Commit Graph

27851 Commits (967800eed09f82bca52bdae67098e5e7d9c0a4b9)

Author SHA1 Message Date
Jon Hart 967800eed0 Track account name for more useful table and prints 2014-10-19 12:59:51 -07:00
Jon Hart 5a05246682 Consistent case in *print_* 2014-10-19 12:30:50 -07:00
Martin Vigo 09faf2584f Merge pull request #2 from jhart-r7/landing-4004-jhart
Fix multiuser LastPass extraction, print/vprint cleanup
2014-10-17 20:22:20 -07:00
Jon Hart a30663e412
Fix multiuser LastPass extraction, print/vprint cleanup 2014-10-17 17:40:19 -07:00
Martin Vigo afed6a0b8a Merge pull request #1 from jhart-r7/landing-4004-jhart
Refactoring of LastPass post module
2014-10-17 12:54:04 -07:00
Jon Hart d2a00b208e Minor style cleanup to appease Rubocop 2014-10-17 12:50:18 -07:00
Jon Hart d97fe548b9 Store the browser name in LastPass loot 2014-10-17 11:33:31 -07:00
Jon Hart 43238c7324 Simplify LastPass extraction. Track what browser that puked creds 2014-10-17 11:19:36 -07:00
Jon Hart 9177b931fd Refactoring of LastPass module to use correct Firefox path on *nix 2014-10-17 10:20:55 -07:00
Martin Vigo 8fc87aa721 Solve conflict 2014-10-15 23:40:27 -07:00
Martin Vigo 36d6220f8f Make use of Rex::Ui::Text::Table 2014-10-15 23:13:53 -07:00
Martin Vigo bb421859d3 Refactor code and add support for all Windows 2014-10-15 22:15:54 -07:00
Martin Vigo c7e0ced02b Remove useless conditions 2014-10-15 21:29:47 -07:00
Martin Vigo 2bdc703930 Remove useless condition 2014-10-15 21:16:06 -07:00
Martin Vigo 5fa39782b8 Fix unused variable 2014-10-15 21:10:50 -07:00
Martin Vigo 8fc0f0955e Add support for Firefox 2014-10-15 20:44:20 -07:00
Martin Vigo 47794510c3 Add support for Firefox in XP 2014-10-15 20:44:19 -07:00
Martin Vigo b15b05fa7b Merge branch 'master' of github.com:martinvigo/metasploit-framework 2014-10-15 20:43:06 -07:00
Martin Vigo 6fb1287b3d Merge remote-tracking branch 'upstream/master' 2014-10-15 20:35:58 -07:00
Martin Vigo 484d98d0a8 Meet rubocop and msftify rules 2014-10-15 20:17:36 -07:00
Martin Vigo 85e6febe09 Add module to extract/decrypt LastPass credentials 2014-10-15 20:17:36 -07:00
Samuel Huckins 50a2f4c2a7
Adding missing lock changes from #4030 2014-10-15 20:39:13 -05:00
Samuel Huckins 87d8fc187e
Lands #4030, latest meterpreter bins 2014-10-15 20:35:26 -05:00
Tod Beardsley 4f32cc8c01
Bump to meterpreter_bins 0.0.10 2014-10-15 19:36:48 -05:00
Tod Beardsley 8afe4ab5e0
Update Gemspec for meterpreter 0.0.8 2014-10-15 19:00:19 -05:00
Tod Beardsley d5a0b81680
Land #4024, auto-negotiate SSL versions
Thanks @hmoore-r7!
2014-10-15 16:04:38 -05:00
HD Moore 5a350b2bf3 Merge pull request #6 from todb-r7/pr4024-auto-negotiate-ssl
Add 'Auto' to tcp.rb as well.
2014-10-15 16:03:52 -05:00
Tod Beardsley 62be638258
Add 'Auto' to tcp.rb as well. 2014-10-15 16:01:42 -05:00
Joshua Smith 8ec0aa0a75
Land 4006, msfcli support for show actions 2014-10-15 14:43:27 -05:00
Tod Beardsley b866983bc2
Land #4025, auto-negotiate meterpreter SSL 2014-10-15 14:25:44 -05:00
HD Moore fcd9b4b293 Allow non-SSLv3 Meterpreters (auto-negotiate) 2014-10-15 13:57:51 -05:00
HD Moore cb3a4afac5 Typo: request -> requested in message 2014-10-15 13:48:22 -05:00
HD Moore 7516512650 Raise an ArgumentError vs RuntimeError for backwards compatibility 2014-10-15 13:30:38 -05:00
HD Moore a762d871bf Autonegotiate SSL/TLS versions when not explicit 2014-10-15 13:26:40 -05:00
HD Moore 0941b98596 Unland #4022 with #4023 (more discussion)
essage aborts
2014-10-15 12:32:10 -05:00
Tod Beardsley c4d1a4c7dc
Revert #4022, as the solution is incomplete
Revert "Land 4022, datastore should default TLS1 vs SSL3"

