205276c38f
Update modules/auxiliary/admin/smb/psexec_command.rb
...
Fixed static path to Windows directory. This causes problems with directory is 'WINNT' for example.
2012-12-06 16:03:44 -06:00
d938959e97
Module to find SVN wc.db files.
2012-12-06 16:30:23 -05:00
232eb7bf2d
Final cleanup plus name change
2012-12-05 00:32:42 +01:00
9cff72af72
Merge branch 'loggedin_users' of https://github.com/R3dy/metasploit-framework into R3dy-loggedin_users
2012-12-05 00:31:24 +01:00
3dada00f43
fix typo accor ding to redmine 7550
2012-12-04 22:37:08 +01:00
a1136be59e
Fixed last ip changed it to peer
2012-12-02 19:17:59 -06:00
2b171bb003
Added report_note functionality
2012-12-02 18:49:50 -06:00
e4e3ec8fdd
Fixed module to use clean psexec method
2012-12-02 18:35:23 -06:00
476a5dc58c
Fixed return without disconnect
2012-12-02 18:27:27 -06:00
4276279dd8
Fixed print_status to use peer instead of ip
2012-12-02 18:25:09 -06:00
1085357dbb
Talked to Todb, we like "." better
2012-11-30 14:53:57 -06:00
61a74bf257
Minor changes here and there
...
Changes include:
* Some corrections in metadata
* report_note()
* Removes connect(), usually don't need it in modules
2012-11-30 14:24:27 -06:00
a73d8792ee
Changed RPORT definition per egypt
2012-11-30 13:57:25 -05:00
40b8c93ef8
Added HSTS scanner for HTTPS sites
2012-11-30 09:30:11 -05:00
7d4982b47b
Fixed description area and authoer section
2012-11-29 14:21:27 -06:00
d6a3f6666d
Fixed simple return form get_output method
2012-11-29 14:15:57 -06:00
cf53588ab7
Removed Version
2012-11-29 14:14:41 -06:00
3ebbee5b1f
Removed generic URLs
2012-11-29 14:13:49 -06:00
bf41d3d0fd
Merge branch 'network_shutdown_creds' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-network_shutdown_creds
2012-11-29 10:43:03 -06:00
b0e4931de8
When 'credentials' is empty, it is empty.......
2012-11-29 10:22:20 -06:00
93a69ea62e
Fix instances of invalid lower-case datastore use
2012-11-29 00:05:36 -06:00
b3a473aec0
Forgot to remove this option
2012-11-28 18:48:33 -06:00
0415d31c61
Update description
2012-11-28 16:07:21 -06:00
52c2437d5a
Add OSVDB-83199 as a cred collecting aux module
...
From #1102
2012-11-28 15:56:13 -06:00
c0c3dff4e6
Several fixes for smb, mainly win 8 compatibility
2012-11-28 22:49:40 +01:00
82dc8e8814
Added check for LOGONSERVER and HOMEPATH
2012-11-28 09:02:19 -06:00
a24ebde3e3
Fix syntax on @@loaded_msfrpc
2012-11-27 14:10:46 -06:00
84294655aa
Update the require, error handling, casing
2012-11-27 11:44:51 -08:00
b008eb93c9
Fix msgpack issue
2012-11-27 12:45:01 -06:00
0440708453
I missed this sucker: var in a quote
2012-11-27 11:57:51 -06:00
0a0195e6c8
Merge branch 'kost-aux-scan-nexpose'
2012-11-27 11:57:11 -06:00
24f44e7a82
Lots of small changes
...
Basically the same changes I've been correcting like the rest of
other modules.
2012-11-27 11:52:58 -06:00
6ccceedcb7
final cleanup for sip_deregister
2012-11-27 18:34:31 +01:00
496fb63fad
Merge branch 'sip_deregister' of https://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-sip_deregister
2012-11-27 18:34:05 +01:00
4dbb82d0bc
Merge branch 'aux-scan-nexpose' of git://github.com/kost/metasploit-framework into kost-aux-scan-nexpose
2012-11-27 11:25:44 -06:00
139c149583
This variable doesn't have to be in a quote
2012-11-27 11:19:04 -06:00
673c519fa3
msg() isn't needed, because it's already implemented in HttpClient
2012-11-27 11:18:27 -06:00
7c3e478070
Final changes
2012-11-27 11:16:12 -06:00
bb34fb8dec
Actually, this is the exact reason why res can be nil
2012-11-27 11:14:52 -06:00
eb30765509
Use vars_post instead of data
2012-11-27 11:13:21 -06:00
4796fb4415
These don't need to be in a quote
2012-11-27 11:12:15 -06:00
5b787406b9
Correct output messages
...
When HttpClient is used, it's actually not necessary to put the
target's IP/port and the module name in the output, because it's
already included in there.
2012-11-27 11:10:31 -06:00
46f86f46fa
Merge branch 'aux-scan-nessus' of git://github.com/kost/metasploit-framework into kost-aux-scan-nessus
2012-11-27 11:01:36 -06:00
319fa04c16
Fix Ruby 1.8 comma of death
2012-11-26 16:45:43 -06:00
9ccc69c4c1
Mostly cosmetic changes. Plus a nil token bug fix.
2012-11-26 16:32:49 -06:00
32ea36916c
Cosmetic changes
2012-11-26 16:28:16 -06:00
65ac56a7a7
Merge branch 'aux-scan-metasploit' of git://github.com/kost/metasploit-framework into kost-aux-scan-metasploit
2012-11-26 16:26:11 -06:00
472ec35adb
Merge branch 'kost-aux-scan-splunk-login'
2012-11-26 16:16:02 -06:00
af451df864
Lots of changes made
...
These changes include:
* More description
* Checks if auth is actually required.
* Collects the default credential on the webpage, and then tries it.
* Fixes possible nil 'Set-Cookie' header.
* Supports more options (USERPASS_FILE, USER_FILE, PASS_FILE)
* Removes the msg() function.
2012-11-26 16:12:11 -06:00
0ea63ca9c2
Merge branch 'web-modules' of git://github.com/tasos-r7/metasploit-framework into tasos-r7-web-modules
2012-11-26 12:59:29 -06:00
7795dc58f4
auxiliary/scanner/http/crawler#form_from_url: rescue => rescue URI::Error
2012-11-26 20:54:20 +02:00
541ecd49d6
Merge branch 'web-modules' of git://github.com/tasos-r7/metasploit-framework into tasos-r7-web-modules
2012-11-26 12:17:24 -06:00
c17cffdece
auxiliary/scanner/http: wrapped an exception-prone URL parse in a begin/rescue block
2012-11-26 18:58:06 +02:00
c22335a2f5
Remove spaces at EOL
2012-11-24 23:32:32 +01:00
7bafc97fec
Remove non needed and redundant checks
2012-11-24 23:01:08 +01:00
bbe3659093
Import of MSF web interface guesser
2012-11-24 22:56:38 +01:00
cdfe663675
initial import of splunk password guesser
2012-11-24 22:05:57 +01:00
860519099f
Removed space at EOL
2012-11-24 19:34:42 +01:00
414fd052c1
final cleanup
2012-11-24 15:03:14 +01:00
fab3427b25
Merge branch 'command' of https://github.com/R3dy/metasploit-framework into R3dy-command
2012-11-24 15:02:39 +01:00
4ad0907c29
Wrap description to 80 cols
2012-11-24 08:13:36 +01:00
14ec0c8a60
Fix http code check + be more verbose
2012-11-24 08:09:26 +01:00
83168e8b56
Correct placement of autofilter ports statement
2012-11-24 07:38:27 +01:00
d008fa0250
Make wrapping works and look better
2012-11-24 07:33:25 +01:00
f88c4491b5
Added autofilter_port to 3790(metasploit web intf)
2012-11-24 07:28:39 +01:00
8608bebbe7
Wrapped module info to col80
2012-11-24 07:27:10 +01:00
965efc9c8d
Last touch up
2012-11-23 18:51:51 -06:00
ddee88bb03
Merge branch 'aux-scan-openvas' of git://github.com/kost/metasploit-framework into kost-aux-scan-openvas
2012-11-23 18:47:33 -06:00
ec3ce499f1
Simplify variable assigment
2012-11-24 00:33:49 +01:00
17de7be1bf
Fix exception handling block
2012-11-24 00:31:32 +01:00
505de0bfc6
Use vars_post instead of direct body construction
2012-11-24 00:21:35 +01:00
a5db9331bc
Simplify rescue handler
2012-11-24 00:15:39 +01:00
d968a33e14
Simplify variable assigment
2012-11-24 00:13:28 +01:00
2978775335
change default RPORT
2012-11-23 12:14:08 +01:00
ca3240a83e
Merge branch 'SXPG_COMMAND_EXEC_DBMCLI' of https://github.com/nmonkee/metasploit-framework into nmonkee-SXPG_COMMAND_EXEC_DBMCLI
2012-11-23 12:13:22 +01:00
f7fb8bb862
change module filename
2012-11-23 11:43:34 +01:00
cb7e98ea29
Cleanup for command module
2012-11-23 11:42:59 +01:00
b04b3963d8
Fix missing parenthesis
2012-11-22 23:50:47 -06:00
d2cde0b294
Make error handling consistent in SNMP modules
2012-11-22 21:36:33 -06:00
b357d221fb
Fix stack trace/error handling in AIX snmp version
2012-11-22 21:28:49 -06:00
46f3b8f47d
Minor changes to get Travis to rerun (The Travis build failed)
2012-11-22 16:00:38 +01:00
564a32ce7c
Made requested changes
2012-11-21 17:33:15 +00:00
e16cea6db8
Fixed execerror, redundant if statement, and poor exception handling
2012-11-20 18:46:07 -06:00
064df7c537
Minor grammar touch on modbus_findunitid
2012-11-20 14:08:07 -06:00
6b4c131cf5
Avoiding a future conflict with release
2012-11-20 13:24:19 -06:00
8c60035a2d
Renamed functions to meet coding standards
...
