53ec982385
download_exec_fix
2012-02-05 14:35:44 -05:00
e4faa33517
Fix a typo introduce in the usb dumper
2012-02-04 00:03:20 -06:00
0737ccb8e2
Remove nulls from the unicode drive name
2012-02-04 00:03:03 -06:00
1676bd3c4f
Add MSF License header. Use print once to print the whole table instead of running print multiple times. Show where the results are save.
2012-02-02 11:13:08 -06:00
d230eeedc0
Merge branch 'mount.smbfs-creds' of https://github.com/jhartftw/metasploit-framework into jhartftw-mount.smbfs-creds
2012-02-02 10:21:21 -06:00
36e37e04fb
Fixes to post module cred reporting.
...
call to session.db_record.id would error if no db
was connected.
Fixes #6325
2012-02-01 12:26:35 -06:00
e371f0f64c
MSFTidy commits
...
Whitespace fixes, grammar fixes, and breaking up a multiline SOAP
request.
Squashed commit of the following:
commit 2dfd2472f7afc1a05d3647c7ace0d031797c03d9
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:58:53 2012 -0600
Break up the multiline SOAP thing
commit 747e62c5be2e6ba99f70c03ecd436fc444fda99e
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:48:16 2012 -0600
More whitespace and indent
commit 12c42aa1efdbf633773096418172e60277162e22
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:39:36 2012 -0600
Whitespace fixes
commit 32d57444132fef3306ba2bc42743bfa063e498df
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed Feb 1 10:35:37 2012 -0600
Grammar fixes for new modules.
2012-02-01 10:59:58 -06:00
4aa52203da
Renamed, switched partially to store_loot
2012-02-01 08:50:50 -08:00
98fbf84dac
Module should inform where the files are saved
2012-02-01 03:41:19 -06:00
06f7165ee6
Add Metasploit license header (it's already MSF licensed)
2012-02-01 00:49:45 -06:00
f23ebbc7b5
Change how creds are displayed and saved
2012-02-01 00:48:14 -06:00
187f630283
Merge branch 'netrc-creds' of https://github.com/jhartftw/metasploit-framework into jhartftw-netrc-creds
2012-01-31 22:45:47 -06:00
b0df29c3ff
Switch to store_loot, since report_auth_info only works with Host
...
objects or IPs, currently (see
https://dev.metasploit.com/redmine/issues/6313 )
2012-01-30 23:08:02 -08:00
25fbe1c7d0
Merge branch 'master' of https://github.com/darkoperator/metasploit-framework
2012-01-30 19:57:29 -06:00
6068580813
Should fix the report_auth_info call -- needs a host, not a session. Be nice if it handled a session, though.
...
[See #146 ]
2012-01-30 19:23:05 -06:00
24747e18e3
The directory path for the accounts.xml was not set properly for windows systems
2012-01-30 18:19:17 -04:00
1dec4c0c45
These modules should use vprint_xxx() instead of print_xxx() ... if datastore['VERBOSE']
2012-01-30 13:08:35 -06:00
1b03a48540
Use desired [at] format for email
2012-01-30 08:21:58 -08:00
16610d8852
Update email address to use desired [at] format
2012-01-30 08:05:08 -08:00
21a05ce1d6
Fix bug: NoMethodError undefined method `report_vm' ( #6298 )
2012-01-30 00:44:45 -06:00
37d467ea79
Loot .netrc files, generic enum_user_directories
2012-01-29 14:03:57 -08:00
5294fb57a4
Add post module to obtain SMB credentials stored for mount.smbfs
2012-01-29 12:04:26 -08:00
c5e667a1dc
Post Module to enumerate VirtualBox VMs for the current user.
2012-01-27 11:12:59 -06:00
0e0aa33c47
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-01-27 11:12:35 -06:00
56be45f3a4
A few minor fixes to the find vmx module
2012-01-27 11:12:17 -06:00
a4c876a424
No need to manually add VERBOSE as an option, it already is (built-in)
2012-01-27 02:17:59 -06:00
3f4dbd9df6
Merge branch 'master' of https://github.com/averagesecurityguy/metasploit-framework
2012-01-27 01:58:42 -06:00
efda420e5f
Updates to enum_artifacts
2012-01-26 19:35:39 -05:00
9b78b6bd17
Hmm, the indent level of the description looks a bit funny. Fixing.
