Commit Graph

965 Commits (e765553d2612b6d2caf5fc9cebcf9ba9be38f609)

Author SHA1 Message Date
Joshua Drake 1be5df045f whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9362 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 01:52:59 +00:00
Tod Beardsley f37d61922b Adding a case for Linux and friends for finger enumeration.
git-svn-id: file:///home/svn/framework3/trunk@9354 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 21:44:17 +00:00
Joshua Drake 14a6a1b95f another error message update, see #1994
git-svn-id: file:///home/svn/framework3/trunk@9351 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:23 +00:00
Tod Beardsley 1a2be34a63 Fixes #2002. Needed to work with some pipelining to get this all to work right, but it seems to function now pretty well -- if the target takes Basic, do basic, if the target takes NTLM, do NTLM. Should implement Digest too, but I don't think hardly anyone uses that.
git-svn-id: file:///home/svn/framework3/trunk@9346 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-22 17:58:01 +00:00
Tod Beardsley e02fd71de9 See #2002. Skip authentication schemes that we don't know how to do.
git-svn-id: file:///home/svn/framework3/trunk@9343 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 17:32:54 +00:00
Joshua Drake 793e6ddd52 tweak error message, see #1994
git-svn-id: file:///home/svn/framework3/trunk@9342 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 15:38:07 +00:00
Joshua Drake 688c76f7a0 catch ConnectionError exception before it gets passed higher up, fixes #1994
git-svn-id: file:///home/svn/framework3/trunk@9335 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:33:12 +00:00
HD Moore ce12be8533 Dont let the session socket get cleaned up
git-svn-id: file:///home/svn/framework3/trunk@9315 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-17 20:34:20 +00:00
James Lee f440317225 store the name of the file we got the key from
git-svn-id: file:///home/svn/framework3/trunk@9300 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-14 06:00:06 +00:00
Tod Beardsley 0c7f1a7449 Moving MySQL version requirements even farther back.
git-svn-id: file:///home/svn/framework3/trunk@9295 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 20:19:09 +00:00
Tod Beardsley ca3df5dd5e Give an error message, don't just quietly fail.
git-svn-id: file:///home/svn/framework3/trunk@9293 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 18:23:30 +00:00
Steve Tornio 861876f10b osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9290 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 15:44:06 +00:00
Steve Tornio cf8d90c69f add refs
git-svn-id: file:///home/svn/framework3/trunk@9289 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 15:40:25 +00:00
Tod Beardsley f9aa3a0c70 Bumping acceptable MySQL scan target back to version 4.1.11
git-svn-id: file:///home/svn/framework3/trunk@9288 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 14:52:00 +00:00
Steve Tornio ec4ed55d0d add references
git-svn-id: file:///home/svn/framework3/trunk@9283 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 14:51:43 +00:00
Joshua Drake 770416d792 mention vista was used for testing, see #1868
git-svn-id: file:///home/svn/framework3/trunk@9278 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 00:32:53 +00:00
Joshua Drake 128e0515ef stop perpetuating the ambiguity!
