Wei Chen
8089d10618
Added VisiWave Site Survey Report buffer overflow exploit
...
git-svn-id: file:///home/svn/framework3/trunk@12691 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-23 16:28:38 +00:00
Steve Tornio
28d5febfad
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12688 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 23:41:15 +00:00
Wei Chen
e916a61eec
Date format fix
...
git-svn-id: file:///home/svn/framework3/trunk@12685 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 22:09:52 +00:00
Wei Chen
d9c0d1c941
Added Magix Musik Maker 16 buffer overflow exploit
...
git-svn-id: file:///home/svn/framework3/trunk@12684 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 22:08:09 +00:00
amaloteaux
ee55e0cf76
http_ntlm & smb capture : correct john/cain output, Fixes #4565 and completly Fixes #4362 now
...
git-svn-id: file:///home/svn/framework3/trunk@12683 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 14:05:55 +00:00
Tod Beardsley
5ecc8d2551
Spelling.
...
git-svn-id: file:///home/svn/framework3/trunk@12682 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 14:00:35 +00:00
amaloteaux
305e3ca308
typo
...
git-svn-id: file:///home/svn/framework3/trunk@12681 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 11:54:51 +00:00
amaloteaux
097f954e7b
arp spoof : re-Arping the hosts after user interupt
...
git-svn-id: file:///home/svn/framework3/trunk@12680 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 11:47:54 +00:00
HD Moore
a8c474d7d6
Add the versioned (1.0) RPC backend
...
git-svn-id: file:///home/svn/framework3/trunk@12679 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-22 03:50:14 +00:00
amaloteaux
39978dca42
arp spoof : -add an auto_add option to automatically detect new host and spoof them
...
-move broadcast option back to advanced
-enable listener by default
git-svn-id: file:///home/svn/framework3/trunk@12678 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-21 16:26:11 +00:00
Wei Chen
56b4a092d6
Added Linux x64 payloads. Modified exe.rb to support elf x64 payloads.
...
git-svn-id: file:///home/svn/framework3/trunk@12676 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 23:51:19 +00:00
Tod Beardsley
520aa7d01c
Fixes #4558 . Since the arp spoofer is the only module that actually uses lookupaddrs, don't require every other pcaprub module to check for it.
...
git-svn-id: file:///home/svn/framework3/trunk@12672 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 14:26:24 +00:00
James Lee
a9d429d09a
make printf_php_mq ManualRanking to avoid using it in situations where it will definitely fail. fixes opera_historysearch
...
git-svn-id: file:///home/svn/framework3/trunk@12671 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 09:59:01 +00:00
James Lee
9a2e655c53
test for java explicitly when we have javascript, refactor several things, add a 'list' command, and make the info description more descriptive
...
git-svn-id: file:///home/svn/framework3/trunk@12670 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-20 09:11:43 +00:00
HD Moore
e2e27341be
Rename this thing
...
git-svn-id: file:///home/svn/framework3/trunk@12668 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 19:50:11 +00:00
James Lee
36983436db
play a little nicer with browser autopwn by not spraying the heap if creating the vulnerable object failed
...
git-svn-id: file:///home/svn/framework3/trunk@12667 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 19:45:14 +00:00
Mario Ceballos
3fedad5715
add matteo's patch.
...
git-svn-id: file:///home/svn/framework3/trunk@12666 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 19:02:58 +00:00
James Lee
0b88468617
out with the new, in with the old. css_clip is pretty unreliable in my tests, go back to using ie_behaviors in browser autopwn
...
git-svn-id: file:///home/svn/framework3/trunk@12663 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-19 16:33:55 +00:00
Wei Chen
f9c49ef9ce
Comment update (this is still for the egghunter fix: bug #4552 )
...
git-svn-id: file:///home/svn/framework3/trunk@12657 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-18 19:50:22 +00:00
Wei Chen
6345fec06c
checksum support for egghunter disabled, because not enough room for it. See r4552.
...
git-svn-id: file:///home/svn/framework3/trunk@12656 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-18 19:48:06 +00:00
James Lee
04efaf9281
referencing navigator.javaEnabled breaks ie6, only check navigator.javaEnabled();
...
git-svn-id: file:///home/svn/framework3/trunk@12655 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-17 22:44:39 +00:00
Steve Tornio
72692d27f7
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12643 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-17 11:28:25 +00:00
James Lee
f7178bf4de
somehow typo'd this between testing and commit... fixes #4510
...
git-svn-id: file:///home/svn/framework3/trunk@12642 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-17 04:46:52 +00:00
James Lee
158e196e20
don't bail when we get a '550 user unknown' error, try harder for domain checks. fixes #4031 , thanks Lonnie Benavides for the patch
...
git-svn-id: file:///home/svn/framework3/trunk@12641 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 23:45:28 +00:00
Wei Chen
4f56444f2c
Fix for nops
...
git-svn-id: file:///home/svn/framework3/trunk@12639 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 19:30:17 +00:00
Wei Chen
95700687de
Added IGSS 9 buffer overflow
...
git-svn-id: file:///home/svn/framework3/trunk@12638 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 19:02:05 +00:00
James Lee
554ebd7040
make author field consistent, fixes #4336
...
git-svn-id: file:///home/svn/framework3/trunk@12636 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 17:21:59 +00:00
HD Moore
cf3bcf2bcf
Revert to old behavior for now
...
git-svn-id: file:///home/svn/framework3/trunk@12635 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 14:45:37 +00:00
Jonathan Cran
9bdca1f6e2
oops, add a comma back
...
git-svn-id: file:///home/svn/framework3/trunk@12633 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 05:53:49 +00:00
HD Moore
9c93eda851
Disable Java attacks for IE (breaks the chaining)
...
git-svn-id: file:///home/svn/framework3/trunk@12632 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 04:21:58 +00:00
Jonathan Cran
71f6f8c583
copypasta fix
...
git-svn-id: file:///home/svn/framework3/trunk@12631 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 04:07:18 +00:00
Carlos Perez
71dc6ba9d9
Needs more work removing for now
...
git-svn-id: file:///home/svn/framework3/trunk@12630 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-16 03:19:07 +00:00
Tod Beardsley
056cde292f
Deprecate the exploited_host table. Vulns that indicate a successful exploit without opening a session should set the :exploited_at timestamp.
...
git-svn-id: file:///home/svn/framework3/trunk@12623 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 22:19:00 +00:00
Carlos Perez
d50613deaa
Keywords
...
git-svn-id: file:///home/svn/framework3/trunk@12618 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 18:12:29 +00:00
Carlos Perez
672c8961be
OpenSSH Information Gather Module, tested against OSX and Linux
...
git-svn-id: file:///home/svn/framework3/trunk@12617 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 17:28:20 +00:00
James Lee
486c0556d0
don't leave unnecessary evil-looking logs
...
git-svn-id: file:///home/svn/framework3/trunk@12604 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-12 22:46:43 +00:00
David Rude
3c133a1415
added some more verbosity so its clear things are happening, moved the session.type check to be more immediate
...
git-svn-id: file:///home/svn/framework3/trunk@12594 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-12 17:56:18 +00:00
Wei Chen
40894c3726
Moving Iconics webhmi activeX exploit from browser to scada directory
...
git-svn-id: file:///home/svn/framework3/trunk@12584 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-11 20:45:54 +00:00
Steve Tornio
d0c93f7e49
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12582 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-11 11:33:16 +00:00
Wei Chen
5d59d819ac
Added SPlayer Content-Type bof
...
git-svn-id: file:///home/svn/framework3/trunk@12581 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-11 00:18:11 +00:00
Joshua Drake
28ae2316a4
Fixes #4390 , such a bute
...
git-svn-id: file:///home/svn/framework3/trunk@12578 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-10 20:52:59 +00:00
Steve Tornio
b84df80983
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12576 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-10 19:16:07 +00:00
Wei Chen
105b5799af
Added ICONICS WebHMI ActiveX SetActiveXGuid bof
...
git-svn-id: file:///home/svn/framework3/trunk@12573 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-10 18:07:15 +00:00
Wei Chen
90278f308b
Fixed issue with 'break'. Added x64 support.
...
git-svn-id: file:///home/svn/framework3/trunk@12570 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-09 18:27:54 +00:00
HD Moore
244e251d7b
Keywords
...
git-svn-id: file:///home/svn/framework3/trunk@12567 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 21:36:29 +00:00
amaloteaux
af87e1def0
weird, was pretty sure those lines are some how automatically updated ....
...
git-svn-id: file:///home/svn/framework3/trunk@12566 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 04:49:11 +00:00
amaloteaux
09a2bceec5
arp_spoof: add an arp poisoning auxiliary module with several config mode
...
git-svn-id: file:///home/svn/framework3/trunk@12564 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 04:26:16 +00:00
amaloteaux
5d8db916d7
pcap_replay: small fix on th delay
...
git-svn-id: file:///home/svn/framework3/trunk@12563 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 01:44:09 +00:00
Stephen Fewer
c48633cff0
Merge in a rewritten windows x86 reverse_ipv6_tcp stager (The previous one seems hosed since r6744 due to new host/port offsets[1] but the shellcode blob remained the same after modification[2]) - This new one uses the block_api_call technique, is 37 bytes smaller and can handle arbitrary size stages.
...
[1] https://dev.metasploit.com/redmine/projects/framework/repository/revisions/6744/diff/modules/payloads/stagers/windows/reverse_ipv6_tcp.rb
[2] https://dev.metasploit.com/redmine/projects/framework/repository/revisions/6744/diff/external/source/shellcode/windows/stager_reverse_ipv6_tcp_nx.asm
git-svn-id: file:///home/svn/framework3/trunk@12562 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-08 01:44:08 +00:00
amaloteaux
fd661770ed
Fix #4362 , thanks to Zack Fasel for report and initial patch
...
git-svn-id: file:///home/svn/framework3/trunk@12560 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-07 18:52:17 +00:00
Matt Weeks
fea1459c50
Update description
...
git-svn-id: file:///home/svn/framework3/trunk@12559 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-07 02:46:30 +00:00
Steve Tornio
c87ba8f026
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12557 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-06 19:33:01 +00:00
Joshua Drake
5b8e4707cc
Add an exploit for CVE-2011-1574 (libmodplug via VLC 1.1.8)
...
git-svn-id: file:///home/svn/framework3/trunk@12544 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-06 15:29:07 +00:00
Wei Chen
8d78a47e45
get_resource() added to 'src' parameter
...
git-svn-id: file:///home/svn/framework3/trunk@12543 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-05 22:10:30 +00:00
David Rude
c80d454dd7
fixes some logic which restricted the use of other windows targets
...
git-svn-id: file:///home/svn/framework3/trunk@12542 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-05 15:11:46 +00:00
David Rude
a8b6c43636
reverting the disclosure dates for now need to clean up the patch
...
git-svn-id: file:///home/svn/framework3/trunk@12540 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 20:43:19 +00:00
David Rude
3b7ea08f6a
Fixes a ton of Disclosure Date discrepencies in various modules, thanks a ton to Michael Baker for spending the time to ensure accuracy
...
git-svn-id: file:///home/svn/framework3/trunk@12539 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 19:17:31 +00:00
David Rude
3b5cf3826a
Added TheLightCosines OpenSSL ChangeCipherSpec DoS aux module
...
git-svn-id: file:///home/svn/framework3/trunk@12538 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 19:08:28 +00:00
Steve Tornio
fdd9b361bb
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12532 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 11:40:09 +00:00
Tod Beardsley
98831c3285
Clean up an SNMP rescue clause that makes Windows Ruby builds sad.
