infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,311 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

46 Commits (caa67aa3d5570068a089b84e1f87cd993282d8a1)

Author SHA1 Message Date
HD Moore 4c6fd97b0e Handles some broken TCP stack implementations better (but not perfectly) 
git-svn-id: file:///home/svn/framework3/trunk@7991 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-27 07:02:55 +00:00
HD Moore a16feb01bc Minor tweaks to http processing 
git-svn-id: file:///home/svn/framework3/trunk@7805 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-10 18:12:38 +00:00
HD Moore 5ef9a1c040 Wipe the headers before reparsing 
git-svn-id: file:///home/svn/framework3/trunk@7801 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-10 17:04:52 +00:00
HD Moore 006d5d51fc Fixes #674 by adding 100-continue support 
git-svn-id: file:///home/svn/framework3/trunk@7799 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-10 16:54:27 +00:00
HD Moore fc983ef7e3 Many bug fixes to db_autopwn, cross-referencing of OS-level vulnerabilities, small bug fixes to HTTP client API 
git-svn-id: file:///home/svn/framework3/trunk@7676 4d416f70-5f16-0410-b530-b9f4589650da
 2009-12-03 01:36:17 +00:00
HD Moore ed7b7ac6f0 Fixes #491 and fixes #543 by updating the HTTP stack and validating configuration options 
git-svn-id: file:///home/svn/framework3/trunk@7652 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-30 21:15:06 +00:00
HD Moore 83fece42fe Handle HTTP failures more gracefully 
git-svn-id: file:///home/svn/framework3/trunk@7335 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-03 18:10:09 +00:00
HD Moore 075b8c5fa4 Fixes #434. Always use Timeout.timeout() -- on Ruby 1.9 this results in the Timeout::TimeoutError exception vs RuntimeError 
git-svn-id: file:///home/svn/framework3/trunk@7323 4d416f70-5f16-0410-b530-b9f4589650da
 2009-11-02 18:14:57 +00:00
HD Moore 5e137e92fd Fixes #381. To scan for TLSv1 only services, set SSLVersion TLS1 
git-svn-id: file:///home/svn/framework3/trunk@7282 4d416f70-5f16-0410-b530-b9f4589650da
 2009-10-26 19:48:15 +00:00
et a8b64c56b5 Handle encoding of special chars 
git-svn-id: file:///home/svn/framework3/trunk@6508 4d416f70-5f16-0410-b530-b9f4589650da
 2009-04-29 04:04:40 +00:00
James Lee 96c8f6127c Replace += with << for Strings in a bunch of places. 
git-svn-id: file:///home/svn/framework3/trunk@6318 4d416f70-5f16-0410-b530-b9f4589650da
 2009-03-08 07:55:47 +00:00
Ramon de C Valle f124597a56 Code cleanups 
git-svn-id: file:///home/svn/framework3/trunk@5773 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-19 21:03:39 +00:00
James Lee 36a06e7576 initial commit of php findsock. This patch makes all http connections global and removes the "close if (!pipelining)" checks, so beware of bugs. 
git-svn-id: file:///home/svn/framework3/trunk@5678 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-24 04:41:51 +00:00
Matt Miller 3b74c476a1 patch from Kris K 
git-svn-id: file:///home/svn/framework3/trunk@5210 4d416f70-5f16-0410-b530-b9f4589650da
 2007-11-29 06:57:14 +00:00
HD Moore 7498562eb5 Add proxy support to HTTP mixin using modules. Fix socks proxy support. 
git-svn-id: file:///home/svn/framework3/trunk@5113 4d416f70-5f16-0410-b530-b9f4589650da
 2007-09-24 04:44:44 +00:00
HD Moore ebb84d5b32 Check for typos next time =P 
git-svn-id: file:///home/svn/framework3/trunk@4879 4d416f70-5f16-0410-b530-b9f4589650da
 2007-05-06 22:33:21 +00:00
bmc 21e37f1b0c * older IIS allowed you to encode multiple times. Expose the ability to encode as many times as you wish. 1 is default 
git-svn-id: file:///home/svn/framework3/trunk@4867 4d416f70-5f16-0410-b530-b9f4589650da
 2007-05-04 15:17:25 +00:00
HD Moore 65cfd287e5 Improvements to the SSL socket support in Rex, fixes #102, and a HTTP client response parsing bug 
git-svn-id: file:///home/svn/framework3/trunk@4851 4d416f70-5f16-0410-b530-b9f4589650da
 2007-05-03 20:01:29 +00:00
bmc c79649ebc3 add chunked encoding evasion back into the client API (not in the mixin yet) 
git-svn-id: file:///home/svn/framework3/trunk@4790 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-26 21:08:22 +00:00
HD Moore affc5fb958 fixes #85 (basic auth to http) 
git-svn-id: file:///home/svn/framework3/trunk@4744 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-23 22:48:22 +00:00
Matt Miller 1e1cc94831 req_string rather than req 
git-svn-id: file:///home/svn/framework3/trunk@4732 4d416f70-5f16-0410-b530-b9f4589650da
 2007-04-22 07:50:07 +00:00
HD Moore d14221898d Merge in the new generic PHP exploit with new targets 
Added type definitions to HTTP::Client



