4df86c08db
Merge branch 'ftpx_post_gather' of git://github.com/bcoles/metasploit-framework into bcoles-ftpx_post_gather
2012-11-30 11:19:32 -06:00
40b8c93ef8
Added HSTS scanner for HTTPS sites
2012-11-30 09:30:11 -05:00
9d52048d7f
Forgot to remove this after badchar analysis
2012-11-30 02:17:08 -06:00
37f731fe7d
Add OSVDB-80896 BlazeVideo HDTV Player Pro 6.6 Buffer Overflow
2012-11-30 02:14:22 -06:00
0472d60c4a
Add FTP Explorer (FTPx) post->gather->credentials module
...
This module finds saved login credentials for the
FTP Explorer (FTPx) FTP client for Windows.
2012-11-30 15:09:14 +10:30
7d4982b47b
Fixed description area and authoer section
2012-11-29 14:21:27 -06:00
d6a3f6666d
Fixed simple return form get_output method
2012-11-29 14:15:57 -06:00
cf53588ab7
Removed Version
2012-11-29 14:14:41 -06:00
3ebbee5b1f
Removed generic URLs
2012-11-29 14:13:49 -06:00
bf41d3d0fd
Merge branch 'network_shutdown_creds' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-network_shutdown_creds
2012-11-29 10:43:03 -06:00
b0e4931de8
When 'credentials' is empty, it is empty.......
2012-11-29 10:22:20 -06:00
3ae8594f53
Fix typo
2012-11-29 10:17:44 -06:00
2ccc3f9e71
Fixed mixed tabs that prevented build completion.
2012-11-29 08:43:51 -05:00
4416f1c7ae
Fixed mixed tabs that prevented build completion.
2012-11-29 08:43:23 -05:00
93a69ea62e
Fix instances of invalid lower-case datastore use
2012-11-29 00:05:36 -06:00
8b3d200986
Add a check for nil
2012-11-28 23:50:29 -06:00
d200332b76
removed local_admin_search_enum.rb
2012-11-28 22:11:08 -06:00
84fc320c30
added post exploit netlm_downgrade.rb
2012-11-28 22:01:47 -06:00
b3a473aec0
Forgot to remove this option
2012-11-28 18:48:33 -06:00
0415d31c61
Update description
2012-11-28 16:07:21 -06:00
52c2437d5a
Add OSVDB-83199 as a cred collecting aux module
...
From #1102
2012-11-28 15:56:13 -06:00
c0c3dff4e6
Several fixes for smb, mainly win 8 compatibility
2012-11-28 22:49:40 +01:00
17518f035c
support for local exploits on file_dropper
2012-11-28 22:17:27 +01:00
b2f906e83e
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-11-28 15:10:51 -06:00
b764110e6e
Use PhpEXE to be able to support PHP and Linux native payloads
2012-11-28 15:06:39 -06:00
85ed074674
Final cleanup on always_install_elevated
2012-11-28 21:50:08 +01:00
fd1557b6d2
Merge branch 'msi_elevated' of https://github.com/Meatballs1/metasploit-framework into Meatballs1-msi_elevated
2012-11-28 21:49:36 +01:00
fd2296317d
Strip the credential dumping stuff (making it auxiliary)
...
Also a little description update
2012-11-28 14:27:01 -06:00
6b524ff22a
Merge branch 'eaton_network_shutdown' of git://github.com/h0ng10/metasploit-framework into h0ng10-eaton_network_shutdown
2012-11-28 11:22:36 -06:00
ae6dbee42b
Fixed bugs with a few modules.
...
filezilla_server.rb would crash if there was no admin information found.
In smart_hashdump.rb I replicated the changes made in hashdump.rb to handle the race condition. (It works, but is still not as reliable as regular hashdump for XP boxes)
In migrate.rb the option PID is an integer, and the line "elseif datastore['PID']" was evaluating as true, even though PID was set to "". There was also a misspelling of datastore as "datstore" that I fixed.
