Joshua Drake
1be5df045f
whitespace fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9362 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 01:52:59 +00:00
Tod Beardsley
f37d61922b
Adding a case for Linux and friends for finger enumeration.
...
git-svn-id: file:///home/svn/framework3/trunk@9354 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 21:44:17 +00:00
Joshua Drake
14a6a1b95f
another error message update, see #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9351 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:23 +00:00
Tod Beardsley
1a2be34a63
Fixes #2002 . Needed to work with some pipelining to get this all to work right, but it seems to function now pretty well -- if the target takes Basic, do basic, if the target takes NTLM, do NTLM. Should implement Digest too, but I don't think hardly anyone uses that.
...
git-svn-id: file:///home/svn/framework3/trunk@9346 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-22 17:58:01 +00:00
Tod Beardsley
e02fd71de9
See #2002 . Skip authentication schemes that we don't know how to do.
...
git-svn-id: file:///home/svn/framework3/trunk@9343 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 17:32:54 +00:00
Joshua Drake
793e6ddd52
tweak error message, see #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9342 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 15:38:07 +00:00
Joshua Drake
688c76f7a0
catch ConnectionError exception before it gets passed higher up, fixes #1994
...
git-svn-id: file:///home/svn/framework3/trunk@9335 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:33:12 +00:00
HD Moore
ce12be8533
Dont let the session socket get cleaned up
...
git-svn-id: file:///home/svn/framework3/trunk@9315 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-17 20:34:20 +00:00
James Lee
f440317225
store the name of the file we got the key from
...
git-svn-id: file:///home/svn/framework3/trunk@9300 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-14 06:00:06 +00:00
Tod Beardsley
0c7f1a7449
Moving MySQL version requirements even farther back.
...
git-svn-id: file:///home/svn/framework3/trunk@9295 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 20:19:09 +00:00
Tod Beardsley
ca3df5dd5e
Give an error message, don't just quietly fail.
...
git-svn-id: file:///home/svn/framework3/trunk@9293 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 18:23:30 +00:00
Steve Tornio
861876f10b
osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9290 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 15:44:06 +00:00
Steve Tornio
cf8d90c69f
add refs
...
git-svn-id: file:///home/svn/framework3/trunk@9289 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 15:40:25 +00:00
Tod Beardsley
f9aa3a0c70
Bumping acceptable MySQL scan target back to version 4.1.11
...
git-svn-id: file:///home/svn/framework3/trunk@9288 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 14:52:00 +00:00
Steve Tornio
ec4ed55d0d
add references
...
git-svn-id: file:///home/svn/framework3/trunk@9283 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 14:51:43 +00:00
Joshua Drake
770416d792
mention vista was used for testing, see #1868
...
git-svn-id: file:///home/svn/framework3/trunk@9278 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 00:32:53 +00:00
Joshua Drake
128e0515ef
stop perpetuating the ambiguity!
...
git-svn-id: file:///home/svn/framework3/trunk@9262 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-09 17:45:00 +00:00
HD Moore
aedf63c063
Add Lotus Domino password hash dumper from Tiago Ferreira
...
git-svn-id: file:///home/svn/framework3/trunk@9253 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-09 00:44:23 +00:00
HD Moore
ffd6dbfaab
include the reporting mixin
...
git-svn-id: file:///home/svn/framework3/trunk@9234 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 23:39:12 +00:00
HD Moore
d13adef38e
Fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@9233 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 23:21:47 +00:00
HD Moore
5b7cdc2350
Lotus Domino bruteforce module by Tiago Ferreira
...
git-svn-id: file:///home/svn/framework3/trunk@9232 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 23:07:00 +00:00
James Lee
62fbc0ad5b
use empty strings instead of nil. fixes #1717
...
git-svn-id: file:///home/svn/framework3/trunk@9228 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 20:03:47 +00:00
Steve Tornio
0c63df8db5
reference updates
...
git-svn-id: file:///home/svn/framework3/trunk@9225 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 18:18:51 +00:00
HD Moore
c71ca00efb
Remove debugging line
...