...
git-svn-id: file:///home/svn/framework3/trunk@12530 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 07:51:09 +00:00
Wei Chen
eb2c0a5919
Fixed more typos
...
git-svn-id: file:///home/svn/framework3/trunk@12527 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 05:29:59 +00:00
Wei Chen
c4e8889119
Fixed typo.
...
git-svn-id: file:///home/svn/framework3/trunk@12526 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 05:27:54 +00:00
Wei Chen
c0baf731f8
Updated print_error() for sqlite3's rescue
...
git-svn-id: file:///home/svn/framework3/trunk@12524 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 05:23:51 +00:00
HD Moore
23c355ba2c
Just use :mac not :host_mac
...
git-svn-id: file:///home/svn/framework3/trunk@12517 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 03:03:38 +00:00
HD Moore
7cb8e56cfe
Fix upexec handle_connection_stage arguments
...
git-svn-id: file:///home/svn/framework3/trunk@12511 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-02 18:54:02 +00:00
HD Moore
9f53aa15a5
Catch other error types from SNMP
...
git-svn-id: file:///home/svn/framework3/trunk@12504 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-02 05:38:13 +00:00
Wei Chen
352fc92539
Show OTR key and save it to disk
...
git-svn-id: file:///home/svn/framework3/trunk@12493 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 22:36:20 +00:00
Joshua Drake
94fa25ee7a
remove crufty method
...
git-svn-id: file:///home/svn/framework3/trunk@12491 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 22:07:49 +00:00
Mario Ceballos
0522b69de2
s instead of n
...
git-svn-id: file:///home/svn/framework3/trunk@12488 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 13:31:08 +00:00
Wei Chen
94832059e5
The path fix would work if I remembered to uncomment the code... geez.
...
git-svn-id: file:///home/svn/framework3/trunk@12487 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 00:32:17 +00:00
Wei Chen
b763d66b39
Fixed two issues: NoMethodError undefined method `text' for nil:NilClass and The system cannot find the file specified.
...
git-svn-id: file:///home/svn/framework3/trunk@12486 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 00:20:57 +00:00
Wei Chen
9c619c3a40
Added mjm quickplayer s3m bof
...
git-svn-id: file:///home/svn/framework3/trunk@12474 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-30 02:37:14 +00:00
Wei Chen
72af607aef
Added MJM Coreplayer s3m bof
...
git-svn-id: file:///home/svn/framework3/trunk@12473 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-30 02:36:14 +00:00
Mario Ceballos
be2f68afbd
this method doesnt work with a licensed install.
...
git-svn-id: file:///home/svn/framework3/trunk@12470 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-29 22:17:40 +00:00
HD Moore
d9bee35456
Handle cases where iTunes is not installed or the base user directory has been changed
...
git-svn-id: file:///home/svn/framework3/trunk@12468 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-29 16:10:29 +00:00
Wei Chen
8fa4443a68
Added Subtitle Processor 7.7.1 bof
...
git-svn-id: file:///home/svn/framework3/trunk@12461 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-28 08:12:32 +00:00
Mario Ceballos
be83842dff
added exploit module emc_homebase_exec.rb
...
git-svn-id: file:///home/svn/framework3/trunk@12458 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 20:29:27 +00:00
HD Moore
77328e7327
Fix report calls, thanks Minga!
...
git-svn-id: file:///home/svn/framework3/trunk@12457 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 19:39:28 +00:00
Wei Chen
f59db11f0e
Fixed typo in description. Thanks ragecyr.
...
git-svn-id: file:///home/svn/framework3/trunk@12456 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 16:54:49 +00:00
David Rude
5e374e1d36
Post module title changes for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@12455 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 16:25:15 +00:00
Wei Chen
46c919cc8a
Removed meetRequirements(). No need since it's already specified in SessionTypes.
...
git-svn-id: file:///home/svn/framework3/trunk@12454 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 15:48:35 +00:00
Wei Chen
2f6b941584
Fixed a bug with "TypeError can't convert nil into String"
...
git-svn-id: file:///home/svn/framework3/trunk@12453 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 15:41:37 +00:00
HD Moore
95e9153b33
Move to Windows to reflect the removal of the OS X target
...
git-svn-id: file:///home/svn/framework3/trunk@12452 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 15:29:56 +00:00
James Lee
dbf2f5a4af
add a post module for stealing obfuscated winscp stored passwords, fixes #4210 , thanks TheLightCosine!
...
git-svn-id: file:///home/svn/framework3/trunk@12449 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-26 23:55:56 +00:00
Wei Chen
e39739231d
Added CVE reference
...
git-svn-id: file:///home/svn/framework3/trunk@12431 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 05:37:41 +00:00
Wei Chen
a31ac81b57
Added eZip Wizard 3.0 Stack Buffer Overflow
...
git-svn-id: file:///home/svn/framework3/trunk@12428 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 01:06:34 +00:00
HD Moore
f7eb047659
Fix the title and remove OS X shell session support until bugs are fixed
...
git-svn-id: file:///home/svn/framework3/trunk@12427 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-24 22:23:00 +00:00
HD Moore
66631388ed
Add a Post module that pulls sensitive files from the Apple iOS backup images. This includes a full manifest parser and can be used to collect stored camera images, call history, saved passwords, and the wireless location "tracking" database.
...
git-svn-id: file:///home/svn/framework3/trunk@12425 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-24 19:28:55 +00:00
Wei Chen
2772be9125
Small offset change for Win 7 target requested by sd
...
git-svn-id: file:///home/svn/framework3/trunk@12422 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-24 03:50:55 +00:00
Tod Beardsley
3829d2606b
Removing the un-used USER_AS_PASS option for ssh_login_pubkey.
...
git-svn-id: file:///home/svn/framework3/trunk@12411 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 21:05:27 +00:00
James Lee
219b796e28
dup of enum_applications
...
git-svn-id: file:///home/svn/framework3/trunk@12408 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 20:13:43 +00:00
amaloteaux
91bb4b0130
auxiliary: add a basic pcap replay module
...
git-svn-id: file:///home/svn/framework3/trunk@12403 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 18:25:19 +00:00
Tod Beardsley
ea6b1bb626
Fixes #4190 by reseting self.ssh_socket after the connection is established.
...
git-svn-id: file:///home/svn/framework3/trunk@12402 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 15:32:00 +00:00
James Lee
2a06f2b70c
remove extraneous options, fixes #4146 . note that INTERFACE is not extraneous (since the user needs to be able to specify which iface to inject on)
...
git-svn-id: file:///home/svn/framework3/trunk@12398 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 21:05:17 +00:00
Steve Tornio
319b4993a4
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12397 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 19:38:42 +00:00
Tod Beardsley
794dfc502f
Avoid trying duplicate SNMP community strings against the same host.
...
git-svn-id: file:///home/svn/framework3/trunk@12396 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 19:25:50 +00:00
James Lee
d9a80d713c
pastographical error, thanks dookie for spotting it
...
git-svn-id: file:///home/svn/framework3/trunk@12395 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 18:14:51 +00:00
David Rude
0f9a232025
Added Spreecommerce Remote Code Execution exploit module - thanks joernchen
...
git-svn-id: file:///home/svn/framework3/trunk@12392 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 16:57:17 +00:00
Wei Chen
c5d51cf810
Disclosure date change
...
git-svn-id: file:///home/svn/framework3/trunk@12391 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 15:45:07 +00:00
Wei Chen
6d71990dfc
Disclosure date change
...
git-svn-id: file:///home/svn/framework3/trunk@12390 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 15:40:59 +00:00
Wei Chen
7ef79e3ca5
Changed disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@12389 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 15:34:01 +00:00
Mario Ceballos
31f2afc033
fix date
...
git-svn-id: file:///home/svn/framework3/trunk@12388 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 11:12:34 +00:00
Wei Chen
03ac21e5be
Updated disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@12387 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 04:34:31 +00:00
Wei Chen
4662f88d43
Incorrect CVE reference removed
...
git-svn-id: file:///home/svn/framework3/trunk@12385 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 04:21:48 +00:00
Wei Chen
cb491e35d2
Changed disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@12384 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 02:10:40 +00:00
Wei Chen
458d8cccb8
Modified heap spray routine. Added IE 8 target for XP SP3.
...
git-svn-id: file:///home/svn/framework3/trunk@12383 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 21:55:33 +00:00
amaloteaux
a08bef0a47
allow the wireshark dect dissector exploit to be used remotly
...
git-svn-id: file:///home/svn/framework3/trunk@12376 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 16:36:48 +00:00
Joshua Drake
78d3998854
Fixes #4125 , add hostname support to the Rex DHCP server & aux module
...
git-svn-id: file:///home/svn/framework3/trunk@12375 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 14:21:36 +00:00
Wei Chen
488c6de9df
Description change again
...
git-svn-id: file:///home/svn/framework3/trunk@12371 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 16:41:58 +00:00
Wei Chen
4b7595b8e4
Updated the size of the pcap file. Description also udpated.
...
git-svn-id: file:///home/svn/framework3/trunk@12369 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 16:34:17 +00:00
Wei Chen
6d0bfaaa57
Updated author
...
git-svn-id: file:///home/svn/framework3/trunk@12368 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 15:23:49 +00:00
Steve Tornio
0859bb18a7
add cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@12365 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 11:32:17 +00:00
Wei Chen
90668a9913
Date format fix
...
git-svn-id: file:///home/svn/framework3/trunk@12364 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 07:53:58 +00:00
Wei Chen
9d40da6bbb
Title change
...
git-svn-id: file:///home/svn/framework3/trunk@12363 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 06:43:05 +00:00
Wei Chen
9c60889f02
Added Wireshark packet-dect memcpy overflow (.pcap)
...
git-svn-id: file:///home/svn/framework3/trunk@12362 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 06:41:57 +00:00
Wei Chen
d4dd84536d
Added Win 7 target
...
git-svn-id: file:///home/svn/framework3/trunk@12361 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 03:10:36 +00:00
HD Moore
b94d09cdf1
Try a little harder to make this module more reliable through TCP proxies
...
git-svn-id: file:///home/svn/framework3/trunk@12359 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 20:53:21 +00:00
Tod Beardsley
8b5d004997
Adding an nmap version checker so NSE modules can tell if it's okay to run or not.
...
git-svn-id: file:///home/svn/framework3/trunk@12357 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 19:52:13 +00:00
HD Moore
f1f15ba448
Allow socks4a to relay through meterpreter
...
git-svn-id: file:///home/svn/framework3/trunk@12353 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 18:17:49 +00:00
David Rude
6b538bda06
Fixes for shell commands and store_loot
...
git-svn-id: file:///home/svn/framework3/trunk@12347 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 14:31:01 +00:00
Wei Chen
c28e7259ac
Added CVE-2011-0611 Adobe Flash 0day
...
git-svn-id: file:///home/svn/framework3/trunk@12330 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-16 02:09:33 +00:00
Wei Chen
9ac36d6e0a
Forgot to change two other hardcoded junks to random alpha bytes
...
git-svn-id: file:///home/svn/framework3/trunk@12322 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 23:28:58 +00:00
Wei Chen
b81d87173f
Added mr_me's Win XP SP3 + DEP target
...
git-svn-id: file:///home/svn/framework3/trunk@12320 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 23:08:47 +00:00
amaloteaux
d9e68141e0
arp sweep: correct a bug on the timeout to better detect the latest reply
...
git-svn-id: file:///home/svn/framework3/trunk@12316 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 16:29:56 +00:00
James Lee
b5e0962e3e
return the appropriate check codes instead of just printing stuff. add some error checks to avoid stack traces against samba and non-existant hosts
...
git-svn-id: file:///home/svn/framework3/trunk@12314 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-13 23:26:07 +00:00
Steve Tornio
79e84a46e9
add cve & osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@12306 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-12 11:04:29 +00:00
Wei Chen
33249bea32
Changed 0x90 nops to make_nops() instead
...
git-svn-id: file:///home/svn/framework3/trunk@12305 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 23:32:41 +00:00
Wei Chen
3dec79f346
Format fix again
...
git-svn-id: file:///home/svn/framework3/trunk@12304 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 23:24:12 +00:00
Wei Chen
e5068838ff
Last format fix
...
git-svn-id: file:///home/svn/framework3/trunk@12301 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 22:31:27 +00:00
Wei Chen
300989db5f
Format issue fix
...
git-svn-id: file:///home/svn/framework3/trunk@12299 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 22:28:38 +00:00
Wei Chen
eea7a0e743
Added Video Spirit vlsprj buffer overflow exploit
...
git-svn-id: file:///home/svn/framework3/trunk@12296 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 22:09:23 +00:00
Steve Tornio
6dc526f22b
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12295 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 18:12:17 +00:00
David Rude
39f4c0c42f
Added MS08-067 check method thanks staylor =)
...
git-svn-id: file:///home/svn/framework3/trunk@12294 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 16:32:59 +00:00
David Rude
5e89b22aae
Added ISC DHCP Zero Length ClientID DoS Module thx TheLightCosine
...
git-svn-id: file:///home/svn/framework3/trunk@12293 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 15:56:39 +00:00
Patrick Webster
e9e8026832
Fixed author name in modules for myself.
