5d05ca154a
added http client 'download' method and updates to pdf author module from @bcoles
2017-08-14 01:08:53 -04:00
d66e8062e7
Add TeamTalk Gather Credentials auxiliary module
2017-07-24 14:24:38 +00:00
6300758c46
use https for metaploit.com links
2017-07-24 06:26:21 -07:00
838b066abe
Merge branch 'master' into land-8716
2017-07-24 05:51:44 -07:00
109fd8b6d3
Add Asterisk Gather Credentials auxiliary module
2017-07-23 09:55:12 +00:00
524373bb48
OCD - Removed un-needed full stop
2017-07-21 07:41:51 -07:00
772bec23a1
Fix various typos
2017-07-21 07:40:08 -07:00
3f6925196b
OCD - store_loot & print_good
2017-07-19 13:02:49 +01:00
ef826b3f2c
OCD - print_good & print_error
2017-07-19 12:48:52 +01:00
df9b642746
More print_status -> print_good
2017-07-19 11:39:15 +01:00
b8d80d87f1
Remove last newline after class - Make @wvu-r7 happy
2017-07-19 11:19:49 +01:00
3d4feffc62
OCD - Spaces & headings
2017-07-19 11:04:15 +01:00
a008f8e795
BruteForce - > Brute Force
2017-07-19 10:39:58 +01:00
4720d1a31e
OCD fixes - Spaces
2017-07-14 08:46:59 +01:00
9309115627
OCD - Banner clean up
2017-07-14 08:19:50 +01:00
fd843f364b
Removed extra lines
2017-07-14 08:17:16 +01:00
424522147e
OCD fixes - Start of *.rb files
2017-07-13 23:53:59 +01:00
5473b2132d
Implement :request_url for Msf HttpClient mixin
...
To round out implementation of a simple path for users to access
HttpClient like Open or Net::HTTP, create :request_url method which
takes a single URL parameter, uses :request_opts_from_url to build
the request configuration for Rex::Proto::Http::Client, executes
a GET request with it, and disconnects the client unless keepalive
is specified as the second parameter to :request_url.
Example usage of functionality is implemented in http_pdf_authors.
2017-07-11 16:07:13 -04:00
50b1ec4044
Fix #8675 , Add Cache-Control header, also meta tag for BAP2
...
Hopefully that browsers will respect this.
Fix #8675
2017-07-10 16:05:09 -05:00
df697aa23c
Implement HttpClient options generation from URL
...
To address the complexity which comes with the flexibility offered
by Rex::Proto::Http::Client and its Msf mixin descendant, a simple
process needs to be implemented for issuing a request using only
the URL string in order to provide ease of access to users who may
not have the time to study how these clients work in detail.
Implement :request_opts_from_url in Msf's HttpClient mixin such as
to extract the options required for :send_request_* from a URL
string passed into the method. This approach reduces HTTP requests
in the mixin to `send_request_raw(request_opts_from_url(url))` when
`url` is just a string.
Implement this approach in the http_pdf_authors gather module to
further reduce infrastructure complexity around the simple need to
acquire PDF files via HTTP/S.
Testing:
Local to this module only, and in Pry of course. Seems to work...
2017-07-10 04:19:26 -04:00
997150a215
Use Msf::Exploit::Remote::HttpClient
...
Replace Net::HTTP usage with proper Rex::Proto::Http::Client via
the Msf module mixin. Generate the request opts from the same URI
parsed URL string, execute a one shot GET request, disconencting
after reciept of results. Depending on the response code, either
pass back an empty StringIO or if its 200, a StringIO(res.body).
2017-07-10 03:37:41 -04:00
b3be89b508
Land #8663 , typo fix for zoomeye_search
2017-07-07 16:53:48 -05:00
e5244f3113
Fixed typo
2017-07-07 15:26:37 -04:00
683ce10167
Add URL option
2017-07-07 18:42:00 +00:00
d864ce16b1
Add Gather PDF Authors auxiliary module
2017-07-06 23:29:17 +00:00
3d4d03c9b4
Land #8575 , Cerberus Helpdesk hash disclosure
2017-06-30 16:02:53 -05:00
cc9326d946
bcoles updates and table printing
2017-06-24 13:01:39 -04:00
c9e000e379
add new version
2017-06-16 20:59:19 -04:00
f008f2aa8f
working code
2017-06-16 08:24:54 -04:00
a40e7164d8
Refactor QNAP module for traditional creds
2017-06-12 14:41:58 -05:00
e22334343e
Use store_valid_credential in my modules
...