git-svn-id: file:///home/svn/framework3/trunk@9262 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-09 17:45:00 +00:00
HD Moore aedf63c063 Add Lotus Domino password hash dumper from Tiago Ferreira
git-svn-id: file:///home/svn/framework3/trunk@9253 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-09 00:44:23 +00:00
HD Moore ffd6dbfaab include the reporting mixin
git-svn-id: file:///home/svn/framework3/trunk@9234 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 23:39:12 +00:00
HD Moore d13adef38e Fix typo
git-svn-id: file:///home/svn/framework3/trunk@9233 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 23:21:47 +00:00
HD Moore 5b7cdc2350 Lotus Domino bruteforce module by Tiago Ferreira
git-svn-id: file:///home/svn/framework3/trunk@9232 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 23:07:00 +00:00
James Lee 62fbc0ad5b use empty strings instead of nil. fixes #1717
git-svn-id: file:///home/svn/framework3/trunk@9228 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 20:03:47 +00:00
Steve Tornio 0c63df8db5 reference updates
git-svn-id: file:///home/svn/framework3/trunk@9225 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 18:18:51 +00:00
HD Moore c71ca00efb Remove debugging line
git-svn-id: file:///home/svn/framework3/trunk@9224 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 16:17:36 +00:00
HD Moore 48a03e1dd3 Handle OS X better
git-svn-id: file:///home/svn/framework3/trunk@9223 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 16:08:59 +00:00
cg dc65be2cbe lotus domino version module
git-svn-id: file:///home/svn/framework3/trunk@9221 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 03:08:30 +00:00
Joshua Drake 4bc86e603e fix a couple more silly regex mishaps
git-svn-id: file:///home/svn/framework3/trunk@9220 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-04 23:09:32 +00:00
HD Moore d1c3b71fd4 Fix a typo
git-svn-id: file:///home/svn/framework3/trunk@9215 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 19:35:59 +00:00
Tod Beardsley 71a4ec6204 Pluralization.
git-svn-id: file:///home/svn/framework3/trunk@9214 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 18:43:44 +00:00
Joshua Drake 0e72894e58 more cleanups
git-svn-id: file:///home/svn/framework3/trunk@9212 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 17:13:09 +00:00
Joshua Drake c67ad6767c handle connection reset more gracefully
git-svn-id: file:///home/svn/framework3/trunk@9192 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-01 23:57:10 +00:00
HD Moore 42da9e899a Improvements to the cleanup process, close sockets properly for exploits and auxiliary
git-svn-id: file:///home/svn/framework3/trunk@9187 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-01 16:26:24 +00:00
Joshua Drake 0ea6eca4bc big module whitespace/formatting cleanup pass
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Joshua Drake 0685a75216 switch raw_send_recv for send_cmd, fixes #606
git-svn-id: file:///home/svn/framework3/trunk@9169 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-29 04:47:47 +00:00
Steve Tornio 6a20cf524c add some refs
git-svn-id: file:///home/svn/framework3/trunk@9163 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-27 21:23:20 +00:00
HD Moore 7464361d0a Handle ENOBUFS errors
git-svn-id: file:///home/svn/framework3/trunk@9154 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-27 14:38:17 +00:00
Steve Tornio 0d674177e0 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9153 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-27 11:16:52 +00:00
Tod Beardsley 08117ca000 Forcing :critical => true for report_auth_info
git-svn-id: file:///home/svn/framework3/trunk@9150 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 22:23:37 +00:00
Mario Ceballos ca6adb515e added auxiliary module for CVE-2010-0870
git-svn-id: file:///home/svn/framework3/trunk@9148 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 21:36:36 +00:00
Steve Tornio 22a9aa9b4e =add cve and osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@9142 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 18:42:07 +00:00
Joshua Drake a953c47cfb remove carriage returns
git-svn-id: file:///home/svn/framework3/trunk@9140 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 18:29:24 +00:00
Steve Tornio 65ec171c2b add refs
git-svn-id: file:///home/svn/framework3/trunk@9135 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 18:46:08 +00:00
Steve Tornio 571741d58e add cve and osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@9134 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 18:33:27 +00:00
Steve Tornio 5d39c1e4be add cve and osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@9132 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 14:52:44 +00:00
Steve Tornio 2a7a6dcf23 add cve and osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@9131 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 14:29:47 +00:00
Tod Beardsley 1c6891a3f8 For smb_login, quit trying a username if we learn that the password is expired or if the account is locked out or disabled.
git-svn-id: file:///home/svn/framework3/trunk@9117 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-22 22:12:13 +00:00
Tod Beardsley bd94145d8d Allows reporting auth credentials to be optional with exploit/windows/smb/psexec. Sometimes you don't want this, especially if you already have an auth credential via smb_login.
