infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,516 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

1244 Commits (a89db8351387d63c12bff94bb18ce4f3e3304f84)

Author SHA1 Message Date
HD Moore 38e4a9c8a2 Store the tunnel_peer directly 
git-svn-id: file:///home/svn/framework3/trunk@8885 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 23:24:08 +00:00
James Lee e088d9ff68 change order of paths to src, dest in session up/download events 
git-svn-id: file:///home/svn/framework3/trunk@8882 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 20:56:22 +00:00
Tod Beardsley 4f3c5fd44d Whoops, left a print_debug in there. 
git-svn-id: file:///home/svn/framework3/trunk@8880 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 20:14:03 +00:00
Tod Beardsley 83d96d713c Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently. 
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 20:07:26 +00:00
HD Moore 4c8dbafe1d Only set KCODE on 1.8, prevent warnings on 1.9 
git-svn-id: file:///home/svn/framework3/trunk@8874 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 12:34:06 +00:00
James Lee 73cd20f8a6 add the skeleton for new session events. now the hard part is going to be triggering them for meterpreter sessions without mixing the Rex and Msf namespaces... 
git-svn-id: file:///home/svn/framework3/trunk@8873 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 01:13:58 +00:00
HD Moore 6c502a6fd3 Woops, fix reporting os the nmap fingerprint on import 
git-svn-id: file:///home/svn/framework3/trunk@8872 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 00:36:59 +00:00
HD Moore 869435322e Move direct OS updates out, fingerprints instead 
git-svn-id: file:///home/svn/framework3/trunk@8870 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 00:11:43 +00:00
James Lee 25f9458c86 allow Msf::Module::SiteRefence to be reported via report_vuln; report module references when creating vulns from a successful exploit 
git-svn-id: file:///home/svn/framework3/trunk@8867 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-21 23:12:37 +00:00
HD Moore 480380003c Make verbose status printing standardized across login modules 
git-svn-id: file:///home/svn/framework3/trunk@8866 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-21 18:42:47 +00:00
HD Moore bb0db3cdf6 Closes command and meterpreter sessions in a much more consistent way 
git-svn-id: file:///home/svn/framework3/trunk@8865 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-21 04:24:27 +00:00
HD Moore 0b996801d0 Some database drivers will reset the status of $KCODE, which then auto-unicodes all of the binary strings. Prevent them 
git-svn-id: file:///home/svn/framework3/trunk@8860 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 21:40:59 +00:00
HD Moore 9d918b3cbc Make the uuid more hash-like 
git-svn-id: file:///home/svn/framework3/trunk@8859 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 19:04:21 +00:00
HD Moore 56c91e0441 Store the session type as well 
git-svn-id: file:///home/svn/framework3/trunk@8858 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 18:40:41 +00:00
HD Moore b19e21a3e3 Use the right workspace 
git-svn-id: file:///home/svn/framework3/trunk@8857 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 16:58:19 +00:00
Tod Beardsley e3355656ee Don't record 127.0.0.1 in the database as a host. 
If you really want to record localhost, call it 127.0.0.2 or something.



git-svn-id: file:///home/svn/framework3/trunk@8856 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-20 14:38:50 +00:00
James Lee 1678a0f74a move\ vuln\ reporting\ out\ of\ the\ console\ so\ it works in all\ UIs 
git-svn-id: file:///home/svn/framework3/trunk@8855 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-19 22:17:07 +00:00
Joshua Drake 24934444b6 only allow living sessions to be deregistered -- in theory this won't cause any issues 
git-svn-id: file:///home/svn/framework3/trunk@8854 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-19 03:12:36 +00:00
HD Moore 260b92f65a Correct decoding 
git-svn-id: file:///home/svn/framework3/trunk@8847 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-18 15:31:01 +00:00
HD Moore eb31c8f24b Fixes up SunRPC to use proper timeouts and track the socket context (needed for pivoting) 
git-svn-id: file:///home/svn/framework3/trunk@8845 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 23:02:35 +00:00
HD Moore 6383ef6cfd Typo 
git-svn-id: file:///home/svn/framework3/trunk@8844 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 18:41:09 +00:00
HD Moore ae90a52e94 Pass the username back to the rpc client 
git-svn-id: file:///home/svn/framework3/trunk@8842 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 18:25:36 +00:00
HD Moore 984890a2cd Merge in the user -> username change 
git-svn-id: file:///home/svn/framework3/trunk@8840 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 14:07:45 +00:00
HD Moore cae92bbe7d Explicitly handle username 
git-svn-id: file:///home/svn/framework3/trunk@8839 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-17 14:04:47 +00:00
James Lee efceaa84cf add on_module_complete and on_module_error events 
git-svn-id: file:///home/svn/framework3/trunk@8837 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 19:32:54 +00:00
Tod Beardsley 3f69bb8053 Fixes the handling for telnet services when the server is "busy" -- this is common wit HP JetDirect servers, where the server will respond with a busy message up to several seconds after the last connection logged off. While this does mean that credential tests will be skipped, they will at least not be scored incorrectly as false postives. 
Also, this removes the disconnect() method in favor of self.sock.close(). Disconnect seems to have a tendency to leave sessions half-closed, which will cause a busy state to never clear. self.sock.close doesn't appear to have this effect if you use a slower bruteforce_speed option (3 seems to work all right).



