Chris John Riley
4170a85d8a
Added logic to only report when value is present
2013-02-19 09:42:13 +01:00
Chris John Riley
3a6cd6f395
Added module for requesting RFC_SYSTEM_INFO via ICF web interface
2013-02-12 14:42:59 +01:00
James Lee
9e912a23ff
Merge branch 'rapid7' into FireFart-msftidy_aux_1
2013-01-03 16:54:25 -06:00
Tod Beardsley
1406f7cb0a
Msftidy on sap_router_info_request
2013-01-03 10:55:11 -06:00
Christian Mehlmauer
95948b9d7c
msftidy: remove $Revision$
2013-01-03 00:58:09 +01:00
Christian Mehlmauer
ca890369b1
msftidy: remove $Id$
2013-01-03 00:54:48 +01:00
Tod Beardsley
e5eb8c6301
Fix connected in sap_router_info_request
...
See #1028 comments
2012-12-28 16:34:59 -06:00
Tod Beardsley
3daea913b1
Merge branch 'sap_router_info_request'
2012-12-28 15:22:44 -06:00
Tod Beardsley
35604ac1aa
Normalizing caps and expanding description a bit
...
Be nice to have a couple more lines on the description
2012-12-28 15:12:40 -06:00
Tod Beardsley
5d7197d8ba
Moved shout outs, organized includes
...
include Msf::Exploit::Remote::Tcp must precede the include for the
Scanner mixin -- otherwise you end up with some undesired effects, like
having an RHOST and RHOSTS on the datastore.
Also, took out the block of shout outs and gave references and credits
to the people / url's mentioned.
2012-12-28 14:51:23 -06:00
sinn3r
2c4d517e75
Merge branch 'useragent_cleanup' of git://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-useragent_cleanup
2012-12-21 11:14:06 -06:00
Chris John Riley
413b75cd8b
Fixed crash issues with unescape
...
Added better formatting to avoid pages of output
2012-12-21 12:07:14 +01:00
Chris John Riley
e237512bd7
Cleaned up the SAP modules as they are all sending double user-agent strings (also added OptEnum where appropriate)
2012-12-21 10:47:45 +01:00
sinn3r
9825b07df8
Merge branch 'sap_soap_rfc_dbmcli_sxpg_command_exec' of git://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_dbmcli_sxpg_command_exec
2012-12-18 01:12:50 -06:00
nmonkee
37f7122006
NameError undefined local variable or method output - fixed
2012-12-17 19:34:36 +00:00
Tod Beardsley
10511e8281
Merge remote branch 'origin/bug/fix-double-slashes'
...
Ran the new normalize_uri() specs, all passes, so I'm quite confident in
this change.
2012-12-17 13:29:19 -06:00
jvazquez-r7
2978775335
change default RPORT
2012-11-23 12:14:08 +01:00
jvazquez-r7
ca3240a83e
Merge branch 'SXPG_COMMAND_EXEC_DBMCLI' of https://github.com/nmonkee/metasploit-framework into nmonkee-SXPG_COMMAND_EXEC_DBMCLI
2012-11-23 12:13:22 +01:00
nmonkee
564a32ce7c
Made requested changes
2012-11-21 17:33:15 +00:00
nmonkee
ff07e5d021
sap_soap_rfc_dbmcli_sxpg_command_exec
2012-11-20 15:34:53 +00:00
jvazquez-r7
32373c1a6a
new filename
2012-11-20 16:01:58 +01:00
jvazquez-r7
bb13c87aab
module filename changed
2012-11-20 16:01:26 +01:00
jvazquez-r7
96024dc639
title updated
2012-11-20 16:00:50 +01:00
jvazquez-r7
bfbab4526a
Merge branch 'sap_soap_rfc_sxpg_call_system' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_sxpg_call_system
2012-11-20 16:00:14 +01:00
jvazquez-r7
217fa27abb
pcap to verify deleted
2012-11-20 15:55:56 +01:00
jvazquez-r7
101238db35
Merge branch 'sap_soap_rfc_dbmcli_sxpg_call_system_command_exec' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-20 15:55:32 +01:00
nmonkee
e16a51fcf9
author change
2012-11-20 14:23:29 +00:00
nmonkee
1bc62b8686
pcap for lin
2012-11-20 14:15:49 +00:00
nmonkee
838eb5154a