Added client-side tool suggestion in description and references
(newlines in the description might help readability, if this is possible?)
Added some minor logic change to stop empty filenames
2012-11-20 18:48:18 +01:00
ff07e5d021
sap_soap_rfc_dbmcli_sxpg_command_exec
2012-11-20 15:34:53 +00:00
32373c1a6a
new filename
2012-11-20 16:01:58 +01:00
bb13c87aab
module filename changed
2012-11-20 16:01:26 +01:00
96024dc639
title updated
2012-11-20 16:00:50 +01:00
bfbab4526a
Merge branch 'sap_soap_rfc_sxpg_call_system' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_sxpg_call_system
2012-11-20 16:00:14 +01:00
217fa27abb
pcap to verify deleted
2012-11-20 15:55:56 +01:00
101238db35
Merge branch 'sap_soap_rfc_dbmcli_sxpg_call_system_command_exec' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-20 15:55:32 +01:00
e16a51fcf9
author change
2012-11-20 14:23:29 +00:00
1bc62b8686
pcap for lin
2012-11-20 14:15:49 +00:00
838eb5154a
Merge branch 'sap_soap_rfc_dbmcli_sxpg_call_system_command_exec' of https://github.com/jvazquez-r7/metasploit-framework into sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-20 14:13:51 +00:00
be66ccdf00
pcap for lin
2012-11-20 13:59:49 +00:00
5f99b56688
up to date to test rapid7#1030
2012-11-20 12:13:14 +01:00
31ca077dd6
cleanup for sap_soap_rfc_sxpg_call_system.rb
2012-11-20 11:54:21 +01:00
5667cffb77
Fixed typos
2012-11-20 09:06:15 +01:00
8385b8314c
fix 1.8 warning about space before argument parenthesis
2012-11-19 22:55:44 +01:00
3d753e9690
Delete pcap used to verify
2012-11-19 22:47:07 +01:00
2f44bbaf21
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_sxpg_command_exec
2012-11-19 22:46:38 +01:00
dcb5cfdbbd
pcap for lin
2012-11-19 21:06:05 +00:00
a3550fb91b
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/nmonkee/metasploit-framework into sap_soap_rfc_sxpg_command_exec
2012-11-19 21:01:00 +00:00
aaeb05725a
pcaps for lin and win
2012-11-19 21:00:11 +00:00
795ea5bec2
Fix randomize of dislayname and removed filename from command.rb
2012-11-19 14:34:06 -06:00
7fa8717860
Fixed cleanup method to report an Error on command.rb
2012-11-19 13:59:58 -06:00
6adbee13b3
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/jvazquez-r7/metasploit-framework into sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-19 17:18:21 +00:00
ee7bf42903
cleanup for last testing
2012-11-19 17:59:27 +01:00
430227a460
msftidy cleanup
2012-11-19 16:04:35 +01:00
082bba3342
Rewrite
...
Removed unrequired global vars
Added flexibility in start, continue, end responses
Added ability to set filename in BOF packet or not
Fixed BEGIN RESCUE blocks to not catch errors themselves
BEGIN ENSURE block still needed to trigger save to loot on CTRL+C
2012-11-19 16:02:53 +01:00
149704d918
deleting file sap_soap_rfc_sxpg_call_system_command_exec
2012-11-18 23:56:33 +00:00
3bf88e5884
final cleanup for sap_web_gui_brute_login
2012-11-18 22:39:05 +01:00
165e9c26da
Merge branch 'sap_web_gui_brute_login' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_web_gui_brute_login
2012-11-18 22:38:30 +01:00
3573d31d08
final cleanup
2012-11-18 21:37:24 +01:00
eddea29568
Merge branch 'sap_soap_rfc_brute_login' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_brute_login
2012-11-18 21:36:54 +01:00
9fa8204152
datastore parameters cleanup
2012-11-18 11:53:17 +01:00
5b55049610
module cleanup
2012-11-18 11:45:12 +01:00
ea6c3e9b69
Merge branch 'sap_soap_rfc_susr_user_interface' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_susr_user_interface
2012-11-18 11:44:26 +01:00
8a1a811844
Final cleanup
2012-11-18 01:41:10 +01:00
482526e978
Merge branch 'sap_soap_bapi_user_create1' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_bapi_user_create1
2012-11-18 01:40:11 +01:00
889124a439
final cleanup
2012-11-18 00:59:49 +01:00
eed0f92829
Merge branch 'sap_soap_rfc_ping' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_ping
2012-11-18 00:59:35 +01:00
22d4ccadea
description updated
2012-11-18 00:35:25 +01:00
a35c640acf
final cleanup
2012-11-18 00:32:20 +01:00
e72946303e
Merge branch 'sap_soap_rfc_system_info' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_system_info
2012-11-18 00:31:53 +01:00
59e96e5850
fix typo
2012-11-17 00:35:53 +01:00
8c0e4705f1
final cleanup
2012-11-17 00:18:35 +01:00
c511e58971
Merge branch 'sap_soap_rfc_read_table' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_read_table
2012-11-17 00:18:04 +01:00
c65f37782d
Merge branch 'rapid7' into tasos-r7-web-modules
2012-11-16 13:52:18 -06:00
0ef41ffcd4
added reporting to the module
2012-11-16 20:05:26 +01:00
d8d2bee6fb
Final cleanup
2012-11-16 19:20:58 +01:00
65c741b539
Merge branch 'sap_soap_th_saprel' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_th_saprel
2012-11-16 19:19:21 +01:00
e8fe6031e9
Let default timeout for send_request_cgi
2012-11-16 18:09:47 +01:00
51f238ec38
up to date
2012-11-16 16:03:09 +01:00
c0df3a0407
Remove curly braces
2012-11-15 23:27:25 +01:00
eea85cf2ca
Remove curly braces
2012-11-15 23:26:28 +01:00
836d83a253
Remove curly braces
2012-11-15 23:25:10 +01:00
854bfe09e2
remove curly braces
2012-11-15 23:23:46 +01:00
73d43beff3
Remove EOL spaces
2012-11-15 22:46:22 +01:00
afced2278d
Remove EOL spaces
2012-11-15 22:43:47 +01:00
e479399b5d
Initial import of OpenVAS aux scripts
2012-11-15 22:39:56 +01:00
f7f7c451d3
Initial import of Nexpose aux scripts
2012-11-15 22:35:35 +01:00
1956af7dc1
Initial import of Metasploit RPC aux scripts
2012-11-15 22:32:22 +01:00
bd03a2dcfd
Initial import of Nessus basic aux scripts
2012-11-15 22:28:56 +01:00
62f9766e63
made requested changes
2012-11-15 00:00:31 +00:00
99d145eb23
made requested changes
2012-11-14 23:50:47 +00:00
35a7999b4e
Merge branch 'rapid7' into tasos-r7-web-modules
2012-11-14 17:41:27 -06:00
b9a8791b87
made requested changes
2012-11-14 23:40:20 +00:00
047d6d350a
looks like I committed the wrong file first time round :(
2012-11-14 23:34:21 +00:00
a252dbc5d7
made requested changes
2012-11-14 23:25:25 +00:00
91b81bee4a
made requested changes
2012-11-14 23:19:09 +00:00
308eee7c4f
made requested changes
2012-11-14 23:00:45 +00:00
aa3cd500bb
made requested changes
2012-11-14 22:49:34 +00:00
83215edd8c
made requested changes
2012-11-14 22:38:32 +00:00
c5a017d054
made requested changes
2012-11-14 22:25:10 +00:00
833af3a347
made requested changes
2012-11-14 22:13:06 +00:00
e55e5d2796
made requested changes
2012-11-14 20:12:37 +00:00
4d633016aa
Merge remote branch 'Meatballs1/smb_login_update'
...