git-svn-id: file:///home/svn/framework3/trunk@9224 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 16:17:36 +00:00
HD Moore
48a03e1dd3
Handle OS X better
...
git-svn-id: file:///home/svn/framework3/trunk@9223 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 16:08:59 +00:00
cg
dc65be2cbe
lotus domino version module
...
git-svn-id: file:///home/svn/framework3/trunk@9221 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-05 03:08:30 +00:00
Joshua Drake
4bc86e603e
fix a couple more silly regex mishaps
...
git-svn-id: file:///home/svn/framework3/trunk@9220 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-04 23:09:32 +00:00
HD Moore
d1c3b71fd4
Fix a typo
...
git-svn-id: file:///home/svn/framework3/trunk@9215 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 19:35:59 +00:00
Tod Beardsley
71a4ec6204
Pluralization.
...
git-svn-id: file:///home/svn/framework3/trunk@9214 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 18:43:44 +00:00
Joshua Drake
0e72894e58
more cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@9212 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 17:13:09 +00:00
Joshua Drake
c67ad6767c
handle connection reset more gracefully
...
git-svn-id: file:///home/svn/framework3/trunk@9192 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-01 23:57:10 +00:00
HD Moore
42da9e899a
Improvements to the cleanup process, close sockets properly for exploits and auxiliary
...
git-svn-id: file:///home/svn/framework3/trunk@9187 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-01 16:26:24 +00:00
Joshua Drake
0ea6eca4bc
big module whitespace/formatting cleanup pass
...
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Joshua Drake
0685a75216
switch raw_send_recv for send_cmd, fixes #606
...
git-svn-id: file:///home/svn/framework3/trunk@9169 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-29 04:47:47 +00:00
Steve Tornio
6a20cf524c
add some refs
...
git-svn-id: file:///home/svn/framework3/trunk@9163 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-27 21:23:20 +00:00
HD Moore
7464361d0a
Handle ENOBUFS errors
...
git-svn-id: file:///home/svn/framework3/trunk@9154 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-27 14:38:17 +00:00
Steve Tornio
0d674177e0
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9153 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-27 11:16:52 +00:00
Tod Beardsley
08117ca000
Forcing :critical => true for report_auth_info
...
git-svn-id: file:///home/svn/framework3/trunk@9150 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 22:23:37 +00:00
Mario Ceballos
ca6adb515e
added auxiliary module for CVE-2010-0870
...
git-svn-id: file:///home/svn/framework3/trunk@9148 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 21:36:36 +00:00
Steve Tornio
22a9aa9b4e
=add cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@9142 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 18:42:07 +00:00
Joshua Drake
a953c47cfb
remove carriage returns
...
git-svn-id: file:///home/svn/framework3/trunk@9140 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-26 18:29:24 +00:00
Steve Tornio
65ec171c2b
add refs
...
git-svn-id: file:///home/svn/framework3/trunk@9135 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 18:46:08 +00:00
Steve Tornio
571741d58e
add cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@9134 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 18:33:27 +00:00
Steve Tornio
5d39c1e4be
add cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@9132 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 14:52:44 +00:00
Steve Tornio
2a7a6dcf23
add cve and osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@9131 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-25 14:29:47 +00:00
Tod Beardsley
1c6891a3f8
For smb_login, quit trying a username if we learn that the password is expired or if the account is locked out or disabled.
...
git-svn-id: file:///home/svn/framework3/trunk@9117 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-22 22:12:13 +00:00
Tod Beardsley
bd94145d8d
Allows reporting auth credentials to be optional with exploit/windows/smb/psexec. Sometimes you don't want this, especially if you already have an auth credential via smb_login.
...
For auxiliary/scanner/smb/smb_login, if a password hash is used instead of a password, record it as a :hash instead of a :pass when reporting to the DB.
git-svn-id: file:///home/svn/framework3/trunk@9116 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-22 17:23:29 +00:00
Joshua Drake
fe250cda25
minor tweaks, add commnted out debug statements
...
git-svn-id: file:///home/svn/framework3/trunk@9105 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-19 22:46:52 +00:00
Tod Beardsley
888e80f92c
Fixes up various usability bugs with AuthBrute, many of which revolved around smb_login tests.