...
git-svn-id: file:///home/svn/framework3/trunk@12292 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 02:25:36 +00:00
Patrick Webster
fb33b0cbfd
Added contentkeeper_fileaccess aux traversal module.
...
git-svn-id: file:///home/svn/framework3/trunk@12288 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-10 15:27:17 +00:00
Wei Chen
ffe6868d22
Updated vbs stager temp var
...
git-svn-id: file:///home/svn/framework3/trunk@12286 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-09 18:24:43 +00:00
Joshua Drake
d2374a435f
add .jar extension, thx for the contribution!
...
git-svn-id: file:///home/svn/framework3/trunk@12285 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-09 17:03:41 +00:00
Wei Chen
c31603beac
Updated: Using random nops and padding
...
git-svn-id: file:///home/svn/framework3/trunk@12284 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 23:09:31 +00:00
Wei Chen
8b0605c418
Added AOL Desktop 9.6 rtx buffer overflow
...
git-svn-id: file:///home/svn/framework3/trunk@12283 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 23:03:30 +00:00
David Rude
82f5206bc7
change the filename to reflect the vendor
...
git-svn-id: file:///home/svn/framework3/trunk@12281 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 14:06:10 +00:00
Steve Tornio
a8947662db
old file hanging around
...
git-svn-id: file:///home/svn/framework3/trunk@12280 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 13:28:57 +00:00
Steve Tornio
bb26593da7
add osvdb ref. rename file to correct typo
...
git-svn-id: file:///home/svn/framework3/trunk@12279 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 12:41:18 +00:00
Wei Chen
8efd5ce82c
Added denial-of-service module for HP Data Protector's RDS service
...
git-svn-id: file:///home/svn/framework3/trunk@12278 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 07:56:48 +00:00
Wei Chen
717fb83fc9
Added RealNetworks RealGames ActiveX exec arbitrary code execution
...
git-svn-id: file:///home/svn/framework3/trunk@12276 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 02:39:11 +00:00
David Rude
53790c1afb
Change Vendor name, forgot one target uri fixup
...
git-svn-id: file:///home/svn/framework3/trunk@12275 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 23:31:12 +00:00
James Lee
02b3b85e7c
port get_application_list to post module, with a couple small tweaks (check wow64 reg keys, and don't print blank lines)
...
git-svn-id: file:///home/svn/framework3/trunk@12274 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:59:47 +00:00
Mike Smith
d5d9d56081
Create a dedicated db table to track sessions & session events.
...
* Add new db tables for session & session_events
* Migrate existing session data from events db table
* Modify session report methods to log to the new tables
git-svn-id: file:///home/svn/framework3/trunk@12273 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:59:32 +00:00
David Rude
892e241853
Added Netflow Apps Manager Remote Code Execution exploit
...
git-svn-id: file:///home/svn/framework3/trunk@12272 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:01:34 +00:00
Wei Chen
904b02c44f
Need to track who committed what
...
git-svn-id: file:///home/svn/framework3/trunk@12271 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:01:20 +00:00
Patrick Webster
cacac970e1
Added privilege escalation to contentkeeperweb_mimencode exploit module.
...
git-svn-id: file:///home/svn/framework3/trunk@12265 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 11:02:48 +00:00
Wei Chen
b90d6fc16f
Modified the heap spraying function. Each block size should be more consistent now.
...
git-svn-id: file:///home/svn/framework3/trunk@12264 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 07:27:38 +00:00
Wei Chen
1c5f1f9d24
Fixed typo
...
git-svn-id: file:///home/svn/framework3/trunk@12263 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 06:15:47 +00:00
Patrick Webster
1c2e08d95d
Added SonicWall SSL-VPN format string module.
...
git-svn-id: file:///home/svn/framework3/trunk@12261 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 03:56:35 +00:00
Tod Beardsley
e07147142f
See #3781 . smb_login implements the special keyword of <BLANK> (but also needs to be nil safe, which this fixes)
...
git-svn-id: file:///home/svn/framework3/trunk@12257 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:26:46 +00:00
Tod Beardsley
30fb75c676
In smb_login, work around an odd error where you get an InvalidPacket for ACCESS_DENIED rather than a login failure.
...
git-svn-id: file:///home/svn/framework3/trunk@12256 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:15:08 +00:00
Jonathan Cran
1ffb5e97e0
mubix's patch. grab the right value from the reg if it's not a fixnum, and set a default report port
...
git-svn-id: file:///home/svn/framework3/trunk@12249 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 19:09:44 +00:00
Steve Tornio
46d88f54f6
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12242 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 01:08:07 +00:00
David Rude
0bea0233a0
add the slash =)
...
git-svn-id: file:///home/svn/framework3/trunk@12241 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 00:13:01 +00:00
David Rude
ce7b72bfce
Use get_uri instead of manually building the path
...
git-svn-id: file:///home/svn/framework3/trunk@12240 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 00:08:36 +00:00
David Rude
7816b87595
Added Zend Java Bridge exploit module java meterpreter ftw
...
git-svn-id: file:///home/svn/framework3/trunk@12239 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 23:39:27 +00:00
Tod Beardsley
b91c81a182
Fixes #4074 -- corrects the affected regexes.
...
git-svn-id: file:///home/svn/framework3/trunk@12238 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 22:19:59 +00:00
Wei Chen
97a9056a1a
Added CVE-2010-3407 (IBM Lotus Domino iCalendar SMTP)
...
git-svn-id: file:///home/svn/framework3/trunk@12236 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 17:43:34 +00:00
Carlos Perez
bae9a04cf6
Migration of domain_list script to enum_domain_group_users post module by Stephen Haywood
...
git-svn-id: file:///home/svn/framework3/trunk@12232 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 00:42:27 +00:00
amaloteaux
7e522d9979
http capture : add challenge as an option
...
git-svn-id: file:///home/svn/framework3/trunk@12231 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 23:31:14 +00:00
amaloteaux
8e61c108d3
typo fix
...
git-svn-id: file:///home/svn/framework3/trunk@12229 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 23:11:02 +00:00
Joshua Drake
8a627758f3
update description to remove blurb about ATSVC pipe, since it is no longer used
...
git-svn-id: file:///home/svn/framework3/trunk@12226 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 20:53:54 +00:00
Joshua Drake
f0673cb1ac
Tweak to work with FreeBSD, thx for the patch!
...
git-svn-id: file:///home/svn/framework3/trunk@12224 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 17:40:45 +00:00
HD Moore
86fac4ef95
This module does not meet standards for inclusion:
...
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs
git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 16:11:59 +00:00
Carlos Perez
8c96711c6c
shroretel user login brute force module by Keith Lee
...
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 14:13:15 +00:00
Steve Tornio
8aff852f5a
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12218 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 13:41:19 +00:00
Carlos Perez
7aa21e7ef8
Qemu detection support, patch provided by Sergio Guzman.
...
git-svn-id: file:///home/svn/framework3/trunk@12217 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 13:03:43 +00:00
Wei Chen
7502895037
Minor changes
...
git-svn-id: file:///home/svn/framework3/trunk@12216 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 05:54:02 +00:00
Mario Ceballos
cab7a1b3e4
added auxiliary module zend/java_bridge.rb
...
git-svn-id: file:///home/svn/framework3/trunk@12212 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 22:01:46 +00:00
Steve Tornio
cd9b742960
add osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@12202 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 14:00:49 +00:00
James Lee
6dd44fa516
massive keywords cleanup
...
git-svn-id: file:///home/svn/framework3/trunk@12196 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 00:51:33 +00:00
natron
6743776c75
Fixing ugly spacing
...
git-svn-id: file:///home/svn/framework3/trunk@12193 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:24:14 +00:00
natron
e1c7be1acf
Tim Medin's NBNS spoofer / world domination ensurer.
...
git-svn-id: file:///home/svn/framework3/trunk@12192 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:22:13 +00:00
David Rude
98d7e5e75e
minor info hash fixes
...
git-svn-id: file:///home/svn/framework3/trunk@12191 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 16:56:12 +00:00
David Rude
7f91739062
Converted screen_spy to a post module
...
git-svn-id: file:///home/svn/framework3/trunk@12189 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 16:41:52 +00:00
David Rude
2beeca4c90
Send the session object directly to store_loot fixes issues with report_host stack traces
...
git-svn-id: file:///home/svn/framework3/trunk@12188 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 15:12:08 +00:00
Wei Chen
e86040f04f
Added Solar FTP Server DOS
...
git-svn-id: file:///home/svn/framework3/trunk@12184 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-30 19:13:46 +00:00
Wei Chen
045e75c0b6
Added ret addr for win server 2003 sp2 donated by Polar Bear
...
git-svn-id: file:///home/svn/framework3/trunk@12183 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-30 16:24:52 +00:00
HD Moore
9594829357
Remove the no longer needed require
...
git-svn-id: file:///home/svn/framework3/trunk@12181 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 18:11:39 +00:00
HD Moore
e0e8d986e7
Fix up psexec by adding a reqwuire for the wbemexec mixin
...
git-svn-id: file:///home/svn/framework3/trunk@12180 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 16:35:26 +00:00
HD Moore
904dd863d1
Remove the WBEM mixin until its actually checked in
...
git-svn-id: file:///home/svn/framework3/trunk@12179 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 15:26:08 +00:00
James Lee
792bb4da7a
allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038 , thanks mubix!
...
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 05:42:33 +00:00
David Rude
9a94359c34
Add a rescue for Profiles directory listing
...
git-svn-id: file:///home/svn/framework3/trunk@12177 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 04:47:01 +00:00
David Rude
c0bde3f030
Add a rescue for the file download
...
git-svn-id: file:///home/svn/framework3/trunk@12176 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 04:43:02 +00:00
David Rude
30b25994d7
More file stats just to be safe and more clear on the message
...
git-svn-id: file:///home/svn/framework3/trunk@12175 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:56:46 +00:00
David Rude
add0f64a93
Check for Mozilla directory before checking for subdirectories
...
git-svn-id: file:///home/svn/framework3/trunk@12174 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:50:32 +00:00
David Rude
9904b230fe
keep looping don't just return on the first failure
...
git-svn-id: file:///home/svn/framework3/trunk@12173 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:37:18 +00:00
David Rude
c3fb6b3bf8
Fixed the windows enum user check if the Firefox directory does not exist
...
git-svn-id: file:///home/svn/framework3/trunk@12172 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:27:01 +00:00
amaloteaux
3a6a02e43c
add wbem exec method for psexec as optional, fix #3972 , thanks to pbk-df3 for patch
...
git-svn-id: file:///home/svn/framework3/trunk@12171 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 01:07:32 +00:00
James Lee
ca21393c4b
remove debug print.