git-svn-id: file:///home/svn/framework3/trunk@4537 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-17 20:10:57 +00:00
HD Moore 4d87a3f9fb Adding the missing raw_headers function required for the recent php bug 
git-svn-id: file:///home/svn/framework3/trunk@4518 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-11 16:28:13 +00:00
HD Moore 547ec3c6c6 This patch adds header folding, fixed hex-random and u-random encoding, fake uri end, fake uri parameters. This fixes #16, the remaining two options (chunked and pipelining), will be added in a future version. 
git-svn-id: file:///home/svn/framework3/trunk@4513 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-10 05:58:14 +00:00
Matt Miller c61e0e8931 change the behavior of nil non-required options, fixes #49 
git-svn-id: file:///home/svn/framework3/trunk@4509 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-09 06:12:28 +00:00
HD Moore e6f221ad80 Major updates to the HTTP api, re-addition of HTTP evasion, see #16 
git-svn-id: file:///home/svn/framework3/trunk@4506 4d416f70-5f16-0410-b530-b9f4589650da
 2007-03-08 14:08:41 +00:00
HD Moore 2db1945637 Fix a bone-headed error when adding http evasion, this fixes #31 
git-svn-id: file:///home/svn/framework3/trunk@4459 4d416f70-5f16-0410-b530-b9f4589650da
 2007-02-22 07:33:00 +00:00
HD Moore 51d61c161d Sessions can be detached and killed from the console 
git-svn-id: file:///home/svn/framework3/trunk@4437 4d416f70-5f16-0410-b530-b9f4589650da
 2007-02-18 22:35:07 +00:00
Matt Miller 279c0e3e52 defanged mode 
git-svn-id: file:///home/svn/framework3/trunk@4303 4d416f70-5f16-0410-b530-b9f4589650da
 2007-01-30 04:48:35 +00:00
HD Moore 2bc1d4be18 Updates to the client API 
git-svn-id: file:///home/svn/framework3/trunk@4242 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-28 23:42:54 +00:00
HD Moore 804df25240 Initial overhaul of the HTTP client api. This removes nearly all of the client evasion methods, but leaves the code in a great state to reimplement them with less issues. 
git-svn-id: file:///home/svn/framework3/trunk@4222 4d416f70-5f16-0410-b530-b9f4589650da
 2006-12-19 07:11:55 +00:00
Matt Miller f1fb05690f misc bugfixes in the http subsystem 
git-svn-id: file:///home/svn/framework3/trunk@4019 4d416f70-5f16-0410-b530-b9f4589650da
 2006-10-11 09:27:39 +00:00
Matt Miller abf2e057c8 apache chunked encoding win32 port 
git-svn-id: file:///home/svn/framework3/trunk@4017 4d416f70-5f16-0410-b530-b9f4589650da
 2006-10-11 08:31:54 +00:00
HD Moore 1a54cc810a Fixed numerous issues involving smb/dcerpc interaction 
Fixed 'bad' use of method definition (space after method name, will be depreciated soon)