git-svn-id: file:///home/svn/framework3/trunk@8835 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 18:45:50 +00:00
Tod Beardsley cb640571b0 Fixes #1109 -- ARP is now less picky about ARP replies, but does conform to normal networking standards. 
git-svn-id: file:///home/svn/framework3/trunk@8832 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 16:04:02 +00:00
HD Moore 18075f9b68 Store session UUID and username 
git-svn-id: file:///home/svn/framework3/trunk@8830 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 15:11:07 +00:00
Joshua Drake 7cf8b4c43f distinguish the error message for sessions that die from EOF 
git-svn-id: file:///home/svn/framework3/trunk@8828 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 03:15:52 +00:00
HD Moore d03342fa49 Store the full module paths 
git-svn-id: file:///home/svn/framework3/trunk@8827 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 23:40:12 +00:00
HD Moore 2dd91d4f88 Allow API tokens to be used instead of user/pass 
git-svn-id: file:///home/svn/framework3/trunk@8823 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 20:16:37 +00:00
HD Moore 9ae8422c05 Fix info field 
git-svn-id: file:///home/svn/framework3/trunk@8817 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 16:09:46 +00:00
HD Moore 5e26eb9498 Adds name and info to the loot table: 
git-svn-id: file:///home/svn/framework3/trunk@8816 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 15:38:52 +00:00
HD Moore 8464a36bf5 Bump pool to 256; may still be driver limited. See #976. 
git-svn-id: file:///home/svn/framework3/trunk@8814 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 03:54:54 +00:00
Joshua Drake ac06e2d667 only copy user_input and user_output if they are non-nil 
git-svn-id: file:///home/svn/framework3/trunk@8806 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 21:47:27 +00:00
Joshua Drake b6851b8ee4 modify cmd stager to take a raw payload string instead of a payload instance 
git-svn-id: file:///home/svn/framework3/trunk@8805 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 21:47:01 +00:00
HD Moore 9288f34fbf Add a results column 
git-svn-id: file:///home/svn/framework3/trunk@8804 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-12 15:58:02 +00:00
HD Moore c5cbacd194 Handle long responses better 
git-svn-id: file:///home/svn/framework3/trunk@8799 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 22:21:41 +00:00
HD Moore c3d17ab48b Add hooks for input/output/error 
git-svn-id: file:///home/svn/framework3/trunk@8798 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 21:57:04 +00:00
James Lee 646044f631 move session_output events to the session where they belong (instead of in rpc). add a timeout arg to shell_read 
git-svn-id: file:///home/svn/framework3/trunk@8797 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 20:07:06 +00:00
HD Moore 7f1e5fd475 Base64 encode the console output as well 
git-svn-id: file:///home/svn/framework3/trunk@8796 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:49:39 +00:00
James Lee dbe4d05875 typo fix. how did this ever work? 
git-svn-id: file:///home/svn/framework3/trunk@8795 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:41:59 +00:00
James Lee a20b74536c add an events accessor 
git-svn-id: file:///home/svn/framework3/trunk@8794 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:38:19 +00:00
James Lee 89e378dd4c break output into 1024-byte chunks so it fits in the database 
git-svn-id: file:///home/svn/framework3/trunk@8793 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 19:18:39 +00:00
HD Moore 5957dd5393 Add tasks 
git-svn-id: file:///home/svn/framework3/trunk@8791 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 18:42:21 +00:00
James Lee 0e537a17bb fix some pastographical errors 
git-svn-id: file:///home/svn/framework3/trunk@8790 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 17:48:59 +00:00
James Lee 09c1fdd13d store full name (which includes module type) instead of just the refname 
git-svn-id: file:///home/svn/framework3/trunk@8785 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 14:33:48 +00:00
HD Moore 4c22afed31 Fix other occurrences of on_session_close not taking a second parameter. See #1075 
git-svn-id: file:///home/svn/framework3/trunk@8782 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 13:54:10 +00:00
HD Moore 3d601c0be9 Add a new table 
git-svn-id: file:///home/svn/framework3/trunk@8778 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 03:02:13 +00:00
James Lee dea0ec37f0 add events accessor to workspace 
git-svn-id: file:///home/svn/framework3/trunk@8777 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 00:57:23 +00:00
HD Moore dcfdb95e5f *Backwards Compatibility Broken* - The session XMLRPC object now requires data for read/write to be encoded using Base64, this solves a number of issues with the builtin XMLRPC library with regards to binary data encoding. The response from read() now contains an 'encoding' element with the value 'base64', in order to differentiate from older versions. 
git-svn-id: file:///home/svn/framework3/trunk@8776 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 00:55:21 +00:00
HD Moore 91404f9c8f Report critical/seen properly 
git-svn-id: file:///home/svn/framework3/trunk@8768 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-10 18:00:19 +00:00
HD Moore aaea62bb92 Report the correct local/peer names for the session information. Fix a return value check 
git-svn-id: file:///home/svn/framework3/trunk@8765 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-10 07:13:18 +00:00
HD Moore 6bd2a954cf Lots of small changes, the big one is moving from sysread -> readpartial in the stream base class 
git-svn-id: file:///home/svn/framework3/trunk@8764 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-10 06:43:46 +00:00
HD Moore 33c60067c0 Sanity check reported host addresses 
git-svn-id: file:///home/svn/framework3/trunk@8760 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-10 05:45:40 +00:00
HD Moore b87f0ac796 Fix the reaper 
git-svn-id: file:///home/svn/framework3/trunk@8753 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-08 23:32:57 +00:00
HD Moore 54755d856c Handle cases where the peer has no : (distcc exploit) 
git-svn-id: file:///home/svn/framework3/trunk@8751 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-08 23:03:49 +00:00
HD Moore 69f50eea7c Kill off any session with eof on the socket 
git-svn-id: file:///home/svn/framework3/trunk@8750 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-08 22:58:43 +00:00
HD Moore 1c1fe9c20f Add a method for syncing the database (waiting on all pending writes) 
git-svn-id: file:///home/svn/framework3/trunk@8743 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-08 14:17:34 +00:00
Joshua Drake 28f4eb2fd9 handle failed logins - fixes #1014 
git-svn-id: file:///home/svn/framework3/trunk@8728 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-05 17:05:12 +00:00
James Lee 9fbf2c0c6e add platform aliases for newer versions of windows. 
git-svn-id: file:///home/svn/framework3/trunk@8724 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-05 08:26:51 +00:00
Tod Beardsley 3d1f773f18 Reimplementing DB2's auth checker to use the same methods as the other auth_brute modules. 
git-svn-id: file:///home/svn/framework3/trunk@8722 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-05 00:44:39 +00:00
Joshua Drake 73da75a931 big update to cmd stager 
1. returns array of commands instead of big blob of lines
2. combine lines together when possible (to reduce # of commands to execute)
3. add cmd stager usage in mssql_payload
4. remove extraneous stuff here and there

