08d56e31e1
recreated in new branch
...
removed space at EOL
2012-11-08 22:38:21 +01:00
b75ade746c
Removed EOL spaces
...
Removed unrequired udp_sock.close
2012-11-08 22:26:37 +01:00
21693831ae
Added module for ZDI-11-018
2012-11-08 17:32:42 +01:00
7ce3859e8c
Fixed a bunch of bull crap in loggedin_users.rb
2012-11-08 09:49:53 -06:00
0c0d5b10ec
changes loggedin_users.rb
2012-11-08 09:26:17 -06:00
3bf865456c
Better error handling in loggedin_users
2012-11-08 09:13:33 -06:00
5ad2749cee
Rework ADDP modules to use the new mixin
2012-11-08 06:40:32 -06:00
0e8a3f0ea6
Merge branch 'master' into feature/udp-scanner-mixin
2012-11-08 06:09:22 -06:00
e008120c11
Bug fixes to the SSDP discovery module
2012-11-08 06:08:49 -06:00
da6bf29699
Display message when no response received
2012-11-08 11:59:13 +01:00
22ecd6afa9
Edit command.rb
2012-11-07 15:17:13 -06:00
18aab8bcc7
Remove extrat comment lines from command.rb
2012-11-07 15:09:57 -06:00
d159aa6f9f
Changed error handeling of command.rb module
2012-11-07 15:03:31 -06:00
04a80e0648
Fixes to the WMI setup
2012-11-07 11:26:48 -06:00
208e706307
Module title fixes
2012-11-07 10:33:14 -06:00
92679cd1c8
SAP Web GUI Brute Force
2012-11-07 16:18:00 +00:00
c13f8d8eba
SAP RFC TH_SAPREL
2012-11-07 16:10:09 +00:00
f618000d0d
SAP SOAP RFC SUSR_RFC_USER_INTERFACE (user creation)
2012-11-07 16:04:07 +00:00
2b973263b7
SAP SOAP RFC_Info
2012-11-07 15:17:56 +00:00
509e63268b
SAP SOAP RFC SXPG_CALL_SYSTEM
2012-11-07 15:06:28 +00:00
ac518f7091
Removed double lines in Author field and general URLs
2012-11-07 08:22:09 -06:00
ddcc0a9592
This module makes use of the SXPG_CALL_SYSTEM Remote Function Call (via SOAP) to execute OS commands as configured in SM69.
2012-11-07 12:48:08 +00:00
e053c4a0ad
This module makes use of the RFC_READ_TABLE Remote Function Call (via SOAP) to read data from tables.
2012-11-07 12:37:01 +00:00
fc03fbe881
Initial sip_deregister.rb
2012-11-07 13:35:33 +01:00
3be7ad06c4
Calls the RFC_PING RFC module via SOAP to test the availability of the function. The function simply tests connectivity to remote RFC destinations.
2012-11-07 11:35:53 +00:00
b86bc9f365
SAP SOAP RFC DBMCLI Command Injection (via SXPG_CALL_SYSTEM)
2012-11-07 11:29:16 +00:00
f82b51b2c4
This module calls the RFC BAPI_USER_CREATE1 module (via SOAP). The module can be used for creating/modifying users.
2012-11-07 11:16:31 +00:00
6b7b8f7265
Flipping OptString for OptEnum
2012-11-07 11:00:43 +00:00
d19be3024f
Flipping OptEnum for OptString
2012-11-07 10:58:07 +00:00
51a3aa514d
This module attempts to brute force the username | password via an RFC interface (over SOAP)
2012-11-07 10:45:25 +00:00
aec4d99549
ran msftidy on command.rb
2012-11-06 16:33:47 -06:00
9f87b7b674
Removed smb_exec from this branch
2012-11-06 16:18:38 -06:00
c4f35def81
fixed vprint_line
2012-11-06 14:58:14 -06:00
d835a046ed
fixed drupal_views_user_enum.rb so it displays to stdout and stores to loot
2012-11-06 14:53:11 -06:00
43ebec22b4
Silly typos
2012-11-06 13:14:07 -06:00
8c41aca091
Removed some non essential requires from loggedin_users.rb
2012-11-06 09:17:09 -06:00
e40ab4367a
removed other modules
2012-11-05 21:07:09 -06:00
74745bdad6
New Module loggedin-users
2012-11-05 21:04:27 -06:00
30088a410c
fixed junky spacings
2012-11-05 16:59:56 -06:00
1a4968e6a8
removed hashgrab.rb from this branch
2012-11-05 16:38:58 -06:00
d5b18114ac
New module loggedin_users.rb
2012-11-05 16:37:13 -06:00
b973927ab2
Msftidy on digi_addp_reboot and pgpass_creds
2012-11-05 16:19:38 -06:00
9166d12179
Merge branch 'WinRM_piecemeal' of https://github.com/dmaloney-r7/metasploit-framework into dmaloney-r7-WinRM_piecemeal
2012-11-05 23:08:59 +01:00
70d53b4e2d
Merge remote branch 'jvazquez-r7/emc_networker_format_string'
2012-11-05 16:03:56 -06:00
77b1e9e648
added comment about ropdb
2012-11-05 23:02:23 +01:00
e385aad9e5
Merge remote branch 'jvazquez-r7/emc_networker_format_string'
2012-11-05 16:02:18 -06:00
aa8549fb6b
Correct use of rport.
2012-11-05 15:57:59 -06:00
23cc2bd1a1
Merge remote branch 'origin/master'
2012-11-05 15:56:21 -06:00
6a4d398b5d
Merge remote branch 'origin/feature/addp-modules'
2012-11-05 15:55:30 -06:00
0f5f5f966b
Merge branch 'master' into feature/realport-modules
2012-11-05 22:52:38 +01:00
9d5ab5a66f
Stupid typing error
2012-11-05 15:41:47 -06:00
314026ed0e
Some error checking and fixups
2012-11-05 13:29:57 -06:00
3236b4c425
New module hashgrab.rb
2012-11-05 12:06:51 -06:00
a31606e196
New module ntdsgrab.rb
2012-11-05 12:05:16 -06:00
0b940d8087
New module command.rb
2012-11-05 12:03:51 -06:00
aa6e8c7437
smb_exec
2012-11-05 11:46:39 -06:00
a9db705b60
New module for submission smb_exec
2012-11-05 11:45:03 -06:00
7c141e11c4
Hopefully final touches
...
