HD Moore
99d9dc69cd
Merge in cookie support from paulino calderon
...
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 04:59:02 +00:00
Carlos Perez
68374e11ef
small typo
...
git-svn-id: file:///home/svn/framework3/trunk@12051 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:35:12 +00:00
Carlos Perez
7648ab6e5f
forgot options descriptions
...
git-svn-id: file:///home/svn/framework3/trunk@12050 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:30:27 +00:00
Carlos Perez
c7989fff39
Migrate script migrated to post module.
...
git-svn-id: file:///home/svn/framework3/trunk@12049 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:27:36 +00:00
Carlos Perez
d45969a381
Mubix migration and enhancement of the vnc password script
...
git-svn-id: file:///home/svn/framework3/trunk@12048 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:18:34 +00:00
James Lee
95633f7c3d
store_loot in gather/env
...
git-svn-id: file:///home/svn/framework3/trunk@12046 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:31:05 +00:00
HD Moore
c679de9d7a
Closes #3976 by merging in an ARM adduser payload from Jonathan Salwan
...
git-svn-id: file:///home/svn/framework3/trunk@12045 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:26:14 +00:00
Carlos Perez
92e749f6ff
USB Drive history enumeration script contributed by nebulus
...
git-svn-id: file:///home/svn/framework3/trunk@12044 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:23:32 +00:00
Carlos Perez
3fca6a4225
Migration of dumplinks script to dumplinks post module
...
git-svn-id: file:///home/svn/framework3/trunk@12043 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:22:44 +00:00
Tod Beardsley
42dd4fa717
Allow for duplicates for vnc_login since there's no username.
...
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 18:10:49 +00:00
Carlos Perez
5b8c2007c8
Migration of credcollector script to credential_collector post module
...
git-svn-id: file:///home/svn/framework3/trunk@12036 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:42:37 +00:00
Carlos Perez
71fd7136ae
Forgot to update descriptions of the options set
...
git-svn-id: file:///home/svn/framework3/trunk@12035 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:36:28 +00:00
Carlos Perez
9cb690b9e3
ARP Scanner script migrated to Post Module
...
git-svn-id: file:///home/svn/framework3/trunk@12034 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:28:35 +00:00
James Lee
8db83e406e
try to find wow64 installs. also fixes a problem where blank lines were printed when no DisplayName was found
...
git-svn-id: file:///home/svn/framework3/trunk@12021 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:46:01 +00:00
James Lee
db9c9c625f
:host can't be a peerhost (contains the port as well). report will just figure it out if you use a Session object, though
...
git-svn-id: file:///home/svn/framework3/trunk@12020 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:21:56 +00:00
Joshua Drake
586c1f9305
oops, broke the LIBPATH option
...
git-svn-id: file:///home/svn/framework3/trunk@12015 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 01:18:18 +00:00
Joshua Drake
f4fe3f11b0
enable bind payloads, thx hdm :)
...
git-svn-id: file:///home/svn/framework3/trunk@12014 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:52:58 +00:00
Steve Tornio
4992deed21
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@12013 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:16:06 +00:00
Joshua Drake
fb6107ffb5
enable java payloads, currently via one-off method
...
git-svn-id: file:///home/svn/framework3/trunk@12012 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 23:57:11 +00:00
Tod Beardsley
f2057f54a8
De-dup'ed get_link_filter() in the crawler module. Added some comment
...
docs on crawler_process_page(). Nothing exciting.
git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
David Rude
36b83cde6f
Added exploit for CVE-2010-3747 RealPlayer CDDA URI Code Execution
...
git-svn-id: file:///home/svn/framework3/trunk@12009 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 15:42:28 +00:00
David Rude
382e63e16e
fixed a typo in javascript
...
git-svn-id: file:///home/svn/framework3/trunk@12007 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 04:40:36 +00:00
Carlos Perez
a5e899cb04
Fix loading problem on one of the test boxes
...
git-svn-id: file:///home/svn/framework3/trunk@12003 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 00:10:07 +00:00
Carlos Perez
6a1acd6a54
small typo
...
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Carlos Perez
4031daa1fb
update modules to use is_system? to ensure SID is used to verify when running in certain languages in Windows
...
git-svn-id: file:///home/svn/framework3/trunk@11999 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:54:40 +00:00
Joshua Drake
5bfd574029
fix parse error
...
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude
c5ce597483
removing coldfusion until some general code fixes can be applied
...
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Tod Beardsley
d289aa8733
Another touchup on author credit for oracle-brute NSE script integration.
...
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:05:09 +00:00
Wei Chen
5800608356
Not ready to be part of msf repo, killing it
...
git-svn-id: file:///home/svn/framework3/trunk@11993 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 20:42:56 +00:00
HD Moore
f317d60e04
Fix a few cosmetic issues with the kingview module
...
git-svn-id: file:///home/svn/framework3/trunk@11991 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 18:04:15 +00:00
Wei Chen
26bee16b5c
I should probably add myself as an author.
...
git-svn-id: file:///home/svn/framework3/trunk@11990 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:45:12 +00:00
Carlos Perez
8d1b37a452
save hashes to DB
...
git-svn-id: file:///home/svn/framework3/trunk@11989 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:26:49 +00:00
Carlos Perez
cb9abd8b13
saved sha1 instead of the proper hash, major typo on my part
...
git-svn-id: file:///home/svn/framework3/trunk@11988 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:19:37 +00:00
Mario Ceballos
dfd2df6b47
puts this in the appropiate place
...
git-svn-id: file:///home/svn/framework3/trunk@11987 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:22:07 +00:00
Steve Tornio
78d4822d27
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11986 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:15:54 +00:00
David Rude
eeb1aae9d0
Added Japanese NO NX Target
...
git-svn-id: file:///home/svn/framework3/trunk@11985 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 07:58:50 +00:00
Joshua Drake
4a1e59be8d
oops =D
...
git-svn-id: file:///home/svn/framework3/trunk@11983 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 05:01:29 +00:00
Joshua Drake
4644110962
add exploit for cve-2010-4452, currently windows only and no payloads :(
...
git-svn-id: file:///home/svn/framework3/trunk@11982 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 04:50:25 +00:00
Wei Chen
7308a032f9
Added kingview historysvr exploit. by rick2600 & Dillon.
...
git-svn-id: file:///home/svn/framework3/trunk@11980 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:46:20 +00:00
Tod Beardsley
c6a9a6efd7
Am I really updating for a misplaced comment? Why yes I am!
...
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:45:29 +00:00
Wei Chen
e1ff12292f
wrong directory
...
git-svn-id: file:///home/svn/framework3/trunk@11978 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:44:50 +00:00
Wei Chen
36c05de02e
Added kingview historysvr exploit. By rick2600 and Dillon.
...
git-svn-id: file:///home/svn/framework3/trunk@11977 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:39:45 +00:00
Tod Beardsley
424eb1f192
Adding a reference to NSE as well.
...
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:26:20 +00:00
Tod Beardsley
9b431c0c8d
Adding Patrik Karlsson as an author for the nmap nse script
...