git-svn-id: file:///home/svn/framework3/trunk@8721 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-05 00:29:44 +00:00
Joshua Drake d8818fc268 execute xp_cmdshell from master explicitly 
git-svn-id: file:///home/svn/framework3/trunk@8720 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-04 23:55:04 +00:00
Tod Beardsley a5e187bd69 Add the ability to slow down brute force sessions. 
git-svn-id: file:///home/svn/framework3/trunk@8719 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-04 23:29:26 +00:00
Joshua Drake 8a2382ed1a don't wait for shell.run to finish 
git-svn-id: file:///home/svn/framework3/trunk@8717 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-04 22:32:46 +00:00
Joshua Drake 1629bf7bf0 move http_send_cmd into cmdweb test exploit 
git-svn-id: file:///home/svn/framework3/trunk@8716 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-04 21:00:58 +00:00
James Lee c2612548c5 fix get_host, was breaking browser_autopwn, see #976 
git-svn-id: file:///home/svn/framework3/trunk@8710 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-04 07:58:47 +00:00
James Lee 602395ead0 don't set the language if we don't have one 
git-svn-id: file:///home/svn/framework3/trunk@8709 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-04 07:38:52 +00:00
James Lee 37159d6b41 move this up so all database drivers have a bigger pool, see #976 
git-svn-id: file:///home/svn/framework3/trunk@8706 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-04 07:10:20 +00:00
James Lee 7392de4d3d don't use undefined variables. 
git-svn-id: file:///home/svn/framework3/trunk@8700 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-03 19:50:22 +00:00
James Lee 7d348c3593 honor the SSL option in HttpServer, fixes #1001 
git-svn-id: file:///home/svn/framework3/trunk@8699 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-03 18:47:04 +00:00
James Lee 467a7a5f3e merge mubix's patch to allow importing a simple list of ip addresses from a file, closes #999 
git-svn-id: file:///home/svn/framework3/trunk@8695 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-03 00:34:16 +00:00
Joshua Drake 7a37934a01 process autorun scripts for telnet_login and ssh_login 
1. create session.process_autoruns in Msf::Sessions::CommandShell
2. call process_autoruns from within the handler on_session code
4. set user_input and user_output in sessions base set_from_exploit method
5. remove on_session from Msf::Sessions::CommandShellOptions
6. include CommandShellOptions into telnet_login and ssh_login
7. call sess.process_autoruns from telnet_login and ssh_login
8. celebrate (while crossing fingers of course)!