Thus ends our long national nightmare.
2012-11-14 10:13:34 -06:00
8a9f0a0890
Merge remote-tracking branch 'upstream/master' into web-modules
2012-11-14 18:10:41 +02:00
6b033fb1a8
Only store the password when there's one
2012-11-14 01:25:32 -06:00
212179b95e
change behavior to explicitly note when password is not set (or enhanced password supercedes it) as opposed to an empty string password
2012-11-13 23:49:45 -06:00
721cf41f47
fix nil class error on non-lantronix hosts
2012-11-13 23:46:59 -06:00
f9b4971fc3
Fixed hard coded paths in psexec on command.rb
2012-11-13 10:28:16 -06:00
ee7e502e89
Merge branch 'impersonate_ssl_tweak' of git://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-impersonate_ssl_tweak
2012-11-13 09:36:28 -06:00
f707a4774d
Merge branch 'esmnemon-modbus-aux'
2012-11-12 23:42:00 -06:00
aa6ac36abd
Cosmetic changes, mostly
2012-11-12 23:41:31 -06:00
66fe8ade52
Merge branch 'modbus-aux' of git://github.com/esmnemon/metasploit-framework into esmnemon-modbus-aux
2012-11-12 22:40:34 -06:00
5c10bc11a8
Fix spacing before -
2012-11-12 23:20:40 +00:00
dd1da88ff7
Make domain part less stupid looking
2012-11-12 16:54:52 -06:00
970869b3e4
Retry push
2012-11-12 22:28:44 +00:00
e30ab85549
Fix some outputting issues
2012-11-12 22:25:08 +00:00
72f0a5613f
Add more improvements
2012-11-12 15:40:12 -06:00
8fe3f289bf
Merge branch 'drupal_views_user_enum.rb' of git://github.com/zeknox/metasploit-framework into zeknox-drupal_views_user_enum.rb
2012-11-12 14:48:13 -06:00
683bcd4b82
Added disconnect method to command.rb
2012-11-12 11:25:12 -06:00
e57275d3f6
added check cleanup method to command.rb
2012-11-12 09:46:02 -06:00
94120604f2
Set back to target_uri.to_s per original module
2012-11-11 12:07:27 +01:00
cffedd0c97
Set back to target_uri.path
2012-11-11 12:04:31 +01:00
76ba770872
fixed target_uri.path vs target_uri.to_s issue
2012-11-11 11:59:10 +01:00
38b25f01f7
Corrected bad coding (sorry)
...
Added OptEnum and OptPath
Checks for nil and empty
Added reference
Made AlterSerial an advanced option instead of always on
2012-11-10 20:24:50 +01:00
6482de44e4
Added checks for Extension and Domain
...
Altered error handling on no response
2012-11-10 13:21:41 +01:00
1b9d45e106
Test for subdom_list existence first
...
Otherwise, you get
````
[11/09/2012 14:50:38] [e(0)] core: Error running against host
173.236.237.136: can't convert nil into String
````
Other than that, looks good.
[Fixes #851 ]
2012-11-09 15:01:36 -06:00
171ebe13cd
Whitespace fix for vhost_scanner
2012-11-09 14:48:46 -06:00
b1c35fdb24
Merge remote branch 'sempervictus/http_vhost_scanner_from_file'
2012-11-09 14:46:54 -06:00
9a94fef8d0
Merge branch 'llmnr-spoof'
2012-11-09 14:36:04 -06:00
a6fd0fee1c
Fix up notification to not spam or hide
...
Instead of hiding the success notification in vprint, it should print,
but not every time. This fix thottles the notification to ten seconds
per host.
[Fixes #731 ]
2012-11-09 14:31:28 -06:00
6cd5b79b60
Getting rid of Id and Revision
2012-11-09 13:30:14 -06:00
f6c565848e
Resolving conflicted smb_login
2012-11-09 12:55:18 -06:00
6e257d5f57
Simplify main method
2012-11-09 08:50:09 -06:00
a889c8ae99
error handling adjustments on loggedin_users.rb
2012-11-09 08:33:05 -06:00
7032ef0f6f
Merge remote-tracking branch 'upstream/master' into web-modules
2012-11-09 00:21:38 +02:00
08d56e31e1
recreated in new branch
...
removed space at EOL
2012-11-08 22:38:21 +01:00
b75ade746c
Removed EOL spaces
...
Removed unrequired udp_sock.close
2012-11-08 22:26:37 +01:00
0dd4f4d03d
Formatting
2012-11-08 17:51:06 +01:00
f88ec5cbc8
Add normalize_uri to modules that may have
...
been missed by PULL 1045.
Please ensure PULL 1045 is in place prior to
looking at this (as it implements normalize_uri)
ref --> https://github.com/rapid7/metasploit-framework/pull/1045
2012-11-08 17:42:48 +01:00
7ce3859e8c
Fixed a bunch of bull crap in loggedin_users.rb
2012-11-08 09:49:53 -06:00
0c0d5b10ec
changes loggedin_users.rb
2012-11-08 09:26:17 -06:00
3bf865456c
Better error handling in loggedin_users
2012-11-08 09:13:33 -06:00
6843aa3a6c
Added fix URL and a few more comments. Corrected date.
2012-11-08 10:09:28 -05:00
4d2147f392
Adds normalize_uri() and fixes double-slash typos
2012-11-08 07:16:51 -06:00
5ad2749cee
Rework ADDP modules to use the new mixin
2012-11-08 06:40:32 -06:00
0e8a3f0ea6
Merge branch 'master' into feature/udp-scanner-mixin
2012-11-08 06:09:22 -06:00
e008120c11
Bug fixes to the SSDP discovery module
2012-11-08 06:08:49 -06:00
da6bf29699
Display message when no response received
2012-11-08 11:59:13 +01:00
22ecd6afa9
Edit command.rb
2012-11-07 15:17:13 -06:00
18aab8bcc7
Remove extrat comment lines from command.rb
2012-11-07 15:09:57 -06:00
d159aa6f9f
Changed error handeling of command.rb module
2012-11-07 15:03:31 -06:00
04a80e0648
Fixes to the WMI setup
2012-11-07 11:26:48 -06:00
92679cd1c8
SAP Web GUI Brute Force
2012-11-07 16:18:00 +00:00
c13f8d8eba
SAP RFC TH_SAPREL
2012-11-07 16:10:09 +00:00
f618000d0d
SAP SOAP RFC SUSR_RFC_USER_INTERFACE (user creation)
2012-11-07 16:04:07 +00:00
2b973263b7
SAP SOAP RFC_Info
2012-11-07 15:17:56 +00:00
509e63268b
SAP SOAP RFC SXPG_CALL_SYSTEM
2012-11-07 15:06:28 +00:00
ac518f7091
Removed double lines in Author field and general URLs
2012-11-07 08:22:09 -06:00
ddcc0a9592
This module makes use of the SXPG_CALL_SYSTEM Remote Function Call (via SOAP) to execute OS commands as configured in SM69.
2012-11-07 12:48:08 +00:00
e053c4a0ad
This module makes use of the RFC_READ_TABLE Remote Function Call (via SOAP) to read data from tables.
2012-11-07 12:37:01 +00:00
fc03fbe881
Initial sip_deregister.rb
2012-11-07 13:35:33 +01:00
3be7ad06c4
Calls the RFC_PING RFC module via SOAP to test the availability of the function. The function simply tests connectivity to remote RFC destinations.
2012-11-07 11:35:53 +00:00
b86bc9f365
SAP SOAP RFC DBMCLI Command Injection (via SXPG_CALL_SYSTEM)
2012-11-07 11:29:16 +00:00
f82b51b2c4
This module calls the RFC BAPI_USER_CREATE1 module (via SOAP). The module can be used for creating/modifying users.
