
Brent Cook
e2c6f959f4
Land #8129 , s/colom/colon/g
2017-03-19 22:14:38 -05:00
Carter
ae883d7f02
Update multi_meterpreter_inject.rb
2017-03-19 00:27:28 -04:00
Carter
661bf6e492
Update multi_meterpreter_inject.rb
2017-03-19 00:27:03 -04:00
Carter
93a6614ab3
Update multi_meterpreter_inject.rb
2017-03-19 00:25:46 -04:00
William Webb
1180bd6ed7
Land #8037 , priv_migrate improvements
2017-03-17 13:19:51 -05:00
William Vu
456ddcebc0
Remove nil values that are default already
...
There are four lights!
2017-03-15 15:51:22 -05:00
Rich Whitcroft
04f11b0bf7
fix migrate by process name
2017-03-14 17:27:46 -04:00
Louis
759b67c565
Fix ru_as_psh with domain accounts
...
The current versions has too many escape backslashes, as a result, running run_as_psh for domain users does not work.
Also added support for DOMAIN\\User format in the USER parameter.
2017-03-01 13:38:15 +11:00
Josh Hale
def5088097
Change NOFAIL default to false
2017-02-27 20:37:58 -06:00
Josh Hale
2f5dd38957
Update Admin target list and module description
2017-02-27 20:19:59 -06:00
Josh Hale
3333019e5f
Check if current admin proc is in target list
2017-02-27 18:55:25 -06:00
Josh Hale
717879f3df
Downcase targets and current proc name
2017-02-27 18:28:46 -06:00
Josh Hale
8e8e7244f4
Add exit language
2017-02-27 18:07:15 -06:00
Josh Hale
e1d76b8ff6
Add more error handling
2017-02-27 17:06:16 -06:00
Josh Hale
ffb54a13fe
Add NOFAIL datastore option
2017-02-27 12:41:18 -06:00
Koen Riepe
264cfc9bd4
Added OPTIONS to the module
2017-02-27 13:24:31 +01:00
Josh Hale
81efe096aa
Update Author Handle
2017-02-26 21:01:19 -06:00
Koen Riepe
45b1f796e4
Added archmigrate module to metasploit.
2017-02-24 10:29:19 +01:00
Brendan Coles
0b34efab43
Add documentation
2017-02-23 06:59:05 +00:00
Brendan Coles
dc30dd70da
Add Windows Gather DynaZIP Saved Password Extraction post module
2017-02-22 22:20:19 +00:00
Brent Cook
15a4ec629b
remove TRUE
2017-01-22 10:20:03 -06:00
Brent Cook
836da6177f
Cipher::Cipher is deprecated
2017-01-22 10:20:03 -06:00
Brent Cook
f69b4a330e
handle Ruby 2.4 Fixnum/Bignum -> Integer deprecations
2017-01-22 10:20:03 -06:00
Brent Cook
fae4751771
Land #7744 , update kiwi extension to Mimikatz 2.1
2016-12-29 16:22:45 -06:00
OJ
18e69b85af
Update the golden ticket module to work with new kiwi
2016-12-23 10:30:06 +10:00
bwatters_r7
e646a8d5c2
Please the rubocop gods (unless they are dumb)
2016-12-21 16:13:53 -08:00
p3nt4
13ccfd7bb3
Update run_as_psh.rb
2016-12-21 09:44:57 +11:00
p3nt4
a9b78e37d2
Update typos
2016-12-21 09:43:18 +11:00
p3nt4
cc99aaafc6
Corrected as per reviews
2016-12-21 09:42:26 +11:00
p3nt4
b9fd1db5fa
Add module to runas ysing powershell
2016-12-20 14:38:19 +11:00
Brendan
9b678c2bdd
Land #7685 , Add mosule to change user passwords by editing SAM registry
2016-12-16 13:11:40 -06:00
Brent Cook
52346c3fa8
fix renamed rex text
2016-12-15 15:31:00 -06:00
p3nt4
deec6eccdf
Update hashcarve.rb
2016-12-12 17:09:04 +11:00
p3nt4
3e80ee1d6a
Better Error Handling
2016-12-12 17:07:47 +11:00
p3nt4
7b4dce5e7e
One left!
2016-12-09 16:27:40 +11:00
p3nt4
74c48f5fa4
I'll get there!
2016-12-09 16:24:49 +11:00
p3nt4
c898e768f6
Struggling with tidyness
2016-12-09 16:00:32 +11:00
p3nt4
586b2d92e2
Corrected status prints
2016-12-09 15:45:30 +11:00
p3nt4
fb360e69c0
Initial Commit
...
This module "carves" a hash in the registries to set it as a user password.
The benefits are:
1/ It doesn't change the password last change field
2/ You can set a hash directly, so you can change a user's password and revert it without cracking its hash.
I have tested it in Windows 7, and 8.1. Should work on every version though.
Usage:
run post/windows/manage/hashcarve user=test pass=<password>
run post/windows/manage/hashcarve user=test pass=<nthash>
run post/windows/manage/hashcarve user=test pass=<lmhash:nthash>
This work is based on the hashdump implementation.
2016-12-09 15:41:01 +11:00
OJ
e5ea4a53d3
Fix typo in windows cred phish module
2016-11-04 13:26:10 +10:00
OJ
ffb53b7ca3
Tidy arch check in meterpreter inject
2016-11-01 01:51:12 +10:00
OJ
640827c24b
Final pass of regex -> string checks
2016-10-29 14:59:05 +10:00
OJ
57eabda5dc
Merge upstream/master
2016-10-29 13:54:31 +10:00
OJ
751742face
Fix typo in arch check for inject script
2016-10-29 08:25:23 +10:00
OJ
1ca2fe1398
More platform/arch/session fixes
2016-10-29 08:11:20 +10:00