Some smftidy cleanup, and added a method to check that the payload is
the correct arch when using the powershell method
2012-11-05 10:06:57 -06:00
04668c7d61
fix response codes check to avoid second tries to fail
2012-11-05 09:26:26 +01:00
dccfb63bd6
Cleanup based on PR #1008 feedback
2012-11-04 22:47:56 -06:00
36f82fba09
Remove unused version fields from template
2012-11-04 22:38:31 -06:00
25a6e983a1
Remove the older modules
2012-11-04 14:48:34 -06:00
fca8208171
Some minor code cleanup
2012-11-04 14:45:15 -06:00
f69ccc779f
Unified smarter module
2012-11-04 13:14:02 -06:00
c30ada5eac
Adds temp vbs mod and tweaked decoder stub
2012-11-04 12:49:15 -06:00
910a91a0f6
First commit of a udp_mixin and modified scanners
2012-11-04 01:13:38 -05:00
963fdd6430
Initial commit for Digi RealPort modules
2012-11-03 17:44:53 -05:00
88c99161b4
added universal target
2012-11-03 18:52:07 +01:00
9576d26299
Merge branch 'bitweaver_traversal' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-bitweaver_traversal
2012-11-03 18:25:46 +01:00
b8eea1007f
Added module for CVE-2012-2288 EMC Networker Format String
2012-11-03 18:17:12 +01:00
10cccb34d8
Uh... I don't want that print_line(). Forgot to remove it.
2012-11-03 05:18:17 -05:00
4415849009
Another attempt to fix the regex
2012-11-03 05:17:32 -05:00
80ebcf212a
See PR #981.Only real change is to retry on ENOBUF
2012-11-02 23:05:16 -05:00
d449052472
Make <br /> tag optional
2012-11-02 18:25:48 -05:00
45dce9ff76
Modify regex
2012-11-02 16:44:27 -05:00
0d6acad1a0
Updates for PR #981 (cleanup)
2012-11-02 15:47:52 -05:00
0bf5f63d67
Merge branch 'master' into feature/addp-modules
2012-11-02 15:41:03 -05:00
d4fc99e40c
Merge branch 'ms10_104_100_continue_support' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-ms10_104_100_continue_support
2012-11-02 15:16:35 -05:00
1d26491b77
Ok... last fix, really
2012-11-02 15:09:30 -05:00
a161c1faa0
Final changes
2012-11-02 15:06:51 -05:00
ea5dc940d2
Move module to the correct directory
2012-11-02 14:52:28 -05:00
a9db59feb7
Cosmetic changes, mostly
2012-11-02 14:52:02 -05:00
51b15d8c09
Merge branch 'concrete5_member_list' of git://github.com/ChrisJohnRiley/metasploit-framework into ChrisJohnRiley-concrete5_member_list
2012-11-02 14:43:49 -05:00
00d0dc3e4d
Add CVE-2012-5192 - Bitweaver overlay_type module
2012-11-02 14:20:20 -05:00
38518478bd
Format/msftidy fixes
2012-11-02 11:24:34 -05:00
891ad4685c
$Id and $Revision
2012-11-02 11:24:34 -05:00
954ccf1ca1
Added ability to set extension on target
2012-11-02 11:24:33 -05:00
01b13480cb
Added concrete5.org references
2012-11-02 16:45:41 +01:00
f3e03ddb42
Concrete5 CMS member list scanner
2012-11-02 16:32:34 +01:00
ffca972075
Opps mispalced line
2012-11-02 09:34:32 -05:00
355bdbfa39
Add check for propper powershell version
2012-11-02 09:33:28 -05:00
4f47865636
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-11-02 01:16:54 -05:00
42b285c7f6
Merge branch '403labs-post-pgpass_creds'
2012-11-02 01:16:37 -05:00
1a162d7dd9
Use Rex table, fix 1.8 syntax issues, format fixes
2012-11-02 01:15:47 -05:00
c11779a144
Merge branch 'post-pgpass_creds' of git://github.com/403labs/metasploit-framework into 403labs-post-pgpass_creds
2012-11-01 22:50:17 -05:00
b1b85bee44
Actually require PhpEXE mixin.
2012-11-01 14:53:18 -05:00
37a9c13c34
updated auxiliary/scanner/http/crawler to accept a callback for each page
2012-11-01 21:20:56 +02:00
f843740fcb
more fixes
2012-11-01 11:59:18 -05:00
22fbfb3601
cleanup
2012-11-01 17:38:04 +01:00
e720769747
Added module for ZDI-12-171
2012-11-01 17:17:45 +01:00
aeb837838f
typo
2012-11-01 11:03:50 -05:00
84c8660c96
Fix targets to be more specific
2012-11-01 11:00:45 -05:00
0eccfaf1bb
Add a disclosure date
2012-11-01 10:24:28 -05:00
59f5d9bc5d
Man i'm rusty at writing for framework
...
Fixes up all sinn3r's findings so far
2012-11-01 08:37:21 -05:00
00b9fb3c90
Switc smart mgirate to post mod as it should be
2012-10-31 17:03:49 -05:00
dd7ab11e38
Minor cleanup
2012-10-31 16:14:34 -05:00
86f6d59d2e
Adding the winrm powershell exploit
...
