Commit Graph

591 Commits (bc7b19f554a274f2547e71e7a6d79a4df2f53a13)

Author SHA1 Message Date
HD Moore 0881649f14 The psexec and smb_relay module now automatically cleanup. The ms08-06 module now supports all languages of XP SP3.
git-svn-id: file:///home/svn/framework3/trunk@5841 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-04 22:27:59 +00:00
HD Moore 68b9a2a421 Adds a new submitted fingerprint for Czech
git-svn-id: file:///home/svn/framework3/trunk@5836 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-04 07:13:48 +00:00
HD Moore 8ee55fb53c Embed the revision of the smb mixin
git-svn-id: file:///home/svn/framework3/trunk@5832 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-04 04:24:11 +00:00
HD Moore 133d7ce658 Adds an automatic default target to ms08-067, autodetects OS, SP, and language now.
git-svn-id: file:///home/svn/framework3/trunk@5827 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-03 20:37:51 +00:00
HD Moore f1789fc1b2 Adds the check() method and scanner module to ms08-067, massively upgrades the smb/version scanner, with better SP detection and remote language pack detection.
git-svn-id: file:///home/svn/framework3/trunk@5823 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-03 09:17:08 +00:00
HD Moore 56a413d803 Reflective DLL injection payloads from Stephen Fewer
git-svn-id: file:///home/svn/framework3/trunk@5806 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-30 22:17:32 +00:00
druid a07a3af2d6 Adds a method hook for any primer code needed to execute immediately after server startup.
git-svn-id: file:///home/svn/framework3/trunk@5792 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-27 20:31:40 +00:00
et 75be2e33ad Added module reporting and wmap_reports command
git-svn-id: file:///home/svn/framework3/trunk@5789 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-27 02:22:30 +00:00
et 29e983567e removed reports_exist check
git-svn-id: file:///home/svn/framework3/trunk@5785 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-23 04:23:54 +00:00
Ramon de C Valle f124597a56 Code cleanups
git-svn-id: file:///home/svn/framework3/trunk@5773 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 21:03:39 +00:00
Ramon de C Valle 4c847e0d44 Fixed typo
git-svn-id: file:///home/svn/framework3/trunk@5772 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 20:38:07 +00:00
et 7e73ed8c15 first attempt of reporting implementation.
git-svn-id: file:///home/svn/framework3/trunk@5771 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 20:32:14 +00:00
Ramon de C Valle c34bbae344 Added payload advanced packing types for 16/16 and 22/10 bits substitution
git-svn-id: file:///home/svn/framework3/trunk@5770 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-19 20:32:14 +00:00
HD Moore deea354fbb Wrap the modulation setting as well
git-svn-id: file:///home/svn/framework3/trunk@5768 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-17 18:31:09 +00:00
HD Moore 4a3b540685 Handle the txrate error better
git-svn-id: file:///home/svn/framework3/trunk@5767 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-17 17:46:05 +00:00
HD Moore 7d98de2fed Handle cases where lorcon cant change the txrate (zdw driver)
git-svn-id: file:///home/svn/framework3/trunk@5766 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-17 17:35:35 +00:00
HD Moore 4eac2506b8 Add TXRATE and TXMOD options
git-svn-id: file:///home/svn/framework3/trunk@5765 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-17 15:58:33 +00:00
Ramon de C Valle 8d760ebc1e Added patch and module from Kris Katterjohn
git-svn-id: file:///home/svn/framework3/trunk@5751 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-14 14:22:34 +00:00
HD Moore e016ff2d76 cleanup patch from antoine
git-svn-id: file:///home/svn/framework3/trunk@5748 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-13 14:22:38 +00:00
et c153d1fea0 Wmap database merged, new wmap_generic module, fix website tree display and docs.
git-svn-id: file:///home/svn/framework3/trunk@5740 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-12 03:46:49 +00:00
HD Moore 6df3d7f54a Switch capture mixin from scruby to packetfu
git-svn-id: file:///home/svn/framework3/trunk@5729 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-10 02:27:25 +00:00
Ramon de C Valle 35240108de Added patch and module from Kris Katterjohn
git-svn-id: file:///home/svn/framework3/trunk@5720 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-06 13:16:08 +00:00
HD Moore 02780a1d88 Improvements to the FTP mixin and scanner, still needs multiline read support
git-svn-id: file:///home/svn/framework3/trunk@5715 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-04 21:42:37 +00:00
HD Moore fd256ec4a1 This massive commit changes the metasploit 3 module format. The new syntax allows for greater scalability and future improvements to the metasploit module loader. This change also makes it easier for users to add new modules, since the class name no longer needs to match the directory structure.
git-svn-id: file:///home/svn/framework3/trunk@5709 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-02 05:23:59 +00:00
et fa3ce57fed Implemented Auxiliary::WMAPScanUniqueQuery.
git-svn-id: file:///home/svn/framework3/trunk@5704 4d416f70-5f16-0410-b530-b9f4589650da
2008-10-01 03:57:57 +00:00
HD Moore 37d9c3db1d Corrects an issue where a scope ID is passed to IPv4 addresses, cleans up the parsing.
git-svn-id: file:///home/svn/framework3/trunk@5687 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-26 05:39:06 +00:00
