Commit Graph

3854 Commits (f1b8bbd43667b10c979d85dbee87eb397152b3c3)

Author SHA1 Message Date
HD Moore 99d9dc69cd Merge in cookie support from paulino calderon
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 04:59:02 +00:00
Carlos Perez 68374e11ef small typo
git-svn-id: file:///home/svn/framework3/trunk@12051 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:35:12 +00:00
Carlos Perez 7648ab6e5f forgot options descriptions
git-svn-id: file:///home/svn/framework3/trunk@12050 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:30:27 +00:00
Carlos Perez c7989fff39 Migrate script migrated to post module.
git-svn-id: file:///home/svn/framework3/trunk@12049 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:27:36 +00:00
Carlos Perez d45969a381 Mubix migration and enhancement of the vnc password script
git-svn-id: file:///home/svn/framework3/trunk@12048 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:18:34 +00:00
James Lee 95633f7c3d store_loot in gather/env
git-svn-id: file:///home/svn/framework3/trunk@12046 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:31:05 +00:00
HD Moore c679de9d7a Closes #3976 by merging in an ARM adduser payload from Jonathan Salwan
git-svn-id: file:///home/svn/framework3/trunk@12045 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:26:14 +00:00
Carlos Perez 92e749f6ff USB Drive history enumeration script contributed by nebulus
git-svn-id: file:///home/svn/framework3/trunk@12044 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:23:32 +00:00
Carlos Perez 3fca6a4225 Migration of dumplinks script to dumplinks post module
git-svn-id: file:///home/svn/framework3/trunk@12043 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:22:44 +00:00
Tod Beardsley 42dd4fa717 Allow for duplicates for vnc_login since there's no username.
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 18:10:49 +00:00
Carlos Perez 5b8c2007c8 Migration of credcollector script to credential_collector post module
git-svn-id: file:///home/svn/framework3/trunk@12036 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:42:37 +00:00
Carlos Perez 71fd7136ae Forgot to update descriptions of the options set
git-svn-id: file:///home/svn/framework3/trunk@12035 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:36:28 +00:00
Carlos Perez 9cb690b9e3 ARP Scanner script migrated to Post Module
git-svn-id: file:///home/svn/framework3/trunk@12034 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:28:35 +00:00
James Lee 8db83e406e try to find wow64 installs. also fixes a problem where blank lines were printed when no DisplayName was found
git-svn-id: file:///home/svn/framework3/trunk@12021 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:46:01 +00:00
James Lee db9c9c625f :host can't be a peerhost (contains the port as well). report will just figure it out if you use a Session object, though
git-svn-id: file:///home/svn/framework3/trunk@12020 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:21:56 +00:00
Joshua Drake 586c1f9305 oops, broke the LIBPATH option
git-svn-id: file:///home/svn/framework3/trunk@12015 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 01:18:18 +00:00
Joshua Drake f4fe3f11b0 enable bind payloads, thx hdm :)
git-svn-id: file:///home/svn/framework3/trunk@12014 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:52:58 +00:00
Steve Tornio 4992deed21 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12013 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:16:06 +00:00
Joshua Drake fb6107ffb5 enable java payloads, currently via one-off method
git-svn-id: file:///home/svn/framework3/trunk@12012 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 23:57:11 +00:00
Tod Beardsley f2057f54a8 De-dup'ed get_link_filter() in the crawler module. Added some comment
docs on crawler_process_page(). Nothing exciting.



git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
David Rude 36b83cde6f Added exploit for CVE-2010-3747 RealPlayer CDDA URI Code Execution
git-svn-id: file:///home/svn/framework3/trunk@12009 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 15:42:28 +00:00
David Rude 382e63e16e fixed a typo in javascript
git-svn-id: file:///home/svn/framework3/trunk@12007 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 04:40:36 +00:00
Carlos Perez a5e899cb04 Fix loading problem on one of the test boxes
git-svn-id: file:///home/svn/framework3/trunk@12003 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 00:10:07 +00:00
Carlos Perez 6a1acd6a54 small typo
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Carlos Perez 4031daa1fb update modules to use is_system? to ensure SID is used to verify when running in certain languages in Windows
git-svn-id: file:///home/svn/framework3/trunk@11999 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:54:40 +00:00
Joshua Drake 5bfd574029 fix parse error
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Tod Beardsley d289aa8733 Another touchup on author credit for oracle-brute NSE script integration.
