infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,125 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

1154 Commits (9277f060a70561721e5be72176b1274c9ad38e87)

Author SHA1 Message Date
HD Moore 9277f060a7 Store a uuid for each module, track this in sessions 
git-svn-id: file:///home/svn/framework3/trunk@8937 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-27 02:39:52 +00:00
HD Moore 56e2f73e59 Dont import port 0 
git-svn-id: file:///home/svn/framework3/trunk@8936 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-27 02:31:14 +00:00
HD Moore ee2e796a19 Store the last generated error 
git-svn-id: file:///home/svn/framework3/trunk@8927 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-26 01:18:10 +00:00
Tod Beardsley 25ec5fa444 Do a little better password management for services that don't ask for usernames -- fingerprint them ahead of time, and resort the credentials list in a usernameless way. Also, this allows telnet RST's to be treated just as busy services, since sometimes telnet servers get persnickety about a lot of login attempts, but they do come back shortly. 
git-svn-id: file:///home/svn/framework3/trunk@8920 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 21:32:32 +00:00
HD Moore a560992c7f If a duplicate note is found, change the updated_at to indicate its fresh. 
git-svn-id: file:///home/svn/framework3/trunk@8919 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 18:10:37 +00:00
HD Moore eb0e9fdc73 Always insert auth notes, dupe data doesnt make sense for long-running work 
git-svn-id: file:///home/svn/framework3/trunk@8918 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 18:07:51 +00:00
HD Moore af3ab0a260 Handle situations where any user/pass is allowed 
git-svn-id: file:///home/svn/framework3/trunk@8904 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 21:11:00 +00:00
Tod Beardsley dabe51f3c4 Converting credentials_tried and credentials_skipped to class variables so threads can access them and cut down on the repeats. 
git-svn-id: file:///home/svn/framework3/trunk@8902 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 20:31:43 +00:00
James Lee 1dc7a4a21f i'm tired of support requests for oci libs not being installed 
git-svn-id: file:///home/svn/framework3/trunk@8899 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 19:02:38 +00:00
HD Moore 4625e9b363 Catch Meterpreter-timeout errors for pivoted scanners 
git-svn-id: file:///home/svn/framework3/trunk@8893 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 12:09:32 +00:00
HD Moore 38e4a9c8a2 Store the tunnel_peer directly 
git-svn-id: file:///home/svn/framework3/trunk@8885 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 23:24:08 +00:00
James Lee e088d9ff68 change order of paths to src, dest in session up/download events 
git-svn-id: file:///home/svn/framework3/trunk@8882 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 20:56:22 +00:00
Tod Beardsley 4f3c5fd44d Whoops, left a print_debug in there. 
git-svn-id: file:///home/svn/framework3/trunk@8880 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 20:14:03 +00:00
Tod Beardsley 83d96d713c Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently. 
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 20:07:26 +00:00
HD Moore 4c8dbafe1d Only set KCODE on 1.8, prevent warnings on 1.9 
git-svn-id: file:///home/svn/framework3/trunk@8874 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 12:34:06 +00:00
James Lee 73cd20f8a6 add the skeleton for new session events. now the hard part is going to be triggering them for meterpreter sessions without mixing the Rex and Msf namespaces... 
git-svn-id: file:///home/svn/framework3/trunk@8873 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 01:13:58 +00:00
HD Moore 6c502a6fd3 Woops, fix reporting os the nmap fingerprint on import 
git-svn-id: file:///home/svn/framework3/trunk@8872 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 00:36:59 +00:00
HD Moore 869435322e Move direct OS updates out, fingerprints instead 
git-svn-id: file:///home/svn/framework3/trunk@8870 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 00:11:43 +00:00
James Lee 25f9458c86 allow Msf::Module::SiteRefence to be reported via report_vuln; report module references when creating vulns from a successful exploit 
git-svn-id: file:///home/svn/framework3/trunk@8867 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-21 23:12:37 +00:00
HD Moore 480380003c Make verbose status printing standardized across login modules 
git-svn-id: file:///home/svn/framework3/trunk@8866 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-21 18:42:47 +00:00
HD Moore bb0db3cdf6 Closes command and meterpreter sessions in a much more consistent way 
git-svn-id: file:///home/svn/framework3/trunk@8865 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-21 04:24:27 +00:00
HD Moore 0b996801d0 Some database drivers will reset the status of $KCODE, which then auto-unicodes all of the binary strings. Prevent them 
git-svn-id: file:///home/svn/framework3/trunk@8860 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 21:40:59 +00:00
HD Moore 9d918b3cbc Make the uuid more hash-like 
git-svn-id: file:///home/svn/framework3/trunk@8859 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 19:04:21 +00:00
HD Moore 56c91e0441 Store the session type as well 
git-svn-id: file:///home/svn/framework3/trunk@8858 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 18:40:41 +00:00
HD Moore b19e21a3e3 Use the right workspace 
git-svn-id: file:///home/svn/framework3/trunk@8857 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 16:58:19 +00:00
Tod Beardsley e3355656ee Don't record 127.0.0.1 in the database as a host. 
If you really want to record localhost, call it 127.0.0.2 or something.