I used report_note because using the creds API was a pain in the ass.
2017-06-08 00:57:51 -05:00
81bcf2ca70
updating all LHOST to use the new opt type
2017-05-04 12:57:50 -05:00
64452de06d
Fix msf/core and self.class msftidy warnings
...
Also fixed rex requires.
2017-05-03 15:44:51 -05:00
4bdbdc0e00
Fix response parsing
2017-03-29 18:21:12 -05:00
82ebbfb9a7
Fix msftidy warnings
2017-03-24 23:12:48 -04:00
3e2173d4f9
Add key length check and remove mixin
...
Also add a reference to the original honeyscore website
2017-03-24 22:33:09 -04:00
581d523d5b
Fix things from review
2017-03-24 21:22:23 -04:00
8dd0f953b0
remove unnecessary require
2017-03-22 19:48:24 -04:00
420df11c44
Change up the way shodan is reached
2017-03-22 19:39:45 -04:00
fa61d67761
Fix score comparison
2017-03-21 19:17:20 -04:00
fef8ec10bc
Fix author formatting
2017-03-21 13:23:41 -04:00
d7640713df
Add more checks and formatting
2017-03-21 13:23:06 -04:00
1f68a3bda6
Rename honeypot.rb to shodan_honeyscore.rb
2017-03-21 13:10:31 -04:00
79c7b84f08
Create honeypot.rb
2017-03-21 11:15:12 -04:00
0a71e4a903
Update check with Exploit::CheckCode::Appears
2017-03-15 05:13:30 -05:00
86d2217f4d
Fix whitespace and clarify options
2017-03-15 04:27:30 -05:00
a0bff5c8c3
Bump RETRIES to 10
...
3 was a bit too low. I was using 10 and had more success with it.
2017-03-15 03:18:09 -05:00
9f76b4d99c
Change default RPORT to 443 with SSL
...
I never really tested port 80, so I wonder why I didn't change this.
Turns out 80 isn't even the vuln service. Welp. Hat tip @bcoles.
2017-03-12 21:03:31 -05:00
e7c920db44
Remove DEBEUG/print_debeug :(
2017-03-12 21:01:48 -05:00
d57b772ac9
Bump default RETRIES to 3
2017-03-12 21:00:38 -05:00
634753f985
Add QNAP admin hash "disclosure"
2017-02-24 19:18:30 -06:00
3b386f86f6
Typo fix.
2017-02-14 17:05:46 +11:00
e7b421e226
Update netgear_password_disclosure.rb
2017-02-08 13:40:11 -05:00
fd935c8e3c
Update netgear_password_disclosure.rb
2017-02-08 09:14:39 -05:00
2dfff95669
Fix msftidy warning
2017-02-08 08:28:23 -05:00
c16b7e42a6
Fix review stuff
2017-02-07 21:41:38 -05:00
46fbc9dd3f
Fix some formatting
2017-02-07 21:32:19 -05:00
f4580a2616
Add token value check
...
Sometimes it wouldn't return creds if the token is 0. It usually works after running it another time.
2017-02-07 10:53:25 -05:00
c1f9b724cf
Maybe fix syntax error
2017-02-07 10:36:05 -05:00
00050abb73
Fix msftidy warnings
2017-02-06 22:06:50 -05:00
1f2a95c202
Use html parser instead of regex
2017-02-06 22:03:56 -05:00
115c60446e
Fix weird if loop in check
2017-02-06 17:30:49 -05:00
6ebdbc3f81
Fix some stuff from review
...