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:05:09 +00:00
Wei Chen 5800608356 Not ready to be part of msf repo, killing it
git-svn-id: file:///home/svn/framework3/trunk@11993 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 20:42:56 +00:00
HD Moore f317d60e04 Fix a few cosmetic issues with the kingview module
git-svn-id: file:///home/svn/framework3/trunk@11991 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 18:04:15 +00:00
Wei Chen 26bee16b5c I should probably add myself as an author.
git-svn-id: file:///home/svn/framework3/trunk@11990 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:45:12 +00:00
Carlos Perez 8d1b37a452 save hashes to DB
git-svn-id: file:///home/svn/framework3/trunk@11989 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:26:49 +00:00
Carlos Perez cb9abd8b13 saved sha1 instead of the proper hash, major typo on my part
git-svn-id: file:///home/svn/framework3/trunk@11988 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:19:37 +00:00
Mario Ceballos dfd2df6b47 puts this in the appropiate place
git-svn-id: file:///home/svn/framework3/trunk@11987 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:22:07 +00:00
Steve Tornio 78d4822d27 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11986 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:15:54 +00:00
David Rude eeb1aae9d0 Added Japanese NO NX Target
git-svn-id: file:///home/svn/framework3/trunk@11985 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 07:58:50 +00:00
Joshua Drake 4a1e59be8d oops =D
git-svn-id: file:///home/svn/framework3/trunk@11983 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 05:01:29 +00:00
Joshua Drake 4644110962 add exploit for cve-2010-4452, currently windows only and no payloads :(
git-svn-id: file:///home/svn/framework3/trunk@11982 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 04:50:25 +00:00
Wei Chen 7308a032f9 Added kingview historysvr exploit. by rick2600 & Dillon.
git-svn-id: file:///home/svn/framework3/trunk@11980 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:46:20 +00:00
Tod Beardsley c6a9a6efd7 Am I really updating for a misplaced comment? Why yes I am!
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:45:29 +00:00
Wei Chen e1ff12292f wrong directory
git-svn-id: file:///home/svn/framework3/trunk@11978 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:44:50 +00:00
Wei Chen 36c05de02e Added kingview historysvr exploit. By rick2600 and Dillon.
git-svn-id: file:///home/svn/framework3/trunk@11977 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:39:45 +00:00
Tod Beardsley 424eb1f192 Adding a reference to NSE as well.
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:26:20 +00:00
Tod Beardsley 9b431c0c8d Adding Patrik Karlsson as an author for the nmap nse script
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:19:57 +00:00
Mario Ceballos 6d3d0adf93 added exploit module coldfusion_traversal.rb from webDEViL
git-svn-id: file:///home/svn/framework3/trunk@11974 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 01:38:16 +00:00
Tod Beardsley ecb89c785b Actually use the API for appending command line arguments for nmap.
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:59:35 +00:00
Steve Tornio abcce881b2 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11969 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:56:11 +00:00
Mario Ceballos 8189a1f7a9 added exploit module hp_openview_insight_backdoor.rb
git-svn-id: file:///home/svn/framework3/trunk@11968 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:22:07 +00:00
Tod Beardsley 5e715c22db Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist.
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:16:18 +00:00
Tod Beardsley 292f357f7a Moving requires from oracle_login to nmap. Duh.
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 20:46:03 +00:00
James Lee 7d12151ec6 add support for http digest authentication. fixes #2504, thanks oliver kleinecke for the patch!
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
Tod Beardsley 6e0e23f5ba Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions.
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:13:57 +00:00
Tod Beardsley f568b3e0d8 Normalize the print_status banners for sid_brute
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 18:25:34 +00:00
Tod Beardsley 70127c09fb Fixes #3939 by setting the racket bits correctly.
