Tod Beardsley
056cde292f
Deprecate the exploited_host table. Vulns that indicate a successful exploit without opening a session should set the :exploited_at timestamp.
...
git-svn-id: file:///home/svn/framework3/trunk@12623 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-15 22:19:00 +00:00
Wei Chen
e39739231d
Added CVE reference
...
git-svn-id: file:///home/svn/framework3/trunk@12431 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 05:37:41 +00:00
HD Moore
86fac4ef95
This module does not meet standards for inclusion:
...
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs
git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 16:11:59 +00:00
Carlos Perez
8c96711c6c
shroretel user login brute force module by Keith Lee
...
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 14:13:15 +00:00
James Lee
792bb4da7a
allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038 , thanks mubix!
...
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 05:42:33 +00:00
Tod Beardsley
8d8696eb8c
Fixes #4026 , the HTTP options scanner now reports its vulnerability in the normal way.
...
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 17:03:16 +00:00
Tod Beardsley
f2057f54a8
De-dup'ed get_link_filter() in the crawler module. Added some comment
...
docs on crawler_process_page(). Nothing exciting.
git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
Carlos Perez
6a1acd6a54
small typo
...
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Joshua Drake
5bfd574029
fix parse error
...
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude
c5ce597483
removing coldfusion until some general code fixes can be applied
...
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
James Lee
7d12151ec6
add support for http digest authentication. fixes #2504 , thanks oliver kleinecke for the patch!
...
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
HD Moore
09b3ecff33
Move the module to the correct location
...
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore
5299bbb8db
Add ip/port prefixes to the jboss scanner
...
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux
5f6995e8d3
enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
...
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
Joshua Drake
8ef05017b8
style compliance fixes, naughty naughty
...
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
et
dd05954b34
Fix wmap to test parameters, error inj. module as example
...
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
HD Moore
070f48e16a
Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address
...
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:32:37 +00:00
et
baab86fc52
WMAP 1.0 and first pass on some modules
...
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 05:57:26 +00:00
Tod Beardsley
3f1ceea349
Fixes #3655 . Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters.
...
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:54:32 +00:00
Jonathan Cran
5b5e7028ad
quick mod from daniel clemens to show the ip with the url
...
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 19:04:54 +00:00
Tod Beardsley
671659841b
On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
...
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley
e31f35e3ae
Fixes #3643 . These modules now report_vuln() correctly.
...
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley
99b1703416
Trailing comma on cisco_ios_auth_bypass
...
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:07:31 +00:00
Tod Beardsley
cec851a5ed
Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references.
...
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:06:40 +00:00
Joshua Drake
c9d3d60b23
Rework external command invocation
...
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake
80eb7bad52
Fixes #3257 , Adds two mod_negotiation scanner modules from DiabloHorn
...
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Tod Beardsley
24388f3a38
Adding a CVE reference for weak/blank/guessable passwords.
...
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
Joshua Drake
885545a94e
add http:bl scanner from mubix, fixes #3346
...
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 18:33:45 +00:00
HD Moore
3f7809ca5a
Patch to fix vuln reporting by swtornio
...
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-18 18:55:36 +00:00
HD Moore
fb7a06b218
Correct typo, find coffee
...
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 20:03:35 +00:00
HD Moore
909eeefc8f
Change of plan, keep this as a single module
...
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:54:47 +00:00
HD Moore
37ffccde08
Rename this module for clarity
...
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:27:26 +00:00
HD Moore
8162d100fd
Add keywords
...
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:49:22 +00:00
HD Moore
e3f909cef9
Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers.
...
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:37:09 +00:00
HD Moore
26aca9d6ba
Swap some module locations, add loot and cred reporting
...
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 05:47:33 +00:00
HD Moore
9d5ac80cb5
Fix to work with IIS 7
...
git-svn-id: file:///home/svn/framework3/trunk@11254 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 16:22:04 +00:00
HD Moore
2a22713804
Fix up match
...
git-svn-id: file:///home/svn/framework3/trunk@11252 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 15:29:45 +00:00
James Lee
e673187895
don't do ErrorCode detection if the user specified one explicitly, fixes #3293
...
git-svn-id: file:///home/svn/framework3/trunk@11239 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-07 00:59:28 +00:00
Joshua Drake
26a9fe6fc7
add some missing CVE references
...
git-svn-id: file:///home/svn/framework3/trunk@11180 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-30 20:19:18 +00:00
Joshua Drake
b55633af60
update enum_delicious, fixes #3230
...
git-svn-id: file:///home/svn/framework3/trunk@11107 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-23 01:26:59 +00:00
Joshua Drake
f4d2af3e73
fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@11052 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-16 20:17:25 +00:00
Joshua Drake
25611afb6c
add sap businessobject modules from jabra, woot!
...
git-svn-id: file:///home/svn/framework3/trunk@11046 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-15 05:12:48 +00:00
Joshua Drake
32c26f18f3
style compliance fixes, set test exploits to manual rank, fix s/ranking/rank/ in some exploits
...
git-svn-id: file:///home/svn/framework3/trunk@11039 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-14 19:03:24 +00:00
HD Moore
dc5116f9df
Move the crawler mixin to an auxiliary
...
git-svn-id: file:///home/svn/framework3/trunk@11026 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-13 06:55:19 +00:00
HD Moore
f457ccb8f7
Add the crawler mixin and a sample form extractor crawler
...
git-svn-id: file:///home/svn/framework3/trunk@11025 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-13 06:40:56 +00:00
HD Moore
a12d9f8dbf
This patch adds detailed thread tracking across the metasploit framework, along with a new console command (threads) to manage these. This level of tracking is required to accurately monitor background tasks, assist with debugging, and kill orphaned threads.
