infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
31,294 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

31294 Commits (d0ca1b2dc68bf2ac4a24c828ad471747fda44aaf)

Author SHA1 Message Date
sinn3r 60c650d0c7 Add RC script for auto payload generation to starting a handler 
Resolve #4740

Normally we type a bunch of msfconsole commands to generate a payload
to setting up a handler, sometimes we're really lazy to type a bunch
of commands so this should make things a little bit easier.
 2015-02-12 12:23:34 -06:00
Tod Beardsley e78d08e20d
Fix up titles, descriptions 2015-02-12 12:11:40 -06:00
sinn3r 50c72125a4 ::Errno::EINVAL, disable obfuscation, revoke ms14-064 2015-02-12 11:54:01 -06:00
jvazquez-r7 868bf4bc0f
Land #4752, @rastating's exploit for Maarch LetterBox file upload 2015-02-12 11:47:08 -06:00
jvazquez-r7 155651e187 Make filename shorter 2015-02-12 11:45:51 -06:00
jvazquez-r7 95bfe7a7de Do minor cleanup 2015-02-12 11:45:51 -06:00
rastating 30f310321d Added CVE reference 2015-02-12 11:45:51 -06:00
rastating 38ad960640 Add Maarch LetterBox file upload module 2015-02-12 11:45:51 -06:00
William Vu 309159d876
Land #4753, updated ms14_070_tcpip_ioctl info 2015-02-12 09:57:29 -06:00
Spencer McIntyre 8ab469d3bd Update ms14-070 module information and references 2015-02-12 09:51:01 -05:00
root 199dca75a6 Implement db_import and finalize plugin 2015-02-12 13:32:49 +05:00
Tod Beardsley ab42bad460
Land #4751, enable autofail on msftidy checks 
Also, removes the datastore check from msftidy.

Fixes #3853, finally.
 2015-02-11 15:05:07 -06:00
William Vu 9b2fad24e0 Add new comment about post-merge hook 2015-02-11 13:48:13 -06:00
William Vu 987fdbaeec Remove extraneous comment 2015-02-11 13:46:25 -06:00
William Vu 4cd5e8f702 Reenable post-merge hook in Travis 2015-02-11 13:41:23 -06:00
Samuel Huckins 2397be6e45
Land #4749 2015-02-11 13:13:05 -06:00
Tod Beardsley e0314aa727
Land #4750, Deprecate and msftidy on pxe exploits 2015-02-11 12:57:25 -06:00
Tod Beardsley 02fe57e2a1
Bump out to April, 60ish days 2015-02-11 12:56:37 -06:00
William Vu c73892b721 Nuke datastore modification check from orbit 2015-02-11 12:46:40 -06:00
William Vu fd11afff1a Deprecate manage/pxexploit 
modules/post/windows/manage/pxeexploit.rb
 2015-02-11 12:39:10 -06:00
William Vu 58b6b7519a Deprecate server/pxexploit 
modules/auxiliary/server/pxeexploit.rb
 2015-02-11 12:38:38 -06:00
William Vu 6294cbf4de Fix manage/pxexploit datastore 2015-02-11 12:19:59 -06:00
William Vu b894050bba Fix local/pxeexploit datastore 2015-02-11 12:19:56 -06:00
William Vu 9e717084af Fix server/pxexploit datastore 2015-02-11 12:19:39 -06:00
Sonny Gonzalez 7c57b9fb57
Fix Master - Pro build 
MSP-12138

* revert to previous Rails 3 syntax.
 2015-02-11 12:02:34 -06:00
William Vu 1ced9a2dd7
Land #4748, msftidy fixes for futex_requeue 2015-02-11 11:36:01 -06:00
Brent Cook f99ef5c0f5 fix msftidy warnings about towelroot module 2015-02-11 11:17:44 -06:00
rastating cb1efa3edd Improved error handling, tidied up some code 2015-02-11 10:16:18 +00:00
root 64b69d597a Add report_download and db_scan APIs 2015-02-11 14:11:10 +05:00
rastating 80a086d5f6 Add WordPress Photo Gallery upload module 2015-02-11 01:03:51 +00:00
sinn3r d23c9b552f Trade MS12-004 for MS13-090 against Windows XP BrowserAutoPwn 2015-02-10 18:58:56 -06:00
sinn3r 22811257db Fix #4711 - Errno::EINVA (getpeername(2)) BrowserAutoPwn Fix 
This patch fixes #4711.