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 15:58:17 +00:00
Tod Beardsley 03f227817e blarg lost a commit in there.
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:41:46 +00:00
Tod Beardsley b8b175fd5c See #3941. Don't report the same thing a billion times.
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:34:19 +00:00
Steve Tornio 45e29834be add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11955 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 12:01:55 +00:00
David Rude 76ee9353aa changed exploit ranking to better reflect the privileges required
git-svn-id: file:///home/svn/framework3/trunk@11954 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 10:54:13 +00:00
David Rude a63534107b minor style fix
git-svn-id: file:///home/svn/framework3/trunk@11953 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:57:51 +00:00
David Rude 994e6eb450 Exploit for Foxit PDF Reader createDataObject() file write vulnerability
git-svn-id: file:///home/svn/framework3/trunk@11952 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:36:33 +00:00
Wei Chen 15f52a2e6b Updated: Make sure sqlite3 is supported before executing SQL queries
git-svn-id: file:///home/svn/framework3/trunk@11949 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 00:11:06 +00:00
Tod Beardsley b68396351a See #3941. This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it.
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.

Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.

Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.



git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 22:52:50 +00:00
Wei Chen d8ff158855 Ported Sven Taute's enum_chrome.rb as a POST module. Modified output, saved log format, supports data dumping for x64 Windows, etc. Improvements still needed.
git-svn-id: file:///home/svn/framework3/trunk@11947 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 21:19:27 +00:00
HD Moore 5ab60f2966 Fixes #3938 by correcting the path for the filename
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 15:04:16 +00:00
Wei Chen ed6f8b5a78 Updated: Made a slight adjustment to the code format
git-svn-id: file:///home/svn/framework3/trunk@11945 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:27:19 +00:00
Wei Chen 74aab1efe4 Added mr_me's kolibri web server head buffer overflow
git-svn-id: file:///home/svn/framework3/trunk@11944 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:18:36 +00:00
HD Moore 293a6f2ef4 Remove unused RHOST option and fix call to .id in ICMP
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 04:20:19 +00:00
HD Moore 09b3ecff33 Move the module to the correct location
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore 2578a0e16b Correct formatting and API usage in the Majordomo2 module
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:17 +00:00
amaloteaux 78396e94f9 move linux meterpreter bin to the correct place
git-svn-id: file:///home/svn/framework3/trunk@11938 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:29:25 +00:00
amaloteaux 544fb61aa2 server capture smb will check for empty pass and not display on screen
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:27:22 +00:00
HD Moore a69278710a Commit an exploit for the Accellion File Transfer appliance default encryption key vulnerability.
git-svn-id: file:///home/svn/framework3/trunk@11935 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:37:23 +00:00
Steve Tornio 03cd23a2d0 remove extra osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:27:27 +00:00
David Rude 00c756ee27 Added patches from Chris John Riley for SAP aux scanner modules
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:50:18 +00:00
David Rude 370c42736c Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:37:02 +00:00
amaloteaux dce7dd13fe type fix on psexec
git-svn-id: file:///home/svn/framework3/trunk@11926 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 18:46:58 +00:00
Tod Beardsley 8771b871da Whitespace cleanup on sid_brute.rb, remove redundant target_host def.
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 16:55:08 +00:00
Jonathan Cran 79da0ead08 applying description update from zeknox -- thanks!
git-svn-id: file:///home/svn/framework3/trunk@11923 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 05:36:17 +00:00
Tod Beardsley e2af0510f6 wanged up the revision splat.
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:16:20 +00:00
Tod Beardsley 676fc22249 Fixes #3927. Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does.