...
git-svn-id: file:///home/svn/framework3/trunk@12168 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 17:30:02 +00:00
Joshua Drake
0882f18ec0
add fix commit diff and fix broken cve reference
...
git-svn-id: file:///home/svn/framework3/trunk@12166 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 03:04:54 +00:00
Joshua Drake
24fd896bfb
add OSVDB reference back, conflict handling fail!
...
git-svn-id: file:///home/svn/framework3/trunk@12165 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 03:02:46 +00:00
Tod Beardsley
64c3c86e1f
Adding carnal0wnage's iSQL*Plus SID and login brute forcers.
...
git-svn-id: file:///home/svn/framework3/trunk@12163 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 01:20:51 +00:00
James Lee
1096d1c076
add a combined module for exploiting DRb. thanks joernchen!
...
git-svn-id: file:///home/svn/framework3/trunk@12161 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-27 20:00:06 +00:00
Wei Chen
214751379f
Updated: using get_resource() instead of datastore['URIPATH']
...
git-svn-id: file:///home/svn/framework3/trunk@12156 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-27 03:56:45 +00:00
Wei Chen
25ca59b56f
Added Win Vista and debug target
...
git-svn-id: file:///home/svn/framework3/trunk@12153 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 23:22:51 +00:00
David Rude
349512f48d
Updated exploit ranking and description to reflect the new ranking
...
git-svn-id: file:///home/svn/framework3/trunk@12151 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 19:33:38 +00:00
Steve Tornio
81fae13258
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12147 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 12:05:48 +00:00
David Rude
ff3659aa37
Lots of work to make this a lot more reliable =)
...
git-svn-id: file:///home/svn/framework3/trunk@12146 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 06:35:28 +00:00
Carlos Perez
43ba211d3d
Module for injection in to a list of processes a given payload connecting to a list of given IP addresses.
...
git-svn-id: file:///home/svn/framework3/trunk@12145 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 03:35:59 +00:00
Carlos Perez
33d1baa835
Did not save output of commands when running against shell
...
git-svn-id: file:///home/svn/framework3/trunk@12144 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 02:56:19 +00:00
Wei Chen
eb7df0be8e
Updated how the trigger file should be loaded... the proper way.
...
git-svn-id: file:///home/svn/framework3/trunk@12140 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 00:07:36 +00:00
Wei Chen
77ceadc6ad
Updated description and how the trigger file loads
...
git-svn-id: file:///home/svn/framework3/trunk@12139 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 22:49:11 +00:00
Wei Chen
08f210ac52
Added CVE-2010-3275 (VLC AMV vulnerability)
...
git-svn-id: file:///home/svn/framework3/trunk@12137 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 21:03:12 +00:00
Tod Beardsley
fa062b8f32
Sets the cmd stager's temp directory to "." which makes all the writes go to the local data directory for postgresql. This avoids the slashes issue reported by troulouliou and keeps all the uploaded files in one place for somewhat easier cleanup.
...
git-svn-id: file:///home/svn/framework3/trunk@12135 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 19:42:36 +00:00
Tod Beardsley
8d8696eb8c
Fixes #4026 , the HTTP options scanner now reports its vulnerability in the normal way.
...
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 17:03:16 +00:00
Steve Tornio
5b79e6b4ec
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12132 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 11:28:57 +00:00
Mario Ceballos
c162c0f429
added exploit module hp_nnm_getnnmdata_hostname.rb. now 49 on the list.
...
git-svn-id: file:///home/svn/framework3/trunk@12131 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 00:46:59 +00:00
Tod Beardsley
1d65ae4122
Adding post module conversion for the Meterpreter autoroute script.
...
git-svn-id: file:///home/svn/framework3/trunk@12126 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 16:34:18 +00:00
David Rude
e5ff1b030a
fixed Platform and Arch to be compatible with command payloads
...
git-svn-id: file:///home/svn/framework3/trunk@12125 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 15:53:20 +00:00
Wei Chen
aa24f29a03
Fixed nops
...
git-svn-id: file:///home/svn/framework3/trunk@12124 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 13:51:13 +00:00
Wei Chen
c9eef9ffe5
Fixed typo
...
git-svn-id: file:///home/svn/framework3/trunk@12123 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 13:31:58 +00:00
Wei Chen
a05866385f
Added target 7.50, provided by MC
...
git-svn-id: file:///home/svn/framework3/trunk@12122 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 02:48:04 +00:00
Steve Tornio
d9dd2a3058
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12121 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 00:49:33 +00:00
Mario Ceballos
342d55ac00
heh, a couple for the hp_nnm party. add exploit modules hp_nnm_getnnmdata_icount.rb hp_nnm_getnnmdata_maxage.rb
...
git-svn-id: file:///home/svn/framework3/trunk@12117 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 21:57:16 +00:00
Wei Chen
1a42a87a65
Added 2011-0267 (exploiting "schdParams" of HP NNM's nnmRptConfig.exe)
...
git-svn-id: file:///home/svn/framework3/trunk@12116 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 21:35:13 +00:00
Tod Beardsley
a3f68b97a6
Fix for 1.8.7 compatability, where regexes need escaped plusses.
...
git-svn-id: file:///home/svn/framework3/trunk@12115 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 21:24:09 +00:00
amaloteaux
ec5e61966d
oops revert the unwanted early commit on mssql
...
git-svn-id: file:///home/svn/framework3/trunk@12114 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:53:57 +00:00
amaloteaux
46cf938475
fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@12112 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:47:49 +00:00
Tod Beardsley
b1178686cf
Fixes #3988 . Adds a command execution module for PostgreSQL by uploading a UDF library and adding sys_exec() as a temporary function. Requires the target to be Windows, uses Bernardo Damele A. G.'s binaries.
...
Also fixes a typo in the arguments to handler which clears up a heretofore mysterious exception (see exploit.rb).
git-svn-id: file:///home/svn/framework3/trunk@12111 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 19:36:07 +00:00
amaloteaux
c0a0e3f217
small fix
...
git-svn-id: file:///home/svn/framework3/trunk@12110 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 19:02:38 +00:00
amaloteaux
e706051bda
psexec : allow exploit to succeed on any r/w share
...
git-svn-id: file:///home/svn/framework3/trunk@12109 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:53:32 +00:00
David Rude
c9e4aa11df
Fixed the report note to not use the proper data format
...
git-svn-id: file:///home/svn/framework3/trunk@12108 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:15:40 +00:00
HD Moore
fff99db43d
Fix the report_note not to clash with smb_enumusers format
...
git-svn-id: file:///home/svn/framework3/trunk@12107 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:14:05 +00:00
James Lee
e866eafb06
add keywords
...
git-svn-id: file:///home/svn/framework3/trunk@12106 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:59:19 +00:00
David Rude
2ea46486a4
fixed report_note
...
git-svn-id: file:///home/svn/framework3/trunk@12104 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:16:29 +00:00
David Rude
3a0c71f98b
Added Xerox Workcenter aux module for enumerating users
...
git-svn-id: file:///home/svn/framework3/trunk@12102 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:13:37 +00:00
Joshua Drake
6fa39eb32c
merge my work on cve-2010-2703
...
git-svn-id: file:///home/svn/framework3/trunk@12101 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:04:45 +00:00
Joshua Drake
efd7b84cc5
change rank / add http fingerprint
...
git-svn-id: file:///home/svn/framework3/trunk@12100 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:02:53 +00:00
Joshua Drake
dd5e7f9286
merge in my wacky cve-2010-2709 work
...
git-svn-id: file:///home/svn/framework3/trunk@12099 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:55:52 +00:00
Joshua Drake
1460d161da
add exploit for cve-2010-1552
...
git-svn-id: file:///home/svn/framework3/trunk@12098 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:47:20 +00:00
Joshua Drake
11e442ed47
add exploit for cve-2010-1964
...
git-svn-id: file:///home/svn/framework3/trunk@12097 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:45:48 +00:00
Joshua Drake
6920376237
add exploit for cve-2010-1961
...
git-svn-id: file:///home/svn/framework3/trunk@12096 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:44:55 +00:00
Joshua Drake
46cd08e1aa
add exploit for cve-2010-1960
...
git-svn-id: file:///home/svn/framework3/trunk@12095 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:43:25 +00:00
David Rude
ea47253814
Changed title for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@12093 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 14:24:48 +00:00
Steve Tornio
89ec6ab5da
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12092 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 11:19:45 +00:00
David Rude
8233030184
opps removed mixin require as well
...
git-svn-id: file:///home/svn/framework3/trunk@12091 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 04:41:48 +00:00
David Rude
f8534f06dd
opps removed mixin reference =)
...
git-svn-id: file:///home/svn/framework3/trunk@12090 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 04:40:38 +00:00
David Rude
d7266b6551
Add CVE-2011-0609 exploit for Adobe Flash
...
git-svn-id: file:///home/svn/framework3/trunk@12089 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 04:31:48 +00:00
Wei Chen
422e5ae7b1
gone.
...
git-svn-id: file:///home/svn/framework3/trunk@12088 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:45:01 +00:00
Wei Chen
c8ca48388d
filenamed fix
...
git-svn-id: file:///home/svn/framework3/trunk@12085 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:37:18 +00:00
Wei Chen
1a34d81aab
Added CVE-2010-2703
...
git-svn-id: file:///home/svn/framework3/trunk@12083 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:23:06 +00:00
Wei Chen
92d52daea8
Added NNM webappmon.exe OvJavaLocale overflow
...
git-svn-id: file:///home/svn/framework3/trunk@12082 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:21:56 +00:00
Wei Chen
74e0d2f43e
Added HP NNM nnmRptConfig nameParams overflow
...
git-svn-id: file:///home/svn/framework3/trunk@12081 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:20:24 +00:00
Carlos Perez
1a27e6694f
Changed order of description for loot file to make identifying cleanup resource files in loot easier.
...
git-svn-id: file:///home/svn/framework3/trunk@12080 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:12:43 +00:00
Carlos Perez
0ea46afa75
Migration of getgui script to post module enable_rdp
...
git-svn-id: file:///home/svn/framework3/trunk@12079 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:11:04 +00:00
Carlos Perez
735711ae01
Typo of the variable that has the data.
...
git-svn-id: file:///home/svn/framework3/trunk@12078 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 02:59:51 +00:00
Mario Ceballos
3f7e3ee93f
added auxiliary module igss_exec_17.rb
...
git-svn-id: file:///home/svn/framework3/trunk@12077 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 01:58:09 +00:00
Carlos Perez
a5c3987b33
Multi Console Command script migrated to post module. Now names run_console_rc_file. Will read and execute meterpreter console commands found in a given resource file.
...
git-svn-id: file:///home/svn/framework3/trunk@12074 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 23:04:41 +00:00
Carlos Perez
cffe667c71
Multi command script migrated to post module, supports *nix system and both shell and meterpreter. Will run commands in a given resource file.
...
git-svn-id: file:///home/svn/framework3/trunk@12073 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 22:59:01 +00:00
David Rude
139102de80
Removed testing file extension
...
git-svn-id: file:///home/svn/framework3/trunk@12068 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 17:24:16 +00:00
David Rude
23d89cd137
Added drb syscall exploit
...
git-svn-id: file:///home/svn/framework3/trunk@12067 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 16:09:03 +00:00
Tod Beardsley
46dfafa81f
Fixes #3987 . Don't raise on the attr set, raise when the command actually wants to get run.