also adds the smart_migrate meterp script for autorun purposes
2012-10-31 15:46:11 -05:00
86bf3d63b7
Updated Encryption comments
2012-10-31 15:25:33 -05:00
7cf7563a87
Merge branch 'upstream-master' into WinRM_piecemeal
2012-10-31 15:23:32 -05:00
9736d35230
Fix syntax error
2012-10-31 15:14:46 -05:00
98c1272b92
Update the description about AllowUnencrypted
2012-10-31 15:14:46 -05:00
8711484438
minor fixups
2012-10-31 15:14:46 -05:00
09195ad9a7
Adds the WQL execution module
2012-10-31 15:14:46 -05:00
d2d137ce68
adds the WinRM CMD execution module
2012-10-31 15:10:45 -05:00
e170c1e3e3
typo in centos5 range
2012-10-31 18:28:26 +01:00
f7481b160c
add centos5 target
2012-10-31 18:21:41 +01:00
ef0f415c51
related to #980 adds support for HttpClient
2012-10-31 17:46:57 +01:00
91e6b7cd28
added ie8 target
2012-10-31 11:57:38 +01:00
a3358a471f
Merge branch 'aladdin_bof' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-aladdin_bof
2012-10-31 11:57:20 +01:00
81e56663fd
a few ruby cleanups
2012-10-31 09:59:47 +01:00
ec8a2955e1
Add OSVDB-86723 Aladdin Knowledge System ChooseFilePath Bof
2012-10-31 03:32:43 -05:00
a2fd377326
module cleanup
2012-10-31 09:20:00 +01:00
38a9761d6e
Merge branch 'ntp_readvars' of https://github.com/crashbrz/metasploit-framework into crashbrz-ntp_readvars
2012-10-31 09:06:31 +01:00
ffe8a980f4
NTP Module - Remove [WARNING] Carriage return EOL
2012-10-30 22:25:23 -02:00
b085e8ed73
Revert "Update NTP Module"
...
This reverts commit 8fd34a4475
2012-10-30 21:43:21 -02:00
8fd34a4475
Update NTP Module
...
Changed the branche and remove CR
2012-10-30 21:08:01 -02:00
357fd1b955
add peer info to print_error message
2012-10-30 17:47:17 +01:00
201f7766d8
Merge branch 'clansphere_lfi_read' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-clansphere_lfi_read
2012-10-30 17:45:45 +01:00
a636971b71
Change error message
2012-10-30 11:39:25 -05:00
3e3c518753
remove SessionTypes as per egypt
2012-10-30 17:13:57 +01:00
d3bb2b4891
minor fixups
2012-10-30 11:08:57 -05:00
3f3e6814a3
Make sure no extra '/' in there
2012-10-30 10:40:56 -05:00
26808093d8
Merge branch 'nil_res_bug_fixes' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-nil_res_bug_fixes
2012-10-30 16:18:05 +01:00
736b8354d8
Merge branch 'upstream-master' into WinRM_piecemeal
2012-10-30 09:15:36 -05:00
c91f0ca535
Adds the WQL execution module
2012-10-30 09:13:55 -05:00
5e873d0697
adding peer information to error message
2012-10-30 12:15:01 +01:00
196d53aee4
Merge branch 'manageengine_traversal' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-manageengine_traversal
2012-10-30 12:12:04 +01:00
5c27c9c953
Added a print_good from the results of store_loot
2012-10-29 15:18:13 -05:00
eda5e8a12f
Changed platform type from windows to win and fixed an indentation error.
2012-10-29 14:23:50 -05:00
53c7479d70
Add Windows 8 support
...
Verified with Windows 8 Enterprise Evaluation
2012-10-29 20:12:47 +02:00
8c46c59142
Add support to Windows 8
...
Verified with Windows 8 Enterprise Evaluation
2012-10-29 20:11:27 +02:00
c878b9077b
Rename the DeviceExpert module to avoid confusion
2012-10-29 12:25:07 -05:00
2a202e9035
Add OSVDB-86563 ManageEngine SecurityManager dir traversal
2012-10-29 12:23:48 -05:00
3855ba88b1
add meterpreter/command support to samba exploit using ROP
2012-10-29 17:33:00 +01:00
5c0fb2789f
Merge branch 'module-metasploit-pcaplog-privesc' into rapid7-master
2012-10-29 11:32:32 -05:00
65e27ff38a
Warn about the potential to jack up /etc/passwd
...
This needs to be underlined. It's too easy to wang up /etc/passwd by
accident.
This closes PR #632
[Fixes #38593685 ]
2012-10-29 11:28:27 -05:00
5e80e19a4e
Msftidy complaint about EOL spaces
2012-10-29 11:08:03 -05:00
0e3bc7d060
hp operations agent mods: fix use of pattern_create, use ropdb
2012-10-29 15:45:40 +01:00
2c4273e478
Correct some modules with res nil
2012-10-29 04:41:30 -05:00
34731c3e0a
Add OSVDB-86720 - Clansphere dir traversarl
2012-10-29 03:44:22 -05:00
3a42eb3f73
New modules and library for the ADDP protocol
2012-10-28 23:04:18 -05:00
9f9ee8a29e
Merge branch 'post-pgpass_creds' of git://github.com/403labs/metasploit-framework into 403labs-post-pgpass_creds
2012-10-28 18:18:15 -05:00
b44ec34bfd
renamed modbusFindunitID.rb to modbus_findunitid.rb
2012-10-28 15:11:10 +01:00
19920b3275
update module titles for hp operation agent vulns
2012-10-28 02:38:39 +01:00
675e5c0bb5
Merge branch 'modbus-aux' of git://github.com/esmnemon/metasploit-framework into esmnemon-modbus-aux
2012-10-27 18:55:55 -05:00
7a1c3e7cf6
Merge branch 'dmaloney-r7-WinRM_piecemeal'
2012-10-27 18:55:24 -05:00
4e6b5393c5
Merge branch 'manage_engine_sqli' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-manage_engine_sqli
2012-10-27 18:53:47 -05:00
320a23286a
Merge branch 'warnings' of git://github.com/wchen-r7/metasploit-framework into wchen-r7-warnings
2012-10-27 18:52:34 -05:00
7db7f1bfdf
Merge branch 'turboftp_update' of git://github.com/corelanc0d3r/metasploit-framework into corelanc0d3r-turboftp_update
2012-10-27 18:51:41 -05:00
5c23e0af7b
Merge branch 'smbversion-domain-notes' of git://github.com/zombieCraig/metasploit-framework into zombieCraig-smbversion-domain-notes
2012-10-27 18:48:48 -05:00
c015372ce0
Merge branch 'hp_operations_agent_coda_8c' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-hp_operations_agent_coda_8c
2012-10-27 18:45:36 -05:00
73deeacd7e
deleted unnecessary http headers according to my tests
2012-10-28 00:52:52 +02:00
b4b1b77a77
deleted unnecessary http headers according to my tests
2012-10-28 00:51:18 +02:00
51bc806014
Added module for CVE-2012-2019
2012-10-27 22:45:37 +02:00
bcb80431d6
Added module for CVE-2012-2020
2012-10-27 22:43:16 +02:00
164321a5ed
Add Domain notes to smb_version
2012-10-26 11:56:14 -04:00
3746a3ef64
adding pgpass_creds post module
2012-10-25 21:30:54 -05:00
b15c38f819
Fix output to display ip:port
2012-10-25 19:57:29 -05:00
fb7af536d5
wtf, bad metadata
...