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:15:15 +00:00
Steve Tornio 4534c76882 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11907 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 02:21:36 +00:00
David Rude 45556f7470 .NET Runtime Optimization Service privilege escalation post module
git-svn-id: file:///home/svn/framework3/trunk@11904 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 00:29:59 +00:00
Mario Ceballos 631af16d9f revert back.
git-svn-id: file:///home/svn/framework3/trunk@11900 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:48:39 +00:00
Tod Beardsley 42531e097f Fixes #3916. Adds a module for mysql delivery of a payload via a UDF, using Bernardo's quite excellent UDF libraries.
git-svn-id: file:///home/svn/framework3/trunk@11899 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:42:26 +00:00
Mario Ceballos 54382c6080 patch recieved from Peter Van Eeckhout
git-svn-id: file:///home/svn/framework3/trunk@11898 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:23:13 +00:00
HD Moore 5299bbb8db Add ip/port prefixes to the jboss scanner
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux 5f6995e8d3 enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
David Rude 695963dde7 Fixed references
git-svn-id: file:///home/svn/framework3/trunk@11888 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 02:28:15 +00:00
David Rude b51c9f8397 oops forgot a , =)
git-svn-id: file:///home/svn/framework3/trunk@11887 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:42:37 +00:00
David Rude 6dc0596870 Added Novell iPrint GetDriverSettings <= 5.52 exploit from mr_me thanks
git-svn-id: file:///home/svn/framework3/trunk@11886 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:27:06 +00:00
David Rude cdba0d532c Adds a ret for Windows Server 2003 thanks to securityxxpert
git-svn-id: file:///home/svn/framework3/trunk@11882 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 21:00:57 +00:00
James Lee 5299692fc9 fix a typo (thanks to privmode for pointing out), and incorrect host arg for store_loot. fixes #3897
git-svn-id: file:///home/svn/framework3/trunk@11881 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 20:21:12 +00:00
David Rude 921a181ac0 Adds a Firefox post module to collect credentials and cookies
git-svn-id: file:///home/svn/framework3/trunk@11879 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 02:57:32 +00:00
David Rude 0663564efc Fixed up some minor bugs, loot converted to csv for parsing
git-svn-id: file:///home/svn/framework3/trunk@11878 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 16:59:35 +00:00
David Rude fafb7debcc fixes some minor bugs
git-svn-id: file:///home/svn/framework3/trunk@11876 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 15:38:01 +00:00
Joshua Drake dee18a8995 add office 2007 msxml5 targets from SAHA! THX
git-svn-id: file:///home/svn/framework3/trunk@11875 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 08:39:48 +00:00
Joshua Drake d682069aec add cve-2010-4566 exploit from Erwin Paternotte
git-svn-id: file:///home/svn/framework3/trunk@11873 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 20:51:12 +00:00
David Rude 657c7c55a9 Added a require for msf/core/post/file
git-svn-id: file:///home/svn/framework3/trunk@11872 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:43:30 +00:00
amaloteaux d4d475e9d3 small fix on filezilla_server_cred.rb
git-svn-id: file:///home/svn/framework3/trunk@11871 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:32:46 +00:00
HD Moore 3ad7cd61e5 Remove the exploit_module= assignment until this feature is completed
git-svn-id: file:///home/svn/framework3/trunk@11870 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:59:51 +00:00
David Rude f79cfa13a3 Adding post module for collecting FileZilla FTP Server ftp user and admin interface credentials
git-svn-id: file:///home/svn/framework3/trunk@11869 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:00:55 +00:00
Joshua Drake c29bca4fb8 add keywords, oops
git-svn-id: file:///home/svn/framework3/trunk@11868 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:47 +00:00
Joshua Drake c7f6324fbd add cve-2011-0404 exploit from Evan
git-svn-id: file:///home/svn/framework3/trunk@11867 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:24 +00:00
Mario Ceballos 94d21dde8e fix a load error
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:54:03 +00:00
Mario Ceballos 5e60545446 fix a load error
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:35:31 +00:00
David Rude 2a90817b80 Fixes more style and API usage issues
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 18:46:00 +00:00
David Rude 27ba761cd3 Fixed indentation of the cldap_payload
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 14:01:04 +00:00
David Rude 6c1f49e73d Added Wireshark Auxiliary DoS module from joernchen
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 13:44:41 +00:00
David Rude 37e9ad1ed4 Added SAP Management Console auxiliary scanner modules
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 10:18:31 +00:00
HD Moore 2dbbdc18dd Explicitly yield to other threads after each request, reducing the chance that this module will eat all cycles.