2012-01-26 17:24:05 -06:00
494c37c659
Adds a Multi-System post module for finding VMWare Virtual Machines
2012-01-26 16:25:50 -06:00
33c53b1f3f
Updates vm checking
2012-01-26 13:02:39 -06:00
76ebbc48ec
Update modules/post/windows/gather/dumplinks.rb
2012-01-24 23:16:40 -06:00
ea9e9852cf
ah man, typo!
2012-01-23 11:59:13 -06:00
afc547e0fb
Improve: Proper use of cmd_exec() and correct cmd path. More error handling for exec and rm. Fix bug with path setting, etc.
2012-01-23 11:54:19 -06:00
5671e2f691
Downloand and execute (railgun)
2012-01-22 23:25:49 -05:00
ad6f8257e1
MSFTidy fixes.
2012-01-18 15:01:32 -06:00
6ad2eda24c
Windows artifacts module
2012-01-12 17:26:35 -06:00
02bd1f3407
Merge branch 'master' of https://github.com/averagesecurityguy/metasploit-framework
2012-01-12 17:06:14 -06:00
cb146f9021
Used msf library for digest, fixed name.
2012-01-12 12:49:50 -05:00
81acfd2126
Adds hashdump and cracking modules for AIX
2012-01-06 20:31:22 -08:00
2e60d2e01a
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2012-01-06 17:46:42 -05:00
72072c4ef3
Added enum_artifacts
2012-01-06 17:43:50 -05:00
7b692aa0b9
Adding references to vss modules.
2012-01-04 12:10:03 -06:00
12221b0433
UAC will disrupt these modules
...
Added checks for UAC.
UAC must be bypassed before using these modules.
2012-01-03 12:07:38 -08:00
dd0b07b2cc
Adds mixin and post modules to manipulate Volume shadowcopy Service(VSS)
2011-12-30 15:03:04 -08:00
a330a5c63a
Add e-mail for Brandon
2011-12-29 10:53:39 -06:00
05f3af1e77
Fixed typo in the windows autlogin post module
2011-12-26 11:17:17 -08:00
a00937b4d8
Fix typo.
2011-12-24 15:32:08 -06:00
87cf4cefea
Fix bug #6164
2011-12-24 15:26:20 -06:00
062f661991
Fix bug #6161 - Must explicitly convert e to e.to_s
2011-12-24 15:11:26 -06:00
8a705c9223
Fix bug #6158 - session.db_record might return nil but wasn't checked
2011-12-24 15:06:43 -06:00
dcb66307be
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-12-24 14:58:40 -06:00
2e2e28afb8
Fix bug #6160 - undefined method '[] for nil:NilClass' due to an invalid path
2011-12-24 14:57:46 -06:00
06077a37f8
Fixes typo, variable name is paths not path.
2011-12-24 14:39:08 -06:00
3fe076bcd6
Check nil before using .empty?
2011-12-23 17:42:58 -06:00
3c08836f51
Typo on the file opening mode
2011-12-16 01:13:06 -04:00
e991094bd2
Fix host info for report_auth_info(). Change print_status vs print_line order
2011-12-15 13:05:03 -06:00
2648e533a2
nil bug fix
2011-12-15 12:58:21 -06:00
829d96ffbe
Add Windows Gather RazorSQL cred collector (Feature #6117 )
2011-12-15 11:15:44 -06:00
a9e4474eda
Add missing require, fix load error on invalid constant
2011-12-12 23:24:03 -06:00
cd0679ab5d
Increase timeout for cmd_exec()
2011-12-12 21:15:28 -06:00
6e8fdf1ce1
Apply patch #6081
2011-12-12 19:51:02 -06:00
5ba5bbf077
Apply feature #6074
2011-12-12 12:03:34 -06:00
4e95eb5d34
Update description (Feature #6080 )
2011-12-12 11:33:17 -06:00
1694e22e74
Merge pull request #42 from chao-mu/master
...
