6e1cdfde36
Rip out create_credential* stuff. Use what works
2014-11-17 09:01:14 -08:00
e5bb13a609
If remmina config files are missing data for creds, tell me what
2014-11-17 09:01:14 -08:00
875d1f9ea0
Convert Remmina credential gatherer to use new credentials model
2014-11-17 09:01:14 -08:00
086f0c02d6
Remove excessive logging
2014-11-17 09:01:14 -08:00
90e58e9e71
Binary encoding
2014-11-17 09:01:14 -08:00
e76373340e
Correct some Rubocop things that I agree with
2014-11-17 09:01:14 -08:00
f729a6cf02
Add Remmina RDP/SSH/VNC password gathering
2014-11-17 09:01:13 -08:00
c765100efd
Land #4004 , @martinvigo's LastPass master password extraction module
2014-10-22 16:34:54 -07:00
29b61984c5
Update to use correctly joined path
2014-10-22 16:34:17 -07:00
88c1647c80
Loot the passwords, obviously
2014-10-19 13:11:10 -07:00
0971d7c3ac
Remove ... from prints, only map a browser if we found something
2014-10-19 13:05:11 -07:00
967800eed0
Track account name for more useful table and prints
2014-10-19 12:59:51 -07:00
5a05246682
Consistent case in *print_*
2014-10-19 12:30:50 -07:00
a30663e412
Fix multiuser LastPass extraction, print/vprint cleanup
2014-10-17 17:40:19 -07:00
d2a00b208e
Minor style cleanup to appease Rubocop
2014-10-17 12:50:18 -07:00
d97fe548b9
Store the browser name in LastPass loot
2014-10-17 11:33:31 -07:00
43238c7324
Simplify LastPass extraction. Track what browser that puked creds
2014-10-17 11:19:36 -07:00
9177b931fd
Refactoring of LastPass module to use correct Firefox path on *nix
2014-10-17 10:20:55 -07:00
35d3bbf74d
Fix up comment splats with the correct URI
...
See the complaint on #4039 . This doesn't fix that particular
issue (it's somewhat unrelated), but does solve around
a file parsing problem reported by @void-in
2014-10-17 11:47:33 -05:00
36d6220f8f
Make use of Rex::Ui::Text::Table
2014-10-15 23:13:53 -07:00
bb421859d3
Refactor code and add support for all Windows
2014-10-15 22:15:54 -07:00
c7e0ced02b
Remove useless conditions
2014-10-15 21:29:47 -07:00
2bdc703930
Remove useless condition
2014-10-15 21:16:06 -07:00
5fa39782b8
Fix unused variable
2014-10-15 21:10:50 -07:00
8fc0f0955e
Add support for Firefox
2014-10-15 20:44:20 -07:00
47794510c3
Add support for Firefox in XP
2014-10-15 20:44:19 -07:00
484d98d0a8
Meet rubocop and msftify rules
2014-10-15 20:17:36 -07:00
85e6febe09
Add module to extract/decrypt LastPass credentials
2014-10-15 20:17:36 -07:00
91bb0b6e10
Metasploit Framework 4.9.3-2014072301
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=e1z9
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=Pjob
-----END PGP SIGNATURE-----
Merge tag '2014072301' into staging/electro-release
Conflicts:
Gemfile.lock
modules/post/windows/gather/credentials/gpp.rb
This removes the active flag in the gpp.rb module. According to Lance,
the active flag is no longer used.
2014-08-06 15:58:12 -05:00
a41768fd7d
Correct DbVisualizer title name
...
I think "DbVis Software" is the name of the company and the product
itself is called DbVisualizer.
Also fixed the description on the WPTouch module.
2014-07-21 12:35:01 -05:00
bebf11c969
Resolves some Login::Status migration issues
...
MSP-10730
2014-07-16 21:52:08 -05:00
52a29856b3
Merge branch 'master' into staging/electro-release
...