For auxiliary/scanner/smb/smb_login, if a password hash is used instead of a password, record it as a :hash instead of a :pass when reporting to the DB.



git-svn-id: file:///home/svn/framework3/trunk@9116 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-22 17:23:29 +00:00
Joshua Drake fe250cda25 minor tweaks, add commnted out debug statements
git-svn-id: file:///home/svn/framework3/trunk@9105 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-19 22:46:52 +00:00
Tod Beardsley 888e80f92c Fixes up various usability bugs with AuthBrute, many of which revolved around smb_login tests.
git-svn-id: file:///home/svn/framework3/trunk@9086 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 17:29:47 +00:00
Joshua Drake 8e5f0a37d8 rename modules to microsoft bulletin names and update references
git-svn-id: file:///home/svn/framework3/trunk@9085 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 16:08:27 +00:00
Joshua Drake 5aea21fcb8 speel more godoer
git-svn-id: file:///home/svn/framework3/trunk@9080 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 02:09:08 +00:00
HD Moore 56d50d6794 match enumusers output more closely
git-svn-id: file:///home/svn/framework3/trunk@9069 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-14 04:39:51 +00:00
Mario Ceballos 29755d7445 updated with the db2remotecmd pipe.
git-svn-id: file:///home/svn/framework3/trunk@9067 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-14 00:59:32 +00:00
Tod Beardsley a97e4c78bd Commit the key as :ssh_key, not :pass.
git-svn-id: file:///home/svn/framework3/trunk@9065 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-13 21:26:21 +00:00
Tod Beardsley 2a3b8ea57a Adds a module for scanning hosts for valid login credentials using unencrypted SSH private keys. Also completes the commit for r9059 to record auth_info hashes on successes.
git-svn-id: file:///home/svn/framework3/trunk@9062 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-13 19:21:48 +00:00
Mario Ceballos fd62a6e9a7 updated to use report_auth_info() since user_pass is needed to authenticate.
git-svn-id: file:///home/svn/framework3/trunk@9051 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 16:45:50 +00:00
Mario Ceballos 426e0b5b24 updated to use report_auth_info() since the sid is needed to authenticate.
git-svn-id: file:///home/svn/framework3/trunk@9049 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 13:56:56 +00:00
HD Moore ee4528ed86 Fix negative timeouts
git-svn-id: file:///home/svn/framework3/trunk@9048 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 13:26:50 +00:00
Mario Ceballos a3e92b2e75 updated to use report_auth_info() since the sid is need to authenticate.
git-svn-id: file:///home/svn/framework3/trunk@9047 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 12:36:00 +00:00
HD Moore 498c225555 If its required, it better have a valid default. Fixing
git-svn-id: file:///home/svn/framework3/trunk@9028 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 16:36:28 +00:00
Tod Beardsley 168d03b2ff Deregister RHOST for the capture test module, since it's not required for this purpose.
git-svn-id: file:///home/svn/framework3/trunk@9027 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 14:23:40 +00:00
HD Moore 1de8e13378 Remove the stack traces from these scanners
git-svn-id: file:///home/svn/framework3/trunk@9024 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 03:57:22 +00:00
HD Moore 54b276d5e5 Cosmetic
git-svn-id: file:///home/svn/framework3/trunk@9009 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-04 16:35:43 +00:00
Joshua Drake 61b4500ffd remove svn:executable from various files
git-svn-id: file:///home/svn/framework3/trunk@8974 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-01 16:20:34 +00:00
HD Moore c9ad11fbe1 Fix typo in title. Thanks ragecyr!
