infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
38,393 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

38393 Commits (e8ac5683524242d9c0ae34bd073feea98550b80a)

Author SHA1 Message Date
wchen-r7 faaaf6b765 MS10-58 Call super in #set_sane_defaults for caidao login scanner 
MS10-58
 2016-03-29 13:40:51 -05:00
Brendan Watters b84bf2290f Land #6707 Print Response fix for HTTP NTLM 2016-03-29 13:35:49 -05:00
thao doan 587f1ee7b3 Land #6708, module documentation for msfconsole 2016-03-29 11:30:55 -07:00
Brendan Watters 824a7837a2
LAND #6707, Print Response Fix for HTTP NTLM 2016-03-29 13:08:43 -05:00
Meatballs 4f84c5a3b7
Add additional SOLMAN default creds 2016-03-29 15:53:15 +01:00
William Vu 3d624c0ebe
Land #6719, datastore validation fix for file: 2016-03-28 23:38:16 -05:00
Brent Cook e25525b4a7 avoid validating file-based datastore options on assignment 
file:/ strings are special with some datastore options, causing them to read a
file rather than emitting the exact string. This causes a couple of problems.

1. the valid? check needs to be special on assignment, since normalization
   really means normalizing the path, not playing with the value as we would do
   for other types

2. there are races or simply out-of-order assignments when running commands
   like 'services -p 80 -R', where the datastore option is assigned before the
   file is actually written.

This is the 'easy' fix of disabling assignment validation (which we didn't have
before anyway) for types that can expect a file:/ prefix.
 2016-03-28 23:03:17 -05:00
Bigendian Smalls a6518b5273
Add generic JCL cmd payload for z/OS (mainframe) 
This payload does nothing but return successfully.  It can be used to
test exploits and as a basis for other JCL cmd payloads.
 2016-03-28 21:01:39 -05:00
OJ 6523600952 Add a rescue to catch method missing for stage_payload 
This allows us to provide a friendlier message to users when they are
using a stageless listener with a staged payload.
 2016-03-29 09:46:09 +10:00
James Lee f1857d6350
Kill defanged mode 2016-03-28 09:02:07 -05:00
Hans-Martin Münch (h0ng10) 976932ed43 Initial commit 2016-03-26 12:00:25 +01:00
Metasploit 72bde63397
Bump version of framework to 4.11.19 2016-03-25 13:03:35 -07:00
James Lee 9d86a49c51
Land #6692, udp socket abstraction 2016-03-25 13:05:10 -05:00
Brent Cook cadf66fc4b
Land #6691, initial meterpreter powershell extension support 2016-03-24 22:33:26 -05:00
Brent Cook 1fe40d9f2d update to metasploit-payloads 1.1.4 2016-03-24 22:32:55 -05:00
Brent Cook 242ea8d9cd Merge branch 'master' into land-6691- 2016-03-24 22:19:57 -05:00
OJ ce8a6f57a0 Added powershell_import support 2016-03-25 12:17:03 +10:00
wchen-r7 c4735bd72a Fix rspec pull_request_finder_spec.rb 2016-03-24 20:56:46 -05:00
wchen-r7 c3ce621d04 Fix gemfile 2016-03-24 20:43:51 -05:00
Brendan Watters 18604c3d44
Land #6705, Rectify MSF_CFGROOT_CONFIG comment 2016-03-24 18:21:05 -05:00
wchen-r7 57984706b8 Resolve merge conflict with Gemfile 2016-03-24 18:13:31 -05:00
wchen-r7 76c6f8c19d Move module_doc_template 2016-03-24 17:07:19 -05:00
sinn3r d8ca5a01d5 Merge pull request #41 from tdoan-r7/mod_doc_cmd 
Adding docs for Lester MS-1193
 2016-03-24 17:01:23 -05:00
tdoan-r7 925cc3b56f Adding docs for Lester https://issues.corp.rapid7.com/browse/MS-1193 2016-03-24 16:51:02 -05:00
James Lee dfa518b492
Whitespace 2016-03-24 15:21:03 -05:00
James Lee 0073a8f40e
Wrap comments at 78, style 2016-03-24 15:20:43 -05:00
sinn3r 324a41e650 Merge pull request #40 from tdoan-r7/mod_doc_cmd 
Minor edits for module docs
 2016-03-24 13:52:51 -05:00
Gregory Mikeska 7bd6d0c696
Merge branch 'master' into staging/rails-upgrade 2016-03-24 12:55:05 -05:00
tdoan-r7 0852973b18 Minor edits for the following: 
https://issues.corp.rapid7.com/browse/MS-1197
https://issues.corp.rapid7.com/browse/MS-1198
https://issues.corp.rapid7.com/browse/MS-1199
https://issues.corp.rapid7.com/browse/MS-1200
https://issues.corp.rapid7.com/browse/MS-1201
 2016-03-24 12:13:03 -05:00
William Vu 2b90846268 Add Apache Jetspeed exploit 2016-03-23 19:22:32 -05:00
Brendan Watters 6b4b523521
Land #6699, Update mailmap for Steven Seeley 2016-03-23 17:48:17 -05:00
Till Maas 7f002128ad Rectify MSF_CFGROOT_CONFIG comment 
Also remove reference to feature request that does not seem to be
available anymore.
 2016-03-23 22:23:30 +01:00
James Lee 6388578ee6
Style fixes 2016-03-23 16:15:46 -05:00
James Lee 98355c397c
Clean up some variable names 2016-03-23 15:07:00 -05:00
James Lee 685d8fc588
Use 2.x symbol literal syntax 2016-03-23 15:06:35 -05:00
dmohanty-r7 6a462d5f60
Land #6703, Make ms09_065_eot_integer passive 2016-03-23 13:39:41 -05:00
Adam Cammack 8fb55eeb6b
Land #6700, add aux module to gather browser info 2016-03-23 13:19:27 -05:00
James Lee effee42e2f
Raise a better exception for WSAEADDRINUSE 2016-03-23 13:15:38 -05:00
Louis Sato 0c19d89655
add more space for deprecation message 2016-03-23 11:39:42 -05:00
Louis Sato b0cdfe9ee1
Land #6704, move android stock browser iframe 2016-03-23 11:38:34 -05:00
wchen-r7 8c5c0086e6 Change cve_2012_6301 module path & make passive 
This addresses two things:

1. The module is in the wrong directory. dos/http is for http
   servers, not browsers.
2. PassiveActions should not be a 2D array.
 2016-03-23 11:10:23 -05:00
wchen-r7 53860bef1f Make ms09_065_eot_integer passive 
MS-932
 2016-03-23 10:50:24 -05:00
Metasploit e7b0c60e5c
Bump version of framework to 4.11.18 2016-03-23 07:55:29 -07:00
Brent Cook 4906327bc2
Land #6702, fix datastore option 'stickiness', fix OptPort validation 2016-03-22 23:26:19 -05:00
Adam Cammack 866c4718b0
Fix OptPort validation 
Allow a port value of 0 and don't reject empty values if the option is
not required.
 2016-03-22 23:01:18 -05:00
Adam Cammack ec3a0a108d
Change OptPort to inherit from OptInt 
Fixes the normalize and validate methods.
 2016-03-22 19:25:51 -05:00
Adam Cammack 22df7c0071
Fix datastore to validate options w/o a default 
Options without a default were not pulled into the `@options` hash and
therefore were not used to validate options on assignment.

I am not entirely sure how this fix works, since it would seem that
non-override options would not get pulled in if an option was first set
in the global datastore. However, a previous value does not get
overridden and new values are validated. Anything further is merely
speculation on my part.
 2016-03-22 19:12:53 -05:00
Adam Cammack 5c163960ed
Fix datastore to not freeze options on the default 2016-03-22 19:07:58 -05:00
wchen-r7 8bf039a69e ignore_items! should not be used in a loop 
because it's not necessary.
 2016-03-22 15:56:38 -05:00
wchen-r7 102d28bda4 Update atutor_filemanager_traversal 2016-03-22 14:44:07 -05:00