HD Moore
dfa0d155fc
See #607 . Switch sniffer code to use mutexes
...
git-svn-id: file:///home/svn/framework3/trunk@7728 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-07 05:19:46 +00:00
Stephen Fewer
a273c9f07c
Initial commit of the multi-threaded meterpreter.
...
git-svn-id: file:///home/svn/framework3/trunk@7698 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 17:37:21 +00:00
Stephen Fewer
8c48a9a3f5
Commit the PassiveX DLL updated to build with Visual Studio C++ 2008. Removed some compiler warnings. Use VirtualProtect to make second stage RWX. Use WSASocketA() over socket() for second stage compatibility. Seems to now work with the shell stage (Tested on XPSP2/IE7) but still not working with meterpreter.
...
git-svn-id: file:///home/svn/framework3/trunk@7461 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-11 00:39:38 +00:00
pusscat
9e85a3bf0f
Update binaries and readme file
...
git-svn-id: file:///home/svn/framework3/trunk@7433 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-09 20:16:05 +00:00
pusscat
a8576a584f
Initial import of David Weston's "smart file" loading that allows (among other things) importation of buffers annotated with 010's map files!
...
git-svn-id: file:///home/svn/framework3/trunk@7431 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-09 19:56:33 +00:00
pusscat
bcc8d5d8ca
Update all binaries
...
git-svn-id: file:///home/svn/framework3/trunk@7341 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-03 21:52:00 +00:00
pusscat
c7030e7705
Add tenketsu heap logging
...
git-svn-id: file:///home/svn/framework3/trunk@7340 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-03 21:49:24 +00:00
HD Moore
21e82d8b69
This patch implements a much more flexible executable creation scheme at the cost of exe size. This also adds the "-x" option to msfencode, allowing the user to specify their own executable template for generation.
...
git-svn-id: file:///home/svn/framework3/trunk@7315 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-01 04:11:43 +00:00
HD Moore
e5e89906d0
Switch the meterpreter to SSLv3 and try to generate a slightly more realistic CN for the certificate. The goal is to work through a wider range of inline proxies.
...
git-svn-id: file:///home/svn/framework3/trunk@7311 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-31 20:44:23 +00:00
HD Moore
5234fe8ff8
Fixes 416. Adds the rm/del commands to meterpreter, fixes build problems triggered by the POSIX code merge
...
git-svn-id: file:///home/svn/framework3/trunk@7291 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-27 02:31:07 +00:00
HD Moore
276a3f8052
Use _WIN32 instead of __WIN32__ to be consistent
...
git-svn-id: file:///home/svn/framework3/trunk@7290 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-27 01:13:35 +00:00
HD Moore
7d7c565a37
Merge in the POSIX stdapi extension, still some work left to finish
...
git-svn-id: file:///home/svn/framework3/trunk@7266 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-26 04:34:20 +00:00
HD Moore
e07bce0101
Copyright updates reflecting the news
...
git-svn-id: file:///home/svn/framework3/trunk@7222 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-21 12:58:56 +00:00
HD Moore
00b2915554
Fixes #342 . Set ReverseConnectRetries to a value between 1 and 255 (default is 5). On failure it will ExitProcess (still better than a cpu spin)
...
git-svn-id: file:///home/svn/framework3/trunk@7217 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-20 20:31:14 +00:00
HD Moore
62b06f5e16
Add Alexander Sotirov's metsvc to svn
...
git-svn-id: file:///home/svn/framework3/trunk@7213 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-20 18:42:47 +00:00
HD Moore
bf5068f6b1
Fixes #288 and #320 . This should fix the BSoD issue with the sniffer module (other than the mac filter change, this matches the vendor's example) and confirmed that the keyscan_dump fix works
...
git-svn-id: file:///home/svn/framework3/trunk@7066 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-26 16:26:05 +00:00
et
a89914d448
Finally screenshot capture. BMP at this time
...
git-svn-id: file:///home/svn/framework3/trunk@7063 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-26 04:05:09 +00:00
James Lee
6a7a023844
I will not commit when sleep deprived. I will not commit when sleep deprived. I will not commit...