Conflicts:
Gemfile
Gemfile.lock
2014-07-16 09:38:44 -05:00
1d6f088eab
Pass msftidy
2014-07-15 11:31:37 -05:00
526538ecd6
Added dbvis version find and print
2014-07-15 15:04:46 +02:00
97dcc56225
Update dbvis_enum.rb
2014-07-15 14:23:40 +02:00
400b0f4276
parse url to report host in old config
2014-07-15 14:21:09 +02:00
f3d953f829
Old config file update
...
Added functions to parse old and new config files.
2014-07-15 14:00:29 +02:00
ac3d453002
Update dbvis_enum.rb
2014-07-15 12:33:07 +02:00
a53341f520
Added compatibility with dbvis <= 6
...
Checking for "config" folder existence if "config70" is not found.
2014-07-15 12:14:38 +02:00
cc1ba265cb
Change module name for consistency
2014-07-14 15:49:19 -05:00
4d7bffd713
Change header
2014-07-14 15:45:17 -05:00
5a821cea9d
Account for EOFError condition
2014-07-14 15:27:40 -05:00
89a877031f
I mean "unless", not "if"
2014-07-14 15:24:53 -05:00
bec32a01ab
For for missing an end
2014-07-14 15:17:54 -05:00
cecdcef2e2
+ not preferred
2014-07-14 15:14:54 -05:00
0737deb2a3
Remove the last exception handler
...
We're already checking the file path with file?(), so we don't need
to use exception handling for this task anymore.
2014-07-14 15:02:23 -05:00
8fe3f1a077
File should be checked for existence before reading
2014-07-14 15:01:03 -05:00
20e5803592
Author's Twitter handle should be a comment
...
msfconsole treats whatever is in <> as the author's email, not
twitter handle
2014-07-14 14:57:36 -05:00
3b6947c1d7
Use Rex to check IPv4 instead of using resolv
2014-07-14 14:56:38 -05:00
b5e556519b
Change = to ==
...
This is an if condition, not an assignment
2014-07-14 14:53:27 -05:00
8f51fd0e45
Retabbed and reformatted
2014-07-14 14:39:34 -05:00
72d9587a50
DbVisualizer stores the user database configuration in dbvis.xml
...
This module retrieves the connections settings from this file
2014-07-14 20:08:48 +02:00
667b1363f3
Delete dbvis_enum.rb
2014-07-14 10:57:53 +02:00
0ef0f6aae1
Update dbvis_enum.rb
2014-07-14 10:54:43 +02:00
bcbb0b4fde
dbvis connections gathering
...
DbVisualizer stores the user database configuration in dbvis.xml.
This module retrieves the connections settings from this file.
2014-07-14 10:49:20 +02:00
8937fbb2f5
Fix email format
2014-07-11 12:45:23 -05:00
62a2f1dc0a
Credential -> Model for realm key constants
2014-07-10 14:30:25 -05:00
a3eea2f712
Add better handling of host and port
2014-06-13 15:22:09 -05:00
4593c309f5
Fix a dummy because I can't read
2014-06-12 19:10:24 -05:00
9d89730026
Use realm instead of private
2014-06-12 18:46:13 -05:00
5d19410294
Don't use getaddress with session.session_host
2014-06-12 18:30:51 -05:00
74cb5cd79e
Fix bad copypasta
2014-06-12 13:17:12 -05:00
89434a75c3
Fix bad indent
2014-06-12 13:10:50 -05:00
512395395b
Refactor pgpass_creds creds
2014-06-12 13:08:47 -05:00
4d923a4809
Update to Rubyzip 1.X API
...
MSP-10004
`require 'zip'` instead of `'zip/zip'` and rename all classes to remove
redundant Zip prefix inside the Zip namespace.
2014-06-10 13:41:42 -05:00
90c63efaeb
refactor ssh_creds post module
...
the sssh_ creds post module now stores
SSH Keys as Metasploit::Credential objects
2014-06-09 11:49:49 -05:00
2b8dd9139c
Fix cosmetic issue
...
