infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,321 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

7287 Commits (a479d0013028e525fb66fc63a659000490c4bf08)

Author SHA1 Message Date
nmonkee c13f8d8eba SAP RFC TH_SAPREL 2012-11-07 16:10:09 +00:00
nmonkee f618000d0d SAP SOAP RFC SUSR_RFC_USER_INTERFACE (user creation) 2012-11-07 16:04:07 +00:00
nmonkee 2b973263b7 SAP SOAP RFC_Info 2012-11-07 15:17:56 +00:00
nmonkee e053c4a0ad This module makes use of the RFC_READ_TABLE Remote Function Call (via SOAP) to read data from tables. 2012-11-07 12:37:01 +00:00
nmonkee 3be7ad06c4 Calls the RFC_PING RFC module via SOAP to test the availability of the function. The function simply tests connectivity to remote RFC destinations. 2012-11-07 11:35:53 +00:00
nmonkee f82b51b2c4 This module calls the RFC BAPI_USER_CREATE1 module (via SOAP). The module can be used for creating/modifying users. 2012-11-07 11:16:31 +00:00
nmonkee 6b7b8f7265 Flipping OptString for OptEnum 2012-11-07 11:00:43 +00:00
nmonkee d19be3024f Flipping OptEnum for OptString 2012-11-07 10:58:07 +00:00
nmonkee 51a3aa514d This module attempts to brute force the username | password via an RFC interface (over SOAP) 2012-11-07 10:45:25 +00:00
Brandon McCann c4f35def81 fixed vprint_line 2012-11-06 14:58:14 -06:00
Brandon McCann d835a046ed fixed drupal_views_user_enum.rb so it displays to stdout and stores to loot 2012-11-06 14:53:11 -06:00
Tod Beardsley b973927ab2 Msftidy on digi_addp_reboot and pgpass_creds 2012-11-05 16:19:38 -06:00
jvazquez-r7 9166d12179 Merge branch 'WinRM_piecemeal' of https://github.com/dmaloney-r7/metasploit-framework into dmaloney-r7-WinRM_piecemeal 2012-11-05 23:08:59 +01:00
Tod Beardsley 70d53b4e2d Merge remote branch 'jvazquez-r7/emc_networker_format_string' 2012-11-05 16:03:56 -06:00
jvazquez-r7 77b1e9e648 added comment about ropdb 2012-11-05 23:02:23 +01:00
Tod Beardsley e385aad9e5 Merge remote branch 'jvazquez-r7/emc_networker_format_string' 2012-11-05 16:02:18 -06:00
HD Moore aa8549fb6b Correct use of rport. 2012-11-05 15:57:59 -06:00
Tod Beardsley 23cc2bd1a1 Merge remote branch 'origin/master' 2012-11-05 15:56:21 -06:00
Tod Beardsley 6a4d398b5d Merge remote branch 'origin/feature/addp-modules' 2012-11-05 15:55:30 -06:00
jvazquez-r7 0f5f5f966b Merge branch 'master' into feature/realport-modules 2012-11-05 22:52:38 +01:00
David Maloney 9d5ab5a66f Stupid typing error 2012-11-05 15:41:47 -06:00
David Maloney 314026ed0e Some error checking and fixups 2012-11-05 13:29:57 -06:00
David Maloney 7c141e11c4 Hopefully final touches 
Some smftidy cleanup, and added a method to check that the payload is
the correct arch when using the powershell method
 2012-11-05 10:06:57 -06:00
jvazquez-r7 04668c7d61 fix response codes check to avoid second tries to fail 2012-11-05 09:26:26 +01:00
HD Moore dccfb63bd6 Cleanup based on PR #1008 feedback 2012-11-04 22:47:56 -06:00
HD Moore 36f82fba09 Remove unused version fields from template 2012-11-04 22:38:31 -06:00