...
git-svn-id: file:///home/svn/framework3/trunk@11003 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-12 06:19:49 +00:00
Joshua Drake
3992eb7ef8
Mass RE-update: fix all framework URL references
...
git-svn-id: file:///home/svn/framework3/trunk@10998 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-11 22:43:22 +00:00
Joshua Drake
9fc6f2f3a3
Mass update: fix all framework URL references
...
git-svn-id: file:///home/svn/framework3/trunk@10996 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-11 22:25:13 +00:00
cg
b3713f9d46
handle 302's, print error codes since its important
...
git-svn-id: file:///home/svn/framework3/trunk@10928 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-06 14:45:22 +00:00
Joshua Drake
dee671318e
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@10895 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-04 02:54:16 +00:00
cg
5421be199a
adobe xml inject aux module
...
git-svn-id: file:///home/svn/framework3/trunk@10894 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-04 02:11:31 +00:00
Joshua Drake
e78aa83021
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@10821 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-25 20:58:49 +00:00
Tod Beardsley
6f56086df9
See #2888 . Editing the title and description to reflect the multitude of Barracuda products affected by this module. Only three are actually listed specifically, but users can always refer to the OSVDB listing to get the complete list.
...
git-svn-id: file:///home/svn/framework3/trunk@10772 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-21 01:18:38 +00:00
Joshua Drake
04858c69fc
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@10758 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 22:54:19 +00:00
Joshua Drake
7c1d8c7d05
fix false negatives, slightly reworked, fixes #2888
...
git-svn-id: file:///home/svn/framework3/trunk@10751 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 21:55:19 +00:00
Joshua Drake
042e71c357
add ports/refs for ZDI-10-214
...
git-svn-id: file:///home/svn/framework3/trunk@10747 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 14:28:52 +00:00
Joshua Drake
9e6e29428a
add disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@10638 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-11 04:00:57 +00:00
HD Moore
06291bb78e
Clean up the barracuda module a bit (grammar and removal of the report_auth_info until its refactored)
...
git-svn-id: file:///home/svn/framework3/trunk@10631 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-10 17:45:30 +00:00
Joshua Drake
54133b79fd
add barracuda module from Tiago
...
git-svn-id: file:///home/svn/framework3/trunk@10627 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-10 01:42:26 +00:00
Joshua Drake
7c1dc98456
switch logic around, add some debug/verbose prints
...
git-svn-id: file:///home/svn/framework3/trunk@10478 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-25 18:14:54 +00:00
Patrick Webster
e6969ba30e
Fixed spelling mistake.
...
git-svn-id: file:///home/svn/framework3/trunk@10445 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-23 05:48:07 +00:00
Joshua Drake
4590844871
tons of indentation fixes, some other style tweaks
...
git-svn-id: file:///home/svn/framework3/trunk@10394 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-20 08:06:27 +00:00
James Lee
5f0cc946b1
document report_note a little better, and modify several modules to use it correctly. fixes #2568
...
git-svn-id: file:///home/svn/framework3/trunk@10377 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-19 22:25:56 +00:00
Mario Ceballos
9975827d22
updated module from Thomas Ring.
...
git-svn-id: file:///home/svn/framework3/trunk@10371 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-18 23:59:28 +00:00
Joshua Drake
5de3146533
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@10273 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-09 15:47:35 +00:00
cg
8cf89d7e05
fix a typo
...
git-svn-id: file:///home/svn/framework3/trunk@10211 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-01 01:57:22 +00:00
cg
6b1eb27ab5
put scanner modules in the scanner directory
...
git-svn-id: file:///home/svn/framework3/trunk@10210 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-01 01:49:06 +00:00
Tod Beardsley
6d6a547b34
Fixes #2412 . Adds a creds table, modifies the db_report_auth API, adds the db_creds and db_add_cred commands.
...
git-svn-id: file:///home/svn/framework3/trunk@10034 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-18 00:58:20 +00:00
Joshua Drake
acb82fa857
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@10010 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-13 23:11:14 +00:00
Joshua Drake
7a612cd6af
fix up vuln version info, fixes #2353
...
git-svn-id: file:///home/svn/framework3/trunk@9974 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-09 17:34:59 +00:00
Joshua Drake
f6033b9bd6
change some print_status to print_error, rename a few msft modules using msb convention
...
git-svn-id: file:///home/svn/framework3/trunk@9929 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 21:37:54 +00:00
Joshua Drake
8bbd1c3c7b
adds updated cert scanner from Thomas Ring, fixes #1752
...
git-svn-id: file:///home/svn/framework3/trunk@9837 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-15 19:23:05 +00:00
Joshua Drake
c1f74794eb
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9744 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-08 23:34:50 +00:00
Joshua Drake
4705998f6c
do not access res.code if res is nil, fixes #2184
...