Merge branch 'sap_soap_rfc_dbmcli_sxpg_call_system_command_exec' of https://github.com/jvazquez-r7/metasploit-framework into sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-20 14:13:51 +00:00
nmonkee
be66ccdf00
pcap for lin
2012-11-20 13:59:49 +00:00
jvazquez-r7
5f99b56688
up to date to test rapid7#1030
2012-11-20 12:13:14 +01:00
jvazquez-r7
31ca077dd6
cleanup for sap_soap_rfc_sxpg_call_system.rb
2012-11-20 11:54:21 +01:00
jvazquez-r7
8385b8314c
fix 1.8 warning about space before argument parenthesis
2012-11-19 22:55:44 +01:00
jvazquez-r7
3d753e9690
Delete pcap used to verify
2012-11-19 22:47:07 +01:00
jvazquez-r7
2f44bbaf21
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_sxpg_command_exec
2012-11-19 22:46:38 +01:00
nmonkee
dcb5cfdbbd
pcap for lin
2012-11-19 21:06:05 +00:00
nmonkee
a3550fb91b
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/nmonkee/metasploit-framework into sap_soap_rfc_sxpg_command_exec
2012-11-19 21:01:00 +00:00
nmonkee
aaeb05725a
pcaps for lin and win
2012-11-19 21:00:11 +00:00
nmonkee
6adbee13b3
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/jvazquez-r7/metasploit-framework into sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-19 17:18:21 +00:00
jvazquez-r7
ee7bf42903
cleanup for last testing
2012-11-19 17:59:27 +01:00
nmonkee
149704d918
deleting file sap_soap_rfc_sxpg_call_system_command_exec
2012-11-18 23:56:33 +00:00
jvazquez-r7
3bf88e5884
final cleanup for sap_web_gui_brute_login
2012-11-18 22:39:05 +01:00
jvazquez-r7
165e9c26da
Merge branch 'sap_web_gui_brute_login' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_web_gui_brute_login
2012-11-18 22:38:30 +01:00
jvazquez-r7
3573d31d08
final cleanup
2012-11-18 21:37:24 +01:00
jvazquez-r7
eddea29568
Merge branch 'sap_soap_rfc_brute_login' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_brute_login
2012-11-18 21:36:54 +01:00
jvazquez-r7
9fa8204152
datastore parameters cleanup
2012-11-18 11:53:17 +01:00
jvazquez-r7
5b55049610
module cleanup
2012-11-18 11:45:12 +01:00
jvazquez-r7
ea6c3e9b69
Merge branch 'sap_soap_rfc_susr_user_interface' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_susr_user_interface
2012-11-18 11:44:26 +01:00
jvazquez-r7
8a1a811844
Final cleanup
2012-11-18 01:41:10 +01:00
jvazquez-r7
482526e978
Merge branch 'sap_soap_bapi_user_create1' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_bapi_user_create1
2012-11-18 01:40:11 +01:00
jvazquez-r7
889124a439
final cleanup
2012-11-18 00:59:49 +01:00
jvazquez-r7
eed0f92829
Merge branch 'sap_soap_rfc_ping' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_ping
2012-11-18 00:59:35 +01:00
jvazquez-r7
22d4ccadea
description updated
2012-11-18 00:35:25 +01:00
jvazquez-r7
a35c640acf
final cleanup
2012-11-18 00:32:20 +01:00
jvazquez-r7
e72946303e
Merge branch 'sap_soap_rfc_system_info' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_system_info
2012-11-18 00:31:53 +01:00
jvazquez-r7
59e96e5850
fix typo
2012-11-17 00:35:53 +01:00
jvazquez-r7
8c0e4705f1
final cleanup
2012-11-17 00:18:35 +01:00
jvazquez-r7
c511e58971
Merge branch 'sap_soap_rfc_read_table' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_read_table
2012-11-17 00:18:04 +01:00
jvazquez-r7
0ef41ffcd4
added reporting to the module
2012-11-16 20:05:26 +01:00
jvazquez-r7
d8d2bee6fb
Final cleanup
2012-11-16 19:20:58 +01:00
nmonkee
62f9766e63
made requested changes
2012-11-15 00:00:31 +00:00
nmonkee
99d145eb23
made requested changes
2012-11-14 23:50:47 +00:00
nmonkee
b9a8791b87
made requested changes
