Commit Graph

12607 Commits (afe3168a363355aecb64e1dd20db20512b728e3e)

Author SHA1 Message Date
HD Moore afe3168a36 Enable additional migration-path parameters, use a temporary directory to bring the database online
Conflicts:

	lib/msf/core/db_manager.rb
2012-03-31 12:05:54 -05:00
sinn3r bab4cddd83 Add Jeroen Frijters for finding/reporting the bug 2012-03-31 03:01:09 -05:00
sinn3r 1853f8b0c2 Merge pull request #291 from wchen-r7/enum_xchat
Add post module enum_xchat.rb
2012-03-31 00:42:15 -07:00
sinn3r 543f5ebfe2 Only display the retry message when necessary 2012-03-31 02:40:24 -05:00
sinn3r 4215030eb3 Set a limit to how many times we can retry 2012-03-31 02:38:46 -05:00
sinn3r 6e4ccaae6b Add post module to collect xchat's configs and chat logs 2012-03-31 00:15:21 -05:00
James Lee 62a54e0ad6 Account for stagers that use Assembly
Since staged payloads end up with an array of architectures, this was
failing to find a cpu and causing uncaught exceptions that crashed
msfconsole at startup. This only occurred when a stager contained an
Assembly directive. None of the default paylaods do this, so users
should generally not have been affected.
2012-03-30 17:57:56 -06:00
James Lee 025d905c01 Compiled jar with -target 1.2 so it works on older JVMs 2012-03-30 17:05:20 -06:00
James Lee 6b996ed9de Add checks for data being null, too, just in case 2012-03-30 16:46:49 -06:00
James Lee 11a1ae3a8d Typo in a comment 2012-03-30 16:30:13 -06:00
James Lee b424475774 Add a makefile
Compiles with an old -target so it will work on older JVMs
2012-03-30 16:25:47 -06:00
James Lee cc54a260f5 Merge remote branch 'upstream/master' 2012-03-30 14:31:12 -06:00
James Lee 0547369966 Add bap support for flash mp4 and new java bug
Also fixes a silly issue where adobe_flash_mp4_cprt was adding the
/test.mp4 resource after every request instead of just once at startup.
2012-03-30 12:59:07 -06:00
sinn3r e723704a32 Merge pull request #289 from wchen-r7/enum_colloquy
Add post module enum_colloquy.rb to collect chatlogs and the plist
2012-03-30 09:24:32 -07:00
sinn3r 18a13a4bfb Correct description 2012-03-30 11:22:55 -05:00
sinn3r 392125f201 Merge pull request #290 from swtornio/master
add osvdb ref
2012-03-30 09:17:39 -07:00
Steve Tornio ae21c05e69 add osvdb ref 2012-03-30 07:26:07 -05:00
sinn3r e018c6604f Modify CVE-2012-0507 2012-03-30 02:06:56 -05:00
sinn3r 8d2a58dfd8 Add post module enum_colloquy.rb to collect chatlogs and the preferences list 2012-03-29 16:24:43 -05:00
Tod Beardsley bec8d40a6c File permissions fix 2012-03-29 16:24:31 -05:00
James Lee b5fc8e4a77 Merge branch 'upstream-master' 2012-03-29 13:18:01 -06:00
Tod Beardsley f069a32223 Merge pull request #288 from wchen-r7/cve_2012_0507
Adding sinn3r and juan's exploit for CVE-2012-0507. Blog post coming soon.
2012-03-29 08:46:49 -07:00
sinn3r 791ebdb679 Add CVE-2012-0507 (Java) 2012-03-29 10:31:14 -05:00
Tod Beardsley bd4819e8f2 Merge pull request #238 from mak/linux-x64-find-port
linux/x64/shell_find_port payload
2012-03-29 05:54:54 -07:00
Tod Beardsley 220ad7875f Merge pull request #285 from wvandevanter-r7/squid_pivot_scanning
Squid pivot scanning
2012-03-29 05:02:05 -07:00
Tod Beardsley 434e487800 Merge pull request #287 from rsmudge/armitage
startup bug fix for armitage
2012-03-29 05:00:03 -07:00
Raphael Mudge 28483711e7 initialize a console before connecting to db (forces msf to setup the database for user) 2012-03-29 01:00:03 -04:00
Willis Vandevanter f5e05461f6 changed the false positive check IP to a user set variable 2012-03-28 22:18:56 -04:00
sinn3r 73b53ea225 Merge pull request #286 from jlee-r7/bug/6567
Make sure session.target_host gets resolved
2012-03-28 14:33:26 -07:00
Raphael Mudge e48c47e958 Armitage 03.28.12. Mostly performance improvements. 2012-03-28 14:33:25 -06:00
Tod Beardsley 56404f5edd Fixing EDB reference 2012-03-28 14:33:25 -06:00
HD Moore 9968b94951 Update for compatibility 2012-03-28 14:33:25 -06:00
James Lee e9a9bc4794 Rename enum_user_dirs 2012-03-28 14:33:25 -06:00
James Lee 64f8665df0 Remove loads 2012-03-28 14:33:24 -06:00
James Lee 0e472deede Add a simple test for unix shells 2012-03-28 14:33:24 -06:00
Tod Beardsley bd13720c45 Fixing checksum uri generator again.
This time, it's ensured that generate_uri_checksum(sum) will succeed,
provided the sum is an even number between 80 and 100 (tested)

It's still not great for arbitrary checksum targets, but that's because
there are lots of strings that cannot satisfy the requirement. I kind of
think this is the fault of Rex.
2012-03-28 14:33:24 -06:00
sinn3r d01bf496f0 Remove the extra 'require' 2012-03-28 14:33:24 -06:00
sinn3r 844654b1e1 Add OSX Gather Airport post module 2012-03-28 14:33:24 -06:00
HD Moore f4f8187eee Correct an issue where launched exploits only used saved configurations 2012-03-28 14:33:24 -06:00
James Lee f797bb5d1b Convert railgun tests to ModuleTest API 2012-03-28 14:33:24 -06:00
James Lee 8f376e5605 Allow empty values for OptRegexp options 2012-03-28 14:33:24 -06:00
James Lee 3abb45672d Convert registry tests to ModuleTest API 2012-03-28 14:33:24 -06:00
James Lee 5821a70b16 Add exception logging for test failures 2012-03-28 14:33:24 -06:00
James Lee eda4da870d Return a proper value instead of a silly print 2012-03-28 14:33:24 -06:00
Tod Beardsley 2dfd501e5f Quoting "Chicken of the VNC"
Otherwise, this looks like a nonsense string to people not familiar with
this application.
2012-03-28 14:33:24 -06:00
Tod Beardsley e651c9ba3b Grammar on dns_txt_query_exec payload name and desc 2012-03-28 14:33:24 -06:00
Tod Beardsley 7f0fb84743 Fix up desc again on enum_dns 2012-03-28 14:33:23 -06:00
Tod Beardsley a6ab0304d6 More fixes to enum_dns.rb
* Should use 'and', not & (bitwise AND)
  * Made capitalization sane for Anglophones. See: http://owl.english.purdue.edu/owl/resource/592/1/
2012-03-28 14:33:23 -06:00
Tod Beardsley 27af32d382 Style fixes for enum_dns.rb
* Use a dotted.notation for note types
  * Changed title to something more descriptive
  * Expanded description
  * Other trivial changes
2012-03-28 14:33:23 -06:00
sinn3r 73e5ead177 ADD OSVDB-80262 2012-03-28 14:33:23 -06:00