The problem here is that the browser sometimes will shutdown some of our
exploit's connections (in my testing, all Java), and that will cause Ruby
to call a rb_sys_fail with "getpeername(2)". The error goes all the
way to Rex::IO::StreamServer's monitor_listener method, which triggers a
"break" to quit monitoring. And then this causes another chain of reactions
that eventually forces BrowserAutoPwn to quit completely (while the
JavaScript on the browser is still running)
 2015-02-10 18:28:02 -06:00
OJ 73435c6d1c
Land #4743 - Bump met bins, update Linux bins. 
Includes a merge of Gemfile.lock
 2015-02-11 08:21:23 +10:00
Trevor Rosen b8b5bc95db
Land #4500, update dependencies 2015-02-10 14:15:43 -06:00
Luke Imhoff 184b4e8a13
Merge branch 'master' into feature/MSP-11141/extract-cache-from-metasploit-model 
MSP-11141

Conflicts:
	Gemfile.lock
	metasploit-framework-db.gemspec
 2015-02-10 14:09:18 -06:00
Luke Imhoff 5df13364b2
Update to latest metasploit dependencies 
MSP-11141
 2015-02-10 14:01:49 -06:00
jvazquez-r7 b07ef333e9 Fix java_rmi_server include 2015-02-10 12:52:19 -06:00
Brent Cook 7ab7add721 bump meterpreter_bins to 0.0.14, update Linux binaries. 
Hopefully the last manual build before packaging the Linux bins into
meterpreter_bins as well.

This includes all of the fixes and improvements over the past month.

 rapid7/meterpreter#116
 rapid7/meterpreter#117
 rapid7/meterpreter#121
 rapid7/meterpreter#124
 2015-02-10 12:43:47 -06:00
Tod Beardsley 7f2add2ce3
Land #4742, Play Store XFO + UXSS Android RCE 2015-02-10 12:24:40 -06:00
jvazquez-r7 b8f614ef59
Fix namespaces in specs 2015-02-10 12:00:04 -06:00
jvazquez-r7 8222dc9302 Reorganize specs 2015-02-10 11:57:09 -06:00
jvazquez-r7 29c68ef1ec
End fixing namespaces 2015-02-10 11:55:14 -06:00
Tod Beardsley bea9e2fca6
Land #4741, MDM and Cred gem bumps 2015-02-10 11:48:46 -06:00
Tod Beardsley 1e8f98c285
Updated description, credit, and URL 2015-02-10 11:25:13 -06:00
Tod Beardsley 1b89242a75
Add module for R7-2015-02 2015-02-10 11:03:46 -06:00
jvazquez-r7 6e635211b3
Modify include 2015-02-10 10:59:56 -06:00
jvazquez-r7 dba67bd1ee Do more code reorganization 2015-02-10 10:58:57 -06:00
jvazquez-r7 aa9e686965 Reorganize Java related mixin code 2015-02-10 10:52:44 -06:00
jvazquez-r7 1f4fdb5d18
Update from master 2015-02-10 10:47:17 -06:00
root d3c52f35ad Merge branch 'wchen-r7-pr4690' into nessus-rest-api 
Merge wchen PR and updated plugin files
      1. Implement additional APIs
      2. Raise NotImplementedError for the remaining four reporting APIs
 2015-02-10 12:41:27 +05:00