David Maloney 25a6e983a1 Remove the older modules 2012-11-04 14:48:34 -06:00
David Maloney fca8208171 Some minor code cleanup 2012-11-04 14:45:15 -06:00
David Maloney f69ccc779f Unified smarter module 2012-11-04 13:14:02 -06:00
David Maloney c30ada5eac Adds temp vbs mod and tweaked decoder stub 2012-11-04 12:49:15 -06:00
HD Moore 910a91a0f6 First commit of a udp_mixin and modified scanners 2012-11-04 01:13:38 -05:00
HD Moore 963fdd6430 Initial commit for Digi RealPort modules 2012-11-03 17:44:53 -05:00
jvazquez-r7 88c99161b4 added universal target 2012-11-03 18:52:07 +01:00
jvazquez-r7 9576d26299 Merge branch 'bitweaver_traversal' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-bitweaver_traversal 2012-11-03 18:25:46 +01:00
jvazquez-r7 b8eea1007f Added module for CVE-2012-2288 EMC Networker Format String 2012-11-03 18:17:12 +01:00
sinn3r 10cccb34d8 Uh... I don't want that print_line(). Forgot to remove it. 2012-11-03 05:18:17 -05:00
sinn3r 4415849009 Another attempt to fix the regex 2012-11-03 05:17:32 -05:00
HD Moore 80ebcf212a See PR #981.Only real change is to retry on ENOBUF 2012-11-02 23:05:16 -05:00
sinn3r d449052472 Make <br /> tag optional 2012-11-02 18:25:48 -05:00
sinn3r 45dce9ff76 Modify regex 2012-11-02 16:44:27 -05:00
HD Moore 0d6acad1a0 Updates for PR #981 (cleanup) 2012-11-02 15:47:52 -05:00
HD Moore 0bf5f63d67 Merge branch 'master' into feature/addp-modules 2012-11-02 15:41:03 -05:00
sinn3r d4fc99e40c Merge branch 'ms10_104_100_continue_support' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-ms10_104_100_continue_support 2012-11-02 15:16:35 -05:00
sinn3r 1d26491b77 Ok... last fix, really 2012-11-02 15:09:30 -05:00
sinn3r a161c1faa0 Final changes 2012-11-02 15:06:51 -05:00
sinn3r ea5dc940d2 Move module to the correct directory 2012-11-02 14:52:28 -05:00
sinn3r a9db59feb7 Cosmetic changes, mostly 2012-11-02 14:52:02 -05:00
sinn3r 51b15d8c09 Merge branch 'concrete5_member_list' of git://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-concrete5_member_list 2012-11-02 14:43:49 -05:00
sinn3r 00d0dc3e4d Add CVE-2012-5192 - Bitweaver overlay_type module 2012-11-02 14:20:20 -05:00
sinn3r 38518478bd Format/msftidy fixes 2012-11-02 11:24:34 -05:00
Chris John Riley 891ad4685c $Id and $Revision 2012-11-02 11:24:34 -05:00
Chris John Riley 954ccf1ca1 Added ability to set extension on target 2012-11-02 11:24:33 -05:00
Chris John Riley 01b13480cb Added concrete5.org references 2012-11-02 16:45:41 +01:00
Chris John Riley f3e03ddb42 Concrete5 CMS member list scanner 2012-11-02 16:32:34 +01:00
David Maloney ffca972075 Opps mispalced line 2012-11-02 09:34:32 -05:00
David Maloney 355bdbfa39 Add check for propper powershell version 2012-11-02 09:33:28 -05:00
sinn3r 4f47865636 Merge branch 'master' of github.com:rapid7/metasploit-framework 2012-11-02 01:16:54 -05:00
sinn3r 42b285c7f6 Merge branch '403labs-post-pgpass_creds' 2012-11-02 01:16:37 -05:00