...
git-svn-id: file:///home/svn/framework3/trunk@7061 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-25 06:40:42 +00:00
James Lee
bc2c38c332
shave an instruction from the new allports stager
...
git-svn-id: file:///home/svn/framework3/trunk@7060 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-25 06:13:13 +00:00
HD Moore
ee9a8f4f76
Adds support for the reverse_tcp_allports stager for Windows. This payload tries to connect back on all ports, one at a time, from LPORT to 65535. This is incredibly slow (depends on the default socket timeout) and requires the user to forward all TCP ports of LHOST to a single listening port in the handler. Inspired by a few user requests and this blog post: http://clinicallyawesome.com/post/196352889/blind-connect-back-through-restrictive-firewall
...
git-svn-id: file:///home/svn/framework3/trunk@7058 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-25 05:44:50 +00:00
James Lee
e30e850ba7
shave a few bytes off of the windows stagers
...
git-svn-id: file:///home/svn/framework3/trunk@7035 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-14 08:45:01 +00:00
Stephen Fewer
1937839e79
Patch meterpreter's sysinfo command to resolve the system language and architecture.
...
git-svn-id: file:///home/svn/framework3/trunk@7028 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-10 13:09:48 +00:00
Stephen Fewer
36d60d5d12
Commit the x64 build of the meterpreter incognito extension.
...
git-svn-id: file:///home/svn/framework3/trunk@7009 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-07 09:25:25 +00:00
Stephen Fewer
ff9efacffa
Commit the x64 build of the meterpreter priv extension.
...
git-svn-id: file:///home/svn/framework3/trunk@7008 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-07 09:17:29 +00:00
Stephen Fewer
402608ec6f
Commit the openssl x64 static libraries required for compilation. These are freshly built using the latest stable release (openssl-0.9.8k). Instructions for re-building the libraries also included.
...
git-svn-id: file:///home/svn/framework3/trunk@7001 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 01:58:17 +00:00
Stephen Fewer
5dee5819b1
Commit the source code for the cross compilable reflective dll injection module. Some minor modifications to the stdapi extension were also required. All the projects (.vcproj) now have an x64 debug/release target as well as an x86 counterpart.
...
git-svn-id: file:///home/svn/framework3/trunk@7000 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-04 01:53:58 +00:00
Stephen Fewer
1cb3c42589
First commit! update vnc server with the new exitfunk hash values as well as modify ReflectiveLoader to retrieve kernel32 base address dynamically ala its meterpreter counterpart.
...
git-svn-id: file:///home/svn/framework3/trunk@6989 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-31 10:28:26 +00:00
HD Moore
87ea275a17
Fixes #299 - corrects the win32 build environment and source to build properly again
...
git-svn-id: file:///home/svn/framework3/trunk@6987 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-30 01:57:25 +00:00
pusscat
4361028a45
New binaries
...
git-svn-id: file:///home/svn/framework3/trunk@6984 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-28 16:01:36 +00:00
HD Moore
97725a489c
Round 3 of x64 support from Stephen Fewer - new payloads!
...
git-svn-id: file:///home/svn/framework3/trunk@6980 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-27 19:29:54 +00:00
HD Moore
cf10a62dcc
Merge in the beginnings of x64 support from Stephen Fewer
...
git-svn-id: file:///home/svn/framework3/trunk@6972 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-23 23:47:33 +00:00
pusscat
56881d35d2
Fix a pile of identBuf parsing issues that occur if you forget an argument for a specific buf type
...
git-svn-id: file:///home/svn/framework3/trunk@6970 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-21 12:48:16 +00:00
pusscat
1bfd5a1cd6
Add new winxp bins
...
git-svn-id: file:///home/svn/framework3/trunk@6969 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-20 13:13:11 +00:00
pusscat
f3131404b9
Replace # wih REM for xp
...
git-svn-id: file:///home/svn/framework3/trunk@6967 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-19 17:37:20 +00:00
HD Moore
a811f28535
Patch from snfernandez to fix posix extension loading
...
git-svn-id: file:///home/svn/framework3/trunk@6954 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-12 23:15:08 +00:00
pusscat
d61860eda0
Add searchVtptr readme info
...
git-svn-id: file:///home/svn/framework3/trunk@6953 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-12 21:51:42 +00:00
pusscat
c3011bd07c
Addition of searchVtptr
...
git-svn-id: file:///home/svn/framework3/trunk@6952 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-12 21:31:45 +00:00
HD Moore
41121f5870
Major merge of Meterpreter POSIX codebase from JR, Win32 projects may need a few more fixes to work properly
...
git-svn-id: file:///home/svn/framework3/trunk@6949 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-10 02:02:16 +00:00
HD Moore
d5ffcc1907
fix the posix build (patch from JR)
...
