infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
10,531 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

4312 Commits (a82adb14f9e2a887cd87fa75c3450ecc0fb49d7f)

Author SHA1 Message Date
Wei Chen 7ef79e3ca5 Changed disclosure date 
git-svn-id: file:///home/svn/framework3/trunk@12389 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-21 15:34:01 +00:00
Mario Ceballos 31f2afc033 fix date 
git-svn-id: file:///home/svn/framework3/trunk@12388 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-21 11:12:34 +00:00
Wei Chen 03ac21e5be Updated disclosure date 
git-svn-id: file:///home/svn/framework3/trunk@12387 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-21 04:34:31 +00:00
Wei Chen 4662f88d43 Incorrect CVE reference removed 
git-svn-id: file:///home/svn/framework3/trunk@12385 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-21 04:21:48 +00:00
Wei Chen cb491e35d2 Changed disclosure date 
git-svn-id: file:///home/svn/framework3/trunk@12384 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-21 02:10:40 +00:00
Wei Chen 458d8cccb8 Modified heap spray routine. Added IE 8 target for XP SP3. 
git-svn-id: file:///home/svn/framework3/trunk@12383 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-20 21:55:33 +00:00
amaloteaux a08bef0a47 allow the wireshark dect dissector exploit to be used remotly 
git-svn-id: file:///home/svn/framework3/trunk@12376 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-20 16:36:48 +00:00
Joshua Drake 78d3998854 Fixes #4125, add hostname support to the Rex DHCP server & aux module 
git-svn-id: file:///home/svn/framework3/trunk@12375 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-20 14:21:36 +00:00
Wei Chen 488c6de9df Description change again 
git-svn-id: file:///home/svn/framework3/trunk@12371 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 16:41:58 +00:00
Wei Chen 4b7595b8e4 Updated the size of the pcap file. Description also udpated. 
git-svn-id: file:///home/svn/framework3/trunk@12369 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 16:34:17 +00:00
Wei Chen 6d0bfaaa57 Updated author 
git-svn-id: file:///home/svn/framework3/trunk@12368 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 15:23:49 +00:00
Steve Tornio 0859bb18a7 add cve and osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@12365 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 11:32:17 +00:00
Wei Chen 90668a9913 Date format fix 
git-svn-id: file:///home/svn/framework3/trunk@12364 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 07:53:58 +00:00
Wei Chen 9d40da6bbb Title change 
git-svn-id: file:///home/svn/framework3/trunk@12363 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 06:43:05 +00:00
Wei Chen 9c60889f02 Added Wireshark packet-dect memcpy overflow (.pcap) 
git-svn-id: file:///home/svn/framework3/trunk@12362 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 06:41:57 +00:00
Wei Chen d4dd84536d Added Win 7 target 
git-svn-id: file:///home/svn/framework3/trunk@12361 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 03:10:36 +00:00
HD Moore b94d09cdf1 Try a little harder to make this module more reliable through TCP proxies 
git-svn-id: file:///home/svn/framework3/trunk@12359 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-18 20:53:21 +00:00
Tod Beardsley 8b5d004997 Adding an nmap version checker so NSE modules can tell if it's okay to run or not. 
git-svn-id: file:///home/svn/framework3/trunk@12357 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-18 19:52:13 +00:00
HD Moore f1f15ba448 Allow socks4a to relay through meterpreter 
git-svn-id: file:///home/svn/framework3/trunk@12353 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-18 18:17:49 +00:00
David Rude 6b538bda06 Fixes for shell commands and store_loot 
git-svn-id: file:///home/svn/framework3/trunk@12347 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-18 14:31:01 +00:00
Wei Chen c28e7259ac Added CVE-2011-0611 Adobe Flash 0day 
git-svn-id: file:///home/svn/framework3/trunk@12330 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-16 02:09:33 +00:00
Wei Chen 9ac36d6e0a Forgot to change two other hardcoded junks to random alpha bytes 
git-svn-id: file:///home/svn/framework3/trunk@12322 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-14 23:28:58 +00:00
Wei Chen b81d87173f Added mr_me's Win XP SP3 + DEP target 
git-svn-id: file:///home/svn/framework3/trunk@12320 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-14 23:08:47 +00:00
amaloteaux d9e68141e0 arp sweep: correct a bug on the timeout to better detect the latest reply 
git-svn-id: file:///home/svn/framework3/trunk@12316 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-14 16:29:56 +00:00
James Lee b5e0962e3e return the appropriate check codes instead of just printing stuff. add some error checks to avoid stack traces against samba and non-existant hosts 
git-svn-id: file:///home/svn/framework3/trunk@12314 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-13 23:26:07 +00:00
Steve Tornio 79e84a46e9 add cve & osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@12306 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-12 11:04:29 +00:00
Wei Chen 33249bea32 Changed 0x90 nops to make_nops() instead 
git-svn-id: file:///home/svn/framework3/trunk@12305 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 23:32:41 +00:00
Wei Chen 3dec79f346 Format fix again 
git-svn-id: file:///home/svn/framework3/trunk@12304 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 23:24:12 +00:00
Wei Chen e5068838ff Last format fix 
git-svn-id: file:///home/svn/framework3/trunk@12301 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 22:31:27 +00:00
Wei Chen 300989db5f Format issue fix 
git-svn-id: file:///home/svn/framework3/trunk@12299 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 22:28:38 +00:00
Wei Chen eea7a0e743 Added Video Spirit vlsprj buffer overflow exploit 
git-svn-id: file:///home/svn/framework3/trunk@12296 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 22:09:23 +00:00
Steve Tornio 6dc526f22b add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12295 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 18:12:17 +00:00
David Rude 39f4c0c42f Added MS08-067 check method thanks staylor =) 
git-svn-id: file:///home/svn/framework3/trunk@12294 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 16:32:59 +00:00
David Rude 5e89b22aae Added ISC DHCP Zero Length ClientID DoS Module thx TheLightCosine 
git-svn-id: file:///home/svn/framework3/trunk@12293 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 15:56:39 +00:00
Patrick Webster e9e8026832 Fixed author name in modules for myself. 
git-svn-id: file:///home/svn/framework3/trunk@12292 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-11 02:25:36 +00:00
Patrick Webster fb33b0cbfd Added contentkeeper_fileaccess aux traversal module. 
git-svn-id: file:///home/svn/framework3/trunk@12288 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-10 15:27:17 +00:00
Wei Chen ffe6868d22 Updated vbs stager temp var 
git-svn-id: file:///home/svn/framework3/trunk@12286 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-09 18:24:43 +00:00
Joshua Drake d2374a435f add .jar extension, thx for the contribution! 
git-svn-id: file:///home/svn/framework3/trunk@12285 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-09 17:03:41 +00:00
Wei Chen c31603beac Updated: Using random nops and padding 
git-svn-id: file:///home/svn/framework3/trunk@12284 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 23:09:31 +00:00
Wei Chen 8b0605c418 Added AOL Desktop 9.6 rtx buffer overflow 
git-svn-id: file:///home/svn/framework3/trunk@12283 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 23:03:30 +00:00
David Rude 82f5206bc7 change the filename to reflect the vendor 
git-svn-id: file:///home/svn/framework3/trunk@12281 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 14:06:10 +00:00
Steve Tornio a8947662db old file hanging around 
git-svn-id: file:///home/svn/framework3/trunk@12280 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 13:28:57 +00:00
Steve Tornio bb26593da7 add osvdb ref. rename file to correct typo 
git-svn-id: file:///home/svn/framework3/trunk@12279 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 12:41:18 +00:00
Wei Chen 8efd5ce82c Added denial-of-service module for HP Data Protector's RDS service 
git-svn-id: file:///home/svn/framework3/trunk@12278 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 07:56:48 +00:00
Wei Chen 717fb83fc9 Added RealNetworks RealGames ActiveX exec arbitrary code execution 
git-svn-id: file:///home/svn/framework3/trunk@12276 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-08 02:39:11 +00:00
David Rude 53790c1afb Change Vendor name, forgot one target uri fixup 
git-svn-id: file:///home/svn/framework3/trunk@12275 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 23:31:12 +00:00
James Lee 02b3b85e7c port get_application_list to post module, with a couple small tweaks (check wow64 reg keys, and don't print blank lines) 
git-svn-id: file:///home/svn/framework3/trunk@12274 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 21:59:47 +00:00
Mike Smith d5d9d56081 Create a dedicated db table to track sessions & session events. 
* Add new db tables for session & session_events
* Migrate existing session data from events db table
* Modify session report methods to log to the new tables


git-svn-id: file:///home/svn/framework3/trunk@12273 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 21:59:32 +00:00
David Rude 892e241853 Added Netflow Apps Manager Remote Code Execution exploit 
git-svn-id: file:///home/svn/framework3/trunk@12272 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 21:01:34 +00:00
Wei Chen 904b02c44f Need to track who committed what 
git-svn-id: file:///home/svn/framework3/trunk@12271 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 21:01:20 +00:00
Patrick Webster cacac970e1 Added privilege escalation to contentkeeperweb_mimencode exploit module. 
git-svn-id: file:///home/svn/framework3/trunk@12265 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 11:02:48 +00:00
Wei Chen b90d6fc16f Modified the heap spraying function. Each block size should be more consistent now. 
git-svn-id: file:///home/svn/framework3/trunk@12264 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 07:27:38 +00:00
Wei Chen 1c5f1f9d24 Fixed typo 
git-svn-id: file:///home/svn/framework3/trunk@12263 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 06:15:47 +00:00
Patrick Webster 1c2e08d95d Added SonicWall SSL-VPN format string module. 
git-svn-id: file:///home/svn/framework3/trunk@12261 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-07 03:56:35 +00:00
Tod Beardsley e07147142f See #3781. smb_login implements the special keyword of <BLANK> (but also needs to be nil safe, which this fixes) 
git-svn-id: file:///home/svn/framework3/trunk@12257 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-06 21:26:46 +00:00
Tod Beardsley 30fb75c676 In smb_login, work around an odd error where you get an InvalidPacket for ACCESS_DENIED rather than a login failure. 
git-svn-id: file:///home/svn/framework3/trunk@12256 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-06 21:15:08 +00:00
Jonathan Cran 1ffb5e97e0 mubix's patch. grab the right value from the reg if it's not a fixnum, and set a default report port 
git-svn-id: file:///home/svn/framework3/trunk@12249 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-05 19:09:44 +00:00
Steve Tornio 46d88f54f6 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12242 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-05 01:08:07 +00:00
David Rude 0bea0233a0 add the slash =) 
git-svn-id: file:///home/svn/framework3/trunk@12241 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-05 00:13:01 +00:00
David Rude ce7b72bfce Use get_uri instead of manually building the path 
git-svn-id: file:///home/svn/framework3/trunk@12240 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-05 00:08:36 +00:00
David Rude 7816b87595 Added Zend Java Bridge exploit module java meterpreter ftw 
git-svn-id: file:///home/svn/framework3/trunk@12239 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-04 23:39:27 +00:00
Tod Beardsley b91c81a182 Fixes #4074 -- corrects the affected regexes. 
git-svn-id: file:///home/svn/framework3/trunk@12238 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-04 22:19:59 +00:00
Wei Chen 97a9056a1a Added CVE-2010-3407 (IBM Lotus Domino iCalendar SMTP) 
git-svn-id: file:///home/svn/framework3/trunk@12236 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-04 17:43:34 +00:00
Carlos Perez bae9a04cf6 Migration of domain_list script to enum_domain_group_users post module by Stephen Haywood 
git-svn-id: file:///home/svn/framework3/trunk@12232 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-04 00:42:27 +00:00
amaloteaux 7e522d9979 http capture : add challenge as an option 
git-svn-id: file:///home/svn/framework3/trunk@12231 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-03 23:31:14 +00:00
amaloteaux 8e61c108d3 typo fix 
git-svn-id: file:///home/svn/framework3/trunk@12229 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-03 23:11:02 +00:00
Joshua Drake 8a627758f3 update description to remove blurb about ATSVC pipe, since it is no longer used 
git-svn-id: file:///home/svn/framework3/trunk@12226 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-03 20:53:54 +00:00
Joshua Drake f0673cb1ac Tweak to work with FreeBSD, thx for the patch! 
git-svn-id: file:///home/svn/framework3/trunk@12224 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-03 17:40:45 +00:00
HD Moore 86fac4ef95 This module does not meet standards for inclusion: 
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs




git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 16:11:59 +00:00
Carlos Perez 8c96711c6c shroretel user login brute force module by Keith Lee 
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 14:13:15 +00:00
Steve Tornio 8aff852f5a add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12218 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 13:41:19 +00:00
Carlos Perez 7aa21e7ef8 Qemu detection support, patch provided by Sergio Guzman. 
git-svn-id: file:///home/svn/framework3/trunk@12217 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 13:03:43 +00:00
Wei Chen 7502895037 Minor changes 
git-svn-id: file:///home/svn/framework3/trunk@12216 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-02 05:54:02 +00:00
Mario Ceballos cab7a1b3e4 added auxiliary module zend/java_bridge.rb 
git-svn-id: file:///home/svn/framework3/trunk@12212 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-01 22:01:46 +00:00
Steve Tornio cd9b742960 add osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@12202 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-01 14:00:49 +00:00
James Lee 6dd44fa516 massive keywords cleanup 
git-svn-id: file:///home/svn/framework3/trunk@12196 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-01 00:51:33 +00:00
natron 6743776c75 Fixing ugly spacing 
git-svn-id: file:///home/svn/framework3/trunk@12193 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-31 22:24:14 +00:00
natron e1c7be1acf Tim Medin's NBNS spoofer / world domination ensurer. 
git-svn-id: file:///home/svn/framework3/trunk@12192 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-31 22:22:13 +00:00
David Rude 98d7e5e75e minor info hash fixes 
git-svn-id: file:///home/svn/framework3/trunk@12191 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-31 16:56:12 +00:00
David Rude 7f91739062 Converted screen_spy to a post module 
git-svn-id: file:///home/svn/framework3/trunk@12189 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-31 16:41:52 +00:00
David Rude 2beeca4c90 Send the session object directly to store_loot fixes issues with report_host stack traces 
git-svn-id: file:///home/svn/framework3/trunk@12188 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-31 15:12:08 +00:00
Wei Chen e86040f04f Added Solar FTP Server DOS 
git-svn-id: file:///home/svn/framework3/trunk@12184 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-30 19:13:46 +00:00
Wei Chen 045e75c0b6 Added ret addr for win server 2003 sp2 donated by Polar Bear 
git-svn-id: file:///home/svn/framework3/trunk@12183 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-30 16:24:52 +00:00
HD Moore 9594829357 Remove the no longer needed require 
git-svn-id: file:///home/svn/framework3/trunk@12181 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 18:11:39 +00:00
HD Moore e0e8d986e7 Fix up psexec by adding a reqwuire for the wbemexec mixin 
git-svn-id: file:///home/svn/framework3/trunk@12180 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 16:35:26 +00:00
HD Moore 904dd863d1 Remove the WBEM mixin until its actually checked in 
git-svn-id: file:///home/svn/framework3/trunk@12179 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 15:26:08 +00:00
James Lee 792bb4da7a allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038, thanks mubix! 
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 05:42:33 +00:00
David Rude 9a94359c34 Add a rescue for Profiles directory listing 
git-svn-id: file:///home/svn/framework3/trunk@12177 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 04:47:01 +00:00
David Rude c0bde3f030 Add a rescue for the file download 
git-svn-id: file:///home/svn/framework3/trunk@12176 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 04:43:02 +00:00
David Rude 30b25994d7 More file stats just to be safe and more clear on the message 
git-svn-id: file:///home/svn/framework3/trunk@12175 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 03:56:46 +00:00
David Rude add0f64a93 Check for Mozilla directory before checking for subdirectories 
git-svn-id: file:///home/svn/framework3/trunk@12174 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 03:50:32 +00:00
David Rude 9904b230fe keep looping don't just return on the first failure 
git-svn-id: file:///home/svn/framework3/trunk@12173 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 03:37:18 +00:00
David Rude c3fb6b3bf8 Fixed the windows enum user check if the Firefox directory does not exist 
git-svn-id: file:///home/svn/framework3/trunk@12172 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 03:27:01 +00:00
amaloteaux 3a6a02e43c add wbem exec method for psexec as optional, fix #3972, thanks to pbk-df3 for patch 
git-svn-id: file:///home/svn/framework3/trunk@12171 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-29 01:07:32 +00:00
James Lee ca21393c4b remove debug print. 
git-svn-id: file:///home/svn/framework3/trunk@12168 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-28 17:30:02 +00:00
Joshua Drake 0882f18ec0 add fix commit diff and fix broken cve reference 
git-svn-id: file:///home/svn/framework3/trunk@12166 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-28 03:04:54 +00:00
Joshua Drake 24fd896bfb add OSVDB reference back, conflict handling fail! 
git-svn-id: file:///home/svn/framework3/trunk@12165 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-28 03:02:46 +00:00
Tod Beardsley 64c3c86e1f Adding carnal0wnage's iSQL*Plus SID and login brute forcers. 
git-svn-id: file:///home/svn/framework3/trunk@12163 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-28 01:20:51 +00:00
James Lee 1096d1c076 add a combined module for exploiting DRb. thanks joernchen! 
git-svn-id: file:///home/svn/framework3/trunk@12161 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-27 20:00:06 +00:00
Wei Chen 214751379f Updated: using get_resource() instead of datastore['URIPATH'] 
git-svn-id: file:///home/svn/framework3/trunk@12156 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-27 03:56:45 +00:00
Wei Chen 25ca59b56f Added Win Vista and debug target 
git-svn-id: file:///home/svn/framework3/trunk@12153 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-26 23:22:51 +00:00
David Rude 349512f48d Updated exploit ranking and description to reflect the new ranking 
git-svn-id: file:///home/svn/framework3/trunk@12151 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-26 19:33:38 +00:00
Steve Tornio 81fae13258 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12147 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-26 12:05:48 +00:00
David Rude ff3659aa37 Lots of work to make this a lot more reliable =) 
git-svn-id: file:///home/svn/framework3/trunk@12146 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-26 06:35:28 +00:00
Carlos Perez 43ba211d3d Module for injection in to a list of processes a given payload connecting to a list of given IP addresses. 
git-svn-id: file:///home/svn/framework3/trunk@12145 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-26 03:35:59 +00:00
Carlos Perez 33d1baa835 Did not save output of commands when running against shell 
git-svn-id: file:///home/svn/framework3/trunk@12144 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-26 02:56:19 +00:00
Wei Chen eb7df0be8e Updated how the trigger file should be loaded... the proper way. 
git-svn-id: file:///home/svn/framework3/trunk@12140 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-26 00:07:36 +00:00
Wei Chen 77ceadc6ad Updated description and how the trigger file loads 
git-svn-id: file:///home/svn/framework3/trunk@12139 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-25 22:49:11 +00:00
Wei Chen 08f210ac52 Added CVE-2010-3275 (VLC AMV vulnerability) 
git-svn-id: file:///home/svn/framework3/trunk@12137 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-25 21:03:12 +00:00
Tod Beardsley fa062b8f32 Sets the cmd stager's temp directory to "." which makes all the writes go to the local data directory for postgresql. This avoids the slashes issue reported by troulouliou and keeps all the uploaded files in one place for somewhat easier cleanup. 
git-svn-id: file:///home/svn/framework3/trunk@12135 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-25 19:42:36 +00:00
Tod Beardsley 8d8696eb8c Fixes #4026, the HTTP options scanner now reports its vulnerability in the normal way. 
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-25 17:03:16 +00:00
Steve Tornio 5b79e6b4ec add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12132 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-25 11:28:57 +00:00
Mario Ceballos c162c0f429 added exploit module hp_nnm_getnnmdata_hostname.rb. now 49 on the list. 
git-svn-id: file:///home/svn/framework3/trunk@12131 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-25 00:46:59 +00:00
Tod Beardsley 1d65ae4122 Adding post module conversion for the Meterpreter autoroute script. 
git-svn-id: file:///home/svn/framework3/trunk@12126 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-24 16:34:18 +00:00
David Rude e5ff1b030a fixed Platform and Arch to be compatible with command payloads 
git-svn-id: file:///home/svn/framework3/trunk@12125 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-24 15:53:20 +00:00
Wei Chen aa24f29a03 Fixed nops 
git-svn-id: file:///home/svn/framework3/trunk@12124 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-24 13:51:13 +00:00
Wei Chen c9eef9ffe5 Fixed typo 
git-svn-id: file:///home/svn/framework3/trunk@12123 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-24 13:31:58 +00:00
Wei Chen a05866385f Added target 7.50, provided by MC 
git-svn-id: file:///home/svn/framework3/trunk@12122 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-24 02:48:04 +00:00
Steve Tornio d9dd2a3058 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12121 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-24 00:49:33 +00:00
Mario Ceballos 342d55ac00 heh, a couple for the hp_nnm party. add exploit modules hp_nnm_getnnmdata_icount.rb hp_nnm_getnnmdata_maxage.rb 
git-svn-id: file:///home/svn/framework3/trunk@12117 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 21:57:16 +00:00
Wei Chen 1a42a87a65 Added 2011-0267 (exploiting "schdParams" of HP NNM's nnmRptConfig.exe) 
git-svn-id: file:///home/svn/framework3/trunk@12116 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 21:35:13 +00:00
Tod Beardsley a3f68b97a6 Fix for 1.8.7 compatability, where regexes need escaped plusses. 
git-svn-id: file:///home/svn/framework3/trunk@12115 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 21:24:09 +00:00
amaloteaux ec5e61966d oops revert the unwanted early commit on mssql 
git-svn-id: file:///home/svn/framework3/trunk@12114 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 20:53:57 +00:00
amaloteaux 46cf938475 fix typo 
git-svn-id: file:///home/svn/framework3/trunk@12112 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 20:47:49 +00:00
Tod Beardsley b1178686cf Fixes #3988. Adds a command execution module for PostgreSQL by uploading a UDF library and adding sys_exec() as a temporary function. Requires the target to be Windows, uses Bernardo Damele A. G.'s binaries. 
Also fixes a typo in the arguments to handler which clears up a heretofore mysterious exception (see exploit.rb).



git-svn-id: file:///home/svn/framework3/trunk@12111 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 19:36:07 +00:00
amaloteaux c0a0e3f217 small fix 
git-svn-id: file:///home/svn/framework3/trunk@12110 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 19:02:38 +00:00
amaloteaux e706051bda psexec : allow exploit to succeed on any r/w share 
git-svn-id: file:///home/svn/framework3/trunk@12109 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 18:53:32 +00:00
David Rude c9e4aa11df Fixed the report note to not use the proper data format 
git-svn-id: file:///home/svn/framework3/trunk@12108 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 18:15:40 +00:00
HD Moore fff99db43d Fix the report_note not to clash with smb_enumusers format 
git-svn-id: file:///home/svn/framework3/trunk@12107 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 18:14:05 +00:00
James Lee e866eafb06 add keywords 
git-svn-id: file:///home/svn/framework3/trunk@12106 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 16:59:19 +00:00
David Rude 2ea46486a4 fixed report_note 
git-svn-id: file:///home/svn/framework3/trunk@12104 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 16:16:29 +00:00
David Rude 3a0c71f98b Added Xerox Workcenter aux module for enumerating users 
git-svn-id: file:///home/svn/framework3/trunk@12102 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 16:13:37 +00:00
Joshua Drake 6fa39eb32c merge my work on cve-2010-2703 
git-svn-id: file:///home/svn/framework3/trunk@12101 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 16:04:45 +00:00
Joshua Drake efd7b84cc5 change rank / add http fingerprint 
git-svn-id: file:///home/svn/framework3/trunk@12100 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 16:02:53 +00:00
Joshua Drake dd5e7f9286 merge in my wacky cve-2010-2709 work 
git-svn-id: file:///home/svn/framework3/trunk@12099 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 15:55:52 +00:00
Joshua Drake 1460d161da add exploit for cve-2010-1552 
git-svn-id: file:///home/svn/framework3/trunk@12098 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 15:47:20 +00:00
Joshua Drake 11e442ed47 add exploit for cve-2010-1964 
git-svn-id: file:///home/svn/framework3/trunk@12097 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 15:45:48 +00:00
Joshua Drake 6920376237 add exploit for cve-2010-1961 
git-svn-id: file:///home/svn/framework3/trunk@12096 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 15:44:55 +00:00
Joshua Drake 46cd08e1aa add exploit for cve-2010-1960 
git-svn-id: file:///home/svn/framework3/trunk@12095 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 15:43:25 +00:00
David Rude ea47253814 Changed title for consistency 
git-svn-id: file:///home/svn/framework3/trunk@12093 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 14:24:48 +00:00
Steve Tornio 89ec6ab5da add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12092 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 11:19:45 +00:00
David Rude 8233030184 opps removed mixin require as well 
git-svn-id: file:///home/svn/framework3/trunk@12091 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 04:41:48 +00:00
David Rude f8534f06dd opps removed mixin reference =) 
git-svn-id: file:///home/svn/framework3/trunk@12090 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 04:40:38 +00:00
David Rude d7266b6551 Add CVE-2011-0609 exploit for Adobe Flash 
git-svn-id: file:///home/svn/framework3/trunk@12089 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 04:31:48 +00:00
Wei Chen 422e5ae7b1 gone. 
git-svn-id: file:///home/svn/framework3/trunk@12088 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 03:45:01 +00:00
Wei Chen c8ca48388d filenamed fix 
git-svn-id: file:///home/svn/framework3/trunk@12085 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 03:37:18 +00:00
Wei Chen 1a34d81aab Added CVE-2010-2703 
git-svn-id: file:///home/svn/framework3/trunk@12083 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 03:23:06 +00:00
Wei Chen 92d52daea8 Added NNM webappmon.exe OvJavaLocale overflow 
git-svn-id: file:///home/svn/framework3/trunk@12082 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 03:21:56 +00:00
Wei Chen 74e0d2f43e Added HP NNM nnmRptConfig nameParams overflow 
git-svn-id: file:///home/svn/framework3/trunk@12081 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 03:20:24 +00:00
Carlos Perez 1a27e6694f Changed order of description for loot file to make identifying cleanup resource files in loot easier. 
git-svn-id: file:///home/svn/framework3/trunk@12080 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 03:12:43 +00:00
Carlos Perez 0ea46afa75 Migration of getgui script to post module enable_rdp 
git-svn-id: file:///home/svn/framework3/trunk@12079 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 03:11:04 +00:00
Carlos Perez 735711ae01 Typo of the variable that has the data. 
git-svn-id: file:///home/svn/framework3/trunk@12078 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 02:59:51 +00:00
Mario Ceballos 3f7e3ee93f added auxiliary module igss_exec_17.rb 
git-svn-id: file:///home/svn/framework3/trunk@12077 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-23 01:58:09 +00:00
Carlos Perez a5c3987b33 Multi Console Command script migrated to post module. Now names run_console_rc_file. Will read and execute meterpreter console commands found in a given resource file. 
git-svn-id: file:///home/svn/framework3/trunk@12074 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-22 23:04:41 +00:00
Carlos Perez cffe667c71 Multi command script migrated to post module, supports *nix system and both shell and meterpreter. Will run commands in a given resource file. 
git-svn-id: file:///home/svn/framework3/trunk@12073 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-22 22:59:01 +00:00
David Rude 139102de80 Removed testing file extension 
git-svn-id: file:///home/svn/framework3/trunk@12068 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-22 17:24:16 +00:00
David Rude 23d89cd137 Added drb syscall exploit 
git-svn-id: file:///home/svn/framework3/trunk@12067 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-22 16:09:03 +00:00
Tod Beardsley 46dfafa81f Fixes #3987. Don't raise on the attr set, raise when the command actually wants to get run. 
git-svn-id: file:///home/svn/framework3/trunk@12063 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 20:52:08 +00:00
HD Moore 99d9dc69cd Merge in cookie support from paulino calderon 
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 04:59:02 +00:00
Carlos Perez 68374e11ef small typo 
git-svn-id: file:///home/svn/framework3/trunk@12051 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 02:35:12 +00:00
Carlos Perez 7648ab6e5f forgot options descriptions 
git-svn-id: file:///home/svn/framework3/trunk@12050 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 02:30:27 +00:00
Carlos Perez c7989fff39 Migrate script migrated to post module. 
git-svn-id: file:///home/svn/framework3/trunk@12049 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 02:27:36 +00:00
Carlos Perez d45969a381 Mubix migration and enhancement of the vnc password script 
git-svn-id: file:///home/svn/framework3/trunk@12048 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 02:18:34 +00:00
James Lee 95633f7c3d store_loot in gather/env 
git-svn-id: file:///home/svn/framework3/trunk@12046 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 01:31:05 +00:00
HD Moore c679de9d7a Closes #3976 by merging in an ARM adduser payload from Jonathan Salwan 
git-svn-id: file:///home/svn/framework3/trunk@12045 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 01:26:14 +00:00
Carlos Perez 92e749f6ff USB Drive history enumeration script contributed by nebulus 
git-svn-id: file:///home/svn/framework3/trunk@12044 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 01:23:32 +00:00
Carlos Perez 3fca6a4225 Migration of dumplinks script to dumplinks post module 
git-svn-id: file:///home/svn/framework3/trunk@12043 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-21 01:22:44 +00:00
Tod Beardsley 42dd4fa717 Allow for duplicates for vnc_login since there's no username. 
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-20 18:10:49 +00:00
Carlos Perez 5b8c2007c8 Migration of credcollector script to credential_collector post module 
git-svn-id: file:///home/svn/framework3/trunk@12036 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-20 17:42:37 +00:00
Carlos Perez 71fd7136ae Forgot to update descriptions of the options set 
git-svn-id: file:///home/svn/framework3/trunk@12035 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-20 17:36:28 +00:00
Carlos Perez 9cb690b9e3 ARP Scanner script migrated to Post Module 
git-svn-id: file:///home/svn/framework3/trunk@12034 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-20 17:28:35 +00:00
James Lee 8db83e406e try to find wow64 installs. also fixes a problem where blank lines were printed when no DisplayName was found 
git-svn-id: file:///home/svn/framework3/trunk@12021 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-18 21:46:01 +00:00
James Lee db9c9c625f :host can't be a peerhost (contains the port as well). report will just figure it out if you use a Session object, though 
git-svn-id: file:///home/svn/framework3/trunk@12020 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-18 21:21:56 +00:00
Joshua Drake 586c1f9305 oops, broke the LIBPATH option 
git-svn-id: file:///home/svn/framework3/trunk@12015 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-18 01:18:18 +00:00
Joshua Drake f4fe3f11b0 enable bind payloads, thx hdm :) 
git-svn-id: file:///home/svn/framework3/trunk@12014 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-18 00:52:58 +00:00
Steve Tornio 4992deed21 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12013 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-18 00:16:06 +00:00
Joshua Drake fb6107ffb5 enable java payloads, currently via one-off method 
git-svn-id: file:///home/svn/framework3/trunk@12012 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-17 23:57:11 +00:00
Tod Beardsley f2057f54a8 De-dup'ed get_link_filter() in the crawler module. Added some comment 
docs on crawler_process_page(). Nothing exciting.



