Tod Beardsley
a8fad72fce
Merge branch 'msftidy_fixup'
...
Merging a local msftidy cleanup branch, adding a new optional msftidy
test to check for 1.8 compat and cleaning up some whitespace /
file.open()'s.
2011-12-12 17:55:21 -06:00
Tod Beardsley
f402b8598b
Whitespace and File.open binary mode cleanups.
...
Fixes some recent modules: dns_fuzzer, shodan_search,
avidphoneticindexer, and win_privs.
2011-12-12 17:31:28 -06:00
sinn3r
32c8301c19
Add feature #6082 (Traq 2.3 Auth bypass remote code execution)
2011-12-12 15:45:19 -06:00
sinn3r
bacdbb90d7
ugh, stack overflow != stack buffer overflow. Also, metadata format fix.
2011-12-12 15:23:32 -06:00
sinn3r
5af5137241
Add CoDeSys SCADA bof module ( #6083 )
2011-12-12 15:21:15 -06:00
Tod Beardsley
7de12fbf02
Adds a (slow) check for checking old rubies
...
This is mainly to avoid checking in modules that break Ruby 1.8.
Currently not terribly configurable, and since it's slow to
test ruby syntaces against different ruby versions, it's off
by default. Enable by setting an environment variable of
MSF_CHECK_OLD_RUBIES to any value.
2011-12-12 15:12:01 -06:00
sinn3r
5ba5bbf077
Apply feature #6074
2011-12-12 12:03:34 -06:00
sinn3r
4e95eb5d34
Update description (Feature #6080 )
2011-12-12 11:33:17 -06:00
Tod Beardsley
e4d59f9e62
Adding some comment docs to run_all_post.rc
...
Adding some explanitory text to mubix's run_all_post.rc example script.
2011-12-12 10:34:33 -06:00
Tod Beardsley
b4f58ef8fd
Trailing commas kill 1.8. dangit.
...
Fixed dns_fuzzer to knock that off.
2011-12-12 10:26:53 -06:00
Tod Beardsley
90535a84f7
Merge pull request #49 from NoVAHA/run_all_post
...
sample resource file to run a post module against all sessions
2011-12-12 08:26:27 -08:00
HD Moore
4736cb1cbe
Merge pull request #48 from swtornio/master
...
add osvdb ref
2011-12-11 20:37:43 -08:00
HD Moore
1ea3075a9b
Merge pull request #52 from rsmudge/armitage
...
Armitage 12.12.11
2011-12-11 20:37:31 -08:00
HD Moore
1c8e313c51
Merge pull request #50 from scriptjunkie/master
...
Remove XMLRPC. Thanks Matt!
2011-12-11 18:21:11 -08:00
Raphael Mudge
fbe54c8d80
Armitage 12.12.11 - this release fixes several bugs, polishes a few features, and adds
...
better troubleshooting information to aid users.
2011-12-11 20:20:01 -05:00
scriptjunkie
e34555dc22
Remove XML RPC option for msfgui.
2011-12-11 14:44:12 -06:00
HD Moore
1d244c4b27
Return the URL in the correct format from the model
2011-12-11 13:50:21 -06:00
HD Moore
17cc89ebad
Add IPv6 specific HTTP(S) handlers and payloads (simplifies
...
options/usage)
2011-12-11 13:26:48 -06:00
HD Moore
2c538fe9c0
Rework RangeWalker and some of the socket API to fix bugs and generally
...
handle ranges the right way
2011-12-10 20:10:10 -06:00
HD Moore
dee053cd71
Try multiple scopes for link-local addresses, if necessary. Fix a small
...
typo
2011-12-10 15:24:10 -06:00
Rob Fuller
b605f6affa
resource file to run a post module against all sessions
2011-12-10 15:30:46 -05:00
HD Moore
2d3064c1ec
Default the scope ID to 0, explicitly
2011-12-10 13:46:16 -06:00
HD Moore
1ae12e3a23
Remove the default target, since module doesn't fingerprint the service
...
pack, this can only end in tears.
2011-12-10 13:31:05 -06:00
HD Moore
8e01312d0f
Formatting
2011-12-10 13:27:47 -06:00
HD Moore
e33ca5a7ba
Small typo fix
2011-12-10 13:26:47 -06:00
HD Moore
e46745b761
Add support for link-local scopes
2011-12-10 13:24:58 -06:00
HD Moore
9c887eb457
Fix displayed host name for IPv6 targets
2011-12-10 13:24:58 -06:00
HD Moore
a9db05e53b
Fix regular expression
2011-12-10 13:24:58 -06:00
HD Moore
e3f121929c
Accept IPv6 addresses in the return if getaddress
2011-12-10 13:24:58 -06:00
HD Moore
1cc68d1ed5
Accept IPv6 addresses in getaddress() responses
2011-12-10 13:24:58 -06:00
HD Moore
49ff9f594a
Properly enclose IPv6 addresses with brackets inside of the Host header
2011-12-10 13:24:58 -06:00
HD Moore
cd4d7d3c47
Handle IPv6 properly (host header parsing)
2011-12-10 13:24:58 -06:00
Steve Tornio
25685c4c74
add osvdb ref
2011-12-10 08:07:21 -06:00
Steve Tornio
b521602d82
add osvdb ref
2011-12-10 07:49:50 -06:00
Tod Beardsley
8ccb68c9df
Adding an add_socket() to dhcp and rftp as lauched with a survice
...
when succesful.
Closing the related pull reuquest for this one.
2011-12-10 03:39:25 -06:00
Tod Beardsley
e52436e7ad
Drop the incorrect Id keyword from h323_version
2011-12-09 14:29:55 -06:00
sinn3r
e043fb52c2
Incrase timeout
2011-12-08 11:21:03 -06:00
sinn3r
d6d9ac17d2
use store_loot() instead of store_local()
2011-12-08 11:10:31 -06:00
sinn3r
c366e652b9
Revert "Using store_local() to store stuff for dir traversal bugs feels much better than store_loot()"
...
This reverts commit d37daa4934
.
2011-12-08 10:11:09 -06:00
sinn3r
d37daa4934
Using store_local() to store stuff for dir traversal bugs feels much better than store_loot()
2011-12-07 19:08:24 -06:00
sinn3r
aa5c0c46b6
Fix indent level
2011-12-07 18:44:49 -06:00
sinn3r
feab7f5077
Add CVE-2011-4350
2011-12-07 18:42:52 -06:00
sinn3r
b7ccbcd6b5
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-12-07 12:23:23 -06:00
sinn3r
84682b3615
Apply patch #6072
2011-12-07 12:22:58 -06:00
HD Moore
b8767d5f57
Fix typo on 1.8.7
2011-12-07 10:45:23 -06:00
sinn3r
5afba20c21
Merge pull request #43 from jduck/master
...
Clear up how to use native payloads for tomcat_mgr_deploy
2011-12-06 23:01:53 -08:00
sinn3r
1694e22e74
Merge pull request #42 from chao-mu/master
...
Fix for issue #6012 ; post/windows/manage/enable_rdp broken
2011-12-06 23:01:20 -08:00
sinn3r
0e2101e4c1
Correct author name
2011-12-07 00:24:16 -06:00
sinn3r
fd1935b3de
show is_admin
2011-12-07 00:23:06 -06:00
sinn3r
edec6b98ee
Add feature #6067 Family Connections CMS 2.7.1 exploit
2011-12-07 00:00:56 -06:00