9fc58c1e1f
Collect command output and report it
...
git-svn-id: file:///home/svn/framework3/trunk@8569 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-20 16:06:01 +00:00
0ba3d18032
Updated the report format to match new syntax
...
git-svn-id: file:///home/svn/framework3/trunk@8566 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-20 05:50:05 +00:00
0a8696436e
Fix up the telnet login code to handle varied responses better
...
git-svn-id: file:///home/svn/framework3/trunk@8565 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-20 05:49:40 +00:00
8446a0c305
add auto-targeting to tomcat_mgr_deploy, fixes #887
...
git-svn-id: file:///home/svn/framework3/trunk@8564 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-20 01:14:39 +00:00
93acc977fe
fix osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8563 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-19 19:42:08 +00:00
6e8eddcf5e
add exploit module for cve-2008-0506
...
git-svn-id: file:///home/svn/framework3/trunk@8562 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-19 07:31:12 +00:00
007930c784
add svn keywords property
...
git-svn-id: file:///home/svn/framework3/trunk@8561 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-19 07:13:31 +00:00
1a53411282
Filter out the other test modules from automation
...
git-svn-id: file:///home/svn/framework3/trunk@8559 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-19 05:18:43 +00:00
0db3ada840
Filter this from automation
...
git-svn-id: file:///home/svn/framework3/trunk@8558 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-19 05:15:03 +00:00
5b3c87c9c5
Add option to save java code to file.
...
git-svn-id: file:///home/svn/framework3/trunk@8557 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-19 05:11:56 +00:00
ab3b173040
So, funny story with net-ssh. Turns out, there's insufficient housekeeping on closing out connections in the event of authentication failures, which means you can start sucking up connections pretty good when you fail authentication a whole bunch of times. Fixed in the library, so now, if you pass a block to Net::SSH.start, and the authentication fails, the connection will still close out correctly, just as it would when the authentication succeeds.
...
Protip: If you don't pass a block, it's *still on the caller* to deal with the connection somehow. You'll want to basically always assign the connection to someplace you control, like so: sock = Net::SSH.start(whatever); sock.close). Otherwise, if you just Net::SSH.start without a block /or/ without assignment, you'll be stuck with all these useless connections hanging around.
git-svn-id: file:///home/svn/framework3/trunk@8556 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-19 03:02:25 +00:00
78aa6f5ba4
Added DB2 remote administration scan to udp_sweep
...
git-svn-id: file:///home/svn/framework3/trunk@8554 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 21:21:17 +00:00
f58558f605
Updated all the brute force login modules to record successful logins and avoid duplicating credentials.
...
git-svn-id: file:///home/svn/framework3/trunk@8553 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 19:04:51 +00:00
2e77c76824
add exploit module to get code exec on a tomcat manager instance, closes #772
...
git-svn-id: file:///home/svn/framework3/trunk@8552 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 18:18:43 +00:00
38a3b8203e
Properly checking for credential duplication.
...
git-svn-id: file:///home/svn/framework3/trunk@8551 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 18:11:18 +00:00
534d56cdd8
adjust text wrap
...
git-svn-id: file:///home/svn/framework3/trunk@8550 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 18:04:11 +00:00
c24a708db6
See #859 . Adds keyboard-interactive as an acceptable method of authentication.
...
git-svn-id: file:///home/svn/framework3/trunk@8548 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 16:11:58 +00:00
350c189a34
Added exploit module qbik_wingate_wwwproxy.
...
git-svn-id: file:///home/svn/framework3/trunk@8547 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 15:58:26 +00:00
27c3266c0a
Serializes telnet brute forcing so it's a little bit faster (as it happens) and
...
about a zillion times more reliable.
git-svn-id: file:///home/svn/framework3/trunk@8543 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 00:22:02 +00:00
4197f00701
Moves @credentials_tried and @credentials_good into auth_brute proper, though modules still
...
need to handle them themselves... which telnet and ssh both do now.
git-svn-id: file:///home/svn/framework3/trunk@8542 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 21:55:02 +00:00
797ab55f52
add exploit module for cve-2009-2011
...
git-svn-id: file:///home/svn/framework3/trunk@8541 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 20:14:40 +00:00
443e82bc75
Reworked ssh_login to a) handle all SSH errors, b) cease trying users if we already guessed a password and c) cease trying the same user:pass combo more than once.