2012-11-28 12:18:32 -05:00
7fea0d4af6
Add initial auto run script
2012-11-28 16:38:31 +00:00
82dc8e8814
Added check for LOGONSERVER and HOMEPATH
2012-11-28 09:02:19 -06:00
a3fbf276f9
Reinstated cleanup
2012-11-28 11:23:08 +00:00
b5b47152fc
Changed to static msi filename
2012-11-28 11:21:02 +00:00
d130d38bad
Merge branch 'module-rpcapd-start' of https://github.com/bmerinofe/metasploit-framework into bmerinofe-module-rpcapd-start
2012-11-28 12:09:08 +01:00
cdd9eb19cf
Licence Changed. Return added when RHOST is nil
2012-11-28 10:38:24 +01:00
897ae102d4
fixed msftidy.rb complains
2012-11-28 01:22:19 -05:00
7109d63f36
Code clean up, thanks to Brandon Perry
2012-11-28 01:20:41 -05:00
e7a565b474
fixed store loot
2012-11-27 20:02:05 -06:00
76f7abe5b6
Little tidy up
2012-11-27 23:58:58 +00:00
81c2182424
Msftidy
2012-11-27 23:33:07 +00:00
9741d55724
Moved to agnostic post module commands
2012-11-27 23:26:19 +00:00
6fe378b594
Minor changes to description
2012-11-27 20:56:52 +00:00
d067b040a0
Minor changes to description
2012-11-27 20:55:36 +00:00
a24ebde3e3
Fix syntax on @@loaded_msfrpc
2012-11-27 14:10:46 -06:00
84294655aa
Update the require, error handling, casing
2012-11-27 11:44:51 -08:00
b008eb93c9
Fix msgpack issue
2012-11-27 12:45:01 -06:00
7727f3d6e8
Msftidy
2012-11-27 18:31:54 +00:00
889c8ac12d
Add build instructions and removed binary
2012-11-27 18:18:20 +00:00
bc9065ad42
Move MSI source and binary location
2012-11-27 18:12:49 +00:00
0440708453
I missed this sucker: var in a quote
2012-11-27 11:57:51 -06:00
0a0195e6c8
Merge branch 'kost-aux-scan-nexpose'
2012-11-27 11:57:11 -06:00
24f44e7a82
Lots of small changes
...
Basically the same changes I've been correcting like the rest of
other modules.
2012-11-27 11:52:58 -06:00
6ccceedcb7
final cleanup for sip_deregister
2012-11-27 18:34:31 +01:00
496fb63fad
Merge branch 'sip_deregister' of https://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-sip_deregister
2012-11-27 18:34:05 +01:00
4ef0d8699a
added exploit for OSVDB 83199
2012-11-27 12:29:10 -05:00
4dbb82d0bc
Merge branch 'aux-scan-nexpose' of git://github.com/kost/metasploit-framework into kost-aux-scan-nexpose
2012-11-27 11:25:44 -06:00
139c149583
This variable doesn't have to be in a quote
2012-11-27 11:19:04 -06:00
673c519fa3
msg() isn't needed, because it's already implemented in HttpClient
2012-11-27 11:18:27 -06:00
7c3e478070
Final changes
2012-11-27 11:16:12 -06:00
17d8d3692b
Merge branch 'rapid7' into midnitesnake-postgres_payload
2012-11-27 11:14:54 -06:00
bb34fb8dec
Actually, this is the exact reason why res can be nil
2012-11-27 11:14:52 -06:00
eb30765509
Use vars_post instead of data
2012-11-27 11:13:21 -06:00
4796fb4415
These don't need to be in a quote
2012-11-27 11:12:15 -06:00
5b787406b9
Correct output messages
...
When HttpClient is used, it's actually not necessary to put the
target's IP/port and the module name in the output, because it's
already included in there.
2012-11-27 11:10:31 -06:00
46f86f46fa
Merge branch 'aux-scan-nessus' of git://github.com/kost/metasploit-framework into kost-aux-scan-nessus
2012-11-27 11:01:36 -06:00
b395f8f96d
Only XP for target coverage
2012-11-27 10:48:20 -06:00
2e71fc740e
No badchars, then no need to have the key
2012-11-27 10:46:20 -06:00
16ce2c3f94
fixed catch statements
2012-11-27 06:22:50 -06:00
62be877f89
fixed run_cmd()
2012-11-27 05:49:19 -06:00
c70f1e3698
modified local_admin_search_enum.rb
2012-11-27 05:34:38 -06:00
8c53b275c6
Added module for cve-2012-3753
2012-11-27 12:10:00 +01:00
319fa04c16
Fix Ruby 1.8 comma of death
2012-11-26 16:45:43 -06:00
9ccc69c4c1
Mostly cosmetic changes. Plus a nil token bug fix.