2012-11-07 11:16:31 +00:00
5d7414511a
SAPRouter Admin Request (display remote route information)
2012-11-07 11:06:03 +00:00
6b7b8f7265
Flipping OptString for OptEnum
2012-11-07 11:00:43 +00:00
d19be3024f
Flipping OptEnum for OptString
2012-11-07 10:58:07 +00:00
51a3aa514d
This module attempts to brute force the username | password via an RFC interface (over SOAP)
2012-11-07 10:45:25 +00:00
aec4d99549
ran msftidy on command.rb
2012-11-06 16:33:47 -06:00
9f87b7b674
Removed smb_exec from this branch
2012-11-06 16:18:38 -06:00
c4f35def81
fixed vprint_line
2012-11-06 14:58:14 -06:00
d835a046ed
fixed drupal_views_user_enum.rb so it displays to stdout and stores to loot
2012-11-06 14:53:11 -06:00
43ebec22b4
Silly typos
2012-11-06 13:14:07 -06:00
8c41aca091
Removed some non essential requires from loggedin_users.rb
2012-11-06 09:17:09 -06:00
e40ab4367a
removed other modules
2012-11-05 21:07:09 -06:00
74745bdad6
New Module loggedin-users
2012-11-05 21:04:27 -06:00
30088a410c
fixed junky spacings
2012-11-05 16:59:56 -06:00
1a4968e6a8
removed hashgrab.rb from this branch
2012-11-05 16:38:58 -06:00
d5b18114ac
New module loggedin_users.rb
2012-11-05 16:37:13 -06:00
b973927ab2
Msftidy on digi_addp_reboot and pgpass_creds
2012-11-05 16:19:38 -06:00
9166d12179
Merge branch 'WinRM_piecemeal' of https://github.com/dmaloney-r7/metasploit-framework into dmaloney-r7-WinRM_piecemeal
2012-11-05 23:08:59 +01:00
aa8549fb6b
Correct use of rport.
2012-11-05 15:57:59 -06:00
23cc2bd1a1
Merge remote branch 'origin/master'
2012-11-05 15:56:21 -06:00
6a4d398b5d
Merge remote branch 'origin/feature/addp-modules'
2012-11-05 15:55:30 -06:00
0f5f5f966b
Merge branch 'master' into feature/realport-modules
2012-11-05 22:52:38 +01:00
314026ed0e
Some error checking and fixups
2012-11-05 13:29:57 -06:00
3236b4c425
New module hashgrab.rb
2012-11-05 12:06:51 -06:00
a31606e196
New module ntdsgrab.rb
2012-11-05 12:05:16 -06:00
0b940d8087
New module command.rb
2012-11-05 12:03:51 -06:00
aa6e8c7437
smb_exec
2012-11-05 11:46:39 -06:00
a9db705b60
New module for submission smb_exec
2012-11-05 11:45:03 -06:00
b4872c1c48
Submiting module smb_exec to MSF
2012-11-05 11:37:10 -06:00
dccfb63bd6
Cleanup based on PR #1008 feedback
2012-11-04 22:47:56 -06:00
36f82fba09
Remove unused version fields from template
2012-11-04 22:38:31 -06:00
910a91a0f6
First commit of a udp_mixin and modified scanners
2012-11-04 01:13:38 -05:00
dac331fa10
Added XBMC Traversal exploit
2012-11-03 22:19:48 -04:00
963fdd6430
Initial commit for Digi RealPort modules
2012-11-03 17:44:53 -05:00
9576d26299
Merge branch 'bitweaver_traversal' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-bitweaver_traversal
2012-11-03 18:25:46 +01:00
10cccb34d8
Uh... I don't want that print_line(). Forgot to remove it.
2012-11-03 05:18:17 -05:00
4415849009
Another attempt to fix the regex
2012-11-03 05:17:32 -05:00
80ebcf212a
See PR #981.Only real change is to retry on ENOBUF
2012-11-02 23:05:16 -05:00
d449052472
Make <br /> tag optional
2012-11-02 18:25:48 -05:00
45dce9ff76
Modify regex
2012-11-02 16:44:27 -05:00
0d6acad1a0
Updates for PR #981 (cleanup)
2012-11-02 15:47:52 -05:00
0bf5f63d67
Merge branch 'master' into feature/addp-modules
2012-11-02 15:41:03 -05:00
1d26491b77
Ok... last fix, really
2012-11-02 15:09:30 -05:00
a161c1faa0
Final changes
2012-11-02 15:06:51 -05:00
ea5dc940d2
Move module to the correct directory
2012-11-02 14:52:28 -05:00
a9db59feb7
Cosmetic changes, mostly
2012-11-02 14:52:02 -05:00
51b15d8c09
Merge branch 'concrete5_member_list' of git://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-concrete5_member_list
2012-11-02 14:43:49 -05:00
00d0dc3e4d
Add CVE-2012-5192 - Bitweaver overlay_type module
2012-11-02 14:20:20 -05:00
38518478bd
Format/msftidy fixes
2012-11-02 11:24:34 -05:00
891ad4685c
$Id and $Revision
2012-11-02 11:24:34 -05:00
954ccf1ca1
Added ability to set extension on target
2012-11-02 11:24:33 -05:00
01b13480cb
Added concrete5.org references
2012-11-02 16:45:41 +01:00
f3e03ddb42
Concrete5 CMS member list scanner
2012-11-02 16:32:34 +01:00
37a9c13c34
updated auxiliary/scanner/http/crawler to accept a callback for each page
2012-11-01 21:20:56 +02:00
59f5d9bc5d
Man i'm rusty at writing for framework
...
Fixes up all sinn3r's findings so far
2012-11-01 08:37:21 -05:00
dd7ab11e38
Minor cleanup
2012-10-31 16:14:34 -05:00
86bf3d63b7
Updated Encryption comments
2012-10-31 15:25:33 -05:00
7cf7563a87
Merge branch 'upstream-master' into WinRM_piecemeal
2012-10-31 15:23:32 -05:00
9736d35230
Fix syntax error
2012-10-31 15:14:46 -05:00
98c1272b92
Update the description about AllowUnencrypted
2012-10-31 15:14:46 -05:00
8711484438
minor fixups
2012-10-31 15:14:46 -05:00
09195ad9a7
Adds the WQL execution module
2012-10-31 15:14:46 -05:00
d2d137ce68
adds the WinRM CMD execution module
2012-10-31 15:10:45 -05:00
81e56663fd
a few ruby cleanups
2012-10-31 09:59:47 +01:00
a2fd377326
module cleanup
2012-10-31 09:20:00 +01:00
38a9761d6e
Merge branch 'ntp_readvars' of https://github.com/crashbrz/metasploit-framework into crashbrz-ntp_readvars
2012-10-31 09:06:31 +01:00
ffe8a980f4
NTP Module - Remove [WARNING] Carriage return EOL
2012-10-30 22:25:23 -02:00
b085e8ed73
Revert "Update NTP Module"
...
This reverts commit 8fd34a4475
2012-10-30 21:43:21 -02:00
8fd34a4475
Update NTP Module
...
Changed the branche and remove CR
2012-10-30 21:08:01 -02:00
357fd1b955
add peer info to print_error message
2012-10-30 17:47:17 +01:00
201f7766d8
Merge branch 'clansphere_lfi_read' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-clansphere_lfi_read
2012-10-30 17:45:45 +01:00
a636971b71
Change error message
2012-10-30 11:39:25 -05:00
d3bb2b4891
minor fixups
2012-10-30 11:08:57 -05:00
3f3e6814a3
Make sure no extra '/' in there
2012-10-30 10:40:56 -05:00
26808093d8
Merge branch 'nil_res_bug_fixes' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-nil_res_bug_fixes
2012-10-30 16:18:05 +01:00
736b8354d8
Merge branch 'upstream-master' into WinRM_piecemeal
2012-10-30 09:15:36 -05:00
c91f0ca535
Adds the WQL execution module
2012-10-30 09:13:55 -05:00
5e873d0697
adding peer information to error message
2012-10-30 12:15:01 +01:00
c878b9077b
Rename the DeviceExpert module to avoid confusion
2012-10-29 12:25:07 -05:00
2a202e9035
Add OSVDB-86563 ManageEngine SecurityManager dir traversal
2012-10-29 12:23:48 -05:00
2c4273e478
Correct some modules with res nil
2012-10-29 04:41:30 -05:00
34731c3e0a
Add OSVDB-86720 - Clansphere dir traversarl
2012-10-29 03:44:22 -05:00
3a42eb3f73
New modules and library for the ADDP protocol
2012-10-28 23:04:18 -05:00
b44ec34bfd
renamed modbusFindunitID.rb to modbus_findunitid.rb
2012-10-28 15:11:10 +01:00
675e5c0bb5
Merge branch 'modbus-aux' of git://github.com/esmnemon/metasploit-framework into esmnemon-modbus-aux
2012-10-27 18:55:55 -05:00
7a1c3e7cf6
Merge branch 'dmaloney-r7-WinRM_piecemeal'
2012-10-27 18:55:24 -05:00
320a23286a
Merge branch 'warnings' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-warnings
2012-10-27 18:52:34 -05:00
164321a5ed
Add Domain notes to smb_version
2012-10-26 11:56:14 -04:00
b15c38f819
Fix output to display ip:port
2012-10-25 19:57:29 -05:00
fb7af536d5
wtf, bad metadata
...