git-svn-id: file:///home/svn/framework3/trunk@8692 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-02 18:07:50 +00:00
Joshua Drake e7a9391a76 minor tweaks, no functional changes 
git-svn-id: file:///home/svn/framework3/trunk@8684 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-02 02:26:08 +00:00
HD Moore e4ec13eec2 Store the path in the path 
git-svn-id: file:///home/svn/framework3/trunk@8673 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 22:13:20 +00:00
James Lee cded6cc59d log all output from sessions when reading from rpc 
git-svn-id: file:///home/svn/framework3/trunk@8672 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 21:55:30 +00:00
HD Moore df415fd636 Fix workspace.loots 
git-svn-id: file:///home/svn/framework3/trunk@8671 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 21:48:16 +00:00
HD Moore 1fff5f447f Add loot content-type 
git-svn-id: file:///home/svn/framework3/trunk@8667 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 19:33:49 +00:00
HD Moore 304a238d3e Add pop3/imap4 scanners 
git-svn-id: file:///home/svn/framework3/trunk@8664 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 19:06:26 +00:00
James Lee 5a89952606 bah, typo 
git-svn-id: file:///home/svn/framework3/trunk@8663 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 18:52:22 +00:00
HD Moore 2cbf64b85a Fix up the stored banner for SMTP 
git-svn-id: file:///home/svn/framework3/trunk@8661 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 18:47:48 +00:00
James Lee be0fc489b1 clean up 
git-svn-id: file:///home/svn/framework3/trunk@8660 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 18:45:24 +00:00
James Lee 99f4507405 store workspace in the correct place for module_run events 
git-svn-id: file:///home/svn/framework3/trunk@8659 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 18:38:05 +00:00
HD Moore 34489f9a61 Pass the workspace into the importer properly 
git-svn-id: file:///home/svn/framework3/trunk@8654 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 13:40:32 +00:00
Stephen Fewer 300cede801 Fix for #291, Meterpreter over PassiveX now working again :) 
git-svn-id: file:///home/svn/framework3/trunk@8653 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 05:13:58 +00:00
James Lee 832d0bcbfa add exploit datastore to sessions so we can tell exactly how the session was created 
git-svn-id: file:///home/svn/framework3/trunk@8651 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-26 01:09:23 +00:00
HD Moore 8ebc16bb4a Add the info field to the session object 
git-svn-id: file:///home/svn/framework3/trunk@8649 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-25 23:20:33 +00:00
James Lee 585842e34e blah, missed a line 
git-svn-id: file:///home/svn/framework3/trunk@8644 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-25 22:27:18 +00:00
James Lee 76dd732db4 minimize the ghettoness 
git-svn-id: file:///home/svn/framework3/trunk@8640 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-25 17:53:27 +00:00
HD Moore b2e40216b9 Fix up the RPC calls for the console 
git-svn-id: file:///home/svn/framework3/trunk@8637 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-25 14:14:48 +00:00
HD Moore dfe2dcd9eb Add console interaction to the RPC interface 
git-svn-id: file:///home/svn/framework3/trunk@8635 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-25 06:26:53 +00:00
James Lee ebfaf77374 mark hosts as alive when adding vulns 
git-svn-id: file:///home/svn/framework3/trunk@8628 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 22:57:38 +00:00
James Lee 27cda778a8 mark hosts as alive when adding notes or services 
git-svn-id: file:///home/svn/framework3/trunk@8627 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 22:54:16 +00:00
James Lee f5446b5d4f add workspace to module run events 
git-svn-id: file:///home/svn/framework3/trunk@8626 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 21:46:18 +00:00
HD Moore 6e2e7ed55e Pass the cached input/output into the real payload 
git-svn-id: file:///home/svn/framework3/trunk@8625 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 21:32:56 +00:00
James Lee 6ab68f5752 save the session's workspace in events 
git-svn-id: file:///home/svn/framework3/trunk@8624 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 21:31:35 +00:00
HD Moore 7eed9f3fed Handle user in/out passthrough better 
git-svn-id: file:///home/svn/framework3/trunk@8623 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 21:25:35 +00:00
HD Moore 1133f8f05c Pass through user_input/user_output 
git-svn-id: file:///home/svn/framework3/trunk@8622 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 21:10:32 +00:00
James Lee 999feb879f setup the input/output handles correctly for meterpreter sessions so we can get the output from scripts 
git-svn-id: file:///home/svn/framework3/trunk@8618 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 16:46:47 +00:00
Joshua Drake b391abd32d adds scripting for command shell sessions 
1. InitialAutoRunScript and AutoRunScript vars work
2. scripts/shells was created to hold them
3. *_shell methods were renamed shell_*
4. added "shell_command" method to command shell sessions
5. converted all uses of *_shell to shell_*
6. all payloads that produce command shell sessions include Msf::Sessions::CommandShellOptions