git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-17 21:21:21 +00:00
David Rude 36b83cde6f Added exploit for CVE-2010-3747 RealPlayer CDDA URI Code Execution 
git-svn-id: file:///home/svn/framework3/trunk@12009 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-17 15:42:28 +00:00
David Rude 382e63e16e fixed a typo in javascript 
git-svn-id: file:///home/svn/framework3/trunk@12007 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-17 04:40:36 +00:00
Carlos Perez a5e899cb04 Fix loading problem on one of the test boxes 
git-svn-id: file:///home/svn/framework3/trunk@12003 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-17 00:10:07 +00:00
Carlos Perez 6a1acd6a54 small typo 
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 23:27:13 +00:00
Carlos Perez 4031daa1fb update modules to use is_system? to ensure SID is used to verify when running in certain languages in Windows 
git-svn-id: file:///home/svn/framework3/trunk@11999 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 22:54:40 +00:00
Joshua Drake 5bfd574029 fix parse error 
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 22:07:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied 
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 21:41:47 +00:00
Tod Beardsley d289aa8733 Another touchup on author credit for oracle-brute NSE script integration. 
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 21:05:09 +00:00
Wei Chen 5800608356 Not ready to be part of msf repo, killing it 
git-svn-id: file:///home/svn/framework3/trunk@11993 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 20:42:56 +00:00
HD Moore f317d60e04 Fix a few cosmetic issues with the kingview module 
git-svn-id: file:///home/svn/framework3/trunk@11991 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 18:04:15 +00:00
Wei Chen 26bee16b5c I should probably add myself as an author. 
git-svn-id: file:///home/svn/framework3/trunk@11990 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 16:45:12 +00:00
Carlos Perez 8d1b37a452 save hashes to DB 
git-svn-id: file:///home/svn/framework3/trunk@11989 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 16:26:49 +00:00
Carlos Perez cb9abd8b13 saved sha1 instead of the proper hash, major typo on my part 
git-svn-id: file:///home/svn/framework3/trunk@11988 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 16:19:37 +00:00
Mario Ceballos dfd2df6b47 puts this in the appropiate place 
git-svn-id: file:///home/svn/framework3/trunk@11987 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 10:22:07 +00:00
Steve Tornio 78d4822d27 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11986 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 10:15:54 +00:00
David Rude eeb1aae9d0 Added Japanese NO NX Target 
git-svn-id: file:///home/svn/framework3/trunk@11985 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 07:58:50 +00:00
Joshua Drake 4a1e59be8d oops =D 
git-svn-id: file:///home/svn/framework3/trunk@11983 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 05:01:29 +00:00
Joshua Drake 4644110962 add exploit for cve-2010-4452, currently windows only and no payloads :( 
git-svn-id: file:///home/svn/framework3/trunk@11982 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 04:50:25 +00:00
Wei Chen 7308a032f9 Added kingview historysvr exploit. by rick2600 & Dillon. 
git-svn-id: file:///home/svn/framework3/trunk@11980 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:46:20 +00:00
Tod Beardsley c6a9a6efd7 Am I really updating for a misplaced comment? Why yes I am! 
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:45:29 +00:00
Wei Chen e1ff12292f wrong directory 
git-svn-id: file:///home/svn/framework3/trunk@11978 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:44:50 +00:00
Wei Chen 36c05de02e Added kingview historysvr exploit. By rick2600 and Dillon. 
git-svn-id: file:///home/svn/framework3/trunk@11977 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:39:45 +00:00
Tod Beardsley 424eb1f192 Adding a reference to NSE as well. 
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:26:20 +00:00
Tod Beardsley 9b431c0c8d Adding Patrik Karlsson as an author for the nmap nse script 
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 02:19:57 +00:00
Mario Ceballos 6d3d0adf93 added exploit module coldfusion_traversal.rb from webDEViL 
git-svn-id: file:///home/svn/framework3/trunk@11974 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-16 01:38:16 +00:00
Tod Beardsley ecb89c785b Actually use the API for appending command line arguments for nmap. 
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 21:59:35 +00:00
Steve Tornio abcce881b2 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11969 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 21:56:11 +00:00
Mario Ceballos 8189a1f7a9 added exploit module hp_openview_insight_backdoor.rb 
git-svn-id: file:///home/svn/framework3/trunk@11968 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 21:22:07 +00:00
Tod Beardsley 5e715c22db Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist. 
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 21:16:18 +00:00
Tod Beardsley 292f357f7a Moving requires from oracle_login to nmap. Duh. 
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-15 20:46:03 +00:00
James Lee 7d12151ec6 add support for http digest authentication. fixes #2504, thanks oliver kleinecke for the patch! 
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 22:37:16 +00:00
Tod Beardsley 6e0e23f5ba Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions. 
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 22:13:57 +00:00
Tod Beardsley f568b3e0d8 Normalize the print_status banners for sid_brute 
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 18:25:34 +00:00
Tod Beardsley 70127c09fb Fixes #3939 by setting the racket bits correctly. 
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 15:58:17 +00:00
Tod Beardsley 03f227817e blarg lost a commit in there. 
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 14:41:46 +00:00
Tod Beardsley b8b175fd5c See #3941. Don't report the same thing a billion times. 
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 14:34:19 +00:00
Steve Tornio 45e29834be add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11955 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 12:01:55 +00:00
David Rude 76ee9353aa changed exploit ranking to better reflect the privileges required 
git-svn-id: file:///home/svn/framework3/trunk@11954 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 10:54:13 +00:00
David Rude a63534107b minor style fix 
git-svn-id: file:///home/svn/framework3/trunk@11953 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 05:57:51 +00:00
David Rude 994e6eb450 Exploit for Foxit PDF Reader createDataObject() file write vulnerability 
git-svn-id: file:///home/svn/framework3/trunk@11952 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 05:36:33 +00:00
Wei Chen 15f52a2e6b Updated: Make sure sqlite3 is supported before executing SQL queries 
git-svn-id: file:///home/svn/framework3/trunk@11949 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-14 00:11:06 +00:00
Tod Beardsley b68396351a See #3941. This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it. 
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.

Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.

Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.



