a8ea014f25
MDM cache update
2012-08-15 10:16:47 -05:00
33c74c97e2
Add Opt::Proxies and opthash[:proxies] to ssh mods
2012-08-12 16:23:22 -04:00
c9690033c7
This commit allows ssh_login to use socks proxies. Net::SSH::Transport::Session could take a :proxy option,
...
but it expects a factory object not a string, when setting :proxy => datastore['Proxies'] user got:
"Auxiliary failed: NoMethodError private method `open' called for \"socks4:localhost:1080\":String."
VALID_OPTIONS in ssh.rb now takes :proxies option which is passed to the Rex socket in
Net::SSH::Transport::Session.new.
Testing: block all outgoing to SSH server, try to connect with a proxy. Try with :proxy option,
then merge this pull request and try again.
2012-08-12 16:01:52 -04:00
1485f74670
Out of 4.4.0, and into 4.5.0-dev
2012-08-07 09:53:01 -05:00
1d5af3d825
Alex' patch to Rex::Oui
2012-08-06 21:34:36 -04:00
58ce6fbac4
Adding author info for juan
2012-08-06 08:55:54 -05:00
4050633c18
Squashed commit of the following:
...
commit 665f3f5b993dfa48db817f6138ac356919af37fc
Author: Chris Lennert <calennert@gmail.com>
Date: Wed Aug 1 19:44:14 2012 -0500
Two corrections to NetGetJoinInformation args
[Closes #661 ]
2012-08-03 13:58:42 -06:00
66c5d8b617
Refactor reverse_*http(s) handlers
...
De-dups a whole bunch of copy pasted code. Should be a bit easier to
maintain now.
2012-08-03 13:27:40 -06:00
bf9d59003c
Always start a session when CONN comes in
...
Also gets rid of the conn_ids array, which was never pruned (and
without some extra gymnastics in meterpreter/client.rb *can't* be) when
handler URLs were removed.
2012-08-02 18:58:58 -06:00
832f47d467
Merge branch 'master' into jtr_seeding
2012-08-01 15:04:31 -05:00
fa2b0c26bb
Fixes password seeding for JtR modules
2012-08-01 14:15:51 -05:00
46312d9035
Add a comment describing function prototype
2012-08-01 00:28:18 -06:00
c25ebabce0
Fix up incompatibility with MaxDataSize (thanks @mubix)
2012-07-23 13:40:41 -05:00
d56ccc69b9
Forgot to git add client.rb
2012-07-22 20:13:57 -04:00
70017511f5
Implement proto/smb/client find_next for find_files
...
Squashed commit of the following:
commit b5370b24d48a0b79d13cff465ef1fe53738754d0
Author: Rob Fuller <jd.mubix@gmail.com>
Date: Sat Jul 21 01:52:31 2012 -0400
add some documentation for smb client
commit 92438f515ef272337ce02b6deebb35f62a50f0a3
Author: Rob Fuller <jd.mubix@gmail.com>
Date: Fri Jul 20 03:09:27 2012 -0400
adds find_next to find_files
[Closes #627 ]
2012-07-21 00:03:19 -06:00
99aa78a371
Tab complete LHOST based on RHOST if it is set
2012-07-20 23:10:22 -06:00
df7af9df40
Fix an errant bitwise-and used as bool
...
Squashed commit of the following:
commit 748ab76d71422e5909dc29403fd24ceb025504b5
Author: Rob Fuller <jd.mubix@gmail.com>
Date: Fri Jul 20 02:50:50 2012 -0400
fixes dir/file check
[Closes #626 ]
2012-07-20 16:29:53 -06:00
9d16a1a472
Fix some SMB operations that dont like this value
2012-07-20 16:25:00 -05:00
e200f43183
Squashed commit of the following:
...
commit 1de16b41c8808df2919706eaa8cc89ae44d9b591
Author: m m <gaspmat@gmail.com>
Date: Mon Jul 9 21:55:32 2012 +0200
typo
commit a396b55018175f3eb2a83baecb1ec601cc99eef4
Author: m m <gaspmat@gmail.com>
Date: Mon Jul 9 21:51:32 2012 +0200
various posix meterpreter bugfixes
[Closes #584 ]
[FIXRM #7042 ]
2012-07-19 15:56:47 -06:00
c1cf71c4e9
Remove debugging load()
2012-07-18 11:02:21 -06:00
5110aad0f3
Add better docs on some File methods
2012-07-17 17:32:27 -06:00
c9ccb02aae
Clean up rdoc
2012-07-17 17:32:27 -06:00
f4547527a8
Merge branch 'omg-post-exploits' of https://github.com/jlee-r7/metasploit-framework
2012-07-17 17:43:40 -05:00
62fe00866d
Add comments about what the block is for
2012-07-17 16:09:17 -06:00
6b0196eccc
Add a require for File in Common
2012-07-17 15:48:06 -06:00
a1cfb32f93
Fix a typo that breaks post param padding
...