git-svn-id: file:///home/svn/framework3/trunk@8615 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-24 01:19:59 +00:00
James Lee f0d27f7f9d buffer io on meterpreter commands so we can get the output 
git-svn-id: file:///home/svn/framework3/trunk@8614 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-23 22:39:34 +00:00
HD Moore e33c1456f1 Add report_loot to the reporting mixin 
git-svn-id: file:///home/svn/framework3/trunk@8610 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-23 20:09:46 +00:00
James Lee dd915415c3 add initial support for interacting with meterpreter through xmlrpc 
git-svn-id: file:///home/svn/framework3/trunk@8606 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-23 18:07:07 +00:00
Tod Beardsley 25de6844b8 Adding OpenSoliaris Postgres fingerprints. 
git-svn-id: file:///home/svn/framework3/trunk@8599 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-23 14:09:21 +00:00
James Lee 4ad6c24a95 look for dead sesions with a reaper thread instead of on other session events, add Session#alive accessor for all session types; still need to figure out when a shell session is dead and set it accordingly. Add a reason argument to on_session_close to distinguish between killed sessions and dead sessions 
git-svn-id: file:///home/svn/framework3/trunk@8596 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-23 05:59:30 +00:00
HD Moore 749849751d Better error message for xmlrpc 
git-svn-id: file:///home/svn/framework3/trunk@8595 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-23 03:34:09 +00:00
HD Moore 80f1f48b2d Merge in loot and user, fix up telnet to handle eof better 
git-svn-id: file:///home/svn/framework3/trunk@8594 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-22 23:45:43 +00:00
HD Moore 29cd1f1b4c Fix up report_event 
git-svn-id: file:///home/svn/framework3/trunk@8585 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-22 19:31:21 +00:00
HD Moore 6b50ae0830 Prevent the lack of db from crashing 
git-svn-id: file:///home/svn/framework3/trunk@8584 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-22 19:04:15 +00:00
HD Moore 479f2939fc Track the target host/workspace through the entire tree, expose to RPC, and use this telnet_login 
git-svn-id: file:///home/svn/framework3/trunk@8583 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-22 17:54:44 +00:00
HD Moore 2fc9b1d576 Make sure nil is not reported in the session fields (breaks XMLRPC). 
git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-22 17:15:36 +00:00
HD Moore 8296dc85b3 Cache the local interface/netmask 
git-svn-id: file:///home/svn/framework3/trunk@8571 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-20 18:52:13 +00:00
HD Moore 551e7d57ba Speed up packet injection 
git-svn-id: file:///home/svn/framework3/trunk@8570 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-20 18:31:46 +00:00
HD Moore 445676b932 Merge in the current workspace name 
git-svn-id: file:///home/svn/framework3/trunk@8567 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-20 05:50:38 +00:00
HD Moore 0a8696436e Fix up the telnet login code to handle varied responses better 
git-svn-id: file:///home/svn/framework3/trunk@8565 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-20 05:49:40 +00:00
natron 474228a132 Woops, forgot to push the updated mixin. 
git-svn-id: file:///home/svn/framework3/trunk@8560 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-19 06:06:30 +00:00
Mike Smith e59082f6b5 Added "created_at" and "updated_at" timestamps all primary tables (fixes #838) 
git-svn-id: file:///home/svn/framework3/trunk@8555 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-18 21:57:01 +00:00
HD Moore 4c4c747caf Update all db methods to have a workspace parameter, default to the db.workspace where possible, updated the command dispatchers. 
git-svn-id: file:///home/svn/framework3/trunk@8546 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-18 06:40:38 +00:00
Tod Beardsley 4197f00701 Moves @credentials_tried and @credentials_good into auth_brute proper, though modules still 
need to handle them themselves... which telnet and ssh both do now.