2012-11-26 16:32:49 -06:00
32ea36916c
Cosmetic changes
2012-11-26 16:28:16 -06:00
65ac56a7a7
Merge branch 'aux-scan-metasploit' of git://github.com/kost/metasploit-framework into kost-aux-scan-metasploit
2012-11-26 16:26:11 -06:00
472ec35adb
Merge branch 'kost-aux-scan-splunk-login'
2012-11-26 16:16:02 -06:00
af451df864
Lots of changes made
...
These changes include:
* More description
* Checks if auth is actually required.
* Collects the default credential on the webpage, and then tries it.
* Fixes possible nil 'Set-Cookie' header.
* Supports more options (USERPASS_FILE, USER_FILE, PASS_FILE)
* Removes the msg() function.
2012-11-26 16:12:11 -06:00
f1fedee63b
EOL space, deleted
2012-11-26 14:19:40 -06:00
3588787df9
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-11-26 12:59:49 -06:00
0ea63ca9c2
Merge branch 'web-modules' of git://github.com/tasos-r7/metasploit-framework into tasos-r7-web-modules
2012-11-26 12:59:29 -06:00
7795dc58f4
auxiliary/scanner/http/crawler#form_from_url: rescue => rescue URI::Error
2012-11-26 20:54:20 +02:00
36e2a4fddc
Merge branch 'splunk_nil_cookie' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-splunk_nil_cookie
2012-11-26 19:18:32 +01:00
541ecd49d6
Merge branch 'web-modules' of git://github.com/tasos-r7/metasploit-framework into tasos-r7-web-modules
2012-11-26 12:17:24 -06:00
9c3be383d0
The 'Set-Cookie' header should be checked before accessing it
2012-11-26 12:06:43 -06:00
c17cffdece
auxiliary/scanner/http: wrapped an exception-prone URL parse in a begin/rescue block
2012-11-26 18:58:06 +02:00
6dfda6da37
Added Maxthon3 Cross Context Scripting (XCS) exploits for Win
2012-11-24 15:53:58 -08:00
c22335a2f5
Remove spaces at EOL
2012-11-24 23:32:32 +01:00
7bafc97fec
Remove non needed and redundant checks
2012-11-24 23:01:08 +01:00
bbe3659093
Import of MSF web interface guesser
2012-11-24 22:56:38 +01:00
cdfe663675
initial import of splunk password guesser
2012-11-24 22:05:57 +01:00
860519099f
Removed space at EOL
2012-11-24 19:34:42 +01:00
414fd052c1
final cleanup
2012-11-24 15:03:14 +01:00
fab3427b25
Merge branch 'command' of https://github.com/R3dy/metasploit-framework into R3dy-command
2012-11-24 15:02:39 +01:00
4ad0907c29
Wrap description to 80 cols
2012-11-24 08:13:36 +01:00
14ec0c8a60
Fix http code check + be more verbose
2012-11-24 08:09:26 +01:00
83168e8b56
Correct placement of autofilter ports statement
2012-11-24 07:38:27 +01:00
d008fa0250
Make wrapping works and look better
2012-11-24 07:33:25 +01:00
f88c4491b5
Added autofilter_port to 3790(metasploit web intf)
2012-11-24 07:28:39 +01:00
8608bebbe7
Wrapped module info to col80
2012-11-24 07:27:10 +01:00
e9256de6f6
Merge branch 'jvazquez-r7-apple_quicktime_texml_font_table'
2012-11-23 18:53:31 -06:00
965efc9c8d
Last touch up
2012-11-23 18:51:51 -06:00
ddee88bb03
Merge branch 'aux-scan-openvas' of git://github.com/kost/metasploit-framework into kost-aux-scan-openvas
2012-11-23 18:47:33 -06:00
89ddedf773
If no badchars, no need to specify.