HD Moore e6254d42ce Cleaning up all the wordy stuff
git-svn-id: file:///home/svn/framework3/trunk@5685 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-26 04:25:44 +00:00
HD Moore a75978a218 Patch from Stephen Fewer from Harmony Security, makes the midstager uses VirtualAlloc with RWX, solves a number of issues, specifically stack space starvation for large payloads.
git-svn-id: file:///home/svn/framework3/trunk@5683 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-24 22:54:30 +00:00
James Lee 36a06e7576 initial commit of php findsock. This patch makes all http connections global and removes the "close if (!pipelining)" checks, so beware of bugs.
git-svn-id: file:///home/svn/framework3/trunk@5678 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-24 04:41:51 +00:00
HD Moore ddc47955f2 Simplified module loader, update to the platform module to be more compat with ruby 1.9
git-svn-id: file:///home/svn/framework3/trunk@5677 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-24 04:15:10 +00:00
HD Moore fba4fb2889 Fix deprecated while/case syntax
git-svn-id: file:///home/svn/framework3/trunk@5676 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-23 15:41:13 +00:00
HD Moore b001e4684d Import first version of WMAP from ET LoWNOISE
git-svn-id: file:///home/svn/framework3/trunk@5675 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-22 22:32:20 +00:00
Ramon de C Valle 58cef5775e Added ARCH_POWER constant and fixed AIX payload modules
git-svn-id: file:///home/svn/framework3/trunk@5663 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-17 01:42:51 +00:00
Ramon de C Valle 117bae1e3e Added AIX POWER/PowerPC payload modules
git-svn-id: file:///home/svn/framework3/trunk@5654 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-10 20:13:36 +00:00
HD Moore 0f25d98fb2 Fixes a typo with IPv4->IPv6 address translation
git-svn-id: file:///home/svn/framework3/trunk@5652 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-05 16:23:34 +00:00
James Lee 0c2f8537a1 re-enable randomization of basic blocks in php shells
git-svn-id: file:///home/svn/framework3/trunk@5647 4d416f70-5f16-0410-b530-b9f4589650da
2008-09-01 04:43:07 +00:00
HD Moore ecf211a0d8 Pass the correct payload space value when specified via target or override
git-svn-id: file:///home/svn/framework3/trunk@5645 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-26 22:57:06 +00:00
HD Moore 1fa95d6050 This patch adds support for IPv6 scope_ids to AddressRange parameters. Ranges consisting of a single address are not expanded
git-svn-id: file:///home/svn/framework3/trunk@5640 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-23 07:05:38 +00:00
HD Moore fcaa218548 Fix IPv4 payloads, dont commit past midnight anymore.
git-svn-id: file:///home/svn/framework3/trunk@5638 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-22 22:06:14 +00:00
HD Moore d53dd66701 Adds initial support for IPv6, including two stager. Tested Meterpreter over IPv6 stages on XP and Vista. Using this is still tricky, I will add a wiki page tomorrow to explain the ScopeID stuff for link-local testing. This commit also includes the raw (oversized) assembler for the stagers as well as the entire old metasploit assembly set (useful for development).
git-svn-id: file:///home/svn/framework3/trunk@5635 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-22 06:34:57 +00:00
HD Moore 3cf81f257e Ensure that the Content-Type is set to text/html by default.
git-svn-id: file:///home/svn/framework3/trunk@5615 4d416f70-5f16-0410-b530-b9f4589650da
2008-08-08 02:37:54 +00:00
James Lee f5fe1e0305 fix escaping bug in js_base64
git-svn-id: file:///home/svn/framework3/trunk@5611 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-30 02:56:21 +00:00
HD Moore 905366758a Add the US-CERT-VU reference type
git-svn-id: file:///home/svn/framework3/trunk@5578 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 20:56:36 +00:00
HD Moore f52f4d7b62 Add |)ruid's infos to author, fix an issue with auxiliary options checking.
git-svn-id: file:///home/svn/framework3/trunk@5577 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-23 20:14:47 +00:00
HD Moore ca7c8b0f68 Adds the Exploit::Remote::Ip mixin
git-svn-id: file:///home/svn/framework3/trunk@5566 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-22 19:12:05 +00:00
James Lee 2d344e64df browser_autopwn now works with mozilla_compareto, mozilla_navigatorjava, and firefox_queryinterface; increased reliability of OS and browser detection
git-svn-id: file:///home/svn/framework3/trunk@5563 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-22 07:28:05 +00:00
Patrick Webster 301b1514f3 Added pop2 mixin, aux module, typos.
git-svn-id: file:///home/svn/framework3/trunk@5550 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-08 14:21:48 +00:00
James Lee 8800372e46 initial commit of browser_autopwn;
revamp php payloads;
socks5 for IPv6 (untested)



git-svn-id: file:///home/svn/framework3/trunk@5546 4d416f70-5f16-0410-b530-b9f4589650da
2008-07-01 01:44:56 +00:00
Matt Miller b2b7a05abb comment out stage encoding until I can troubleshoot it some more
git-svn-id: file:///home/svn/framework3/trunk@5522 4d416f70-5f16-0410-b530-b9f4589650da
2008-06-05 07:03:10 +00:00
Matt Miller 30ae3af6fb experimental: stages encoded by default, set DisableStageEncoding 1 to disable
git-svn-id: file:///home/svn/framework3/trunk@5511 4d416f70-5f16-0410-b530-b9f4589650da
2008-05-26 07:59:03 +00:00