Fix cosmetic issue /w email address when it is output via 'info' or the Rapid7 module page.
2014-05-11 16:14:51 -05:00
d4c0d015c1
Update wlan_geolocate.rb
...
Updated based on feedback. Also added enumeration only support for BSD and Solaris.
2014-04-24 07:04:50 -05:00
2fd004b69e
New module: Multiplatform Wireless LAN Geolocation
...
This is a new POST module that allows Windows, Linux, and OSX targets to be geolocated using Google services if the target has an active and functional wireless adapter.
2014-04-19 17:31:48 -05:00
062175128b
Update @Meatballs and @FireFart in authors.rb
2014-04-09 10:46:10 -05:00
3ea3968d88
Merge branch 'upstream/master' into stop_abusing_expand_path
...
Conflicts:
lib/msf/core/post/windows/shadowcopy.rb
modules/exploits/windows/local/bypassuac.rb
modules/post/windows/gather/wmic_command.rb
modules/post/windows/manage/persistence.rb
2014-03-11 23:13:39 +10:00
42a730745e
Land #2418 , Use meterpreter hostname resolution
2014-02-28 14:45:39 -06:00
a4035252d6
Land #1910 , DISCLAIMER for firefox_creds
...
Fixed conflict in Author.
2014-02-12 16:32:08 -06:00
d1d45059f2
use session_host instead
2014-01-10 18:27:03 -06:00
8534f7948a
Change the post module's default api key as well (to Metasploit's)
2014-01-10 17:59:51 -06:00
238d052073
Update description
...
key is no longer required.
2014-01-10 04:02:01 -06:00
da273f1440
Update the use of report_note
2014-01-10 01:49:07 -06:00
807d8c12c7
Have a default API key
...
Modules now should have a default API key. See the following for
details:
http://blog.virustotal.com/2012/12/public-api-request-rate-limits-and-tool.html
2014-01-10 01:26:42 -06:00
a99e2eb567
Update the post module
2014-01-08 18:41:22 -06:00
130a99f52b
Add a post module that checks with VirusTotal with a checksum
...
This post module will submit a SHA1 checksum to VirusTotal to see
if it's a malicious file.
2014-01-08 18:26:40 -06:00
9fb081cb2d
Add getenvs, update getenv, change extract_path use
...
Stacks of modules were using `extract_path` where it wasn't really semantically correct
because this was the only way to expand environment variables. This commit fixes that
up a bit.
Also, I changed the existing `getenv` function in `stdapi` to `getenvs`, and had it
support the splat operator. I added a `getenv` function which is used just for a
single variable and uses `getenvs` behind the scenes.
The meterpreter console `getenv` command now uses `getenvs`
2013-12-19 11:54:34 +10:00
7f048bcd2c
Merge HOSTFILE and CSV input
...
And remember to uniq the array.
2013-11-24 15:28:44 +00:00
511d176128
Add hostfile resolution
2013-11-24 15:20:04 +00:00
032da9be10
Land #2426 - make use of Msf::Config.data_directory
2013-10-21 13:07:33 -05:00
f0aedd932d
More stragglers
2013-10-16 16:29:55 -05:00
5d86ab4ab8
Catch mis-formatted bracket comments.
2013-10-15 14:52:12 -05:00
c83262f4bd
Resplat another common boilerplate.
2013-10-15 14:07:48 -05:00
23d058067a
Redo the boilerplate / splat
...
[SeeRM #8496 ]
2013-10-15 13:51:57 -05:00
63e40f9fba
Release time fixes to modules
...
* Period at the end of a description.
* Methods shouldn't be meth_name! unless the method is destructive.
* "Setup" is a noun, "set up" is a verb.
* Use the clunky post module naming convention.
2013-10-14 15:17:39 -05:00
be139beb20
Remove windows from title of multi module.
2013-10-09 17:11:47 -04:00
6c382c8eb7
Return nil on error, and move the module to post/multi.