git-svn-id: file:///home/svn/framework3/trunk@6945 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-09 17:28:44 +00:00
HD Moore
79df0ab405
Merge in JR's ulibc code
...
git-svn-id: file:///home/svn/framework3/trunk@6944 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-09 02:27:52 +00:00
HD Moore
da32f1bdea
Updated meterpreter code/binaries to scrub memory after use, works around Peter's memoryze signatures from BH/DC 2009
...
git-svn-id: file:///home/svn/framework3/trunk@6942 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-08 14:22:32 +00:00
pusscat
b9c2d57630
Update heap modeler coalesce functionality, as well as searchOpcode
...
git-svn-id: file:///home/svn/framework3/trunk@6941 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-06 20:09:38 +00:00
HD Moore
9a1e07c4f3
First round of posix meterpreter commits from jr
...
git-svn-id: file:///home/svn/framework3/trunk@6934 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-01 14:21:58 +00:00
HD Moore
26ca5ec646
Nuke the compiled bins
...
git-svn-id: file:///home/svn/framework3/trunk@6926 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-01 03:21:22 +00:00
HD Moore
c173bff563
Updated reflective stuff to match the new hashing function
...
git-svn-id: file:///home/svn/framework3/trunk@6923 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-31 17:57:51 +00:00
HD Moore
49b7dcb30c
Overhaul of the metasploit payloads from Stephen Fewer - smaller/cleaner/new hashing/support for WinNT 4.0 -> Win7 with size reductions for the stagers and minimal size increases for the singles
...
git-svn-id: file:///home/svn/framework3/trunk@6922 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-31 17:50:10 +00:00
pusscat
4fd458a309
Update some identBuf documentation
...
git-svn-id: file:///home/svn/framework3/trunk@6853 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-21 14:54:34 +00:00
James Lee
0044635e3b
remove a temp commit leftover
...
git-svn-id: file:///home/svn/framework3/trunk@6834 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-18 20:59:10 +00:00
HD Moore
5577fac39e
Closes #297 . Switches to the dnet headers for the sniffer packet decodes
...
git-svn-id: file:///home/svn/framework3/trunk@6822 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-17 19:39:31 +00:00
HD Moore
2c4acca92a
Fixes #296 . Removes polarssl references
...
git-svn-id: file:///home/svn/framework3/trunk@6811 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-16 16:00:29 +00:00
HD Moore
975093efca
Updated VC++ project files to fix the directory paths/includes for OpenSSL
...
git-svn-id: file:///home/svn/framework3/trunk@6774 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-13 03:14:20 +00:00
HD Moore
148ca687f5
Updated libraries and source code now using OpenSSL
...
git-svn-id: file:///home/svn/framework3/trunk@6773 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-13 03:10:39 +00:00
HD Moore
6b0974f618
Goodbye PolarSSL (your license stinks).
...
git-svn-id: file:///home/svn/framework3/trunk@6772 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-13 03:03:53 +00:00
HD Moore
e8784d68fb
Fixes up the sniffer to handle large packet captures better, fixes a regression in the sysinfo command.
...
git-svn-id: file:///home/svn/framework3/trunk@6768 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-12 13:17:37 +00:00
HD Moore
f76d73a823
Free packet memory when the capture is stopped
...
git-svn-id: file:///home/svn/framework3/trunk@6765 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-11 18:19:42 +00:00
HD Moore
4989f9bdbe
Fixes a bug where if the sniffer SDK could not initialize, it would still be treated as initialized the next time it was checked.
...
git-svn-id: file:///home/svn/framework3/trunk@6764 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-11 17:52:40 +00:00
HD Moore
645ca020e9
Fixes a memory corruption issue with the SSL file descriptor (was using a stack reference instead of the Remote->fd reference), adds the source code sans the Packet SDK for the sniffer module
...
git-svn-id: file:///home/svn/framework3/trunk@6763 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-11 17:32:50 +00:00
HD Moore
608ca7aae8
This patch removes some of the meterpreter compiler warnings and fixes migration over SSL
...
git-svn-id: file:///home/svn/framework3/trunk@6761 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-09 22:44:33 +00:00
HD Moore
7b516e06fe
Transfer the migration payload over SSL, still working on a crash bug after migration completes
...
git-svn-id: file:///home/svn/framework3/trunk@6756 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-09 03:22:10 +00:00
HD Moore
48e1e5f351
Merge Stephen Fewer's patches to enable support for Windows 7 (fixes support for NT and 2000 as well)
...
git-svn-id: file:///home/svn/framework3/trunk@6744 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-05 20:24:37 +00:00
HD Moore
0ad96dd656
Adds a top-level SEH handler around the initialization stub, prevents a fatal error from preventing EXITFUNC from being called.