Fix for issue #6012 ; post/windows/manage/enable_rdp broken
2011-12-06 23:01:20 -08:00
fd1935b3de
show is_admin
2011-12-07 00:23:06 -06:00
8fdfd9f97b
Additional verbosity on WLAN error message
...
to explain that the modules will error if the
Wireless Zero Configuration Service is turned off.
2011-12-06 20:42:11 -05:00
459eafd96d
Fix to WLAN mdoules for when wLAN not installed on target
...
The modules did not close out properly when WLAN was determined not to be
installed on the host. This fix corrects that.
fixes #6070
2011-12-06 20:22:47 -05:00
679ef457d8
Correct spelling, thx bannedit
2011-12-04 14:59:54 -06:00
f26447e021
Correct my own weird grammar
2011-12-04 14:50:53 -06:00
e07868d613
Catch possible exception if WTSGetActiveConsoleSessionId isn't available on the target machine
2011-12-04 14:48:45 -06:00
e52ebd602f
Encorporating patch submitted by Boris Lukashev to fix issue 6012 (Post module enable rdp broken and fixed (here)). Fix was to have the module include Msf::Post::Windows::WindowsServices, make service_change_startup available
2011-12-04 15:26:43 -05:00
89ed25978d
Add feature #6048
2011-12-04 13:44:21 -06:00
950b4a54a0
Fix bug #6050
2011-12-03 22:00:48 -06:00
27974c4c27
Merge branch 'master' of github.com:rapid7/metasploit-framework into fastlib
...
Conflicts:
modules/auxiliary/scanner/http/axis_login.rb
modules/exploits/multi/http/axis2_deployer.rb
modules/post/multi/gather/thunderbird_creds.rb
modules/post/windows/gather/credentials/imvu.rb
msfopcode
2011-12-03 14:07:09 -06:00
30e3607ec0
The SUCCESS message may not be constant across foreign language verions according to jduck, chaning back to the old way
2011-12-02 15:11:27 -06:00
2d320b1828
Fix bug: table being saved while empty
2011-12-01 22:47:42 -06:00
608a5586b2
Actually, don't really have a good reason for that exception handling anymore. I think.
2011-12-01 22:47:42 -06:00
0eb3b5a49b
Fix undefined method 'cmd_exec' bug. Thx Boris.
2011-12-01 22:47:42 -06:00
19fae182da
Add Thunderbird credential collector (Feature #6014 )
2011-12-01 22:47:42 -06:00
a91926716d
don't dup the last part of the key, fixes #6036
2011-12-01 15:24:58 -07:00
d0db88d35d
Make key_base an instance var so other functions can access it. Bug #6036
2011-12-01 14:41:44 -06:00
8399ce6e41
Fix bug #6031
2011-11-30 15:22:52 -06:00
e439aba779
switched %USERPROFILE% to %APPDATA% to make the code a bit more universal
2011-11-29 20:08:44 +00:00
f503bd9488
Fixes #5749 by converting to unix-style linefeeds and forcing jtr modules to read files as binary, and updating msftidy to allow for r+b as a ghetto append.
2011-11-28 17:52:34 -06:00
c411c216c0
Solved most of msftidy issues with the /modules directory
2011-11-28 17:10:29 -06:00
82a5da866a
Fix bug: table being saved while empty
2011-11-25 00:54:17 -06:00
ec3c37d963
Actually, don't really have a good reason for that exception handling anymore. I think.
2011-11-25 00:41:28 -06:00
3e7c821119
Fix undefined method 'cmd_exec' bug. Thx Boris.
2011-11-25 00:34:33 -06:00
7571466014
Add Thunderbird credential collector (Feature #6014 )
2011-11-24 19:39:34 -06:00
4ef7c373e9
Fix to typo in the tables being pushed.
2011-11-22 00:06:58 -06:00
f81567fb6f
Fix to typo in the tables being pushed.
2011-11-21 15:49:57 -08:00
f35b6c5269
msftidy on post modules for spaces at EOL
2011-11-20 12:53:25 +11:00
a4cadf0d53
remove the extra comment that's not used
2011-11-19 12:48:39 -06:00
eca1253439
updating sudo
2011-11-18 10:17:43 -06:00
356e0e6fb5
Moving sudo from linux to multi, because it is.