git-svn-id: file:///home/svn/framework3/trunk@8961 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-30 17:57:22 +00:00
Joshua Drake aaee658c3c fix 1.8/1.9 compat issue
git-svn-id: file:///home/svn/framework3/trunk@8960 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-30 17:00:39 +00:00
HD Moore ba12ddd280 Allow authbrute modules to use a single username/password in a sane way
git-svn-id: file:///home/svn/framework3/trunk@8945 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 23:52:43 +00:00
HD Moore 9cc4cab9ec Duplicate the datastore and manually set user/pass in the telnet/ssh modules
git-svn-id: file:///home/svn/framework3/trunk@8943 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 22:57:29 +00:00
HD Moore b0425f10cd Cleanup some of the output
git-svn-id: file:///home/svn/framework3/trunk@8942 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 22:13:50 +00:00
Steve Tornio 4945d53500 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@8931 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-26 11:37:59 +00:00
Mario Ceballos cae262e374 added cve reference. thanks Kurt.
git-svn-id: file:///home/svn/framework3/trunk@8924 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-26 00:47:13 +00:00
Mario Ceballos bcbfb5f900 added exploit module dbms_export_extension.rb
git-svn-id: file:///home/svn/framework3/trunk@8923 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 23:49:54 +00:00
HD Moore cd71cfbad1 Handle buggy HTTP servers better
git-svn-id: file:///home/svn/framework3/trunk@8921 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 21:35:37 +00:00
Tod Beardsley 25ec5fa444 Do a little better password management for services that don't ask for usernames -- fingerprint them ahead of time, and resort the credentials list in a usernameless way. Also, this allows telnet RST's to be treated just as busy services, since sometimes telnet servers get persnickety about a lot of login attempts, but they do come back shortly.
git-svn-id: file:///home/svn/framework3/trunk@8920 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 21:32:32 +00:00
Tod Beardsley 6d606a7587 Fixes #1304. Removes the this_cred bit since that got swapped out for the new auth_brute scheme.
git-svn-id: file:///home/svn/framework3/trunk@8915 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 13:27:29 +00:00
James Lee a27c941714 targ_host -> target_host
git-svn-id: file:///home/svn/framework3/trunk@8909 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:09:04 +00:00
James Lee dd26a227ef targ_host -> target_host
git-svn-id: file:///home/svn/framework3/trunk@8908 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:05:23 +00:00
James Lee fd97c89959 targ_host --> target_host for consistency with other modules
git-svn-id: file:///home/svn/framework3/trunk@8907 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 00:41:58 +00:00
James Lee 282c2fb2b2 targ_host --> target_host for consistency with other modules
git-svn-id: file:///home/svn/framework3/trunk@8906 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 00:40:50 +00:00
HD Moore f16b1b5b7a Add CVE reference for open NFS shares
git-svn-id: file:///home/svn/framework3/trunk@8905 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 22:40:06 +00:00
HD Moore af3ab0a260 Handle situations where any user/pass is allowed
git-svn-id: file:///home/svn/framework3/trunk@8904 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 21:11:00 +00:00
HD Moore 3a88909c06 Rename for consistency
git-svn-id: file:///home/svn/framework3/trunk@8903 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:33:21 +00:00
HD Moore aa1c65f4e6 Add a quick and dirty HTTP scanner
git-svn-id: file:///home/svn/framework3/trunk@8901 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:28:09 +00:00
James Lee 1dc7a4a21f i'm tired of support requests for oci libs not being installed
git-svn-id: file:///home/svn/framework3/trunk@8899 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 19:02:38 +00:00
James Lee 24d93655bb print the report results even if the db is not available. see #737
git-svn-id: file:///home/svn/framework3/trunk@8898 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 16:28:04 +00:00
HD Moore 3dbfd0b8e3 A little too verbose
git-svn-id: file:///home/svn/framework3/trunk@8884 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 22:44:58 +00:00
Tod Beardsley 1458fbad54 Adds some fingerprinting to the tomcat manager login auxiliary module.
git-svn-id: file:///home/svn/framework3/trunk@8883 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 22:19:46 +00:00
Tod Beardsley 83d96d713c Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently.