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:19:57 +00:00
Mario Ceballos
6d3d0adf93
added exploit module coldfusion_traversal.rb from webDEViL
...
git-svn-id: file:///home/svn/framework3/trunk@11974 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 01:38:16 +00:00
Tod Beardsley
ecb89c785b
Actually use the API for appending command line arguments for nmap.
...
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:59:35 +00:00
Steve Tornio
abcce881b2
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11969 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:56:11 +00:00
Mario Ceballos
8189a1f7a9
added exploit module hp_openview_insight_backdoor.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11968 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:22:07 +00:00
Tod Beardsley
5e715c22db
Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist.
...
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:16:18 +00:00
Tod Beardsley
292f357f7a
Moving requires from oracle_login to nmap. Duh.
...
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 20:46:03 +00:00
James Lee
7d12151ec6
add support for http digest authentication. fixes #2504 , thanks oliver kleinecke for the patch!
...
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
Tod Beardsley
6e0e23f5ba
Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions.
...
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:13:57 +00:00
Tod Beardsley
f568b3e0d8
Normalize the print_status banners for sid_brute
...
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 18:25:34 +00:00
Tod Beardsley
70127c09fb
Fixes #3939 by setting the racket bits correctly.
...
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 15:58:17 +00:00
Tod Beardsley
03f227817e
blarg lost a commit in there.
...
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:41:46 +00:00
Tod Beardsley
b8b175fd5c
See #3941 . Don't report the same thing a billion times.
...
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:34:19 +00:00
Steve Tornio
45e29834be
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11955 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 12:01:55 +00:00
David Rude
76ee9353aa
changed exploit ranking to better reflect the privileges required
...
git-svn-id: file:///home/svn/framework3/trunk@11954 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 10:54:13 +00:00
David Rude
a63534107b
minor style fix
...
git-svn-id: file:///home/svn/framework3/trunk@11953 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:57:51 +00:00
David Rude
994e6eb450
Exploit for Foxit PDF Reader createDataObject() file write vulnerability
...
git-svn-id: file:///home/svn/framework3/trunk@11952 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:36:33 +00:00
Wei Chen
15f52a2e6b
Updated: Make sure sqlite3 is supported before executing SQL queries
...
git-svn-id: file:///home/svn/framework3/trunk@11949 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 00:11:06 +00:00
Tod Beardsley
b68396351a
See #3941 . This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it.
...
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.
Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.
Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.
git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 22:52:50 +00:00
Wei Chen
d8ff158855
Ported Sven Taute's enum_chrome.rb as a POST module. Modified output, saved log format, supports data dumping for x64 Windows, etc. Improvements still needed.
...
git-svn-id: file:///home/svn/framework3/trunk@11947 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 21:19:27 +00:00
HD Moore
5ab60f2966
Fixes #3938 by correcting the path for the filename
...
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 15:04:16 +00:00
Wei Chen
ed6f8b5a78
Updated: Made a slight adjustment to the code format
...
git-svn-id: file:///home/svn/framework3/trunk@11945 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:27:19 +00:00
Wei Chen
74aab1efe4
Added mr_me's kolibri web server head buffer overflow
...
git-svn-id: file:///home/svn/framework3/trunk@11944 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:18:36 +00:00
HD Moore
293a6f2ef4
Remove unused RHOST option and fix call to .id in ICMP
...
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 04:20:19 +00:00
HD Moore
09b3ecff33
Move the module to the correct location
...
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore
2578a0e16b
Correct formatting and API usage in the Majordomo2 module
...
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:17 +00:00
amaloteaux
78396e94f9
move linux meterpreter bin to the correct place
...
git-svn-id: file:///home/svn/framework3/trunk@11938 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:29:25 +00:00
amaloteaux
544fb61aa2
server capture smb will check for empty pass and not display on screen
...
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:27:22 +00:00
HD Moore
a69278710a
Commit an exploit for the Accellion File Transfer appliance default encryption key vulnerability.
...
git-svn-id: file:///home/svn/framework3/trunk@11935 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:37:23 +00:00
Steve Tornio
03cd23a2d0
remove extra osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:27:27 +00:00
David Rude
00c756ee27
Added patches from Chris John Riley for SAP aux scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:50:18 +00:00
David Rude
370c42736c
Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu
...
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:37:02 +00:00
amaloteaux
dce7dd13fe
type fix on psexec
...
git-svn-id: file:///home/svn/framework3/trunk@11926 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 18:46:58 +00:00
Tod Beardsley
8771b871da
Whitespace cleanup on sid_brute.rb, remove redundant target_host def.
...
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 16:55:08 +00:00
Jonathan Cran
79da0ead08
applying description update from zeknox -- thanks!
...
git-svn-id: file:///home/svn/framework3/trunk@11923 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 05:36:17 +00:00
Tod Beardsley
e2af0510f6
wanged up the revision splat.
...
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:16:20 +00:00
Tod Beardsley
676fc22249
Fixes #3927 . Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does.
...
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:15:15 +00:00
Steve Tornio
4534c76882
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11907 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 02:21:36 +00:00
David Rude
45556f7470
.NET Runtime Optimization Service privilege escalation post module
...
git-svn-id: file:///home/svn/framework3/trunk@11904 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 00:29:59 +00:00
Mario Ceballos
631af16d9f
revert back.
...
git-svn-id: file:///home/svn/framework3/trunk@11900 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:48:39 +00:00
Tod Beardsley
42531e097f
Fixes #3916 . Adds a module for mysql delivery of a payload via a UDF, using Bernardo's quite excellent UDF libraries.
...
git-svn-id: file:///home/svn/framework3/trunk@11899 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:42:26 +00:00
Mario Ceballos
54382c6080
patch recieved from Peter Van Eeckhout
...
git-svn-id: file:///home/svn/framework3/trunk@11898 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:23:13 +00:00
HD Moore
5299bbb8db
Add ip/port prefixes to the jboss scanner
...
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux
5f6995e8d3
enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
...
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
David Rude
695963dde7
Fixed references
...
git-svn-id: file:///home/svn/framework3/trunk@11888 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 02:28:15 +00:00
David Rude
b51c9f8397
oops forgot a , =)
...
git-svn-id: file:///home/svn/framework3/trunk@11887 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:42:37 +00:00
David Rude
6dc0596870
Added Novell iPrint GetDriverSettings <= 5.52 exploit from mr_me thanks
...
git-svn-id: file:///home/svn/framework3/trunk@11886 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:27:06 +00:00
David Rude
cdba0d532c
Adds a ret for Windows Server 2003 thanks to securityxxpert
...
git-svn-id: file:///home/svn/framework3/trunk@11882 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 21:00:57 +00:00
James Lee
5299692fc9
fix a typo (thanks to privmode for pointing out), and incorrect host arg for store_loot. fixes #3897
...
git-svn-id: file:///home/svn/framework3/trunk@11881 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 20:21:12 +00:00
David Rude
921a181ac0
Adds a Firefox post module to collect credentials and cookies
...
git-svn-id: file:///home/svn/framework3/trunk@11879 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 02:57:32 +00:00
David Rude
0663564efc
Fixed up some minor bugs, loot converted to csv for parsing
...