git-svn-id: file:///home/svn/framework3/trunk@9726 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 19:52:05 +00:00
Joshua Drake
ea12f49bc7
fix type, thx xanda, fixes #2198
...
git-svn-id: file:///home/svn/framework3/trunk@9713 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 16:36:21 +00:00
Carlos Perez
684f604448
small fix
...
git-svn-id: file:///home/svn/framework3/trunk@9657 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:50:47 +00:00
Joshua Drake
0882838491
ensure binary mode when opening files, whitespace fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9653 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:33:07 +00:00
Joshua Drake
bcf61758d1
add scanner module from xanda, fixes #2164
...
git-svn-id: file:///home/svn/framework3/trunk@9645 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 20:09:08 +00:00
Joshua Drake
93b09648c7
add additional CVE reference, cleanup references
...
git-svn-id: file:///home/svn/framework3/trunk@9642 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 19:42:11 +00:00
Joshua Drake
2ddab423ce
commit updates from Tyler Krpata
...
git-svn-id: file:///home/svn/framework3/trunk@9630 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-27 07:15:17 +00:00
Joshua Drake
12fbdcd878
add http_fingerprint calls to modules that use various headers
...
git-svn-id: file:///home/svn/framework3/trunk@9627 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 20:53:12 +00:00
Joshua Drake
2ab5983e2a
more whitespace fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9626 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 19:49:23 +00:00
James Lee
f14b3221ca
move http version reporting into the HttpClient mixin
...
git-svn-id: file:///home/svn/framework3/trunk@9579 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 01:39:43 +00:00
Tod Beardsley
1874ce3ac3
Fixes typo and a to_s problem in AXIS LFI module.
...
git-svn-id: file:///home/svn/framework3/trunk@9572 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 20:42:41 +00:00
Joshua Drake
752905a777
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9571 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:53:52 +00:00
Joshua Drake
71fd2152aa
add jboss vuln scanner from Tyler Krpata
...
git-svn-id: file:///home/svn/framework3/trunk@9570 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:49:44 +00:00
Tod Beardsley
be6e0b3393
Fixes #1493 , applying patch provided by Vitor Moreira. Thanks a ton for the audit work!
...
git-svn-id: file:///home/svn/framework3/trunk@9550 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 14:03:53 +00:00
Steve Tornio
98b0de2c3f
add osvd ref
...
git-svn-id: file:///home/svn/framework3/trunk@9549 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 11:00:04 +00:00
Tod Beardsley
19596276ab
Adding nginx source disclosure aux module (CVE-2010-2263), contributed by Tiago Ferreira. Thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@9548 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-17 01:56:09 +00:00
Tod Beardsley
cb69b0c134
Fixes #2101 . Introduces a proper :skip_user, and adds better comment docs to auth_brute to describe the intended use of each return code.
...
git-svn-id: file:///home/svn/framework3/trunk@9529 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 19:10:15 +00:00
HD Moore
35630e3c17
Fix CVE references and invalid author entries
...
git-svn-id: file:///home/svn/framework3/trunk@9511 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-13 16:01:01 +00:00
Joshua Drake
698da3bdea
add CVE for cognos express
...
git-svn-id: file:///home/svn/framework3/trunk@9502 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:37:21 +00:00
Joshua Drake
5194476191
fix problem reported by Vitor Moreira, see #1493
...
git-svn-id: file:///home/svn/framework3/trunk@9501 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:15:50 +00:00
Joshua Drake
e32abab8dc
a HTTP -> an HTTP ( http://www.english-zone.com/grammar/a-anlessn.html )
...
git-svn-id: file:///home/svn/framework3/trunk@9488 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:12:05 +00:00
Joshua Drake
c62b62d35d
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9486 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 15:17:23 +00:00
Joshua Drake
d26ebfa365
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9476 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:31:21 +00:00
Steve Tornio
bccd9a4b94
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9472 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 14:14:02 +00:00
Tod Beardsley
744dcf9616
Adding attribution tage to axis LFI.
...
git-svn-id: file:///home/svn/framework3/trunk@9471 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:36:03 +00:00
Tod Beardsley
468aa07f48
Adding Axis LFI module, submitted by Tiago Ferreira. Thanks!
...
Also normalizing auth info for DB reporting.
git-svn-id: file:///home/svn/framework3/trunk@9470 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 13:32:27 +00:00
Tod Beardsley
6e98191bdd
Adding authentication brute forcer for Apache Axis2, submitted by Leandro Oliveira. Thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@9467 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 01:53:54 +00:00
Steve Tornio
3b8319a545
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9465 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:25:04 +00:00
Tod Beardsley
0e442ff74c
Adding Tomcat user enumeration module for CVE-2009-0580, submitted by Heyder Andrade. Thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@9464 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:15:49 +00:00
Steve Tornio
922d362fdc
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9463 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 21:10:08 +00:00
Tod Beardsley
9d1ace25ce
Adding BID and CVE to wordpress_login_enum
...
git-svn-id: file:///home/svn/framework3/trunk@9462 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:43:47 +00:00
Tod Beardsley
336a9bdb37
Adding Wordpress login brute forcer and account enumeration module, submitted by Tiago Ferreira. Thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@9461 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 20:37:56 +00:00
Tod Beardsley
1500858d2d
Fixes #2043 . Thanks Heyder!