Removed extraneous references section
2012-10-25 10:16:12 -05:00
4ae482b71c
added a fix for modbusdetect.rb and a new utility modbusFindunitID.rb
2012-10-25 13:17:17 +02:00
bfbae5fbb7
Merge branch 'upstream-master' into WinRM_piecemeal
...
Conflicts:
lib/msf/core/exploit/winrm.rb
2012-10-24 14:12:28 -05:00
b48e355a6d
fixed typo and defined badchars
2012-10-24 20:04:54 +02:00
a15c35091d
Add the WinRM login module
2012-10-24 11:25:39 -05:00
2f0c2d76ea
remove load statements
2012-10-24 11:01:26 +02:00
32ddd981eb
linux_kernel mixin not required
2012-10-24 10:58:09 +02:00
6d5da1662b
Update modules/post/multi/escalate/metasploit_pcaplog.rb
...
Stance is now passive
2012-10-24 10:55:48 +02:00
ede5d0f46b
This is meant to be a warning, so we use print_warning
2012-10-24 00:55:54 -05:00
799c22554e
Warn user if a file/permission is being modified during new session
2012-10-24 00:54:17 -05:00
f1423bf0b4
If a message is clearly a warning, then use print_warning
2012-10-24 00:44:53 -05:00
b3e02f119c
Merge branch 'payload_ambiguity' of git://github.com/bonsaiviking/metasploit-framework into bonsaiviking-payload_ambiguity
2012-10-23 22:30:47 -05:00
8eb790f62c
Final touchup
2012-10-23 19:46:09 -05:00
f9bb910c3b
Make the check() try SQLI
2012-10-23 19:42:36 -05:00
8c5a73bb7f
Change exception handling
2012-10-23 19:34:12 -05:00
90542547c6
Add auto-target, and some changes to cleanup
2012-10-23 19:07:13 -05:00
18fb30074a
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-10-23 16:33:38 -05:00
77c8548855
Merge branch 'dmaloney-r7-WinRM_piecemeal'
2012-10-23 16:33:16 -05:00
be9a954405
Merge remote branch 'jlee-r7/cleanup/post-requires'
2012-10-23 15:08:25 -05:00
910644400d
References EDB cleanup
...
All other types of references use String arguments, but approximately half
of the EDB references use Fixnums. Fix this by using Strings here too.
2012-10-23 21:02:09 +02:00
22223d5d81
Better cleanup abilities
2012-10-23 13:58:19 -05:00
21f6127e29
Platform windows cleanup
...
Change all Platform 'windows' to 'win', as it internally is an alias
anyway and only causes unnecessary confusion to have two platform names
that mean the same.
2012-10-23 20:33:01 +02:00
9c95c7992b
Require's for all the include's
2012-10-23 13:24:05 -05:00
4c41319c7c
Remove unused vars
2012-10-23 12:55:43 -05:00
bef4539915
Update description
2012-10-23 12:47:46 -05:00
3ff888a5c0
Move to 'multi' because it supports windows and linux
2012-10-23 12:41:51 -05:00
5f088fa718
Remove default platform
2012-10-23 12:41:17 -05:00
e05d353e8a
Add Linux support
2012-10-23 12:40:13 -05:00
8deead3bd2
Fix payload ambiguity with php/bind_tcp_ipv6 stager
...
Was seeing this in framework.log:
[w(0)] core: The module php/meterpreter/bind_tcp is ambiguous with
php/meterpreter/bind_tcp.
Added handler_type_alias based on windows/bind_ipv6_tcp stager.
2012-10-23 12:31:14 -05:00
bc3472a9b9
Randomize variable names
2012-10-23 11:41:53 -05:00
923ffe277d
Write EXE to JSP instead of using a TCPServer
2012-10-23 11:32:09 -05:00
33ce74fe8c
Merge branch 'msftidy-1' of git://github.com/schierlm/metasploit-framework into schierlm-msftidy-1
2012-10-23 02:10:56 -05:00
e5ec51a780
Rename file for consistency
2012-10-23 02:05:55 -05:00
669d22c917
Final improvements
2012-10-23 02:05:08 -05:00
2335c582c3
Null response handling
2012-10-23 00:25:31 -05:00
5072156df6
Designed specifically for Windows, so let's move to Windows
...
Plus additional fixes
2012-10-22 23:01:58 -05:00
2484bb02cf
Add the initial version of the module
...
From EDB.
2012-10-22 22:41:30 -05:00
b2db3e133d
Rescue when the service is crashed
...
Failed exploit attempts leave the service in a state where the port is
still open but login attmempts reset the connection. Rescue that and
give the user an indication of what's going on.
2012-10-22 17:57:30 -05:00
a9def564e7
Add a missing post require
2012-10-22 17:18:14 -05:00
e08cedec2e
Requested revisions/cleanup
...
minor fixes to spacing, some typos, and abse64 switched to Rex
2012-10-22 17:01:00 -05:00
7437d9844b
standardizing author info
2012-10-22 17:01:58 -04:00
5b18a34ad4
References cleanup
...
Uppercase MSB, spaces in URLs.
2012-10-22 22:37:01 +02:00
f9ac55c221
Infohash key cleanups
...
Replace obvious typos in infohash keys. Note that this *does*
affect the behaviour as those keys have been ignored before.