2012-11-23 18:46:50 -06:00
ec3ce499f1
Simplify variable assigment
2012-11-24 00:33:49 +01:00
17de7be1bf
Fix exception handling block
2012-11-24 00:31:32 +01:00
505de0bfc6
Use vars_post instead of direct body construction
2012-11-24 00:21:35 +01:00
a5db9331bc
Simplify rescue handler
2012-11-24 00:15:39 +01:00
d968a33e14
Simplify variable assigment
2012-11-24 00:13:28 +01:00
4c9b8d4567
targets updated
2012-11-23 18:48:59 +01:00
2978775335
change default RPORT
2012-11-23 12:14:08 +01:00
ca3240a83e
Merge branch 'SXPG_COMMAND_EXEC_DBMCLI' of https://github.com/nmonkee/metasploit-framework into nmonkee-SXPG_COMMAND_EXEC_DBMCLI
2012-11-23 12:13:22 +01:00
f7fb8bb862
change module filename
2012-11-23 11:43:34 +01:00
cb7e98ea29
Cleanup for command module
2012-11-23 11:42:59 +01:00
a2623122bd
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-11-23 02:09:48 -06:00
d4e873df07
Fix bad reference (thanks Daniel Moeller)
2012-11-22 23:51:57 -06:00
b04b3963d8
Fix missing parenthesis
2012-11-22 23:50:47 -06:00
d2cde0b294
Make error handling consistent in SNMP modules
2012-11-22 21:36:33 -06:00
b357d221fb
Fix stack trace/error handling in AIX snmp version
2012-11-22 21:28:49 -06:00
52ff38ad8a
add module for cve-2012-3752
2012-11-22 19:56:12 +01:00
46f3b8f47d
Minor changes to get Travis to rerun (The Travis build failed)
2012-11-22 16:00:38 +01:00
579126c777
Remove redundant sleep
2012-11-22 10:44:41 +00:00
8252c7f52e
Remove post file
2012-11-22 10:41:52 +00:00
021e0f37e9
Cleanup s
2012-11-22 10:34:05 +00:00
7936fce7cf
Remove auto migrate - we probably dont want to migrate away from a SYSTEM process.
2012-11-22 10:29:58 +00:00
128eafe22c
Changed to Local Exploit
2012-11-22 10:26:23 +00:00
4496f7f4a5
Only verify user if non custom MSI
2012-11-21 21:27:27 +00:00
75054807be
Initial commit
2012-11-21 21:11:45 +00:00
564a32ce7c
Made requested changes
2012-11-21 17:33:15 +00:00
007dcd2dcb
Module is good, except with a little grammar error
2012-11-21 10:30:28 -06:00
04aae008ca
fix to use pseudorandom exe name
2012-11-21 09:56:20 +01:00
14cba22e64
changes requested by egypt
2012-11-21 09:46:22 +01:00
e16cea6db8
Fixed execerror, redundant if statement, and poor exception handling
2012-11-20 18:46:07 -06:00
99d32191c5
Added module for OSVDB 87334
2012-11-20 23:15:21 +01:00
064df7c537
Minor grammar touch on modbus_findunitid
2012-11-20 14:08:07 -06:00
6b4c131cf5
Avoiding a future conflict with release
2012-11-20 13:24:19 -06:00
8c60035a2d
Renamed functions to meet coding standards
...
Added client-side tool suggestion in description and references
(newlines in the description might help readability, if this is possible?)
Added some minor logic change to stop empty filenames
2012-11-20 18:48:18 +01:00
ff07e5d021
sap_soap_rfc_dbmcli_sxpg_command_exec
2012-11-20 15:34:53 +00:00
32373c1a6a
new filename
2012-11-20 16:01:58 +01:00
bb13c87aab
module filename changed
2012-11-20 16:01:26 +01:00
96024dc639
title updated
2012-11-20 16:00:50 +01:00
bfbab4526a
Merge branch 'sap_soap_rfc_sxpg_call_system' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_sxpg_call_system
2012-11-20 16:00:14 +01:00
217fa27abb
pcap to verify deleted
2012-11-20 15:55:56 +01:00
101238db35
Merge branch 'sap_soap_rfc_dbmcli_sxpg_call_system_command_exec' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-20 15:55:32 +01:00
e16a51fcf9
author change
2012-11-20 14:23:29 +00:00
1bc62b8686
pcap for lin
2012-11-20 14:15:49 +00:00
838eb5154a
Merge branch 'sap_soap_rfc_dbmcli_sxpg_call_system_command_exec' of https://github.com/jvazquez-r7/metasploit-framework into sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-20 14:13:51 +00:00
be66ccdf00
pcap for lin
2012-11-20 13:59:49 +00:00
959ea1f0c5
final cleanup
2012-11-20 12:52:00 +01:00
b002996708
Merge branch 'narcissus' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-narcissus
2012-11-20 12:49:15 +01:00
5f99b56688
up to date to test rapid7#1030
2012-11-20 12:13:14 +01:00
31ca077dd6
cleanup for sap_soap_rfc_sxpg_call_system.rb
2012-11-20 11:54:21 +01:00
5667cffb77
Fixed typos
2012-11-20 09:06:15 +01:00
edaa66094c
Merge branch 'jlee-r7-feature/automatic-fs-cleanup'
2012-11-19 16:13:08 -06:00
8385b8314c
fix 1.8 warning about space before argument parenthesis
2012-11-19 22:55:44 +01:00
3d753e9690
Delete pcap used to verify
2012-11-19 22:47:07 +01:00
2f44bbaf21
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_sxpg_command_exec
2012-11-19 22:46:38 +01:00
a93fbfea32
Add Narcissus module (OSVDB-87410)