...
git-svn-id: file:///home/svn/framework3/trunk@8540 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 20:12:02 +00:00
a71a24b6d3
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8538 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 18:56:05 +00:00
ed395fcda4
add osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@8537 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 18:48:34 +00:00
b17fc35986
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8536 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 18:35:01 +00:00
3314e6a10b
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8535 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 17:25:47 +00:00
fa877eb567
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8534 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 17:11:45 +00:00
e5609bbf82
add cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@8533 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 17:07:54 +00:00
1686931efe
More SSH versions
...
git-svn-id: file:///home/svn/framework3/trunk@8532 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 14:42:11 +00:00
b4ead057f6
add exploit module for cve-2000-0917
...
git-svn-id: file:///home/svn/framework3/trunk@8530 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-17 00:56:28 +00:00
5fce04ce22
See #843 , but this really just masks the problem. Investigate more thoroughly.
...
git-svn-id: file:///home/svn/framework3/trunk@8529 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 23:35:22 +00:00
25ec6e8021
Removing the require rescues for SSH, now that it's shipping in lib directly.
...
git-svn-id: file:///home/svn/framework3/trunk@8528 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 23:21:51 +00:00
206b70ace7
Indentation fixes (wrapping everything in a begin;rescue;end, didn't want
...
to obfuscate that with the last change).
git-svn-id: file:///home/svn/framework3/trunk@8522 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 18:09:51 +00:00
b45cfb8793
Fixes #808 . Removes the pre-connect test from login and version.
...
git-svn-id: file:///home/svn/framework3/trunk@8521 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 18:05:51 +00:00
ceb65d7dc0
Add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8519 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 16:38:58 +00:00
4800d6841c
commit cmd stager stuff from bannedit
...
git-svn-id: file:///home/svn/framework3/trunk@8518 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 16:38:19 +00:00
cf29ff333e
Added a path to prepend
...
git-svn-id: file:///home/svn/framework3/trunk@8514 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 05:24:31 +00:00
185ff610eb
Add an example of how to break out of the capture loop
...
git-svn-id: file:///home/svn/framework3/trunk@8513 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 01:32:25 +00:00
48b7aec12d
corrected cve reference
...
git-svn-id: file:///home/svn/framework3/trunk@8512 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 00:30:17 +00:00
a996668cfa
added payload notes
...
git-svn-id: file:///home/svn/framework3/trunk@8511 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 00:27:45 +00:00
82369aa9e8
add exploit module for cve-2007-2447
...
git-svn-id: file:///home/svn/framework3/trunk@8510 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-16 00:26:41 +00:00
8c59c9cfdc
fix typos
...
git-svn-id: file:///home/svn/framework3/trunk@8508 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-15 22:42:16 +00:00
b1ef6075c0
add exploit module for cve-2007-5208
...
git-svn-id: file:///home/svn/framework3/trunk@8507 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-15 22:38:50 +00:00
1857268af8
Uber-fast-get-me-a-php-shell mode :)
...
git-svn-id: file:///home/svn/framework3/trunk@8505 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-15 17:59:54 +00:00
5a5fb84e2c
strings, not constants
...
git-svn-id: file:///home/svn/framework3/trunk@8502 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-15 13:34:07 +00:00
32357b1f64
Skip the debugging target for automatic mode
...
git-svn-id: file:///home/svn/framework3/trunk@8499 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-15 01:02:12 +00:00
5d7139ad6f
Various module cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@8498 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-15 00:48:03 +00:00
f9ae031055
Added piranha_passwd_exec exploit module.
...
git-svn-id: file:///home/svn/framework3/trunk@8497 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 20:27:24 +00:00
43e89bf3a2
Consistency fix
...
git-svn-id: file:///home/svn/framework3/trunk@8496 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 19:38:47 +00:00
ca4b9bbd52
Ignore lang/service pack for non-Windows hosts in the OS information
...
git-svn-id: file:///home/svn/framework3/trunk@8490 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 17:25:05 +00:00
337e00d57e
Swap flavor/name
...
git-svn-id: file:///home/svn/framework3/trunk@8489 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 17:13:55 +00:00
352a367857
Handle OS X better
...
