Bruno Morisson
acb236006c
metasploit module for CVE-2013-3319 / SAP Security Note 1816536
...
Note: only tested on SAP running on Windows, but should equally work on vulnerable linux/*nix versions.
2013-07-22 18:36:38 +01:00
sinn3r
529471ed53
Land #2081 - MediaCoder .M3U Buffer Overflow
2013-07-11 23:57:43 -05:00
sinn3r
1341d6ec6b
Remove extra commas and try to keep a line in 100 columns
2013-07-11 23:54:54 -05:00
jvazquez-r7
d9f212320f
Land #2094 , @wchen-r7's changes for smb_enumshares
2013-07-11 18:38:19 -05:00
sinn3r
279787d942
Make this error less verbose too
2013-07-11 17:36:11 -05:00
sinn3r
0906345af4
Ah, typo
2013-07-11 16:53:39 -05:00
sinn3r
eb1905025d
I bet having ip:rport will make more sense
2013-07-11 16:45:52 -05:00
sinn3r
0a9c1bcfff
Too verbose by default drives users nuts, go easy on that.
2013-07-11 13:41:22 -05:00
sinn3r
55dbfc9281
shares_info should only run if there's shares found
2013-07-11 13:36:26 -05:00
sinn3r
14b3e6440c
Check nil
2013-07-11 13:31:30 -05:00
sinn3r
e079f3766b
Land #2101 - Corel PDF Fusion Stack Buffer Overflow
2013-07-11 13:21:33 -05:00
sinn3r
1cf65623d6
Small desc update
2013-07-11 13:20:39 -05:00
sinn3r
2858b41b4f
Land #2102 - Fix typo
...
English is hard
2013-07-11 12:49:35 -05:00
sinn3r
46ac394d00
Land #2097 - show subheading for sections
2013-07-11 12:48:33 -05:00
sinn3r
550fd16a62
Ditch all caps message format
2013-07-11 12:47:26 -05:00
jvazquez-r7
d9107d2bd9
Add module for CVE-2013-3248
2013-07-11 12:30:08 -05:00
William Vu
abcf34a2e7
Fix typo
2013-07-11 11:56:24 -05:00
sinn3r
496de1755d
Land #2096 - Be able to show advanced options in msfvenom
2013-07-11 11:41:50 -05:00
sinn3r
b5d59980d2
Land #2098 - Catch Rex::ArgumentParseError
2013-07-11 11:38:03 -05:00
sinn3r
62413df04f
Only catch Rex::ArgumentParseError
...
Avoid catching all exceptions, that way we don't actually shut up
other possible errors that are actually bugs.
2013-07-11 11:36:21 -05:00
sinn3r
ca0880428f
Make sure module is awre of USE_SRVSVC_ONLY if that kicks in
2013-07-11 11:08:09 -05:00
sinn3r
a6ce629c3c
Capture a 0xC00000BB condition, plus some other fixes
2013-07-11 10:52:58 -05:00
g0tmi1k
6f7152a3da
msfcli - fixed impcomplete argument parsing
2013-07-11 12:27:57 +01:00
g0tmi1k
fe96e0a210
msfcli - show subheading for sections
2013-07-11 12:01:50 +01:00
g0tmi1k
20c5e08988
msfvenom - Added advance options
2013-07-11 11:39:54 +01:00
sinn3r
3e229fe236
[SeeRM:#1233] - Upgrade smb_enumshares to show directories & files
...
[SeeRM:#1233] - This is an upgrade based on ringt's code in PR #2017 .
As a pentester, it's useful to obtain additional information such as
device type, access rights, folders, and files, etc when doing a share
enumeration. I have also enhanced exception handling to avoid shutting
errors up, which is better for debugging purposes.
2013-07-11 00:06:25 -05:00
Tod Beardsley
fca732d893
We're an Inc, not an LLC.
2013-07-10 15:56:49 -05:00
James Lee
85affe4d47
Land #2089 , smb last_filename can be nil
2013-07-10 14:18:00 -05:00
Tod Beardsley
56ffa4ae2f
Fixes for network_interface PR #2085
...
Implementing the suggestions from @limhoff-r7.
See #2085
FixRM #8023
FixRM #7943
2013-07-10 13:25:06 -05:00
Tod Beardsley
8ade33552c
Land #2085 , use the new network_interface gem.
2013-07-10 13:15:01 -05:00
modpr0be
16c9effcb4
make msftidy happy
2013-07-11 00:32:32 +07:00
modpr0be
8de88cbd05
change target from win7 sp1 to win7 sp0, fix description
2013-07-11 00:14:30 +07:00
William Vu
4d313fb0f8
Land #2092 , kill to_addr_hex_dump
2013-07-10 11:35:42 -05:00
sinn3r
71974a8535
to_addr_hex_dump is never used and is too similar to to_hex_dump
...
Not so much value in to_addr_hex_dump, as Meatballs1 suggested, we
should remove this.
2013-07-10 11:09:47 -05:00
jvazquez-r7
3982d7723b
Land #2091 , @wchen-r7's switch from vprint to print_status hashes
2013-07-09 21:30:55 -05:00
sinn3r
4a3dc2e365
Print all the creds! All your base belong to me.
...
After a short discussion with Tod, we think it's best to print the
creds by default. If some dude runs Metasploit in a public place,
dumps passwords, and gets shoulder surfed, well, sucks for them :-p
2013-07-09 19:56:44 -05:00
sinn3r
134063b945
Land #2090 - Apache Rave Users Information Disclosure
2013-07-09 16:40:40 -05:00
sinn3r
d3433a017b
Print hash too
2013-07-09 16:39:24 -05:00
jvazquez-r7
234624793c
Add module for CVE-2013-1814
2013-07-09 14:03:35 -05:00
sinn3r
add294d999
Fix potential nil in last_filename
...
Replacing #2060 . It is possible to get a nil in last_filename if
the sub! function doesn't find any 0x00s to replace, so instead
it's best to use sub(), which should at least return the original
filename. To make sure we don't hit any other unknown conditions
that may result in nil last_filename, it's also convert with to_s
to make sure it's always a string.
2013-07-09 12:50:19 -05:00
lsanchez-r7
2bb11693f2
fixing some copy
2013-07-08 18:16:15 -05:00
lsanchez-r7
250472474c
updating the list_interfaces.rb to use the gem
2013-07-08 17:59:41 -05:00
lsanchez-r7
94db2dc83f
updating list_interfaces for windows, this should work?
2013-07-08 17:52:24 -05:00
lsanchez-r7
4541a9e49e
now with passing msftidy
2013-07-08 17:44:50 -05:00
lsanchez-r7
5c93fb2849
arp_sweep is once again working
...
modified the capture mixin to use NetworkInteface instead of
pcaprub for interfaces and addresses
FIXRM #8023,#7943
2013-07-08 17:24:28 -05:00
lsanchez-r7
50cf8adc15
pushing the gem to rubygems
2013-07-08 17:22:55 -05:00
Tod Beardsley
8d7396d60a
Minor description changes on new modules
2013-07-08 16:24:40 -05:00
lsanchez-r7
5938e79f81
Adding the NetworkInterface gem
...
I just moved the c extentions from the metasploit-pcaprub to its own gem
2013-07-08 16:11:47 -05:00
modpr0be
b2a18c37ee
add dll references for rop
2013-07-09 03:20:05 +07:00
William Vu
0acdc32bac
Land #2084 , samples and templates update
2013-07-08 13:29:36 -05:00