2012-10-22 21:24:36 +02:00
12de87e682
Merge branch 'rapid7' into mubix-remove_delicious
...
[Closes #946 ]
2012-10-22 14:18:05 -05:00
e9f7873afc
Version cleanup
...
Remove all values that are neither 0 nor $Revision$.
2012-10-22 20:57:02 +02:00
49948faa9b
remove non-functional enum_delicious module
2012-10-22 14:46:52 -04:00
04a6021631
Privileged cleanup: auxiliary modules can't
2012-10-22 20:36:49 +02:00
39e81d3e53
Arch/Platform cleanup: aux modules need neither
2012-10-22 20:28:02 +02:00
e769abc868
Platform cleanup: platform should be lowercase
2012-10-22 20:14:39 +02:00
657d527f8d
DisclosureDate cleanup: Try parsing all dates
...
Fix all dates unparsable by `Date.strptime(value, '%b %d %Y')`
2012-10-22 20:04:21 +02:00
70ac7c8345
Author cleanup: fix unmatched angle brackets
2012-10-22 19:45:27 +02:00
d337d5204b
Author cleanup: One module did not have an author
2012-10-22 18:38:18 +02:00
469f04d3c4
Merge branch 'mubix-dns_postmods'
2012-10-22 02:04:46 -05:00
a3c86f386b
Merge branch 'dns_postmods' of git://github.com/mubix/metasploit-framework into mubix-dns_postmods
2012-10-22 01:57:21 -05:00
d5bb7b1e5b
Fix all-inclusive rescue on resolve_hostname as well
2012-10-22 02:32:51 -04:00
6a281b22c4
Fix all-inclusive rescue per @wchen-r7 suggestion
2012-10-22 02:22:56 -04:00
997d5b9a22
Merge branch 'post_enum_proxy' of git://github.com/mubix/metasploit-framework into mubix-post_enum_proxy
2012-10-22 00:45:06 -05:00
716f4ab3d2
Merge branch 'post_clone_proxy' of git://github.com/mubix/metasploit-framework into mubix-post_clone_proxy
2012-10-22 00:41:36 -05:00
e6df113a05
Merge branch 'dns_postmods' of git://github.com/mubix/metasploit-framework into mubix-dns_postmods
2012-10-21 23:44:50 -05:00
84d1c2315c
change to OptPath
2012-10-21 22:27:20 -04:00
ad9946689e
Update description
2012-10-21 16:40:01 -05:00
1821c11369
Code cleanup
2012-10-21 16:40:01 -05:00
c404b72d08
Doesn't make a lot of sense setting DefaultTarget to an older one
2012-10-21 16:40:01 -05:00
c7d12d94b7
turboftp exploit
2012-10-21 16:40:00 -05:00
5f99f27899
add proxy setting cloning module
2012-10-21 03:13:35 -04:00
86c73e92d4
Add ability to remotely start registry for read
2012-10-21 01:34:34 -04:00
431dc31eac
proxy parsing post module
2012-10-20 23:25:40 -04:00
a16e3704d8
fix HOSTFILE parsing issues
2012-10-20 18:10:51 -04:00
fedef90937
Add PTR lookups and extend A to support list in file
2012-10-20 11:32:23 -04:00
ae690f5fd3
Remove that extra "," that breaks Ruby 1.8
2012-10-20 02:11:49 -05:00
7866b61a7e
Typo fix
2012-10-20 00:31:35 -05:00
56cbe6a67e
Some minor fixups
2012-10-19 15:25:03 -05:00
3a8dd261ae
WinRM mixin and basic discovery module
2012-10-19 15:08:58 -05:00
4ad6fcc30e
osvdb added
2012-10-19 17:04:47 +02:00
4d80e37741
NTP Clock Variables Disclosure
2012-10-18 20:03:28 -03:00
291ad27a69
Merge branch 'msftidy_police' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-msftidy_police
2012-10-18 11:32:55 +02:00
cbce2c0fd5
Loop management, timeouts, and verbosity
...
Add a todo for cred recording. Allow the user to determine when to give
up. Changes while true to simply loop. Clear up some of the boolean
checks. Inform the user what's going on.
2012-10-17 17:30:30 -05:00
0675a6171b
Cosmetic changes
2012-10-17 17:30:16 -05:00
201518b66f
msftidy corrections
2012-10-17 17:22:26 -05:00
7b1c35624e
Merge branch 'mssql_ntlm_stealer' of https://github.com/nullbind/metasploit-framework into nullbind-mssql_ntlm_stealer
2012-10-17 22:50:54 +02:00
1f55e02535
minor cleanup
2012-10-17 22:21:28 +02:00
4c6b331bdc
Merge branch 'mssql_ntlm_stealer_sqli' of https://github.com/nullbind/metasploit-framework into nullbind-mssql_ntlm_stealer_sqli
2012-10-17 22:21:00 +02:00
3bd84e255f
minor cleanup
2012-10-17 22:06:47 +02:00
848f0cd899
Merge branch 'module-lantronix_telnet_password' of https://github.com/jgor/metasploit-framework into jgor-module-lantronix_telnet_password
2012-10-17 22:06:25 +02:00
9af727388f
deleted superfluous code and comments
2012-10-17 14:27:00 -05:00
12e2ff9bb5
proposed cleanup
2012-10-17 19:03:28 +02:00
e30b5b417a
Merge branch 'master' of git://github.com/sput-nick/metasploit-framework into sput-nick-master
2012-10-17 10:35:11 -05:00
60dc83748c
Update modules/exploits/windows/browser/mozilla_mchannel.rb
2012-10-17 12:25:44 -03:00
16e2a2e050
fix title for the apache activemq source disclosure mod
2012-10-17 17:23:56 +02:00
1a0e53dcbb
Merge branch 'jvazquez-r7-osx_x86_exec_prepend' into rapid7
...
[Closes #919 ]
2012-10-16 16:50:15 -05:00
c52b834f50
updated name and description
2012-10-16 14:37:02 -05:00
d8c2aa9796
added mssql ntlm stealer for sqli
2012-10-16 14:26:10 -05:00
9ee3a14a5a
Merge branch 'rapid7' into wchen-r7-smb_login_smb_login_handling
...