git-svn-id: file:///home/svn/framework3/trunk@8488 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 17:13:00 +00:00
26bb74ad6e
file autopwn minor fixes
...
git-svn-id: file:///home/svn/framework3/trunk@8486 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-14 00:06:32 +00:00
11cc5b0a32
fix name
...
git-svn-id: file:///home/svn/framework3/trunk@8484 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 23:38:01 +00:00
24084024c0
Add file format exploits generator. Kind of a File autopwn. Next step add Emailer
...
git-svn-id: file:///home/svn/framework3/trunk@8483 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 23:32:33 +00:00
9c227ea0e7
Improved auxiliary detection
...
git-svn-id: file:///home/svn/framework3/trunk@8481 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 23:26:07 +00:00
ee4fd8c75d
Ported sambar6_search_results from v2.
...
git-svn-id: file:///home/svn/framework3/trunk@8480 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 20:15:19 +00:00
7aa7995da9
Autodetect and exploit 2003 SP0
...
git-svn-id: file:///home/svn/framework3/trunk@8479 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 20:04:24 +00:00
01cbe85468
Fixed OSVDB refs and added CA Server module.
...
git-svn-id: file:///home/svn/framework3/trunk@8478 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 16:16:13 +00:00
c8da073f80
Ported calicclnt_getconfig exploit module from msf2.
...
git-svn-id: file:///home/svn/framework3/trunk@8476 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 15:38:06 +00:00
1896c82e39
add exploit module for cve-2009-2484
...
git-svn-id: file:///home/svn/framework3/trunk@8475 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 06:58:27 +00:00
8c28d583aa
bump ranking up a notch
...
git-svn-id: file:///home/svn/framework3/trunk@8474 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-13 06:57:58 +00:00
0e48287310
Adding a quickie ssh_login checker.
...
This will certainly change -- it's mostly just a placeholder now (though it does work).
git-svn-id: file:///home/svn/framework3/trunk@8472 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 23:00:36 +00:00
d561b8e8ec
add references, update description
...
git-svn-id: file:///home/svn/framework3/trunk@8471 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 21:09:09 +00:00
f3c6b01bbd
add first exploit module using Rex::OLE (cve-2009-3129)
...
git-svn-id: file:///home/svn/framework3/trunk@8470 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 20:52:41 +00:00
49b0e8a077
Argh should be mssql not tcp.
...
git-svn-id: file:///home/svn/framework3/trunk@8469 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 19:58:14 +00:00
fb30d8e8c9
Renaming services to mssql-m and mssql because nobody uses ms-sql-s to talk about port 1433 except /etc/services
...
git-svn-id: file:///home/svn/framework3/trunk@8468 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 19:53:18 +00:00
58913b6a71
Trivial fixup on print_status
...
git-svn-id: file:///home/svn/framework3/trunk@8467 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 19:16:05 +00:00
3fd3d44ad6
Added barcode_ax49.rb exploit module.
...
git-svn-id: file:///home/svn/framework3/trunk@8466 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 18:06:49 +00:00
537007c9cb
Implementing database reporting for mssql_ping.
...
git-svn-id: file:///home/svn/framework3/trunk@8464 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 16:53:46 +00:00
3fe41a0d94
Fix a small typo
...
git-svn-id: file:///home/svn/framework3/trunk@8463 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 14:44:23 +00:00
9729b22972
Loopty version of the wireshark exploit. This will continually blast packets as a background job.
...
git-svn-id: file:///home/svn/framework3/trunk@8460 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-12 01:58:33 +00:00
993ba44fcf
SMB updates, better reporting of SSL status for HTTP
...
git-svn-id: file:///home/svn/framework3/trunk@8459 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 22:37:00 +00:00
c52b37ea17
Prettify the telnet banner display for db_services
...
git-svn-id: file:///home/svn/framework3/trunk@8458 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 20:14:38 +00:00
8a44f4b9d8
Using a proper variable instead of $1 token for ora version.
...
git-svn-id: file:///home/svn/framework3/trunk@8456 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 18:29:24 +00:00
53ce10ac12
Switching Oracle scanner to use db_service rather than db_note to record version numbers.