git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 22:52:50 +00:00
Wei Chen d8ff158855 Ported Sven Taute's enum_chrome.rb as a POST module. Modified output, saved log format, supports data dumping for x64 Windows, etc. Improvements still needed. 
git-svn-id: file:///home/svn/framework3/trunk@11947 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 21:19:27 +00:00
HD Moore 5ab60f2966 Fixes #3938 by correcting the path for the filename 
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 15:04:16 +00:00
Wei Chen ed6f8b5a78 Updated: Made a slight adjustment to the code format 
git-svn-id: file:///home/svn/framework3/trunk@11945 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 07:27:19 +00:00
Wei Chen 74aab1efe4 Added mr_me's kolibri web server head buffer overflow 
git-svn-id: file:///home/svn/framework3/trunk@11944 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 07:18:36 +00:00
HD Moore 293a6f2ef4 Remove unused RHOST option and fix call to .id in ICMP 
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-13 04:20:19 +00:00
HD Moore 09b3ecff33 Move the module to the correct location 
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-12 16:38:51 +00:00
HD Moore 2578a0e16b Correct formatting and API usage in the Majordomo2 module 
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-12 16:38:17 +00:00
amaloteaux 78396e94f9 move linux meterpreter bin to the correct place 
git-svn-id: file:///home/svn/framework3/trunk@11938 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 20:29:25 +00:00
amaloteaux 544fb61aa2 server capture smb will check for empty pass and not display on screen 
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 20:27:22 +00:00
HD Moore a69278710a Commit an exploit for the Accellion File Transfer appliance default encryption key vulnerability. 
git-svn-id: file:///home/svn/framework3/trunk@11935 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 17:37:23 +00:00
Steve Tornio 03cd23a2d0 remove extra osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 17:27:27 +00:00
David Rude 00c756ee27 Added patches from Chris John Riley for SAP aux scanner modules 
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 16:50:18 +00:00
David Rude 370c42736c Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu 
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-11 16:37:02 +00:00
amaloteaux dce7dd13fe type fix on psexec 
git-svn-id: file:///home/svn/framework3/trunk@11926 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-10 18:46:58 +00:00
Tod Beardsley 8771b871da Whitespace cleanup on sid_brute.rb, remove redundant target_host def. 
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-10 16:55:08 +00:00
Jonathan Cran 79da0ead08 applying description update from zeknox -- thanks! 
git-svn-id: file:///home/svn/framework3/trunk@11923 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-10 05:36:17 +00:00
Tod Beardsley e2af0510f6 wanged up the revision splat. 
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-09 22:16:20 +00:00
Tod Beardsley 676fc22249 Fixes #3927. Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does. 
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-09 22:15:15 +00:00
Steve Tornio 4534c76882 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11907 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-09 02:21:36 +00:00
David Rude 45556f7470 .NET Runtime Optimization Service privilege escalation post module 
git-svn-id: file:///home/svn/framework3/trunk@11904 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-09 00:29:59 +00:00
Mario Ceballos 631af16d9f revert back. 
git-svn-id: file:///home/svn/framework3/trunk@11900 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-08 22:48:39 +00:00
Tod Beardsley 42531e097f Fixes #3916. Adds a module for mysql delivery of a payload via a UDF, using Bernardo's quite excellent UDF libraries. 
git-svn-id: file:///home/svn/framework3/trunk@11899 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-08 22:42:26 +00:00
Mario Ceballos 54382c6080 patch recieved from Peter Van Eeckhout 
git-svn-id: file:///home/svn/framework3/trunk@11898 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-08 22:23:13 +00:00
HD Moore 5299bbb8db Add ip/port prefixes to the jboss scanner 
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-08 21:12:14 +00:00
amaloteaux 5f6995e8d3 enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152 
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-07 19:57:53 +00:00
David Rude 695963dde7 Fixed references 
git-svn-id: file:///home/svn/framework3/trunk@11888 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-07 02:28:15 +00:00
David Rude b51c9f8397 oops forgot a , =) 
git-svn-id: file:///home/svn/framework3/trunk@11887 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-06 20:42:37 +00:00
David Rude 6dc0596870 Added Novell iPrint GetDriverSettings <= 5.52 exploit from mr_me thanks 
git-svn-id: file:///home/svn/framework3/trunk@11886 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-06 20:27:06 +00:00
David Rude cdba0d532c Adds a ret for Windows Server 2003 thanks to securityxxpert 
git-svn-id: file:///home/svn/framework3/trunk@11882 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-05 21:00:57 +00:00
James Lee 5299692fc9 fix a typo (thanks to privmode for pointing out), and incorrect host arg for store_loot. fixes #3897 
git-svn-id: file:///home/svn/framework3/trunk@11881 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-05 20:21:12 +00:00
David Rude 921a181ac0 Adds a Firefox post module to collect credentials and cookies 
git-svn-id: file:///home/svn/framework3/trunk@11879 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-05 02:57:32 +00:00
David Rude 0663564efc Fixed up some minor bugs, loot converted to csv for parsing 
git-svn-id: file:///home/svn/framework3/trunk@11878 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-04 16:59:35 +00:00
David Rude fafb7debcc fixes some minor bugs 
git-svn-id: file:///home/svn/framework3/trunk@11876 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-04 15:38:01 +00:00
Joshua Drake dee18a8995 add office 2007 msxml5 targets from SAHA! THX 
git-svn-id: file:///home/svn/framework3/trunk@11875 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-04 08:39:48 +00:00
Joshua Drake d682069aec add cve-2010-4566 exploit from Erwin Paternotte 
git-svn-id: file:///home/svn/framework3/trunk@11873 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-03 20:51:12 +00:00
David Rude 657c7c55a9 Added a require for msf/core/post/file 
git-svn-id: file:///home/svn/framework3/trunk@11872 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-03 18:43:30 +00:00
amaloteaux d4d475e9d3 small fix on filezilla_server_cred.rb 
git-svn-id: file:///home/svn/framework3/trunk@11871 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-03 18:32:46 +00:00
HD Moore 3ad7cd61e5 Remove the exploit_module= assignment until this feature is completed 
git-svn-id: file:///home/svn/framework3/trunk@11870 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-03 13:59:51 +00:00
David Rude f79cfa13a3 Adding post module for collecting FileZilla FTP Server ftp user and admin interface credentials 
git-svn-id: file:///home/svn/framework3/trunk@11869 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-03 13:00:55 +00:00
Joshua Drake c29bca4fb8 add keywords, oops 
git-svn-id: file:///home/svn/framework3/trunk@11868 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-03 01:04:47 +00:00
Joshua Drake c7f6324fbd add cve-2011-0404 exploit from Evan 
git-svn-id: file:///home/svn/framework3/trunk@11867 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-03 01:04:24 +00:00
Mario Ceballos 94d21dde8e fix a load error 
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 21:54:03 +00:00
Mario Ceballos 5e60545446 fix a load error 
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 21:35:31 +00:00
David Rude 2a90817b80 Fixes more style and API usage issues 
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 18:46:00 +00:00
David Rude 27ba761cd3 Fixed indentation of the cldap_payload 
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 14:01:04 +00:00
David Rude 6c1f49e73d Added Wireshark Auxiliary DoS module from joernchen 
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 13:44:41 +00:00
David Rude 37e9ad1ed4 Added SAP Management Console auxiliary scanner modules 
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 10:18:31 +00:00
HD Moore 2dbbdc18dd Explicitly yield to other threads after each request, reducing the chance that this module will eat all cycles. 
git-svn-id: file:///home/svn/framework3/trunk@11857 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 05:03:20 +00:00
David Rude 0afc75e19b post module for FileZilla FTP Client credential collection 
git-svn-id: file:///home/svn/framework3/trunk@11856 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-02 04:11:12 +00:00
HD Moore 261ab6c014 Fix stack trace when parsing silc account settings, cosmetic and style tweaks 
git-svn-id: file:///home/svn/framework3/trunk@11854 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-01 15:14:49 +00:00
David Rude dcfd46e3d6 Added Carlos Perez credits from the original meterpreter script. 
git-svn-id: file:///home/svn/framework3/trunk@11853 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-01 07:31:26 +00:00
David Rude 04e2d7a829 more style fixes =) 
git-svn-id: file:///home/svn/framework3/trunk@11851 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-01 05:02:33 +00:00
David Rude 4d4c760e81 style fixes 
git-svn-id: file:///home/svn/framework3/trunk@11850 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-01 04:54:50 +00:00
David Rude 1e33520a86 post module for pidgin credential collection conversion of get_pidgin_creds 
git-svn-id: file:///home/svn/framework3/trunk@11849 4d416f70-5f16-0410-b530-b9f4589650da
 2011-03-01 04:02:54 +00:00
HD Moore 77c5f02d4d Call the correct version of the report_auth_info() method (this one takes into account workspace) 
git-svn-id: file:///home/svn/framework3/trunk@11847 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-28 04:55:56 +00:00
HD Moore e7dbf28626 This patch adds a register_parent() method to the module class, making it easy to propogate things like ParentUUID, Workspace, and Owner down. The multi/handler post modules were updated to use this new api. This fixes an issue where the session generated by a post module would be registered to the wrong workspace. 
git-svn-id: file:///home/svn/framework3/trunk@11846 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-28 04:24:35 +00:00
HD Moore f49e040a96 This patch adds a ListenerTimeout option to multi/handler that sets a maximum wait time for sessions. This is useful to prevent leftover background handlers by unsuccessful or misconfigured post modules. 
git-svn-id: file:///home/svn/framework3/trunk@11845 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-28 03:22:40 +00:00
HD Moore c9c3ef4933 Port the screen unlocker to a post module 
git-svn-id: file:///home/svn/framework3/trunk@11836 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-26 05:56:01 +00:00
HD Moore 9bc2a2cd3a Store keystrokes as loot 
git-svn-id: file:///home/svn/framework3/trunk@11835 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-26 04:54:45 +00:00
HD Moore 8a5f7c448f Fix typos in the original module 
git-svn-id: file:///home/svn/framework3/trunk@11834 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-26 04:27:49 +00:00
HD Moore 9a54bc0a95 Fix a typo in the original module 
git-svn-id: file:///home/svn/framework3/trunk@11833 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-26 04:23:06 +00:00
HD Moore d19ab712c4 Quick typo fix 
git-svn-id: file:///home/svn/framework3/trunk@11831 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-26 02:49:25 +00:00
HD Moore b700ed2075 Cosmetic cleanup of post modules 
git-svn-id: file:///home/svn/framework3/trunk@11830 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-26 02:47:40 +00:00
HD Moore 880ffeb1f7 This updates the (C) for 2011, adds a CustomPrintPrefix option to set a unique prefix for a module and cleans up some post modules 
git-svn-id: file:///home/svn/framework3/trunk@11828 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-26 02:02:34 +00:00
HD Moore 8c01560ade Store enumerated data as loot 
git-svn-id: file:///home/svn/framework3/trunk@11826 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-25 21:48:03 +00:00
HD Moore 4c4ae90daf Consistency fix 
git-svn-id: file:///home/svn/framework3/trunk@11825 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-25 21:04:52 +00:00
HD Moore f79f704a68 Make the post module titles consist 
git-svn-id: file:///home/svn/framework3/trunk@11824 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-25 21:00:33 +00:00
Carlos Perez b712be8949 Secure deleting of temporary screencapture files on targets using srm 
git-svn-id: file:///home/svn/framework3/trunk@11823 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-25 00:43:23 +00:00
Carlos Perez f75bd0498f corrected description of action 
git-svn-id: file:///home/svn/framework3/trunk@11821 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-24 21:05:53 +00:00
Tod Beardsley 57966c66d8 This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins. 
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-24 20:42:14 +00:00
Tod Beardsley 5f70c705c1 Committing the Kippo ssh honeypot detection as seen at AHA!. 
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-24 13:57:26 +00:00
Carlos Perez 7050bbc0ce Forgot to uncomment the sections while debuging 
git-svn-id: file:///home/svn/framework3/trunk@11816 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-24 11:57:12 +00:00
Carlos Perez 1c812149b2 Add support to enumerate and download OS X keychain files 
git-svn-id: file:///home/svn/framework3/trunk@11815 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-24 01:37:00 +00:00
Carlos Perez a4b6994e46 update to capture all history file on home folder, screncapture will now capture all loginwindow processes if root and it will download .ssh and .gnupg files for all users if running as root 
git-svn-id: file:///home/svn/framework3/trunk@11814 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-23 23:13:12 +00:00
James Lee aea8192c7f apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\! 
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-23 21:47:52 +00:00
James Lee 5d42ed4552 more descriptive name and description 
git-svn-id: file:///home/svn/framework3/trunk@11803 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-23 04:42:02 +00:00
Mario Ceballos aa859e2f68 force ordinal payload 
git-svn-id: file:///home/svn/framework3/trunk@11799 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-23 00:58:54 +00:00
Joshua Drake 8ef05017b8 style compliance fixes, naughty naughty 
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 20:49:44 +00:00
Carlos Perez 31d4d335f9 Fixed typos and Regex for clean installs of the OS 
git-svn-id: file:///home/svn/framework3/trunk@11795 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 20:11:27 +00:00
James Lee 5c87a5db9c more descriptive, standard naming 
git-svn-id: file:///home/svn/framework3/trunk@11794 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 18:07:26 +00:00
Carlos Perez 7e2fb81cb5 Initial set of OSX Shell Post modules for general basic enumeration and for dumping hashes (SHA, LM and NTLM) for OSX 10.4 and above 
git-svn-id: file:///home/svn/framework3/trunk@11792 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 14:00:47 +00:00
et dd05954b34 Fix wmap to test parameters, error inj. module as example 
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 04:27:40 +00:00
James Lee 4b4ed6edbe un-truncate a comment and make sure we didn't append a . to the buffer 
git-svn-id: file:///home/svn/framework3/trunk@11788 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-22 01:59:17 +00:00
Steve Tornio 13809850a3 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-19 13:35:57 +00:00
Matt Weeks c322534907 Add exploit for CVE-2010-3765, firefox interleaved document.write and appendChild calls. 
git-svn-id: file:///home/svn/framework3/trunk@11773 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-18 02:23:10 +00:00
Joshua Drake 160c683f18 Add WbemExec mixin, modify MS10-061 to use MOF technique 
git-svn-id: file:///home/svn/framework3/trunk@11766 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-17 19:22:11 +00:00
Joshua Drake 8b4ef42fa3 randomize name string 
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-17 19:21:24 +00:00
Joshua Drake 2ef3e79c3d add cve/bid refs 
git-svn-id: file:///home/svn/framework3/trunk@11764 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-17 14:41:48 +00:00
Joshua Drake 41f0c2eaa5 typo 
git-svn-id: file:///home/svn/framework3/trunk@11762 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-17 03:56:15 +00:00
Joshua Drake 7365ca9509 add aux module to trigger browser election DoS 
git-svn-id: file:///home/svn/framework3/trunk@11756 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-16 18:12:28 +00:00
Joshua Drake 7fb3094bb0 remove "File" from title 
git-svn-id: file:///home/svn/framework3/trunk@11746 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-12 22:30:54 +00:00
Matt Weeks b241fc1530 Add service permissions escalate post module. 
git-svn-id: file:///home/svn/framework3/trunk@11739 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-10 17:34:09 +00:00
Joshua Drake 8c8b181ffb Update ms11_xxx modules to reflect bulletin release, minor style fixes 
git-svn-id: file:///home/svn/framework3/trunk@11730 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-08 23:31:44 +00:00
Joshua Drake dafeecdc96 Small fix from Dan Rosenberg 
git-svn-id: file:///home/svn/framework3/trunk@11725 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-08 18:22:36 +00:00
Joshua Drake 7d72db3e8e More updates from Dan Rosenburg -- Works with DEP now! 
git-svn-id: file:///home/svn/framework3/trunk@11724 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-08 17:50:05 +00:00
HD Moore 070f48e16a Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address 
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-08 17:32:37 +00:00
et baab86fc52 WMAP 1.0 and first pass on some modules 
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-04 05:57:26 +00:00
Tod Beardsley 3f1ceea349 Fixes #3655. Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters. 
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-04 01:54:32 +00:00
James Lee 16fad17453 snmp_enum improvements from Kashif Iftikhar, fixes #3654 
git-svn-id: file:///home/svn/framework3/trunk@11706 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-04 01:26:23 +00:00
Joshua Drake e06d4d52fe convert VLC module to FileFormat, adjust spray 
git-svn-id: file:///home/svn/framework3/trunk@11705 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-03 18:16:40 +00:00
Joshua Drake acf9b2088d remove half-browser half-fileformat /misc/ version, but preserve differences in comments in fileformat version 
git-svn-id: file:///home/svn/framework3/trunk@11701 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 21:47:02 +00:00
Jonathan Cran 5b5e7028ad quick mod from daniel clemens to show the ip with the url 
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 19:04:54 +00:00
Tod Beardsley 671659841b On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report. 
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 18:39:48 +00:00
Tod Beardsley e31f35e3ae Fixes #3643. These modules now report_vuln() correctly. 
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 17:42:23 +00:00
Tod Beardsley 99b1703416 Trailing comma on cisco_ios_auth_bypass 
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 17:07:31 +00:00
Tod Beardsley cec851a5ed Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references. 
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 17:06:40 +00:00
Joshua Drake 3ac076c20a add exploit for VLC media player WebM processing from Dan Rosenburg 
git-svn-id: file:///home/svn/framework3/trunk@11692 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-01 18:54:24 +00:00
Joshua Drake 2c93910f4b switch to .html per reports of brokennes 
git-svn-id: file:///home/svn/framework3/trunk@11683 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-31 06:18:13 +00:00
HD Moore ac651fba6b Merge code from Alexandre Maloteaux, fixes #3615 
git-svn-id: file:///home/svn/framework3/trunk@11678 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-30 19:26:35 +00:00
James Lee 3d94cd7d22 cut down on some of the copy-paste 
git-svn-id: file:///home/svn/framework3/trunk@11664 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-29 01:55:47 +00:00
James Lee a10a94d373 report configured shares in the same way as modules/auxiliary/scanner/smb/smb_enumshares.rb 
git-svn-id: file:///home/svn/framework3/trunk@11663 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-29 00:37:13 +00:00
Joshua Drake a62f1922b3 fix typos, lol? 
git-svn-id: file:///home/svn/framework3/trunk@11662 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-28 23:56:35 +00:00
Joshua Drake 9682091cca Add SQLI version of MSSQL Payload from Rodrigo Marcos! 
git-svn-id: file:///home/svn/framework3/trunk@11655 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-27 16:48:07 +00:00
Joshua Drake 89a731b789 Prevent trying to call .map on nil 
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-27 16:39:19 +00:00
Joshua Drake 21d93be897 Add fix for WOW64 from ReL1k 
git-svn-id: file:///home/svn/framework3/trunk@11650 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-26 16:26:08 +00:00
Joshua Drake 23808d19cd See #3531, Apply fix from Chao Mu 
git-svn-id: file:///home/svn/framework3/trunk@11649 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-26 15:55:35 +00:00
James Lee d2670d52ec add BufferRegister and BufferOffset support for shikata_ga_nai. see #3563. tested this pretty extensively. /me crosses fingers 
git-svn-id: file:///home/svn/framework3/trunk@11646 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-26 04:24:41 +00:00
Joshua Drake c9d3d60b23 Rework external command invocation 
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-26 01:28:27 +00:00
Joshua Drake a0a8ea8cbd re-order includes a bit 
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-25 21:32:59 +00:00
Carlos Perez 05fd7b4e57 Patch for railgun and post mixin; and module from cha-mou to add capability to delete users on windows hosts. 
git-svn-id: file:///home/svn/framework3/trunk@11638 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-25 13:02:35 +00:00
HD Moore 3794ed35cc Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk: 
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf



git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-25 02:24:37 +00:00
Joshua Drake d9fe9da849 add DoS module from Paulino Calderon 
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-25 00:11:41 +00:00
natron 1be3448959 svn propset 
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-24 22:21:08 +00:00
natron bb4343bf63 Add new domain user enumeration aux mod. Still needs an update to include db reporting. 
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-24 22:14:57 +00:00
Joshua Drake 81ff9483bf add ms09-004 exploit via sql injection from Rodrigo Marcos 
git-svn-id: file:///home/svn/framework3/trunk@11631 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-24 19:37:58 +00:00
Joshua Drake 29b03701d1 Fixes #3531, Use new accounts mixin to resolve SID->Account Names 
git-svn-id: file:///home/svn/framework3/trunk@11630 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-24 17:25:52 +00:00
Joshua Drake 0af8915fd5 Fixes #1936, Add accounts mixin and accompanying post module 
git-svn-id: file:///home/svn/framework3/trunk@11629 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-24 17:23:48 +00:00
James Lee d7cda0f85a accept a client argument for get_uri() 
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-22 00:16:57 +00:00
Joshua Drake 80eb7bad52 Fixes #3257, Adds two mod_negotiation scanner modules from DiabloHorn 
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-21 22:26:33 +00:00
Tod Beardsley aeb1f684c0 Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs). 
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-21 17:24:03 +00:00
Joshua Drake ae33e3ac71 Fixes #3571, normalize 2k3r2 and fix language defaulting 
git-svn-id: file:///home/svn/framework3/trunk@11614 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-21 04:09:48 +00:00
Joshua Drake a944cbc50d style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@11612 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-20 20:40:47 +00:00
Joshua Drake e821f7e757 Fixes #3567, apply patch to make ports/payloads configurable 
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-20 20:32:18 +00:00
James Lee f3bda46333 doesn't work on IE8, fixes #3566, thanks Hauke Mehrtens for the patch 
git-svn-id: file:///home/svn/framework3/trunk@11610 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-20 19:30:59 +00:00
Joshua Drake 362c409623 Fixes #3554, add missing variable to published_applications (from published_bruteforce), some clean ups 
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-20 00:22:21 +00:00
Joshua Drake be0169cef1 add android file snarfer exploit 
git-svn-id: file:///home/svn/framework3/trunk@11601 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-19 18:04:54 +00:00
Joshua Drake 41e43b557c Rename to MSXX format, add references 
git-svn-id: file:///home/svn/framework3/trunk@11598 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-18 17:19:17 +00:00
Joshua Drake 667d7aacea add keywords, some references 
git-svn-id: file:///home/svn/framework3/trunk@11597 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-18 00:36:45 +00:00
Joshua Drake 680625ff2d add exploit for cve-2010-2743 
git-svn-id: file:///home/svn/framework3/trunk@11596 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-18 00:33:05 +00:00
Tod Beardsley 1d7745d449 Add some tracking datastore objects (ParentUUID and AutopwnUUID) to browser_autopwn.rb's exploits and multi/handlers to make exploit tracking a little easier. 
git-svn-id: file:///home/svn/framework3/trunk@11592 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-17 22:15:22 +00:00
Joshua Drake b6b9b83dd7 add CVE reference 
git-svn-id: file:///home/svn/framework3/trunk@11579 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-14 16:25:37 +00:00
James Lee f2661e68db don't respond with 404's for requests that don't match the URIPATH exactly. allows for more generic hash stealing and fixes 3442 
git-svn-id: file:///home/svn/framework3/trunk@11576 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-13 20:57:33 +00:00
Carlos Perez 3c8501cd82 Keylogrecorder script migrated in to post module keylog_recorder 
git-svn-id: file:///home/svn/framework3/trunk@11570 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-13 02:44:22 +00:00
Joshua Drake 166b4d3250 whitespace 
git-svn-id: file:///home/svn/framework3/trunk@11568 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-13 00:14:44 +00:00
Carlos Perez 1f4d36b758 removed spaces 
git-svn-id: file:///home/svn/framework3/trunk@11566 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 23:25:00 +00:00
Carlos Perez 3fc76be37c removed spaces 
git-svn-id: file:///home/svn/framework3/trunk@11565 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 23:24:46 +00:00
Carlos Perez c6c5488a04 changed threading 
git-svn-id: file:///home/svn/framework3/trunk@11564 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 23:24:17 +00:00
Carlos Perez 0a111ee265 get_valid_community migrated to post module and expanded. Now enum_snmp 
git-svn-id: file:///home/svn/framework3/trunk@11563 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 23:22:41 +00:00
James Lee 9887e4cc08 fix header comments 
git-svn-id: file:///home/svn/framework3/trunk@11560 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 18:29:56 +00:00
James Lee 3781b3e912 fix header comments 
git-svn-id: file:///home/svn/framework3/trunk@11559 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 18:11:24 +00:00
Carlos Perez 6599e0638e Fixed small indent 
git-svn-id: file:///home/svn/framework3/trunk@11558 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 17:36:58 +00:00
Carlos Perez 50d4f35601 fixed indenting 
git-svn-id: file:///home/svn/framework3/trunk@11557 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 17:33:46 +00:00
Carlos Perez 0cfc2f8e45 get_application_list script migrated in to post module enum_applications 
git-svn-id: file:///home/svn/framework3/trunk@11556 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 03:55:19 +00:00
Carlos Perez 2af5907220 enum_powershell_env script migrated in to post module 
git-svn-id: file:///home/svn/framework3/trunk@11555 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 02:31:13 +00:00
Carlos Perez f2a211cabc checkvm script migrated in to post module 
git-svn-id: file:///home/svn/framework3/trunk@11554 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 02:16:06 +00:00
Carlos Perez f7af7924c0 Update windows/registry mixin path for module import 
git-svn-id: file:///home/svn/framework3/trunk@11551 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-12 00:11:43 +00:00
Carlos Perez 212e38a3d7 Migrated enum_shares script to module 
git-svn-id: file:///home/svn/framework3/trunk@11549 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-11 22:31:37 +00:00
Carlos Perez 3daaaf0c7e Keywords and formatting 
git-svn-id: file:///home/svn/framework3/trunk@11548 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-11 22:30:40 +00:00
Joshua Drake ffbea6199f Do not wait for the DCERPC call to timeout 
git-svn-id: file:///home/svn/framework3/trunk@11545 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-11 17:56:27 +00:00
Carlos Perez b9e31bdfb9 migrated enum logged on users script to module 
git-svn-id: file:///home/svn/framework3/trunk@11540 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-11 02:02:11 +00:00
James Lee 88eb09ac66 more renaming fail from #3478 
git-svn-id: file:///home/svn/framework3/trunk@11538 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-10 21:36:42 +00:00
Joshua Drake 14617450d0 catch connection errors 
git-svn-id: file:///home/svn/framework3/trunk@11537 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-10 20:03:53 +00:00
Joshua Drake b9836dcf50 fix success detection read loop 
git-svn-id: file:///home/svn/framework3/trunk@11535 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-10 19:40:39 +00:00
Joshua Drake 1604b5616f apply some more changes from Konrads 
git-svn-id: file:///home/svn/framework3/trunk@11533 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-10 14:34:24 +00:00
Joshua Drake 1e951f6245 fix check method 
git-svn-id: file:///home/svn/framework3/trunk@11526 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-09 23:33:53 +00:00
Joshua Drake db1f63eb1a remove stray comma 
git-svn-id: file:///home/svn/framework3/trunk@11525 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-09 23:33:24 +00:00
Joshua Drake d832296e7d minor cleanups 
git-svn-id: file:///home/svn/framework3/trunk@11524 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-09 23:33:10 +00:00
Joshua Drake 0b43172413 add exploit for cve-2006-5815, oldy but often requested! 
git-svn-id: file:///home/svn/framework3/trunk@11523 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-09 23:23:25 +00:00
Joshua Drake 739604ea12 Fixes #3469, silly typo 
git-svn-id: file:///home/svn/framework3/trunk@11520 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 05:58:55 +00:00
Joshua Drake 9ef757bf17 Fixes #3387, add the PACKAGE option to allow 3.2 
git-svn-id: file:///home/svn/framework3/trunk@11518 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 04:11:01 +00:00
Joshua Drake d994f595fe remove unused vars 
git-svn-id: file:///home/svn/framework3/trunk@11517 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 01:59:10 +00:00
Joshua Drake 287f4c87fe style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 01:13:26 +00:00
Joshua Drake af79f5c0ea add description, references, etc 
git-svn-id: file:///home/svn/framework3/trunk@11515 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 01:12:15 +00:00
Joshua Drake 08f3f44f98 allow bypassuac to work on x64 or x86, allow payload selection, cleanup indents 
git-svn-id: file:///home/svn/framework3/trunk@11514 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 00:43:01 +00:00
Joshua Drake 19e8a6a5b1 switch AutoRunScript for InitialAutoRunScript, oops 
git-svn-id: file:///home/svn/framework3/trunk@11513 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-08 00:25:44 +00:00
Joshua Drake 452ab6f301 updated description 
git-svn-id: file:///home/svn/framework3/trunk@11506 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-07 17:51:34 +00:00
Joshua Drake f7e70e8d42 add an automatic target and now includes Office XP SP3 
git-svn-id: file:///home/svn/framework3/trunk@11505 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-07 17:48:29 +00:00
James Lee 9c7d40b0b9 fix a namespace screwup 
git-svn-id: file:///home/svn/framework3/trunk@11504 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-07 17:00:35 +00:00
James Lee dfd9dd70e6 rename fail 
git-svn-id: file:///home/svn/framework3/trunk@11503 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-07 16:59:02 +00:00
Mario Ceballos a11f0d5e42 fixes a uninitialized constant Msf::Post::Registry warning 
git-svn-id: file:///home/svn/framework3/trunk@11501 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-07 00:28:04 +00:00
James Lee e10eb7d313 hashdump is windows specific 
git-svn-id: file:///home/svn/framework3/trunk@11500 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 23:48:16 +00:00
James Lee 38a3b8a387 move windows-specific privesc modules into a windows/ directory, multi-platform mods into a multi/ dir, fixes #3448 
git-svn-id: file:///home/svn/framework3/trunk@11499 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 22:33:36 +00:00
HD Moore 74bf5199f1 Patches from goony, fixes #3438 
git-svn-id: file:///home/svn/framework3/trunk@11497 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 21:35:57 +00:00
James Lee dbeae8df24 add support for running post modules from the meterpreter prompt. options are set in the same way as the -o arg to run, e.g. run post/escalate/bypassuac LHOST=192.168.0.1 
git-svn-id: file:///home/svn/framework3/trunk@11496 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 21:28:00 +00:00
Joshua Drake 4ae8b8b14a add snmp_set scanner from Matteo Cantoni (Fixes #3437), remove executable property from enums 
git-svn-id: file:///home/svn/framework3/trunk@11494 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 21:23:22 +00:00
James Lee 1ecb293010 pass the listener bind address through to handlers 
git-svn-id: file:///home/svn/framework3/trunk@11493 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 21:18:24 +00:00
James Lee 152c380a13 remove an erroneous line to get rid of NameErrors, thanks ReL1K 
git-svn-id: file:///home/svn/framework3/trunk@11490 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 20:23:29 +00:00
HD Moore 4971a0d7af Add Skylined's "You Got Pwned" payload 
git-svn-id: file:///home/svn/framework3/trunk@11485 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 17:34:09 +00:00
HD Moore c003e4b8ef Merge R3L1K's UAC bypass module into the trunk 
git-svn-id: file:///home/svn/framework3/trunk@11483 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 16:59:25 +00:00
Jonathan Cran a206ed8418 clarifying wmi tools are not installed by default 
git-svn-id: file:///home/svn/framework3/trunk@11481 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-06 05:27:37 +00:00
Joshua Drake bc7a8e3b47 fix silly merge conflict data in HTML 
git-svn-id: file:///home/svn/framework3/trunk@11479 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-05 22:52:54 +00:00
James Lee a79092a0d3 this is really unlimited, but bump it a bit for possible larger payloads later. 
git-svn-id: file:///home/svn/framework3/trunk@11474 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 23:37:11 +00:00
Joshua Drake f0202c3350 add MSFT advisory references 
git-svn-id: file:///home/svn/framework3/trunk@11473 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 23:00:45 +00:00
James Lee 1735dc8cb2 add bid reference, thanks jjarmoc 
git-svn-id: file:///home/svn/framework3/trunk@11472 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 22:08:33 +00:00
Joshua Drake 152eb80710 fix debug target, adjust File reference 
git-svn-id: file:///home/svn/framework3/trunk@11469 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 16:55:58 +00:00
Steve Tornio 4a1f45c633 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11467 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 16:15:43 +00:00
Joshua Drake 4fc19971ae add exploit for cve-2010-3970 
git-svn-id: file:///home/svn/framework3/trunk@11466 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 15:30:29 +00:00
Tod Beardsley 24388f3a38 Adding a CVE reference for weak/blank/guessable passwords. 
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 15:30:17 +00:00
HD Moore 401d8e5a68 Revert until the mixin is checked in 
git-svn-id: file:///home/svn/framework3/trunk@11464 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 02:46:18 +00:00
James Lee a121a73cdb use the mixin for registry fu. 
git-svn-id: file:///home/svn/framework3/trunk@11462 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 01:01:29 +00:00
Joshua Drake a59dcc512b switch target to p/p/r that works on multiple versions 
git-svn-id: file:///home/svn/framework3/trunk@11459 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-02 09:56:43 +00:00
Joshua Drake 5e2abcc88c add DoS module for IIS FTP server 
git-svn-id: file:///home/svn/framework3/trunk@11456 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-31 18:32:55 +00:00
HD Moore bec8a95b02 Merges pello's Cisco uploader module, merges changes back into the TFTP server class. Fixes #3429 
git-svn-id: file:///home/svn/framework3/trunk@11454 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-30 16:37:58 +00:00
Joshua Drake 540bd3692c add fileformat exploit for cve-2010-3333 
git-svn-id: file:///home/svn/framework3/trunk@11450 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-29 20:30:50 +00:00
HD Moore b7a05f03b0 Remove duplicate line 
git-svn-id: file:///home/svn/framework3/trunk@11449 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-29 20:12:14 +00:00
James Lee 9a952b22e4 rearrange post module directory structure 
git-svn-id: file:///home/svn/framework3/trunk@11445 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-29 17:10:46 +00:00
Joshua Drake 08df4dac3b randomize import styles, patch from jjarmoc 
git-svn-id: file:///home/svn/framework3/trunk@11443 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-29 16:49:20 +00:00
James Lee e3cd2c2572 add carlos back to authors list, i suck 
git-svn-id: file:///home/svn/framework3/trunk@11432 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-28 19:39:02 +00:00
James Lee a241f435c1 rename the 'privilege_escalation' to the less verbose 'escalate' 
git-svn-id: file:///home/svn/framework3/trunk@11431 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-28 19:29:36 +00:00
Joshua Drake 885545a94e add http:bl scanner from mubix, fixes #3346 
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-28 18:33:45 +00:00
Joshua Drake b3bfb5834e change credit to passerby 
git-svn-id: file:///home/svn/framework3/trunk@11427 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-28 17:10:19 +00:00
HD Moore d202a5abf2 Add missing mixin 
git-svn-id: file:///home/svn/framework3/trunk@11423 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-27 18:10:41 +00:00
James Lee f0cc6ff596 big commit for converting meterpreter scripts to modules, see #3377. also fixes payload tab-completion and 'show payloads' after TARGET has changed 
git-svn-id: file:///home/svn/framework3/trunk@11421 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-27 17:46:42 +00:00
HD Moore 30affd4b2c This commit adds a new set of discovery modules from wuntee and some useful utility methods for working with link-local addresses 
git-svn-id: file:///home/svn/framework3/trunk@11417 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-27 16:43:53 +00:00
Steve Tornio 37a3ca4643 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11415 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-27 13:16:15 +00:00
Steve Tornio 860e29228b add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11414 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 14:43:13 +00:00
HD Moore 2f97c61f86 Add the uber SNMP enumeration module from Matteo Cantoni 
git-svn-id: file:///home/svn/framework3/trunk@11412 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 06:31:38 +00:00
HD Moore 5875fdb701 Two new SNMP community enumeration tools for Windows by tebo (local account list and SMB shares). Addition of a Meterpreter script for snagging the SNMP community from the registry 
git-svn-id: file:///home/svn/framework3/trunk@11410 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 06:08:34 +00:00
HD Moore b7eec06041 Deregister username-specific options since they aren't supported anyways, a suggestion from tebo 
git-svn-id: file:///home/svn/framework3/trunk@11409 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 06:02:35 +00:00
HD Moore a8cb5ee259 Updated return address from Tyler Reguly 
git-svn-id: file:///home/svn/framework3/trunk@11407 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 06:01:12 +00:00
HD Moore e7f3c63e1c Exploit for a recent Redmine command injection vulnerability, provided as a holiday gift by Joernchen of Phenoelit. 
git-svn-id: file:///home/svn/framework3/trunk@11406 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-25 05:46:29 +00:00
Joshua Drake 5f5d2992ce add reference to 0x557 slides (for .NET 2.0 rop) 
git-svn-id: file:///home/svn/framework3/trunk@11405 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-23 01:36:54 +00:00
Joshua Drake cdfe03ce43 add MSFT advisory and CVE 
git-svn-id: file:///home/svn/framework3/trunk@11404 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-23 01:30:43 +00:00
Steve Tornio 09b00739fb add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11402 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-22 22:21:56 +00:00
Joshua Drake 4ddd78c4de add a couple targets 
git-svn-id: file:///home/svn/framework3/trunk@11399 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-22 19:14:29 +00:00
Joshua Drake 0f24d1955c minor corrections, use .NET 2.0 ROP :) 
git-svn-id: file:///home/svn/framework3/trunk@11398 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-22 18:26:18 +00:00
Joshua Drake 44c8a71dcf minor clean ups 
git-svn-id: file:///home/svn/framework3/trunk@11397 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-22 18:23:16 +00:00
Mario Ceballos 1407d7f1d5 revert back. little more reliable. 
git-svn-id: file:///home/svn/framework3/trunk@11396 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-22 17:40:13 +00:00
Mario Ceballos d89c60f2de add exploit module wmi_admintools.rb 
git-svn-id: file:///home/svn/framework3/trunk@11395 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-22 14:35:36 +00:00
Joshua Drake 5fb2bfc969 fix super busted mssql_payload some more 
git-svn-id: file:///home/svn/framework3/trunk@11392 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-21 20:36:34 +00:00
Joshua Drake 7db17e323e fix super busted mssql_payload, oops 
git-svn-id: file:///home/svn/framework3/trunk@11391 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-21 20:20:20 +00:00
Joshua Drake c4c0cabccb switch to .NET 2.0 ROP, Merry Xmas! 
git-svn-id: file:///home/svn/framework3/trunk@11390 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-21 19:24:19 +00:00
Steve Tornio 3662fb4bc6 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11389 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-21 19:16:18 +00:00
HD Moore 4708d5b159 Add coverage for the mitel audio web conferencing web interface command injection. 
git-svn-id: file:///home/svn/framework3/trunk@11388 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-21 19:02:13 +00:00
HD Moore 8a4f6de5c4 Correct state processing in the additional address discovery code. 
git-svn-id: file:///home/svn/framework3/trunk@11385 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-21 02:22:56 +00:00
Joshua Drake 5d2f26b41b add exploit for unpatched IE css import bug 
git-svn-id: file:///home/svn/framework3/trunk@11383 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-20 16:34:07 +00:00
Joshua Drake b8b0e1af97 fix typo 
git-svn-id: file:///home/svn/framework3/trunk@11380 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-20 09:11:45 +00:00
HD Moore 3f7809ca5a Patch to fix vuln reporting by swtornio 
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-18 18:55:36 +00:00
James Lee f1c13e24a6 remove erroneous OUTPUTPATH overriding the sane one from the fileformat mixin 
git-svn-id: file:///home/svn/framework3/trunk@11353 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-16 20:11:01 +00:00
Joshua Drake c46be9d387 better error for non-exim servers 
git-svn-id: file:///home/svn/framework3/trunk@11352 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-16 17:30:24 +00:00
Joshua Drake 843b121ea1 fix typo 
git-svn-id: file:///home/svn/framework3/trunk@11350 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-16 16:38:31 +00:00
James Lee 9c1f7b28e2 pass SSL opt on to submodules 
git-svn-id: file:///home/svn/framework3/trunk@11346 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-15 23:02:04 +00:00
James Lee fd1fb44bfc add targets for windows and linux 
git-svn-id: file:///home/svn/framework3/trunk@11345 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-15 22:46:22 +00:00
Joshua Drake 6a5ebf2d91 fix nil access 
git-svn-id: file:///home/svn/framework3/trunk@11344 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-15 19:49:40 +00:00
HD Moore 55b21d4aaf Fixes to enable password parsing and rw/ro detection in snmp brute force 
git-svn-id: file:///home/svn/framework3/trunk@11336 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-14 20:51:17 +00:00
James Lee f15e6e5e62 update autopwn, replace ms10-018 behaviors with ms10-090 css clip. 
git-svn-id: file:///home/svn/framework3/trunk@11333 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-14 18:53:22 +00:00
Joshua Drake af56bebfa1 note ms10-090 bulletin 
git-svn-id: file:///home/svn/framework3/trunk@11331 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-14 18:41:20 +00:00
James Lee dd6afdc74c make these titles a little clearer 
git-svn-id: file:///home/svn/framework3/trunk@11330 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-14 17:26:44 +00:00
Joshua Drake d69cff2b34 add bid reference 
git-svn-id: file:///home/svn/framework3/trunk@11318 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-13 16:16:29 +00:00
Joshua Drake b30270e742 fix version 
git-svn-id: file:///home/svn/framework3/trunk@11310 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-12 19:06:18 +00:00
HD Moore cff22d7a56 Consistency change to make snmp act like other login modules 
git-svn-id: file:///home/svn/framework3/trunk@11303 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-12 07:27:35 +00:00
HD Moore 58565cd53f Rename community to snmp_login and include the brute force mixin 
git-svn-id: file:///home/svn/framework3/trunk@11302 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-12 07:09:43 +00:00
HD Moore 4e4eb14887 This adds a TFTP version of #3345 (Pello's snmp config downloader). Still more work to do for the generic module 
git-svn-id: file:///home/svn/framework3/trunk@11300 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 23:36:37 +00:00
Joshua Drake 573c639c85 remove debug prints 
git-svn-id: file:///home/svn/framework3/trunk@11299 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 22:00:34 +00:00
Joshua Drake 7c6eadc24b check more responses, account for corner case in initial headers 
git-svn-id: file:///home/svn/framework3/trunk@11298 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 21:58:25 +00:00
HD Moore fb7a06b218 Correct typo, find coffee 
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 20:03:35 +00:00
HD Moore 909eeefc8f Change of plan, keep this as a single module 
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 19:54:47 +00:00
HD Moore 37ffccde08 Rename this module for clarity 
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 19:27:26 +00:00
Joshua Drake ea4e8c29d3 add hdm to authors, minor cleanups 
git-svn-id: file:///home/svn/framework3/trunk@11289 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 10:55:24 +00:00
HD Moore 8162d100fd Add keywords 
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 07:49:22 +00:00
HD Moore e3f909cef9 Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers. 
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 07:37:09 +00:00
HD Moore c1a3364ea9 Update the privileged flag 
git-svn-id: file:///home/svn/framework3/trunk@11285 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 03:31:45 +00:00
HD Moore 8ad08ec535 Update the description/refs 
git-svn-id: file:///home/svn/framework3/trunk@11284 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 03:31:04 +00:00
HD Moore 61e8ab1432 This module will now automatically gain root if Perl is installed 
git-svn-id: file:///home/svn/framework3/trunk@11283 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-11 03:21:52 +00:00
Joshua Drake 6a4e52f667 Account for SEH offset depending on the path 
git-svn-id: file:///home/svn/framework3/trunk@11282 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 23:35:58 +00:00
Joshua Drake c1f37b3c8a minor adjustment to output printing 
git-svn-id: file:///home/svn/framework3/trunk@11281 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 23:29:26 +00:00
Joshua Drake 5624c55599 add EHLO_NAME advanced option, remove debug print, fix version regex 
git-svn-id: file:///home/svn/framework3/trunk@11280 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 22:51:05 +00:00
Joshua Drake b5d44d1684 handle hosts that reverse properly, whitespace 
git-svn-id: file:///home/svn/framework3/trunk@11279 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 22:32:39 +00:00
HD Moore cc81d3bbc0 Automagic updates to jduck's exim module 
git-svn-id: file:///home/svn/framework3/trunk@11278 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 22:17:47 +00:00
HD Moore a683f7b7d4 Automagic updates to jduck's exim module 
git-svn-id: file:///home/svn/framework3/trunk@11277 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 22:16:34 +00:00
Steve Tornio d5fc9df054 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11276 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 21:43:12 +00:00
Joshua Drake 5cc8407748 style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@11275 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 19:50:16 +00:00
Joshua Drake 9f5df90e60 add exploit for cve-2010-4344 
git-svn-id: file:///home/svn/framework3/trunk@11274 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 19:34:23 +00:00
HD Moore 26aca9d6ba Swap some module locations, add loot and cred reporting 
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 05:47:33 +00:00
Tod Beardsley e18548387c Ensure that UDP services are set to "open" in case they already had a "closed" record. 
git-svn-id: file:///home/svn/framework3/trunk@11270 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 01:13:44 +00:00
HD Moore b3b2bf6675 Stop testing users if the device doesn't support it 
git-svn-id: file:///home/svn/framework3/trunk@11269 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-10 00:58:55 +00:00
Tod Beardsley 493db14006 Adds a "duplicate_ok" option to report_auth_info to allow for multiple passwords on the same username. Never came up before I took a look at SNMP. 
Also normalizes the print_status messages to be explicit about which module is reporting (important when you're running several at once).