sinn3r 1a162d7dd9 Use Rex table, fix 1.8 syntax issues, format fixes 2012-11-02 01:15:47 -05:00
sinn3r c11779a144 Merge branch 'post-pgpass_creds' of git://github.com/403labs/metasploit-framework into 403labs-post-pgpass_creds 2012-11-01 22:50:17 -05:00
Tod Beardsley b1b85bee44 Actually require PhpEXE mixin. 2012-11-01 14:53:18 -05:00
Tasos Laskos 37a9c13c34 updated auxiliary/scanner/http/crawler to accept a callback for each page 2012-11-01 21:20:56 +02:00
David Maloney f843740fcb more fixes 2012-11-01 11:59:18 -05:00
jvazquez-r7 22fbfb3601 cleanup 2012-11-01 17:38:04 +01:00
jvazquez-r7 e720769747 Added module for ZDI-12-171 2012-11-01 17:17:45 +01:00
David Maloney aeb837838f typo 2012-11-01 11:03:50 -05:00
David Maloney 84c8660c96 Fix targets to be more specific 2012-11-01 11:00:45 -05:00
David Maloney 0eccfaf1bb Add a disclosure date 2012-11-01 10:24:28 -05:00
David Maloney 59f5d9bc5d Man i'm rusty at writing for framework 
Fixes up all sinn3r's findings so far
 2012-11-01 08:37:21 -05:00
David Maloney 00b9fb3c90 Switc smart mgirate to post mod as it should be 2012-10-31 17:03:49 -05:00
David Maloney dd7ab11e38 Minor cleanup 2012-10-31 16:14:34 -05:00
David Maloney 86f6d59d2e Adding the winrm powershell exploit 
also adds the smart_migrate meterp script for autorun purposes
 2012-10-31 15:46:11 -05:00
David Maloney 86bf3d63b7 Updated Encryption comments 2012-10-31 15:25:33 -05:00
David Maloney 7cf7563a87 Merge branch 'upstream-master' into WinRM_piecemeal 2012-10-31 15:23:32 -05:00
sinn3r 9736d35230 Fix syntax error 2012-10-31 15:14:46 -05:00
sinn3r 98c1272b92 Update the description about AllowUnencrypted 2012-10-31 15:14:46 -05:00
David Maloney 8711484438 minor fixups 2012-10-31 15:14:46 -05:00
David Maloney 09195ad9a7 Adds the WQL execution module 2012-10-31 15:14:46 -05:00
David Maloney d2d137ce68 adds the WinRM CMD execution module 2012-10-31 15:10:45 -05:00
m m e170c1e3e3 typo in centos5 range 2012-10-31 18:28:26 +01:00
m m f7481b160c add centos5 target 2012-10-31 18:21:41 +01:00
jvazquez-r7 ef0f415c51 related to #980 adds support for HttpClient 2012-10-31 17:46:57 +01:00
jvazquez-r7 91e6b7cd28 added ie8 target 2012-10-31 11:57:38 +01:00
jvazquez-r7 a3358a471f Merge branch 'aladdin_bof' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-aladdin_bof 2012-10-31 11:57:20 +01:00
esmnemon 81e56663fd a few ruby cleanups 2012-10-31 09:59:47 +01:00
sinn3r ec8a2955e1 Add OSVDB-86723 Aladdin Knowledge System ChooseFilePath Bof 2012-10-31 03:32:43 -05:00
jvazquez-r7 a2fd377326 module cleanup 2012-10-31 09:20:00 +01:00
jvazquez-r7 38a9761d6e Merge branch 'ntp_readvars' of https://github.com/crashbrz/metasploit-framework into crashbrz-ntp_readvars 2012-10-31 09:06:31 +01:00
Ewerson Guimaraes (Crash) ffe8a980f4 NTP Module - Remove [WARNING] Carriage return EOL 2012-10-30 22:25:23 -02:00
Ewerson Guimaraes (Crash) b085e8ed73 Revert "Update NTP Module" 
This reverts commit 8fd34a4475.