This reverts commit 4c8662c6c1, reversing
changes made to 0937f32ff9.
2014-10-15 12:32:08 -05:00
Joshua Smith 4c8662c6c1
Land 4022, datastore should default TLS1 vs SSL3 2014-10-15 11:49:28 -05:00
Tod Beardsley 1754b23ffb
Datastore options should default to TLS1, not SSL3
Otherwise, we risk getting our connections killed by particularly
aggressive DPI devices (IPS, firewalls, etc)

Squashed commit of the following:

commit 5e203851d5c9dce1fe984b106ce3031a3653e54b
Author: Tod Beardsley <tod_beardsley@rapid7.com>
Date:   Wed Oct 15 10:19:04 2014 -0500

    Whoops missed one

commit 477b15a08e06e74d725f1c45486b37e4b403e3c2
Author: Tod Beardsley <tod_beardsley@rapid7.com>
Date:   Wed Oct 15 10:16:59 2014 -0500

    Other datastore options also want TLS1 as default

commit 8d397bd9b500ff6a8462170b4c39849228494795
Author: Tod Beardsley <tod_beardsley@rapid7.com>
Date:   Wed Oct 15 10:12:06 2014 -0500

    TCP datastore opts default to TLS1

    Old encryption is old. See also: POODLE
2014-10-15 10:28:53 -05:00
William Vu 0937f32ff9
Land #4021, TLSv1 default for RPC connections 2014-10-15 01:32:45 -05:00
HD Moore 6cf62765de Default to TLSv1 for RPC connections 2014-10-15 01:20:43 -05:00
Tod Beardsley 1095d1dca3
Land #4015, dates in the info on modules 2014-10-14 16:37:26 -05:00
Tod Beardsley 592f1e9893
Land #3999, errors on login suppressed by default
This also solved the merge conflict on:

	modules/auxiliary/scanner/http/jenkins_login.rb

Fixes #3995.
2014-10-14 16:35:09 -05:00
wvu-r7 d775c6cfdb Merge pull request #9 from todb-r7/pr4015-disclosure-fix
Pr4015 disclosure fix
2014-10-14 16:12:36 -05:00
Tod Beardsley e68aaa4226
Don't disclose empty disclosure dates
For rapid7#4015
2014-10-14 16:02:23 -05:00
Tod Beardsley b8aa3f5357
Test #4015, disclosure dates on info 2014-10-14 16:01:59 -05:00
William Vu f612c8cd3e
Add disclosure date to info 2014-10-14 15:15:24 -05:00
William Vu fdd79e64c3
Land #4010, ReverseAllowProxy clarification 2014-10-14 15:10:50 -05:00
Tod Beardsley 8e58efbf4f
Land #4008, OLE specs 2014-10-14 13:57:54 -05:00
Tod Beardsley 9630d4676f
Land #4012, info showing actions 2014-10-14 13:51:37 -05:00
William Vu 309d578196
Land #4013, OSVDB refs for a couple modules 2014-10-14 13:44:31 -05:00