git-svn-id: file:///home/svn/framework3/trunk@11267 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-09 21:23:39 +00:00
Joshua Drake 1da08b0bdc abort if retries count exceeded 
git-svn-id: file:///home/svn/framework3/trunk@11263 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 23:57:14 +00:00
HD Moore ac0222f73d Ignore empty string replies 
git-svn-id: file:///home/svn/framework3/trunk@11262 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 23:52:53 +00:00
HD Moore 1fe9af1b2f A little rewording 
git-svn-id: file:///home/svn/framework3/trunk@11261 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 23:22:04 +00:00
Joshua Drake b88f18c7e5 add one to the delay for todb 
git-svn-id: file:///home/svn/framework3/trunk@11260 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 23:13:08 +00:00
Joshua Drake f788425865 add retry for vnc4server 
git-svn-id: file:///home/svn/framework3/trunk@11259 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 23:07:10 +00:00
Tod Beardsley 0b1e3e12ea Adds autofilter ports to vnc_login. 
git-svn-id: file:///home/svn/framework3/trunk@11257 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 22:13:51 +00:00
HD Moore 9d5ac80cb5 Fix to work with IIS 7 
git-svn-id: file:///home/svn/framework3/trunk@11254 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 16:22:04 +00:00
Joshua Drake add6955501 add disclosure date, fix parse error on 1.8.7 
git-svn-id: file:///home/svn/framework3/trunk@11253 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 16:17:16 +00:00
HD Moore 2a22713804 Fix up match 
git-svn-id: file:///home/svn/framework3/trunk@11252 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-08 15:29:45 +00:00
James Lee 05d073c467 move the evil-looking metasploit.PayloadApplet to the more inocuous SiteLoader.class, re-enable rjb compiling for the applet class 
git-svn-id: file:///home/svn/framework3/trunk@11249 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-07 20:43:53 +00:00
Joshua Drake 9c1576b20e update the title 
git-svn-id: file:///home/svn/framework3/trunk@11246 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-07 17:46:24 +00:00
Joshua Drake bbab0e3fd9 add cve-2008-6825 exploit from Larry Wert, fixes #3145 
git-svn-id: file:///home/svn/framework3/trunk@11245 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-07 17:44:47 +00:00
James Lee e673187895 don't do ErrorCode detection if the user specified one explicitly, fixes #3293 
git-svn-id: file:///home/svn/framework3/trunk@11239 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-07 00:59:28 +00:00
Joshua Drake 05f7a90e19 fix disclosure date 
git-svn-id: file:///home/svn/framework3/trunk@11228 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-05 17:46:31 +00:00
Mario Ceballos 5dad5e2ee5 consistency 
git-svn-id: file:///home/svn/framework3/trunk@11227 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-05 15:08:22 +00:00
Joshua Drake f687a3460c move all test modules (aux/exploits) into test/modules directory, use loadpath to load them 
git-svn-id: file:///home/svn/framework3/trunk@11218 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-04 01:59:24 +00:00
Joshua Drake 45813f9d9f reset status after first connect, improve success message when a password works 
git-svn-id: file:///home/svn/framework3/trunk@11217 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-03 21:36:11 +00:00
Joshua Drake c7dc070f5c skip users with too long names (as reported by the server) 
git-svn-id: file:///home/svn/framework3/trunk@11216 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-03 21:22:39 +00:00
Steve Tornio e93c196363 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11214 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-03 12:34:38 +00:00
Mario Ceballos 50d6c9659a added coverage for the proftpd backdoor. 
git-svn-id: file:///home/svn/framework3/trunk@11210 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-02 22:33:37 +00:00
Joshua Drake 59974635b1 fix cve reference 
git-svn-id: file:///home/svn/framework3/trunk@11208 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-02 21:10:03 +00:00
Joshua Drake b3325fc133 unforgivable typo 
git-svn-id: file:///home/svn/framework3/trunk@11207 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-02 18:08:39 +00:00
Joshua Drake 382f902c24 add retry on connection refused 
git-svn-id: file:///home/svn/framework3/trunk@11206 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-02 18:06:51 +00:00
Tod Beardsley 0204cedca6 Makes the print_status displays more consistent between smb_login and psexec by moving some of the domain display functions up into exploit/smb proper. 
git-svn-id: file:///home/svn/framework3/trunk@11204 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-02 17:29:26 +00:00
James Lee 3fdfb3e945 syntax errors 
git-svn-id: file:///home/svn/framework3/trunk@11195 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-01 19:26:57 +00:00
Joshua Drake 9156509c58 clarify authors list 
git-svn-id: file:///home/svn/framework3/trunk@11192 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-01 16:23:04 +00:00
Steve Tornio e6f640bc17 add cve and osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@11189 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-01 03:18:05 +00:00
Mario Ceballos 14ea7a85bb svn keywords 
git-svn-id: file:///home/svn/framework3/trunk@11188 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-01 02:03:25 +00:00
Mario Ceballos 5ed387aa38 added exploit module enjoysapgui_comp_download.rb 
git-svn-id: file:///home/svn/framework3/trunk@11187 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-01 02:01:46 +00:00
James Lee 62a425f6b6 add rjb signing back in to java_signed_applet 
git-svn-id: file:///home/svn/framework3/trunk@11186 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-01 01:29:08 +00:00
Steve Tornio 40ace0a218 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11183 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 23:07:00 +00:00
Joshua Drake c6cf03021d add xion audio player exploit from m_101 
git-svn-id: file:///home/svn/framework3/trunk@11182 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 22:03:55 +00:00
Joshua Drake 26a9fe6fc7 add some missing CVE references 
git-svn-id: file:///home/svn/framework3/trunk@11180 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 20:19:18 +00:00
Joshua Drake d5835fe7b0 remove commented out REST portion 
git-svn-id: file:///home/svn/framework3/trunk@11179 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 19:11:42 +00:00
Joshua Drake 98e8ec4cc9 add REST version of axis2 deployer 
git-svn-id: file:///home/svn/framework3/trunk@11178 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 18:17:33 +00:00
James Lee 191c4e8eb7 make java_signed_applet work with generic java payloads, but keep the default target as Windows/x86 since it is by far the most common victim. 
git-svn-id: file:///home/svn/framework3/trunk@11172 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 03:50:40 +00:00
Joshua Drake 225bf0738e improve handling of return from connect_from_privileged_port, rework rlogin fromuser merging 
git-svn-id: file:///home/svn/framework3/trunk@11171 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 02:00:58 +00:00
Joshua Drake 1eda716b70 fix another ruby-ism problem checking modulus return 
git-svn-id: file:///home/svn/framework3/trunk@11166 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-30 00:16:53 +00:00
Joshua Drake c45314bf4e use usernames from the USERPASS_FILE 
git-svn-id: file:///home/svn/framework3/trunk@11149 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 07:52:20 +00:00
Joshua Drake 4c26dfbfd8 lol? skip on error?! 
git-svn-id: file:///home/svn/framework3/trunk@11147 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 07:38:12 +00:00
Joshua Drake 5b6a08e35c somewhat fix handling of USERPASS_FILE 
git-svn-id: file:///home/svn/framework3/trunk@11146 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 07:32:00 +00:00
Joshua Drake 7fe5261674 switch to IANA short names 
git-svn-id: file:///home/svn/framework3/trunk@11145 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 07:14:40 +00:00
Joshua Drake c50fd9466f ignore usernames, we dont use them 
git-svn-id: file:///home/svn/framework3/trunk@11144 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 06:09:57 +00:00
Joshua Drake 14432f7087 better error for failures w/fromuser only 
git-svn-id: file:///home/svn/framework3/trunk@11143 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 06:08:02 +00:00
Joshua Drake 2e8728a637 add custom passwords+fromusers combined bruting, some fixes 
git-svn-id: file:///home/svn/framework3/trunk@11140 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 06:01:43 +00:00
Joshua Drake dfe3aff6bd add custom bruting using FROMUSER/FROMUSER_FILE, report errors better 
git-svn-id: file:///home/svn/framework3/trunk@11139 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 06:00:50 +00:00
Joshua Drake f9ecc83245 remove rservices mixing, its not used 
git-svn-id: file:///home/svn/framework3/trunk@11138 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 05:59:48 +00:00
Joshua Drake 4535c1c260 tweaks from sherl0ck_ 
git-svn-id: file:///home/svn/framework3/trunk@11136 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 04:12:46 +00:00
Joshua Drake 07703eca66 try harder, report errors better 
git-svn-id: file:///home/svn/framework3/trunk@11135 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-25 01:28:52 +00:00
Steve Tornio 484b18c472 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11133 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 22:42:18 +00:00
Joshua Drake 1a771d5192 retry up to 5 times with exponential back off 
git-svn-id: file:///home/svn/framework3/trunk@11132 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 20:58:42 +00:00
Joshua Drake 10892a3fc3 fix array commas 
git-svn-id: file:///home/svn/framework3/trunk@11130 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 20:31:45 +00:00
Joshua Drake 4275ee528d add DoS module for ms10-065, thanks! 
git-svn-id: file:///home/svn/framework3/trunk@11129 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 20:10:01 +00:00
Joshua Drake 8f55c83ed0 clean up some oracle titles 
git-svn-id: file:///home/svn/framework3/trunk@11128 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 19:43:49 +00:00
Joshua Drake e9faf75503 fix some more titles with periods 
git-svn-id: file:///home/svn/framework3/trunk@11127 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 19:35:38 +00:00
Joshua Drake f68fc02f9c include capture mixin for modules that use it 
git-svn-id: file:///home/svn/framework3/trunk@11126 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 19:25:18 +00:00
Mario Ceballos 8c46a6be51 renamed. 
git-svn-id: file:///home/svn/framework3/trunk@11125 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 13:44:46 +00:00
Joshua Drake 0d5c85b67a Improve Oracle module Name fields 
git-svn-id: file:///home/svn/framework3/trunk@11122 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 06:10:13 +00:00
Joshua Drake 1d8e1e332c add better error reporting 
git-svn-id: file:///home/svn/framework3/trunk@11120 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 01:11:49 +00:00
Joshua Drake c152900db6 this module doesn use the java mixin, remove it 
git-svn-id: file:///home/svn/framework3/trunk@11119 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-24 01:11:36 +00:00
Joshua Drake cf25de6658 fix argument error due to bad override 
git-svn-id: file:///home/svn/framework3/trunk@11114 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-23 18:12:08 +00:00
Joshua Drake b55633af60 update enum_delicious, fixes #3230 
git-svn-id: file:///home/svn/framework3/trunk@11107 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-23 01:26:59 +00:00
Joshua Drake 9c668b8daf Super-duper rservices commit - 
1. Added rsh, rlogin, and rexec auth brute scanners
2. Login negotation moved into new Msf::Auxiliary::Login mixin
3. Centralized session registration for auth brute scanners
4. Telnet and SSH auth brute scanners updated to use new mixins
5. Previously committed rservices mixin (r11093)