 2012-10-30 21:43:21 -02:00
Ewerson Guimaraes (Crash) 8fd34a4475 Update NTP Module 
Changed the branche and remove CR
 2012-10-30 21:08:01 -02:00
jvazquez-r7 357fd1b955 add peer info to print_error message 2012-10-30 17:47:17 +01:00
jvazquez-r7 201f7766d8 Merge branch 'clansphere_lfi_read' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-clansphere_lfi_read 2012-10-30 17:45:45 +01:00
sinn3r a636971b71 Change error message 2012-10-30 11:39:25 -05:00
m m 3e3c518753 remove SessionTypes as per egypt 2012-10-30 17:13:57 +01:00
David Maloney d3bb2b4891 minor fixups 2012-10-30 11:08:57 -05:00
sinn3r 3f3e6814a3 Make sure no extra '/' in there 2012-10-30 10:40:56 -05:00
jvazquez-r7 26808093d8 Merge branch 'nil_res_bug_fixes' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-nil_res_bug_fixes 2012-10-30 16:18:05 +01:00
David Maloney 736b8354d8 Merge branch 'upstream-master' into WinRM_piecemeal 2012-10-30 09:15:36 -05:00
David Maloney c91f0ca535 Adds the WQL execution module 2012-10-30 09:13:55 -05:00
jvazquez-r7 5e873d0697 adding peer information to error message 2012-10-30 12:15:01 +01:00
jvazquez-r7 196d53aee4 Merge branch 'manageengine_traversal' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-manageengine_traversal 2012-10-30 12:12:04 +01:00
Zach Grace 5c27c9c953 Added a print_good from the results of store_loot 2012-10-29 15:18:13 -05:00
Zach Grace eda5e8a12f Changed platform type from windows to win and fixed an indentation error. 2012-10-29 14:23:50 -05:00
sagishahar 53c7479d70 Add Windows 8 support 
Verified with Windows 8 Enterprise Evaluation
 2012-10-29 20:12:47 +02:00
sagishahar 8c46c59142 Add support to Windows 8 
Verified with Windows 8 Enterprise Evaluation
 2012-10-29 20:11:27 +02:00
sinn3r c878b9077b Rename the DeviceExpert module to avoid confusion 2012-10-29 12:25:07 -05:00
sinn3r 2a202e9035 Add OSVDB-86563 ManageEngine SecurityManager dir traversal 2012-10-29 12:23:48 -05:00
m m 3855ba88b1 add meterpreter/command support to samba exploit using ROP 2012-10-29 17:33:00 +01:00
Tod Beardsley 5c0fb2789f Merge branch 'module-metasploit-pcaplog-privesc' into rapid7-master 2012-10-29 11:32:32 -05:00
Tod Beardsley 65e27ff38a Warn about the potential to jack up /etc/passwd 
This needs to be underlined. It's too easy to wang up /etc/passwd by
accident.

This closes PR #632
[Fixes #38593685]
 2012-10-29 11:28:27 -05:00
Tod Beardsley 5e80e19a4e Msftidy complaint about EOL spaces 2012-10-29 11:08:03 -05:00
jvazquez-r7 0e3bc7d060 hp operations agent mods: fix use of pattern_create, use ropdb 2012-10-29 15:45:40 +01:00
sinn3r 2c4273e478 Correct some modules with res nil 2012-10-29 04:41:30 -05:00
sinn3r 34731c3e0a Add OSVDB-86720 - Clansphere dir traversarl 2012-10-29 03:44:22 -05:00
HD Moore 3a42eb3f73 New modules and library for the ADDP protocol 2012-10-28 23:04:18 -05:00
sinn3r 9f9ee8a29e Merge branch 'post-pgpass_creds' of git://github.com/403labs/metasploit-framework into 403labs-post-pgpass_creds 2012-10-28 18:18:15 -05:00
esmnemon b44ec34bfd renamed modbusFindunitID.rb to modbus_findunitid.rb 2012-10-28 15:11:10 +01:00
jvazquez-r7 19920b3275 update module titles for hp operation agent vulns 2012-10-28 02:38:39 +01:00