2012-11-19 15:12:57 -06:00
dcb5cfdbbd
pcap for lin
2012-11-19 21:06:05 +00:00
a3550fb91b
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/nmonkee/metasploit-framework into sap_soap_rfc_sxpg_command_exec
2012-11-19 21:01:00 +00:00
aaeb05725a
pcaps for lin and win
2012-11-19 21:00:11 +00:00
795ea5bec2
Fix randomize of dislayname and removed filename from command.rb
2012-11-19 14:34:06 -06:00
dc93bd7215
removed redundant file
2012-11-19 14:27:08 -06:00
7fa8717860
Fixed cleanup method to report an Error on command.rb
2012-11-19 13:59:58 -06:00
6adbee13b3
Merge branch 'sap_soap_rfc_sxpg_command_exec' of https://github.com/jvazquez-r7/metasploit-framework into sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
2012-11-19 17:18:21 +00:00
ee7bf42903
cleanup for last testing
2012-11-19 17:59:27 +01:00
430227a460
msftidy cleanup
2012-11-19 16:04:35 +01:00
082bba3342
Rewrite
...
Removed unrequired global vars
Added flexibility in start, continue, end responses
Added ability to set filename in BOF packet or not
Fixed BEGIN RESCUE blocks to not catch errors themselves
BEGIN ENSURE block still needed to trigger save to loot on CTRL+C
2012-11-19 16:02:53 +01:00
35b3bf4aa5
back to the original Brute mixin
2012-11-19 14:13:49 +01:00
24fe043960
Merge branch 'samba' of https://github.com/mephos/metasploit-framework into mephos-samba
2012-11-19 14:13:15 +01:00
149704d918
deleting file sap_soap_rfc_sxpg_call_system_command_exec
2012-11-18 23:56:33 +00:00
3bf88e5884
final cleanup for sap_web_gui_brute_login
2012-11-18 22:39:05 +01:00
165e9c26da
Merge branch 'sap_web_gui_brute_login' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_web_gui_brute_login
2012-11-18 22:38:30 +01:00
3573d31d08
final cleanup
2012-11-18 21:37:24 +01:00
eddea29568
Merge branch 'sap_soap_rfc_brute_login' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_brute_login
2012-11-18 21:36:54 +01:00
9fa8204152
datastore parameters cleanup
2012-11-18 11:53:17 +01:00
5b55049610
module cleanup
2012-11-18 11:45:12 +01:00
ea6c3e9b69
Merge branch 'sap_soap_rfc_susr_user_interface' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_susr_user_interface
2012-11-18 11:44:26 +01:00
8a1a811844
Final cleanup
2012-11-18 01:41:10 +01:00
482526e978
Merge branch 'sap_soap_bapi_user_create1' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_bapi_user_create1
2012-11-18 01:40:11 +01:00
889124a439
final cleanup
2012-11-18 00:59:49 +01:00
eed0f92829
Merge branch 'sap_soap_rfc_ping' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_ping
2012-11-18 00:59:35 +01:00
22d4ccadea
description updated
2012-11-18 00:35:25 +01:00
a35c640acf
final cleanup
2012-11-18 00:32:20 +01:00
e72946303e
Merge branch 'sap_soap_rfc_system_info' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_system_info
2012-11-18 00:31:53 +01:00
f4aa84956c
Add technet reference
2012-11-17 01:24:12 -06:00
d4749ff009
Merge branch 'feature/automatic-fs-cleanup' of git://github.com/jlee-r7/metasploit-framework into jlee-r7-feature/automatic-fs-cleanup
2012-11-16 19:02:46 -06:00
59e96e5850
fix typo
2012-11-17 00:35:53 +01:00
8c0e4705f1
final cleanup
2012-11-17 00:18:35 +01:00
c511e58971
Merge branch 'sap_soap_rfc_read_table' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_rfc_read_table
2012-11-17 00:18:04 +01:00
591b085858
Add support for shell sessions in FileDropper
2012-11-16 15:51:54 -06:00
c65f37782d
Merge branch 'rapid7' into tasos-r7-web-modules
2012-11-16 13:52:18 -06:00
0ef41ffcd4
added reporting to the module
2012-11-16 20:05:26 +01:00
d8d2bee6fb
Final cleanup
2012-11-16 19:20:58 +01:00
65c741b539
Merge branch 'sap_soap_th_saprel' of https://github.com/nmonkee/metasploit-framework into nmonkee-sap_soap_th_saprel
2012-11-16 19:19:21 +01:00
f784ea65af
Merge branch 'master' into ms12-005_mod
2012-11-16 11:59:41 -06:00
8648d21b3c
Merge branch 'dns_txt_query_exe' of git://github.com/corelanc0d3r/metasploit-framework into corelanc0d3r-dns_txt_query_exe
2012-11-16 11:52:57 -06:00
8375bb8390
Merge branch 'bypassuac_admincheck' of git://github.com/mubix/metasploit-framework into mubix-bypassuac_admincheck
2012-11-16 11:29:09 -06:00
8930d618e3
Merge branch 'invision_pboard_cleanup' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-invision_pboard_cleanup
2012-11-16 11:24:04 -06:00
e8fe6031e9
Let default timeout for send_request_cgi
2012-11-16 18:09:47 +01:00
51f238ec38
up to date
2012-11-16 16:03:09 +01:00
83708a5a48
Add a FileDropper mixin for recording cleanup targets
...