Removed extraneous references section
2012-10-25 10:16:12 -05:00
4ae482b71c
added a fix for modbusdetect.rb and a new utility modbusFindunitID.rb
2012-10-25 13:17:17 +02:00
bfbae5fbb7
Merge branch 'upstream-master' into WinRM_piecemeal
...
Conflicts:
lib/msf/core/exploit/winrm.rb
2012-10-24 14:12:28 -05:00
a15c35091d
Add the WinRM login module
2012-10-24 11:25:39 -05:00
f1423bf0b4
If a message is clearly a warning, then use print_warning
2012-10-24 00:44:53 -05:00
77c8548855
Merge branch 'dmaloney-r7-WinRM_piecemeal'
2012-10-23 16:33:16 -05:00
910644400d
References EDB cleanup
...
All other types of references use String arguments, but approximately half
of the EDB references use Fixnums. Fix this by using Strings here too.
2012-10-23 21:02:09 +02:00
33ce74fe8c
Merge branch 'msftidy-1' of git://github.com/schierlm/metasploit-framework into schierlm-msftidy-1
2012-10-23 02:10:56 -05:00
2335c582c3
Null response handling
2012-10-23 00:25:31 -05:00
e08cedec2e
Requested revisions/cleanup
...
minor fixes to spacing, some typos, and abse64 switched to Rex
2012-10-22 17:01:00 -05:00
7437d9844b
standardizing author info
2012-10-22 17:01:58 -04:00
e9f7873afc
Version cleanup
...
Remove all values that are neither 0 nor $Revision$.
2012-10-22 20:57:02 +02:00
49948faa9b
remove non-functional enum_delicious module
2012-10-22 14:46:52 -04:00
04a6021631
Privileged cleanup: auxiliary modules can't
2012-10-22 20:36:49 +02:00
39e81d3e53
Arch/Platform cleanup: aux modules need neither
2012-10-22 20:28:02 +02:00
ae690f5fd3
Remove that extra "," that breaks Ruby 1.8
2012-10-20 02:11:49 -05:00
7866b61a7e
Typo fix
2012-10-20 00:31:35 -05:00
56cbe6a67e
Some minor fixups
2012-10-19 15:25:03 -05:00
3a8dd261ae
WinRM mixin and basic discovery module
2012-10-19 15:08:58 -05:00
4ad6fcc30e
osvdb added
2012-10-19 17:04:47 +02:00
4d80e37741
NTP Clock Variables Disclosure
2012-10-18 20:03:28 -03:00
291ad27a69
Merge branch 'msftidy_police' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-msftidy_police
2012-10-18 11:32:55 +02:00
0675a6171b
Cosmetic changes
2012-10-17 17:30:16 -05:00
201518b66f
msftidy corrections
2012-10-17 17:22:26 -05:00
7b1c35624e
Merge branch 'mssql_ntlm_stealer' of https://github.com/nullbind/metasploit-framework into nullbind-mssql_ntlm_stealer
2012-10-17 22:50:54 +02:00
1f55e02535
minor cleanup
2012-10-17 22:21:28 +02:00
4c6b331bdc
Merge branch 'mssql_ntlm_stealer_sqli' of https://github.com/nullbind/metasploit-framework into nullbind-mssql_ntlm_stealer_sqli
2012-10-17 22:21:00 +02:00
3bd84e255f
minor cleanup
2012-10-17 22:06:47 +02:00
848f0cd899
Merge branch 'module-lantronix_telnet_password' of https://github.com/jgor/metasploit-framework into jgor-module-lantronix_telnet_password
2012-10-17 22:06:25 +02:00
9af727388f
deleted superfluous code and comments
2012-10-17 14:27:00 -05:00
12e2ff9bb5
proposed cleanup
2012-10-17 19:03:28 +02:00
16e2a2e050
fix title for the apache activemq source disclosure mod
2012-10-17 17:23:56 +02:00
c52b834f50
updated name and description
2012-10-16 14:37:02 -05:00
d8c2aa9796
added mssql ntlm stealer for sqli
2012-10-16 14:26:10 -05:00
fafa6e49ce
address comments from jvazquez
2012-10-16 12:10:37 -05:00
f07cd5235d
Msftidy!
2012-10-16 13:59:49 +01:00
c2200534c4
Tidy up of output
2012-10-16 13:53:47 +01:00
fa2aa47342
Further fixes to guest and bogus checks
2012-10-16 13:53:23 +01:00
5377144e1f
Reimplemented tree connect to verify nix samba logins correctly, and fixed accepts_guest_logins() and accepts_bogus_logins()
2012-10-16 12:54:09 +01:00
e583847a31
I missed this sucker.
2012-10-15 22:02:26 -05:00
8e668e2808
Check STATUS_ACCESS_DENIED properly
...
When Samba throws STATUS_ACCESS_DENIED, the exception that's
throwin is actually Rex::Proto::SMB::Exception::ErrorCode, not
as LoginError. It was handled correctly in try_user_pass(), but
not in other functions that also use smb_login().
2012-10-15 16:52:34 -05:00
553ce82e79
added mssql ntlm stealer
2012-10-15 13:29:51 -05:00
29299b29a5
Added modules for CVE-2012-4933
2012-10-15 16:03:19 +02:00
e00dbfcc0d
You mean.. FILEPATH.
2012-10-14 18:18:11 -05:00
2f04fdd71a
Merge branch 'apache_activemq_traversal' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-apache_activemq_traversal
2012-10-14 18:16:41 -05:00
d971abaeb9
deleted extra comma
2012-10-14 22:39:07 +02:00
14bd0373d3
deleted extra space
2012-10-14 22:38:14 +02:00
ac6a4c9283
Added module for CVE-2010-1587
2012-10-14 22:36:02 +02:00
2b644dbc45
added module for Apache ActiveMQ directory traversal
2012-10-14 22:30:38 +02:00
79da6c7186
added Lantronix telnet password recovery module
2012-10-14 12:46:52 -05:00
286b86949b
Prefix with host:port for readability
2012-10-08 15:23:26 -05:00
c0d746a36a
remove ternary assignment
2012-10-03 23:34:41 -04:00
51e70c44e3
fix error message after cleanup
2012-10-03 18:44:33 +02:00
0755cbe411
cleanup: clear strings, delete unused variables, author email foramt, use of unpack
2012-10-03 18:28:03 +02:00
a0422fe500
Make failing username dynamic
2012-10-03 19:17:32 +05:30
94f8a41b57
Add subdomain input file for VHOST scanner
...
This commit allows the vhost scanner to take subdomains from a
text file, one subdomain per line. Lines are stripped of the top
level domain name if present before testing.
2012-10-03 03:51:58 -04:00
e33da009ea
add PostgreSQL password capturing module
2012-10-02 15:16:37 +05:30
2ca134a2c3
Merge branch 'printjob_capture'
...
This lands #811 , and also brings in my changes from
ChrisJohnRiley/metasploit-framework#2
Thanks Chris!
2012-10-01 15:55:14 -05:00
1e4f8591fd
Sneaking in an author credit
2012-10-01 11:42:56 -05:00
c0bc764fd4
Retabbing for tabs, not spaces
...
I'm not a fan of the tabs either, any more. But, until we switch over
for real, let's stick with the project's whitespace conventions?
2012-10-01 11:26:58 -05:00
802924d67a
Getting rid of continuation slashes. Plz don't.
...
Continuation slashes are the devil when it comes to reading Ruby,
especially if you're reading something like:
def hello
puts "Hello world!" \
if true
end
This looks like a syntax error and hurts my eyeballs.
Please avoid this convention in the future.
2012-10-01 11:23:06 -05:00
489c9b701e
Whitespace
2012-09-28 12:47:15 -05:00
1b2240d9bd
Commenting about IPP
2012-09-28 12:38:36 -05:00
a15a2b522c
Removing IPP as a selectable mode
2012-09-28 12:38:17 -05:00
6944aab46c
Removing Id SVN splat
2012-09-28 12:37:00 -05:00
db4b19a2df
Adding Juan's fix for peerhost
2012-09-28 10:26:35 -05:00
6aefa40ec1
fix my english
2012-09-28 00:32:02 +02:00
12177b0ed2
Added module for 2011-1900
2012-09-28 00:29:12 +02:00
f6baf824b6
The USER_FILE path is wrong.
