Brent Cook
a42cc2ef1f
add support for specifying 32 or 64-bit registry access
...
This adds an extra parameter to most of the post/windows/registry
methods called 'view' that specifies if a registry key should be
accessed as a native process, 32-bit or 64-bit.
Support is added to both the Meterpreter and command-line backends. For
the command backend, a lot of boilerplate is removed from each method in
favor of a few shared commands. There is an error hash that never gets
used, so I removed it as well.
This passes the post/test/registry module with meterpreter, but fails
the command line backend. However, it fails in the same way without
these changes (tested on Windows 8), so I suspect that the command line
session was already not working well, at least with newer versions of
Windows. I might look into figuring out how to fix that, but it looks
pretty fragile to me, parsing for english phrases in the output.
2015-01-20 15:26:59 -06:00
pdeardorff-r7
0d4d06fb83
Print table for all scans, add preview size option
2015-01-20 11:12:47 -08:00
Paul Deardorff
f593c7d79a
Merge pull request #1 from jhart-r7/landing-4596-jhart
...
Improvements to memcached gather module
2015-01-20 09:08:35 -08:00
Jon Hart
f1bf607386
Minor Ruby style cleanup
2015-01-20 08:47:47 -08:00
Jon Hart
ef89a3d323
Add protocol reference
2015-01-20 08:34:08 -08:00
Jon Hart
9c97824d5c
Move MAXKEYS to advanced
2015-01-20 08:28:49 -08:00
Jon Hart
9d430eb1d5
Use the simpler 'version' command to get the version
2015-01-20 08:16:22 -08:00
Jon Hart
6588f92206
Move rex connection errors to vprint since this is a Scanner
2015-01-20 08:11:09 -08:00
Jon Hart
10100df054
report_service
2015-01-20 08:09:35 -08:00
Jon Hart
b0bbce1190
Include peer in most prints
2015-01-20 08:00:02 -08:00
Brent Cook
94fda6e617
Land #4600 , jvazquez-r7's Linux meterpreter bins
2015-01-20 09:38:35 -06:00
wez3
bd0a20a717
Update outlook.rb execute_script time_out
...
I have been using the script in real life cases which have bigger e-mailboxes then in the testing environment. Because of execute_script default time_out no results return, as the powershell scripts run longer then 15 seconds. Changed the timeout to 120.
2015-01-20 11:16:37 +01:00
HD Moore
0b6c324660
Land #4611 , add Hathaway's password
2015-01-19 22:06:24 -06:00
sinn3r
76746eb209
New password from Hathaway
2015-01-19 21:45:47 -06:00
jvazquez-r7
f7aaad1cf1
Delete some extraneous commas
2015-01-19 17:25:45 -06:00
jvazquez-r7
dbc77a2857
Land #4517 , @pedrib's exploit for ManageEngine Multiple Products Authenticated File Upload
...
* CVE-2014-5301
2015-01-19 17:23:39 -06:00
jvazquez-r7
6403098fbc
Avoid sleep(), survey instead
2015-01-19 17:22:04 -06:00
jvazquez-r7
a6e351ef5d
Delete unnecessary request
2015-01-19 17:14:23 -06:00
jvazquez-r7
ed26a2fd77
Avoid modify datastore options
2015-01-19 17:11:31 -06:00
jvazquez-r7
3c0efe4a7e
Do minor style changes
2015-01-19 15:36:05 -06:00
jvazquez-r7
ddda0b2f4b
Beautify metadata
2015-01-19 14:59:31 -06:00
jvazquez-r7
bb681ba307
Land #4610 , add play options to play_youtube
2015-01-19 12:56:08 -06:00
jvazquez-r7
43e0afeaed
Delete 's' typo
2015-01-19 12:55:35 -06:00
jvazquez-r7
79a24f80b8
Use constant for play options
2015-01-19 12:50:40 -06:00
jvazquez-r7
652400451e
Delete extra k
2015-01-19 12:35:26 -06:00
IMcPwn
50d43f118b
Make URLs better
...
Removes YouTube logo, loops, hides video controls at bottom, disables keyboard controls, doesn't show info about the video on the top, hides video annotations, and doesn't show related videos at the end.
2015-01-19 12:27:18 -05:00
Christian Mehlmauer
923d1efa19
Land #4607 , proxy chains description
2015-01-19 10:23:52 +01:00
William Vu
e9a9ab9932
Update spec thingy
2015-01-19 01:38:47 -06:00
Christian Mehlmauer
f7d5a45d77
Land #4606 , fix proxychains description, fix #4587
2015-01-19 06:55:25 +01:00
William Vu
cffa55b12e
Improve proxy chain description
2015-01-18 22:32:22 -06:00
Christian Mehlmauer
354e952841
fix msftidy warnings
2015-01-18 23:55:57 +01:00
Christian Mehlmauer
5b964bba6a
Land #4518 , Wordpress long password DoS
2015-01-18 23:55:06 +01:00
Christian Mehlmauer
6014ff8a31
fix msftidy warnings
2015-01-18 23:54:16 +01:00
Spencer McIntyre
a4a721924b
Land #4603 , @eyalgr's fix for pymeterp tcp over reading
2015-01-18 11:18:30 -05:00
eyalgr
7a2f0553a8
Update reverse_tcp.rb
...
prevent over-reading from socket
2015-01-18 17:32:53 +02:00
eyalgr
f12c6a1624
Update meterpreter.py
...
Read until exactly pkt_length bytes
2015-01-18 15:45:28 +02:00
eyalgr
9c12fcc2f1
Update bind_tcp.rb
...
Read exactly l bytes
2015-01-18 15:42:09 +02:00
eyalgr
18e15a109a
Update bind_tcp.rb
...
Prevent over reading from socket
2015-01-18 15:35:56 +02:00
eyalgr
d83c6ae215
Update meterpreter.py
...
Read exactly pkt_length from socket, prevents over-reading.
2015-01-18 15:29:23 +02:00
William Vu
84ecde30d1
Land #4586 , mcafee_epo_xxe aux module
2015-01-18 00:50:10 -06:00
William Vu
57ca285f8a
Fix msftidy warnings
2015-01-18 00:49:52 -06:00
William Vu
7c3378b2e6
Land #4593 , msftidy extraneous comma check
2015-01-18 00:46:39 -06:00
William Vu
cb0257bec7
Land #4576 , OpenVAS database import fix
2015-01-18 00:45:36 -06:00
pdeardorff-r7
db3185231a
add maxkeys option, dont store loot if localhost and improve streaming
2015-01-17 09:25:32 -08:00
nstarke
55a746eeb7
Changing code to catch everything extraneous
2015-01-17 15:46:26 +00:00
root
3a5d6b4717
Store password hash as loot
2015-01-17 14:17:41 +00:00
m7x
fcca79bbd0
Merge pull request #2 from jhart-r7/landing-4503
...
Correct McAfee credential storage, prepare for store_loot
2015-01-17 13:33:09 +00:00
disenchant
243c8561df
Merge pull request #1 from jhart-r7/landing-4504-jhart
...
Unit tests for #4504
2015-01-17 10:52:17 +01:00
jvazquez-r7
697e4fbd41
Land #4584 , @sgabe's fix for egghunter searchforward
2015-01-16 19:36:52 -06:00
jvazquez-r7
a42b095472
Delete heaponly option
2015-01-16 19:35:57 -06:00