Corner case and doesn't really *break* things, just means you end up
with one big param instead of multiple due to missing ampersands.
2012-07-17 12:29:28 -06:00
fbe0cb7471
Merge branch 'post_win_gather_creds_gpp_pass' of https://github.com/Meatballs1/metasploit-framework into Meatballs1-post_win_gather_creds_gpp_pass
2012-07-17 08:28:19 -05:00
c887e0aaff
Re-add AFP changes due to mangled merge
2012-07-17 00:42:49 -05:00
b6d05c77ca
No, really. Bump
2012-07-17 00:36:19 -05:00
f62e0b1cca
AFP fixes and JTR typo fix
2012-07-16 21:45:45 -05:00
7e50f91d59
Bump
2012-07-16 21:02:40 -05:00
bc2edeace2
Cleanup AFP module output
2012-07-16 21:02:40 -05:00
efe478f847
Merge branch 'master' into omg-post-exploits
2012-07-16 09:20:23 -06:00
7091d1c65b
Add an exploit for sock_sendpage
...
Unfortunately, adds a dep on bionic for runtime compilation.
Gets ring0, sets the (res)uid to 0 and jumps to the payload. Still some
payload issues because linux stagers don't mprotect(2) the buffer they
read(2) into. Single payloads work fine, though.
Also cleans up and improves local exploits' ability to compile C.
[SEERM #3038 ]
2012-07-15 20:29:48 -06:00
4509c11916
Fingerprint dd-wrt even when auth is required
2012-07-15 21:21:13 -05:00
f111ae097e
Bail early if the user did not configure an injection parameter
2012-07-15 21:14:39 -05:00
0230ef60f6
Cosmetic
2012-07-15 15:46:54 -05:00
d6c6a3d0c5
Correct an issue with payload recalc during iteration
2012-07-15 15:45:25 -05:00
2254086dbe
Replace event handler with a straightforward filter
2012-07-11 03:00:44 -05:00
975d8004d3
Remove protected operator, not useful
2012-07-11 02:08:56 -05:00
430351fe79
Better handle of module cache when db_connect is run manually
2012-07-10 23:56:48 -05:00
a7d1a61af2
Handle non-failure module exits as well
2012-07-10 19:55:43 -05:00
64e8956319
More small tweaks to import/export of attempts
2012-07-10 00:18:06 -05:00
25fee46020
Quick typo fix
2012-07-09 23:31:53 -05:00
6c977535d0
Fix up attempt/detail import/export structure
2012-07-09 22:47:05 -05:00
bfde053cf4
Correct a flaw in vuln_attempt/vuln_detail import
2012-07-09 22:28:42 -05:00
f50843e0b7
Adding http_ntlmrelay module
2012-07-09 22:56:24 -04:00
b817070545
Merge branch 'mac_oui' of https://github.com/alexmaloteaux/metasploit-framework into alexmaloteaux-mac_oui
2012-07-09 20:14:25 -05:00
e509c72574
better handle company name
2012-07-10 00:24:30 +01:00
e949b8c2c8
mac_oui
2012-07-09 23:46:57 +01:00
36d27242c7
allow reverse tcp with proxies
2012-07-09 23:05:09 +02:00
c8c3c0e3e4
Correct an issue with HTTP response header parsing
2012-07-09 10:22:12 -07:00
8d9186748f
Fix logic fail
2012-07-08 20:46:37 -06:00
c82037d85b
Add an xxd decoder
2012-07-08 20:45:25 -06:00
6d6b4bfa92
Merge remote branch 'rapid7/master' into omg-post-exploits
2012-07-08 17:32:39 -06:00
a8266bd831
Fix up odd reference normalization cases
2012-07-08 11:25:32 -05:00
f75edc0ca1
Correct fix for older PG support, thanks to Patrick Fitzgerald
2012-07-08 10:16:51 -05:00
75430a0b7e
Cleanup to support v1.2 as well as 1.1
2012-07-08 01:53:32 -05:00
4199b67879
Prevent an exception from breaking the sql cache
2012-07-07 17:30:31 -05:00
1d5b7a1a69
Fix an issue with PG's handling of group by on distinct
2012-07-07 17:27:11 -05:00
881d0ff0c9
Add method to create an asset group
2012-07-07 17:27:11 -05:00
33bf2881cc
Removing cached gem for journey.
2012-07-06 22:12:50 -05:00
505b97b470
Adding new gem versions
...
Add the new gems referenced in the last commit for real.
2012-07-06 22:11:16 -05:00
63e41ee6bb
Updating gems: coderay, journey, spork, sprockets
2012-07-06 22:03:33 -05:00
3dba8273c9
Adding journey-1.0.4.