[Closes #913 ]
2012-10-16 13:08:11 -05:00
fafa6e49ce
address comments from jvazquez
2012-10-16 12:10:37 -05:00
6f227dddff
Related to #885 , allow Prepend* for osx/x86/exec payload
2012-10-16 16:26:18 +02:00
f07cd5235d
Msftidy!
2012-10-16 13:59:49 +01:00
c2200534c4
Tidy up of output
2012-10-16 13:53:47 +01:00
fa2aa47342
Further fixes to guest and bogus checks
2012-10-16 13:53:23 +01:00
5377144e1f
Reimplemented tree connect to verify nix samba logins correctly, and fixed accepts_guest_logins() and accepts_bogus_logins()
2012-10-16 12:54:09 +01:00
e583847a31
I missed this sucker.
2012-10-15 22:02:26 -05:00
52feae2dcd
Add missing require
...
[FixRM #7345 ]
2012-10-15 17:18:04 -05:00
8e668e2808
Check STATUS_ACCESS_DENIED properly
...
When Samba throws STATUS_ACCESS_DENIED, the exception that's
throwin is actually Rex::Proto::SMB::Exception::ErrorCode, not
as LoginError. It was handled correctly in try_user_pass(), but
not in other functions that also use smb_login().
2012-10-15 16:52:34 -05:00
9192a01803
All exploits need a disclosure date.
2012-10-15 16:29:12 -05:00
553ce82e79
added mssql ntlm stealer
2012-10-15 13:29:51 -05:00
29299b29a5
Added modules for CVE-2012-4933
2012-10-15 16:03:19 +02:00
adfced8d0e
Post require on gpg_creds
2012-10-15 06:58:35 -05:00
2acfb0537c
Merge branch 'ajaxplorer' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-ajaxplorer
2012-10-15 08:30:08 +02:00
529f88c66d
Some msftidy fixes
2012-10-14 19:16:54 -05:00
97ac7fa184
Merge branch 'module-wle-service-permissions' of git://github.com/zeroSteiner/metasploit-framework
2012-10-14 18:27:32 -05:00
e00dbfcc0d
You mean.. FILEPATH.
2012-10-14 18:18:11 -05:00
2f04fdd71a
Merge branch 'apache_activemq_traversal' of git://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-apache_activemq_traversal
2012-10-14 18:16:41 -05:00
d971abaeb9
deleted extra comma
2012-10-14 22:39:07 +02:00
14bd0373d3
deleted extra space
2012-10-14 22:38:14 +02:00
ac6a4c9283
Added module for CVE-2010-1587
2012-10-14 22:36:02 +02:00
2b644dbc45
added module for Apache ActiveMQ directory traversal
2012-10-14 22:30:38 +02:00
79da6c7186
added Lantronix telnet password recovery module
2012-10-14 12:46:52 -05:00
cedcace1a7
Forgot to change the output variable
...
Because the original script used match()
2012-10-14 11:43:33 -05:00
cc303665e8
Credit
2012-10-13 00:42:44 -05:00
5b2998a121
Add OSVDB-63552 AjaXplorer module (2010)
2012-10-13 00:35:48 -05:00
7196ca5b5e
Fix bad indent
2012-10-12 18:35:05 -05:00
7aa6776e4b
let's not rejoin threads we've already joined.
2012-10-12 17:12:42 -04:00
694eacfc4b
performance fix for host discovery post modules
2012-10-12 16:43:42 -04:00
f5302bfc49
add deprication warning to the original module
2012-10-12 13:49:25 -04:00
90ae5c1178
Add PhpEXE support to RateMyPet module
2012-10-12 04:53:01 -05:00
db12413b09
Convert vcms_upload to use PhpEXE
...
Incidentally adds a Linux x86 target
2012-10-12 04:29:57 -05:00
13a5892e95
Add a mixin for uploading/executing bins with PHP
...
And use it in three modules that had copy-paste versions of the same
idea.
2012-10-12 02:57:41 -05:00
3ab24cdbb9
added exploits/windows/local/service_permissions
2012-10-11 22:42:36 -04:00
0adabb1e06
Merge branch 'wchen-r7-projectpier' into rapid7
...
[Closes #889 ]
2012-10-11 18:32:04 -05:00
55c0cda86c
Merge branch 'fix_vprint_reduceright' of git://github.com/kernelsmith/metasploit-framework into kernelsmith-fix_vprint_reduceright
2012-10-11 16:55:52 -05:00
c911eeece2
change vprint_error to print_error
...
exploits/windows/browser/mozilla_reduceright does not tell you when an
incompatible browser connects like most other browser exploits do
(unless verbose is true). This change just changes the vprint to print
to be more consistent w/other browser exploits
2012-10-11 16:51:17 -05:00
9ea208d129
Oops, overwrote egypt's changes by accident
2012-10-11 16:40:52 -05:00
82eaa322fe
Make cleanup work better
2012-10-11 16:39:54 -05:00
3a66a07844
Proposed re-wording of description
...
[See #889 ]
2012-10-11 15:48:04 -05:00
24980e735b
I found an OSVDB ID
2012-10-11 15:28:07 -05:00
55128f5bb3
Make sure res has value before passing it on to exec_php
2012-10-11 14:43:38 -05:00
033a11eff5
Add Project Pier File Upload Vulnerability
2012-10-11 13:47:40 -05:00
b8e880bf82
Merge branch 'post-module-sdel' of https://github.com/bmerinofe/metasploit-framework into bmerinofe-post-module-sdel
2012-10-10 13:42:20 -05:00
1ea73b7bd2
Small description change and favor the use of print_error
2012-10-10 13:37:23 -05:00
f32ce87071
delete comment added by error
2012-10-10 19:32:25 +02:00
13e914d65e
added on_new_session handler to warn users about cleanup
2012-10-10 19:31:38 +02:00
37dc19951b
Added module for ZDI-12-169
2012-10-10 19:14:54 +02:00
21d1a5857a
Adding Iterations options
2012-10-10 12:32:30 +02:00
7b45ef6038
Applying changes. Blocks -Begin .. End- deleted
2012-10-09 21:52:49 +02:00
22f7c42b85
Merge branch 'master' into feature/updated-mobile
2012-10-09 12:58:19 -05:00
4fa3631e34
avoiding the python support on the barracuda one if cannot be tested
2012-10-09 18:01:23 +02:00
f33411abd1
Merge branch 'python_payload_support' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-python_payload_support
2012-10-09 18:00:44 +02:00
a12aed7ffc
Don't really need these keywords
2012-10-09 00:49:05 -05:00
b657fd31cc
Merge branch 'php_include' of https://github.com/ethicalhack3r/metasploit-framework into ethicalhack3r-php_include
2012-10-09 00:45:46 -05:00
c094508119
Support Python payload
...