git-svn-id: file:///home/svn/framework3/trunk@11857 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 05:03:20 +00:00
David Rude 0afc75e19b post module for FileZilla FTP Client credential collection
git-svn-id: file:///home/svn/framework3/trunk@11856 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 04:11:12 +00:00
HD Moore 261ab6c014 Fix stack trace when parsing silc account settings, cosmetic and style tweaks
git-svn-id: file:///home/svn/framework3/trunk@11854 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 15:14:49 +00:00
David Rude dcfd46e3d6 Added Carlos Perez credits from the original meterpreter script.
git-svn-id: file:///home/svn/framework3/trunk@11853 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 07:31:26 +00:00
David Rude 04e2d7a829 more style fixes =)
git-svn-id: file:///home/svn/framework3/trunk@11851 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 05:02:33 +00:00
David Rude 4d4c760e81 style fixes
git-svn-id: file:///home/svn/framework3/trunk@11850 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:54:50 +00:00
David Rude 1e33520a86 post module for pidgin credential collection conversion of get_pidgin_creds
git-svn-id: file:///home/svn/framework3/trunk@11849 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:02:54 +00:00
HD Moore 77c5f02d4d Call the correct version of the report_auth_info() method (this one takes into account workspace)
git-svn-id: file:///home/svn/framework3/trunk@11847 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:55:56 +00:00
HD Moore e7dbf28626 This patch adds a register_parent() method to the module class, making it easy to propogate things like ParentUUID, Workspace, and Owner down. The multi/handler post modules were updated to use this new api. This fixes an issue where the session generated by a post module would be registered to the wrong workspace.
git-svn-id: file:///home/svn/framework3/trunk@11846 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:24:35 +00:00
HD Moore f49e040a96 This patch adds a ListenerTimeout option to multi/handler that sets a maximum wait time for sessions. This is useful to prevent leftover background handlers by unsuccessful or misconfigured post modules.
git-svn-id: file:///home/svn/framework3/trunk@11845 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 03:22:40 +00:00
HD Moore c9c3ef4933 Port the screen unlocker to a post module
git-svn-id: file:///home/svn/framework3/trunk@11836 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 05:56:01 +00:00
HD Moore 9bc2a2cd3a Store keystrokes as loot
git-svn-id: file:///home/svn/framework3/trunk@11835 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:54:45 +00:00
HD Moore 8a5f7c448f Fix typos in the original module
git-svn-id: file:///home/svn/framework3/trunk@11834 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:27:49 +00:00
HD Moore 9a54bc0a95 Fix a typo in the original module
git-svn-id: file:///home/svn/framework3/trunk@11833 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:23:06 +00:00
HD Moore d19ab712c4 Quick typo fix
git-svn-id: file:///home/svn/framework3/trunk@11831 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:49:25 +00:00
HD Moore b700ed2075 Cosmetic cleanup of post modules
git-svn-id: file:///home/svn/framework3/trunk@11830 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:47:40 +00:00
HD Moore 880ffeb1f7 This updates the (C) for 2011, adds a CustomPrintPrefix option to set a unique prefix for a module and cleans up some post modules
git-svn-id: file:///home/svn/framework3/trunk@11828 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:02:34 +00:00
HD Moore 8c01560ade Store enumerated data as loot
git-svn-id: file:///home/svn/framework3/trunk@11826 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:48:03 +00:00
HD Moore 4c4ae90daf Consistency fix
git-svn-id: file:///home/svn/framework3/trunk@11825 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:04:52 +00:00
HD Moore f79f704a68 Make the post module titles consist
git-svn-id: file:///home/svn/framework3/trunk@11824 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:00:33 +00:00
Carlos Perez b712be8949 Secure deleting of temporary screencapture files on targets using srm
git-svn-id: file:///home/svn/framework3/trunk@11823 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 00:43:23 +00:00
Carlos Perez f75bd0498f corrected description of action
git-svn-id: file:///home/svn/framework3/trunk@11821 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 21:05:53 +00:00
Tod Beardsley 57966c66d8 This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins.
