Commit Graph

3014 Commits (c76f88245d2f1f0a5b45bd51c3fd6e6110ec2cff)

Author SHA1 Message Date
Joshua Drake 54133b79fd add barracuda module from Tiago
git-svn-id: file:///home/svn/framework3/trunk@10627 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-10 01:42:26 +00:00
HD Moore a3ad8f5061 Add a quick module for exploiting basic web cmd injection
git-svn-id: file:///home/svn/framework3/trunk@10624 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-09 21:32:19 +00:00
Tod Beardsley 87d7368166 Next time, try a couple more test cases. :(
git-svn-id: file:///home/svn/framework3/trunk@10623 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-09 19:54:03 +00:00
Tod Beardsley fc755f7a7a Fixes a bug where the return was getting ignored by each_user_pass for FTP. As a result, all usernames would get tried, instead of retiring a username once a good password was found.
git-svn-id: file:///home/svn/framework3/trunk@10622 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-09 19:03:49 +00:00
Joshua Drake ae04e34cf7 fix some non-full-namespace includes
git-svn-id: file:///home/svn/framework3/trunk@10617 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-09 06:55:52 +00:00
Steve Tornio ba2f6f5efa add osvdb ref, add advisory link
git-svn-id: file:///home/svn/framework3/trunk@10613 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 22:59:19 +00:00
Joshua Drake c6d2f8b550 huh?
git-svn-id: file:///home/svn/framework3/trunk@10612 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 22:39:58 +00:00
Joshua Drake 996dfe86db fix egghunter reference
git-svn-id: file:///home/svn/framework3/trunk@10611 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 21:58:06 +00:00
Joshua Drake dd380c0716 add nuance pdf stack bof exploit from corelan
git-svn-id: file:///home/svn/framework3/trunk@10610 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 21:52:43 +00:00
Joshua Drake ede859f60e use Msf::WindowsError, see #2214
git-svn-id: file:///home/svn/framework3/trunk@10607 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 19:51:50 +00:00
Tod Beardsley c2938323cc Pretty much the same deal as r10592, but for SSH, which sometimes has similiar RST problems.
git-svn-id: file:///home/svn/framework3/trunk@10593 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 02:11:06 +00:00
Tod Beardsley df48b11093 Makes telnet_login a more resistant to intermittant RSTs. If a machine gives us a reset, try again with a backoff. Only after 3 retries should we give up entirely. You'd be amazed how many devices this is required for.
git-svn-id: file:///home/svn/framework3/trunk@10592 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 01:54:56 +00:00
Tod Beardsley b5fe64aca2 This works around a blocking problem encountered with recv_telnet(). Don't hang around trying to recv when we've already got a password prompt or a success/fail response.
git-svn-id: file:///home/svn/framework3/trunk@10590 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-08 00:48:24 +00:00
Joshua Drake 840824e3e8 remove unexplained binary characters
git-svn-id: file:///home/svn/framework3/trunk@10588 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-07 16:22:16 +00:00
HD Moore bf2b4d199c Unbreak
git-svn-id: file:///home/svn/framework3/trunk@10561 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-06 00:53:45 +00:00
Joshua Drake 425757a6e7 move more platform designations from target to exploit info block
git-svn-id: file:///home/svn/framework3/trunk@10559 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 23:41:17 +00:00
Joshua Drake de159e3fe7 rename with msXX_XXX name, fix platform
git-svn-id: file:///home/svn/framework3/trunk@10558 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 23:39:14 +00:00
Joshua Drake b36e383581 clean up exceptions a bit further
git-svn-id: file:///home/svn/framework3/trunk@10557 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 23:23:17 +00:00
Joshua Drake 7a04ce32ca demote due to interaction requirement
git-svn-id: file:///home/svn/framework3/trunk@10556 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 23:13:04 +00:00
Joshua Drake 74db9d7fe4 demote to manual ranking due to domain requirement
git-svn-id: file:///home/svn/framework3/trunk@10554 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 19:29:10 +00:00
Joshua Drake d2c5d62606 do not wait for WfsDelay if unable to enum printers
git-svn-id: file:///home/svn/framework3/trunk@10553 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 19:03:52 +00:00
Steve Tornio 3276451e3d add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@10551 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 12:38:46 +00:00
Mario Ceballos dc7a9cb321 use the right bid id.
git-svn-id: file:///home/svn/framework3/trunk@10550 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-05 01:05:49 +00:00
Joshua Drake 739bff4fb2 remove SRVPORT option, since it is set to the default
git-svn-id: file:///home/svn/framework3/trunk@10548 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-04 23:52:30 +00:00
Mario Ceballos f921aca916 brightstor blah blah blah
git-svn-id: file:///home/svn/framework3/trunk@10547 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-04 22:00:22 +00:00
Joshua Drake dd2d7d3864 fix fingerprint bug
git-svn-id: file:///home/svn/framework3/trunk@10546 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-04 20:53:51 +00:00
Joshua Drake 6f18c4a468 do not wait for WfsDelay if unable to bind
git-svn-id: file:///home/svn/framework3/trunk@10545 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-04 20:48:48 +00:00
Stephen Fewer df8b9f8e95 Merge in the IPv6 Teredo patch.
git-svn-id: file:///home/svn/framework3/trunk@10543 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-04 11:02:46 +00:00
Joshua Drake 7de96a710f add trendmicro extsetowner exploit from Trancer
git-svn-id: file:///home/svn/framework3/trunk@10538 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-04 04:26:09 +00:00
Joshua Drake c862fdd42b add exploit module from Abhishek Lyall
git-svn-id: file:///home/svn/framework3/trunk@10537 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-04 03:42:58 +00:00
James Lee 3d26c54bd7 preserve some more datastore bits
git-svn-id: file:///home/svn/framework3/trunk@10518 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-01 14:06:59 +00:00
Joshua Drake 279c604015 missed a couple exe generater includes
git-svn-id: file:///home/svn/framework3/trunk@10504 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-28 16:19:50 +00:00
HD Moore 2f344fe7c8 Moving to ManualRanking since it requires user/pass
git-svn-id: file:///home/svn/framework3/trunk@10503 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-28 15:23:14 +00:00
Tod Beardsley ea128c6404 Mention the port when bruteforcing SMB services. Handy for noticing when you're being direct or indirect.
git-svn-id: file:///home/svn/framework3/trunk@10498 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-27 17:11:40 +00:00
Joshua Drake 0f65deaf72 add messagebox payload from corelanc0d3r
git-svn-id: file:///home/svn/framework3/trunk@10495 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-27 13:31:48 +00:00
James Lee 8c1f0713db regenerate the payload so we get the correct *lhost*
git-svn-id: file:///home/svn/framework3/trunk@10490 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-27 00:09:17 +00:00
James Lee 4fbb0653a1 regenerate the payload so we get the correct rhost
git-svn-id: file:///home/svn/framework3/trunk@10488 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-26 23:55:03 +00:00
pks 14cabd2611 Allow debugging to be enabled.
This will make it easier to hopefully track down bugs.

