d2ed78570a
Land #10364 , Handle nil for shell_reverse_tcp_ipv6
...
This makes things like `msfvenom --list-options` or `info` when options
are not set work.
2018-07-23 14:02:14 -05:00
086af80509
Specify address family in shell_reverse_tcp_ipv6
2018-07-23 13:39:40 -05:00
0c906ed8d3
Update cached payload sizes
2018-07-19 17:58:45 -05:00
658267849b
deconflict the method names in mix-ins
2018-07-19 17:01:40 -05:00
3dda19f3c6
Update documentation in cmd/unix/reverse_bash
...
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=146464
https://bugs.launchpad.net/ubuntu/+source/bash/+bug/215034
2018-07-12 13:29:33 -05:00
2a31958f6a
Bump metasploit_payloads-mettle to version 0.4.1
2018-06-27 17:55:08 -04:00
25b9f97a32
Update cached payload size update to support IPv6
2018-06-27 16:26:41 -05:00
0d9eb5b662
Clean up ipv6 address assembly packing
2018-06-13 15:31:49 -05:00
d6f0673840
Fix indentation
2018-06-13 15:27:18 -05:00
402edba028
Remove automatic fork
...
The PrependFork option works just as well
2018-06-13 15:26:22 -05:00
e8a7a7e76f
first commit
2018-06-13 21:29:09 +02:00
57e3bbdba4
update payload cached sizes
2018-06-11 16:19:58 +08:00
908857b563
Land #10036 , reverse_bash_telnet_ssl fixes
2018-05-16 04:10:36 -05:00
3810803276
Land #10035 , awk payload improvements
2018-05-16 04:10:21 -05:00
6723de2659
Land #10031 , zsh payload improvements
2018-05-16 04:10:00 -05:00
6abd0d068a
Nix explicit return
2018-05-16 04:06:58 -05:00
3ea4548343
Fix PayloadType in reverse_bash_telnet_ssl
...
It should not be cmd_bash, since it doesn't rely on being in bash.
2018-05-15 20:50:30 -05:00
49bfa3b707
Update CachedSize
2018-05-15 20:07:14 -05:00
a19c5f723b
Improve bind_awk payload (credit @bcoles)
2018-05-15 20:01:57 -05:00
5d229abf72
Improve reverse_awk payload (credit @bcoles)
2018-05-15 20:01:32 -05:00
cc35975164
Update CachedSize
2018-05-15 19:56:55 -05:00
1100899ccb
Change link to HTTPS
2018-05-15 19:56:42 -05:00
3ccfc27096
Redirect stderr as well
2018-05-15 19:51:10 -05:00
3f39475579
Update CachedSize
2018-05-15 19:42:39 -05:00
b58dc3bf5e
Refactor zsh payloads
...
This also fixes an oversight where the payloads would fail outside zsh.
2018-05-15 19:26:19 -05:00
49904e0377
Add an reverse shell payload by zsh through redirection operations
2018-05-15 22:43:37 +08:00
53844cb24a
Add an reverse shell payload by ksh(the korn shell)
2018-05-15 22:36:47 +08:00
4216d06ffb
fix #9963 , update x64 linux reverse_tcp stager cached size
2018-05-05 16:30:45 +08:00
34f8a9a5ee
fix continuation warnings in payloads
2018-05-01 04:57:42 -05:00
f3fa9af098
fixup osx sizes
2018-04-30 15:21:23 -05:00
8fd7448e48
bump payloads, ipv6 channel fixes
2018-04-27 14:18:54 -05:00
b55eb9b8f2
bump payloads, add Python UDP channel support
...
This pulls in Python UDP channel support from
https://github.com/rapid7/metasploit-payloads/pull/276
2018-04-07 14:21:30 -05:00
d9039d43ef
Land #9734 , Remove unwanted 'pop RAX' from windows/x64/reverse_(win)http
2018-04-03 14:23:41 -05:00
7a76593e1c
update payload size cause whitespace is more exact
2018-03-27 14:38:17 -05:00
b865d4fee2
Fix CachedSize for windows/x64/reverse_(win)http(s) payloads
2018-03-20 11:27:43 +01:00
4801021aba
Land #9613 , add bind_named_pipe x86
2018-03-17 15:53:06 -05:00
39e2cddf70
update python payload cached size
2018-03-13 15:30:54 +08:00
26481d503e
one more payload size adjustment
2018-03-07 18:48:10 -06:00
b977b1c951
bump payload sizes
2018-03-07 17:41:58 -06:00
eac7cc63fc
add missing payload tests
2018-03-04 17:54:52 -06:00
0d07d44b14
ReLand #9565 , Reverse TCP x64 RC4 via max3raza's rc4_x64 asm
...
This reverts commit 7964868fcd
2018-03-02 16:09:52 -06:00
7964868fcd
Revert "Land #9565 , Reverse TCP x64 RC4 via max3raza's rc4_x64 asm"
...
This reverts commit fcc579377f95cd149378
2018-03-02 08:29:48 -06:00
fcc579377f
Land #9565 , Reverse TCP x64 RC4 via max3raza's rc4_x64 asm
2018-03-02 07:34:45 -06:00
35b66d0e60
added payload tests
2018-02-27 19:24:51 -07:00
e19a071910
add bind_named_pipe x86
2018-02-22 19:03:37 -07:00
99e278fa29
Land #9584 , Fix reverse_php_ssl infinite loop
2018-02-22 07:03:52 -06:00
77b3673e38
Fix reverse_php_ssl infinite loop
2018-02-22 08:42:54 +00:00
05e002e3c5
Land #9366 , Add x64 staged Meterpreter for macOS
2018-02-19 23:15:03 -06:00
354eb4092a
Reverse TCP x64 RC4 via max3raza's rc4_x64 asm
...
To round out the work done by mihi for x86 stages back in the day,
this PR provides x64 Windows stage encryption in RC4 via assembly
written/modified by max3raza during adjacent work on DNS tunneled
transport.
Stage encryption differs from encoding in that there is no decoder
stub or key materiel carried with the stage which can be used by
defensive systems to decode and identify the contents. Persistence
payloads, oob-delivered stage0, and other contexts benefit heavily
from this as their subsequent stage is difficult to detect/identify,
and the chance of accidental execution of the wrong payload/stage
is drastically reduced if separate keys are in play for individual
targets - acquiring the wrong stage will result in decryption
failure and prevent further execution.
For historical context, all of the RC4 stagers implement in-place
decryption via stage0 for the contents of stage1 using the provided
passphrase converted to a key and embedded in stage0 as part of the
payload.
Testing:
In-house testing with Max - we got sessions, loaded extensions.
Notes:
All credit for the work goes to Max3raza - big ups for getting
this knocked out.
2018-02-16 05:15:05 -05:00
d28f6888b2
bump payloads, include bind_named_pipe support
2018-02-15 17:37:33 -06:00
Adam Cammack
William Vu
bwatters-r7
Matthew Kienow
Matteo Malvica
Tim W
WangYihang
Brent Cook
Jeffrey Martin
Summus6
UserExistsError
Trevor Sibanda
RageLtMan