5548bebb16
embeding payload on the c# script
2012-12-04 17:44:55 +01:00
e6c6133c90
must be password authentication
2012-12-04 09:56:51 -06:00
2467183c4f
"Appears" is better
...
"Appears" is a more accureate way describing how much we think the
host is vulnerable.
2012-12-04 09:28:05 -06:00
b5e7009283
Since we have included Tcp for check(), we don't need to reg rhost
2012-12-04 09:25:24 -06:00
77af4ba559
Missed a file in previous commit, thanks, travis!
2012-12-03 22:37:50 -06:00
f4476cb1b7
Really fix payload recalculation
...
Instead of deleting all non-symbolics before the re-adding phase of
PayloadSet#recalculate, store a list of old module names, populate a
list of new ones during the re-adding phase, and finally remove any
non-symbolic module that was in the old list but wasn't in the new list.
Also includes a minor refactoring to make ModuleManager its own thing
instead of being an awkard subclass of ModuleSet. Now PayloadSet doesn't
need to know about the existence of framework.modules, which makes the
separation a little more natural.
[FixRM #7037 ]
2012-12-03 22:23:40 -06:00
3c59c2d5c0
This extra space must die.
2012-12-03 21:09:07 -06:00
211a1674f5
Add kingcope's Tectia SSH 0day
2012-12-03 21:07:32 -06:00
752907d5f0
exploit for OSVDB-87548
2012-12-03 19:01:40 -05:00
beffd1feda
Auxiliary::Web::Analysis::Taint#taint_analysis: added a bit of differential logic to avoid false positives in case the default responce matches the pattern we're looking for [FIXRM #7559 ]
2012-12-04 00:09:54 +02:00
dafa984166
Auxiliary::Web::Fuzzable#submit: bugfixed to call http.request instead of http.request_async
2012-12-04 00:06:17 +02:00
f6c27a4494
Auxiliary::Web#find_proof: updated doc comments
2012-12-04 00:05:12 +02:00
3f3bdb8473
my editor...
2012-12-03 21:45:26 +01:00
8a9ad4253a
comment about the original discoverer updated
2012-12-03 21:44:35 +01:00
2cb824d62d
Added module for CVE-2012-5357
2012-12-03 20:12:02 +01:00
65f9f8ec2e
fixed net use cmd
2012-12-02 23:43:35 -06:00
a1136be59e
Fixed last ip changed it to peer
2012-12-02 19:17:59 -06:00
2b171bb003
Added report_note functionality
2012-12-02 18:49:50 -06:00
e4e3ec8fdd
Fixed module to use clean psexec method
2012-12-02 18:35:23 -06:00
476a5dc58c
Fixed return without disconnect
2012-12-02 18:27:27 -06:00
4276279dd8
Fixed print_status to use peer instead of ip
2012-12-02 18:25:09 -06:00
6bd4306214
Merge pull request #1119 from bug/fix-module-search
...
[FIXRM #7561 ]
[SEERM #7553 ]
2012-12-02 08:28:56 -06:00
30d7de3157
The db search already prints results, return after
2012-12-02 01:14:56 -06:00
3ae47e2089
Move the thread tracking into the update method
2012-12-02 01:07:40 -06:00
51673ca152
Search reference values as well (ms08-067,etc)
2012-12-02 00:44:25 -06:00
f17ea91d7c
Whitespace changes only
2012-12-02 00:44:03 -06:00
1ce1cdf7a0
Merge pull request #1118 from rapid7/bugs/rm7553-uncached-modules-search
...
Bugs/rm7553 uncached modules search
2012-12-01 13:59:16 -08:00
7f822fabd7
Fix typo
2012-12-01 15:53:51 -06:00
c8da3ebc6a
Doesn't have anything to do with #7533 .
...
Typo'ed the bug number. Should have been
[FixRM #7553 ]
[SeeRM #7533 ]
2012-12-01 14:18:46 -06:00
7ada8aeac1
Correct bug number
2012-12-01 14:16:24 -06:00
725b085ef2
If there are no search results, try harder.
...
Sometimes, the database is active but the cache isn't filled out, or
doesn't contain the module you want. This can come up especially when
msfconsole first starts and you are programmatically searching for
modules, for whatever reason.
This allows for falling back to the regular (slow) search in the event
no hits have been returned. It does not actually address the caching
problem seen in QA, but it's generally going to be Good Enough. Search
is getting overhauled Real Soon Now anyway.
[FixRM #7533 ]
2012-12-01 14:06:32 -06:00
e03ace17d9
typo
2012-12-01 11:57:51 -06:00
73b4a9d573
cleaned up rescue statements
2012-12-01 11:09:01 -06:00
16c5879d08
error handling added
2012-12-01 09:09:33 -06:00
4bc1159953
Fixes a pro bug with updating
...
This came up in a release candidate for Metasploit 4.5, haven't
exercised this code path yet.
Aint no thang.
[FixRM #7549 ]
2012-11-30 16:51:03 -06:00
7f72eae8b9
Comment the one case where we backtick git
...
There is only the one time we actually need the output of the local git
command, so comment it accordingly.
Someday, in the unknowable future, we'll use a proper Git library
instead of backticks and system() calls.
2012-11-30 15:41:05 -06:00
8c9e1abc8d
Fix typos
2012-11-30 15:25:12 -06:00
2b5c1c8e6f
Update msfupdate to accommodate for forks and clones.
2012-11-30 15:25:12 -06:00
1085357dbb
Talked to Todb, we like "." better
2012-11-30 14:53:57 -06:00
01fc69b2b5
Merge branch 'mandreko-http_hsts'
2012-11-30 14:26:49 -06:00
61a74bf257
Minor changes here and there
...
Changes include:
* Some corrections in metadata
* report_note()
* Removes connect(), usually don't need it in modules
2012-11-30 14:24:27 -06:00
bc63ee9c46
Merge branch 'jvazquez-r7-file_dropper_support_local' into rapid7
2012-11-30 13:43:02 -06:00
1da3388194
Fix missing require
...
[Closes #1106 ]
2012-11-30 13:42:31 -06:00
a3c8e54d0a
Catch exceptions from broken modules
2012-11-30 11:04:23 -08:00
fee6ad9799
Bump to 4.5.0-release for testing
2012-11-30 11:04:23 -08:00
a73d8792ee
Changed RPORT definition per egypt
2012-11-30 13:57:25 -05:00
7ae8f5b338
Modify name a little
2012-11-30 12:11:06 -06:00
9db84a16fa
Change output
2012-11-30 12:06:21 -06:00
44022baefa
Fix bug: NoMethodError undefined method `empty?' for nil:NilClass
2012-11-30 12:02:32 -06:00
37367bbaa0
Mostly cosmetic changes
2012-11-30 12:01:47 -06:00
jvazquez-r7
sinn3r
James Lee
h0ng10
Tasos Laskos
Brandon McCann
Royce Davis
Brandon Turner
HD Moore
Tod Beardsley
Erran Carey
Matt Andreko