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 20:07:26 +00:00
HD Moore 4c913a576d Remove OS reporting, this is handled better elsewhere
git-svn-id: file:///home/svn/framework3/trunk@8871 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:20:09 +00:00
HD Moore 9632f8251a Move OS-level fingerprints out, report note-level fingerprints instead
git-svn-id: file:///home/svn/framework3/trunk@8869 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:09:04 +00:00
HD Moore 480380003c Make verbose status printing standardized across login modules
git-svn-id: file:///home/svn/framework3/trunk@8866 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-21 18:42:47 +00:00
Tod Beardsley c1976e22f3 Adding J Duenow's sport patch to synflood. Thanks!
git-svn-id: file:///home/svn/framework3/trunk@8849 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-18 16:30:57 +00:00
Joshua Drake 9311253e32 <pre>revert stty -echo execution -- it breaks telnets to some devices</pre>
git-svn-id: file:///home/svn/framework3/trunk@8848 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-18 15:40:15 +00:00
Tod Beardsley 3f69bb8053 Fixes the handling for telnet services when the server is "busy" -- this is common wit HP JetDirect servers, where the server will respond with a busy message up to several seconds after the last connection logged off. While this does mean that credential tests will be skipped, they will at least not be scored incorrectly as false postives.
Also, this removes the disconnect() method in favor of self.sock.close(). Disconnect seems to have a tendency to leave sessions half-closed, which will cause a busy state to never clear. self.sock.close doesn't appear to have this effect if you use a slower bruteforce_speed option (3 seems to work all right).



git-svn-id: file:///home/svn/framework3/trunk@8835 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-16 18:45:50 +00:00
HD Moore 0f7a6cd1f2 Store the name and domain in the service info
git-svn-id: file:///home/svn/framework3/trunk@8826 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 21:35:21 +00:00
HD Moore 1b54c0e493 Closes #1129. Merges in Thomas's xdb_sid_brute patch
git-svn-id: file:///home/svn/framework3/trunk@8825 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 20:31:53 +00:00
HD Moore 9f4ba25823 Add shiny new Oracle 0day (found by David Litchfield, ported to Metasploit by sid)
git-svn-id: file:///home/svn/framework3/trunk@8822 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 16:34:46 +00:00
Carlos Perez 5c7045e680 Applied Patch provided by Rob Fuller Mubix
git-svn-id: file:///home/svn/framework3/trunk@8819 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 00:37:26 +00:00
HD Moore b1af1feb3f Use double not single quotes
git-svn-id: file:///home/svn/framework3/trunk@8815 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-14 04:13:00 +00:00
HD Moore 821a0bcf37 SMB share enumeration
git-svn-id: file:///home/svn/framework3/trunk@8813 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-14 03:44:50 +00:00
HD Moore 84b7f4bb85 Store the nfs service and export information into the db
git-svn-id: file:///home/svn/framework3/trunk@8812 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-14 00:34:46 +00:00
Joshua Drake a6377cc63b turn off echo for telnet sessions
git-svn-id: file:///home/svn/framework3/trunk@8801 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-11 23:03:44 +00:00
Mario Ceballos 5b6442aa58 added a patch and added a new module from Thomas Ring.
git-svn-id: file:///home/svn/framework3/trunk@8800 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-11 22:55:37 +00:00
Mario Ceballos b01f9ff233 adds a patch from Thomas Ring.
git-svn-id: file:///home/svn/framework3/trunk@8775 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 22:42:49 +00:00
Tod Beardsley efbdaba298 Making telnet timeouts much less disasterous, since they can happen pretty commonly.
git-svn-id: file:///home/svn/framework3/trunk@8769 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 21:54:20 +00:00
Tod Beardsley 542a9a0617 Report MySQL application-level protocol errors (such as host not allowed messages).
git-svn-id: file:///home/svn/framework3/trunk@8767 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 17:56:03 +00:00
Joshua Drake b419a40c45 finished periodic missing CVE reference check (hint vulns w/o CVEs here!)