...
git-svn-id: file:///home/svn/framework3/trunk@9086 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 17:29:47 +00:00
Joshua Drake
8e5f0a37d8
rename modules to microsoft bulletin names and update references
...
git-svn-id: file:///home/svn/framework3/trunk@9085 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 16:08:27 +00:00
Joshua Drake
5aea21fcb8
speel more godoer
...
git-svn-id: file:///home/svn/framework3/trunk@9080 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-15 02:09:08 +00:00
HD Moore
56d50d6794
match enumusers output more closely
...
git-svn-id: file:///home/svn/framework3/trunk@9069 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-14 04:39:51 +00:00
Mario Ceballos
29755d7445
updated with the db2remotecmd pipe.
...
git-svn-id: file:///home/svn/framework3/trunk@9067 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-14 00:59:32 +00:00
Tod Beardsley
a97e4c78bd
Commit the key as :ssh_key, not :pass.
...
git-svn-id: file:///home/svn/framework3/trunk@9065 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-13 21:26:21 +00:00
Tod Beardsley
2a3b8ea57a
Adds a module for scanning hosts for valid login credentials using unencrypted SSH private keys. Also completes the commit for r9059 to record auth_info hashes on successes.
...
git-svn-id: file:///home/svn/framework3/trunk@9062 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-13 19:21:48 +00:00
Mario Ceballos
fd62a6e9a7
updated to use report_auth_info() since user_pass is needed to authenticate.
...
git-svn-id: file:///home/svn/framework3/trunk@9051 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 16:45:50 +00:00
Mario Ceballos
426e0b5b24
updated to use report_auth_info() since the sid is needed to authenticate.
...
git-svn-id: file:///home/svn/framework3/trunk@9049 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 13:56:56 +00:00
HD Moore
ee4528ed86
Fix negative timeouts
...
git-svn-id: file:///home/svn/framework3/trunk@9048 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 13:26:50 +00:00
Mario Ceballos
a3e92b2e75
updated to use report_auth_info() since the sid is need to authenticate.
...
git-svn-id: file:///home/svn/framework3/trunk@9047 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-11 12:36:00 +00:00
HD Moore
498c225555
If its required, it better have a valid default. Fixing
...
git-svn-id: file:///home/svn/framework3/trunk@9028 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 16:36:28 +00:00
Tod Beardsley
168d03b2ff
Deregister RHOST for the capture test module, since it's not required for this purpose.
...
git-svn-id: file:///home/svn/framework3/trunk@9027 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 14:23:40 +00:00
HD Moore
1de8e13378
Remove the stack traces from these scanners
...
git-svn-id: file:///home/svn/framework3/trunk@9024 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-06 03:57:22 +00:00
HD Moore
54b276d5e5
Cosmetic
...
git-svn-id: file:///home/svn/framework3/trunk@9009 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-04 16:35:43 +00:00
Joshua Drake
61b4500ffd
remove svn:executable from various files
...
git-svn-id: file:///home/svn/framework3/trunk@8974 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-01 16:20:34 +00:00
HD Moore
c9ad11fbe1
Fix typo in title. Thanks ragecyr!
...
git-svn-id: file:///home/svn/framework3/trunk@8961 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-30 17:57:22 +00:00
Joshua Drake
aaee658c3c
fix 1.8/1.9 compat issue
...
git-svn-id: file:///home/svn/framework3/trunk@8960 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-30 17:00:39 +00:00
HD Moore
ba12ddd280
Allow authbrute modules to use a single username/password in a sane way
...
git-svn-id: file:///home/svn/framework3/trunk@8945 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 23:52:43 +00:00
HD Moore
9cc4cab9ec
Duplicate the datastore and manually set user/pass in the telnet/ssh modules
...
git-svn-id: file:///home/svn/framework3/trunk@8943 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 22:57:29 +00:00
HD Moore
b0425f10cd
Cleanup some of the output
...
git-svn-id: file:///home/svn/framework3/trunk@8942 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-27 22:13:50 +00:00
Steve Tornio
4945d53500
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8931 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-26 11:37:59 +00:00
Mario Ceballos
cae262e374
added cve reference. thanks Kurt.