...
git-svn-id: file:///home/svn/framework3/trunk@6722 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-27 19:39:10 +00:00
HD Moore
43372de9f0
Fix a bug in the new SSL code that broke large transfers
...
git-svn-id: file:///home/svn/framework3/trunk@6720 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-27 01:52:36 +00:00
HD Moore
aaff989294
Add the PolarSSL lib file and output directory to make building easier
...
git-svn-id: file:///home/svn/framework3/trunk@6719 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-26 23:22:07 +00:00
HD Moore
a74d3a3f38
Switches meterpreter to SSL by default, using the PolarSSL library. To build this, just place polarssl.lib into an workspace/common/Release/
...
git-svn-id: file:///home/svn/framework3/trunk@6718 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-26 23:18:53 +00:00
HD Moore
1fba3f678b
Adds Windows 7 support for the primary stagers: http://www.harmonysecurity.com/blog/2009/06/retrieving-kernel32s-base-address.html
...
git-svn-id: file:///home/svn/framework3/trunk@6677 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-20 04:35:44 +00:00
HD Moore
b8efb1bbf9
Add Stephen Fewer's shiny exploit for the Java deserialization flaw
...
git-svn-id: file:///home/svn/framework3/trunk@6664 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-16 17:19:44 +00:00
James Lee
0a8235eb44
removing them
...
git-svn-id: file:///home/svn/framework3/trunk@6570 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-20 17:51:45 +00:00
James Lee
1ab4a0457b
preparing to remove unnecessary exes trigger AV
...
git-svn-id: file:///home/svn/framework3/trunk@6569 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-20 17:50:49 +00:00
et
746a3c533a
ext. sample dll. not ready for production enviroments
...
git-svn-id: file:///home/svn/framework3/trunk@6506 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-29 03:38:42 +00:00
et
205a57da77
ext code and project adjustments
...
git-svn-id: file:///home/svn/framework3/trunk@6500 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-27 04:34:28 +00:00
et
03d8541b3f
espia early stages
...
git-svn-id: file:///home/svn/framework3/trunk@6499 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-27 03:43:22 +00:00
HD Moore
f059fbece7
Source code and VS project changes for cleaner build and new keyboard logging code
...
git-svn-id: file:///home/svn/framework3/trunk@6374 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-23 05:26:11 +00:00
HD Moore
67ed4d2b68
Commit the patched reflective DLL injection tree for VNC from Stephen Fewer
...
git-svn-id: file:///home/svn/framework3/trunk@6373 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-23 05:19:33 +00:00
HD Moore
678370d57f
Swapping out the old code for the new reflective DLL based tree
...
git-svn-id: file:///home/svn/framework3/trunk@6372 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-23 05:18:22 +00:00
HD Moore
ac7aa759cd
Swapping in the latest patched copy of Meterpreter. See #275
...
git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-22 18:56:28 +00:00
HD Moore
07f59c2590
Swapping out old Meterpreter code for Stephen Fewer's latest patched copy
...
git-svn-id: file:///home/svn/framework3/trunk@6356 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-22 18:55:36 +00:00
HD Moore
24b324ccce
Swap the tarball for the extracted source tree
...
git-svn-id: file:///home/svn/framework3/trunk@6354 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-19 20:10:27 +00:00
HD Moore
13706d1bde
Tons of new Mac OS X code from Dino Dai Zovi and Charlie Miller, more to follow
...
git-svn-id: file:///home/svn/framework3/trunk@6353 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-18 23:28:24 +00:00
pusscat
73ae8dabfb
Big fixes for file importation with indentBuf
...
git-svn-id: file:///home/svn/framework3/trunk@6302 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-05 19:57:26 +00:00
pusscat
37f579bbe7
- Remove issue with nulls controlling registers during hunts
...