Doesn't cover shell sessions yet, so needs a bit more work
2012-11-15 17:52:10 -06:00
c0df3a0407
Remove curly braces
2012-11-15 23:27:25 +01:00
eea85cf2ca
Remove curly braces
2012-11-15 23:26:28 +01:00
836d83a253
Remove curly braces
2012-11-15 23:25:10 +01:00
854bfe09e2
remove curly braces
2012-11-15 23:23:46 +01:00
73d43beff3
Remove EOL spaces
2012-11-15 22:46:22 +01:00
afced2278d
Remove EOL spaces
2012-11-15 22:43:47 +01:00
e479399b5d
Initial import of OpenVAS aux scripts
2012-11-15 22:39:56 +01:00
f7f7c451d3
Initial import of Nexpose aux scripts
2012-11-15 22:35:35 +01:00
1956af7dc1
Initial import of Metasploit RPC aux scripts
2012-11-15 22:32:22 +01:00
bd03a2dcfd
Initial import of Nessus basic aux scripts
2012-11-15 22:28:56 +01:00
de016780b8
Rename the PAYLOAD_TYPE datastore option
...
This datastore option conflicts with a reserved option in Pro causing
this module to fail in Pro.
2012-11-15 14:42:31 -06:00
e18acf2103
remove debugging code
2012-11-14 23:56:32 -05:00
7d41f1f9a0
add admin already and admin group checks
2012-11-14 23:54:01 -05:00
09ec7dea95
fix check function after speak with egix
2012-11-15 01:34:17 +01:00
3ba3e906d7
added improvements by egix
2012-11-15 01:20:32 +01:00
62f9766e63
made requested changes
2012-11-15 00:00:31 +00:00
99d145eb23
made requested changes
2012-11-14 23:50:47 +00:00
35a7999b4e
Merge branch 'rapid7' into tasos-r7-web-modules
2012-11-14 17:41:27 -06:00
b9a8791b87
made requested changes
2012-11-14 23:40:20 +00:00
047d6d350a
looks like I committed the wrong file first time round :(
2012-11-14 23:34:21 +00:00
a252dbc5d7
made requested changes
2012-11-14 23:25:25 +00:00
91b81bee4a
made requested changes
2012-11-14 23:19:09 +00:00
308eee7c4f
made requested changes
2012-11-14 23:00:45 +00:00
aa3cd500bb
made requested changes
2012-11-14 22:49:34 +00:00
83215edd8c
made requested changes
2012-11-14 22:38:32 +00:00
c5a017d054
made requested changes
2012-11-14 22:25:10 +00:00
833af3a347
made requested changes
2012-11-14 22:13:06 +00:00
e55e5d2796
made requested changes
2012-11-14 20:12:37 +00:00
af8ac2fbf6
There's a bug here, can you tell?
...
Need to be aware of what happens when no version is captured.
2012-11-14 11:54:59 -06:00
fcad2c3e26
Merge branch 'invision_pboard_cookie_prefix' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-invision_pboard_cookie_prefix
2012-11-14 11:52:58 -06:00
4d633016aa
Merge remote branch 'Meatballs1/smb_login_update'
...
Thus ends our long national nightmare.