I'm going to change the HTML Regex to a parser a bit later, I don't have time right now
2017-02-06 17:29:39 -05:00
9b4ca31432
Fix typo
2017-02-06 12:52:41 -05:00
52cf9c44df
Update netgear_password_disclosure.rb
2017-02-06 12:43:31 -05:00
16c6480629
Add response checks
...
I can't test this right now as I'm not at a computer that has metasploit installed, but I'll test it when I get a chance to.
2017-02-06 12:10:01 -05:00
f5450a718a
Add TARGETURI datastore option
2017-02-06 11:54:29 -05:00
99227aca1a
Fix things from review
2017-02-06 09:44:35 -05:00
fb7e5ff847
Fix more msftidy warnings
2017-02-05 14:00:05 -05:00
f08590982c
Fix some msftidy warnings
2017-02-05 13:58:01 -05:00
609ea3700a
Create netgear_password_disclosure.rb
2017-02-05 13:39:58 -05:00
fd6a58a348
URI decode users
2017-01-26 18:30:17 -06:00
e47f38b3c9
Look at the right link to extract users
2017-01-26 18:20:06 -06:00
ba50f2f88b
Fix nil for empty pass
2017-01-26 17:51:20 -06:00
55b9c15d68
Pass should not be forced
2017-01-26 17:48:41 -06:00
4ee0a380d1
Update module description
2017-01-26 16:35:15 -06:00
72b654c9b1
Update description
2017-01-26 14:58:02 -06:00
94bc44b485
Add Advantech WebAccess Post Auth Credential Collector
2017-01-26 14:53:59 -06:00
836da6177f
Cipher::Cipher is deprecated
2017-01-22 10:20:03 -06:00
0589948a73
Remove other rhost (oops) and fail_with
2016-12-23 16:10:21 -06:00
b4235835c8
rhost -> ip
2016-12-23 13:20:24 -08:00
60e602c371
Update chromecast wifi gather module to use Scanner for scanning in bulk
2016-12-23 11:34:19 -08:00
22d70ddd09
Fix #7455 , handle the URIPORT option properly in is_uxss_injection
...
Fix #7455
2016-11-17 15:50:35 -06:00
abddeb5cd2
Land 7473, add censys search module
2016-11-17 13:44:00 -06:00
1b4cef10d1
Change creds_name to Kerberos
2016-11-01 17:59:51 +00:00
9eaaba1dea
Added user logging into the db and humored rubocop
2016-10-27 15:50:17 -05:00
c2af2ab214
Move kerberos_enumusers module to aux/gather & add documentation
2016-10-27 19:11:22 +01:00
b5ba862e98
parse ipv4 / website info
2016-10-23 10:53:43 -05:00
50284cf01b
parse domain/ip info from certificate
2016-10-23 10:33:17 -05:00
c79c102998
remove unuse variable @uri
2016-10-21 23:59:09 -05:00
893a6ef82e
add censys search module
2016-10-21 23:45:44 -05:00
e442f5f76b
Land #7460 , zoomeye search module
...
typo in previous land commit
2016-10-21 13:48:28 -05:00
264fe7b8f8
Land #7460 , zoomeye search module
2016-10-21 13:47:46 -05:00
ada571bfdf
Fix login - check condition
2016-10-20 22:52:24 -05:00
344b688ae5
remove ZoomEye_APIKEY, add (USERNAME / PASSWORD)
2016-10-20 22:48:01 -05:00
097a273abb
fix dork_search
2016-10-19 20:54:31 -05:00
72b2ba2e88
replace [Net::HTTP] with [rex/proto/http]
2016-10-19 20:40:45 -05:00
a77f415893
remove unuseful condition
2016-10-19 20:05:12 -05:00
9f3f0fd358
make [matches_records] simple
2016-10-19 19:59:02 -05:00
fcc22d9027
add module references info
2016-10-19 02:23:11 -05:00
Brent Cook
Brendan Coles
g0tmi1k
RageLtMan
wchen-r7
William Vu
MD5HashBrowns
Pearce Barry
h00die
darkbushido
Carter
aushack
Jon Hart
Brian Patterson
attackdebris
Brendan
Vex Woo
nixawk
David Maloney