git-svn-id: file:///home/svn/framework3/trunk@11878 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 16:59:35 +00:00
David Rude
fafb7debcc
fixes some minor bugs
...
git-svn-id: file:///home/svn/framework3/trunk@11876 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 15:38:01 +00:00
Joshua Drake
dee18a8995
add office 2007 msxml5 targets from SAHA! THX
...
git-svn-id: file:///home/svn/framework3/trunk@11875 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 08:39:48 +00:00
Joshua Drake
d682069aec
add cve-2010-4566 exploit from Erwin Paternotte
...
git-svn-id: file:///home/svn/framework3/trunk@11873 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 20:51:12 +00:00
David Rude
657c7c55a9
Added a require for msf/core/post/file
...
git-svn-id: file:///home/svn/framework3/trunk@11872 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:43:30 +00:00
amaloteaux
d4d475e9d3
small fix on filezilla_server_cred.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11871 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:32:46 +00:00
HD Moore
3ad7cd61e5
Remove the exploit_module= assignment until this feature is completed
...
git-svn-id: file:///home/svn/framework3/trunk@11870 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:59:51 +00:00
David Rude
f79cfa13a3
Adding post module for collecting FileZilla FTP Server ftp user and admin interface credentials
...
git-svn-id: file:///home/svn/framework3/trunk@11869 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:00:55 +00:00
Joshua Drake
c29bca4fb8
add keywords, oops
...
git-svn-id: file:///home/svn/framework3/trunk@11868 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:47 +00:00
Joshua Drake
c7f6324fbd
add cve-2011-0404 exploit from Evan
...
git-svn-id: file:///home/svn/framework3/trunk@11867 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:24 +00:00
Mario Ceballos
94d21dde8e
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:54:03 +00:00
Mario Ceballos
5e60545446
fix a load error
...
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:35:31 +00:00
David Rude
2a90817b80
Fixes more style and API usage issues
...
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 18:46:00 +00:00
David Rude
27ba761cd3
Fixed indentation of the cldap_payload
...
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 14:01:04 +00:00
David Rude
6c1f49e73d
Added Wireshark Auxiliary DoS module from joernchen
...
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 13:44:41 +00:00
David Rude
37e9ad1ed4
Added SAP Management Console auxiliary scanner modules
...
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 10:18:31 +00:00
HD Moore
2dbbdc18dd
Explicitly yield to other threads after each request, reducing the chance that this module will eat all cycles.
...
git-svn-id: file:///home/svn/framework3/trunk@11857 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 05:03:20 +00:00
David Rude
0afc75e19b
post module for FileZilla FTP Client credential collection
...
git-svn-id: file:///home/svn/framework3/trunk@11856 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 04:11:12 +00:00
HD Moore
261ab6c014
Fix stack trace when parsing silc account settings, cosmetic and style tweaks
...
git-svn-id: file:///home/svn/framework3/trunk@11854 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 15:14:49 +00:00
David Rude
dcfd46e3d6
Added Carlos Perez credits from the original meterpreter script.
...
git-svn-id: file:///home/svn/framework3/trunk@11853 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 07:31:26 +00:00
David Rude
04e2d7a829
more style fixes =)
...
git-svn-id: file:///home/svn/framework3/trunk@11851 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 05:02:33 +00:00
David Rude
4d4c760e81
style fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11850 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:54:50 +00:00
David Rude
1e33520a86
post module for pidgin credential collection conversion of get_pidgin_creds
...
git-svn-id: file:///home/svn/framework3/trunk@11849 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:02:54 +00:00
HD Moore
77c5f02d4d
Call the correct version of the report_auth_info() method (this one takes into account workspace)
...
git-svn-id: file:///home/svn/framework3/trunk@11847 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:55:56 +00:00
HD Moore
e7dbf28626
This patch adds a register_parent() method to the module class, making it easy to propogate things like ParentUUID, Workspace, and Owner down. The multi/handler post modules were updated to use this new api. This fixes an issue where the session generated by a post module would be registered to the wrong workspace.
...
git-svn-id: file:///home/svn/framework3/trunk@11846 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:24:35 +00:00
HD Moore
f49e040a96
This patch adds a ListenerTimeout option to multi/handler that sets a maximum wait time for sessions. This is useful to prevent leftover background handlers by unsuccessful or misconfigured post modules.
...
git-svn-id: file:///home/svn/framework3/trunk@11845 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 03:22:40 +00:00
HD Moore
c9c3ef4933
Port the screen unlocker to a post module
...
git-svn-id: file:///home/svn/framework3/trunk@11836 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 05:56:01 +00:00
HD Moore
9bc2a2cd3a
Store keystrokes as loot
...
git-svn-id: file:///home/svn/framework3/trunk@11835 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:54:45 +00:00
HD Moore
8a5f7c448f
Fix typos in the original module
...
git-svn-id: file:///home/svn/framework3/trunk@11834 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:27:49 +00:00
HD Moore
9a54bc0a95
Fix a typo in the original module
...
git-svn-id: file:///home/svn/framework3/trunk@11833 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:23:06 +00:00
HD Moore
d19ab712c4
Quick typo fix
...
git-svn-id: file:///home/svn/framework3/trunk@11831 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:49:25 +00:00
HD Moore
b700ed2075
Cosmetic cleanup of post modules
...
git-svn-id: file:///home/svn/framework3/trunk@11830 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:47:40 +00:00
HD Moore
880ffeb1f7
This updates the (C) for 2011, adds a CustomPrintPrefix option to set a unique prefix for a module and cleans up some post modules
...
git-svn-id: file:///home/svn/framework3/trunk@11828 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:02:34 +00:00
HD Moore
8c01560ade
Store enumerated data as loot
...
git-svn-id: file:///home/svn/framework3/trunk@11826 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:48:03 +00:00
HD Moore
4c4ae90daf
Consistency fix
...
git-svn-id: file:///home/svn/framework3/trunk@11825 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:04:52 +00:00
HD Moore
f79f704a68
Make the post module titles consist
...
git-svn-id: file:///home/svn/framework3/trunk@11824 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:00:33 +00:00
Carlos Perez
b712be8949
Secure deleting of temporary screencapture files on targets using srm
...
git-svn-id: file:///home/svn/framework3/trunk@11823 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 00:43:23 +00:00
Carlos Perez
f75bd0498f
corrected description of action
...
git-svn-id: file:///home/svn/framework3/trunk@11821 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 21:05:53 +00:00
Tod Beardsley
57966c66d8
This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins.
...
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 20:42:14 +00:00
Tod Beardsley
5f70c705c1
Committing the Kippo ssh honeypot detection as seen at AHA!.
...
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 13:57:26 +00:00
Carlos Perez
7050bbc0ce
Forgot to uncomment the sections while debuging
...
git-svn-id: file:///home/svn/framework3/trunk@11816 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 11:57:12 +00:00
Carlos Perez
1c812149b2
Add support to enumerate and download OS X keychain files
...
git-svn-id: file:///home/svn/framework3/trunk@11815 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 01:37:00 +00:00
Carlos Perez
a4b6994e46
update to capture all history file on home folder, screncapture will now capture all loginwindow processes if root and it will download .ssh and .gnupg files for all users if running as root
...
git-svn-id: file:///home/svn/framework3/trunk@11814 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 23:13:12 +00:00
James Lee
aea8192c7f
apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\!