...
git-svn-id: file:///home/svn/framework3/trunk@12063 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 20:52:08 +00:00
HD Moore
99d9dc69cd
Merge in cookie support from paulino calderon
...
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 04:59:02 +00:00
Carlos Perez
68374e11ef
small typo
...
git-svn-id: file:///home/svn/framework3/trunk@12051 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:35:12 +00:00
Carlos Perez
7648ab6e5f
forgot options descriptions
...
git-svn-id: file:///home/svn/framework3/trunk@12050 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:30:27 +00:00
Carlos Perez
c7989fff39
Migrate script migrated to post module.
...
git-svn-id: file:///home/svn/framework3/trunk@12049 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:27:36 +00:00
Carlos Perez
d45969a381
Mubix migration and enhancement of the vnc password script
...
git-svn-id: file:///home/svn/framework3/trunk@12048 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:18:34 +00:00
James Lee
95633f7c3d
store_loot in gather/env
...
git-svn-id: file:///home/svn/framework3/trunk@12046 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:31:05 +00:00
HD Moore
c679de9d7a
Closes #3976 by merging in an ARM adduser payload from Jonathan Salwan
...
git-svn-id: file:///home/svn/framework3/trunk@12045 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:26:14 +00:00
Carlos Perez
92e749f6ff
USB Drive history enumeration script contributed by nebulus
...
git-svn-id: file:///home/svn/framework3/trunk@12044 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:23:32 +00:00
Carlos Perez
3fca6a4225
Migration of dumplinks script to dumplinks post module
...
git-svn-id: file:///home/svn/framework3/trunk@12043 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:22:44 +00:00
Tod Beardsley
42dd4fa717
Allow for duplicates for vnc_login since there's no username.
...
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 18:10:49 +00:00
Carlos Perez
5b8c2007c8
Migration of credcollector script to credential_collector post module
...
git-svn-id: file:///home/svn/framework3/trunk@12036 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:42:37 +00:00
Carlos Perez
71fd7136ae
Forgot to update descriptions of the options set
...
git-svn-id: file:///home/svn/framework3/trunk@12035 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:36:28 +00:00
Carlos Perez
9cb690b9e3
ARP Scanner script migrated to Post Module
...
git-svn-id: file:///home/svn/framework3/trunk@12034 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:28:35 +00:00
James Lee
8db83e406e
try to find wow64 installs. also fixes a problem where blank lines were printed when no DisplayName was found
...
git-svn-id: file:///home/svn/framework3/trunk@12021 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:46:01 +00:00
James Lee
db9c9c625f
:host can't be a peerhost (contains the port as well). report will just figure it out if you use a Session object, though
...
git-svn-id: file:///home/svn/framework3/trunk@12020 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:21:56 +00:00
Joshua Drake
586c1f9305
oops, broke the LIBPATH option
...
git-svn-id: file:///home/svn/framework3/trunk@12015 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 01:18:18 +00:00
Joshua Drake
f4fe3f11b0
enable bind payloads, thx hdm :)
...
git-svn-id: file:///home/svn/framework3/trunk@12014 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:52:58 +00:00
Steve Tornio
4992deed21
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12013 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:16:06 +00:00
Joshua Drake
fb6107ffb5
enable java payloads, currently via one-off method
...
git-svn-id: file:///home/svn/framework3/trunk@12012 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 23:57:11 +00:00
Tod Beardsley
f2057f54a8
De-dup'ed get_link_filter() in the crawler module. Added some comment
...
docs on crawler_process_page(). Nothing exciting.
git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
David Rude
36b83cde6f
Added exploit for CVE-2010-3747 RealPlayer CDDA URI Code Execution
...
git-svn-id: file:///home/svn/framework3/trunk@12009 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 15:42:28 +00:00
David Rude
382e63e16e
fixed a typo in javascript
...
git-svn-id: file:///home/svn/framework3/trunk@12007 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 04:40:36 +00:00
Carlos Perez
a5e899cb04
Fix loading problem on one of the test boxes
...
git-svn-id: file:///home/svn/framework3/trunk@12003 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 00:10:07 +00:00
Carlos Perez
6a1acd6a54
small typo
...
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Carlos Perez
4031daa1fb
update modules to use is_system? to ensure SID is used to verify when running in certain languages in Windows
...
git-svn-id: file:///home/svn/framework3/trunk@11999 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:54:40 +00:00
Joshua Drake
5bfd574029
fix parse error
...
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude
c5ce597483
removing coldfusion until some general code fixes can be applied
...
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Tod Beardsley
d289aa8733
Another touchup on author credit for oracle-brute NSE script integration.
...
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:05:09 +00:00
Wei Chen
5800608356
Not ready to be part of msf repo, killing it
...
git-svn-id: file:///home/svn/framework3/trunk@11993 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 20:42:56 +00:00
HD Moore
f317d60e04
Fix a few cosmetic issues with the kingview module
...
git-svn-id: file:///home/svn/framework3/trunk@11991 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 18:04:15 +00:00
Wei Chen
26bee16b5c
I should probably add myself as an author.
...
git-svn-id: file:///home/svn/framework3/trunk@11990 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:45:12 +00:00
Carlos Perez
8d1b37a452
save hashes to DB
...
git-svn-id: file:///home/svn/framework3/trunk@11989 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:26:49 +00:00
Carlos Perez
cb9abd8b13
saved sha1 instead of the proper hash, major typo on my part
...
git-svn-id: file:///home/svn/framework3/trunk@11988 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:19:37 +00:00
Mario Ceballos
dfd2df6b47
puts this in the appropiate place
...
git-svn-id: file:///home/svn/framework3/trunk@11987 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:22:07 +00:00
Steve Tornio
78d4822d27
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11986 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:15:54 +00:00
David Rude
eeb1aae9d0
Added Japanese NO NX Target
...
git-svn-id: file:///home/svn/framework3/trunk@11985 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 07:58:50 +00:00
Joshua Drake
4a1e59be8d
oops =D
...
git-svn-id: file:///home/svn/framework3/trunk@11983 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 05:01:29 +00:00
Joshua Drake
4644110962
add exploit for cve-2010-4452, currently windows only and no payloads :(
...
git-svn-id: file:///home/svn/framework3/trunk@11982 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 04:50:25 +00:00
Wei Chen
7308a032f9
Added kingview historysvr exploit. by rick2600 & Dillon.
...
git-svn-id: file:///home/svn/framework3/trunk@11980 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:46:20 +00:00
Tod Beardsley
c6a9a6efd7
Am I really updating for a misplaced comment? Why yes I am!
...
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:45:29 +00:00
Wei Chen
e1ff12292f
wrong directory
...
git-svn-id: file:///home/svn/framework3/trunk@11978 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:44:50 +00:00
Wei Chen
36c05de02e
Added kingview historysvr exploit. By rick2600 and Dillon.
...
git-svn-id: file:///home/svn/framework3/trunk@11977 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:39:45 +00:00
Tod Beardsley
424eb1f192
Adding a reference to NSE as well.
...
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:26:20 +00:00
Tod Beardsley
9b431c0c8d
Adding Patrik Karlsson as an author for the nmap nse script
...
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:19:57 +00:00
Mario Ceballos
6d3d0adf93
added exploit module coldfusion_traversal.rb from webDEViL
...
git-svn-id: file:///home/svn/framework3/trunk@11974 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 01:38:16 +00:00
Tod Beardsley
ecb89c785b
Actually use the API for appending command line arguments for nmap.
...
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:59:35 +00:00
Steve Tornio
abcce881b2
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11969 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:56:11 +00:00
Mario Ceballos
8189a1f7a9
added exploit module hp_openview_insight_backdoor.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11968 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:22:07 +00:00
Tod Beardsley
5e715c22db
Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist.
...
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:16:18 +00:00
Tod Beardsley
292f357f7a
Moving requires from oracle_login to nmap. Duh.
...
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 20:46:03 +00:00
James Lee
7d12151ec6
add support for http digest authentication. fixes #2504 , thanks oliver kleinecke for the patch!
...
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
Tod Beardsley
6e0e23f5ba
Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions.
...
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:13:57 +00:00
Tod Beardsley
f568b3e0d8
Normalize the print_status banners for sid_brute
...
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 18:25:34 +00:00
Tod Beardsley
70127c09fb
Fixes #3939 by setting the racket bits correctly.
...
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 15:58:17 +00:00
Tod Beardsley
03f227817e
blarg lost a commit in there.
...
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:41:46 +00:00
Tod Beardsley
b8b175fd5c
See #3941 . Don't report the same thing a billion times.
...
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:34:19 +00:00
Steve Tornio
45e29834be
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11955 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 12:01:55 +00:00
David Rude
76ee9353aa
changed exploit ranking to better reflect the privileges required
...
git-svn-id: file:///home/svn/framework3/trunk@11954 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 10:54:13 +00:00
David Rude
a63534107b
minor style fix
...
git-svn-id: file:///home/svn/framework3/trunk@11953 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:57:51 +00:00
David Rude
994e6eb450
Exploit for Foxit PDF Reader createDataObject() file write vulnerability
...
git-svn-id: file:///home/svn/framework3/trunk@11952 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:36:33 +00:00
Wei Chen
15f52a2e6b
Updated: Make sure sqlite3 is supported before executing SQL queries
...
git-svn-id: file:///home/svn/framework3/trunk@11949 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 00:11:06 +00:00
Tod Beardsley
b68396351a
See #3941 . This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it.
...
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.
Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.
Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.
git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 22:52:50 +00:00
Wei Chen
d8ff158855
Ported Sven Taute's enum_chrome.rb as a POST module. Modified output, saved log format, supports data dumping for x64 Windows, etc. Improvements still needed.
...
git-svn-id: file:///home/svn/framework3/trunk@11947 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 21:19:27 +00:00
HD Moore
5ab60f2966
Fixes #3938 by correcting the path for the filename
...
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 15:04:16 +00:00
Wei Chen
ed6f8b5a78
Updated: Made a slight adjustment to the code format
...
git-svn-id: file:///home/svn/framework3/trunk@11945 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:27:19 +00:00
Wei Chen
74aab1efe4
Added mr_me's kolibri web server head buffer overflow
...
git-svn-id: file:///home/svn/framework3/trunk@11944 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:18:36 +00:00
HD Moore
293a6f2ef4
Remove unused RHOST option and fix call to .id in ICMP
...
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 04:20:19 +00:00
HD Moore
09b3ecff33
Move the module to the correct location
...
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore
2578a0e16b
Correct formatting and API usage in the Majordomo2 module
...
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:17 +00:00
amaloteaux
78396e94f9
move linux meterpreter bin to the correct place
...
git-svn-id: file:///home/svn/framework3/trunk@11938 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:29:25 +00:00
amaloteaux
544fb61aa2
server capture smb will check for empty pass and not display on screen
...
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:27:22 +00:00
HD Moore
a69278710a
Commit an exploit for the Accellion File Transfer appliance default encryption key vulnerability.
...
git-svn-id: file:///home/svn/framework3/trunk@11935 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:37:23 +00:00
Steve Tornio
03cd23a2d0
remove extra osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:27:27 +00:00
David Rude
00c756ee27
Added patches from Chris John Riley for SAP aux scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:50:18 +00:00
David Rude
370c42736c
Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu
...
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:37:02 +00:00
amaloteaux
dce7dd13fe
type fix on psexec
...
git-svn-id: file:///home/svn/framework3/trunk@11926 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 18:46:58 +00:00
Tod Beardsley
8771b871da
Whitespace cleanup on sid_brute.rb, remove redundant target_host def.
...
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 16:55:08 +00:00
Jonathan Cran
79da0ead08
applying description update from zeknox -- thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@11923 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 05:36:17 +00:00
Tod Beardsley
e2af0510f6
wanged up the revision splat.