git-svn-id: file:///home/svn/incoming/trunk@3626 4d416f70-5f16-0410-b530-b9f4589650da
 2006-04-30 19:49:27 +00:00
bmc 20fec01d68 * add junk pipelined request support 
* fix socket creation on pipelined requests
* when a server says that the connection should be closed (Connection: closed), then close the connection, since its going to regardless, and we don't want to loose our state
* support non-standard line termination in headers.  ie \n instead of \r\n
* add junk headers (X-rand: rand)
* add header folding (for evasion)
* add parse_header_re (still leaving parse_header around, though its dead code ATM) that does the right thing on non-standard line endings
* move 'gzip' to a 'compression' option
* add 'deflate' compression option (really, just raw zlib, and only firefox does deflate right)
* fix a bunch of TE:chunked decoding bugs based based on the fact that Apache doesn't always close chunks appropriately
* modify parse_body to not return state, since it doesn't always do that, and the return isn't used... self.state is.
* add TE:chunked request support
* normalize URIs in requests before saving them
* Move params out of the URI, but when the uri is requested, and the method is GET, and there are params, return a URI that has the params that are approrpiately encoded (needed for junk_params, see below)
* move request.to_s support of params to use the request params array when a POST, allows use of junk params support (see below).  NOTE:  If the body is provided, use the body instead of params, in case you want to hardcode the params in a POST request, eg: php_xmlrpc_eval.rb
* Add junk params when building a param list, eg: a=b becomes asdfasdf=asdrt32a&asdfad=okhgasd&a=b&hjklasdf=hkasgd
* add URI junk slash support (eg: /////foo.html)
* param splitting now supports both '&', and ';', which CGI.pm and PHP both allow
* add URI junk directory support, eg: /asdf/../foo.html
* add param encoding support, eg: param A with value '=' is  A=%3d
* add URI junk self referring directory support, eg: /././foo.html


git-svn-id: file:///home/svn/incoming/trunk@3457 4d416f70-5f16-0410-b530-b9f4589650da
 2006-01-27 21:57:44 +00:00
HD Moore b4ad4a5d75 Tabs vs Spaces 
git-svn-id: file:///home/svn/incoming/trunk@3453 4d416f70-5f16-0410-b530-b9f4589650da
 2006-01-27 05:33:08 +00:00
bmc 9913f6d953 * add SSL support to the client (pass another arg to enable) 
git-svn-id: file:///home/svn/incoming/trunk@3411 4d416f70-5f16-0410-b530-b9f4589650da
 2006-01-20 18:59:24 +00:00
HD Moore 737a1cb711 Pass socket context to child sockets from server, pass context from http mixin to socket 
git-svn-id: file:///home/svn/incoming/trunk@3402 4d416f70-5f16-0410-b530-b9f4589650da
 2006-01-17 04:35:44 +00:00
HD Moore e79c9f8658 Something is still breaking, use w3who, show payloads, exploit, breaks 
git-svn-id: file:///home/svn/incoming/trunk@3218 4d416f70-5f16-0410-b530-b9f4589650da
 2005-12-14 00:21:23 +00:00
Matt Miller 947f53518a some cleanup 
git-svn-id: file:///home/svn/incoming/trunk@3191 4d416f70-5f16-0410-b530-b9f4589650da
 2005-12-08 05:55:44 +00:00
Matt Miller 95f8210853 major doc update 
git-svn-id: file:///home/svn/incoming/trunk@3029 4d416f70-5f16-0410-b530-b9f4589650da
 2005-11-15 05:22:13 +00:00
Matt Miller 6a5870ddcd updated comments to be more uniformed in class definition 
git-svn-id: file:///home/svn/incoming/trunk@3004 4d416f70-5f16-0410-b530-b9f4589650da
 2005-11-02 16:49:45 +00:00
Matt Miller fe0a151d7e ported ie object type, more work on http stuff 
git-svn-id: file:///home/svn/incoming/trunk@2861 4d416f70-5f16-0410-b530-b9f4589650da
 2005-09-22 03:24:32 +00:00
HD Moore 63f67869de Updates to HTTP: 
* chunked transfer support
	* generic Request factory Client.request
	* runtime configuration via Client.config

Still busted:
	* Enforcement of max_data length
	* Error handling on incomplete responses


git-svn-id: file:///home/svn/incoming/trunk@2849 4d416f70-5f16-0410-b530-b9f4589650da
 2005-09-15 23:37:38 +00:00
Matt Miller 654b7f034c service allocation draft 
git-svn-id: file:///home/svn/incoming/trunk@2844 4d416f70-5f16-0410-b530-b9f4589650da
 2005-08-22 04:34:40 +00:00
Matt Miller ba794cc6d8 added some http protocol stuff, ruby's builtin stuff sucks 
git-svn-id: file:///home/svn/incoming/trunk@2823 4d416f70-5f16-0410-b530-b9f4589650da
 2005-07-24 20:53:54 +00:00