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 20:42:14 +00:00
Tod Beardsley 5f70c705c1 Committing the Kippo ssh honeypot detection as seen at AHA!.
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 13:57:26 +00:00
Carlos Perez 7050bbc0ce Forgot to uncomment the sections while debuging
git-svn-id: file:///home/svn/framework3/trunk@11816 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 11:57:12 +00:00
Carlos Perez 1c812149b2 Add support to enumerate and download OS X keychain files
git-svn-id: file:///home/svn/framework3/trunk@11815 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 01:37:00 +00:00
Carlos Perez a4b6994e46 update to capture all history file on home folder, screncapture will now capture all loginwindow processes if root and it will download .ssh and .gnupg files for all users if running as root
git-svn-id: file:///home/svn/framework3/trunk@11814 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 23:13:12 +00:00
James Lee aea8192c7f apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\!
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 21:47:52 +00:00
James Lee 5d42ed4552 more descriptive name and description
git-svn-id: file:///home/svn/framework3/trunk@11803 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 04:42:02 +00:00
Mario Ceballos aa859e2f68 force ordinal payload
git-svn-id: file:///home/svn/framework3/trunk@11799 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 00:58:54 +00:00
Joshua Drake 8ef05017b8 style compliance fixes, naughty naughty
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
Carlos Perez 31d4d335f9 Fixed typos and Regex for clean installs of the OS
git-svn-id: file:///home/svn/framework3/trunk@11795 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:11:27 +00:00
James Lee 5c87a5db9c more descriptive, standard naming
git-svn-id: file:///home/svn/framework3/trunk@11794 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 18:07:26 +00:00
Carlos Perez 7e2fb81cb5 Initial set of OSX Shell Post modules for general basic enumeration and for dumping hashes (SHA, LM and NTLM) for OSX 10.4 and above
git-svn-id: file:///home/svn/framework3/trunk@11792 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 14:00:47 +00:00
et dd05954b34 Fix wmap to test parameters, error inj. module as example
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
James Lee 4b4ed6edbe un-truncate a comment and make sure we didn't append a . to the buffer
git-svn-id: file:///home/svn/framework3/trunk@11788 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 01:59:17 +00:00
Steve Tornio 13809850a3 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-19 13:35:57 +00:00
Matt Weeks c322534907 Add exploit for CVE-2010-3765, firefox interleaved document.write and appendChild calls.
git-svn-id: file:///home/svn/framework3/trunk@11773 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-18 02:23:10 +00:00
Joshua Drake 160c683f18 Add WbemExec mixin, modify MS10-061 to use MOF technique
git-svn-id: file:///home/svn/framework3/trunk@11766 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:22:11 +00:00
Joshua Drake 8b4ef42fa3 randomize name string
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:21:24 +00:00
Joshua Drake 2ef3e79c3d add cve/bid refs
git-svn-id: file:///home/svn/framework3/trunk@11764 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 14:41:48 +00:00
Joshua Drake 41f0c2eaa5 typo
git-svn-id: file:///home/svn/framework3/trunk@11762 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 03:56:15 +00:00
Joshua Drake 7365ca9509 add aux module to trigger browser election DoS
git-svn-id: file:///home/svn/framework3/trunk@11756 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-16 18:12:28 +00:00
Joshua Drake 7fb3094bb0 remove "File" from title
git-svn-id: file:///home/svn/framework3/trunk@11746 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-12 22:30:54 +00:00
Matt Weeks b241fc1530 Add service permissions escalate post module.
git-svn-id: file:///home/svn/framework3/trunk@11739 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-10 17:34:09 +00:00
Joshua Drake 8c8b181ffb Update ms11_xxx modules to reflect bulletin release, minor style fixes
git-svn-id: file:///home/svn/framework3/trunk@11730 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 23:31:44 +00:00
Joshua Drake dafeecdc96 Small fix from Dan Rosenberg
git-svn-id: file:///home/svn/framework3/trunk@11725 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 18:22:36 +00:00
Joshua Drake 7d72db3e8e More updates from Dan Rosenburg -- Works with DEP now!