git-svn-id: file:///home/svn/framework3/trunk@11106 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-23 01:23:24 +00:00
Jonathan Cran e295408327 typo! 
git-svn-id: file:///home/svn/framework3/trunk@11103 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 22:43:34 +00:00
James Lee 52389d28f4 make windows the default target 
git-svn-id: file:///home/svn/framework3/trunk@11102 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 20:54:25 +00:00
James Lee 7a3770f87b don't use java_basicservice_impl in browser autopwn because it doesn't work in an iframe against IE and causes popups in other browsers 
git-svn-id: file:///home/svn/framework3/trunk@11101 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 20:44:16 +00:00
James Lee 669ef3b86e clarify targets 
git-svn-id: file:///home/svn/framework3/trunk@11099 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 17:53:49 +00:00
Joshua Drake 75873aedb4 add exploit for foxit reader title stack bof 
git-svn-id: file:///home/svn/framework3/trunk@11096 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 17:43:42 +00:00
Tod Beardsley 53f6416dad Makes SMB login console output more readable for default "." domain brute forcing -- masks the domain-part for the username, drops it from the machine name unless it's something more interesting. 
git-svn-id: file:///home/svn/framework3/trunk@11095 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 16:16:40 +00:00
Tod Beardsley 80853f0e10 Make the MySQL aux scanner a little more helpful in the event of a missing target. 
git-svn-id: file:///home/svn/framework3/trunk@11094 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 14:12:35 +00:00
Joshua Drake 3bd3ea5724 carlos, plz use the ./tools/msftidy.rb script, see #3198 
git-svn-id: file:///home/svn/framework3/trunk@11091 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 09:11:25 +00:00
James Lee d608db778c we're not sending an applet, just a jar, clarify the output 
git-svn-id: file:///home/svn/framework3/trunk@11084 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-21 19:58:04 +00:00
James Lee 6f7af42667 add an exploit for cve-2010-3563, thanks Matthias Kaiser 
git-svn-id: file:///home/svn/framework3/trunk@11078 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-19 23:02:35 +00:00
Steve Tornio eab8c24b8b add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@11074 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-19 20:43:56 +00:00
Joshua Drake dbcb6d0dc4 use max instead of .sort.last 
git-svn-id: file:///home/svn/framework3/trunk@11073 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-19 18:34:10 +00:00
Joshua Drake 3b6edefe44 fix up auto targeting to not assign to "target" 
git-svn-id: file:///home/svn/framework3/trunk@11072 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-19 18:33:34 +00:00
Joshua Drake b42a04a7aa add cakephp exploit from tdz 
git-svn-id: file:///home/svn/framework3/trunk@11070 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-19 18:30:07 +00:00
Steve Tornio 8f3b64e15c add cve and osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@11068 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-19 14:17:35 +00:00
Mario Ceballos df9a0cfea8 added exploit module realwin_10.rb 
git-svn-id: file:///home/svn/framework3/trunk@11067 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-18 23:45:40 +00:00
Mario Ceballos 1729f8f075 removed extra stuff. 
git-svn-id: file:///home/svn/framework3/trunk@11063 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-18 12:31:55 +00:00
Carlos Perez a4e77c13cc Applied patch by Manuel Schilt 
git-svn-id: file:///home/svn/framework3/trunk@11059 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-18 01:58:46 +00:00
Joshua Drake 2fe78ec685 double grammar fail 
git-svn-id: file:///home/svn/framework3/trunk@11053 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-16 20:23:11 +00:00
Joshua Drake f4d2af3e73 fix typo 
git-svn-id: file:///home/svn/framework3/trunk@11052 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-16 20:17:25 +00:00
Joshua Drake 25611afb6c add sap businessobject modules from jabra, woot! 
git-svn-id: file:///home/svn/framework3/trunk@11046 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-15 05:12:48 +00:00
Mario Ceballos bd7f6eec10 Typo. 
git-svn-id: file:///home/svn/framework3/trunk@11045 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-14 23:39:29 +00:00
Joshua Drake 32c26f18f3 style compliance fixes, set test exploits to manual rank, fix s/ranking/rank/ in some exploits 
git-svn-id: file:///home/svn/framework3/trunk@11039 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-14 19:03:24 +00:00
Joshua Drake d0d4e0b8a4 remove unecessary instruction, thx StalkR! 
git-svn-id: file:///home/svn/framework3/trunk@11034 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-14 03:41:12 +00:00
Joshua Drake 77bc5cf6cd Big VNC update: 
* Created Rex::Proto::RFB
 * Updated vnc_none_auth scanner to use Rex::Proto::RFB::Client
 * Added vnc_login (refactored from carstein)
 * Created an initial vnc_passwords.txt file
 * Removed cipher/des.rb - incompatible license
 * Updated getvncpw script to use new Rex::Proto::RFB::Cipher.decrypt




