Commit Graph

24368 Commits (914d15c285fcc6a18a5d40c6ee3015461da22d00)

Author SHA1 Message Date
Sebastiano Di Paola 638cb41a3f Remove Spaces at EOL, fixed if test on pattern variable 2014-04-11 18:58:05 +02:00
Sebastiano Di Paola 5f973558ce Merge branch 'master' of https://github.com/abes975/metasploit-framework
Conflicts:
	modules/auxiliary/scanner/ssl/openssl_heartbleed.rb
2014-04-11 18:38:59 +02:00
Sebastiano Di Paola ea70abe98d Conflicts resolution should be ok now 2014-04-11 18:33:03 +02:00
Sebastiano Di Paola cc836c0496 Restored FTP option 2014-04-11 18:31:30 +02:00
Sebastiano Di Paola 39320f12a7 - Rubbish that was left dangling here around 2014-04-11 18:31:30 +02:00
Sebastiano Di Paola 139358dc8a fixed conflicts, used OptRegexp for pattern 2014-04-11 18:31:29 +02:00
Sebastiano Di Paola 9331f88dd8 Added feature to dump to file leaked memory 2014-04-11 18:31:29 +02:00
Sebastiano Di Paola 34fa4e29d9 Restored FTP option 2014-04-11 18:16:19 +02:00
Sebastiano Di Paola eb0e35bf25 Fixed store on file option 2014-04-11 18:07:14 +02:00
sinn3r b69662fa42
Land #3233 - eScan Password Command Injection 2014-04-11 11:05:48 -05:00
sinn3r e54a348bd4
Land #3237 - Reconcile test_old_rubies with the other checks 2014-04-11 10:49:23 -05:00
sinn3r eb8e9523ff
Land #3236 - Correct check_vars_get to check_request_vars 2014-04-11 10:47:59 -05:00
jvazquez-r7 0c8f5e9b7d Add @Firefart's feedback 2014-04-11 10:21:33 -05:00
Sebastiano Di Paola c4029ea582 - Rubbish that was left dangling here around 2014-04-11 17:20:54 +02:00
Sebastiano Di Paola 1808fe470a fixed conflicts, used OptRegexp for pattern 2014-04-11 17:16:06 +02:00
Sebastiano Di Paola 4315ad2987 Fixed conflict and used OptRegexp type for pattern 2014-04-11 17:15:39 +02:00
jvazquez-r7 813e0eab89
Land #3233, @wvu-r7's improvements fort heartbleed modules 2014-04-11 09:33:57 -05:00
jvazquez-r7 e2ec53272e Fix also negative numbers 2014-04-11 09:33:27 -05:00
Ken Smith c99f6654e8 Added target 6.1 to module 2014-04-11 09:59:11 -04:00
jvazquez-r7 fb5881d8e2
Land #2324, @sensepost and @Firefart's sftp support for heartbleed 2014-04-11 08:47:22 -05:00
jvazquez-r7 1cb1d4d5ff
Land #3230, @Firefart's improve for jabber's starttls 2014-04-11 08:21:41 -05:00
jvazquez-r7 2134d676b4 Use verbose by default 2014-04-11 07:58:56 -05:00
William Vu 8919e21379
Reconcile test_old_rubies with the other checks
It is now check_old_rubies.
2014-04-10 21:44:00 -05:00
William Vu df29578036
Correct check_vars_get to check_request_vars
Since check_vars_get also checked for POSTs.
2014-04-10 21:37:59 -05:00
Spencer McIntyre 1f6bdabfe6
Land #3231, link exploit requirement details 2014-04-10 22:27:42 -04:00
Tod Beardsley 56662bd89b
Correct corpwatch_lookup_name datastore usage
[SeeRM #8498]
2014-04-10 16:56:55 -05:00
Tod Beardsley 06dedeec8f
Update corpwatch_lookup_id to run correctly
[SeeRM #8498]
2014-04-10 16:52:34 -05:00
Tod Beardsley 91293fd0db
Allow vhost to be maybe opts['rhost']
This enables passing rhost and rport directly to send_request_cgi
without having to monkey with the datastore.

See #8498
2014-04-10 16:47:49 -05:00
William Vu 6675464c20
Fix a few things in the Heartbleed modules 2014-04-10 16:06:40 -05:00
Sebastiano Di Paola 9adf629ee7 Added feature to dump to file leaked memory 2014-04-10 22:51:07 +02:00
sinn3r 80faaf86d8 Add a link to explain about unmet exploit requirements 2014-04-10 14:01:16 -05:00
sinn3r a6a6ad2217
Land #3227 - Remove bundled rkelly, to Gemfile 2014-04-10 12:31:59 -05:00
sinn3r 68a50e3663
Land #3224 - Fixes large-string expansion in JSObfu 2014-04-10 12:09:22 -05:00
Tod Beardsley bc5f87b01a
Land #3195, check() fix 2014-04-10 08:59:53 -05:00
Brandon Turner 9ca3d95980
Merge branch release into master
This resync's release and master after cherry-picking the
openssl_heartbleed module for release.

Conflicts:
	modules/auxiliary/scanner/ssl/openssl_heartbleed.rb
2014-04-10 06:32:58 -07:00
jvazquez-r7 fe066ae944
Land #3207, @7a69 MIPS BE support for Fritz Box's exploit 2014-04-09 23:20:45 -05:00
jvazquez-r7 fdda69d434 Align things 2014-04-09 23:19:41 -05:00
jvazquez-r7 386e2e3d29 Do final / minor cleanup 2014-04-09 23:19:12 -05:00
Christian Mehlmauer 43a4f41513
Land #3242, SSLv3 support 2014-04-10 02:53:09 +02:00
William Vu 3e04fd7ec2
Land #3245, installers are for users 2014-04-11 16:29:30 -05:00
Tod Beardsley 5e1e84db03
Encourage use of the installer for users. 2014-04-11 15:55:18 -05:00
Brandon Turner fbd84f16e1
Land #3243, merge release back into master 2014-04-11 15:16:59 -05:00
Tod Beardsley ea8c15ba47
Land #3241 back into master 2014-04-11 15:08:01 -05:00
Tod Beardsley 3109f42a55
Merge release back into master 2014-04-11 15:07:16 -05:00
Tod Beardsley bbc72c3e1c
Update spec to reflect the correct version. 2014-04-11 12:29:26 -05:00
Brandon Turner 2f2692f4bf
Bump version to 4.9.2 2014-04-10 17:45:42 -05:00
Christian Mehlmauer f115a7f6e1
Fix intendation 2014-04-10 02:52:05 +02:00
gigstorm f1443c039e Updated hash value to SSLv3
Tested and working on server that has SSLv3 only enabled
2014-04-11 14:01:28 -07:00
gigstorm 6ab3478c7e Update to include SSL Version 3 protocol
SSL Version 3 will also respond to this and a server configured to respond to SSL version 3 but not TLS will show false negative without this option (proven).  May need to update cipher suites to include this option.
2014-04-11 12:41:17 -07:00
James Lee f54654a326
More refactor on jtr_linux
Reducing complexity in `run` makes modules easier to read
2014-04-09 19:26:34 -05:00