...
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 21:47:52 +00:00
James Lee
5d42ed4552
more descriptive name and description
...
git-svn-id: file:///home/svn/framework3/trunk@11803 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 04:42:02 +00:00
Mario Ceballos
aa859e2f68
force ordinal payload
...
git-svn-id: file:///home/svn/framework3/trunk@11799 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 00:58:54 +00:00
Joshua Drake
8ef05017b8
style compliance fixes, naughty naughty
...
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
Carlos Perez
31d4d335f9
Fixed typos and Regex for clean installs of the OS
...
git-svn-id: file:///home/svn/framework3/trunk@11795 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:11:27 +00:00
James Lee
5c87a5db9c
more descriptive, standard naming
...
git-svn-id: file:///home/svn/framework3/trunk@11794 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 18:07:26 +00:00
Carlos Perez
7e2fb81cb5
Initial set of OSX Shell Post modules for general basic enumeration and for dumping hashes (SHA, LM and NTLM) for OSX 10.4 and above
...
git-svn-id: file:///home/svn/framework3/trunk@11792 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 14:00:47 +00:00
et
dd05954b34
Fix wmap to test parameters, error inj. module as example
...
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
James Lee
4b4ed6edbe
un-truncate a comment and make sure we didn't append a . to the buffer
...
git-svn-id: file:///home/svn/framework3/trunk@11788 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 01:59:17 +00:00
Steve Tornio
13809850a3
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-19 13:35:57 +00:00
Matt Weeks
c322534907
Add exploit for CVE-2010-3765, firefox interleaved document.write and appendChild calls.
...
git-svn-id: file:///home/svn/framework3/trunk@11773 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-18 02:23:10 +00:00
Joshua Drake
160c683f18
Add WbemExec mixin, modify MS10-061 to use MOF technique
...
git-svn-id: file:///home/svn/framework3/trunk@11766 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:22:11 +00:00
Joshua Drake
8b4ef42fa3
randomize name string
...
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:21:24 +00:00
Joshua Drake
2ef3e79c3d
add cve/bid refs
...
git-svn-id: file:///home/svn/framework3/trunk@11764 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 14:41:48 +00:00
Joshua Drake
41f0c2eaa5
typo
...
git-svn-id: file:///home/svn/framework3/trunk@11762 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 03:56:15 +00:00
Joshua Drake
7365ca9509
add aux module to trigger browser election DoS
...
git-svn-id: file:///home/svn/framework3/trunk@11756 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-16 18:12:28 +00:00
Joshua Drake
7fb3094bb0
remove "File" from title
...
git-svn-id: file:///home/svn/framework3/trunk@11746 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-12 22:30:54 +00:00
Matt Weeks
b241fc1530
Add service permissions escalate post module.
...
git-svn-id: file:///home/svn/framework3/trunk@11739 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-10 17:34:09 +00:00
Joshua Drake
8c8b181ffb
Update ms11_xxx modules to reflect bulletin release, minor style fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11730 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 23:31:44 +00:00
Joshua Drake
dafeecdc96
Small fix from Dan Rosenberg
...
git-svn-id: file:///home/svn/framework3/trunk@11725 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 18:22:36 +00:00
Joshua Drake
7d72db3e8e
More updates from Dan Rosenburg -- Works with DEP now!
...
git-svn-id: file:///home/svn/framework3/trunk@11724 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:50:05 +00:00
HD Moore
070f48e16a
Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address
...
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:32:37 +00:00
et
baab86fc52
WMAP 1.0 and first pass on some modules
...
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 05:57:26 +00:00
Tod Beardsley
3f1ceea349
Fixes #3655 . Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters.
...
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:54:32 +00:00
James Lee
16fad17453
snmp_enum improvements from Kashif Iftikhar, fixes #3654
...
git-svn-id: file:///home/svn/framework3/trunk@11706 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:26:23 +00:00
Joshua Drake
e06d4d52fe
convert VLC module to FileFormat, adjust spray
...
git-svn-id: file:///home/svn/framework3/trunk@11705 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-03 18:16:40 +00:00
Joshua Drake
acf9b2088d
remove half-browser half-fileformat /misc/ version, but preserve differences in comments in fileformat version
...
git-svn-id: file:///home/svn/framework3/trunk@11701 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 21:47:02 +00:00
Jonathan Cran
5b5e7028ad
quick mod from daniel clemens to show the ip with the url
...
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 19:04:54 +00:00
Tod Beardsley
671659841b
On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
...
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley
e31f35e3ae
Fixes #3643 . These modules now report_vuln() correctly.
...
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley
99b1703416
Trailing comma on cisco_ios_auth_bypass
...
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:07:31 +00:00
Tod Beardsley
cec851a5ed
Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references.
...
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:06:40 +00:00
Joshua Drake
3ac076c20a
add exploit for VLC media player WebM processing from Dan Rosenburg
...
git-svn-id: file:///home/svn/framework3/trunk@11692 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-01 18:54:24 +00:00
Joshua Drake
2c93910f4b
switch to .html per reports of brokennes
...
git-svn-id: file:///home/svn/framework3/trunk@11683 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-31 06:18:13 +00:00
HD Moore
ac651fba6b
Merge code from Alexandre Maloteaux, fixes #3615
...
git-svn-id: file:///home/svn/framework3/trunk@11678 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-30 19:26:35 +00:00
James Lee
3d94cd7d22
cut down on some of the copy-paste
...
git-svn-id: file:///home/svn/framework3/trunk@11664 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-29 01:55:47 +00:00
James Lee
a10a94d373
report configured shares in the same way as modules/auxiliary/scanner/smb/smb_enumshares.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11663 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-29 00:37:13 +00:00
Joshua Drake
a62f1922b3
fix typos, lol?
...
git-svn-id: file:///home/svn/framework3/trunk@11662 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-28 23:56:35 +00:00
Joshua Drake
9682091cca
Add SQLI version of MSSQL Payload from Rodrigo Marcos!
...
git-svn-id: file:///home/svn/framework3/trunk@11655 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:48:07 +00:00
Joshua Drake
89a731b789
Prevent trying to call .map on nil
...
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:39:19 +00:00
Joshua Drake
21d93be897
Add fix for WOW64 from ReL1k
...
git-svn-id: file:///home/svn/framework3/trunk@11650 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 16:26:08 +00:00
Joshua Drake
23808d19cd
See #3531 , Apply fix from Chao Mu
...
git-svn-id: file:///home/svn/framework3/trunk@11649 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 15:55:35 +00:00
James Lee
d2670d52ec
add BufferRegister and BufferOffset support for shikata_ga_nai. see #3563 . tested this pretty extensively. /me crosses fingers
...
git-svn-id: file:///home/svn/framework3/trunk@11646 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 04:24:41 +00:00
Joshua Drake
c9d3d60b23
Rework external command invocation
...
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake
a0a8ea8cbd
re-order includes a bit
...