also some minor cleanups here and there

git-svn-id: file:///home/svn/framework3/trunk@8762 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 05:58:01 +00:00
Tod Beardsley 4415e3fbbf Fixing up ssh_login reporting.
git-svn-id: file:///home/svn/framework3/trunk@8759 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-09 22:07:04 +00:00
Joshua Drake df395f3ff0 added Brett Gervasoni to authors
git-svn-id: file:///home/svn/framework3/trunk@8758 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-09 09:12:57 +00:00
HD Moore a239963a7d Handle wrapped TCP services better
git-svn-id: file:///home/svn/framework3/trunk@8756 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-09 05:38:28 +00:00
Joshua Drake 5543e4551f add auxiliary dos module for apache mod_isapi bug
git-svn-id: file:///home/svn/framework3/trunk@8752 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 23:21:17 +00:00
HD Moore b1973c6630 Adds detection and exploitation coverage for the Energizer Duo trojan
git-svn-id: file:///home/svn/framework3/trunk@8749 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 19:06:50 +00:00
HD Moore a35817f0cc Store more information
git-svn-id: file:///home/svn/framework3/trunk@8742 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 13:52:39 +00:00
HD Moore d5b85db27f Fixes a false positive when the server always replies with 200 OK
git-svn-id: file:///home/svn/framework3/trunk@8740 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 05:26:33 +00:00
HD Moore a5d05fc2fb Fix up a typo
git-svn-id: file:///home/svn/framework3/trunk@8738 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 04:39:06 +00:00
HD Moore 5cc63cf983 Report the epm service as well
git-svn-id: file:///home/svn/framework3/trunk@8737 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 04:35:14 +00:00
Tod Beardsley 5ce7b4d186 Pass this_cred for tomcat_mgr_login
git-svn-id: file:///home/svn/framework3/trunk@8730 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-05 20:05:01 +00:00
Tod Beardsley 3d1f773f18 Reimplementing DB2's auth checker to use the same methods as the other auth_brute modules.
git-svn-id: file:///home/svn/framework3/trunk@8722 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-05 00:44:39 +00:00
Tod Beardsley a5e187bd69 Add the ability to slow down brute force sessions.
git-svn-id: file:///home/svn/framework3/trunk@8719 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 23:29:26 +00:00
Joshua Drake 0ed5fc1af1 change VERBOSE option from OptString to OptBool
git-svn-id: file:///home/svn/framework3/trunk@8715 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 20:59:49 +00:00
James Lee bf2a64b3ac use new argument list for get_host
git-svn-id: file:///home/svn/framework3/trunk@8711 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 07:59:55 +00:00
James Lee 4f08e6fd25 treat the database as write-only and use the (improved) target cache, fixes 986
git-svn-id: file:///home/svn/framework3/trunk@8708 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 07:37:58 +00:00
James Lee b70b17b42a don't use undefined variables.
git-svn-id: file:///home/svn/framework3/trunk@8701 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-03 19:51:05 +00:00
James Lee c07b47b30b explicitly rescue timeouts since they inherit from ::Interrupt on ruby 1.8
git-svn-id: file:///home/svn/framework3/trunk@8694 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 23:08:05 +00:00
Tod Beardsley 7d3ac25586 Adds Citrix-ICA to the UDP sweep discovery module.
git-svn-id: file:///home/svn/framework3/trunk@8693 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 18:48:28 +00:00
Joshua Drake 7a37934a01 process autorun scripts for telnet_login and ssh_login
1. create session.process_autoruns in Msf::Sessions::CommandShell
2. call process_autoruns from within the handler on_session code
4. set user_input and user_output in sessions base set_from_exploit method
5. remove on_session from Msf::Sessions::CommandShellOptions
6. include CommandShellOptions into telnet_login and ssh_login
7. call sess.process_autoruns from telnet_login and ssh_login
8. celebrate (while crossing fingers of course)!

git-svn-id: file:///home/svn/framework3/trunk@8692 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 18:07:50 +00:00
Tod Beardsley 09a669875c Bumping the minimum version of MySQL to try back to 4.1.20, no problems seen
on that build.



