David Maloney
4c90b68b4f
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-16 19:10:53 -08:00
David Maloney
eae171b216
Addresses issue #5984
2011-11-16 19:07:56 -08:00
Tod Beardsley
93a133d5de
Always try both export and setenv. Fixups to allow for correct reading from echoy nix shells. Fixes is_root? to not treat an empty string as 0
2011-11-16 16:48:19 -06:00
HD Moore
825c9f776c
Fixes #5980 by correcting the address match for IPv6. Clean up regex mapping in general
2011-11-16 14:35:23 -06:00
sinn3r
09213cb82d
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-16 12:27:19 -06:00
sinn3r
fea42dbdee
Add feature #5872
2011-11-16 12:26:54 -06:00
James Lee
d2155c145d
Ignore tags and swap files
2011-11-17 04:57:59 +11:00
HD Moore
41e634d9a1
Merge pull request #21 from scriptjunkie/master
...
Add UAC bypass to default pxexploit
2011-11-16 09:15:54 -08:00
scriptjunkie
8d58ea227f
Add UAC bypass to default pxesploit attack.
2011-11-16 08:16:22 -08:00
Tod Beardsley
725431dbdb
Simpler method for setenv vs export. Tested on csh, ksh, zsh, sh, bash
2011-11-15 19:31:15 -06:00
Tod Beardsley
d969006268
Adding zsh
2011-11-15 19:10:25 -06:00
Tod Beardsley
5cdab2ef41
Less repetitive error messages
2011-11-15 18:17:25 -06:00
HD Moore
bd5df84cb9
Merge pull request #20 from exarkun634/master
...
uuid returned from module.execute()
2011-11-15 16:11:45 -08:00
Tod Beardsley
26659d8b17
Adding a sudo post module for easier automation
2011-11-15 17:38:45 -06:00
Wesley Cate
b923d952b3
module.execute() now returns a 'uuid' element which can be cross-referenced with the 'exploit_uuid' element returned in each entry in session.list.
...
this was hdm's preferred solution.
2011-11-15 18:36:45 -05:00
David Maloney
d8347a1245
Fixes to post modules that store creds as loot.
...
All post modules that store creds as loot now store in
a CSV format with User and then Password always as the
first two columns.
2011-11-15 14:13:51 -08:00
David Maloney
f6b0ffd630
Cleanup of the stack traces in the pidgin and filezilla client cred modules
2011-11-15 12:19:15 -08:00
David Maloney
6306f8888a
Fix to the username normalisation routine to deal with creds that
...
have no username (i.e. VNC)
2011-11-15 08:52:18 -08:00
David Maloney
8d47883af0
Moving the wlan directory up a level. It makes more sense in it's own area
...
instead of under gather.
2011-11-15 08:29:13 -08:00
David Maloney
c8142043e9
Fixes to credential handling to downcase usernames whenever they are not case sensitive.
...
Also report_auth_info now checks to see if a non-case sensitive version of the cred
may already exist.
2011-11-14 22:50:52 -08:00
Tod Beardsley
96d2209ca2
Minor fixups for trace report_note patch
2011-11-14 10:40:11 -06:00
andurin
d92378a013
Merge remote branch 'upstream/master' into small_fixes
2011-11-14 12:11:24 +01:00
andurin
5d5c9464cc
Do some report_note while TRACE detection
2011-11-14 12:10:53 +01:00
HD Moore
173fc072a5
Merge pull request #15 from andurin/small_fixes
...
Fixed very small typo
2011-11-14 02:36:42 -08:00
andurin
97f62d955f
Fixed very small typo
2011-11-14 11:19:16 +01:00
sinn3r
2536cf0308
Add feature #5779
2011-11-14 01:49:26 -06:00
James Lee
16f0d6cbee
Fix a misplaced comma in a comment
2011-11-14 16:06:45 +11:00
James Lee
1513083ff7
Merge branch 'master' of github.com:rapid7/metasploit-framework into tmp-branch
2011-11-13 21:16:07 -07:00
James Lee
8ac4479b13
Use railgun for deleting services.
...
The registry method will make Windows to delete it on reboot, but this
causes it to happen right away.
2011-11-13 21:05:40 -07:00
James Lee
91e7e39fd9
Add definition for DeleteService
2011-11-13 21:04:35 -07:00
HD Moore
dbba9c5f1b
Merge pull request #14 from rsmudge/master
...
Armitage 11.13.11
2011-11-13 19:57:13 -08:00
Raphael Mudge
82424a4682
Armitage 11.13.11
...
This release removes dependence on db_autopwn, moves to msgpack, and
talks directly to the postgresql database. Key logging, file download
management, and the workspace features were overhauled too.
2011-11-13 20:00:14 -05:00
HD Moore
7757a2df63
Make sure we wait at least half a second for a 401 reply
2011-11-13 12:54:48 -06:00
HD Moore
69fb9aa5b1
Make brute forcing of the XMLRPC/MSGPACKRPC services less rewarding through random delays.
2011-11-13 12:45:48 -06:00
andurin
5856112797
Quickfix: missing require in post/windows/escalate/getsystem.rb
...
Resolves:
[-] WARNING! The following modules could not be loaded!
[-] contrib/metasploit-framework/modules/post/windows/escalate/getsystem.rb: NameError uninitialized constant Msf::Post::Windows
2011-11-13 14:25:31 +01:00
HD Moore
60f49976f9
Merge pull request #11 from andurin/sqlmapfix
...
Fix sqlmap aux to work with actual sqlmap.py
2011-11-13 00:29:43 -08:00
Andurin
71599f5ef9
Fix sqlmap aux to work with actual sqlmap.py
...
Commit relates to IssueID #5807
2011-11-13 09:18:33 +01:00
James Lee
69cd56ed42
Merge branch 'master' of github-r7:rapid7/metasploit-framework
2011-11-12 15:15:38 -07:00
James Lee
f7ff350ebb
doesn't work without backslashes
2011-11-12 15:15:09 -07:00
James Lee
07e170f4e4
Add a server argument to the service management methods. Allows
...
creating/starting/stopping services on another machine using the current
session's token for authentication.
2011-11-12 14:40:15 -07:00
HD Moore
f4e42420ad
Small change to abstract the actual source read
2011-11-12 14:48:11 -06:00
HD Moore
4f177acf88
Merge pull request #9 from swtornio/master
...
Add osvdb ref
2011-11-12 11:35:24 -08:00
sinn3r
e4ebb890d8
Apply patch for bug #5963
2011-11-12 13:17:26 -06:00
sinn3r
41d746a07a
Add Support Incident Tracker (Feature #5964 ) by Juan
2011-11-12 12:36:21 -06:00
Steve Tornio
a0c9297500
add osvdb ref
2011-11-12 06:01:41 -06:00
sinn3r
170c4f5451
Fix author email format
2011-11-12 01:53:25 -06:00
sinn3r
b8b8732d85
Correct disclosure date
2011-11-12 01:12:28 -06:00
sinn3r
ed5bae6441
oops, I don't need that extra comment
2011-11-12 01:04:00 -06:00
sinn3r
84c5268ab4
Add Aviosoft DTV exploit
2011-11-12 01:02:40 -06:00
David Maloney
4eb80b5ee4
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-11 17:20:47 -08:00