...
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:16:20 +00:00
Tod Beardsley
676fc22249
Fixes #3927 . Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does.
...
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:15:15 +00:00
Steve Tornio
4534c76882
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11907 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 02:21:36 +00:00
David Rude
45556f7470
.NET Runtime Optimization Service privilege escalation post module
...
git-svn-id: file:///home/svn/framework3/trunk@11904 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 00:29:59 +00:00
Mario Ceballos
631af16d9f
revert back.
...
git-svn-id: file:///home/svn/framework3/trunk@11900 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:48:39 +00:00
Tod Beardsley
42531e097f
Fixes #3916 . Adds a module for mysql delivery of a payload via a UDF, using Bernardo's quite excellent UDF libraries.
...
git-svn-id: file:///home/svn/framework3/trunk@11899 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:42:26 +00:00
Mario Ceballos
54382c6080
patch recieved from Peter Van Eeckhout
...
git-svn-id: file:///home/svn/framework3/trunk@11898 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:23:13 +00:00
HD Moore
5299bbb8db
Add ip/port prefixes to the jboss scanner
...
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux
5f6995e8d3
enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
...
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
David Rude
695963dde7
Fixed references
...
git-svn-id: file:///home/svn/framework3/trunk@11888 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 02:28:15 +00:00
David Rude
b51c9f8397
oops forgot a , =)
...
git-svn-id: file:///home/svn/framework3/trunk@11887 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:42:37 +00:00
David Rude
6dc0596870
Added Novell iPrint GetDriverSettings <= 5.52 exploit from mr_me thanks
...
git-svn-id: file:///home/svn/framework3/trunk@11886 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:27:06 +00:00
David Rude
cdba0d532c
Adds a ret for Windows Server 2003 thanks to securityxxpert
...
git-svn-id: file:///home/svn/framework3/trunk@11882 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 21:00:57 +00:00
James Lee
5299692fc9
fix a typo (thanks to privmode for pointing out), and incorrect host arg for store_loot. fixes #3897
...
git-svn-id: file:///home/svn/framework3/trunk@11881 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 20:21:12 +00:00
David Rude
921a181ac0
Adds a Firefox post module to collect credentials and cookies
...
git-svn-id: file:///home/svn/framework3/trunk@11879 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 02:57:32 +00:00
David Rude
0663564efc
Fixed up some minor bugs, loot converted to csv for parsing
...
git-svn-id: file:///home/svn/framework3/trunk@11878 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 16:59:35 +00:00
David Rude
fafb7debcc
fixes some minor bugs
...
git-svn-id: file:///home/svn/framework3/trunk@11876 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 15:38:01 +00:00
Joshua Drake
dee18a8995
add office 2007 msxml5 targets from SAHA! THX
...
git-svn-id: file:///home/svn/framework3/trunk@11875 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 08:39:48 +00:00
Joshua Drake
d682069aec
add cve-2010-4566 exploit from Erwin Paternotte
...
git-svn-id: file:///home/svn/framework3/trunk@11873 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 20:51:12 +00:00
David Rude
657c7c55a9
Added a require for msf/core/post/file
...
git-svn-id: file:///home/svn/framework3/trunk@11872 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:43:30 +00:00
amaloteaux
d4d475e9d3
small fix on filezilla_server_cred.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11871 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:32:46 +00:00
HD Moore
3ad7cd61e5
Remove the exploit_module= assignment until this feature is completed
...
git-svn-id: file:///home/svn/framework3/trunk@11870 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:59:51 +00:00
David Rude
f79cfa13a3
Adding post module for collecting FileZilla FTP Server ftp user and admin interface credentials
...
git-svn-id: file:///home/svn/framework3/trunk@11869 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:00:55 +00:00
Joshua Drake
c29bca4fb8
add keywords, oops
...
git-svn-id: file:///home/svn/framework3/trunk@11868 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:47 +00:00
Joshua Drake
c7f6324fbd
add cve-2011-0404 exploit from Evan
...
git-svn-id: file:///home/svn/framework3/trunk@11867 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:24 +00:00
Mario Ceballos
94d21dde8e
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:54:03 +00:00
Mario Ceballos
5e60545446
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:35:31 +00:00
David Rude
2a90817b80
Fixes more style and API usage issues
...
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 18:46:00 +00:00
David Rude
27ba761cd3
Fixed indentation of the cldap_payload
...
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 14:01:04 +00:00
David Rude
6c1f49e73d
Added Wireshark Auxiliary DoS module from joernchen
...
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 13:44:41 +00:00
David Rude
37e9ad1ed4
Added SAP Management Console auxiliary scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 10:18:31 +00:00
HD Moore
2dbbdc18dd
Explicitly yield to other threads after each request, reducing the chance that this module will eat all cycles.
...
git-svn-id: file:///home/svn/framework3/trunk@11857 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 05:03:20 +00:00
David Rude
0afc75e19b
post module for FileZilla FTP Client credential collection
...
git-svn-id: file:///home/svn/framework3/trunk@11856 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 04:11:12 +00:00
HD Moore
261ab6c014
Fix stack trace when parsing silc account settings, cosmetic and style tweaks
...
git-svn-id: file:///home/svn/framework3/trunk@11854 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 15:14:49 +00:00
David Rude
dcfd46e3d6
Added Carlos Perez credits from the original meterpreter script.
...
git-svn-id: file:///home/svn/framework3/trunk@11853 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 07:31:26 +00:00
David Rude
04e2d7a829
more style fixes =)
...
git-svn-id: file:///home/svn/framework3/trunk@11851 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 05:02:33 +00:00
David Rude
4d4c760e81
style fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11850 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:54:50 +00:00
David Rude
1e33520a86
post module for pidgin credential collection conversion of get_pidgin_creds
...
git-svn-id: file:///home/svn/framework3/trunk@11849 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:02:54 +00:00
HD Moore
77c5f02d4d
Call the correct version of the report_auth_info() method (this one takes into account workspace)
...
git-svn-id: file:///home/svn/framework3/trunk@11847 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:55:56 +00:00
HD Moore
e7dbf28626
This patch adds a register_parent() method to the module class, making it easy to propogate things like ParentUUID, Workspace, and Owner down. The multi/handler post modules were updated to use this new api. This fixes an issue where the session generated by a post module would be registered to the wrong workspace.
...
git-svn-id: file:///home/svn/framework3/trunk@11846 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:24:35 +00:00
HD Moore
f49e040a96
This patch adds a ListenerTimeout option to multi/handler that sets a maximum wait time for sessions. This is useful to prevent leftover background handlers by unsuccessful or misconfigured post modules.
...
git-svn-id: file:///home/svn/framework3/trunk@11845 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 03:22:40 +00:00
HD Moore
c9c3ef4933
Port the screen unlocker to a post module
...
git-svn-id: file:///home/svn/framework3/trunk@11836 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 05:56:01 +00:00
HD Moore
9bc2a2cd3a
Store keystrokes as loot
...
git-svn-id: file:///home/svn/framework3/trunk@11835 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:54:45 +00:00
HD Moore
8a5f7c448f
Fix typos in the original module
...
git-svn-id: file:///home/svn/framework3/trunk@11834 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:27:49 +00:00
HD Moore
9a54bc0a95
Fix a typo in the original module
...
git-svn-id: file:///home/svn/framework3/trunk@11833 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:23:06 +00:00
HD Moore
d19ab712c4
Quick typo fix
...
git-svn-id: file:///home/svn/framework3/trunk@11831 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:49:25 +00:00
HD Moore
b700ed2075
Cosmetic cleanup of post modules
...
git-svn-id: file:///home/svn/framework3/trunk@11830 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:47:40 +00:00
HD Moore
880ffeb1f7
This updates the (C) for 2011, adds a CustomPrintPrefix option to set a unique prefix for a module and cleans up some post modules
...
git-svn-id: file:///home/svn/framework3/trunk@11828 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:02:34 +00:00
HD Moore
8c01560ade
Store enumerated data as loot
...
git-svn-id: file:///home/svn/framework3/trunk@11826 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:48:03 +00:00
HD Moore
4c4ae90daf
Consistency fix
...
git-svn-id: file:///home/svn/framework3/trunk@11825 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:04:52 +00:00
HD Moore
f79f704a68
Make the post module titles consist
...
git-svn-id: file:///home/svn/framework3/trunk@11824 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:00:33 +00:00
Carlos Perez
b712be8949
Secure deleting of temporary screencapture files on targets using srm
...
git-svn-id: file:///home/svn/framework3/trunk@11823 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 00:43:23 +00:00
Carlos Perez
f75bd0498f
corrected description of action
...
git-svn-id: file:///home/svn/framework3/trunk@11821 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 21:05:53 +00:00
Tod Beardsley
57966c66d8
This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins.
...
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 20:42:14 +00:00
Tod Beardsley
5f70c705c1
Committing the Kippo ssh honeypot detection as seen at AHA!.
...
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 13:57:26 +00:00
Carlos Perez
7050bbc0ce
Forgot to uncomment the sections while debuging
...
git-svn-id: file:///home/svn/framework3/trunk@11816 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 11:57:12 +00:00
Carlos Perez
1c812149b2
Add support to enumerate and download OS X keychain files
...
git-svn-id: file:///home/svn/framework3/trunk@11815 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 01:37:00 +00:00
Carlos Perez
a4b6994e46
update to capture all history file on home folder, screncapture will now capture all loginwindow processes if root and it will download .ssh and .gnupg files for all users if running as root
...
git-svn-id: file:///home/svn/framework3/trunk@11814 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 23:13:12 +00:00
James Lee
aea8192c7f
apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\!
...
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 21:47:52 +00:00
James Lee
5d42ed4552
more descriptive name and description
...
git-svn-id: file:///home/svn/framework3/trunk@11803 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 04:42:02 +00:00
Mario Ceballos
aa859e2f68
force ordinal payload
...
git-svn-id: file:///home/svn/framework3/trunk@11799 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 00:58:54 +00:00
Joshua Drake
8ef05017b8
style compliance fixes, naughty naughty
...
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
Carlos Perez
31d4d335f9
Fixed typos and Regex for clean installs of the OS
...
git-svn-id: file:///home/svn/framework3/trunk@11795 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:11:27 +00:00
James Lee
5c87a5db9c
more descriptive, standard naming
...
git-svn-id: file:///home/svn/framework3/trunk@11794 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 18:07:26 +00:00
Carlos Perez
7e2fb81cb5
Initial set of OSX Shell Post modules for general basic enumeration and for dumping hashes (SHA, LM and NTLM) for OSX 10.4 and above
...
git-svn-id: file:///home/svn/framework3/trunk@11792 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 14:00:47 +00:00
et
dd05954b34
Fix wmap to test parameters, error inj. module as example
...
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
James Lee
4b4ed6edbe
un-truncate a comment and make sure we didn't append a . to the buffer
...
git-svn-id: file:///home/svn/framework3/trunk@11788 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 01:59:17 +00:00
Steve Tornio
13809850a3
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-19 13:35:57 +00:00
Matt Weeks
c322534907
Add exploit for CVE-2010-3765, firefox interleaved document.write and appendChild calls.
...
git-svn-id: file:///home/svn/framework3/trunk@11773 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-18 02:23:10 +00:00
Joshua Drake
160c683f18
Add WbemExec mixin, modify MS10-061 to use MOF technique
...
git-svn-id: file:///home/svn/framework3/trunk@11766 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:22:11 +00:00
Joshua Drake
8b4ef42fa3
randomize name string
...