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 21:32:59 +00:00
Carlos Perez
05fd7b4e57
Patch for railgun and post mixin; and module from cha-mou to add capability to delete users on windows hosts.
...
git-svn-id: file:///home/svn/framework3/trunk@11638 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 13:02:35 +00:00
HD Moore
3794ed35cc
Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk:
...
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf
git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:24:37 +00:00
Joshua Drake
d9fe9da849
add DoS module from Paulino Calderon
...
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 00:11:41 +00:00
natron
1be3448959
svn propset
...
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:21:08 +00:00
natron
bb4343bf63
Add new domain user enumeration aux mod. Still needs an update to include db reporting.
...
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:14:57 +00:00
Joshua Drake
81ff9483bf
add ms09-004 exploit via sql injection from Rodrigo Marcos
...
git-svn-id: file:///home/svn/framework3/trunk@11631 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 19:37:58 +00:00
Joshua Drake
29b03701d1
Fixes #3531 , Use new accounts mixin to resolve SID->Account Names
...
git-svn-id: file:///home/svn/framework3/trunk@11630 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:25:52 +00:00
Joshua Drake
0af8915fd5
Fixes #1936 , Add accounts mixin and accompanying post module
...
git-svn-id: file:///home/svn/framework3/trunk@11629 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:23:48 +00:00
James Lee
d7cda0f85a
accept a client argument for get_uri()
...
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:16:57 +00:00
Joshua Drake
80eb7bad52
Fixes #3257 , Adds two mod_negotiation scanner modules from DiabloHorn
...
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Tod Beardsley
aeb1f684c0
Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs).
...
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:24:03 +00:00
Joshua Drake
ae33e3ac71
Fixes #3571 , normalize 2k3r2 and fix language defaulting
...
git-svn-id: file:///home/svn/framework3/trunk@11614 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 04:09:48 +00:00
Joshua Drake
a944cbc50d
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11612 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:40:47 +00:00
Joshua Drake
e821f7e757
Fixes #3567 , apply patch to make ports/payloads configurable
...
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:32:18 +00:00
James Lee
f3bda46333
doesn't work on IE8, fixes #3566 , thanks Hauke Mehrtens for the patch
...
git-svn-id: file:///home/svn/framework3/trunk@11610 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 19:30:59 +00:00
Joshua Drake
362c409623
Fixes #3554 , add missing variable to published_applications (from published_bruteforce), some clean ups
...
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 00:22:21 +00:00
Joshua Drake
be0169cef1
add android file snarfer exploit
...
git-svn-id: file:///home/svn/framework3/trunk@11601 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-19 18:04:54 +00:00
Joshua Drake
41e43b557c
Rename to MSXX format, add references
...
git-svn-id: file:///home/svn/framework3/trunk@11598 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 17:19:17 +00:00
Joshua Drake
667d7aacea
add keywords, some references
...
git-svn-id: file:///home/svn/framework3/trunk@11597 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 00:36:45 +00:00
Joshua Drake
680625ff2d
add exploit for cve-2010-2743
...
git-svn-id: file:///home/svn/framework3/trunk@11596 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 00:33:05 +00:00
Tod Beardsley
1d7745d449
Add some tracking datastore objects (ParentUUID and AutopwnUUID) to browser_autopwn.rb's exploits and multi/handlers to make exploit tracking a little easier.
...
git-svn-id: file:///home/svn/framework3/trunk@11592 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-17 22:15:22 +00:00
Joshua Drake
b6b9b83dd7
add CVE reference
...
git-svn-id: file:///home/svn/framework3/trunk@11579 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-14 16:25:37 +00:00
James Lee
f2661e68db
don't respond with 404's for requests that don't match the URIPATH exactly. allows for more generic hash stealing and fixes 3442
...
git-svn-id: file:///home/svn/framework3/trunk@11576 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 20:57:33 +00:00
Carlos Perez
3c8501cd82
Keylogrecorder script migrated in to post module keylog_recorder
...
git-svn-id: file:///home/svn/framework3/trunk@11570 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 02:44:22 +00:00
Joshua Drake
166b4d3250
whitespace
...
git-svn-id: file:///home/svn/framework3/trunk@11568 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 00:14:44 +00:00
Carlos Perez
1f4d36b758
removed spaces
...
git-svn-id: file:///home/svn/framework3/trunk@11566 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:25:00 +00:00
Carlos Perez
3fc76be37c
removed spaces
...
git-svn-id: file:///home/svn/framework3/trunk@11565 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:24:46 +00:00
Carlos Perez
c6c5488a04
changed threading
...
git-svn-id: file:///home/svn/framework3/trunk@11564 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:24:17 +00:00
Carlos Perez
0a111ee265
get_valid_community migrated to post module and expanded. Now enum_snmp
...
git-svn-id: file:///home/svn/framework3/trunk@11563 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:22:41 +00:00
James Lee
9887e4cc08
fix header comments
...
git-svn-id: file:///home/svn/framework3/trunk@11560 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 18:29:56 +00:00
James Lee
3781b3e912
fix header comments
...
git-svn-id: file:///home/svn/framework3/trunk@11559 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 18:11:24 +00:00
Carlos Perez
6599e0638e
Fixed small indent
...
git-svn-id: file:///home/svn/framework3/trunk@11558 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 17:36:58 +00:00
Carlos Perez
50d4f35601
fixed indenting
...
git-svn-id: file:///home/svn/framework3/trunk@11557 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 17:33:46 +00:00
Carlos Perez
0cfc2f8e45
get_application_list script migrated in to post module enum_applications
...
git-svn-id: file:///home/svn/framework3/trunk@11556 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 03:55:19 +00:00
Carlos Perez
2af5907220
enum_powershell_env script migrated in to post module
...
git-svn-id: file:///home/svn/framework3/trunk@11555 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 02:31:13 +00:00
Carlos Perez
f2a211cabc
checkvm script migrated in to post module
...
git-svn-id: file:///home/svn/framework3/trunk@11554 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 02:16:06 +00:00
Carlos Perez
f7af7924c0
Update windows/registry mixin path for module import
...
git-svn-id: file:///home/svn/framework3/trunk@11551 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 00:11:43 +00:00
Carlos Perez
212e38a3d7
Migrated enum_shares script to module
...
git-svn-id: file:///home/svn/framework3/trunk@11549 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 22:31:37 +00:00
Carlos Perez
3daaaf0c7e
Keywords and formatting
...
git-svn-id: file:///home/svn/framework3/trunk@11548 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 22:30:40 +00:00
Joshua Drake
ffbea6199f
Do not wait for the DCERPC call to timeout
...
git-svn-id: file:///home/svn/framework3/trunk@11545 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 17:56:27 +00:00
Carlos Perez
b9e31bdfb9
migrated enum logged on users script to module
...
git-svn-id: file:///home/svn/framework3/trunk@11540 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 02:02:11 +00:00
James Lee
88eb09ac66
more renaming fail from #3478
...
git-svn-id: file:///home/svn/framework3/trunk@11538 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 21:36:42 +00:00
Joshua Drake
14617450d0
catch connection errors
...
git-svn-id: file:///home/svn/framework3/trunk@11537 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 20:03:53 +00:00
Joshua Drake
b9836dcf50
fix success detection read loop
...
git-svn-id: file:///home/svn/framework3/trunk@11535 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 19:40:39 +00:00
Joshua Drake
1604b5616f
apply some more changes from Konrads
...
git-svn-id: file:///home/svn/framework3/trunk@11533 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 14:34:24 +00:00
Joshua Drake
1e951f6245
fix check method
...
git-svn-id: file:///home/svn/framework3/trunk@11526 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:53 +00:00
Joshua Drake
db1f63eb1a
remove stray comma
...
git-svn-id: file:///home/svn/framework3/trunk@11525 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:24 +00:00
Joshua Drake
d832296e7d
minor cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@11524 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:10 +00:00
Joshua Drake
0b43172413
add exploit for cve-2006-5815, oldy but often requested!
