infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,321 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

445 Commits (ed4e19732f7b8cb9f3e1316712c2d012edaaf370)

Author SHA1 Message Date
Tod Beardsley 1c6891a3f8 For smb_login, quit trying a username if we learn that the password is expired or if the account is locked out or disabled. 
git-svn-id: file:///home/svn/framework3/trunk@9117 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-22 22:12:13 +00:00
Tod Beardsley bd94145d8d Allows reporting auth credentials to be optional with exploit/windows/smb/psexec. Sometimes you don't want this, especially if you already have an auth credential via smb_login. 
For auxiliary/scanner/smb/smb_login, if a password hash is used instead of a password, record it as a :hash instead of a :pass when reporting to the DB.



git-svn-id: file:///home/svn/framework3/trunk@9116 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-22 17:23:29 +00:00
Tod Beardsley 888e80f92c Fixes up various usability bugs with AuthBrute, many of which revolved around smb_login tests. 
git-svn-id: file:///home/svn/framework3/trunk@9086 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-15 17:29:47 +00:00
Joshua Drake 5aea21fcb8 speel more godoer 
git-svn-id: file:///home/svn/framework3/trunk@9080 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-15 02:09:08 +00:00
HD Moore 56d50d6794 match enumusers output more closely 
git-svn-id: file:///home/svn/framework3/trunk@9069 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-14 04:39:51 +00:00
Mario Ceballos 29755d7445 updated with the db2remotecmd pipe. 
git-svn-id: file:///home/svn/framework3/trunk@9067 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-14 00:59:32 +00:00
Tod Beardsley a97e4c78bd Commit the key as :ssh_key, not :pass. 
git-svn-id: file:///home/svn/framework3/trunk@9065 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-13 21:26:21 +00:00
Tod Beardsley 2a3b8ea57a Adds a module for scanning hosts for valid login credentials using unencrypted SSH private keys. Also completes the commit for r9059 to record auth_info hashes on successes. 
git-svn-id: file:///home/svn/framework3/trunk@9062 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-13 19:21:48 +00:00
Mario Ceballos a3e92b2e75 updated to use report_auth_info() since the sid is need to authenticate. 
git-svn-id: file:///home/svn/framework3/trunk@9047 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-11 12:36:00 +00:00
HD Moore 498c225555 If its required, it better have a valid default. Fixing 
git-svn-id: file:///home/svn/framework3/trunk@9028 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-06 16:36:28 +00:00
HD Moore 1de8e13378 Remove the stack traces from these scanners 
git-svn-id: file:///home/svn/framework3/trunk@9024 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-06 03:57:22 +00:00
Joshua Drake 61b4500ffd remove svn:executable from various files 
git-svn-id: file:///home/svn/framework3/trunk@8974 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-01 16:20:34 +00:00
HD Moore c9ad11fbe1 Fix typo in title. Thanks ragecyr! 
git-svn-id: file:///home/svn/framework3/trunk@8961 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-30 17:57:22 +00:00
HD Moore ba12ddd280 Allow authbrute modules to use a single username/password in a sane way 
git-svn-id: file:///home/svn/framework3/trunk@8945 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-27 23:52:43 +00:00
HD Moore 9cc4cab9ec Duplicate the datastore and manually set user/pass in the telnet/ssh modules 
git-svn-id: file:///home/svn/framework3/trunk@8943 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-27 22:57:29 +00:00
HD Moore b0425f10cd Cleanup some of the output 
git-svn-id: file:///home/svn/framework3/trunk@8942 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-27 22:13:50 +00:00
HD Moore cd71cfbad1 Handle buggy HTTP servers better 
git-svn-id: file:///home/svn/framework3/trunk@8921 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 21:35:37 +00:00
Tod Beardsley 25ec5fa444 Do a little better password management for services that don't ask for usernames -- fingerprint them ahead of time, and resort the credentials list in a usernameless way. Also, this allows telnet RST's to be treated just as busy services, since sometimes telnet servers get persnickety about a lot of login attempts, but they do come back shortly. 
git-svn-id: file:///home/svn/framework3/trunk@8920 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 21:32:32 +00:00
Tod Beardsley 6d606a7587 Fixes #1304. Removes the this_cred bit since that got swapped out for the new auth_brute scheme. 
git-svn-id: file:///home/svn/framework3/trunk@8915 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 13:27:29 +00:00
James Lee a27c941714 targ_host -> target_host 
git-svn-id: file:///home/svn/framework3/trunk@8909 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 01:09:04 +00:00
James Lee dd26a227ef targ_host -> target_host 
git-svn-id: file:///home/svn/framework3/trunk@8908 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 01:05:23 +00:00
James Lee fd97c89959 targ_host --> target_host for consistency with other modules 
git-svn-id: file:///home/svn/framework3/trunk@8907 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 00:41:58 +00:00
James Lee 282c2fb2b2 targ_host --> target_host for consistency with other modules 
git-svn-id: file:///home/svn/framework3/trunk@8906 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-25 00:40:50 +00:00
HD Moore f16b1b5b7a Add CVE reference for open NFS shares 
git-svn-id: file:///home/svn/framework3/trunk@8905 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 22:40:06 +00:00
HD Moore af3ab0a260 Handle situations where any user/pass is allowed 
git-svn-id: file:///home/svn/framework3/trunk@8904 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 21:11:00 +00:00
HD Moore 3a88909c06 Rename for consistency 
git-svn-id: file:///home/svn/framework3/trunk@8903 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 20:33:21 +00:00
HD Moore aa1c65f4e6 Add a quick and dirty HTTP scanner 
git-svn-id: file:///home/svn/framework3/trunk@8901 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-24 20:28:09 +00:00
HD Moore 3dbfd0b8e3 A little too verbose 
git-svn-id: file:///home/svn/framework3/trunk@8884 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 22:44:58 +00:00
Tod Beardsley 1458fbad54 Adds some fingerprinting to the tomcat manager login auxiliary module. 
git-svn-id: file:///home/svn/framework3/trunk@8883 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 22:19:46 +00:00
Tod Beardsley 83d96d713c Refactoring Auxiliary::AuthBrute. Now that several modules actually use it, the real use cases have become obvious. So, refactored for simplicity and readability. Also touched up all the authentication modules to behave consistently. 
git-svn-id: file:///home/svn/framework3/trunk@8879 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 20:07:26 +00:00
HD Moore 4c913a576d Remove OS reporting, this is handled better elsewhere 
git-svn-id: file:///home/svn/framework3/trunk@8871 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 00:20:09 +00:00
HD Moore 9632f8251a Move OS-level fingerprints out, report note-level fingerprints instead 
git-svn-id: file:///home/svn/framework3/trunk@8869 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-22 00:09:04 +00:00
HD Moore 480380003c Make verbose status printing standardized across login modules 
git-svn-id: file:///home/svn/framework3/trunk@8866 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-21 18:42:47 +00:00
Joshua Drake 9311253e32 <pre>revert stty -echo execution -- it breaks telnets to some devices</pre> 
git-svn-id: file:///home/svn/framework3/trunk@8848 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-18 15:40:15 +00:00
Tod Beardsley 3f69bb8053 Fixes the handling for telnet services when the server is "busy" -- this is common wit HP JetDirect servers, where the server will respond with a busy message up to several seconds after the last connection logged off. While this does mean that credential tests will be skipped, they will at least not be scored incorrectly as false postives. 
Also, this removes the disconnect() method in favor of self.sock.close(). Disconnect seems to have a tendency to leave sessions half-closed, which will cause a busy state to never clear. self.sock.close doesn't appear to have this effect if you use a slower bruteforce_speed option (3 seems to work all right).