...
git-svn-id: file:///home/svn/framework3/trunk@9453 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-08 21:14:19 +00:00
James Lee
d655521c93
Clarify description for USER_FILE and PASS_FILE
...
git-svn-id: file:///home/svn/framework3/trunk@9433 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:30:33 +00:00
James Lee
36041419f9
Clarify description for USER_FILE and PASS_FILE
...
git-svn-id: file:///home/svn/framework3/trunk@9432 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 23:26:41 +00:00
Joshua Drake
4d0a64fcd8
add additional references
...
git-svn-id: file:///home/svn/framework3/trunk@9429 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 16:34:13 +00:00
Joshua Drake
7824ab661a
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9412 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:25:29 +00:00
Joshua Drake
55f82f0b09
add open proxy detection aux from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@9411 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 18:18:00 +00:00
Mario Ceballos
ed79d649da
didn't know the default accounts where added. add the cognoss port.
...
git-svn-id: file:///home/svn/framework3/trunk@9382 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-31 17:16:50 +00:00
Joshua Drake
14a6a1b95f
another error message update, see #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9351 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:23 +00:00
Tod Beardsley
1a2be34a63
Fixes #2002 . Needed to work with some pipelining to get this all to work right, but it seems to function now pretty well -- if the target takes Basic, do basic, if the target takes NTLM, do NTLM. Should implement Digest too, but I don't think hardly anyone uses that.
...
git-svn-id: file:///home/svn/framework3/trunk@9346 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-22 17:58:01 +00:00
Tod Beardsley
e02fd71de9
See #2002 . Skip authentication schemes that we don't know how to do.
...
git-svn-id: file:///home/svn/framework3/trunk@9343 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 17:32:54 +00:00
Joshua Drake
793e6ddd52
tweak error message, see #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9342 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 15:38:07 +00:00
Joshua Drake
688c76f7a0
catch ConnectionError exception before it gets passed higher up, fixes #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9335 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:33:12 +00:00
James Lee
62fbc0ad5b
use empty strings instead of nil. fixes #1717
...
git-svn-id: file:///home/svn/framework3/trunk@9228 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 20:03:47 +00:00
Joshua Drake
4bc86e603e
fix a couple more silly regex mishaps
...
git-svn-id: file:///home/svn/framework3/trunk@9220 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-04 23:09:32 +00:00
Joshua Drake
0e72894e58
more cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@9212 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 17:13:09 +00:00
Joshua Drake
0ea6eca4bc
big module whitespace/formatting cleanup pass
...
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Tod Beardsley
08117ca000
Forcing :critical => true for report_auth_info
...
git-svn-id: file:///home/svn/framework3/trunk@9150 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 22:23:37 +00:00
Joshua Drake
a953c47cfb
remove carriage returns
...
git-svn-id: file:///home/svn/framework3/trunk@9140 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 18:29:24 +00:00
HD Moore
498c225555
If its required, it better have a valid default. Fixing
...
git-svn-id: file:///home/svn/framework3/trunk@9028 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 16:36:28 +00:00
HD Moore
ba12ddd280
Allow authbrute modules to use a single username/password in a sane way
...
git-svn-id: file:///home/svn/framework3/trunk@8945 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 23:52:43 +00:00
HD Moore
b0425f10cd
Cleanup some of the output
...
git-svn-id: file:///home/svn/framework3/trunk@8942 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 22:13:50 +00:00
HD Moore
cd71cfbad1
Handle buggy HTTP servers better
...
git-svn-id: file:///home/svn/framework3/trunk@8921 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 21:35:37 +00:00
James Lee
dd26a227ef
targ_host -> target_host
...
git-svn-id: file:///home/svn/framework3/trunk@8908 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:05:23 +00:00
HD Moore
af3ab0a260
Handle situations where any user/pass is allowed
...
git-svn-id: file:///home/svn/framework3/trunk@8904 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 21:11:00 +00:00
HD Moore
3a88909c06
Rename for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@8903 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:33:21 +00:00
HD Moore
aa1c65f4e6
Add a quick and dirty HTTP scanner
...
git-svn-id: file:///home/svn/framework3/trunk@8901 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:28:09 +00:00
Tod Beardsley
1458fbad54
Adds some fingerprinting to the tomcat manager login auxiliary module.
...
git-svn-id: file:///home/svn/framework3/trunk@8883 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 22:19:46 +00:00
Tod Beardsley
83d96d713c
Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently.
...
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 20:07:26 +00:00
HD Moore
9632f8251a
Move OS-level fingerprints out, report note-level fingerprints instead
...
git-svn-id: file:///home/svn/framework3/trunk@8869 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:09:04 +00:00
HD Moore
a35817f0cc
Store more information
...
git-svn-id: file:///home/svn/framework3/trunk@8742 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 13:52:39 +00:00
HD Moore
d5b85db27f
Fixes a false positive when the server always replies with 200 OK
...
git-svn-id: file:///home/svn/framework3/trunk@8740 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 05:26:33 +00:00
Tod Beardsley
5ce7b4d186
Pass this_cred for tomcat_mgr_login
...
git-svn-id: file:///home/svn/framework3/trunk@8730 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-05 20:05:01 +00:00
Tod Beardsley
a5e187bd69
Add the ability to slow down brute force sessions.