git-svn-id: file:///home/svn/framework3/trunk@8542 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-17 21:55:02 +00:00
Joshua Drake 089a522df0 various fixes 
1. allow passing payload to generate_cmdstager (needed for html server sploits)
2. cleanup whitespace here and there
3. removed rendundant pattern match
4. removed use of sleep in favor of select idiom


git-svn-id: file:///home/svn/framework3/trunk@8539 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-17 20:04:54 +00:00
HD Moore 9f1009b401 Import the service and OS fingerprints from NeXpose 
git-svn-id: file:///home/svn/framework3/trunk@8531 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-17 06:01:53 +00:00
Joshua Drake 0d526a26af add cmdstager to mixins, oops 
git-svn-id: file:///home/svn/framework3/trunk@8526 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-16 20:26:31 +00:00
Joshua Drake 4800d6841c commit cmd stager stuff from bannedit 
git-svn-id: file:///home/svn/framework3/trunk@8518 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-16 16:38:19 +00:00
HD Moore 2149e0a974 Returning from the parser doesn't work so well, just skip reporting instead 
git-svn-id: file:///home/svn/framework3/trunk@8509 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-15 22:59:55 +00:00
Joshua Drake 85cd572df1 minor cleanups 
git-svn-id: file:///home/svn/framework3/trunk@8506 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-15 22:38:25 +00:00
HD Moore 8c3ee77f3b Skip processing of dead hosts. Sometimes the host is already found using another method and nmap will mark the live host as dead again 
git-svn-id: file:///home/svn/framework3/trunk@8501 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-15 01:34:04 +00:00
HD Moore a2f9f1bb7a Default the OS to the 100% match string 
git-svn-id: file:///home/svn/framework3/trunk@8500 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-15 01:20:42 +00:00
HD Moore cdaebc2931 Big change to how report_note() works, it now accepts an :update parameter that defines whether the data is unique for the host/ntype (:unique), unique for the host/ntype/data (:unique_data), or should be inserted no matter what (:insert) 
git-svn-id: file:///home/svn/framework3/trunk@8495 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-14 19:34:22 +00:00
HD Moore 2539a6fc09 Updated nmap parsing, store notes for last boot and os matches 
git-svn-id: file:///home/svn/framework3/trunk@8494 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-14 19:07:15 +00:00
HD Moore 2460037fdd More nmap import foo 
git-svn-id: file:///home/svn/framework3/trunk@8493 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-14 18:55:49 +00:00
HD Moore c47e4db74d Parse the OS properly 
git-svn-id: file:///home/svn/framework3/trunk@8492 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-14 18:40:27 +00:00
HD Moore bfa3ae28cb Import OS and hostname information 
git-svn-id: file:///home/svn/framework3/trunk@8491 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-14 18:32:37 +00:00
HD Moore 25f9339c7c Additional operating systems, changing the case of Mac OS X 
git-svn-id: file:///home/svn/framework3/trunk@8487 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-14 15:04:39 +00:00
HD Moore f3edce86a1 Store module_run events as a hash 
git-svn-id: file:///home/svn/framework3/trunk@8465 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-12 17:37:20 +00:00
Joshua Drake 070d6e20cd fix bug from natron 
"show info" was displaying the default target as index 0 when it was really 4