git-svn-id: file:///home/svn/framework3/trunk@8691 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 16:52:22 +00:00
Tod Beardsley 453451a26d Check the version number of the remote MySQL server before attempting
to log in. Sadly, the library we're using right now doesn't know
how to correctly negotiate 4.x and 3.x versions of MySQL. Until that
gets resolved (by writing a new library for these old versions), 
this will at least prevent false positives/negatives from getting
reported.



git-svn-id: file:///home/svn/framework3/trunk@8681 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 22:56:00 +00:00
Tod Beardsley e2af2f9ab9 Again.
git-svn-id: file:///home/svn/framework3/trunk@8680 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:37 +00:00
Tod Beardsley e1a02d602d Fixing up the tomcat login scanner.
git-svn-id: file:///home/svn/framework3/trunk@8679 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:20 +00:00
HD Moore 304a238d3e Add pop3/imap4 scanners
git-svn-id: file:///home/svn/framework3/trunk@8664 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 19:06:26 +00:00
HD Moore 0d87003497 Rename for consistency
git-svn-id: file:///home/svn/framework3/trunk@8662 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 18:48:09 +00:00
HD Moore 2cbf64b85a Fix up the stored banner for SMTP
git-svn-id: file:///home/svn/framework3/trunk@8661 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 18:47:48 +00:00
Joshua Drake e1c5334d56 add register_autofilter_ports
git-svn-id: file:///home/svn/framework3/trunk@8652 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 01:53:02 +00:00
HD Moore d5e07a3ba9 Change info
git-svn-id: file:///home/svn/framework3/trunk@8650 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 01:09:09 +00:00
James Lee 7b7f3de307 allow a single user/pass
git-svn-id: file:///home/svn/framework3/trunk@8646 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 22:45:33 +00:00
James Lee 3961b9a3dd allow a single user/pass
git-svn-id: file:///home/svn/framework3/trunk@8645 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 22:44:13 +00:00
Tod Beardsley bd35a70017 Wrapping up the whole timeout sequence in a timeout to avoid getting stuck.
git-svn-id: file:///home/svn/framework3/trunk@8643 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 21:35:55 +00:00
James Lee dfe9698cb3 stop bruting if the page isn't there
git-svn-id: file:///home/svn/framework3/trunk@8641 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 20:50:46 +00:00
Tod Beardsley e7a7f254e4 Fixes SSH scanning in to recover in the face of tarpits and tcpwrappers and the like.
git-svn-id: file:///home/svn/framework3/trunk@8639 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 17:42:51 +00:00
Steve Tornio 4e7f242230 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@8636 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 12:03:44 +00:00
Joshua Drake ff703cdb73 fix whitespace and add keywords
git-svn-id: file:///home/svn/framework3/trunk@8633 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 00:13:56 +00:00
cg aa3836dbc2 vmware directory traversal module
git-svn-id: file:///home/svn/framework3/trunk@8632 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-24 23:58:51 +00:00
Steve Tornio 04ba28f403 add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@8609 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 19:26:07 +00:00
Steve Tornio 0a52de8e6b add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@8608 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 19:15:45 +00:00
HD Moore 48d6e6d18b Remove -'s
git-svn-id: file:///home/svn/framework3/trunk@8604 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 18:03:54 +00:00
Steve Tornio d52589b2a3 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@8602 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 17:29:52 +00:00
Steve Tornio 4ae27e32b0 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@8600 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 17:16:38 +00:00
HD Moore d148c95c84 The ssh login code can now create sessions
git-svn-id: file:///home/svn/framework3/trunk@8598 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 07:12:54 +00:00
HD Moore 80f1f48b2d Merge in loot and user, fix up telnet to handle eof better
git-svn-id: file:///home/svn/framework3/trunk@8594 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-22 23:45:43 +00:00