...
git-svn-id: file:///home/svn/framework3/trunk@8719 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 23:29:26 +00:00
Tod Beardsley
e2af2f9ab9
Again.
...
git-svn-id: file:///home/svn/framework3/trunk@8680 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:37 +00:00
Tod Beardsley
e1a02d602d
Fixing up the tomcat login scanner.
...
git-svn-id: file:///home/svn/framework3/trunk@8679 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:20 +00:00
Joshua Drake
e1c5334d56
add register_autofilter_ports
...
git-svn-id: file:///home/svn/framework3/trunk@8652 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 01:53:02 +00:00
James Lee
7b7f3de307
allow a single user/pass
...
git-svn-id: file:///home/svn/framework3/trunk@8646 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 22:45:33 +00:00
James Lee
dfe9698cb3
stop bruting if the page isn't there
...
git-svn-id: file:///home/svn/framework3/trunk@8641 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 20:50:46 +00:00
Steve Tornio
4e7f242230
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8636 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 12:03:44 +00:00
Joshua Drake
ff703cdb73
fix whitespace and add keywords
...
git-svn-id: file:///home/svn/framework3/trunk@8633 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 00:13:56 +00:00
cg
aa3836dbc2
vmware directory traversal module
...
git-svn-id: file:///home/svn/framework3/trunk@8632 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-24 23:58:51 +00:00
HD Moore
0ba3d18032
Updated the report format to match new syntax
...
git-svn-id: file:///home/svn/framework3/trunk@8566 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-20 05:50:05 +00:00
Tod Beardsley
f58558f605
Updated all the brute force login modules to record successful logins and avoid duplicating credentials.
...
git-svn-id: file:///home/svn/framework3/trunk@8553 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 19:04:51 +00:00
Joshua Drake
534d56cdd8
adjust text wrap
...
git-svn-id: file:///home/svn/framework3/trunk@8550 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-18 18:04:11 +00:00
HD Moore
993ba44fcf
SMB updates, better reporting of SSL status for HTTP
...
git-svn-id: file:///home/svn/framework3/trunk@8459 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-11 22:37:00 +00:00
et
36c61ff5ed
Fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@8423 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-09 01:10:29 +00:00
HD Moore
79c68e3784
Fix the description
...
git-svn-id: file:///home/svn/framework3/trunk@8406 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-08 13:53:50 +00:00
James Lee
509b2aab3a
use new api
...
git-svn-id: file:///home/svn/framework3/trunk@8376 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-05 23:00:51 +00:00
Joshua Drake
4f9490f63f
add default username/passwords for IBM Cognos Express Tomcat Manager
...
git-svn-id: file:///home/svn/framework3/trunk@8368 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-04 20:34:55 +00:00
James Lee
1ee79780e9
fix the http option scanner
...
git-svn-id: file:///home/svn/framework3/trunk@8355 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-02 23:11:18 +00:00
et
edc64f824e
Added trace.axd scanner by C4an
...
git-svn-id: file:///home/svn/framework3/trunk@8337 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 02:49:18 +00:00
et
7964d0f38a
Renaming wmap modules
...
git-svn-id: file:///home/svn/framework3/trunk@8335 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-01 02:12:30 +00:00
et
7e5793af2a
New enumeration modules by Mubix
...
git-svn-id: file:///home/svn/framework3/trunk@8331 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-31 00:52:51 +00:00
Joshua Drake
4bb3adc397
move new tomcat_mgr_login scanner into scanner/http
...
git-svn-id: file:///home/svn/framework3/trunk@8202 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-22 20:33:11 +00:00
HD Moore
0b7df74615
Rename modules to be consistent with the new convention
...
git-svn-id: file:///home/svn/framework3/trunk@8129 4d416f70-5f16-0410-b530-b9f4589650da
2010-01-15 02:55:08 +00:00
Joshua Drake
2283e029db
crossing fingers, big cr removal batch
...
git-svn-id: file:///home/svn/framework3/trunk@8038 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-30 22:24:22 +00:00
HD Moore
131462fa8b
Fix service name reporting
...
git-svn-id: file:///home/svn/framework3/trunk@7999 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-28 00:37:56 +00:00
HD Moore
166489ad5f
Update a few scanner modules to write to the database properly
...
git-svn-id: file:///home/svn/framework3/trunk@7992 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-27 07:30:50 +00:00
HD Moore
1cc9fa7dad
Print the site name for the 404 message
...
git-svn-id: file:///home/svn/framework3/trunk@7980 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-26 05:53:29 +00:00
HD Moore
3d421cfefd
SQLMap update and consitency fix for Bernardo's name
...
git-svn-id: file:///home/svn/framework3/trunk@7979 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-26 05:24:37 +00:00
et
20222a44ea
Fix. Thats next step
...
git-svn-id: file:///home/svn/framework3/trunk@7847 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:58:57 +00:00
et
d6ee7c58ce
New wmap moule for generic checks
...
git-svn-id: file:///home/svn/framework3/trunk@7846 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:49:44 +00:00
HD Moore
c287573213
A few more wmap cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@7839 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 06:56:01 +00:00
HD Moore
1029ecd7f8
Cleanup wmap, add the missing database tables back, rename to have a wmap_prefix
...