git-svn-id: file:///home/svn/framework3/trunk@11033 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-14 03:37:45 +00:00
HD Moore dc5116f9df Move the crawler mixin to an auxiliary 
git-svn-id: file:///home/svn/framework3/trunk@11026 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-13 06:55:19 +00:00
HD Moore f457ccb8f7 Add the crawler mixin and a sample form extractor crawler 
git-svn-id: file:///home/svn/framework3/trunk@11025 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-13 06:40:56 +00:00
HD Moore 4b1a83ce48 Update the date based on ZDI information 
git-svn-id: file:///home/svn/framework3/trunk@11021 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-13 05:13:42 +00:00
HD Moore 013be5e920 Tagging as Good ranking for now 
git-svn-id: file:///home/svn/framework3/trunk@11020 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-13 05:12:54 +00:00
HD Moore 2a917b1c8b Add standard header 
git-svn-id: file:///home/svn/framework3/trunk@11019 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-13 05:11:37 +00:00
HD Moore 062d0506aa Merge in an exploit for the Novell NetWare SunRPC CALLIT overflow. Thanks! 
git-svn-id: file:///home/svn/framework3/trunk@11018 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-13 04:53:51 +00:00
Joshua Drake 4a5bee45c5 style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@11015 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-12 23:14:46 +00:00
Mario Ceballos 2aca76ef66 added exploit module freenas_exec_raw.rb. php/meterpreter ftw. 
git-svn-id: file:///home/svn/framework3/trunk@11014 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-12 23:02:28 +00:00
Joshua Drake cf6da2c594 add http form fuzzer from corelanc0d3r 
git-svn-id: file:///home/svn/framework3/trunk@11013 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-12 20:59:36 +00:00
HD Moore a12d9f8dbf This patch adds detailed thread tracking across the metasploit framework, along with a new console command (threads) to manage these. This level of tracking is required to accurately monitor background tasks, assist with debugging, and kill orphaned threads. 
git-svn-id: file:///home/svn/framework3/trunk@11003 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-12 06:19:49 +00:00
Joshua Drake a6bade8795 convert to use metasm, also fixes silly off-by-one bug 
git-svn-id: file:///home/svn/framework3/trunk@11000 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 23:07:50 +00:00
James Lee 326dc42bca add EncodedPayload#encoded_exe, encoded_jar, and encoded_war. simplifies exploits that need java and native payloads. see #406 and #3009 
git-svn-id: file:///home/svn/framework3/trunk@10999 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 23:01:35 +00:00
Joshua Drake 3992eb7ef8 Mass RE-update: fix all framework URL references 
git-svn-id: file:///home/svn/framework3/trunk@10998 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 22:43:22 +00:00
Joshua Drake 9fc6f2f3a3 Mass update: fix all framework URL references 
git-svn-id: file:///home/svn/framework3/trunk@10996 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 22:25:13 +00:00
Joshua Drake 9fb0e1a0bb fix comments 
git-svn-id: file:///home/svn/framework3/trunk@10995 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 22:19:34 +00:00
Steve Tornio 2f118dfc50 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@10990 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 20:09:15 +00:00
Joshua Drake a758dfe37d style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@10988 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 18:20:52 +00:00
Mario Ceballos 8042bf202f added exploit module bacnet_csv.rb 
git-svn-id: file:///home/svn/framework3/trunk@10985 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 16:35:01 +00:00
Tod Beardsley a34096c845 For smb_login, preserve_domains is now default to true. I think it's less surprising that way. 
git-svn-id: file:///home/svn/framework3/trunk@10982 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 14:03:02 +00:00
Tod Beardsley 9aa7db5bad More domain love for smb_login. 
git-svn-id: file:///home/svn/framework3/trunk@10979 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 04:12:17 +00:00
Joshua Drake eab0a40caa switch up IE6 target to work on older version 
git-svn-id: file:///home/svn/framework3/trunk@10978 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 02:54:56 +00:00
Tod Beardsley 996cc49408 Be more accomodating for SMB domains when bruteforcing SMB hosts. 
git-svn-id: file:///home/svn/framework3/trunk@10977 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 02:07:31 +00:00
Joshua Drake 61e5d00722 switch title, comment out IE8 target for now 
git-svn-id: file:///home/svn/framework3/trunk@10963 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 23:12:48 +00:00
Tod Beardsley 9e8a567dd3 See #3146. Don't try string ops on $1 and $2 -- drop these into a more clearly labeled temp variable first, and handle them safely. 
Also, I don't think the match newline regex directive helps much. Also, print a more meaningful status message in the event of a lack of a Server: line fignerprint.

Thanks for the bug report!



git-svn-id: file:///home/svn/framework3/trunk@10962 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 18:48:07 +00:00
HD Moore 7a2e25fd28 Fixes #3146 by unbreaking this code 
git-svn-id: file:///home/svn/framework3/trunk@10961 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 17:48:41 +00:00
Tod Beardsley 13b15c9a2c An incremental advance for this mighty UPnP probe module. 
git-svn-id: file:///home/svn/framework3/trunk@10959 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 15:19:28 +00:00
Tod Beardsley fa962647f9 Adds an auxiliary module to probe the local gateway via UPnP. Kinda neat. 
git-svn-id: file:///home/svn/framework3/trunk@10957 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 06:24:32 +00:00
Patrick Webster 5073e28854 Added citect_scada_odbc exploit module. 
git-svn-id: file:///home/svn/framework3/trunk@10956 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 05:07:18 +00:00
Joshua Drake 470fed6609 add cookie bruting with ubuntu 10.04 target 
git-svn-id: file:///home/svn/framework3/trunk@10951 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-08 17:16:32 +00:00
Joshua Drake 22e56467a1 convert to brute force 
git-svn-id: file:///home/svn/framework3/trunk@10950 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-08 17:02:29 +00:00
James Lee 0d664c3a71 add a Spawn advanced option to java stagers, see #3009 
git-svn-id: file:///home/svn/framework3/trunk@10946 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-08 06:08:09 +00:00
Steve Tornio be7d349d60 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@10940 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-07 14:58:55 +00:00
Joshua Drake 416f6966e3 merge changes from peter 
git-svn-id: file:///home/svn/framework3/trunk@10937 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-06 23:53:19 +00:00
Mario Ceballos f7717e5f51 added exploit module moxa_mdmtool.rb 
git-svn-id: file:///home/svn/framework3/trunk@10935 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-06 22:25:36 +00:00
Mario Ceballos 58f62bedda fix load errors 
git-svn-id: file:///home/svn/framework3/trunk@10933 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-06 19:19:35 +00:00
Joshua Drake 2a69811344 raise RuntimeError instead of return 
git-svn-id: file:///home/svn/framework3/trunk@10932 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-06 18:09:28 +00:00
cg b3713f9d46 handle 302's, print error codes since its important 
git-svn-id: file:///home/svn/framework3/trunk@10928 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-06 14:45:22 +00:00
Joshua Drake 0b565d8619 add linux version (Debian unstable), update freebsd version 
git-svn-id: file:///home/svn/framework3/trunk@10922 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-05 21:41:37 +00:00
Joshua Drake aabe2c1260 oops, missed this one, see #3109 
git-svn-id: file:///home/svn/framework3/trunk@10920 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-05 16:26:58 +00:00
Mario Ceballos f638b3d386 fix a load error 
git-svn-id: file:///home/svn/framework3/trunk@10918 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-05 13:37:36 +00:00
et 410cd17935 first try on modular crawling 
git-svn-id: file:///home/svn/framework3/trunk@10915 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-05 04:00:49 +00:00
Steve Tornio 338d6e3693 add osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@10914 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-05 02:58:01 +00:00
Joshua Drake b0f64ebba1 add a debug target 
git-svn-id: file:///home/svn/framework3/trunk@10912 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-05 00:08:55 +00:00
Joshua Drake 76123e79c1 style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@10909 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 23:59:56 +00:00
Joshua Drake b7f2d57709 style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@10908 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 23:50:35 +00:00
Joshua Drake 979ddcd8e5 add exploit for cve-2010-3962 
git-svn-id: file:///home/svn/framework3/trunk@10907 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 23:44:23 +00:00
Mario Ceballos f517b88d9c added exploit modules lgserver_multi.rb and moxa_mediadbplayback.rb 
git-svn-id: file:///home/svn/framework3/trunk@10904 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 22:19:26 +00:00
Joshua Drake cabfd0c2f2 add exploit for cve-2010-3867 
git-svn-id: file:///home/svn/framework3/trunk@10900 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 18:12:11 +00:00
Patrick Webster fc708df5c6 Added exploit module pgp_keyserver7. 
git-svn-id: file:///home/svn/framework3/trunk@10897 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 15:44:21 +00:00
Joshua Drake dee671318e style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@10895 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 02:54:16 +00:00
cg 5421be199a adobe xml inject aux module 
git-svn-id: file:///home/svn/framework3/trunk@10894 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 02:11:31 +00:00
Mario Ceballos 99eadeff89 added exploit module lgserver_rxssetdatagrowthscheduleandfilter.rb 
git-svn-id: file:///home/svn/framework3/trunk@10893 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-04 01:51:54 +00:00
Mario Ceballos e276697af9 heh, put not puts. 
git-svn-id: file:///home/svn/framework3/trunk@10892 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-03 22:09:44 +00:00
Patrick Webster b97cbff5af Added webster_http exploit module. 
git-svn-id: file:///home/svn/framework3/trunk@10887 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-03 12:19:19 +00:00
Steve Tornio d79bbd8440 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@10886 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-03 11:17:25 +00:00
Mario Ceballos 45fd14417c removed. worked fine under IIS 6.0 
git-svn-id: file:///home/svn/framework3/trunk@10874 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-02 23:51:17 +00:00
Mario Ceballos b12d03b7c4 add exploit module coldfusion_fckeditor.rb 
git-svn-id: file:///home/svn/framework3/trunk@10865 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-02 20:13:36 +00:00
Joshua Drake b572414eac add exploit for cve-2010-3654 
git-svn-id: file:///home/svn/framework3/trunk@10857 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-01 22:34:13 +00:00
Joshua Drake 21f16f63a1 style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@10855 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-01 21:45:49 +00:00
Tod Beardsley 9c6f771252 Suppress the error when your @result is nil in smtp_enum.rb 
git-svn-id: file:///home/svn/framework3/trunk@10853 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-01 13:56:42 +00:00
Tod Beardsley 730ec09464 Allow for blank FTP usernames. Just not nil ones. 
git-svn-id: file:///home/svn/framework3/trunk@10834 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-27 20:12:51 +00:00
Joshua Drake 1f235a8c9b remove 64-bit targets since we dont have an x86_64 linux exe generator 
git-svn-id: file:///home/svn/framework3/trunk@10833 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-27 17:21:54 +00:00
Steve Tornio 9f5fca12f7 add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@10828 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-26 15:28:04 +00:00
Joshua Drake e78aa83021 style compliance fixes 
git-svn-id: file:///home/svn/framework3/trunk@10821 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-25 20:58:49 +00:00
Joshua Drake f909b360ba note tested on 6u11 
git-svn-id: file:///home/svn/framework3/trunk@10820 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-25 20:22:08 +00:00