git-svn-id: file:///home/svn/framework3/trunk@8461 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-12 02:11:52 +00:00
HD Moore 993ba44fcf SMB updates, better reporting of SSL status for HTTP 
git-svn-id: file:///home/svn/framework3/trunk@8459 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-11 22:37:00 +00:00
HD Moore 9b4df1cf42 Add the datastore.clear method 
git-svn-id: file:///home/svn/framework3/trunk@8450 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-11 05:14:36 +00:00
Tod Beardsley 65c5eae59e Calling it postgres instead of postgresql for overall consistency. 
git-svn-id: file:///home/svn/framework3/trunk@8435 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-09 20:44:23 +00:00
James Lee e2d70519d7 add the ability to check for a prompt before sending user/pass; now works with cisco, aix, solaris, linux, and windows telnetds 
git-svn-id: file:///home/svn/framework3/trunk@8434 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-09 19:07:02 +00:00
HD Moore 55aaf69b4b Avoid a warning 
git-svn-id: file:///home/svn/framework3/trunk@8425 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-09 04:12:34 +00:00
Joshua Drake 4a39cc13f6 oops, wrong syscall number for listen 
git-svn-id: file:///home/svn/framework3/trunk@8420 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-09 00:05:15 +00:00
Joshua Drake 17bd4b8b7d fixed aix payloads to REALLY do variable substitution 
git-svn-id: file:///home/svn/framework3/trunk@8418 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-08 22:41:36 +00:00
Tod Beardsley c763052c57 See #816. This came up while learning how to perform various postgre tasks via Metasploit. 
This module in particular reads a text file on the remote machine, copies it to a temporary table, and then selects the table.

Looks like this:

http://pastie.org/private/uoxgaw7ibjpvuepolr1fuw



git-svn-id: file:///home/svn/framework3/trunk@8417 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-08 22:34:09 +00:00
HD Moore 885e396c4d Fix close/shutdown issue 
git-svn-id: file:///home/svn/framework3/trunk@8415 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-08 20:44:59 +00:00
Tod Beardsley 0b6c44b2cb Adding reporting to postgres_login. Logging version info more verbosely for authenticated login, since it's way useful. 
git-svn-id: file:///home/svn/framework3/trunk@8408 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-08 17:35:58 +00:00
Tod Beardsley 67bb7a1926 Cleaning up print_status messages for Postgres SQL module and Postgres library. 
git-svn-id: file:///home/svn/framework3/trunk@8407 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-08 16:43:44 +00:00
HD Moore 5f76353e8e Woops, add the missing support files 
git-svn-id: file:///home/svn/framework3/trunk@8400 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-08 00:59:29 +00:00
Joshua Drake d68efa61d2 initial commit of aix cmsd exploit (not fully working yet) 
git-svn-id: file:///home/svn/framework3/trunk@8397 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-08 00:44:37 +00:00
Joshua Drake 7d9d169a1a exploit/sunrpc: return nil on error 
git-svn-id: file:///home/svn/framework3/trunk@8394 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-07 03:51:14 +00:00