...
git-svn-id: file:///home/svn/framework3/trunk@8924 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-26 00:47:13 +00:00
Mario Ceballos
bcbfb5f900
added exploit module dbms_export_extension.rb
...
git-svn-id: file:///home/svn/framework3/trunk@8923 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 23:49:54 +00:00
HD Moore
cd71cfbad1
Handle buggy HTTP servers better
...
git-svn-id: file:///home/svn/framework3/trunk@8921 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 21:35:37 +00:00
Tod Beardsley
25ec5fa444
Do a little better password management for services that don't ask for usernames -- fingerprint them ahead of time, and resort the credentials list in a usernameless way. Also, this allows telnet RST's to be treated just as busy services, since sometimes telnet servers get persnickety about a lot of login attempts, but they do come back shortly.
...
git-svn-id: file:///home/svn/framework3/trunk@8920 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 21:32:32 +00:00
Tod Beardsley
6d606a7587
Fixes #1304 . Removes the this_cred bit since that got swapped out for the new auth_brute scheme.
...
git-svn-id: file:///home/svn/framework3/trunk@8915 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 13:27:29 +00:00
James Lee
a27c941714
targ_host -> target_host
...
git-svn-id: file:///home/svn/framework3/trunk@8909 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:09:04 +00:00
James Lee
dd26a227ef
targ_host -> target_host
...
git-svn-id: file:///home/svn/framework3/trunk@8908 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 01:05:23 +00:00
James Lee
fd97c89959
targ_host --> target_host for consistency with other modules
...
git-svn-id: file:///home/svn/framework3/trunk@8907 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 00:41:58 +00:00
James Lee
282c2fb2b2
targ_host --> target_host for consistency with other modules
...
git-svn-id: file:///home/svn/framework3/trunk@8906 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-25 00:40:50 +00:00
HD Moore
f16b1b5b7a
Add CVE reference for open NFS shares
...
git-svn-id: file:///home/svn/framework3/trunk@8905 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 22:40:06 +00:00
HD Moore
af3ab0a260
Handle situations where any user/pass is allowed
...
git-svn-id: file:///home/svn/framework3/trunk@8904 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 21:11:00 +00:00
HD Moore
3a88909c06
Rename for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@8903 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:33:21 +00:00
HD Moore
aa1c65f4e6
Add a quick and dirty HTTP scanner
...
git-svn-id: file:///home/svn/framework3/trunk@8901 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 20:28:09 +00:00
James Lee
1dc7a4a21f
i'm tired of support requests for oci libs not being installed
...
git-svn-id: file:///home/svn/framework3/trunk@8899 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 19:02:38 +00:00
James Lee
24d93655bb
print the report results even if the db is not available. see #737
...
git-svn-id: file:///home/svn/framework3/trunk@8898 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-24 16:28:04 +00:00
HD Moore
3dbfd0b8e3
A little too verbose
...
git-svn-id: file:///home/svn/framework3/trunk@8884 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 22:44:58 +00:00
Tod Beardsley
1458fbad54
Adds some fingerprinting to the tomcat manager login auxiliary module.
...
git-svn-id: file:///home/svn/framework3/trunk@8883 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 22:19:46 +00:00
Tod Beardsley
83d96d713c
Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently.
...