2013-10-09 16:52:53 -04:00
7ba846ca24
Find and replace
2013-09-26 20:34:48 +01:00
c547e84fa7
Prefer Ruby style for single word collections
...
According to the Ruby style guide, %w{} collections for arrays of single
words are preferred. They're easier to type, and if you want a quick
grep, they're easier to search.
This change converts all Payloads to this format if there is more than
one payload to choose from.
It also alphabetizes the payloads, so the order can be more predictable,
and for long sets, easier to scan with eyeballs.
See:
https://github.com/bbatsov/ruby-style-guide#collections
2013-09-24 12:33:31 -05:00
58b634dd27
Remove unnecessary requires from post mods
2013-09-12 14:36:01 -05:00
b720fc215b
Retab changes for PR #1910
2013-09-05 14:40:18 -05:00
fc8ad8c633
Merge for retab
2013-09-05 14:40:11 -05:00
845bf7146b
Retab changes for PR #2304
2013-09-05 13:41:25 -05:00
adf9ff356c
Merge for retab
2013-09-05 13:41:23 -05:00
41e4375e43
Retab modules
2013-08-30 16:28:54 -05:00
63adde2429
Fix load order in posts, hopefully forever
2013-08-29 13:37:50 -05:00
8431eb7a79
Msftidy fixes, also use correct possessive plurals
...
http://englishplus.com/grammar/00000132.htm
2013-08-05 09:43:38 -05:00
1953473e1f
added advanced option
2013-06-10 16:09:31 -04:00
bc7066a8b6
added user warnings
2013-06-06 08:02:32 -04:00
182863f1a4
addressing feedback/updated description
2013-06-04 17:15:42 -04:00
cb31772302
Fix indent
2013-06-04 11:37:16 -05:00
423a33b1fc
Added firefox pw decryption support
2013-06-03 13:13:59 -04:00
b0f5255de8
fix ssh_creds username
...
ssh_creds post module as not saving
the username in the cred objects
2013-05-05 16:31:28 -05:00
e3ee0d7913
Don't try to download '.' or '..' as files
2013-02-08 11:25:17 -06:00
624ef9a329
Fixed a typo in the skype_enum module.
...
"platfom" instead of "platform" fixed.
2013-01-17 14:04:52 -05:00
8f2dd8e2ce
msftidy: Remove $Revision$
2013-01-04 00:48:10 +01:00
25aaf7a676
msftidy: Remove $Id$
2013-01-04 00:41:44 +01:00
b973927ab2
Msftidy on digi_addp_reboot and pgpass_creds
2012-11-05 16:19:38 -06:00
1a162d7dd9
Use Rex table, fix 1.8 syntax issues, format fixes
2012-11-02 01:15:47 -05:00
5c27c9c953
Added a print_good from the results of store_loot
2012-10-29 15:18:13 -05:00
eda5e8a12f
Changed platform type from windows to win and fixed an indentation error.
2012-10-29 14:23:50 -05:00
3746a3ef64
adding pgpass_creds post module
2012-10-25 21:30:54 -05:00
be9a954405
Merge remote branch 'jlee-r7/cleanup/post-requires'
2012-10-23 15:08:25 -05:00
21f6127e29
Platform windows cleanup
...
Change all Platform 'windows' to 'win', as it internally is an alias
anyway and only causes unnecessary confusion to have two platform names
that mean the same.
2012-10-23 20:33:01 +02:00
9c95c7992b
Require's for all the include's
2012-10-23 13:24:05 -05:00
adfced8d0e
Post require on gpg_creds
2012-10-15 06:58:35 -05:00
7196ca5b5e
Fix bad indent
2012-10-12 18:35:05 -05:00
7aa6776e4b
let's not rejoin threads we've already joined.
2012-10-12 17:12:42 -04:00
694eacfc4b
performance fix for host discovery post modules
2012-10-12 16:43:42 -04:00
8b8bfec6b8
Merge branch 'gpg' of https://github.com/kholia/metasploit-framework into kholia-gpg
2012-10-05 09:23:54 +02:00
dc9907da98
Fix load order issue with multi/gather/ssh_creds
...