2012-11-14 23:40:20 +00:00
nmonkee
047d6d350a
looks like I committed the wrong file first time round :(
2012-11-14 23:34:21 +00:00
nmonkee
a252dbc5d7
made requested changes
2012-11-14 23:25:25 +00:00
nmonkee
91b81bee4a
made requested changes
2012-11-14 23:19:09 +00:00
nmonkee
308eee7c4f
made requested changes
2012-11-14 23:00:45 +00:00
nmonkee
aa3cd500bb
made requested changes
2012-11-14 22:49:34 +00:00
nmonkee
83215edd8c
made requested changes
2012-11-14 22:38:32 +00:00
nmonkee
c5a017d054
made requested changes
2012-11-14 22:25:10 +00:00
nmonkee
833af3a347
made requested changes
2012-11-14 22:13:06 +00:00
nmonkee
e55e5d2796
made requested changes
2012-11-14 20:12:37 +00:00
HD Moore
4d2147f392
Adds normalize_uri() and fixes double-slash typos
2012-11-08 07:16:51 -06:00
nmonkee
92679cd1c8
SAP Web GUI Brute Force
2012-11-07 16:18:00 +00:00
nmonkee
c13f8d8eba
SAP RFC TH_SAPREL
2012-11-07 16:10:09 +00:00
nmonkee
f618000d0d
SAP SOAP RFC SUSR_RFC_USER_INTERFACE (user creation)
2012-11-07 16:04:07 +00:00
nmonkee
2b973263b7
SAP SOAP RFC_Info
2012-11-07 15:17:56 +00:00
nmonkee
509e63268b
SAP SOAP RFC SXPG_CALL_SYSTEM
2012-11-07 15:06:28 +00:00
nmonkee
ddcc0a9592
This module makes use of the SXPG_CALL_SYSTEM Remote Function Call (via SOAP) to execute OS commands as configured in SM69.
2012-11-07 12:48:08 +00:00
nmonkee
e053c4a0ad
This module makes use of the RFC_READ_TABLE Remote Function Call (via SOAP) to read data from tables.
2012-11-07 12:37:01 +00:00
nmonkee
3be7ad06c4
Calls the RFC_PING RFC module via SOAP to test the availability of the function. The function simply tests connectivity to remote RFC destinations.
2012-11-07 11:35:53 +00:00
nmonkee
b86bc9f365
SAP SOAP RFC DBMCLI Command Injection (via SXPG_CALL_SYSTEM)
2012-11-07 11:29:16 +00:00
nmonkee
f82b51b2c4
This module calls the RFC BAPI_USER_CREATE1 module (via SOAP). The module can be used for creating/modifying users.
2012-11-07 11:16:31 +00:00
nmonkee
5d7414511a
SAPRouter Admin Request (display remote route information)
2012-11-07 11:06:03 +00:00
nmonkee
6b7b8f7265
Flipping OptString for OptEnum
2012-11-07 11:00:43 +00:00
nmonkee
d19be3024f
Flipping OptEnum for OptString
2012-11-07 10:58:07 +00:00
nmonkee
51a3aa514d
This module attempts to brute force the username | password via an RFC interface (over SOAP)
2012-11-07 10:45:25 +00:00
sinn3r
2c4273e478
Correct some modules with res nil
2012-10-29 04:41:30 -05:00
Tod Beardsley
d5b165abbb
Msftidy.rb cleanup on recent modules.
...
Notably, DisclosureDate is required for other module parsers, so let's
not ignore those, even if you have to guess at the disclosure or call
the module's publish date the disclosure date.
2012-08-04 12:18:00 -05:00
sinn3r
87aae548e6
Final cleanup
2012-07-24 13:11:04 -05:00
Bruno Morisson
dbc779e02d
implemented fixes requested by sinn3r
...
Implemented the fixes, and re-tested the modules
2012-07-24 11:02:49 +01:00
Bruno Morisson
397d708340
Added bulk file retrieval to sap_mgmt_con_getlogfiles, and new module to get SAP process list from remote host
...
* Added option to retrieve all available files from remote SAP host to
sap_mgmt_con_getlogfiles, based on the listing request provided in
sap_mgmt_con_listlogfiles module, if the variable GETALL is set to true.
Kept previous functionality of retrieving just one chosen file.
* Added new module sap_mgmt_con_getprocesslist to remotely list SAP
processes using SAP SOAP interface. Based on the other sap_mgmt_con_*
modules by Chris John Riley.