...
git-svn-id: file:///home/svn/framework3/trunk@8455 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 17:57:33 +00:00
6e80c7a62c
use Rex::Arch::pack_addr
...
git-svn-id: file:///home/svn/framework3/trunk@8454 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 09:03:48 +00:00
0f942df9cd
whitespace changes
...
git-svn-id: file:///home/svn/framework3/trunk@8451 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 06:00:12 +00:00
f82c53db2a
move 70k binary to data/exploits instead of hex encoded in the exploit
...
git-svn-id: file:///home/svn/framework3/trunk@8446 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-10 23:17:19 +00:00
eb6ce38e0c
old zero-day shows its age
...
git-svn-id: file:///home/svn/framework3/trunk@8445 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-10 20:41:07 +00:00
df55aee06f
add osvdb and cve refs
...
git-svn-id: file:///home/svn/framework3/trunk@8444 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-10 19:35:28 +00:00
a1ec895cee
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8443 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-10 19:26:18 +00:00
e4494d3582
Added a verbosity line to telnet.
...
git-svn-id: file:///home/svn/framework3/trunk@8442 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-10 19:06:01 +00:00
b37b409c3e
update osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@8441 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-10 18:46:03 +00:00
d96a6a1f8f
add exploit module for cve-2009-2261 - first consumer of zip library!
...
git-svn-id: file:///home/svn/framework3/trunk@8440 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-10 17:28:25 +00:00
f93a8e878e
Auxiliary failed: NoMethodError undefined method `each' for "GET ([^ ?]+) HTTP":String
...
git-svn-id: file:///home/svn/framework3/trunk@8436 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 22:36:37 +00:00
65c5eae59e
Calling it postgres instead of postgresql for overall consistency.
...
git-svn-id: file:///home/svn/framework3/trunk@8435 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 20:44:23 +00:00
e2d70519d7
add the ability to check for a prompt before sending user/pass; now works with cisco, aix, solaris, linux, and windows telnetds
...
git-svn-id: file:///home/svn/framework3/trunk@8434 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 19:07:02 +00:00
a03b7c3feb
Commit the modified auxiliary modules to include a CHOST option so the relevant modules can avail of the new UDP pivoting.
...
git-svn-id: file:///home/svn/framework3/trunk@8432 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 16:47:38 +00:00
a92f5f207b
Handle null user lists
...
git-svn-id: file:///home/svn/framework3/trunk@8429 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 16:43:26 +00:00
11e8710a60
Catch OpenDomain failures
...
git-svn-id: file:///home/svn/framework3/trunk@8428 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 16:34:49 +00:00
48a159006a
Regenerate the payload with the specified AIX level, cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@8427 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 04:15:47 +00:00
e7f7ac20ea
extended brute range, minor cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@8426 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 04:15:15 +00:00
af978cbbdc
Regenerate the payload with the specified AIX level
...
git-svn-id: file:///home/svn/framework3/trunk@8424 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 03:59:20 +00:00
36c61ff5ed
Fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@8423 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 01:10:29 +00:00
7bf3de2a3d
randomize filler
...
git-svn-id: file:///home/svn/framework3/trunk@8422 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 00:43:56 +00:00
40579ce936
it works! don't forget to "set AIX <version>"
...
git-svn-id: file:///home/svn/framework3/trunk@8421 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 00:41:49 +00:00
17bd4b8b7d
fixed aix payloads to REALLY do variable substitution
...
git-svn-id: file:///home/svn/framework3/trunk@8418 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 22:41:36 +00:00
c763052c57
See #816 . This came up while learning how to perform various postgre tasks via Metasploit.
...
This module in particular reads a text file on the remote machine, copies it to a temporary table, and then selects the table.
Looks like this:
http://pastie.org/private/uoxgaw7ibjpvuepolr1fuw
git-svn-id: file:///home/svn/framework3/trunk@8417 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 22:34:09 +00:00
ba34abc232
Fix unpack("H*") vs unpack("H*")[0]
...
git-svn-id: file:///home/svn/framework3/trunk@8416 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 21:37:07 +00:00
2860d57e01
Cosmetic change to print_status messages to be consistent with Postgres
...
git-svn-id: file:///home/svn/framework3/trunk@8414 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 20:12:35 +00:00
c6c1cda153
Try to delete the file (doesn't always work)
...
git-svn-id: file:///home/svn/framework3/trunk@8413 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 19:12:59 +00:00
bc62eaf99b
Adds a module to exploit insecure IIS configurations (PUT)
...
git-svn-id: file:///home/svn/framework3/trunk@8412 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 19:04:19 +00:00
d374c16662
Fixed up reporting for DB2 and tested; also added other default usernames for db2.