2012-09-27 01:33:11 -05:00
75d40d4d82
Make msftidy happy
2012-09-27 01:33:11 -05:00
99ec988485
Updated with wordlist path registered options
2012-09-27 01:33:11 -05:00
75f5e24178
Dell iDrac login aux scanner
2012-09-27 01:33:11 -05:00
aa8a713a30
Fix added datastore item in BAP
2012-09-26 11:55:12 -05:00
67c5c24f67
Fix multiple bugs
...
Bug fixes including:
* Unnecessary headers being manually added. Sometimes may cause
a 400 Bad Request against specific web servers. See issue 7165
on Redmine for details.
* Regex fix
* URI path fix
2012-09-24 22:32:59 -05:00
54ed60e24e
Forgot to remove the second require
2012-09-24 18:50:53 -05:00
6bd450e114
Make Ruby 1.8 happy
2012-09-24 18:49:41 -05:00
77a0cf18da
Fix errors when pivoting
...
Printing stack traces is rude.
Also removes Capture which isn't necessary for this module
2012-09-23 22:59:44 -05:00
7ebe1a4d55
Merge branch 'browtopwn' of https://github.com/scriptjunkie/metasploit-framework into scriptjunkie-browtopwn
2012-09-23 12:03:04 -05:00
e89dcc5ab0
While 1337 is fun and funny, it is easy to spot and the correct port is 137.
2012-09-22 17:00:51 -05:00
0158312615
Java meterpreter can run scripts too!
2012-09-22 16:49:16 -05:00
ce441e95a6
Corrected typo, missing \ and minor regex match
2012-09-21 22:04:19 +03:00
9753494cba
Corrected regex scan vs. match issues
...
Altered PS and PCL to elsif to avoid
double detection of printjobs.
2012-09-21 13:20:14 +02:00
f7aaae614e
Reduced instances of #{name} to client
...
connections and disconnections. All other
output should be self explanatory and
doesn't need #{name}
2012-09-21 11:08:47 +02:00
78f77a3df2
Replaced if @verbose with vprint_status
...
Corrected bug in non-detected print types
2012-09-21 10:59:39 +02:00
0032713198
description modified
2012-09-21 10:09:42 +02:00
f6baf7fe34
Merge branch 'MySQL-JtR' of https://github.com/halfie/metasploit-framework into halfie-MySQL-JtR
2012-09-21 10:08:34 +02:00
7fcc34766a
Added datastore items to BAP handlers
...
Added two datastore items to handlers created by BAP
2012-09-20 15:21:08 -05:00
3d254b69fd
Applied all requirements from pull/715
...
Reworked PCL regex to match PCL 6/XL
msftidy is still complaining about
an indent. Can't find why however!
New PULL created as per request from
jvazquez-r7
2012-09-20 18:04:36 +02:00
17f7e94f4d
Add support for dumping MySQL challenge-response pairs in JtR format
2012-09-20 13:54:12 +05:30
f75ff8987c
updated all my authour refs to use an alias
2012-09-19 21:46:14 -05:00
11f82de098
Update author information
2012-09-19 14:00:51 -03:00
c83b49ad58
Unix linefeeds, not windows
...
That's what I get for just committing willy-nilly with a fresh install
of Gvim for Windows.
Also, this is an experiment to see if linefeeds are being respected in
this editor Window. I doubt it will be, given GitHub's resistence to
50/72 as a sensible default.
2012-09-16 18:10:35 -05:00
2fc34e0073
Auth successful, not successfully
...
Just fixing up some adverb versus adjective grammar.
2012-09-16 17:51:00 -05:00
63d2d60c68
delete don't needed line
2012-09-15 23:56:38 +02:00
ff2e9fc157
add changes proposed by sinn3r
2012-09-15 23:55:55 +02:00
70ff7621d6
added module for CVE-2012-2983
2012-09-15 15:11:12 +02:00
6771466cb7
Added module for CVE-2011-2750
2012-09-13 17:24:16 +02:00
28b941251e
Removed ACCOUNT_LOCKOUT as this replies to invalid logins too
2012-09-13 06:22:35 +01:00
10466090ee
Added additional valid status and defaulted SMBDomain to blank
2012-09-12 22:26:51 +01:00
7d5b3b6066
Added a couple of valid status codes and defaulted SMBDomain to be blank
2012-09-12 22:22:53 +01:00
32e2232de3
Disambiguating hkm from hdm
...
Having an author name of "hkm" really looks like a typo for "hdm," but
it's not.
2012-09-11 11:13:20 -05:00
aaf7fcd5e9
Closing bracket doh
2012-09-07 08:57:27 -05:00
53e4818c2e
Humble-desser, not humble-dresser
2012-09-07 08:49:27 -05:00
855b88c296
Compliance to msftidy
2012-09-07 11:44:46 +02:00
2f618b797e
Removing Socket include, some fixes
2012-09-07 10:12:51 +02:00
270fa1b87b
updated descriptions for hp sitescope modules tested over linux
2012-09-05 23:25:08 +02:00
ff97b1da00
Whitespace EOL
2012-09-05 14:04:20 -05:00
bed3c7bbac
Merge branch 'hp_sitescope_loadfilecontent_fileaccess' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-hp_sitescope_loadfilecontent_fileaccess
2012-09-05 13:59:49 -05:00
598fdb5c50
Merge branch 'hp_sitescope_getsitescopeconfiguration' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-hp_sitescope_getsitescopeconfiguration
2012-09-05 13:58:39 -05:00
41904891c9
Merge branch 'hp_sitescope_getfileinternal_fileaccess' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-hp_sitescope_getfileinternal_fileaccess
2012-09-05 13:57:39 -05:00
20655232d7
cleanup, tested and added osvdb reference
2012-09-05 20:03:46 +02:00
c6f5b1f072
cleanup, test, osvdb reference
2012-09-05 19:56:04 +02:00
ea2eb046c3
cleanup, final test, osvdb reference
2012-09-05 19:45:50 +02:00
166f68b194
added module for ZDI-12-177
2012-09-05 12:54:30 +02:00
534ab55e5c
Added module for ZDI-12-173
2012-09-05 12:53:03 +02:00
8a50ca2f47
Added module for ZDI-12-176
2012-09-05 12:51:25 +02:00
8fce975593
Aux module raise an error because Report module is not included in the source
2012-09-05 10:38:36 +02:00
c7de73e7bf
Clean up SVN metadata
2012-09-04 19:36:10 -05:00
7b8ab53661
Use :unique_data option for dns.enum reporting
...
Otherwise, you will only report the last thing that comes through on
that host for the dns.enum note type.
2012-09-04 19:32:29 -05:00
2edf4a676a
Merge remote branch 'bonsaiviking/axfr' into bonsai-afxr
2012-09-04 16:16:41 -05:00
b8132cae5c
Add the redistribution comment splat
2012-09-04 15:58:43 -05:00
15f1dd8525
Moving greetz to Author fields
2012-09-04 15:58:43 -05:00
6e7cbe793c
Spamguard e-mail addresses, make auth name consistent
2012-09-04 15:58:43 -05:00
f80abaf0d1
Dropping trailing whitespace
2012-09-04 15:58:42 -05:00
114ade6bea
applied todb requested fixes, and added sql 2k support
2012-09-04 15:58:42 -05:00
6cd6f9d5d1
minor comment updates
2012-09-04 15:58:42 -05:00
7e168f2e5c
Modified module to write query results to a file with report/loot options
2012-09-04 15:58:42 -05:00
522fb401e9
Find data on a SQL Server, sample it, and write it to a CSV file.
2012-09-04 15:58:42 -05:00
9d97dc8327
Add Metasploit blogs as references, because they're useful.
2012-09-03 15:57:27 -05:00
53a9a8afce
Awww, typo! Nice catch, @Agarri_FR! :-)
2012-08-31 14:23:51 -05:00
4a6dfe1d37
Using Rex Socket for LLMNR module. Module is running as a service now.
2012-08-26 19:22:49 +02:00
638d9d1095
Fix nil res bug, change action name, etc
2012-08-25 02:41:50 -05:00
cad590488d
Update modules/auxiliary/scanner/http/http_traversal.rb
2012-08-24 15:47:07 -03:00
d0558218ee
Add non-authed OPTION response to support WebDAV
2012-08-23 15:11:10 -04:00
8d187b272d
Some error handling on ntlm relayer
...