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 20:07:26 +00:00
HD Moore
4c913a576d
Remove OS reporting, this is handled better elsewhere
...
git-svn-id: file:///home/svn/framework3/trunk@8871 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:20:09 +00:00
HD Moore
9632f8251a
Move OS-level fingerprints out, report note-level fingerprints instead
...
git-svn-id: file:///home/svn/framework3/trunk@8869 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-22 00:09:04 +00:00
HD Moore
480380003c
Make verbose status printing standardized across login modules
...
git-svn-id: file:///home/svn/framework3/trunk@8866 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-21 18:42:47 +00:00
Tod Beardsley
c1976e22f3
Adding J Duenow's sport patch to synflood. Thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@8849 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-18 16:30:57 +00:00
Joshua Drake
9311253e32
<pre>revert stty -echo execution -- it breaks telnets to some devices</pre>
...
git-svn-id: file:///home/svn/framework3/trunk@8848 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-18 15:40:15 +00:00
Tod Beardsley
3f69bb8053
Fixes the handling for telnet services when the server is "busy" -- this is common wit HP JetDirect servers, where the server will respond with a busy message up to several seconds after the last connection logged off. While this does mean that credential tests will be skipped, they will at least not be scored incorrectly as false postives.
...
Also, this removes the disconnect() method in favor of self.sock.close(). Disconnect seems to have a tendency to leave sessions half-closed, which will cause a busy state to never clear. self.sock.close doesn't appear to have this effect if you use a slower bruteforce_speed option (3 seems to work all right).
git-svn-id: file:///home/svn/framework3/trunk@8835 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-16 18:45:50 +00:00
HD Moore
0f7a6cd1f2
Store the name and domain in the service info
...
git-svn-id: file:///home/svn/framework3/trunk@8826 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 21:35:21 +00:00
HD Moore
1b54c0e493
Closes #1129 . Merges in Thomas's xdb_sid_brute patch
...
git-svn-id: file:///home/svn/framework3/trunk@8825 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 20:31:53 +00:00
HD Moore
9f4ba25823
Add shiny new Oracle 0day (found by David Litchfield, ported to Metasploit by sid)
...
git-svn-id: file:///home/svn/framework3/trunk@8822 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 16:34:46 +00:00
Carlos Perez
5c7045e680
Applied Patch provided by Rob Fuller Mubix
...
git-svn-id: file:///home/svn/framework3/trunk@8819 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-15 00:37:26 +00:00
HD Moore
b1af1feb3f
Use double not single quotes
...
git-svn-id: file:///home/svn/framework3/trunk@8815 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-14 04:13:00 +00:00
HD Moore
821a0bcf37
SMB share enumeration
...
git-svn-id: file:///home/svn/framework3/trunk@8813 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-14 03:44:50 +00:00
HD Moore
84b7f4bb85
Store the nfs service and export information into the db
...
git-svn-id: file:///home/svn/framework3/trunk@8812 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-14 00:34:46 +00:00
Joshua Drake
a6377cc63b
turn off echo for telnet sessions
...
git-svn-id: file:///home/svn/framework3/trunk@8801 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-11 23:03:44 +00:00
Mario Ceballos
5b6442aa58
added a patch and added a new module from Thomas Ring.
...
git-svn-id: file:///home/svn/framework3/trunk@8800 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-11 22:55:37 +00:00
Mario Ceballos
b01f9ff233
adds a patch from Thomas Ring.
...
git-svn-id: file:///home/svn/framework3/trunk@8775 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 22:42:49 +00:00
Tod Beardsley
efbdaba298
Making telnet timeouts much less disasterous, since they can happen pretty commonly.
...
git-svn-id: file:///home/svn/framework3/trunk@8769 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 21:54:20 +00:00
Tod Beardsley
542a9a0617
Report MySQL application-level protocol errors (such as host not allowed messages).
...
git-svn-id: file:///home/svn/framework3/trunk@8767 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 17:56:03 +00:00
Joshua Drake
b419a40c45
finished periodic missing CVE reference check (hint vulns w/o CVEs here!)
...
also some minor cleanups here and there
git-svn-id: file:///home/svn/framework3/trunk@8762 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-10 05:58:01 +00:00
Tod Beardsley
4415e3fbbf
Fixing up ssh_login reporting.
