Tod Beardsley
8f17cc3f5c
MS12-020 not MS12-002
2012-03-21 13:58:18 -05:00
Tod Beardsley
23c9c51014
Fixing CVE format on sit_file_upload.
2012-03-21 09:59:20 -05:00
Tod Beardsley
b09d91d1c7
Removing enum_bing_url
...
Moving this over to unstable until the described http request problem
gets resolved.
2012-03-21 09:33:31 -05:00
Peter Van Eeckhoutte
89d7363a8f
fixed crash
2012-03-21 10:39:05 +01:00
sinn3r
c64226f4b8
Fix regex
2012-03-21 04:31:49 -05:00
sinn3r
056985625d
damn comma
2012-03-21 04:06:54 -05:00
sinn3r
e973da7c6d
Add Chicken of the VNC client profile collector module
2012-03-21 04:04:35 -05:00
Peter Van Eeckhoutte
f81730a7e1
changes to the way jmp to payload is done
2012-03-21 09:52:22 +01:00
corelanc0d3r
45ef7fc35d
reset author
2012-03-20 20:43:56 +01:00
sinn3r
ed542e2b6c
Change dns_enum to enum_dns for naming style consistency
2012-03-20 14:11:04 -05:00
sinn3r
b8b5c79957
No need for net/http
2012-03-20 14:09:40 -05:00
sinn3r
777e221232
Add Bing URL enumerator by Royce (Feature #6499 )
2012-03-20 14:07:42 -05:00
Tod Beardsley
582a9e9f73
Merge pull request #248 from todb-r7/master
...
Test pull request, please ignore.
2012-03-20 07:14:45 -07:00
Tod Beardsley
da963fc8b2
Adding OSVDB for dell_webcam_crazytalk.rb
2012-03-20 07:52:50 -05:00
Tod Beardsley
e325469f6e
Grammar fix for dell_webcam_crazytalk module
2012-03-20 07:43:02 -05:00
sinn3r
f4dac59894
Add Dell Webcam CrazyTalk component BackImage overflow exploit
2012-03-20 03:46:37 -05:00
James Lee
bba98136b6
Clarify the driver situation a bit
...
Tell the user what's really going on instead of what was going on before
4.2 was released and we still supported databases other than postgres.
2012-03-19 21:13:49 -06:00
Tod Beardsley
826fdc014d
Whitespace on the readme.
...
This readme really ought to be formatted with some markup some day.
However, today is not that day.
2012-03-19 21:17:33 -05:00
Peter Van Eeckhoutte
a3035dc6d0
Adding corelandc0d3r's http/https/ftp payload
...
Picks up the one http/https/ftp payload, but not the other two DNS
payloads listed as part of the original pull request.
[Closes #173 ]
2012-03-19 16:50:59 -05:00
Tod Beardsley
bff860c62d
s/brute force/bruteforce
...
This is the preferred spelling in Metasploit, at least, according to
grep consensus:
./metasploit-framework$ grep -ri "brute force" . | wc -l
111
./metasploit-framework$ grep -ri "bruteforce" . | wc -l
183
2012-03-19 16:14:00 -05:00
James Lee
8265fc4b82
Clarify that we're looking at sniffer ifaces
2012-03-19 15:04:40 -06:00
Tod Beardsley
4391c24d2f
Trivial touchups on RDP DoS module.
...
Dropping a line about what it can't do, adding freenode comment.
2012-03-19 14:27:27 -05:00
sinn3r
3a851ef2c2
Fix typo
2012-03-19 13:20:59 -05:00
sinn3r
3d72d52625
Add reporting to MS12-020
2012-03-19 13:18:51 -05:00
sinn3r
fa4504e1f6
Let's make this clear, it's just a DoS
2012-03-19 13:00:29 -05:00
sinn3r
13f16daca7
Actually, that date is way off. Corrected.
2012-03-19 12:58:52 -05:00
sinn3r
d8be328b89
Ported Daniel/Alex/jduck's MS12-020 PoC as a Metasploit module
2012-03-19 12:53:34 -05:00
Tod Beardsley
e938f24267
Update Spiceworks importer to use CSV, keep info
...
Instead of data.each, use the stdlib CSV importer. This will avoid
accidentally splitting on ',' characters at a minimum.
If the device has a serial number and/or a location, keep that and
reflect it in the info.
2012-03-19 12:45:25 -05:00
sinn3r
cdd7a16603
Apply egypt's fix for "\n"
2012-03-19 10:19:10 -05:00
James Lee
d25756976c
Add a binary-safe method for writing files on unix shell sessions
...
Also some tests for doing so, all of which pass on Linux, Windows, and
Java meterpreter, as well as shell sessions on Linux and Solaris. They
will fail miserably on Windows shell sessions.
2012-03-19 01:10:23 -06:00
James Lee
66727043f9
Add an inspect method that doesn't print the entire buffer
...
Also cleans up some whitespace
2012-03-19 01:10:23 -06:00
sinn3r
aeb691bbee
Massive whitespace cleanup
2012-03-18 00:07:27 -05:00
sinn3r
7c77fe20cc
Some variables don't need to be in a double-quote.
2012-03-17 20:37:42 -05:00
sinn3r
acac3fa38d
Add back enum_protections with some new changes
2012-03-17 16:00:20 -05:00
sinn3r
d79f89b190
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework
2012-03-17 15:33:20 -05:00
jlee-r7
e35ce32c1f
Merge pull request #243 from kernelsmith/venom
...
added macho support to msfvenom and fixed overly aggressive regex
2012-03-17 11:52:47 -07:00
ohdae
14d427fa87
Added fix for enum_protections
2012-03-17 13:28:31 -04:00
ohdae
97a9011f03
Merge branch 'master' of github.com:rapid7/metasploit-framework into post-mods
2012-03-17 13:22:51 -04:00
James Lee
49217a28ec
Add pending tests for binary and large files
2012-03-17 11:05:16 -06:00
sinn3r
78331bb4c1
A bunch of fixes
2012-03-17 03:14:26 -05:00
sinn3r
4a0c75f4b3
Merge branch 'post-mods' of https://github.com/ohdae/metasploit-framework
2012-03-17 02:38:35 -05:00
sinn3r
ff093c3f93
The comments in get_chatlogs need an update
2012-03-17 00:28:05 -05:00
sinn3r
39cfa43250
Correct license format
2012-03-17 00:25:41 -05:00
sinn3r
3479a314e3
Add enum_adium.rb post module
2012-03-17 00:22:03 -05:00
Joshua Smith
d29098aee3
added macho support to msfvenom and fixed overly aggressive regex at line 400
2012-03-16 21:17:45 -04:00
James Lee
4b73f75a49
Make sure the file was actually written as expected
2012-03-16 17:20:24 -06:00
James Lee
14fdde67ab
Use a proper mode for appending
2012-03-16 17:18:44 -06:00
James Lee
c1eca01849
Cleanup the file created during testing
2012-03-16 17:03:22 -06:00
James Lee
103ecd3acc
Make the test for file existence platform agnostic
2012-03-16 16:39:29 -06:00
James Lee
c1989de06b
Don't commit leftovers from failed patches
2012-03-16 16:28:16 -06:00