2012-07-06 17:33:16 -05:00
b102d869d7
Switch module search to the SQL backend. Fixes #565
2012-07-05 19:34:05 -07:00
d266dc6031
Revert what looks like an errant debug mode
2012-07-03 20:32:19 -05:00
64364e3f16
Handle failed reloads in a nicer way
2012-07-03 19:49:44 -05:00
bd2368d6ab
Added specific details for each policy type to output table, modified REX:Ui:Table to prevent sorting when SortIndex == -1
2012-07-02 11:47:44 +01:00
4f9106b2e5
Reverse this back now that the bins are updated
2012-07-02 00:02:21 -05:00
d7d21f1bda
Merge branch 'patch-3' of https://github.com/mubix/metasploit-framework into mubix-patch-3
2012-07-01 19:42:49 -05:00
7298840478
Fix match on User-Agent for HTTPS
2012-07-01 21:32:29 -03:00
58dd2af998
Fix match on User-Agent for HTTP
2012-07-01 21:30:31 -03:00
18e8285322
Fix up rev_http handler
2012-07-01 10:46:13 -04:00
12a6d67be4
Add support for user-agent and server control
2012-06-30 21:01:08 -07:00
9204a5b124
Move the db skip into the "web" console driver. FIXRM #7031
2012-06-29 10:46:15 -05:00
eb762b3653
Back out encoding change of empty string, done by comment
2012-06-29 01:07:58 -05:00
1627720166
Skip module loads/db connect for existing framework sessions
2012-06-29 01:03:13 -05:00
d656e3185f
Mark all libraries as defaulting to 8-bit strings
2012-06-29 00:18:28 -05:00
c45b1037f1
Make sure entries are 8-bit
2012-06-28 23:31:26 -05:00
0e55141fd9
Rename counts to count
2012-06-28 11:43:33 -05:00
5092152949
Fix the broken reload_modules method
...
When using the reload_all command, the framework will trigger an
'undefined method module_history' error, because we're missing
an accessor.
Also, even though reload_modules returns "counts". That actually
returns a hash instead of a real count of modules... the return
value is also never actually used anywhere. But to make this
part not broken, we return the actual count.
2012-06-28 11:39:14 -05:00
807142e988
'Size' may not exist in certain PDF structure.
...
This is a fix for issues related to:
'undefined method `[]' for nil:NilClass'
It is possible that a PDF may not have the 'Size' xref, and people
are running into the 'undefined method'[]' for NilClass' exception.
Because the pdf parser always assumes there is a Size field,
so it uses a match() function to find the value for Size, which
can be nil.
See the following bug report for example:
https://dev.metasploit.com/redmine/issues/7014
2012-06-26 16:09:13 -05:00
b04170b283
Unbreak loadpath
...
HD's vuln-info merge broke add_module_path by removing an argument.
2012-06-25 16:37:16 -06:00
4dbdadfa3d
Merge pull request #523 from alexmaloteaux/fixmsfvenom
...
Fix msfvenom to correctly generate elf binaries for bsd and solaris platform
2012-06-25 11:55:49 -07:00
4afc6d698d
Merge/sync with mdm
2012-06-25 10:11:53 -05:00
3d0628debf
Handle unreachable errors better
2012-06-25 03:29:30 -05:00
a393f8d62d
Apply the console ID if specified
2012-06-25 01:37:38 -05:00
19c18a3e4e
Record the device_id correctly in the nexpose raw import
2012-06-25 01:23:16 -05:00
584e0dbd98
Load console config AFTER module path initialization
2012-06-25 01:16:35 -05:00
38cc6571de
Merge branch 'master' into feature/vuln-info
2012-06-25 01:03:52 -05:00
aa0c6d7036
Better IE 9/10 coverage
2012-06-25 01:03:34 -05:00
faf5adadd9
Merge branch 'master' into feature/vuln-info
2012-06-25 00:42:02 -05:00
4bd9b0c94a
Quick typo fix
2012-06-25 00:41:45 -05:00
f7dca272b6
IE 10/Win8 detection support
2012-06-25 00:36:49 -05:00
1989f0ab46
IE 10/Win8 detection support
2012-06-25 00:36:04 -05:00
348a0b8f6e
Merge branch 'master' into feature/vuln-info
2012-06-24 23:00:13 -05:00
2eddfa3444
fix bsd ans solaris platform when using encoder too
2012-06-25 03:12:33 +01:00
4d2e74e2ad
Need to account for the fact the server may timeout during operation
...
See the following issue for more info:
http://dev.metasploit.com/redmine/issues/4866
2012-06-24 20:17:51 -05:00
6913440d67
More progress on syscall wrappers
...
Something is still broken, my socket() is returning EAFNOSUPPORT whereas
what looks like the same syscall in wunderbar_emporium's exploit.c is
returning a socket. Similarly, my __mmap2() is returning EFAULT when
trying to map anything, not just NULL.
2012-06-22 17:45:49 -06:00
Samuel Huckins
RageLtMan
Tod Beardsley
Chris Lennert
James Lee
sinn3r
David Maloney
HD Moore
webstersprodigy
Rob Fuller
Alexandre Maloteaux
m m
Meatballs1