exploitme-posix.c - make complete stack executable. On some kernel versions, execstack doesn't do the trick.

git-svn-id: file:///home/svn/framework3/trunk@10485 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-26 05:58:59 +00:00
pks 1392ef78d7 Use exit() instead of exit_group()
git-svn-id: file:///home/svn/framework3/trunk@10483 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-26 05:58:41 +00:00
Joshua Drake 7c1dc98456 switch logic around, add some debug/verbose prints
git-svn-id: file:///home/svn/framework3/trunk@10478 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 18:14:54 +00:00
Mario Ceballos 811eb99980 free up the handler
git-svn-id: file:///home/svn/framework3/trunk@10477 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 11:59:02 +00:00
HD Moore c1f934dbb4 jduck the grammar checker strikes again (thanks!)
git-svn-id: file:///home/svn/framework3/trunk@10476 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 04:54:10 +00:00
HD Moore 46db59c5af Treat access denied the same as logon failure
git-svn-id: file:///home/svn/framework3/trunk@10474 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 03:30:22 +00:00
HD Moore 3ee6117219 Default to english, in the end, this is still the most common language pack
git-svn-id: file:///home/svn/framework3/trunk@10471 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 03:18:08 +00:00
HD Moore 25d18f1f1b Quit when we get an SSL exception
git-svn-id: file:///home/svn/framework3/trunk@10470 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 03:14:21 +00:00
James Lee a9c3628a2d make it more obvious that the connection failed, not the login. see #2682
git-svn-id: file:///home/svn/framework3/trunk@10467 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-24 21:45:36 +00:00
Tod Beardsley 09cab24dbf Report_note no longer tries to re-report a service name; it just re-reports port numbers and protocols. This is to avoid unidentifying identified services.
git-svn-id: file:///home/svn/framework3/trunk@10458 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-24 17:52:25 +00:00
HD Moore 748f2d3acd Make the title consistent with other modules
git-svn-id: file:///home/svn/framework3/trunk@10457 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-24 16:55:38 +00:00
pks 740e2c1ab2 Change base from 0x90040000 to 0x20040000.
This is more portable across kernel versions / patches it seems. This
will be better for SEGMEXEC compatibility as well.

git-svn-id: file:///home/svn/framework3/trunk@10455 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-24 04:06:28 +00:00
Joshua Drake b8b21cd53c handle dirs and index.html specially
git-svn-id: file:///home/svn/framework3/trunk@10454 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-24 01:11:05 +00:00