git-svn-id: file:///home/svn/framework3/trunk@8835 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-16 18:45:50 +00:00
HD Moore 0f7a6cd1f2 Store the name and domain in the service info 
git-svn-id: file:///home/svn/framework3/trunk@8826 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 21:35:21 +00:00
HD Moore 1b54c0e493 Closes #1129. Merges in Thomas's xdb_sid_brute patch 
git-svn-id: file:///home/svn/framework3/trunk@8825 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-15 20:31:53 +00:00
HD Moore b1af1feb3f Use double not single quotes 
git-svn-id: file:///home/svn/framework3/trunk@8815 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 04:13:00 +00:00
HD Moore 821a0bcf37 SMB share enumeration 
git-svn-id: file:///home/svn/framework3/trunk@8813 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 03:44:50 +00:00
HD Moore 84b7f4bb85 Store the nfs service and export information into the db 
git-svn-id: file:///home/svn/framework3/trunk@8812 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-14 00:34:46 +00:00
Joshua Drake a6377cc63b turn off echo for telnet sessions 
git-svn-id: file:///home/svn/framework3/trunk@8801 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 23:03:44 +00:00
Mario Ceballos 5b6442aa58 added a patch and added a new module from Thomas Ring. 
git-svn-id: file:///home/svn/framework3/trunk@8800 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 22:55:37 +00:00
Mario Ceballos b01f9ff233 adds a patch from Thomas Ring. 
git-svn-id: file:///home/svn/framework3/trunk@8775 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-10 22:42:49 +00:00
Tod Beardsley efbdaba298 Making telnet timeouts much less disasterous, since they can happen pretty commonly. 
git-svn-id: file:///home/svn/framework3/trunk@8769 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-10 21:54:20 +00:00
Tod Beardsley 542a9a0617 Report MySQL application-level protocol errors (such as host not allowed messages). 
git-svn-id: file:///home/svn/framework3/trunk@8767 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-10 17:56:03 +00:00
Tod Beardsley 4415e3fbbf Fixing up ssh_login reporting. 
git-svn-id: file:///home/svn/framework3/trunk@8759 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-09 22:07:04 +00:00
HD Moore a239963a7d Handle wrapped TCP services better 
git-svn-id: file:///home/svn/framework3/trunk@8756 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-09 05:38:28 +00:00
HD Moore b1973c6630 Adds detection and exploitation coverage for the Energizer Duo trojan 
git-svn-id: file:///home/svn/framework3/trunk@8749 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-08 19:06:50 +00:00
HD Moore a35817f0cc Store more information 
git-svn-id: file:///home/svn/framework3/trunk@8742 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-08 13:52:39 +00:00
HD Moore d5b85db27f Fixes a false positive when the server always replies with 200 OK 
git-svn-id: file:///home/svn/framework3/trunk@8740 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-08 05:26:33 +00:00