git-svn-id: file:///home/svn/framework3/trunk@8856 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 14:38:50 +00:00
James Lee 1678a0f74a move\ vuln\ reporting\ out\ of\ the\ console\ so\ it works in all\ UIs 
git-svn-id: file:///home/svn/framework3/trunk@8855 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-19 22:17:07 +00:00
Joshua Drake 24934444b6 only allow living sessions to be deregistered -- in theory this won't cause any issues 
git-svn-id: file:///home/svn/framework3/trunk@8854 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-19 03:12:36 +00:00
HD Moore 260b92f65a Correct decoding 
git-svn-id: file:///home/svn/framework3/trunk@8847 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-18 15:31:01 +00:00
HD Moore eb31c8f24b Fixes up SunRPC to use proper timeouts and track the socket context (needed for pivoting) 
git-svn-id: file:///home/svn/framework3/trunk@8845 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 23:02:35 +00:00
HD Moore 6383ef6cfd Typo 
git-svn-id: file:///home/svn/framework3/trunk@8844 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 18:41:09 +00:00
HD Moore ae90a52e94 Pass the username back to the rpc client 
git-svn-id: file:///home/svn/framework3/trunk@8842 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 18:25:36 +00:00
HD Moore 984890a2cd Merge in the user -> username change 
git-svn-id: file:///home/svn/framework3/trunk@8840 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 14:07:45 +00:00
HD Moore cae92bbe7d Explicitly handle username 
git-svn-id: file:///home/svn/framework3/trunk@8839 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 14:04:47 +00:00
James Lee efceaa84cf add on_module_complete and on_module_error events 
git-svn-id: file:///home/svn/framework3/trunk@8837 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 19:32:54 +00:00
Tod Beardsley 3f69bb8053 Fixes the handling for telnet services when the server is "busy" -- this is common wit HP JetDirect servers, where the server will respond with a busy message up to several seconds after the last connection logged off. While this does mean that credential tests will be skipped, they will at least not be scored incorrectly as false postives. 
Also, this removes the disconnect() method in favor of self.sock.close(). Disconnect seems to have a tendency to leave sessions half-closed, which will cause a busy state to never clear. self.sock.close doesn't appear to have this effect if you use a slower bruteforce_speed option (3 seems to work all right).



git-svn-id: file:///home/svn/framework3/trunk@8835 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 18:45:50 +00:00
Tod Beardsley cb640571b0 Fixes #1109 -- ARP is now less picky about ARP replies, but does conform to normal networking standards. 
git-svn-id: file:///home/svn/framework3/trunk@8832 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 16:04:02 +00:00
HD Moore 18075f9b68 Store session UUID and username 
git-svn-id: file:///home/svn/framework3/trunk@8830 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 15:11:07 +00:00
Joshua Drake 7cf8b4c43f distinguish the error message for sessions that die from EOF 
git-svn-id: file:///home/svn/framework3/trunk@8828 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 03:15:52 +00:00
HD Moore d03342fa49 Store the full module paths 
git-svn-id: file:///home/svn/framework3/trunk@8827 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 23:40:12 +00:00
HD Moore 2dd91d4f88 Allow API tokens to be used instead of user/pass 
git-svn-id: file:///home/svn/framework3/trunk@8823 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 20:16:37 +00:00
HD Moore 9ae8422c05 Fix info field 
git-svn-id: file:///home/svn/framework3/trunk@8817 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 16:09:46 +00:00
HD Moore 5e26eb9498 Adds name and info to the loot table: 
git-svn-id: file:///home/svn/framework3/trunk@8816 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 15:38:52 +00:00
HD Moore 8464a36bf5 Bump pool to 256; may still be driver limited. See #976. 
git-svn-id: file:///home/svn/framework3/trunk@8814 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 03:54:54 +00:00
Joshua Drake ac06e2d667 only copy user_input and user_output if they are non-nil 
git-svn-id: file:///home/svn/framework3/trunk@8806 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 21:47:27 +00:00
Joshua Drake b6851b8ee4 modify cmd stager to take a raw payload string instead of a payload instance 
git-svn-id: file:///home/svn/framework3/trunk@8805 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 21:47:01 +00:00
HD Moore 9288f34fbf Add a results column 
git-svn-id: file:///home/svn/framework3/trunk@8804 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 15:58:02 +00:00
HD Moore c5cbacd194 Handle long responses better 
git-svn-id: file:///home/svn/framework3/trunk@8799 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 22:21:41 +00:00
HD Moore c3d17ab48b Add hooks for input/output/error 
git-svn-id: file:///home/svn/framework3/trunk@8798 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 21:57:04 +00:00
James Lee 646044f631 move session_output events to the session where they belong (instead of in rpc). add a timeout arg to shell_read 
git-svn-id: file:///home/svn/framework3/trunk@8797 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 20:07:06 +00:00