Pretty sure if the app is run on Unix/Apache, or supports perl and
ruby, chances are python works too.
2012-10-08 22:17:11 -05:00
b356b403b0
Merge branch 'phptax' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-phptax
2012-10-09 00:10:31 +02:00
286b86949b
Prefix with host:port for readability
2012-10-08 15:23:26 -05:00
06e2994b7e
connectiontype to find and python payload support
2012-10-08 15:13:27 -05:00
abb4bdd408
metadata formatting, and a little res gotcha
2012-10-08 15:00:51 -05:00
04aa69192d
Dang typo
2012-10-08 13:35:13 -05:00
ef9d627e13
Added module for ZDI-12-106
2012-10-08 20:04:01 +02:00
8ff4442f9e
Add PhpTax pfilez exec module
...
This module exploits a vuln found in PhpTax. When generating a
PDF, the icondrawpng() function in drawimage.php does not
properly handle the pfilez parameter, which will be used in a
exec() statement, and results in arbitrary code execution.
2012-10-08 12:46:56 -05:00
e9b70a3a4f
Merge branch 'avaya_winpmd_unihostrouter' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-avaya_winpmd_unihostrouter
2012-10-07 15:35:30 -05:00
0acd9e4eec
Merge branch 'ms10_002_ropdb_update' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-ms10_002_ropdb_update
2012-10-07 17:49:45 +02:00
40983460bf
added module for avaya winpmd bof, osvdb 73269
2012-10-07 12:05:13 +02:00
bdb9b75e1e
Use RopDb, and print what target the module has selected.
2012-10-07 01:42:29 -05:00
64f29952dc
Merge branch 'master' into feature/updated-mobile
2012-10-07 00:32:02 -05:00
5b656087b5
Use RopDb in adobe_flash_otf_font, also cleaner code & output
2012-10-06 21:03:41 -05:00
874fe64343
Merge branch 'ms11_050_ropdb_update' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-ms11_050_ropdb_update
2012-10-06 14:10:36 +02:00
e02adc1f35
Merge branch 'mubix-bypassuac_uac_check'
2012-10-06 02:09:16 -05:00
33429c37fd
Change print_error to print_debug as a warning
2012-10-06 02:08:19 -05:00
94d5eb7a8c
Use RopDb in MS11-050, and correct autopwninfo
2012-10-06 01:45:40 -05:00
55474dd8bf
add simple UAC checks to bypassuac
2012-10-06 00:59:54 -04:00
b984d33996
add RunAs ask module
2012-10-06 00:51:44 -04:00
769fa3743e
Explain why the user cannot modify the URIPATH
2012-10-05 17:24:06 -05:00
f4e442bcbd
Added headers support to php_include module
2012-10-05 23:00:38 +02:00
2aa59623d1
Merge branch 'ropdb_for_browsers' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-ropdb_for_browsers
2012-10-05 15:43:18 -05:00
21ea77ff8b
Fix spaces
2012-10-05 15:40:37 -05:00
a60851e9d1
Merge branch 'mubix-bypassuac_localport'
2012-10-05 14:28:12 -05:00
6342c270f4
Merge branch 'bypassuac_localport' of https://github.com/mubix/metasploit-framework into mubix-bypassuac_localport
2012-10-05 14:16:16 -05:00
33db3d9610
RopDb for ntr_activex_check_bof.rb
2012-10-05 14:09:59 -05:00
f92843c96e
RopDb for ie_execcommand_uaf.rb
2012-10-05 13:49:17 -05:00
aba69d8438
fix indentation
2012-10-05 20:18:40 +02:00
4c646762a5
Added target debian squeeze
2012-10-05 20:12:09 +02:00
9a53a49625
RopDb for vlc_amv.rb
2012-10-05 12:54:16 -05:00
d9278d82f8
Adopt RopDb for msxml_get_definition_code_exec.rb
2012-10-05 12:20:41 -05:00
6fc8790dd7
Adopt RopDb for ms12_037_same_id.rb
2012-10-05 12:17:19 -05:00
1268614d54
Adopt RopDb for adobe_flash_mp4_cprt.rb
2012-10-05 11:15:53 -05:00
98931e339a
Adopt RopDb for adobe_flash_rtmp.rb
2012-10-05 11:05:19 -05:00
631a06f3bb
Adopt RopDb for adobe_flashplayer_flash10o.rb
2012-10-05 10:55:55 -05:00
0ae7756d26
fixed missing > on author
2012-10-05 11:13:40 -04:00
8b8bfec6b8
Merge branch 'gpg' of https://github.com/kholia/metasploit-framework into kholia-gpg
2012-10-05 09:23:54 +02:00
bcc56cb7cc
Merge branch 'bypassuac_localport' of https://github.com/mubix/metasploit-framework into mubix-bypassuac_localport
2012-10-05 01:05:30 -05:00
77438d2fc7
Make URI modification more obvious, and let the user know why
2012-10-04 17:52:04 -05:00
8520cbf218
fixes spotted by @jlee-r7
2012-10-04 17:34:35 -04:00
f3e94d2ee2
extend dep to 3 months and use print_error
2012-10-04 16:42:08 -04:00
cf8501775a
re-add bypassuac post mod w/ deprication warning
2012-10-04 16:31:20 -04:00
ae11c2ffc0
Merge branch 'rapid7' into kernelsmith-update-ms10_042-info
...