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:21:24 +00:00
Joshua Drake
2ef3e79c3d
add cve/bid refs
...
git-svn-id: file:///home/svn/framework3/trunk@11764 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 14:41:48 +00:00
Joshua Drake
41f0c2eaa5
typo
...
git-svn-id: file:///home/svn/framework3/trunk@11762 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 03:56:15 +00:00
Joshua Drake
7365ca9509
add aux module to trigger browser election DoS
...
git-svn-id: file:///home/svn/framework3/trunk@11756 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-16 18:12:28 +00:00
Joshua Drake
7fb3094bb0
remove "File" from title
...
git-svn-id: file:///home/svn/framework3/trunk@11746 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-12 22:30:54 +00:00
Matt Weeks
b241fc1530
Add service permissions escalate post module.
...
git-svn-id: file:///home/svn/framework3/trunk@11739 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-10 17:34:09 +00:00
Joshua Drake
8c8b181ffb
Update ms11_xxx modules to reflect bulletin release, minor style fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11730 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 23:31:44 +00:00
Joshua Drake
dafeecdc96
Small fix from Dan Rosenberg
...
git-svn-id: file:///home/svn/framework3/trunk@11725 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 18:22:36 +00:00
Joshua Drake
7d72db3e8e
More updates from Dan Rosenburg -- Works with DEP now!
...
git-svn-id: file:///home/svn/framework3/trunk@11724 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:50:05 +00:00
HD Moore
070f48e16a
Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address
...
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:32:37 +00:00
et
baab86fc52
WMAP 1.0 and first pass on some modules
...
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 05:57:26 +00:00
Tod Beardsley
3f1ceea349
Fixes #3655 . Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters.
...
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:54:32 +00:00
James Lee
16fad17453
snmp_enum improvements from Kashif Iftikhar, fixes #3654
...
git-svn-id: file:///home/svn/framework3/trunk@11706 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:26:23 +00:00
Joshua Drake
e06d4d52fe
convert VLC module to FileFormat, adjust spray
...
git-svn-id: file:///home/svn/framework3/trunk@11705 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-03 18:16:40 +00:00
Joshua Drake
acf9b2088d
remove half-browser half-fileformat /misc/ version, but preserve differences in comments in fileformat version
...
git-svn-id: file:///home/svn/framework3/trunk@11701 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 21:47:02 +00:00
Jonathan Cran
5b5e7028ad
quick mod from daniel clemens to show the ip with the url
...
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 19:04:54 +00:00
Tod Beardsley
671659841b
On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
...
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley
e31f35e3ae
Fixes #3643 . These modules now report_vuln() correctly.
...
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley
99b1703416
Trailing comma on cisco_ios_auth_bypass
...
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:07:31 +00:00
Tod Beardsley
cec851a5ed
Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references.
...
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:06:40 +00:00
Joshua Drake
3ac076c20a
add exploit for VLC media player WebM processing from Dan Rosenburg
...
git-svn-id: file:///home/svn/framework3/trunk@11692 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-01 18:54:24 +00:00
Joshua Drake
2c93910f4b
switch to .html per reports of brokennes
...
git-svn-id: file:///home/svn/framework3/trunk@11683 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-31 06:18:13 +00:00
HD Moore
ac651fba6b
Merge code from Alexandre Maloteaux, fixes #3615
...
git-svn-id: file:///home/svn/framework3/trunk@11678 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-30 19:26:35 +00:00
James Lee
3d94cd7d22
cut down on some of the copy-paste
...
git-svn-id: file:///home/svn/framework3/trunk@11664 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-29 01:55:47 +00:00
James Lee
a10a94d373
report configured shares in the same way as modules/auxiliary/scanner/smb/smb_enumshares.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11663 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-29 00:37:13 +00:00
Joshua Drake
a62f1922b3
fix typos, lol?
...
git-svn-id: file:///home/svn/framework3/trunk@11662 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-28 23:56:35 +00:00
Joshua Drake
9682091cca
Add SQLI version of MSSQL Payload from Rodrigo Marcos!
...
git-svn-id: file:///home/svn/framework3/trunk@11655 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:48:07 +00:00
Joshua Drake
89a731b789
Prevent trying to call .map on nil
...
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:39:19 +00:00
Joshua Drake
21d93be897
Add fix for WOW64 from ReL1k
...
git-svn-id: file:///home/svn/framework3/trunk@11650 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 16:26:08 +00:00
Joshua Drake
23808d19cd
See #3531 , Apply fix from Chao Mu
...
git-svn-id: file:///home/svn/framework3/trunk@11649 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 15:55:35 +00:00
James Lee
d2670d52ec
add BufferRegister and BufferOffset support for shikata_ga_nai. see #3563 . tested this pretty extensively. /me crosses fingers
...
git-svn-id: file:///home/svn/framework3/trunk@11646 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 04:24:41 +00:00
Joshua Drake
c9d3d60b23
Rework external command invocation
...
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake
a0a8ea8cbd
re-order includes a bit
...
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 21:32:59 +00:00
Carlos Perez
05fd7b4e57
Patch for railgun and post mixin; and module from cha-mou to add capability to delete users on windows hosts.
...
git-svn-id: file:///home/svn/framework3/trunk@11638 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 13:02:35 +00:00
HD Moore
3794ed35cc
Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk:
...
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf
git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:24:37 +00:00
Joshua Drake
d9fe9da849
add DoS module from Paulino Calderon
...
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 00:11:41 +00:00
natron
1be3448959
svn propset
...
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:21:08 +00:00
natron
bb4343bf63
Add new domain user enumeration aux mod. Still needs an update to include db reporting.
...
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:14:57 +00:00
Joshua Drake
81ff9483bf
add ms09-004 exploit via sql injection from Rodrigo Marcos
...
git-svn-id: file:///home/svn/framework3/trunk@11631 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 19:37:58 +00:00
Joshua Drake
29b03701d1
Fixes #3531 , Use new accounts mixin to resolve SID->Account Names
...
git-svn-id: file:///home/svn/framework3/trunk@11630 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:25:52 +00:00
Joshua Drake
0af8915fd5
Fixes #1936 , Add accounts mixin and accompanying post module
...
git-svn-id: file:///home/svn/framework3/trunk@11629 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:23:48 +00:00
James Lee
d7cda0f85a
accept a client argument for get_uri()
...
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:16:57 +00:00
Joshua Drake
80eb7bad52
Fixes #3257 , Adds two mod_negotiation scanner modules from DiabloHorn
...
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Tod Beardsley
aeb1f684c0
Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs).
...
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:24:03 +00:00
Joshua Drake
ae33e3ac71
Fixes #3571 , normalize 2k3r2 and fix language defaulting
...
git-svn-id: file:///home/svn/framework3/trunk@11614 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 04:09:48 +00:00
Joshua Drake
a944cbc50d
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11612 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:40:47 +00:00
Joshua Drake
e821f7e757
Fixes #3567 , apply patch to make ports/payloads configurable
...
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:32:18 +00:00
James Lee
f3bda46333
doesn't work on IE8, fixes #3566 , thanks Hauke Mehrtens for the patch
...
git-svn-id: file:///home/svn/framework3/trunk@11610 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 19:30:59 +00:00
Joshua Drake
362c409623
Fixes #3554 , add missing variable to published_applications (from published_bruteforce), some clean ups
...
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 00:22:21 +00:00
Joshua Drake
be0169cef1
add android file snarfer exploit
...
git-svn-id: file:///home/svn/framework3/trunk@11601 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-19 18:04:54 +00:00
Joshua Drake
41e43b557c
Rename to MSXX format, add references
...
git-svn-id: file:///home/svn/framework3/trunk@11598 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 17:19:17 +00:00
Joshua Drake
667d7aacea
add keywords, some references
...
git-svn-id: file:///home/svn/framework3/trunk@11597 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 00:36:45 +00:00
Joshua Drake
680625ff2d
add exploit for cve-2010-2743
...
git-svn-id: file:///home/svn/framework3/trunk@11596 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 00:33:05 +00:00
Tod Beardsley
1d7745d449
Add some tracking datastore objects (ParentUUID and AutopwnUUID) to browser_autopwn.rb's exploits and multi/handlers to make exploit tracking a little easier.
...
git-svn-id: file:///home/svn/framework3/trunk@11592 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-17 22:15:22 +00:00
Joshua Drake
b6b9b83dd7
add CVE reference
...
git-svn-id: file:///home/svn/framework3/trunk@11579 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-14 16:25:37 +00:00
James Lee
f2661e68db
don't respond with 404's for requests that don't match the URIPATH exactly. allows for more generic hash stealing and fixes 3442
...
git-svn-id: file:///home/svn/framework3/trunk@11576 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 20:57:33 +00:00
Carlos Perez
3c8501cd82
Keylogrecorder script migrated in to post module keylog_recorder
...
git-svn-id: file:///home/svn/framework3/trunk@11570 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 02:44:22 +00:00
Joshua Drake
166b4d3250
whitespace
...
git-svn-id: file:///home/svn/framework3/trunk@11568 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 00:14:44 +00:00
Carlos Perez
1f4d36b758
removed spaces
...
git-svn-id: file:///home/svn/framework3/trunk@11566 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:25:00 +00:00
Carlos Perez
3fc76be37c
removed spaces
...
git-svn-id: file:///home/svn/framework3/trunk@11565 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:24:46 +00:00
Carlos Perez
c6c5488a04
changed threading
...
git-svn-id: file:///home/svn/framework3/trunk@11564 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:24:17 +00:00
Carlos Perez
0a111ee265
get_valid_community migrated to post module and expanded. Now enum_snmp
...
git-svn-id: file:///home/svn/framework3/trunk@11563 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:22:41 +00:00
James Lee
9887e4cc08
fix header comments
...
git-svn-id: file:///home/svn/framework3/trunk@11560 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 18:29:56 +00:00
James Lee
3781b3e912
fix header comments
...
git-svn-id: file:///home/svn/framework3/trunk@11559 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 18:11:24 +00:00
Carlos Perez
6599e0638e
Fixed small indent
...
git-svn-id: file:///home/svn/framework3/trunk@11558 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 17:36:58 +00:00
Carlos Perez
50d4f35601
fixed indenting
...
git-svn-id: file:///home/svn/framework3/trunk@11557 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 17:33:46 +00:00
Carlos Perez
0cfc2f8e45
get_application_list script migrated in to post module enum_applications
...
git-svn-id: file:///home/svn/framework3/trunk@11556 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 03:55:19 +00:00
Carlos Perez
2af5907220
enum_powershell_env script migrated in to post module
...
git-svn-id: file:///home/svn/framework3/trunk@11555 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 02:31:13 +00:00
Carlos Perez
f2a211cabc
checkvm script migrated in to post module
...
git-svn-id: file:///home/svn/framework3/trunk@11554 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 02:16:06 +00:00
Carlos Perez
f7af7924c0
Update windows/registry mixin path for module import
...
git-svn-id: file:///home/svn/framework3/trunk@11551 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 00:11:43 +00:00
Carlos Perez
212e38a3d7
Migrated enum_shares script to module
...
git-svn-id: file:///home/svn/framework3/trunk@11549 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 22:31:37 +00:00
Carlos Perez
3daaaf0c7e
Keywords and formatting
...
git-svn-id: file:///home/svn/framework3/trunk@11548 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 22:30:40 +00:00
Joshua Drake
ffbea6199f
Do not wait for the DCERPC call to timeout
...
git-svn-id: file:///home/svn/framework3/trunk@11545 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 17:56:27 +00:00
Carlos Perez
b9e31bdfb9
migrated enum logged on users script to module
...
git-svn-id: file:///home/svn/framework3/trunk@11540 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 02:02:11 +00:00
James Lee
88eb09ac66
more renaming fail from #3478
...
git-svn-id: file:///home/svn/framework3/trunk@11538 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 21:36:42 +00:00
Joshua Drake
14617450d0
catch connection errors
...
git-svn-id: file:///home/svn/framework3/trunk@11537 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 20:03:53 +00:00
Joshua Drake
b9836dcf50
fix success detection read loop
...
git-svn-id: file:///home/svn/framework3/trunk@11535 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 19:40:39 +00:00
Joshua Drake
1604b5616f
apply some more changes from Konrads
...
git-svn-id: file:///home/svn/framework3/trunk@11533 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 14:34:24 +00:00
Joshua Drake
1e951f6245
fix check method
...
git-svn-id: file:///home/svn/framework3/trunk@11526 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:53 +00:00
Joshua Drake
db1f63eb1a
remove stray comma
...
git-svn-id: file:///home/svn/framework3/trunk@11525 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:24 +00:00
Joshua Drake
d832296e7d
minor cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@11524 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:10 +00:00
Joshua Drake
0b43172413
add exploit for cve-2006-5815, oldy but often requested!