2012-11-14 10:13:34 -06:00
8a9f0a0890
Merge remote-tracking branch 'upstream/master' into web-modules
2012-11-14 18:10:41 +02:00
88ea347e40
added cookie prefix check
2012-11-14 16:20:40 +01:00
6b033fb1a8
Only store the password when there's one
2012-11-14 01:25:32 -06:00
212179b95e
change behavior to explicitly note when password is not set (or enhanced password supercedes it) as opposed to an empty string password
2012-11-13 23:49:45 -06:00
721cf41f47
fix nil class error on non-lantronix hosts
2012-11-13 23:46:59 -06:00
1546aa6a10
No need to repeat the default values
2012-11-13 18:38:17 -06:00
9054fafb15
Not sure why paths were repeated, but no more.
2012-11-13 18:32:32 -06:00
4675cd873b
Merge branch 'client_system_analyzer_upload' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-client_system_analyzer_upload
2012-11-13 11:21:23 -06:00
f9b4971fc3
Fixed hard coded paths in psexec on command.rb
2012-11-13 10:28:16 -06:00
fc571b1688
Merge branch 'enum_dirperms_default_path' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-enum_dirperms_default_path
2012-11-13 17:24:53 +01:00
bbb2f69b55
Add missing require for PhpExe
2012-11-13 10:17:42 -06:00
ee7e502e89
Merge branch 'impersonate_ssl_tweak' of git://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-impersonate_ssl_tweak
2012-11-13 09:36:28 -06:00
cd257f6cd4
Merge branch 'download_exec' of git://github.com/corelanc0d3r/metasploit-framework into corelanc0d3r-download_exec
2012-11-13 01:48:19 -06:00
7d317e7863
Use PhpEXE, and a check() function
...
Uses the PhpEXE mixin for the payload. And then in the future
we can modify PhpEXE again to allow it to be space-free (problem
being a space is required when you use a function). Also, this
commit has a new check function.
2012-11-13 01:41:26 -06:00
162b5a391a
Merge branch 'invision_pboard_unserialize_exec' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-invision_pboard_unserialize_exec
2012-11-13 00:40:30 -06:00
f707a4774d
Merge branch 'esmnemon-modbus-aux'
2012-11-12 23:42:00 -06:00
aa6ac36abd
Cosmetic changes, mostly
2012-11-12 23:41:31 -06:00
66fe8ade52
Merge branch 'modbus-aux' of git://github.com/esmnemon/metasploit-framework into esmnemon-modbus-aux
2012-11-12 22:40:34 -06:00
e235aadcc0
Sometimes we might not be able to access a dir, be aware of that
2012-11-12 18:59:44 -06:00
862dd18b1c
Merge remote-tracking branch 'upstream/master' into enum_dirperms_default_path
...
Conflicts:
modules/post/windows/gather/enum_dirperms.rb
2012-11-12 18:54:47 -06:00
5270487d81
Add credit
2012-11-12 18:35:32 -06:00
be36083097
Make PATH optional, also correct a filtering bug
...
If the PATH option is not specified, the module will try to
enumerate from %PATH%. Also, this commit fixes a bug in the
filtering routine (basically the filtering routine didn't
really work).
2012-11-12 18:29:56 -06:00
0bf92b5d97
improved payload dns_txt_query_exec
2012-11-13 00:55:32 +01:00
5c10bc11a8
Fix spacing before -
2012-11-12 23:20:40 +00:00
cad7eb0130
renamed and optimized download_exec payload
2012-11-13 00:02:49 +01:00
dd1da88ff7
Make domain part less stupid looking
2012-11-12 16:54:52 -06:00
970869b3e4
Retry push
2012-11-12 22:28:44 +00:00
222af8c91d
Fix NoMethodError when check_dir fails to enum the permission
...
See the following for more info:
http://dev.metasploit.com/redmine/issues/7452
2012-11-12 16:27:32 -06:00
e30ab85549
Fix some outputting issues
2012-11-12 22:25:08 +00:00
72f0a5613f
Add more improvements
2012-11-12 15:40:12 -06:00
8fe3f289bf
Merge branch 'drupal_views_user_enum.rb' of git://github.com/zeknox/metasploit-framework into zeknox-drupal_views_user_enum.rb
2012-11-12 14:48:13 -06:00
683bcd4b82
Added disconnect method to command.rb
2012-11-12 11:25:12 -06:00
e57275d3f6
added check cleanup method to command.rb
2012-11-12 09:46:02 -06:00
8e7a748805
thins in place...