2011-11-18 10:16:57 -06:00
fa77909c67
whitespace fix
2011-11-18 08:51:07 -06:00
55367fad4f
Merge pull request #25 from rapid7/post_module_sudo
...
Post module sudo
2011-11-18 06:30:40 -08:00
11c1f0983f
Fixes #5993
2011-11-17 18:05:36 -08:00
77cba9de7c
Merge branch 'cbdfix'
...
Conflicts:
modules/post/windows/gather/credentials/imvu.rb
modules/post/windows/gather/forensics/duqu_check.rb
modules/post/windows/recon/computer_browser_discovery.rb
2011-11-17 14:55:20 -08:00
d8b77564ef
Tidying up, fixing csh echo behavior
2011-11-17 16:29:02 -06:00
3bfe7e9b98
fix to comptuer browser discovery to output properly and sotre as loot
...
added additional option to save detected hosts in the db.
2011-11-17 14:17:28 -08:00
9878517f80
Cleanup and light refactoring, deal with slowpoke linux telnet cmd_exec()
2011-11-17 13:19:13 -06:00
84fb5b441a
Cleaning up some names and descs
2011-11-17 07:47:26 -06:00
eae171b216
Addresses issue #5984
2011-11-16 19:07:56 -08:00
93a133d5de
Always try both export and setenv. Fixups to allow for correct reading from echoy nix shells. Fixes is_root? to not treat an empty string as 0
2011-11-16 16:48:19 -06:00
725431dbdb
Simpler method for setenv vs export. Tested on csh, ksh, zsh, sh, bash
2011-11-15 19:31:15 -06:00
d969006268
Adding zsh
2011-11-15 19:10:25 -06:00
5cdab2ef41
Less repetitive error messages
2011-11-15 18:17:25 -06:00
26659d8b17
Adding a sudo post module for easier automation
2011-11-15 17:38:45 -06:00
d8347a1245
Fixes to post modules that store creds as loot.
...
All post modules that store creds as loot now store in
a CSV format with User and then Password always as the
first two columns.
2011-11-15 14:13:51 -08:00
f6b0ffd630
Cleanup of the stack traces in the pidgin and filezilla client cred modules
2011-11-15 12:19:15 -08:00
8d47883af0
Moving the wlan directory up a level. It makes more sense in it's own area
...
instead of under gather.
2011-11-15 08:29:13 -08:00
c8142043e9
Fixes to credential handling to downcase usernames whenever they are not case sensitive.
...
Also report_auth_info now checks to see if a non-case sensitive version of the cred
may already exist.
2011-11-14 22:50:52 -08:00
5856112797
Quickfix: missing require in post/windows/escalate/getsystem.rb
...
Resolves:
[-] WARNING! The following modules could not be loaded!
[-] contrib/metasploit-framework/modules/post/windows/escalate/getsystem.rb: NameError uninitialized constant Msf::Post::Windows
2011-11-13 14:25:31 +01:00
2ec21858c6
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-11 16:20:27 -06:00
65fc693c66
Add a getsystem post module for automation
2011-11-11 16:19:49 -06:00
2f6c9d6d08
Removing a hated semi-colon, noting that the rescue does nothing
2011-11-11 13:59:14 -06:00
e1cea699a7
yo, format police is in town for some law and order around here
2011-11-11 11:39:13 -06:00
184eee0e64
Merge branch 'duqu'
2011-11-11 10:22:12 -06:00
e03b6d27d2
Adding a colon to Request keyword mostly just to test local changes
2011-11-11 10:20:52 -06:00
ef1a86e839
adding email address
2011-11-11 09:44:18 -06:00
6ae8bbb6ce
Fixes #5832
2011-11-10 21:57:24 -08:00
5a75a67830
cleaning up tabs and rename variables for clarity
2011-11-10 23:26:19 -06:00
7191542503
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-10 18:09:55 -06:00
457b7cb6d1
sinn3r: *knock, knock* Whitespace: who's there? sinn3r:Me, I kill you
2011-11-10 18:08:28 -06:00
0675def3d4
Whitespace, I kill you.