- Remove size requirement for file inputs; now it will grab th whole file by default
- Remove issue with treating tracked bufs like strings in listBuf
git-svn-id: file:///home/svn/framework3/trunk@6173 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-22 21:28:05 +00:00
pusscat
0f6ba79619
Add support for sucking in files directly to indentBuf and memDiff
...
git-svn-id: file:///home/svn/framework3/trunk@6159 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-16 17:14:46 +00:00
pusscat
55bc55afed
Fix tab spacing issues for odd numbers
...
git-svn-id: file:///home/svn/framework3/trunk@6158 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-15 22:27:23 +00:00
pusscat
3b4596ab2e
Update Win7 and XPSP2 binaries
...
git-svn-id: file:///home/svn/framework3/trunk@6157 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-15 21:02:25 +00:00
pusscat
474353e7b6
Initial import of the memDiff jutsu
...
git-svn-id: file:///home/svn/framework3/trunk@6156 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-15 20:25:44 +00:00
pusscat
72588d6f9a
Add Windows7 beta build 7000 x86 binaries!
...
git-svn-id: file:///home/svn/framework3/trunk@6103 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-09 22:12:39 +00:00
pusscat
df1821be31
Update to word and byt primitive tracking
...
git-svn-id: file:///home/svn/framework3/trunk@6090 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-08 16:10:28 +00:00
pusscat
45fb3c4a82
Add success splash on load, add list functionality, update bins
...
git-svn-id: file:///home/svn/framework3/trunk@6085 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-07 21:21:16 +00:00
pusscat
fa334604b9
Add trackVal jutsu
...
git-svn-id: file:///home/svn/framework3/trunk@6084 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-07 17:50:31 +00:00
pusscat
2cb135dc02
Uh... add files...
...
git-svn-id: file:///home/svn/framework3/trunk@6025 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-19 16:57:01 +00:00
pusscat
9c6ffc3f03
Add !sympath to the readme
...
git-svn-id: file:///home/svn/framework3/trunk@6019 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-18 20:53:00 +00:00
pusscat
457787df2c
Add a bit more sanity checking to the map parser
...
git-svn-id: file:///home/svn/framework3/trunk@6018 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-18 20:33:35 +00:00
pusscat
a1ea598656
Add working map file imports with the !symport command
...
git-svn-id: file:///home/svn/framework3/trunk@6017 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-18 18:20:04 +00:00
pusscat
9463f4ca2b
Add dirty dirty IDA map file parsing code - soon to be integrated when I can figure out the IDebugSymbols object
...
git-svn-id: file:///home/svn/framework3/trunk@6016 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-17 21:59:40 +00:00
Ramon de C Valle
5b225cea89
Updated unixasm on external source tree
...
git-svn-id: file:///home/svn/framework3/trunk@5942 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-17 10:34:26 +00:00
HD Moore
a97179a236
Zip up the reflective directories, saving some space
...
git-svn-id: file:///home/svn/framework3/trunk@5939 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-17 06:17:16 +00:00
HD Moore
093e605d0d
Import the Reflective DLL Injection skeleton project
...
git-svn-id: file:///home/svn/framework3/trunk@5843 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-05 06:12:49 +00:00
HD Moore
d573c31be9
Remove the output directory from svn
...
git-svn-id: file:///home/svn/framework3/trunk@5840 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-04 20:10:11 +00:00
HD Moore
38980c079e
Remove the output directory from svn
...
git-svn-id: file:///home/svn/framework3/trunk@5839 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-04 20:09:38 +00:00
HD Moore
187f79eddf
Switch the DLLs for vnc/meterp to Stephen Fewer's reflective versions, check in the reflectve_meterpreter source code project
...
git-svn-id: file:///home/svn/framework3/trunk@5837 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-04 20:08:24 +00:00
HD Moore
08d296240a
Add the license to the actual .[ch] files and remove the inaccurate readme
...
git-svn-id: file:///home/svn/framework3/trunk@5811 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-30 22:30:32 +00:00
HD Moore
675e03c272
Clarify the licensing between reflective and vnc
...
git-svn-id: file:///home/svn/framework3/trunk@5810 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-30 22:22:58 +00:00
HD Moore
ac70cc88eb
Remove the giant program database
...
git-svn-id: file:///home/svn/framework3/trunk@5809 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-30 22:21:46 +00:00
HD Moore
345837485f
Remove the Release object directory
...
git-svn-id: file:///home/svn/framework3/trunk@5808 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-30 22:21:01 +00:00
HD Moore
835ce24792
Add the modified VNC DLL from Stephen Fewer
...
git-svn-id: file:///home/svn/framework3/trunk@5807 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-30 22:20:37 +00:00
Ramon de C Valle
233dd73a27
Added unixasm sources to the external source tree
...
git-svn-id: file:///home/svn/framework3/trunk@5736 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 18:23:18 +00:00
HD Moore
422e58c51f
Close the listening socket, allows the same shellcode to beused on the same port repeatedly, thanks antoine!