sinn3r 675e5c0bb5 Merge branch 'modbus-aux' of git://github.com/esmnemon/metasploit-framework into esmnemon-modbus-aux 2012-10-27 18:55:55 -05:00
sinn3r 7a1c3e7cf6 Merge branch 'dmaloney-r7-WinRM_piecemeal' 2012-10-27 18:55:24 -05:00
sinn3r 4e6b5393c5 Merge branch 'manage_engine_sqli' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-manage_engine_sqli 2012-10-27 18:53:47 -05:00
sinn3r 320a23286a Merge branch 'warnings' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-warnings 2012-10-27 18:52:34 -05:00
sinn3r 7db7f1bfdf Merge branch 'turboftp_update' of git://github.com/corelanc0d3r/metasploit-framework into corelanc0d3r-turboftp_update 2012-10-27 18:51:41 -05:00
sinn3r 5c23e0af7b Merge branch 'smbversion-domain-notes' of git://github.com/zombieCraig/metasploit-framework into zombieCraig-smbversion-domain-notes 2012-10-27 18:48:48 -05:00
sinn3r c015372ce0 Merge branch 'hp_operations_agent_coda_8c' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-hp_operations_agent_coda_8c 2012-10-27 18:45:36 -05:00
jvazquez-r7 73deeacd7e deleted unnecessary http headers according to my tests 2012-10-28 00:52:52 +02:00
jvazquez-r7 b4b1b77a77 deleted unnecessary http headers according to my tests 2012-10-28 00:51:18 +02:00
jvazquez-r7 51bc806014 Added module for CVE-2012-2019 2012-10-27 22:45:37 +02:00
jvazquez-r7 bcb80431d6 Added module for CVE-2012-2020 2012-10-27 22:43:16 +02:00
zombieCraig 164321a5ed Add Domain notes to smb_version 2012-10-26 11:56:14 -04:00
Zach Grace 3746a3ef64 adding pgpass_creds post module 2012-10-25 21:30:54 -05:00
David Maloney b15c38f819 Fix output to display ip:port 2012-10-25 19:57:29 -05:00
David Maloney fb7af536d5 wtf, bad metadata 
Removed extraneous references section
 2012-10-25 10:16:12 -05:00
esmnemon 4ae482b71c added a fix for modbusdetect.rb and a new utility modbusFindunitID.rb 2012-10-25 13:17:17 +02:00
David Maloney bfbae5fbb7 Merge branch 'upstream-master' into WinRM_piecemeal 
Conflicts:
	lib/msf/core/exploit/winrm.rb
 2012-10-24 14:12:28 -05:00
corelanc0d3r b48e355a6d fixed typo and defined badchars 2012-10-24 20:04:54 +02:00
David Maloney a15c35091d Add the WinRM login module 2012-10-24 11:25:39 -05:00
0a2940 2f0c2d76ea remove load statements 2012-10-24 11:01:26 +02:00
0a2940 32ddd981eb linux_kernel mixin not required 2012-10-24 10:58:09 +02:00
0a2940 6d5da1662b Update modules/post/multi/escalate/metasploit_pcaplog.rb 
Stance is now passive
 2012-10-24 10:55:48 +02:00
sinn3r ede5d0f46b This is meant to be a warning, so we use print_warning 2012-10-24 00:55:54 -05:00
sinn3r 799c22554e Warn user if a file/permission is being modified during new session 2012-10-24 00:54:17 -05:00
sinn3r f1423bf0b4 If a message is clearly a warning, then use print_warning 2012-10-24 00:44:53 -05:00
sinn3r b3e02f119c Merge branch 'payload_ambiguity' of git://github.com/bonsaiviking/metasploit-framework into bonsaiviking-payload_ambiguity 2012-10-23 22:30:47 -05:00
sinn3r 8eb790f62c Final touchup 2012-10-23 19:46:09 -05:00
sinn3r f9bb910c3b Make the check() try SQLI 2012-10-23 19:42:36 -05:00
sinn3r 8c5a73bb7f Change exception handling 2012-10-23 19:34:12 -05:00
sinn3r 90542547c6 Add auto-target, and some changes to cleanup 2012-10-23 19:07:13 -05:00
sinn3r 18fb30074a Merge branch 'master' of github.com:rapid7/metasploit-framework 2012-10-23 16:33:38 -05:00