Instead of a cryptic exception, let the user know if the HTTP target
isn't actually asking for WWW-Authenticate.
There are likely many more opportunities to catch errors, but this is
the most obvious.
2012-08-21 16:13:00 -05:00
635710402b
Removing bullet points from module description
...
Due to the vagaries of various Metasploit module description viewers, we
can't guarantee things like lists and bullet points render right.
Descriptions should avoid using these things.
2012-08-21 16:00:04 -05:00
b457289e01
Merge remote branch 'webstersprodigy/module-http-ntlmrelay'
2012-08-21 15:28:50 -05:00
65b29d149f
Update to use OptEnum for RTYPE
2012-08-20 22:45:20 -04:00
8d4b4fc7be
Some more changes before pushing to master
2012-08-20 15:43:39 -05:00
e6bda752ee
cleaned up and using HttpServer for handling requests and sending 401
2012-08-20 15:23:49 -05:00
10698e2f99
Updating HTTP Basic capture mod with edits based on MSF team suggestions
2012-08-19 19:47:01 -05:00
de380cfb46
Adding aux mod for HTTP Basic Auth capture
2012-08-19 01:51:01 -05:00
6db09ba20c
Key notes on nameserver IP, not discovered IP
2012-08-16 21:31:23 -05:00
7005216d1f
Fix axfr support for auxiliary/gather/enum_dns
...
AXFR support in net-dns is broken. This fixes it, and makes the
requisite modifications to enum_dns module. Basic problem is that AXFR
responses consist of a chain of DNS replies, not a single reply with
multiple answers. Previously, only the first of these replies, the SOA
record, was returned. Also added some exception handling to avoid
problems like #483 .
2012-08-16 20:40:24 -05:00
0311caf4df
Alternate means of looking up NS IP
...
Sometimes a nameserver won't have an A record for its own name. Check
for this and fall back to using the system resolver via
Rex::Socket.gethostbyname. Example:
$ dig +short zonetransfer.me NS
ns12.zoneedit.com.
ns16.zoneedit.com.
$ dig +short @ns12.zoneedit.com ns12.zoneedit.com A
$ dig +short @ns16.zoneedit.com ns12.zoneedit.com A
$ dig +short @ns16.zoneedit.com ns16.zoneedit.com A
$
Also removed an extra A lookup that was unnecessary.
2012-08-16 11:48:37 -05:00
586d937161
Msftidy fix and adding OSVDB
2012-08-15 13:43:50 -05:00
7c6b6281d7
Merge branch 'beacon-addr' of https://github.com/bonsaiviking/metasploit-framework into bonsaiviking-beacon-addr
2012-08-13 11:57:22 -05:00
e5666d70e2
Merge branch 'glassfish-uri' of https://github.com/bonsaiviking/metasploit-framework into bonsaiviking-glassfish-uri
2012-08-13 11:53:03 -05:00
f72f334124
Fix an odd issue with search due to use of the builtin Proxies option
2012-08-12 23:22:38 -05:00
33c74c97e2
Add Opt::Proxies and opthash[:proxies] to ssh mods
2012-08-12 16:23:22 -04:00
c9690033c7
This commit allows ssh_login to use socks proxies. Net::SSH::Transport::Session could take a :proxy option,
...
but it expects a factory object not a string, when setting :proxy => datastore['Proxies'] user got:
"Auxiliary failed: NoMethodError private method `open' called for \"socks4:localhost:1080\":String."
VALID_OPTIONS in ssh.rb now takes :proxies option which is passed to the Rex socket in
Net::SSH::Transport::Session.new.
Testing: block all outgoing to SSH server, try to connect with a proxy. Try with :proxy option,
then merge this pull request and try again.
2012-08-12 16:01:52 -04:00
ed43418156
Fix unused ADDR_DST option in fuzz_beacon
...
auxiliary/fuzzers/wifi/fuzz_beacon offers ADDR_DST option, probably
copy-pasted from some other wifi modules, but does not use it, likely
because beacons are meant to be sent to broadcast address only. Since
this is a fuzzer, changing the destination address may be desirable.
Used the option in building the frame to be sent.
2012-08-10 16:14:50 -05:00
db4f31de76
Fix use of URI option for glassfish_login
...
auxiliary/scanner/http/glassfish_login offers URI option to set the path
where Glassfish is installed, but it doesn't work. Replaced it with
TARGETURI and call target_uri.path to get a base path.
2012-08-10 15:44:53 -05:00
31ecc0da5f
Changed postfix conditional on accepts_guest_logins
2012-08-09 11:08:42 +01:00
b4b860f356
Correct MC's name
2012-08-08 14:16:02 -05:00
d04fdc9382
Added aux module for CVE-2009-1730
2012-08-08 16:26:41 +02:00
b46fb260a6
Comply with msftidy
...
*Knock, knock!* Who's there? Me, the msftidy nazi!
2012-08-07 15:59:01 -05:00
f26053c2c3
Add vendor's name in there for easier searching
2012-08-07 12:16:52 -05:00
614ae02a26
Add CVE-2012-2626 Scrutinizer add-user aux mod
2012-08-07 12:13:25 -05:00
c2cc4b3b15
juan author name updated
2012-08-06 18:59:16 +02:00
99d3ee6fc4
Merge branch 'webpagetest_traversal' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-webpagetest_traversal
2012-08-06 03:15:16 -05:00
f1e7ef06cc
Add webpagetest dir traversal module
...
How did I forget this while writing the exploit?
2012-08-06 03:11:07 -05:00
d5b165abbb
Msftidy.rb cleanup on recent modules.
...
Notably, DisclosureDate is required for other module parsers, so let's
not ignore those, even if you have to guess at the disclosure or call
the module's publish date the disclosure date.
2012-08-04 12:18:00 -05:00
76fee330ee
Squashed commit of the following:
...
commit dadb717f5e17851a85183847f3fdb01e45e6caaa
Author: James Lee <egypt@metasploit.com>
Date: Fri Aug 3 18:48:53 2012 -0600
Rescue SMB errors
Prevents backtraces and gives the user some idea of what happened.
Specifically useful for STATUS_ACCESS_DENIED and STATUS_LOGON_FAILURE.
commit aba203ead75eec22606f52d7eb67f1581c44c4df
Author: Rob Fuller <jd.mubix@gmail.com>
Date: Fri Jul 20 03:24:26 2012 -0400
add SMB list directory module
[Closes #628 ]
2012-08-03 19:00:11 -06:00
fa2b0c26bb
Fixes password seeding for JtR modules
2012-08-01 14:15:51 -05:00
87aae548e6
Final cleanup
2012-07-24 13:11:04 -05:00
dbc779e02d
implemented fixes requested by sinn3r
...
Implemented the fixes, and re-tested the modules
2012-07-24 11:02:49 +01:00
397d708340
Added bulk file retrieval to sap_mgmt_con_getlogfiles, and new module to get SAP process list from remote host
...
* Added option to retrieve all available files from remote SAP host to
sap_mgmt_con_getlogfiles, based on the listing request provided in
sap_mgmt_con_listlogfiles module, if the variable GETALL is set to true.
Kept previous functionality of retrieving just one chosen file.
* Added new module sap_mgmt_con_getprocesslist to remotely list SAP
processes using SAP SOAP interface. Based on the other sap_mgmt_con_*
modules by Chris John Riley.
2012-07-23 16:26:33 +01:00
3c7ad96b45
Changing a string concat from + to <<
2012-07-22 20:28:17 -04:00
6bb31280fb
Took/tested all egypt's comments, other than the Actions one
2012-07-22 20:02:12 -04:00
8786aa3c57
Reverted simpleclient, didnt require change
2012-07-22 12:53:57 +01:00
de45263fd9
msftidy
2012-07-22 12:33:55 +01:00
8f77ba1147
Always checks if DOMAIN is required, further changes
2012-07-22 12:28:19 +01:00
6f9d7ed821
Fixed raiding of Logon Error, Reverted SMB.rb, Calling simple.Login direct
2012-07-22 10:45:16 +01:00
33ee6ee699
Merge branch 'sip-capture' of https://github.com/nevdull77/metasploit-framework into nevdull77-sip-capture
2012-07-22 03:36:13 -05:00
3c5651c654
Large refactor of code, plenty of bugs to iron out
2012-07-22 03:55:08 +01:00
f9995665dc
Fixed unset SMBDomain making logins invalid http://pastie.org/4295787
2012-07-21 18:04:11 +01:00
08f0f693b0
change sname in report_auth_info from sip_challenge to sip_client
2012-07-20 19:48:15 +02:00
5dc985c911
fix msftidy WARNING
2012-07-20 17:15:06 +02:00
3fc1c1db73
fix problem with report_auth_info that was passed invalid host and port params.