...
git-svn-id: file:///home/svn/framework3/trunk@5705 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-01 16:16:34 +00:00
HD Moore
a75978a218
Patch from Stephen Fewer from Harmony Security, makes the midstager uses VirtualAlloc with RWX, solves a number of issues, specifically stack space starvation for large payloads.
...
git-svn-id: file:///home/svn/framework3/trunk@5683 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-24 22:54:30 +00:00
pusscat
c4a58660aa
Modify the readme to be more explicit about the build process
...
git-svn-id: file:///home/svn/framework3/trunk@5667 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-17 19:24:03 +00:00
pusscat
64b8bba5f7
Add new binaries for specific versions
...
git-svn-id: file:///home/svn/framework3/trunk@5665 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-17 15:18:37 +00:00
pusscat
de60bd8e35
Add tenketsu test program
...
git-svn-id: file:///home/svn/framework3/trunk@5650 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-02 14:33:41 +00:00
pusscat
9f83c9d5b4
Update binaries for searchOpcodes changes
...
git-svn-id: file:///home/svn/framework3/trunk@5643 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-26 15:05:49 +00:00
pusscat
2a093a3f2a
Add searchOpcode tag for !jutsu
...
git-svn-id: file:///home/svn/framework3/trunk@5642 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-25 20:51:17 +00:00
HD Moore
7d2bb9536a
Updated README, include the templates and other src
...
git-svn-id: file:///home/svn/framework3/trunk@5637 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-22 18:45:33 +00:00
pusscat
ed379dddf5
Remove mangekyo build script... oops!
...
git-svn-id: file:///home/svn/framework3/trunk@5636 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-22 14:39:10 +00:00
HD Moore
d53dd66701
Adds initial support for IPv6, including two stager. Tested Meterpreter over IPv6 stages on XP and Vista. Using this is still tricky, I will add a wiki page tomorrow to explain the ScopeID stuff for link-local testing. This commit also includes the raw (oversized) assembler for the stagers as well as the entire old metasploit assembly set (useful for development).
...
git-svn-id: file:///home/svn/framework3/trunk@5635 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-22 06:34:57 +00:00
pusscat
058e338028
Add injectsu and detours binaries
...
git-svn-id: file:///home/svn/framework3/trunk@5634 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-20 19:39:12 +00:00
HD Moore
8dc54f35d3
Merging from the byakugan branch
...
git-svn-id: file:///home/svn/framework3/trunk@5633 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-20 19:27:03 +00:00
Matt Miller
7ecda0a786
update comment
...
git-svn-id: file:///home/svn/framework3/trunk@5513 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-26 10:27:22 +00:00
Matt Miller
d94bfaf373
better support for nx with dllinject payloads/meterp
...
git-svn-id: file:///home/svn/framework3/trunk@5510 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-26 06:34:12 +00:00
Matt Miller
e63a121341
merge incognito updates from Luke Jennings
...
git-svn-id: file:///home/svn/framework3/trunk@5499 4d416f70-5f16-0410-b530-b9f4589650da
2008-04-28 16:57:49 +00:00
HD Moore
0f5d0164a3
Adds auto-execute support (hex edit the binary and change the # * 8192 to a list of commands, separated by newlines, ending with a NULL byte, keeping the same buffer size).
...
git-svn-id: file:///home/svn/framework3/trunk@5180 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-23 23:22:27 +00:00
HD Moore
13426097eb
Adds the 'script' command
...
git-svn-id: file:///home/svn/framework3/trunk@5178 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-23 22:23:34 +00:00
HD Moore
33ec424e2c
Enable self-destruction by default.