git-svn-id: file:///home/svn/framework3/trunk@7837 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 05:24:48 +00:00
et
75ca12439e
Added new testing options
...
git-svn-id: file:///home/svn/framework3/trunk@7638 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-29 04:00:26 +00:00
et
6e975b57ee
Include Auxiliary Report
...
git-svn-id: file:///home/svn/framework3/trunk@7629 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-26 20:39:15 +00:00
et
5b81d85447
Replaced reporting to use notes
...
git-svn-id: file:///home/svn/framework3/trunk@7605 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-25 06:08:28 +00:00
et
e354c8dbcc
Multiple headers handling bug fixes
...
git-svn-id: file:///home/svn/framework3/trunk@7588 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-24 05:27:11 +00:00
et
f70cf1e74f
Make EXT optional so other dictionaries with files containing extensions can be used
...
git-svn-id: file:///home/svn/framework3/trunk@7583 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-23 03:01:46 +00:00
HD Moore
61e233df91
Keywords on all modules, plugins, and scripts
...
git-svn-id: file:///home/svn/framework3/trunk@7550 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-17 00:05:19 +00:00
et
7b832b9d3e
Wmap checking for vulnerabilities and launching exploits
...
git-svn-id: file:///home/svn/framework3/trunk@7399 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-07 21:55:33 +00:00
HD Moore
f38b43f236
Specify the language as none
...
git-svn-id: file:///home/svn/framework3/trunk@7321 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-02 17:10:06 +00:00
et
fdce355f3b
Option NoDetailMessages added
...
git-svn-id: file:///home/svn/framework3/trunk@7313 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-01 01:09:53 +00:00
et
fbbbde55f2
Fix #443 . This module should not be use as a directory scanner as there are more suitable modules for such task. This specific module is only made to test a specific vulnerability and will be mode to a per directory check instead of trying to identify directories requiring authentication to be bypassed
...
git-svn-id: file:///home/svn/framework3/trunk@7312 4d416f70-5f16-0410-b530-b9f4589650da
2009-11-01 00:59:41 +00:00
HD Moore
5e137e92fd
Fixes #381 . To scan for TLSv1 only services, set SSLVersion TLS1
...
git-svn-id: file:///home/svn/framework3/trunk@7282 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-26 19:48:15 +00:00
HD Moore
b38a74c961
Another mega-patch from Yoann Guillot: fixes warnings generated by method calls with a space betwee the method and the parans, corrects a problem with the alpha encoders that causes them to overwrite the allowed charset, hardcodes the metasm output size of some modules in order to reduce load time, more to come
...
git-svn-id: file:///home/svn/framework3/trunk@7246 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-25 16:40:19 +00:00
HD Moore
03b753fd12
Fixes #360 . Report each path individually
...
git-svn-id: file:///home/svn/framework3/trunk@7207 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-19 10:55:11 +00:00
et
5524e9aae2
Fixed #370 . Test if uploaded file exists
...
git-svn-id: file:///home/svn/framework3/trunk@7203 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-19 00:02:54 +00:00
et
6ce7011cba
Fixed #369 . Added RHOST info and second round to determine error page
...
git-svn-id: file:///home/svn/framework3/trunk@7202 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 23:26:58 +00:00
et
6a818c0c64
Fixed #371 . Included target information
...
git-svn-id: file:///home/svn/framework3/trunk@7194 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:51:47 +00:00
et
6cfd1675c4
Fixed #375 . Removed the module as frontpage_login provides same information
...
git-svn-id: file:///home/svn/framework3/trunk@7193 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:45:30 +00:00
et
c501187ca4
Fixed typo #368 .
...
git-svn-id: file:///home/svn/framework3/trunk@7192 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:39:40 +00:00
et
bfd359f0d8
Fixed #367 . Adder error code detection and signatures
...
git-svn-id: file:///home/svn/framework3/trunk@7191 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:37:40 +00:00
et
f085e7cf59
Remove generic modules at this time, until proxy is created and then it can be proxy modules.
...
git-svn-id: file:///home/svn/framework3/trunk@7190 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:23:33 +00:00
et
249cc10cf5
Fixed #365 . Added signatures and error code detection
...
git-svn-id: file:///home/svn/framework3/trunk@7189 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:18:22 +00:00
et
814675f952
Changed variable name for consistency purposes
...
git-svn-id: file:///home/svn/framework3/trunk@7188 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 20:01:43 +00:00
et
dc415c76ca
Fixes #364 . Added error message detection and signatures
...
git-svn-id: file:///home/svn/framework3/trunk@7187 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 19:46:30 +00:00
et
bee78d3b51
First round of fixes for wmap modules
...
git-svn-id: file:///home/svn/framework3/trunk@7181 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-18 07:10:32 +00:00
et
09ec91d9bf
Use name convention
...
git-svn-id: file:///home/svn/framework3/trunk@7146 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 23:07:34 +00:00
et
c14bd99aff
Base for an error based sql inj. scanner
...
git-svn-id: file:///home/svn/framework3/trunk@7145 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:52:54 +00:00
et
95bf9f84f7
Basic robots scanner for wmap
...
git-svn-id: file:///home/svn/framework3/trunk@7144 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:48:25 +00:00
et
97ae32a318
Minor display changes
...