2012-07-20 17:07:42 +02:00
d494ed9bf7
add a function to sanitize source and dest ip's to avoid breaking JtR format.
2012-07-20 13:27:45 +02:00
7ec5c0d6e0
change module to use Rex::Socket::Udp instead of Ruby's ::UDPSocket.
2012-07-19 20:34:02 +02:00
1c6ce20ad8
Merge branch 'sip-capture' of https://github.com/nevdull77/metasploit-framework into nevdull77-sip-capture
2012-07-19 10:51:57 -05:00
9c510a738e
Improve outputs
2012-07-19 10:50:58 -05:00
7cb12921d6
Don't print cli addr twice
2012-07-19 10:43:55 -05:00
afd314701e
Improve outputs
2012-07-19 10:41:25 -05:00
3253929555
Fix indent
2012-07-19 10:21:30 -05:00
9bff1c913b
Merge pull request #592 from alexmaloteaux/ipv6arpfix
...
ipv6 and arp_scanner fix
2012-07-18 20:40:27 -07:00
ad4a4b2ae3
add module for capturing SIP authentication challenge and response pairs.
...
The module starts a fake SIP server listening for incoming REGISTER requests.
It then triggers an authentication request at the client and captures the
response for cracking in JtR or Cain.
2012-07-18 20:45:08 +02:00
981ba60fee
Fix exception handlings
...
Two things:
1. Make msftidy happy
2. Exception handling shouldn't be used to shut errors up.
2012-07-18 12:05:14 -05:00
464df4ed1d
Oraenum - added error handling
...
The oraenum module has errror handling to catch instances where the user used to run the checks doesn't have the appropriate rights, however in one place (The default password check) the error handling code isn't included. This patch just adds the same check for that code.
2012-07-18 09:22:22 +01:00
78edf15a86
Improve module
2012-07-17 08:39:56 -05:00
dde2254f29
rename file
2012-07-17 08:36:02 -05:00
d5711efd26
Merge branch 'master' of https://github.com/j0hnf/metasploit-framework into j0hnf-master
2012-07-17 08:35:49 -05:00
6ac6e375a7
Changes according to hdm and sinn3r feedback
2012-07-17 12:02:24 +02:00
7c2ea2ff23
Merge branch 'mysql-capture' of https://github.com/nevdull77/metasploit-framework into nevdull77-mysql-capture
2012-07-17 12:01:19 +02:00
3def2afb46
Correct e-mail format
2012-07-17 04:24:54 -05:00
c887e0aaff
Re-add AFP changes due to mangled merge
2012-07-17 00:42:49 -05:00
f62e0b1cca
AFP fixes and JTR typo fix
2012-07-16 21:45:45 -05:00
bc2edeace2
Cleanup AFP module output
2012-07-16 21:02:40 -05:00
88275620ab
removed JtR support due to bugs in cracking module.
2012-07-16 15:59:43 +02:00
25a78e6ab0
change so that both Cain and JTR hashes can be stored at the same time and
...
added username report_auth_info
2012-07-16 14:13:35 +02:00
4859e0809e
add missing username to john hash
2012-07-16 09:14:44 +02:00
10db74d480
Show the IP address in the output
2012-07-15 21:35:43 -05:00
6c058d9a9a
Skip blank usernames (corner case)
2012-07-15 21:14:55 -05:00
8889d89eea
msftidy cleanup
2012-07-16 02:07:45 +02:00
6331c33472
add MySQL password capturing module
...
This module provides a fake MySQL service that is designed to
capture authentication credentials. It captures challenge and
response pairs that can be supplied to Cain or JTR for
cracking.
2012-07-16 01:55:22 +02:00
6cdd044e10
Remove a buggy payload that doesn't have NX support
2012-07-12 12:15:57 -05:00
2da984d700
Added module for OSVDB 83275
2012-07-12 13:12:31 +02:00
fd009fe3ff
Improved smb_put reliability
...
The .write function was having issues with large files, the
connection would close or sometimes there would be errors.
I changed thefunction to act more like smb_relay and it works better.
2012-07-11 23:30:55 -04:00
b12f13f837
Review of Pull request #594
2012-07-12 00:46:24 +02:00
16cd847e5a
Merge branch 'mssql_review' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-mssql_review
2012-07-12 00:36:54 +02:00
a840ff8cf8
Review of pull request #598
2012-07-12 00:34:17 +02:00
f933d98d38
Review of #595
2012-07-12 00:19:27 +02:00
c593a3429d
fixed a type bug with the default response
2012-07-11 02:23:37 -04:00
81ba60169f
ipv6 and arp_scanner fix
2012-07-10 18:28:24 +01:00
f50843e0b7
Adding http_ntlmrelay module
2012-07-09 22:56:24 -04:00
b817070545
Merge branch 'mac_oui' of https://github.com/alexmaloteaux/metasploit-framework into alexmaloteaux-mac_oui
2012-07-09 20:14:25 -05:00
e509c72574
better handle company name
2012-07-10 00:24:30 +01:00
e949b8c2c8
mac_oui
2012-07-09 23:46:57 +01:00
b33220bf90
Added module for CVE-2012-2215
2012-07-09 17:32:55 +02:00
d626de66f7
Print out where the scheme info is stored.
...
This module needs to print out where the scheme is stored so the
user knows where it is, see complaint:
https://community.rapid7.com/message/4448
2012-07-08 18:24:18 -05:00
87bac91d71
Apply additional changes from #549
...
From pull request #549 . Changes include:
* Use OptEnum to enforce the use of wpad.dat or proxy.pac
* Remove cli.peerhost:cli.peerport, the API does that already
* cleanup function to restore uripath datastore option
* More friendly error when the user doesn't have enough permission
to bind to port 80, that way they don't blame it's a bug on msf.
* Remove unnecessary SVN stuff in modinfo
2012-07-07 15:59:16 -05:00
4e90da002d
Merge branch 'master' of https://github.com/efraintorres/wmap-metasploit into wpad
2012-07-07 15:44:05 -05:00
ecb4e20c92
Instead of deleting the "/", here's a different approach
2012-07-06 01:23:41 -05:00
7876d7fd60
Delete the extra "/"
2012-07-06 01:20:31 -05:00
686f176a99
Correct path
2012-07-06 01:12:47 -05:00
0c18662d46
Make msftidy happy and change the traversal option
2012-07-06 01:10:39 -05:00
3b7e1cd73a
Add Dillion's module for Wangkongbao
2012-07-06 00:54:55 -05:00
4c68cdd584
Actions removed.
2012-07-02 10:57:32 -05:00
be666fde89
Full msftidy compliant
2012-06-30 22:08:10 -05:00
cad749d495
More formatting.
2012-06-30 21:21:56 -05:00
22b47e32fe
Fixed wrapping of module description
2012-06-30 21:12:01 -05:00
f8aacc3482
All fixes applied to wpad module.
2012-06-30 20:57:59 -05:00
e5dd6fc672
Update milw0rm references.
...
milw0rm.com is long gone, so all milw0rm references are just
a bunch of broken links. Change to exploit-db instead.
2012-06-28 14:27:12 -05:00
68c582873b
Add the MSF license text
2012-06-27 17:11:00 -05:00
6c80fd9b42
Merge branch 'atlassian_crowd' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-atlassian_crowd
2012-06-27 17:09:25 -05:00
d3bc78c53b
applied changes proposed by sinn3r
2012-06-27 23:55:51 +02:00
dc30a2dddb
Merge branch 'atlassian_crowd' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-atlassian_crowd
2012-06-27 15:37:15 -05:00
97974d9241
Shorten title for display
2012-06-27 10:19:46 -05:00
2c5cc697c9
Added auxiliary module for CVE-2012-2926
2012-06-27 10:21:18 +02:00
Royce Davis
Stephen Haywood
jvazquez-r7
Royce Davis
sinn3r
Matt Andreko
HD Moore
Alexandre Maloteaux
Tod Beardsley
Tasos Laskos
Vlatko Kosturjak
Chris John Riley
nmonkee
Chris John Riley
James Lee
jgor
Meatballs1
David Maloney
Brandon McCann
esmnemon
Ewerson Guimaraes (Crash)
zombieCraig
Michael Schierl
Rob Fuller
nullbind
RageLtMan
Dhiru Kholia
Cristiano Maruti
scriptjunkie
Ramon de C Valle
Robin Francois
webstersprodigy
saint patrick
Daniel Miller
Bruno Morisson
Bruno Morisson
Patrik Karlsson
Rory McCune
efraintorres