...
git-svn-id: file:///home/svn/framework3/trunk@8759 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-09 22:07:04 +00:00
Joshua Drake
df395f3ff0
added Brett Gervasoni to authors
...
git-svn-id: file:///home/svn/framework3/trunk@8758 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-09 09:12:57 +00:00
HD Moore
a239963a7d
Handle wrapped TCP services better
...
git-svn-id: file:///home/svn/framework3/trunk@8756 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-09 05:38:28 +00:00
Joshua Drake
5543e4551f
add auxiliary dos module for apache mod_isapi bug
...
git-svn-id: file:///home/svn/framework3/trunk@8752 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 23:21:17 +00:00
HD Moore
b1973c6630
Adds detection and exploitation coverage for the Energizer Duo trojan
...
git-svn-id: file:///home/svn/framework3/trunk@8749 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 19:06:50 +00:00
HD Moore
a35817f0cc
Store more information
...
git-svn-id: file:///home/svn/framework3/trunk@8742 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 13:52:39 +00:00
HD Moore
d5b85db27f
Fixes a false positive when the server always replies with 200 OK
...
git-svn-id: file:///home/svn/framework3/trunk@8740 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 05:26:33 +00:00
HD Moore
a5d05fc2fb
Fix up a typo
...
git-svn-id: file:///home/svn/framework3/trunk@8738 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 04:39:06 +00:00
HD Moore
5cc63cf983
Report the epm service as well
...
git-svn-id: file:///home/svn/framework3/trunk@8737 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-08 04:35:14 +00:00
Tod Beardsley
5ce7b4d186
Pass this_cred for tomcat_mgr_login
...
git-svn-id: file:///home/svn/framework3/trunk@8730 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-05 20:05:01 +00:00
Tod Beardsley
3d1f773f18
Reimplementing DB2's auth checker to use the same methods as the other auth_brute modules.
...
git-svn-id: file:///home/svn/framework3/trunk@8722 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-05 00:44:39 +00:00
Tod Beardsley
a5e187bd69
Add the ability to slow down brute force sessions.
...
git-svn-id: file:///home/svn/framework3/trunk@8719 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 23:29:26 +00:00
Joshua Drake
0ed5fc1af1
change VERBOSE option from OptString to OptBool
...
git-svn-id: file:///home/svn/framework3/trunk@8715 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 20:59:49 +00:00
James Lee
bf2a64b3ac
use new argument list for get_host
...
git-svn-id: file:///home/svn/framework3/trunk@8711 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 07:59:55 +00:00
James Lee
4f08e6fd25
treat the database as write-only and use the (improved) target cache, fixes 986
...
git-svn-id: file:///home/svn/framework3/trunk@8708 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-04 07:37:58 +00:00
James Lee
b70b17b42a
don't use undefined variables.
...
git-svn-id: file:///home/svn/framework3/trunk@8701 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-03 19:51:05 +00:00
James Lee
c07b47b30b
explicitly rescue timeouts since they inherit from ::Interrupt on ruby 1.8
...
git-svn-id: file:///home/svn/framework3/trunk@8694 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 23:08:05 +00:00
Tod Beardsley
7d3ac25586
Adds Citrix-ICA to the UDP sweep discovery module.
...
git-svn-id: file:///home/svn/framework3/trunk@8693 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 18:48:28 +00:00
Joshua Drake
7a37934a01
process autorun scripts for telnet_login and ssh_login
...
1. create session.process_autoruns in Msf::Sessions::CommandShell
2. call process_autoruns from within the handler on_session code
4. set user_input and user_output in sessions base set_from_exploit method
5. remove on_session from Msf::Sessions::CommandShellOptions
6. include CommandShellOptions into telnet_login and ssh_login
7. call sess.process_autoruns from telnet_login and ssh_login
8. celebrate (while crossing fingers of course)!
git-svn-id: file:///home/svn/framework3/trunk@8692 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 18:07:50 +00:00
Tod Beardsley
09a669875c
Bumping the minimum version of MySQL to try back to 4.1.20, no problems seen
...
on that build.
git-svn-id: file:///home/svn/framework3/trunk@8691 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-02 16:52:22 +00:00
Tod Beardsley
453451a26d
Check the version number of the remote MySQL server before attempting
...
to log in. Sadly, the library we're using right now doesn't know
how to correctly negotiate 4.x and 3.x versions of MySQL. Until that
gets resolved (by writing a new library for these old versions),
this will at least prevent false positives/negatives from getting
reported.
git-svn-id: file:///home/svn/framework3/trunk@8681 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 22:56:00 +00:00
Tod Beardsley
e2af2f9ab9
Again.