git-svn-id: file:///home/svn/framework3/trunk@11724 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:50:05 +00:00
HD Moore 070f48e16a Work around some weirdness between report_website and report_host not accepting hostnames as :host by forcing :host to be the address
git-svn-id: file:///home/svn/framework3/trunk@11723 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-08 17:32:37 +00:00
et baab86fc52 WMAP 1.0 and first pass on some modules
git-svn-id: file:///home/svn/framework3/trunk@11709 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 05:57:26 +00:00
Tod Beardsley 3f1ceea349 Fixes #3655. Subbed out all the :proto's that were really :snames for all the note reporting. This was getting caught anyway in most cases, but it's better to have the modules themselves actually be correct for future copy-pasters.
git-svn-id: file:///home/svn/framework3/trunk@11707 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:54:32 +00:00
James Lee 16fad17453 snmp_enum improvements from Kashif Iftikhar, fixes #3654
git-svn-id: file:///home/svn/framework3/trunk@11706 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-04 01:26:23 +00:00
Joshua Drake e06d4d52fe convert VLC module to FileFormat, adjust spray
git-svn-id: file:///home/svn/framework3/trunk@11705 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-03 18:16:40 +00:00
Joshua Drake acf9b2088d remove half-browser half-fileformat /misc/ version, but preserve differences in comments in fileformat version
git-svn-id: file:///home/svn/framework3/trunk@11701 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 21:47:02 +00:00
Jonathan Cran 5b5e7028ad quick mod from daniel clemens to show the ip with the url
git-svn-id: file:///home/svn/framework3/trunk@11699 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 19:04:54 +00:00
Tod Beardsley 671659841b On second thought, modules should not just make up a vuln name for reporting. They should just report as their own module name. Makes it easier to refer to them that way and this is how normal exploits report.
git-svn-id: file:///home/svn/framework3/trunk@11698 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 18:39:48 +00:00
Tod Beardsley e31f35e3ae Fixes #3643. These modules now report_vuln() correctly.
git-svn-id: file:///home/svn/framework3/trunk@11697 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:42:23 +00:00
Tod Beardsley 99b1703416 Trailing comma on cisco_ios_auth_bypass
git-svn-id: file:///home/svn/framework3/trunk@11696 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:07:31 +00:00
Tod Beardsley cec851a5ed Fixing cisco_ios_auth_bypass.rb to not try to include its own references on vuln_report. Just trust the given module references.
git-svn-id: file:///home/svn/framework3/trunk@11695 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-02 17:06:40 +00:00
Joshua Drake 3ac076c20a add exploit for VLC media player WebM processing from Dan Rosenburg
git-svn-id: file:///home/svn/framework3/trunk@11692 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-01 18:54:24 +00:00
Joshua Drake 2c93910f4b switch to .html per reports of brokennes
git-svn-id: file:///home/svn/framework3/trunk@11683 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-31 06:18:13 +00:00
HD Moore ac651fba6b Merge code from Alexandre Maloteaux, fixes #3615
git-svn-id: file:///home/svn/framework3/trunk@11678 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-30 19:26:35 +00:00
James Lee 3d94cd7d22 cut down on some of the copy-paste
git-svn-id: file:///home/svn/framework3/trunk@11664 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-29 01:55:47 +00:00
James Lee a10a94d373 report configured shares in the same way as modules/auxiliary/scanner/smb/smb_enumshares.rb
git-svn-id: file:///home/svn/framework3/trunk@11663 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-29 00:37:13 +00:00
Joshua Drake a62f1922b3 fix typos, lol?
git-svn-id: file:///home/svn/framework3/trunk@11662 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-28 23:56:35 +00:00
Joshua Drake 9682091cca Add SQLI version of MSSQL Payload from Rodrigo Marcos!