git-svn-id: file:///home/svn/framework3/trunk@7143 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 22:40:57 +00:00
et
ec00f69e66
Subversion scanner
...
git-svn-id: file:///home/svn/framework3/trunk@7142 4d416f70-5f16-0410-b530-b9f4589650da
2009-10-11 20:49:34 +00:00
cg
56d4345830
updated options module
...
git-svn-id: file:///home/svn/framework3/trunk@7078 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-27 22:42:24 +00:00
HD Moore
5972666f63
See #339 . Massive cleanup of author names, make them consistent across modules
...
git-svn-id: file:///home/svn/framework3/trunk@7075 4d416f70-5f16-0410-b530-b9f4589650da
2009-09-27 21:30:45 +00:00
et
d0289671f6
Basic generic wmap modules
...
git-svn-id: file:///home/svn/framework3/trunk@6948 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-10 00:04:01 +00:00
et
87d59b4512
More webdav modules to grab information
...
git-svn-id: file:///home/svn/framework3/trunk@6947 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-10 00:01:38 +00:00
et
a92fa0b424
Add test case
...
git-svn-id: file:///home/svn/framework3/trunk@6946 4d416f70-5f16-0410-b530-b9f4589650da
2009-08-09 23:59:44 +00:00
Patrick Webster
9080dd1f0d
Added references and MSB to unicode bypass modules.
...
git-svn-id: file:///home/svn/framework3/trunk@6914 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-28 07:39:34 +00:00
James Lee
529ded22ae
reverting last commit; somebody didn't cross their fingers
...
git-svn-id: file:///home/svn/framework3/trunk@6847 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-19 20:48:47 +00:00
James Lee
c3dc1ecb55
reintegrate browser_autopwn into trunk; cross your fingers and hope this works
...
git-svn-id: file:///home/svn/framework3/trunk@6846 4d416f70-5f16-0410-b530-b9f4589650da
2009-07-19 17:27:36 +00:00
HD Moore
4a421dbb33
Fix some busted code in the frontpage_login module, thanks to bill.e.ghote
...
git-svn-id: file:///home/svn/framework3/trunk@6691 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-21 06:30:55 +00:00
HD Moore
a113343d00
Fix a broken next
...
git-svn-id: file:///home/svn/framework3/trunk@6649 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-14 15:02:32 +00:00
HD Moore
314d1a27a2
Adds a new module from nebulous for checking SSL expiry
...
git-svn-id: file:///home/svn/framework3/trunk@6636 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-09 21:12:48 +00:00
et
fdff151442
More threading
...
git-svn-id: file:///home/svn/framework3/trunk@6626 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:52:22 +00:00
et
65c3f5981d
just rename it
...
git-svn-id: file:///home/svn/framework3/trunk@6625 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:27:23 +00:00
et
07bd36232f
minor fixes
...
git-svn-id: file:///home/svn/framework3/trunk@6624 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-04 03:21:22 +00:00
et
509233262c
Advanced options to remove detail messages and handle multithreads
...
git-svn-id: file:///home/svn/framework3/trunk@6622 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-03 05:49:38 +00:00
HD Moore
16806be1a7
Adds threading
...
git-svn-id: file:///home/svn/framework3/trunk@6621 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-03 05:19:42 +00:00
et
36a21436ff
Fix DAV header match. Applied patch by grutz
...
git-svn-id: file:///home/svn/framework3/trunk@6610 4d416f70-5f16-0410-b530-b9f4589650da
2009-06-02 04:43:57 +00:00
et
ee70866e08
Small fix on authenticated dir check. Thanks Rhys Kidd
...
git-svn-id: file:///home/svn/framework3/trunk@6603 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-31 01:34:04 +00:00
et
166e1ebf2c
Added simplified version of webdav unicode bypass scanner
...
git-svn-id: file:///home/svn/framework3/trunk@6589 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-28 03:30:52 +00:00
et
e1c5c72c82
Added check for authenticated directories
...
git-svn-id: file:///home/svn/framework3/trunk@6588 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-28 03:27:25 +00:00
HD Moore
b6ab8ffd21
Fix up the unicoding
...
git-svn-id: file:///home/svn/framework3/trunk@6580 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-25 20:21:20 +00:00
et
823fcc30d1
Added WebDAV scanner
...
git-svn-id: file:///home/svn/framework3/trunk@6576 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-23 01:55:34 +00:00
HD Moore
d434be3ae8
Patch from Erik Fichtner to enable unicode overlong encoding
...
git-svn-id: file:///home/svn/framework3/trunk@6575 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-22 21:33:20 +00:00
et
f8cac0cedf
Fix proxy issue. Added datastore PROXIES to the parameters. Thanks spinbad
...
git-svn-id: file:///home/svn/framework3/trunk@6564 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-19 01:40:58 +00:00
HD Moore
8f5dc1305e
Fix bad variable, reported by bill.e.ghote
...
git-svn-id: file:///home/svn/framework3/trunk@6563 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-18 18:02:21 +00:00
Patrick Webster
79c7abba8e
Added wmap_dir_webdav_unicode_bypass.rb to detect vulnerable IIS6 WebDAV Unicode bypass folders.