...
git-svn-id: file:///home/svn/framework3/trunk@5176 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-22 05:29:49 +00:00
HD Moore
39401d2638
Remove a typo
...
git-svn-id: file:///home/svn/framework3/trunk@5175 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-21 03:16:18 +00:00
HD Moore
f38ed1f233
Woops, forgot to add cmd_net.c
...
git-svn-id: file:///home/svn/framework3/trunk@5174 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-21 03:12:24 +00:00
HD Moore
ea3cebc3ed
Added the download command
...
git-svn-id: file:///home/svn/framework3/trunk@5172 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-21 02:54:07 +00:00
HD Moore
adbd594a5b
The cp command now handles destination directory names and preserves permissions
...
git-svn-id: file:///home/svn/framework3/trunk@5170 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-20 20:40:41 +00:00
HD Moore
492d286157
Adds the cp command
...
git-svn-id: file:///home/svn/framework3/trunk@5168 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-20 20:12:19 +00:00
HD Moore
39ed1257d1
Replaces system/exec to use execve/waitpid
...
git-svn-id: file:///home/svn/framework3/trunk@5166 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-20 19:56:47 +00:00
HD Moore
a3e365c2b5
Adding ipwn source/binary
...
git-svn-id: file:///home/svn/framework3/trunk@5165 4d416f70-5f16-0410-b530-b9f4589650da
2007-10-20 18:27:09 +00:00
Matt Miller
89d0e200f6
fix portfwd command not functioning properly
...
git-svn-id: file:///home/svn/framework3/trunk@5075 4d416f70-5f16-0410-b530-b9f4589650da
2007-08-10 23:54:26 +00:00
Matt Miller
699e013121
initial import of shellcode source into v3
...
git-svn-id: file:///home/svn/framework3/trunk@4813 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-29 20:27:23 +00:00
Matt Miller
48e3edc7c9
fix incorrect memset
...
git-svn-id: file:///home/svn/framework3/trunk@4746 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-24 00:27:30 +00:00
Matt Miller
c9b652fb50
correct memset in libloader
...
git-svn-id: file:///home/svn/framework3/trunk@4725 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-21 20:21:52 +00:00
Matt Miller
9f691fbd58
fix DEP issue with meterp, fixes #48
...
git-svn-id: file:///home/svn/framework3/trunk@4703 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-19 03:14:49 +00:00
Matt Miller
a0a11e1fb3
proj file updates
...
git-svn-id: file:///home/svn/framework3/trunk@4604 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 22:12:03 +00:00
Matt Miller
3b1a8f31c6
updated meterp stdapi to properly detect windows vista
...
git-svn-id: file:///home/svn/framework3/trunk@4603 4d416f70-5f16-0410-b530-b9f4589650da
2007-04-01 22:04:24 +00:00
Matt Miller
25d860aab0
imported dllinject source from framework2
...
git-svn-id: file:///home/svn/framework3/trunk@4403 4d416f70-5f16-0410-b530-b9f4589650da
2007-02-17 03:56:24 +00:00
Matt Miller
00ffcc3835
support for meterpreter scripts
...
git-svn-id: file:///home/svn/framework3/trunk@3916 4d416f70-5f16-0410-b530-b9f4589650da
2006-09-19 03:15:25 +00:00
Matt Miller
7bd26e4925
fixed bug in service manager hardcore alias, new passivex dll/proj files
...
git-svn-id: file:///home/svn/framework3/trunk@3807 4d416f70-5f16-0410-b530-b9f4589650da
2006-08-08 03:29:26 +00:00
HD Moore
c4b93fb091
Changed READWRITE to EXECUTE_READWRITE to allow this to work with NX chips. It crashes LSASS in the current form.
...
git-svn-id: file:///home/svn/framework3/trunk@3739 4d416f70-5f16-0410-b530-b9f4589650da
2006-07-05 02:07:28 +00:00
Matt Miller
243127447b
some meterp bugfixes found while creating a blog post :)
...
git-svn-id: file:///home/svn/incoming/trunk@3592 4d416f70-5f16-0410-b530-b9f4589650da
2006-04-07 03:02:37 +00:00
Matt Miller
906adf058b
missed files
...
git-svn-id: file:///home/svn/incoming/trunk@3352 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 23:25:55 +00:00
Matt Miller
d787861cac
imported vncdll into rubyhacks
...
git-svn-id: file:///home/svn/incoming/trunk@3351 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-08 23:25:19 +00:00
Matt Miller
8e72f20095
better support for random uri base in px
...
git-svn-id: file:///home/svn/incoming/trunk@3331 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 20:11:21 +00:00
Matt Miller
ae5c816e85
various enhancements to support passivex, seems to be functional, somewhat
...