...
git-svn-id: file:///home/svn/framework3/trunk@11523 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:23:25 +00:00
Joshua Drake
739604ea12
Fixes #3469 , silly typo
...
git-svn-id: file:///home/svn/framework3/trunk@11520 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 05:58:55 +00:00
Joshua Drake
9ef757bf17
Fixes #3387 , add the PACKAGE option to allow 3.2
...
git-svn-id: file:///home/svn/framework3/trunk@11518 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 04:11:01 +00:00
Joshua Drake
d994f595fe
remove unused vars
...
git-svn-id: file:///home/svn/framework3/trunk@11517 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:59:10 +00:00
Joshua Drake
287f4c87fe
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:13:26 +00:00
Joshua Drake
af79f5c0ea
add description, references, etc
...
git-svn-id: file:///home/svn/framework3/trunk@11515 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:12:15 +00:00
Joshua Drake
08f3f44f98
allow bypassuac to work on x64 or x86, allow payload selection, cleanup indents
...
git-svn-id: file:///home/svn/framework3/trunk@11514 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 00:43:01 +00:00
Joshua Drake
19e8a6a5b1
switch AutoRunScript for InitialAutoRunScript, oops
...
git-svn-id: file:///home/svn/framework3/trunk@11513 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 00:25:44 +00:00
Joshua Drake
452ab6f301
updated description
...
git-svn-id: file:///home/svn/framework3/trunk@11506 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:51:34 +00:00
Joshua Drake
f7e70e8d42
add an automatic target and now includes Office XP SP3
...
git-svn-id: file:///home/svn/framework3/trunk@11505 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:48:29 +00:00
James Lee
9c7d40b0b9
fix a namespace screwup
...
git-svn-id: file:///home/svn/framework3/trunk@11504 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:00:35 +00:00
James Lee
dfd9dd70e6
rename fail
...
git-svn-id: file:///home/svn/framework3/trunk@11503 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 16:59:02 +00:00
Mario Ceballos
a11f0d5e42
fixes a uninitialized constant Msf::Post::Registry warning
...
git-svn-id: file:///home/svn/framework3/trunk@11501 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 00:28:04 +00:00
James Lee
e10eb7d313
hashdump is windows specific
...
git-svn-id: file:///home/svn/framework3/trunk@11500 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 23:48:16 +00:00
James Lee
38a3b8a387
move windows-specific privesc modules into a windows/ directory, multi-platform mods into a multi/ dir, fixes #3448
...
git-svn-id: file:///home/svn/framework3/trunk@11499 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 22:33:36 +00:00
HD Moore
74bf5199f1
Patches from goony, fixes #3438
...
git-svn-id: file:///home/svn/framework3/trunk@11497 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:35:57 +00:00
James Lee
dbeae8df24
add support for running post modules from the meterpreter prompt. options are set in the same way as the -o arg to run, e.g. run post/escalate/bypassuac LHOST=192.168.0.1
...
git-svn-id: file:///home/svn/framework3/trunk@11496 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:28:00 +00:00
Joshua Drake
4ae8b8b14a
add snmp_set scanner from Matteo Cantoni ( Fixes #3437 ), remove executable property from enums
...
git-svn-id: file:///home/svn/framework3/trunk@11494 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:23:22 +00:00
James Lee
1ecb293010
pass the listener bind address through to handlers
...
git-svn-id: file:///home/svn/framework3/trunk@11493 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:18:24 +00:00
James Lee
152c380a13
remove an erroneous line to get rid of NameErrors, thanks ReL1K
...
git-svn-id: file:///home/svn/framework3/trunk@11490 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 20:23:29 +00:00
HD Moore
4971a0d7af
Add Skylined's "You Got Pwned" payload
...
git-svn-id: file:///home/svn/framework3/trunk@11485 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 17:34:09 +00:00
HD Moore
c003e4b8ef
Merge R3L1K's UAC bypass module into the trunk
...
git-svn-id: file:///home/svn/framework3/trunk@11483 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 16:59:25 +00:00
Jonathan Cran
a206ed8418
clarifying wmi tools are not installed by default
...
git-svn-id: file:///home/svn/framework3/trunk@11481 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 05:27:37 +00:00
Joshua Drake
bc7a8e3b47
fix silly merge conflict data in HTML
...
git-svn-id: file:///home/svn/framework3/trunk@11479 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-05 22:52:54 +00:00
James Lee
a79092a0d3
this is really unlimited, but bump it a bit for possible larger payloads later.
...
git-svn-id: file:///home/svn/framework3/trunk@11474 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 23:37:11 +00:00
Joshua Drake
f0202c3350
add MSFT advisory references
...
git-svn-id: file:///home/svn/framework3/trunk@11473 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 23:00:45 +00:00
James Lee
1735dc8cb2
add bid reference, thanks jjarmoc
...
git-svn-id: file:///home/svn/framework3/trunk@11472 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 22:08:33 +00:00
Joshua Drake
152eb80710
fix debug target, adjust File reference
...
git-svn-id: file:///home/svn/framework3/trunk@11469 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 16:55:58 +00:00
Steve Tornio
4a1f45c633
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11467 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 16:15:43 +00:00
Joshua Drake
4fc19971ae
add exploit for cve-2010-3970
...
git-svn-id: file:///home/svn/framework3/trunk@11466 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:29 +00:00
Tod Beardsley
24388f3a38
Adding a CVE reference for weak/blank/guessable passwords.
...
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
HD Moore
401d8e5a68
Revert until the mixin is checked in
...
git-svn-id: file:///home/svn/framework3/trunk@11464 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 02:46:18 +00:00
James Lee
a121a73cdb
use the mixin for registry fu.