2011-11-10 18:00:50 -06:00
e140361ffd
change keys to array instead of comma delimited string
2011-11-10 16:11:11 -06:00
7348a71c24
adding duqu_check.rb
2011-11-10 15:20:48 -06:00
a9ebfbd604
Add feature #5912
2011-11-10 03:13:57 -06:00
3ff1449995
Do report_note()
2011-11-10 02:16:25 -06:00
3ac11b7d44
Whitespace clean up
...
git-svn-id: file:///home/svn/framework3/trunk@14190 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 15:48:04 +00:00
4490bb4683
handle better certain options that may use = sign
...
git-svn-id: file:///home/svn/framework3/trunk@14189 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 15:14:00 +00:00
2d80d1e144
Fixes Cred Sourcing in report_auth_info() for post modules.
...
git-svn-id: file:///home/svn/framework3/trunk@14187 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 03:34:49 +00:00
28c2408fdd
handle better certain options that may use = sign
...
git-svn-id: file:///home/svn/framework3/trunk@14186 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 03:22:54 +00:00
e767214411
Fix: whitespaces, svn propset, author e-mail format
...
git-svn-id: file:///home/svn/framework3/trunk@14175 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-06 22:02:26 +00:00
b1d38a44a4
Clenaup
...
git-svn-id: file:///home/svn/framework3/trunk@14174 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-06 21:23:21 +00:00
70a64bf4db
Fix indent level and whitespace
...
git-svn-id: file:///home/svn/framework3/trunk@14170 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-05 23:18:30 +00:00
1272736b72
indent level fix
...
git-svn-id: file:///home/svn/framework3/trunk@14162 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 21:04:54 +00:00
a0aebe98bb
Adds the community submitted ePO database password post module
...
Did some minor code cleanup and replaced the hostname resolution with mubix's railgun
code to make the victim do the resolution. This should be more reliable.
Fixes #5210
git-svn-id: file:///home/svn/framework3/trunk@14160 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 20:15:14 +00:00
69193f9fe4
Some quick fixes to enum_cred_store
...
Fixes #5218
git-svn-id: file:///home/svn/framework3/trunk@14159 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 19:28:53 +00:00
07a41924a6
Added mubix's enum_termserv post module.
...
Fixes #5914
git-svn-id: file:///home/svn/framework3/trunk@14158 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 18:47:22 +00:00
057725450c
svn propset. fix author email format
...
git-svn-id: file:///home/svn/framework3/trunk@14154 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 08:16:36 +00:00
f23389390b
better handling of hosts with no USB History
...
git-svn-id: file:///home/svn/framework3/trunk@14153 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 22:59:39 +00:00
86a7807b97
Added a couple more checks for the names of the post modules provided
...
git-svn-id: file:///home/svn/framework3/trunk@14152 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 22:40:29 +00:00
1c5d44c40a
Fix variable declaration
...
git-svn-id: file:///home/svn/framework3/trunk@14151 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 22:28:08 +00:00
c7f0568769
Fix next vs return issue
...
git-svn-id: file:///home/svn/framework3/trunk@14149 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 18:34:30 +00:00
7091fc1eea
Adding mubix's post modules
...
Fixes #5916
Fixes #5913
Fixes #5915
git-svn-id: file:///home/svn/framework3/trunk@14148 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 03:00:51 +00:00
131ffe4ab2
Fixed inconsistencies in how data was being passed to report_auth_info(). The command dispatcher and filezilla
...
server cred module both used the accessor :ptype but report_auth_info looks for :type.
While ptype is what the db field is called, almsot everything else references :type so it is better
for consistency to keep everything at :type.
Fixes #5906
git-svn-id: file:///home/svn/framework3/trunk@14141 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-02 02:47:28 +00:00
4ab4a2cec7
fixes issues with with imvu, forgot the require statement.
...
git-svn-id: file:///home/svn/framework3/trunk@14140 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-01 21:50:06 +00:00
RageLtMan
HD Moore
sinn3r
David Maloney
Tod Beardsley
Jon Hart
Carlos Perez
Stephen Haywood
Dave Hull
Tod Beardsley
sinn3r
chao-mu
James Lee
Rob Fuller
andurin
Marcus J. Carey