2012-11-11 20:19:20 +01:00
5076198ba2
fixing bperry comments
2012-11-11 20:18:19 +01:00
c4f10a1d53
added bid reference
2012-11-11 17:48:57 +01:00
9d3c068da0
added linux target
2012-11-11 17:28:48 +01:00
8619c5291b
Added module for CVE-2012-5076
2012-11-11 17:05:51 +01:00
38b25f01f7
Corrected bad coding (sorry)
...
Added OptEnum and OptPath
Checks for nil and empty
Added reference
Made AlterSerial an advanced option instead of always on
2012-11-10 20:24:50 +01:00
6482de44e4
Added checks for Extension and Domain
...
Altered error handling on no response
2012-11-10 13:21:41 +01:00
42dd1ee3ff
added module for CVE-2012-5692
2012-11-10 11:35:21 +01:00
1b9d45e106
Test for subdom_list existence first
...
Otherwise, you get
````
[11/09/2012 14:50:38] [e(0)] core: Error running against host
173.236.237.136: can't convert nil into String
````
Other than that, looks good.
[Fixes #851 ]
2012-11-09 15:01:36 -06:00
171ebe13cd
Whitespace fix for vhost_scanner
2012-11-09 14:48:46 -06:00
b1c35fdb24
Merge remote branch 'sempervictus/http_vhost_scanner_from_file'
2012-11-09 14:46:54 -06:00
9a94fef8d0
Merge branch 'llmnr-spoof'
2012-11-09 14:36:04 -06:00
a6fd0fee1c
Fix up notification to not spam or hide
...
Instead of hiding the success notification in vprint, it should print,
but not every time. This fix thottles the notification to ten seconds
per host.
[Fixes #731 ]
2012-11-09 14:31:28 -06:00
6cd5b79b60
Getting rid of Id and Revision
2012-11-09 13:30:14 -06:00
f6c565848e
Resolving conflicted smb_login
2012-11-09 12:55:18 -06:00
6e257d5f57
Simplify main method
2012-11-09 08:50:09 -06:00
a889c8ae99
error handling adjustments on loggedin_users.rb
2012-11-09 08:33:05 -06:00
7032ef0f6f
Merge remote-tracking branch 'upstream/master' into web-modules
2012-11-09 00:21:38 +02:00
08d56e31e1
recreated in new branch
...
removed space at EOL
2012-11-08 22:38:21 +01:00
b75ade746c
Removed EOL spaces
...
Removed unrequired udp_sock.close
2012-11-08 22:26:37 +01:00
21693831ae
Added module for ZDI-11-018
2012-11-08 17:32:42 +01:00
7ce3859e8c
Fixed a bunch of bull crap in loggedin_users.rb
2012-11-08 09:49:53 -06:00
0c0d5b10ec
changes loggedin_users.rb
2012-11-08 09:26:17 -06:00
3bf865456c
Better error handling in loggedin_users
2012-11-08 09:13:33 -06:00
36066f8c78
Catch a few stragglers for double slash
2012-11-08 07:21:37 -06:00
4d2147f392
Adds normalize_uri() and fixes double-slash typos
2012-11-08 07:16:51 -06:00
5ad2749cee
Rework ADDP modules to use the new mixin
2012-11-08 06:40:32 -06:00
0e8a3f0ea6
Merge branch 'master' into feature/udp-scanner-mixin
2012-11-08 06:09:22 -06:00
e008120c11
Bug fixes to the SSDP discovery module
2012-11-08 06:08:49 -06:00
da6bf29699
Display message when no response received
2012-11-08 11:59:13 +01:00
ac1b60e6db
Remove debug load
2012-11-07 20:00:41 -06:00
22ecd6afa9
Edit command.rb
2012-11-07 15:17:13 -06:00
18aab8bcc7
Remove extrat comment lines from command.rb
2012-11-07 15:09:57 -06:00
d159aa6f9f
Changed error handeling of command.rb module
2012-11-07 15:03:31 -06:00
sinn3r
Matt Andreko
bcoles
Royce Davis
Charles Smith
HD Moore
Brandon McCann
Alexandre Maloteaux
jvazquez-r7
Meatballs1
Borja Merino
h0ng10
Tod Beardsley
James Lee
Tasos Laskos
malerisch
Vlatko Kosturjak
Chris John Riley
nmonkee
Chris John Riley
nullbind
David Maloney
Rob Fuller
jgor
corelanc0d3r