...
git-svn-id: file:///home/svn/framework3/trunk@11523 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:23:25 +00:00
Joshua Drake
739604ea12
Fixes #3469 , silly typo
...
git-svn-id: file:///home/svn/framework3/trunk@11520 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 05:58:55 +00:00
Joshua Drake
9ef757bf17
Fixes #3387 , add the PACKAGE option to allow 3.2
...
git-svn-id: file:///home/svn/framework3/trunk@11518 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 04:11:01 +00:00
Joshua Drake
d994f595fe
remove unused vars
...
git-svn-id: file:///home/svn/framework3/trunk@11517 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:59:10 +00:00
Joshua Drake
287f4c87fe
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:13:26 +00:00
Joshua Drake
af79f5c0ea
add description, references, etc
...
git-svn-id: file:///home/svn/framework3/trunk@11515 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:12:15 +00:00
Joshua Drake
08f3f44f98
allow bypassuac to work on x64 or x86, allow payload selection, cleanup indents
...
git-svn-id: file:///home/svn/framework3/trunk@11514 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 00:43:01 +00:00
Joshua Drake
19e8a6a5b1
switch AutoRunScript for InitialAutoRunScript, oops
...
git-svn-id: file:///home/svn/framework3/trunk@11513 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 00:25:44 +00:00
Joshua Drake
452ab6f301
updated description
...
git-svn-id: file:///home/svn/framework3/trunk@11506 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:51:34 +00:00
Joshua Drake
f7e70e8d42
add an automatic target and now includes Office XP SP3
...
git-svn-id: file:///home/svn/framework3/trunk@11505 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:48:29 +00:00
James Lee
9c7d40b0b9
fix a namespace screwup
...
git-svn-id: file:///home/svn/framework3/trunk@11504 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:00:35 +00:00
James Lee
dfd9dd70e6
rename fail
...
git-svn-id: file:///home/svn/framework3/trunk@11503 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 16:59:02 +00:00
Mario Ceballos
a11f0d5e42
fixes a uninitialized constant Msf::Post::Registry warning
...
git-svn-id: file:///home/svn/framework3/trunk@11501 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 00:28:04 +00:00
James Lee
e10eb7d313
hashdump is windows specific
...
git-svn-id: file:///home/svn/framework3/trunk@11500 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 23:48:16 +00:00
James Lee
38a3b8a387
move windows-specific privesc modules into a windows/ directory, multi-platform mods into a multi/ dir, fixes #3448
...
git-svn-id: file:///home/svn/framework3/trunk@11499 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 22:33:36 +00:00
HD Moore
74bf5199f1
Patches from goony, fixes #3438
...
git-svn-id: file:///home/svn/framework3/trunk@11497 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:35:57 +00:00
James Lee
dbeae8df24
add support for running post modules from the meterpreter prompt. options are set in the same way as the -o arg to run, e.g. run post/escalate/bypassuac LHOST=192.168.0.1
...
git-svn-id: file:///home/svn/framework3/trunk@11496 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:28:00 +00:00
Joshua Drake
4ae8b8b14a
add snmp_set scanner from Matteo Cantoni ( Fixes #3437 ), remove executable property from enums
...
git-svn-id: file:///home/svn/framework3/trunk@11494 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:23:22 +00:00
James Lee
1ecb293010
pass the listener bind address through to handlers
...
git-svn-id: file:///home/svn/framework3/trunk@11493 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:18:24 +00:00
James Lee
152c380a13
remove an erroneous line to get rid of NameErrors, thanks ReL1K
...
git-svn-id: file:///home/svn/framework3/trunk@11490 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 20:23:29 +00:00
HD Moore
4971a0d7af
Add Skylined's "You Got Pwned" payload
...
git-svn-id: file:///home/svn/framework3/trunk@11485 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 17:34:09 +00:00
HD Moore
c003e4b8ef
Merge R3L1K's UAC bypass module into the trunk
...
git-svn-id: file:///home/svn/framework3/trunk@11483 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 16:59:25 +00:00
Jonathan Cran
a206ed8418
clarifying wmi tools are not installed by default
...
git-svn-id: file:///home/svn/framework3/trunk@11481 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 05:27:37 +00:00
Joshua Drake
bc7a8e3b47
fix silly merge conflict data in HTML
...
git-svn-id: file:///home/svn/framework3/trunk@11479 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-05 22:52:54 +00:00
James Lee
a79092a0d3
this is really unlimited, but bump it a bit for possible larger payloads later.
...
git-svn-id: file:///home/svn/framework3/trunk@11474 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 23:37:11 +00:00
Joshua Drake
f0202c3350
add MSFT advisory references
...
git-svn-id: file:///home/svn/framework3/trunk@11473 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 23:00:45 +00:00
James Lee
1735dc8cb2
add bid reference, thanks jjarmoc
...
git-svn-id: file:///home/svn/framework3/trunk@11472 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 22:08:33 +00:00
Joshua Drake
152eb80710
fix debug target, adjust File reference
...
git-svn-id: file:///home/svn/framework3/trunk@11469 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 16:55:58 +00:00
Steve Tornio
4a1f45c633
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11467 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 16:15:43 +00:00
Joshua Drake
4fc19971ae
add exploit for cve-2010-3970
...
git-svn-id: file:///home/svn/framework3/trunk@11466 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:29 +00:00
Tod Beardsley
24388f3a38
Adding a CVE reference for weak/blank/guessable passwords.
...
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
HD Moore
401d8e5a68
Revert until the mixin is checked in
...
git-svn-id: file:///home/svn/framework3/trunk@11464 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 02:46:18 +00:00
James Lee
a121a73cdb
use the mixin for registry fu.
...
git-svn-id: file:///home/svn/framework3/trunk@11462 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 01:01:29 +00:00
Joshua Drake
a59dcc512b
switch target to p/p/r that works on multiple versions
...
git-svn-id: file:///home/svn/framework3/trunk@11459 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-02 09:56:43 +00:00
Joshua Drake
5e2abcc88c
add DoS module for IIS FTP server
...
git-svn-id: file:///home/svn/framework3/trunk@11456 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-31 18:32:55 +00:00
HD Moore
bec8a95b02
Merges pello's Cisco uploader module, merges changes back into the TFTP server class. Fixes #3429
...
git-svn-id: file:///home/svn/framework3/trunk@11454 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-30 16:37:58 +00:00
Joshua Drake
540bd3692c
add fileformat exploit for cve-2010-3333
...
git-svn-id: file:///home/svn/framework3/trunk@11450 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:30:50 +00:00
HD Moore
b7a05f03b0
Remove duplicate line
...
git-svn-id: file:///home/svn/framework3/trunk@11449 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:12:14 +00:00
James Lee
9a952b22e4
rearrange post module directory structure
...
git-svn-id: file:///home/svn/framework3/trunk@11445 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 17:10:46 +00:00
Joshua Drake
08df4dac3b
randomize import styles, patch from jjarmoc
...
git-svn-id: file:///home/svn/framework3/trunk@11443 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 16:49:20 +00:00
James Lee
e3cd2c2572
add carlos back to authors list, i suck
...
git-svn-id: file:///home/svn/framework3/trunk@11432 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 19:39:02 +00:00
James Lee
a241f435c1
rename the 'privilege_escalation' to the less verbose 'escalate'
...
git-svn-id: file:///home/svn/framework3/trunk@11431 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 19:29:36 +00:00
Joshua Drake
885545a94e
add http:bl scanner from mubix, fixes #3346
...
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 18:33:45 +00:00
Joshua Drake
b3bfb5834e
change credit to passerby
...
git-svn-id: file:///home/svn/framework3/trunk@11427 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 17:10:19 +00:00
HD Moore
d202a5abf2
Add missing mixin
...
git-svn-id: file:///home/svn/framework3/trunk@11423 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 18:10:41 +00:00
James Lee
f0cc6ff596
big commit for converting meterpreter scripts to modules, see #3377 . also fixes payload tab-completion and 'show payloads' after TARGET has changed
...
git-svn-id: file:///home/svn/framework3/trunk@11421 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 17:46:42 +00:00
HD Moore
30affd4b2c
This commit adds a new set of discovery modules from wuntee and some useful utility methods for working with link-local addresses
...
git-svn-id: file:///home/svn/framework3/trunk@11417 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 16:43:53 +00:00
Steve Tornio
37a3ca4643
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11415 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 13:16:15 +00:00
Steve Tornio
860e29228b
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11414 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 14:43:13 +00:00
HD Moore
2f97c61f86
Add the uber SNMP enumeration module from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@11412 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:31:38 +00:00
HD Moore
5875fdb701
Two new SNMP community enumeration tools for Windows by tebo (local account list and SMB shares). Addition of a Meterpreter script for snagging the SNMP community from the registry
...
git-svn-id: file:///home/svn/framework3/trunk@11410 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:08:34 +00:00
HD Moore
b7eec06041
Deregister username-specific options since they aren't supported anyways, a suggestion from tebo
...
git-svn-id: file:///home/svn/framework3/trunk@11409 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:02:35 +00:00
HD Moore
a8cb5ee259
Updated return address from Tyler Reguly
...
git-svn-id: file:///home/svn/framework3/trunk@11407 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:01:12 +00:00
HD Moore
e7f3c63e1c
Exploit for a recent Redmine command injection vulnerability, provided as a holiday gift by Joernchen of Phenoelit.
...
git-svn-id: file:///home/svn/framework3/trunk@11406 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 05:46:29 +00:00
Joshua Drake
5f5d2992ce
add reference to 0x557 slides (for .NET 2.0 rop)
...
git-svn-id: file:///home/svn/framework3/trunk@11405 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-23 01:36:54 +00:00
Joshua Drake
cdfe03ce43
add MSFT advisory and CVE
...
git-svn-id: file:///home/svn/framework3/trunk@11404 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-23 01:30:43 +00:00
Steve Tornio
09b00739fb
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11402 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 22:21:56 +00:00
Joshua Drake
4ddd78c4de
add a couple targets
...
git-svn-id: file:///home/svn/framework3/trunk@11399 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 19:14:29 +00:00
Joshua Drake
0f24d1955c
minor corrections, use .NET 2.0 ROP :)
...
git-svn-id: file:///home/svn/framework3/trunk@11398 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 18:26:18 +00:00
Joshua Drake
44c8a71dcf
minor clean ups
...
git-svn-id: file:///home/svn/framework3/trunk@11397 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 18:23:16 +00:00
Mario Ceballos
1407d7f1d5
revert back. little more reliable.
...
git-svn-id: file:///home/svn/framework3/trunk@11396 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 17:40:13 +00:00
Mario Ceballos
d89c60f2de
add exploit module wmi_admintools.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11395 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 14:35:36 +00:00
Joshua Drake
5fb2bfc969
fix super busted mssql_payload some more
...
git-svn-id: file:///home/svn/framework3/trunk@11392 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 20:36:34 +00:00