...
git-svn-id: file:///home/svn/framework3/trunk@6562 4d416f70-5f16-0410-b530-b9f4589650da
2009-05-18 03:57:13 +00:00
Patrick Webster
4426bc2df0
Added SOAP brute forcer module. YMMV.
...
git-svn-id: file:///home/svn/framework3/trunk@6495 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-23 03:16:29 +00:00
cg
0ea4bec847
updated for db usage
...
git-svn-id: file:///home/svn/framework3/trunk@6485 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-15 04:15:25 +00:00
kris
37c2e301ed
replacing defunct framework URL in header comments in most modules and pcap_log
...
git-svn-id: file:///home/svn/framework3/trunk@6479 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-13 14:33:26 +00:00
et
0c859dc35e
Minor fixes regarding target_host handling
...
git-svn-id: file:///home/svn/framework3/trunk@6477 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-12 02:00:50 +00:00
kris
cc78d9a59c
turn off svn:executable in modules
...
git-svn-id: file:///home/svn/framework3/trunk@6470 4d416f70-5f16-0410-b530-b9f4589650da
2009-04-08 20:04:25 +00:00
et
cf424edd73
fixed error case for ssl module
...
git-svn-id: file:///home/svn/framework3/trunk@6449 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-31 00:43:41 +00:00
HD Moore
ae21a15dc4
Make these a little future-compatible with ruby 1.9
...
git-svn-id: file:///home/svn/framework3/trunk@6443 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-30 02:55:48 +00:00
HD Moore
3d6a0bab52
Fix up the version/options modules, make wmap_base_url display the vhost and use the host/port separator correctly
...
git-svn-id: file:///home/svn/framework3/trunk@6414 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 17:57:12 +00:00
HD Moore
89ad4df087
Fix WMAP modules to use the new scanner api; add wmap_base_url as a shorthand (extend in the future to do VHOST as well), general cosmetic cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@6413 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 17:45:14 +00:00
HD Moore
eccfcdfced
Sets svn keywords on modules missing it, tweaks the emailer module
...
git-svn-id: file:///home/svn/framework3/trunk@6407 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-28 06:03:35 +00:00
et
07b3f614ce
New plain HTTP XPath 1.0 blind injection module
...
git-svn-id: file:///home/svn/framework3/trunk@6355 4d416f70-5f16-0410-b530-b9f4589650da
2009-03-20 03:53:02 +00:00
cg
9b210702a3
add scanner functionality to oracle_version.rb and removed some comments from options.rb
...
git-svn-id: file:///home/svn/framework3/trunk@6088 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-08 01:57:28 +00:00
et
e7dda0000b
Wmap SSL module renamed and updated to check for MD5 signature algorithm.
...
git-svn-id: file:///home/svn/framework3/trunk@6062 4d416f70-5f16-0410-b530-b9f4589650da
2009-01-03 05:20:20 +00:00
kris
248f1e9fc3
Remove "#{xxx.to_s}" redundancies ('s/\(#{[^}]*\)\.to_s}/\1}/g')
...
git-svn-id: file:///home/svn/framework3/trunk@6022 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-19 07:11:08 +00:00
et
daf317c25b
Added wmap generic email extractor as an example of direct access to the database.
...
git-svn-id: file:///home/svn/framework3/trunk@6003 4d416f70-5f16-0410-b530-b9f4589650da
2008-12-08 00:51:16 +00:00
et
3e19245054
Fixed handling of root website directory. Minor presentation fixes in test modules
...
git-svn-id: file:///home/svn/framework3/trunk@5987 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-30 22:41:09 +00:00
kris
0c0b171be4
use OptInt for numeric options
...
git-svn-id: file:///home/svn/framework3/trunk@5979 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-24 18:42:59 +00:00
et
110e7be0e9
Added wmap OPTIONS module by Chris Gates
...
git-svn-id: file:///home/svn/framework3/trunk@5977 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-23 19:42:42 +00:00
et
9144789a9b
Added module authentication verb bypass
...
git-svn-id: file:///home/svn/framework3/trunk@5976 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-22 04:34:59 +00:00
et
c92a64e687
Added module to test for file copies
...
git-svn-id: file:///home/svn/framework3/trunk@5975 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-22 04:34:00 +00:00
HD Moore
cef75433ec
Fix non-404 errors
...
git-svn-id: file:///home/svn/framework3/trunk@5909 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:59:52 +00:00
HD Moore
af686334c9
Fix ecode processing
...
git-svn-id: file:///home/svn/framework3/trunk@5908 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:51:21 +00:00
HD Moore
e90c534500
Changes to the directory scanner
...
git-svn-id: file:///home/svn/framework3/trunk@5907 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 03:10:03 +00:00
et
4cbe6f975a
Added new modules for file detection based on the name of the path directory
...
git-svn-id: file:///home/svn/framework3/trunk@5905 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 02:26:09 +00:00
et
2a1536d8d6
Fixed reporting variable wmap dir listing module
...
git-svn-id: file:///home/svn/framework3/trunk@5901 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-13 01:59:51 +00:00
HD Moore
07f087b969
Switch to the new exception format
...
git-svn-id: file:///home/svn/framework3/trunk@5880 4d416f70-5f16-0410-b530-b9f4589650da
2008-11-11 05:12:52 +00:00