git-svn-id: file:///home/svn/incoming/trunk@3322 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-07 10:04:30 +00:00
Matt Miller
b0cb5731f8
base import of px dll from 2.x
...
git-svn-id: file:///home/svn/incoming/trunk@3307 4d416f70-5f16-0410-b530-b9f4589650da
2006-01-05 02:41:40 +00:00
Matt Miller
9612409872
timestomp integration
...
git-svn-id: file:///home/svn/incoming/trunk@3219 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-14 00:34:05 +00:00
Matt Miller
e645a3f467
initial import of the priv esc extension
...
git-svn-id: file:///home/svn/incoming/trunk@3209 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-13 05:59:59 +00:00
Matt Miller
d9ac34db33
support for locking images in memory to prevent swap out
...
git-svn-id: file:///home/svn/incoming/trunk@3208 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-13 04:09:12 +00:00
Matt Miller
954588ea9e
support for RevertToSelf
...
git-svn-id: file:///home/svn/incoming/trunk@3207 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-13 03:57:20 +00:00
Matt Miller
8eda56eb94
stuff
...
git-svn-id: file:///home/svn/incoming/trunk@3182 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-06 19:22:36 +00:00
Matt Miller
9becfdf944
added a command, cleaned up some code
...
git-svn-id: file:///home/svn/incoming/trunk@3179 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-06 03:56:29 +00:00
Matt Miller
d8a6b6a913
remove bogus files
...
git-svn-id: file:///home/svn/incoming/trunk@3178 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-06 03:40:07 +00:00
Matt Miller
50bb22277c
updated workspace
...
git-svn-id: file:///home/svn/incoming/trunk@3177 4d416f70-5f16-0410-b530-b9f4589650da
2005-12-06 03:38:04 +00:00
Matt Miller
d99e5b4f89
fix module dependency problem, made it so the server sock in meterp isn't inherited
...
git-svn-id: file:///home/svn/incoming/trunk@2842 4d416f70-5f16-0410-b530-b9f4589650da
2005-08-22 01:42:13 +00:00
Matt Miller
0a67ecab42
a few things I needed to commit
...
git-svn-id: file:///home/svn/incoming/trunk@2839 4d416f70-5f16-0410-b530-b9f4589650da
2005-08-12 14:45:54 +00:00
Matt Miller
9842cdc33b
migration now enables the debug privilege first so it can migrate to system services, added reboot/shutdown wrappers
...
git-svn-id: file:///home/svn/incoming/trunk@2834 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-26 04:52:59 +00:00
Matt Miller
539af94716
made ls prettier/faster
...
git-svn-id: file:///home/svn/incoming/trunk@2821 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-23 17:52:29 +00:00
Matt Miller
005ecfab97
in-mem inject fixes
...
git-svn-id: file:///home/svn/incoming/trunk@2819 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 04:29:01 +00:00
Spoon M
6488c4f72f
fixed a bug, removed \r
...
git-svn-id: file:///home/svn/incoming/trunk@2814 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 04:06:52 +00:00
Matt Miller
8e0efb818d
removed extra stuff
...
git-svn-id: file:///home/svn/incoming/trunk@2808 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 03:37:32 +00:00
Matt Miller
4220805855
workspac'in it
...
git-svn-id: file:///home/svn/incoming/trunk@2807 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 03:34:52 +00:00
Spoon M
c923be4817
hopefully support for in process exe without clobbering anything with the merge
...
git-svn-id: file:///home/svn/incoming/trunk@2805 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 03:23:48 +00:00
Matt Miller
7fa9e887db
foo
...
git-svn-id: file:///home/svn/incoming/trunk@2803 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 02:55:55 +00:00
Matt Miller
7d8652e4e7
fixed line endings
...
git-svn-id: file:///home/svn/incoming/trunk@2802 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 02:06:33 +00:00
Matt Miller
3758ae990b
fixed line endings
...
git-svn-id: file:///home/svn/incoming/trunk@2801 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-22 02:00:47 +00:00
Spoon M
1199a7a5a2
power and event logging features
...
git-svn-id: file:///home/svn/incoming/trunk@2667 4d416f70-5f16-0410-b530-b9f4589650da
2005-07-07 21:54:22 +00:00
Matt Miller
282635b111
import of meterp shit
...
git-svn-id: file:///home/svn/incoming/trunk@2516 4d416f70-5f16-0410-b530-b9f4589650da
2005-05-24 19:08:32 +00:00