[Closes #860 ]
2012-10-04 15:29:32 -05:00
4400cb94b5
Removing trailing spaces
2012-10-04 14:58:53 -05:00
6ef87d1695
update info to reflect use of webdav
...
ms10_042_helpctr_xss_cmd_exec.rb doesn't tell you that it's going to
use webdav, and it's options dont' have the (Don't change) warning for
SRVPORT and URIPATH. This update fixes all that
2012-10-04 14:09:53 -05:00
3f2fe8d5b4
port bypassuac from post module to local exploit
2012-10-04 14:31:23 -04:00
dc9907da98
Fix load order issue with multi/gather/ssh_creds
...
Make sure Post::Unix exists before including
2012-10-04 11:19:14 -05:00
d63b5fb9e3
fixes: author format, remove meterpreter support, fix ltype
2012-10-04 21:29:00 +05:30
02617a6f3a
Merge branch 'feature/redmine-7224-shellcode-cleanup' of https://github.com/jlee-r7/metasploit-framework into jlee-r7-feature/redmine-7224-shellcode-cleanup
2012-10-04 00:43:34 -05:00
d515b3274d
Apply wfsdelay and apply egypt's suggestions
2012-10-04 00:40:52 -05:00
c0d746a36a
remove ternary assignment
2012-10-03 23:34:41 -04:00
9dad8b28ee
Merge branch 'qnx_qconn_exec' of https://github.com/bcoles/metasploit-framework into bcoles-qnx_qconn_exec
2012-10-03 22:09:14 -05:00
6de50b7cb5
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-10-03 12:30:34 -05:00
fbc3709774
Change the title and regex a bit
2012-10-03 12:16:25 -05:00
51e70c44e3
fix error message after cleanup
2012-10-03 18:44:33 +02:00
0755cbe411
cleanup: clear strings, delete unused variables, author email foramt, use of unpack
2012-10-03 18:28:03 +02:00
09c4c8172d
Merge branch 'PostgreSQL' of https://github.com/kholia/metasploit-framework into kholia-PostgreSQL
2012-10-03 18:26:34 +02:00
30846f4190
fix typo in comment
2012-10-03 16:06:00 +02:00
24037ac79a
Added module for CVE-2011-4051
2012-10-03 16:03:36 +02:00
a0422fe500
Make failing username dynamic
2012-10-03 19:17:32 +05:30
94f8a41b57
Add subdomain input file for VHOST scanner
...
This commit allows the vhost scanner to take subdomains from a
text file, one subdomain per line. Lines are stripped of the top
level domain name if present before testing.
2012-10-03 03:51:58 -04:00
e39472f7d4
Merge branch 'zeroSteiner-module-ms11-080'
2012-10-02 12:01:01 -05:00
e36507fc05
Code cleanup and make msftidy happy
2012-10-02 12:00:23 -05:00
80bcf930e3
GnuPG Information Gather Module, tested against Linux
2012-10-02 17:46:57 +05:30
e33da009ea
add PostgreSQL password capturing module
2012-10-02 15:16:37 +05:30
8473aafdd5
added sdel post meterpreter module
2012-10-02 01:35:53 +02:00
21e832ac1c
add call to memory protect to fix DEP environments
2012-10-01 18:49:18 -04:00
e6e25544ec
Merge branch 'handler-requires-race'
2012-10-01 16:32:15 -05:00
2ca134a2c3
Merge branch 'printjob_capture'
...
This lands #811 , and also brings in my changes from
ChrisJohnRiley/metasploit-framework#2
Thanks Chris!
2012-10-01 15:55:14 -05:00
1e4f8591fd
Sneaking in an author credit
2012-10-01 11:42:56 -05:00
c0bc764fd4
Retabbing for tabs, not spaces
...
I'm not a fan of the tabs either, any more. But, until we switch over
for real, let's stick with the project's whitespace conventions?
2012-10-01 11:26:58 -05:00
802924d67a
Getting rid of continuation slashes. Plz don't.
...
Continuation slashes are the devil when it comes to reading Ruby,
especially if you're reading something like:
def hello
puts "Hello world!" \
if true
end
This looks like a syntax error and hurts my eyeballs.
Please avoid this convention in the future.
2012-10-01 11:23:06 -05:00
a38724f53b
Adds an apparently spurious require
...
SeeRM #7276
Sticking this in a branch for now while I ask Egypt and limhoff for a
second opinion.
2012-10-01 07:49:58 -05:00
e2276bfedb
Add QNX QCOMM command execution module
2012-09-30 17:21:08 +09:30
c5f863b0b9
minor fixes and msftidy compliant
2012-09-29 23:35:53 +02:00
3e97cb2d85
Merge branch 'module-enumtomcat' of https://github.com/sectorix/metasploit-framework into sectorix-module-enumtomcat
2012-09-29 23:34:46 +02:00
19675b3bea
changed report to be more verbose
2012-09-28 19:02:15 +01:00
489c9b701e
Whitespace
2012-09-28 12:47:15 -05:00
1b2240d9bd
Commenting about IPP
2012-09-28 12:38:36 -05:00
a15a2b522c
Removing IPP as a selectable mode
2012-09-28 12:38:17 -05:00
6944aab46c
Removing Id SVN splat
2012-09-28 12:37:00 -05:00
fa03eddbdc
extended identification technique
2012-09-28 16:44:03 +01:00
db4b19a2df
Adding Juan's fix for peerhost
2012-09-28 10:26:35 -05:00
Chris John Riley
jvazquez-r7
Royce Davis
HD Moore
Chris John Riley
David Maloney
nmonkee
Brandon McCann
Tod Beardsley
sinn3r
Tasos Laskos
m m
esmnemon
Ewerson Guimaraes (Crash)
Zach Grace
sagishahar
zombieCraig
corelanc0d3r
0a2940
Michael Schierl
James Lee
Daniel Miller
Rob Fuller
lincoln@corelan.be
jgor
sput-nick
nullbind
Meatballs1
Raphael Mudge
Spencer McIntyre
kernelsmith
Borja Merino
ethicalhack3r
Dhiru Kholia
RageLtMan
bcoles
Barry Shteiman