...
git-svn-id: file:///home/svn/framework3/trunk@8680 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:37 +00:00
Tod Beardsley
e1a02d602d
Fixing up the tomcat login scanner.
...
git-svn-id: file:///home/svn/framework3/trunk@8679 4d416f70-5f16-0410-b530-b9f4589650da
2010-03-01 20:20:20 +00:00
HD Moore
304a238d3e
Add pop3/imap4 scanners
...
git-svn-id: file:///home/svn/framework3/trunk@8664 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 19:06:26 +00:00
HD Moore
0d87003497
Rename for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@8662 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 18:48:09 +00:00
HD Moore
2cbf64b85a
Fix up the stored banner for SMTP
...
git-svn-id: file:///home/svn/framework3/trunk@8661 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 18:47:48 +00:00
Joshua Drake
e1c5334d56
add register_autofilter_ports
...
git-svn-id: file:///home/svn/framework3/trunk@8652 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 01:53:02 +00:00
HD Moore
d5e07a3ba9
Change info
...
git-svn-id: file:///home/svn/framework3/trunk@8650 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-26 01:09:09 +00:00
James Lee
7b7f3de307
allow a single user/pass
...
git-svn-id: file:///home/svn/framework3/trunk@8646 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 22:45:33 +00:00
James Lee
3961b9a3dd
allow a single user/pass
...
git-svn-id: file:///home/svn/framework3/trunk@8645 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 22:44:13 +00:00
Tod Beardsley
bd35a70017
Wrapping up the whole timeout sequence in a timeout to avoid getting stuck.
...
git-svn-id: file:///home/svn/framework3/trunk@8643 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 21:35:55 +00:00
James Lee
dfe9698cb3
stop bruting if the page isn't there
...
git-svn-id: file:///home/svn/framework3/trunk@8641 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 20:50:46 +00:00
Tod Beardsley
e7a7f254e4
Fixes SSH scanning in to recover in the face of tarpits and tcpwrappers and the like.
...
git-svn-id: file:///home/svn/framework3/trunk@8639 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 17:42:51 +00:00
Steve Tornio
4e7f242230
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8636 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 12:03:44 +00:00
Joshua Drake
ff703cdb73
fix whitespace and add keywords
...
git-svn-id: file:///home/svn/framework3/trunk@8633 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-25 00:13:56 +00:00
cg
aa3836dbc2
vmware directory traversal module
...
git-svn-id: file:///home/svn/framework3/trunk@8632 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-24 23:58:51 +00:00
Steve Tornio
04ba28f403
add osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@8609 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 19:26:07 +00:00
Steve Tornio
0a52de8e6b
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8608 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 19:15:45 +00:00
HD Moore
48d6e6d18b
Remove -'s
...
git-svn-id: file:///home/svn/framework3/trunk@8604 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 18:03:54 +00:00
Steve Tornio
d52589b2a3
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8602 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 17:29:52 +00:00
Steve Tornio
4ae27e32b0
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@8600 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 17:16:38 +00:00
HD Moore
d148c95c84
The ssh login code can now create sessions
...
git-svn-id: file:///home/svn/framework3/trunk@8598 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-23 07:12:54 +00:00
HD Moore
80f1f48b2d
Merge in loot and user, fix up telnet to handle eof better
...
git-svn-id: file:///home/svn/framework3/trunk@8594 4d416f70-5f16-0410-b530-b9f4589650da
2010-02-22 23:45:43 +00:00