...
git-svn-id: file:///home/svn/framework3/trunk@8411 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 18:54:50 +00:00
f3ad1c0a15
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8410 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 18:53:21 +00:00
0b6c44b2cb
Adding reporting to postgres_login. Logging version info more verbosely for authenticated login, since it's way useful.
...
git-svn-id: file:///home/svn/framework3/trunk@8408 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 17:35:58 +00:00
67bb7a1926
Cleaning up print_status messages for Postgres SQL module and Postgres library.
...
git-svn-id: file:///home/svn/framework3/trunk@8407 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 16:43:44 +00:00
79c68e3784
Fix the description
...
git-svn-id: file:///home/svn/framework3/trunk@8406 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 13:53:50 +00:00
c28f15d02c
Quote the share name
...
git-svn-id: file:///home/svn/framework3/trunk@8405 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 13:36:35 +00:00
f04ae6f20d
minor cleanups -- getting closer
...
git-svn-id: file:///home/svn/framework3/trunk@8402 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 01:03:46 +00:00
7870638481
Expose the SunRPC socket; we need to overhaul the SunRPC code sometime
...
git-svn-id: file:///home/svn/framework3/trunk@8399 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 00:52:58 +00:00
8b63d506f7
initial commit of aix cmsd exploit (not fully working yet)
...
git-svn-id: file:///home/svn/framework3/trunk@8398 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 00:44:54 +00:00
d68efa61d2
initial commit of aix cmsd exploit (not fully working yet)
...
git-svn-id: file:///home/svn/framework3/trunk@8397 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 00:44:37 +00:00
9f174795d4
add exploit module for vermillion ftpd memory corruption
...
git-svn-id: file:///home/svn/framework3/trunk@8396 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 00:39:48 +00:00
a772bc2c85
minor cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@8395 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-07 21:42:12 +00:00
c6c1afe543
open sessions when a telnet login succeeds; needs testing on more telnetd's
...
git-svn-id: file:///home/svn/framework3/trunk@8393 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-07 01:24:41 +00:00
3b0b2731fd
fix telnet scanner
...
git-svn-id: file:///home/svn/framework3/trunk@8392 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-07 00:14:29 +00:00
bd91871763
Correct credit for the advisory
...
git-svn-id: file:///home/svn/framework3/trunk@8391 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 23:22:28 +00:00
b2518b7c68
Remove the starting host verbage; it gets noisy in scanning mode
...
git-svn-id: file:///home/svn/framework3/trunk@8390 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 22:07:44 +00:00
715e2c4c2e
Add a link to the vendor response
...
git-svn-id: file:///home/svn/framework3/trunk@8389 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 21:54:57 +00:00
c48fe399f7
references have to be strings. fixes 815
...
git-svn-id: file:///home/svn/framework3/trunk@8387 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 21:41:06 +00:00
4c8dc37435
Add the OSVDB reference
...
git-svn-id: file:///home/svn/framework3/trunk@8382 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 14:51:56 +00:00
2c6b9c2800
Use the full \\host\share syntax to work with all versions of Samba. Thanks Eren!
...
git-svn-id: file:///home/svn/framework3/trunk@8381 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 14:45:43 +00:00
875a66553f
clean up a couple comments to save future pain
...
git-svn-id: file:///home/svn/framework3/trunk@8380 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 06:53:31 +00:00
bd3a4760da
fixes to adobe_pdf_embedded_exe
...
optimized the directory search, and cmdline in general
added the Documents (Vista/Win7) to the list of directories to check
fixes #767
git-svn-id: file:///home/svn/framework3/trunk@8379 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 06:51:13 +00:00
9b59f0e3c2
give the reported service a name
...
git-svn-id: file:///home/svn/framework3/trunk@8377 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-06 00:37:16 +00:00
509b2aab3a
use new api
...
git-svn-id: file:///home/svn/framework3/trunk@8376 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 23:00:51 +00:00
0e1af9ed6a
add reporting, see #385
...
git-svn-id: file:///home/svn/framework3/trunk@8375 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 21:13:07 +00:00
43bbfefa8f
Adding a Windows signature for Postgres.