2012-07-23 16:26:33 +01:00
sinn3r
a071d2805e
Fix the rest of possible nil res bugs I've found
2012-06-04 14:56:27 -05:00
sinn3r
7c77fe20cc
Some variables don't need to be in a double-quote.
2012-03-17 20:37:42 -05:00
James Lee
2b9acb61ad
Clean up some incosistent verbosity
...
Modules should use `vprint_*` instead of `print... if
datastore["VERBOSE"]` or similar constructs
2012-03-06 12:01:20 -07:00
HD Moore
ceb4888772
Fix up the boilerplate comment to use a better url
2012-02-20 19:40:50 -06:00
sinn3r
ebfe269698
Apply patch for #5824
2011-11-26 16:52:12 -06:00
James Lee
67120d4263
msftidy on aux modules, see #5749
2011-11-20 13:12:07 +11:00
David Maloney
c984ea41d1
Quick fix to cred sourcing to eliminate spaces in the source type
2011-11-10 20:39:13 -08:00
David Maloney
a88f954640
More Cred Sourcing
...
git-svn-id: file:///home/svn/framework3/trunk@14197 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-09 01:49:57 +00:00
Wei Chen
ad94bae78f
Fix bug #5923
...
git-svn-id: file:///home/svn/framework3/trunk@14182 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-07 17:52:02 +00:00
Joshua Drake
62c8c6ea9f
big msftidy pass, ping me if there are issues
...
git-svn-id: file:///home/svn/framework3/trunk@14034 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-23 11:56:13 +00:00
Wei Chen
1e7c197d8e
git-svn-id: file:///home/svn/framework3/trunk@14029 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-22 21:32:36 +00:00
Wei Chen
a62a236ad0
Add feature #5541
...
git-svn-id: file:///home/svn/framework3/trunk@14027 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-22 20:03:25 +00:00
Wei Chen
2a3f430c8e
SAP ICM URLscan module (Feature #5620 ) by Chris
...
git-svn-id: file:///home/svn/framework3/trunk@14026 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-22 08:41:54 +00:00
Wei Chen
389be65dff
Attempt number 2 to fix #5579
...
git-svn-id: file:///home/svn/framework3/trunk@14014 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-20 16:29:15 +00:00
Wei Chen
dd2623dba9
For bug #5579
...
git-svn-id: file:///home/svn/framework3/trunk@14012 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-20 01:07:08 +00:00
Wei Chen
975cc52bac
Fix spelling errors
...
git-svn-id: file:///home/svn/framework3/trunk@13983 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-18 00:54:05 +00:00
Tod Beardsley
e9461c766e
Msftidy run against a bunch of whitespace violations, a few line too longs.
...
git-svn-id: file:///home/svn/framework3/trunk@13962 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 02:42:01 +00:00
Tod Beardsley
ea2c9d1a46
Adding missing Id and Rev SVN keywords.
...
git-svn-id: file:///home/svn/framework3/trunk@13961 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 01:27:28 +00:00
James Lee
d50577066f
remove some silliness of registering UserAgent as an option since it's already an advanced option for HttpClient, make the default obvious
...
git-svn-id: file:///home/svn/framework3/trunk@13394 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 22:57:47 +00:00
Tod Beardsley
c54e18d757
Fixes #5038 . Removes all instances of Racket objects, as far as I can tell. If I missed any through my mighty grep -ril racket . statement, please reopen!
...
git-svn-id: file:///home/svn/framework3/trunk@13342 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 01:29:21 +00:00
James Lee
c412a836ed
add VERBOSE option to all modules and vprint_* methods to use it
...
git-svn-id: file:///home/svn/framework3/trunk@13183 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 15:33:35 +00:00
HD Moore
77328e7327
Fix report calls, thanks Minga!
...
git-svn-id: file:///home/svn/framework3/trunk@12457 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 19:39:28 +00:00
David Rude
00c756ee27
Added patches from Chris John Riley for SAP aux scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:50:18 +00:00
Mario Ceballos
94d21dde8e
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:54:03 +00:00
Mario Ceballos
5e60545446
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:35:31 +00:00
David Rude
2a90817b80
Fixes more style and API usage issues
...
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 18:46:00 +00:00
David Rude
37e9ad1ed4
Added SAP Management Console auxiliary scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 10:18:31 +00:00