...
git-svn-id: file:///home/svn/framework3/trunk@11462 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 01:01:29 +00:00
Joshua Drake
a59dcc512b
switch target to p/p/r that works on multiple versions
...
git-svn-id: file:///home/svn/framework3/trunk@11459 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-02 09:56:43 +00:00
Joshua Drake
5e2abcc88c
add DoS module for IIS FTP server
...
git-svn-id: file:///home/svn/framework3/trunk@11456 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-31 18:32:55 +00:00
HD Moore
bec8a95b02
Merges pello's Cisco uploader module, merges changes back into the TFTP server class. Fixes #3429
...
git-svn-id: file:///home/svn/framework3/trunk@11454 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-30 16:37:58 +00:00
Joshua Drake
540bd3692c
add fileformat exploit for cve-2010-3333
...
git-svn-id: file:///home/svn/framework3/trunk@11450 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:30:50 +00:00
HD Moore
b7a05f03b0
Remove duplicate line
...
git-svn-id: file:///home/svn/framework3/trunk@11449 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:12:14 +00:00
James Lee
9a952b22e4
rearrange post module directory structure
...
git-svn-id: file:///home/svn/framework3/trunk@11445 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 17:10:46 +00:00
Joshua Drake
08df4dac3b
randomize import styles, patch from jjarmoc
...
git-svn-id: file:///home/svn/framework3/trunk@11443 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 16:49:20 +00:00
James Lee
e3cd2c2572
add carlos back to authors list, i suck
...
git-svn-id: file:///home/svn/framework3/trunk@11432 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 19:39:02 +00:00
James Lee
a241f435c1
rename the 'privilege_escalation' to the less verbose 'escalate'
...
git-svn-id: file:///home/svn/framework3/trunk@11431 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 19:29:36 +00:00
Joshua Drake
885545a94e
add http:bl scanner from mubix, fixes #3346
...
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 18:33:45 +00:00
Joshua Drake
b3bfb5834e
change credit to passerby
...
git-svn-id: file:///home/svn/framework3/trunk@11427 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 17:10:19 +00:00
HD Moore
d202a5abf2
Add missing mixin
...
git-svn-id: file:///home/svn/framework3/trunk@11423 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 18:10:41 +00:00
James Lee
f0cc6ff596
big commit for converting meterpreter scripts to modules, see #3377 . also fixes payload tab-completion and 'show payloads' after TARGET has changed
...
git-svn-id: file:///home/svn/framework3/trunk@11421 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 17:46:42 +00:00
HD Moore
30affd4b2c
This commit adds a new set of discovery modules from wuntee and some useful utility methods for working with link-local addresses
...
git-svn-id: file:///home/svn/framework3/trunk@11417 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 16:43:53 +00:00
Steve Tornio
37a3ca4643
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11415 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 13:16:15 +00:00
Steve Tornio
860e29228b
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11414 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 14:43:13 +00:00
HD Moore
2f97c61f86
Add the uber SNMP enumeration module from Matteo Cantoni
...
git-svn-id: file:///home/svn/framework3/trunk@11412 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:31:38 +00:00
HD Moore
5875fdb701
Two new SNMP community enumeration tools for Windows by tebo (local account list and SMB shares). Addition of a Meterpreter script for snagging the SNMP community from the registry
...
git-svn-id: file:///home/svn/framework3/trunk@11410 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:08:34 +00:00
HD Moore
b7eec06041
Deregister username-specific options since they aren't supported anyways, a suggestion from tebo
...
git-svn-id: file:///home/svn/framework3/trunk@11409 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:02:35 +00:00
HD Moore
a8cb5ee259
Updated return address from Tyler Reguly
...
git-svn-id: file:///home/svn/framework3/trunk@11407 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:01:12 +00:00
HD Moore
e7f3c63e1c
Exploit for a recent Redmine command injection vulnerability, provided as a holiday gift by Joernchen of Phenoelit.
...
git-svn-id: file:///home/svn/framework3/trunk@11406 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 05:46:29 +00:00
Joshua Drake
5f5d2992ce
add reference to 0x557 slides (for .NET 2.0 rop)
...
git-svn-id: file:///home/svn/framework3/trunk@11405 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-23 01:36:54 +00:00
Joshua Drake
cdfe03ce43
add MSFT advisory and CVE
...
git-svn-id: file:///home/svn/framework3/trunk@11404 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-23 01:30:43 +00:00
Steve Tornio
09b00739fb
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11402 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 22:21:56 +00:00
Joshua Drake
4ddd78c4de
add a couple targets
...
git-svn-id: file:///home/svn/framework3/trunk@11399 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 19:14:29 +00:00
Joshua Drake
0f24d1955c
minor corrections, use .NET 2.0 ROP :)
...
git-svn-id: file:///home/svn/framework3/trunk@11398 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 18:26:18 +00:00
Joshua Drake
44c8a71dcf
minor clean ups
...
git-svn-id: file:///home/svn/framework3/trunk@11397 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 18:23:16 +00:00
Mario Ceballos
1407d7f1d5
revert back. little more reliable.
...
git-svn-id: file:///home/svn/framework3/trunk@11396 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 17:40:13 +00:00
Mario Ceballos
d89c60f2de
add exploit module wmi_admintools.rb
...
git-svn-id: file:///home/svn/framework3/trunk@11395 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 14:35:36 +00:00
Joshua Drake
5fb2bfc969
fix super busted mssql_payload some more
...
git-svn-id: file:///home/svn/framework3/trunk@11392 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 20:36:34 +00:00
Joshua Drake
7db17e323e
fix super busted mssql_payload, oops
...
git-svn-id: file:///home/svn/framework3/trunk@11391 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 20:20:20 +00:00
Joshua Drake
c4c0cabccb
switch to .NET 2.0 ROP, Merry Xmas!
...
git-svn-id: file:///home/svn/framework3/trunk@11390 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 19:24:19 +00:00
Steve Tornio
3662fb4bc6
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11389 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 19:16:18 +00:00
HD Moore
4708d5b159
Add coverage for the mitel audio web conferencing web interface command injection.
...
git-svn-id: file:///home/svn/framework3/trunk@11388 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 19:02:13 +00:00
HD Moore
8a4f6de5c4
Correct state processing in the additional address discovery code.
...
git-svn-id: file:///home/svn/framework3/trunk@11385 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 02:22:56 +00:00
Joshua Drake
5d2f26b41b
add exploit for unpatched IE css import bug
...
git-svn-id: file:///home/svn/framework3/trunk@11383 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-20 16:34:07 +00:00
Joshua Drake
b8b0e1af97
fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@11380 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-20 09:11:45 +00:00
HD Moore
3f7809ca5a
Patch to fix vuln reporting by swtornio
...
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-18 18:55:36 +00:00
James Lee
f1c13e24a6
remove erroneous OUTPUTPATH overriding the sane one from the fileformat mixin
...
git-svn-id: file:///home/svn/framework3/trunk@11353 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-16 20:11:01 +00:00
Joshua Drake
c46be9d387
better error for non-exim servers
...
git-svn-id: file:///home/svn/framework3/trunk@11352 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-16 17:30:24 +00:00
Joshua Drake
843b121ea1
fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@11350 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-16 16:38:31 +00:00
James Lee
9c1f7b28e2
pass SSL opt on to submodules
...
git-svn-id: file:///home/svn/framework3/trunk@11346 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 23:02:04 +00:00
James Lee
fd1fb44bfc
add targets for windows and linux
...
git-svn-id: file:///home/svn/framework3/trunk@11345 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 22:46:22 +00:00
Joshua Drake
6a5ebf2d91
fix nil access
...
git-svn-id: file:///home/svn/framework3/trunk@11344 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 19:49:40 +00:00
HD Moore
55b21d4aaf
Fixes to enable password parsing and rw/ro detection in snmp brute force
...
git-svn-id: file:///home/svn/framework3/trunk@11336 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 20:51:17 +00:00
James Lee
f15e6e5e62
update autopwn, replace ms10-018 behaviors with ms10-090 css clip.