...
git-svn-id: file:///home/svn/framework3/trunk@8374 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 18:02:13 +00:00
c8cdf9c938
Fixes #811 by implementing an enumerator for PostgreSQL.
...
git-svn-id: file:///home/svn/framework3/trunk@8371 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 15:20:59 +00:00
aeba7e0429
Store RPC information
...
git-svn-id: file:///home/svn/framework3/trunk@8370 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 14:53:09 +00:00
b3a588b8cc
Adds a module for kcope's samba filesystem traversal
...
git-svn-id: file:///home/svn/framework3/trunk@8369 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 06:38:24 +00:00
4f9490f63f
add default username/passwords for IBM Cognos Express Tomcat Manager
...
git-svn-id: file:///home/svn/framework3/trunk@8368 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-04 20:34:55 +00:00
9397c897ba
fix spoof support
...
git-svn-id: file:///home/svn/framework3/trunk@8367 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-04 04:56:18 +00:00
6e8e6ef16a
Fixes #769 by implementing a brute force module for Postgres. A couple notes: If you guess wrong at the database name, you still can try to login with a username and password -- you'll get a successful auth, but then get disconnected. So, that's pretty neat.
...
Also, since Postgres-PR uses the stock TCPSocket object, connection timeouts and other errors take forever. This is avoided in the brute forcer by pre-validating the connection with Rex::Socket, but this is a hack -- it would be better to convert Postgres-PR to a Rex::Socket flavor, so you also get nicer error messages and what all. I did fork it off the main distribute it already anyway, so may as well will open a feature bug on this, but it's pretty low priority.
git-svn-id: file:///home/svn/framework3/trunk@8366 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-03 21:45:13 +00:00
9b79ebd000
add a windows target, thx redsand!
...
also removed some cruft
git-svn-id: file:///home/svn/framework3/trunk@8364 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-03 18:24:42 +00:00
376e2ee62c
Gah!
...
git-svn-id: file:///home/svn/framework3/trunk@8363 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-03 13:53:47 +00:00
b785d5af00
Keywords.
...
git-svn-id: file:///home/svn/framework3/trunk@8362 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-03 13:53:12 +00:00
7538b93aae
add exploit module for cve-2006-6665
...
git-svn-id: file:///home/svn/framework3/trunk@8361 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-03 06:09:31 +00:00
a41647a922
add silly jmp esp target for wireshark gui on debian
...
git-svn-id: file:///home/svn/framework3/trunk@8360 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-03 00:08:28 +00:00
1ee79780e9
fix the http option scanner
...
git-svn-id: file:///home/svn/framework3/trunk@8355 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 23:11:18 +00:00
2ffe4abb5d
Fixes #730 by fixing up the Postgres query module and nicifying the output.
...
git-svn-id: file:///home/svn/framework3/trunk@8352 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 21:02:12 +00:00
44fbe35871
Fixing revision keyword
...
git-svn-id: file:///home/svn/framework3/trunk@8351 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 17:37:34 +00:00
4fcc9856d0
Adding a Juniper JunOS DoS exploit (no CVE, BID: 37670)
...
git-svn-id: file:///home/svn/framework3/trunk@8349 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 17:19:14 +00:00
2cbd6d152d
Add cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@8347 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 12:37:07 +00:00
98dd073368
add an exploit module for one of the wireshark lwres vulns
...
git-svn-id: file:///home/svn/framework3/trunk@8346 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 06:20:18 +00:00
746c4fc263
whitespace change
...
git-svn-id: file:///home/svn/framework3/trunk@8345 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 06:19:34 +00:00
01adf60550
See #730 . First pass at a Postgres Query module. Doesn't handle errors very well yet (still need to work all that out and create some test cases).
...
git-svn-id: file:///home/svn/framework3/trunk@8344 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 01:40:48 +00:00
fde3fbb2e3
add exploit module for cve-2009-1569
...
git-svn-id: file:///home/svn/framework3/trunk@8339 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 03:56:02 +00:00
c073cd707a
removed unecessary parameter, commented target
...
git-svn-id: file:///home/svn/framework3/trunk@8338 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 03:33:38 +00:00
HD Moore
Joshua Drake
Steve Tornio
natron
Tod Beardsley
Patrick Webster
James Lee
Stephen Fewer