Make sure Post::Unix exists before including
2012-10-04 11:19:14 -05:00
d63b5fb9e3
fixes: author format, remove meterpreter support, fix ltype
2012-10-04 21:29:00 +05:30
80bcf930e3
GnuPG Information Gather Module, tested against Linux
2012-10-02 17:46:57 +05:30
f75ff8987c
updated all my authour refs to use an alias
2012-09-19 21:46:14 -05:00
b46fb260a6
Comply with msftidy
...
*Knock, knock!* Who's there? Me, the msftidy nazi!
2012-08-07 15:59:01 -05:00
716028c907
Catch exceptions that are expected when a host isn't pingable.
2012-07-23 18:34:03 -05:00
bc176b4148
Merge branch 'pingsweep_fix' of https://github.com/darkoperator/metasploit-framework into darkoperator-pingsweep_fix
2012-07-23 17:37:01 -05:00
cdee09b5cd
Fixes in threading and for Java Meterpreter on OSX
2012-07-23 18:34:05 -04:00
4042275421
Fixed threading and added verbose print for each attempt
2012-07-22 00:26:37 -04:00
2f85f57922
Fixed threading and added new SRV records to enumerate.
2012-07-22 00:12:32 -04:00
7fc9d57f89
Fixed the threading for the reverse DNS lookup and improvements when ran against a Java Meterpreter session.
2012-07-21 23:54:29 -04:00
891400fdbb
Array#select! is only in 1.9
2012-06-26 15:32:39 -06:00
967026a501
Make ssh_creds store keys as creds
...
Also cuts some redundant code by using existing Post API methods.
2012-06-19 14:24:32 -06:00
e06ee6c0e9
Language on Skype enum module
2012-06-13 14:33:54 -05:00
d226d80919
Make msftidy happy
2012-06-11 01:34:18 -05:00
2847ed9c43
Merge branch 'skype_enum' of https://github.com/darkoperator/metasploit-framework into darkoperator-skype_enum
2012-06-11 01:28:13 -05:00
bb80124d63
Added support for shell and tested on OSX 10.6 and 10.7. Added additional session type checks.
2012-06-10 21:59:14 -04:00
b004f35354
Change failure of loading gem message to be in par with other gem error messages in the framework, also date is better represented in the CSV with UTC value
2012-06-06 16:28:42 -04:00
b302f50dbe
Initial version of the module supporting Windows and OSX
2012-06-05 19:11:30 -04:00
a071d2805e
Fix the rest of possible nil res bugs I've found
2012-06-04 14:56:27 -05:00
e9a9bc4794
Rename enum_user_dirs
2012-03-28 14:33:25 -06:00
aeb691bbee
Massive whitespace cleanup
2012-03-18 00:07:27 -05:00
d1efb40d2d
Fix bad path for Windows (bug #6523 ) - Thanks Francesco
2012-03-14 12:27:40 -05:00
9258cda144
Change :info and file name so it's easier to identify it's a Firefox profile
2012-03-02 16:45:42 -06:00
8f30e5548c
Fix bug: "TypeError can't convert nil into String" when fd.read can be nil
2012-03-02 02:18:07 -06:00
eaf41769ed
Fixed gather/apple_ios_backup to work with OSX
...
Also moved it to post/multi/gather
2012-02-29 10:31:26 +02:00
Jon Hart
URI Assassin
Martin Vigo
Brandon Turner
Tod Beardsley
Trevor Rosen
David Maloney
sinn3r
David Bloom
jvazquez-r7
James Lee
William Vu
Luke Imhoff
Tom Sellers
OJ
Meatballs
Spencer McIntyre
xard4s
Charles Smith
Christian Mehlmauer
Tod Beardsley
sinn3r
Zach Grace
Michael Schierl
Raphael Mudge
jvazquez-r7
Dhiru Kholia
Carlos Perez
Gregory Man