...
git-svn-id: file:///home/svn/framework3/trunk@11333 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 18:53:22 +00:00
Joshua Drake
af56bebfa1
note ms10-090 bulletin
...
git-svn-id: file:///home/svn/framework3/trunk@11331 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 18:41:20 +00:00
James Lee
dd6afdc74c
make these titles a little clearer
...
git-svn-id: file:///home/svn/framework3/trunk@11330 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 17:26:44 +00:00
Joshua Drake
d69cff2b34
add bid reference
...
git-svn-id: file:///home/svn/framework3/trunk@11318 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-13 16:16:29 +00:00
Joshua Drake
b30270e742
fix version
...
git-svn-id: file:///home/svn/framework3/trunk@11310 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 19:06:18 +00:00
HD Moore
cff22d7a56
Consistency change to make snmp act like other login modules
...
git-svn-id: file:///home/svn/framework3/trunk@11303 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:27:35 +00:00
HD Moore
58565cd53f
Rename community to snmp_login and include the brute force mixin
...
git-svn-id: file:///home/svn/framework3/trunk@11302 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:09:43 +00:00
HD Moore
4e4eb14887
This adds a TFTP version of #3345 (Pello's snmp config downloader). Still more work to do for the generic module
...
git-svn-id: file:///home/svn/framework3/trunk@11300 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 23:36:37 +00:00
Joshua Drake
573c639c85
remove debug prints
...
git-svn-id: file:///home/svn/framework3/trunk@11299 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 22:00:34 +00:00
Joshua Drake
7c6eadc24b
check more responses, account for corner case in initial headers
...
git-svn-id: file:///home/svn/framework3/trunk@11298 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 21:58:25 +00:00
HD Moore
fb7a06b218
Correct typo, find coffee
...
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 20:03:35 +00:00
HD Moore
909eeefc8f
Change of plan, keep this as a single module
...
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:54:47 +00:00
HD Moore
37ffccde08
Rename this module for clarity
...
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:27:26 +00:00
Joshua Drake
ea4e8c29d3
add hdm to authors, minor cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@11289 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 10:55:24 +00:00
HD Moore
8162d100fd
Add keywords
...
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:49:22 +00:00
HD Moore
e3f909cef9
Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers.
...
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:37:09 +00:00
HD Moore
c1a3364ea9
Update the privileged flag
...
git-svn-id: file:///home/svn/framework3/trunk@11285 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 03:31:45 +00:00
HD Moore
8ad08ec535
Update the description/refs
...
git-svn-id: file:///home/svn/framework3/trunk@11284 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 03:31:04 +00:00
HD Moore
61e8ab1432
This module will now automatically gain root if Perl is installed
...
git-svn-id: file:///home/svn/framework3/trunk@11283 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 03:21:52 +00:00
Joshua Drake
6a4e52f667
Account for SEH offset depending on the path
...
git-svn-id: file:///home/svn/framework3/trunk@11282 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 23:35:58 +00:00
Joshua Drake
c1f37b3c8a
minor adjustment to output printing
...
git-svn-id: file:///home/svn/framework3/trunk@11281 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 23:29:26 +00:00
Joshua Drake
5624c55599
add EHLO_NAME advanced option, remove debug print, fix version regex
...
git-svn-id: file:///home/svn/framework3/trunk@11280 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:51:05 +00:00
Joshua Drake
b5d44d1684
handle hosts that reverse properly, whitespace
...
git-svn-id: file:///home/svn/framework3/trunk@11279 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:32:39 +00:00
HD Moore
cc81d3bbc0
Automagic updates to jduck's exim module
...
git-svn-id: file:///home/svn/framework3/trunk@11278 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:17:47 +00:00
HD Moore
a683f7b7d4
Automagic updates to jduck's exim module
...
git-svn-id: file:///home/svn/framework3/trunk@11277 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:16:34 +00:00
Steve Tornio
d5fc9df054
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@11276 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 21:43:12 +00:00
Joshua Drake
5cc8407748
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@11275 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 19:50:16 +00:00
Joshua Drake
9f5df90e60
add exploit for cve-2010-4344
...
git-svn-id: file:///home/svn/framework3/trunk@11274 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 19:34:23 +00:00
HD Moore
26aca9d6ba
Swap some module locations, add loot and cred reporting
...
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 05:47:33 +00:00
Tod Beardsley
e18548387c
Ensure that UDP services are set to "open" in case they already had a "closed" record.
...
git-svn-id: file:///home/svn/framework3/trunk@11270 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 01:13:44 +00:00
HD Moore
b3b2bf6675
Stop testing users if the device doesn't support it
...
git-svn-id: file:///home/svn/framework3/trunk@11269 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 00:58:55 +00:00
Tod Beardsley
493db14006
Adds a "duplicate_ok" option to report_auth_info to allow for multiple passwords on the same username. Never came up before I took a look at SNMP.
...
Also normalizes the print_status messages to be explicit about which module is reporting (important when you're running several at once).
git-svn-id: file:///home/svn/framework3/trunk@11267 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-09 21:23:39 +00:00
Joshua Drake
1da08b0bdc
abort if retries count exceeded
...
git-svn-id: file:///home/svn/framework3/trunk@11263 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:57:14 +00:00
HD Moore
ac0222f73d
Ignore empty string replies
...
git-svn-id: file:///home/svn/framework3/trunk@11262 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:52:53 +00:00
HD Moore
1fe9af1b2f
A little rewording
...
git-svn-id: file:///home/svn/framework3/trunk@11261 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:22:04 +00:00
Joshua Drake
b88f18c7e5
add one to the delay for todb
...
git-svn-id: file:///home/svn/framework3/trunk@11260 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:13:08 +00:00
Joshua Drake
f788425865
add retry for vnc4server
...
git-svn-id: file:///home/svn/framework3/trunk@11259 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:07:10 +00:00
Tod Beardsley
0b1e3e12ea
Adds autofilter ports to vnc_login.
...
git-svn-id: file:///home/svn/framework3/trunk@11257 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 22:13:51 +00:00
HD Moore
9d5ac80cb5
Fix to work with IIS 7
...
git-svn-id: file:///home/svn/framework3/trunk@11254 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 16:22:04 +00:00
Joshua Drake
add6955501
add disclosure date, fix parse error on 1.8.7
...
git-svn-id: file:///home/svn/framework3/trunk@11253 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 16:17:16 +00:00
HD Moore
2a22713804
Fix up match
...
git-svn-id: file:///home/svn/framework3/trunk@11252 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 15:29:45 +00:00
James Lee
05d073c467
move the evil-looking metasploit.PayloadApplet to the more inocuous SiteLoader.class, re-enable rjb compiling for the applet class
...
git-svn-id: file:///home/svn/framework3/trunk@11249 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-07 20:43:53 +00:00
Joshua Drake
9c1576b20e
update the title
...
git-svn-id: file:///home/svn/framework3/trunk@11246 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-07 17:46:24 +00:00