git-svn-id: file:///home/svn/framework3/trunk@11655 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:48:07 +00:00
Joshua Drake 89a731b789 Prevent trying to call .map on nil
git-svn-id: file:///home/svn/framework3/trunk@11654 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-27 16:39:19 +00:00
Joshua Drake 21d93be897 Add fix for WOW64 from ReL1k
git-svn-id: file:///home/svn/framework3/trunk@11650 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 16:26:08 +00:00
Joshua Drake 23808d19cd See #3531, Apply fix from Chao Mu
git-svn-id: file:///home/svn/framework3/trunk@11649 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 15:55:35 +00:00
James Lee d2670d52ec add BufferRegister and BufferOffset support for shikata_ga_nai. see #3563. tested this pretty extensively. /me crosses fingers
git-svn-id: file:///home/svn/framework3/trunk@11646 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 04:24:41 +00:00
Joshua Drake c9d3d60b23 Rework external command invocation
git-svn-id: file:///home/svn/framework3/trunk@11644 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-26 01:28:27 +00:00
Joshua Drake a0a8ea8cbd re-order includes a bit
git-svn-id: file:///home/svn/framework3/trunk@11641 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 21:32:59 +00:00
Carlos Perez 05fd7b4e57 Patch for railgun and post mixin; and module from cha-mou to add capability to delete users on windows hosts.
git-svn-id: file:///home/svn/framework3/trunk@11638 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 13:02:35 +00:00
HD Moore 3794ed35cc Apply patches from Matthew Weeks (scriptjunkie) to fix traversal flaws outlined in his Black Hat DC talk:
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-wp.pdf
https://media.blackhat.com/bh-dc-11/Weeks/BlackHat_DC_2011_Weeks_Counterattack-Slides.pdf



git-svn-id: file:///home/svn/framework3/trunk@11636 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 02:24:37 +00:00
Joshua Drake d9fe9da849 add DoS module from Paulino Calderon
git-svn-id: file:///home/svn/framework3/trunk@11634 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-25 00:11:41 +00:00
natron 1be3448959 svn propset
git-svn-id: file:///home/svn/framework3/trunk@11633 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:21:08 +00:00
natron bb4343bf63 Add new domain user enumeration aux mod. Still needs an update to include db reporting.
git-svn-id: file:///home/svn/framework3/trunk@11632 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 22:14:57 +00:00
Joshua Drake 81ff9483bf add ms09-004 exploit via sql injection from Rodrigo Marcos
git-svn-id: file:///home/svn/framework3/trunk@11631 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 19:37:58 +00:00
Joshua Drake 29b03701d1 Fixes #3531, Use new accounts mixin to resolve SID->Account Names
git-svn-id: file:///home/svn/framework3/trunk@11630 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:25:52 +00:00
Joshua Drake 0af8915fd5 Fixes #1936, Add accounts mixin and accompanying post module
git-svn-id: file:///home/svn/framework3/trunk@11629 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-24 17:23:48 +00:00
James Lee d7cda0f85a accept a client argument for get_uri()
git-svn-id: file:///home/svn/framework3/trunk@11623 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-22 00:16:57 +00:00
Joshua Drake 80eb7bad52 Fixes #3257, Adds two mod_negotiation scanner modules from DiabloHorn
git-svn-id: file:///home/svn/framework3/trunk@11619 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 22:26:33 +00:00
Tod Beardsley aeb1f684c0 Messing around with FTP fuzzing this morning, fixed up the ftp_pre_post fuzzer to allow for a little more control over the commands being fuzzed (also fixed a couple bugs).
git-svn-id: file:///home/svn/framework3/trunk@11617 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 17:24:03 +00:00
Joshua Drake ae33e3ac71 Fixes #3571, normalize 2k3r2 and fix language defaulting
git-svn-id: file:///home/svn/framework3/trunk@11614 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-21 04:09:48 +00:00
Joshua Drake a944cbc50d style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@11612 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:40:47 +00:00
Joshua Drake e821f7e757 Fixes #3567, apply patch to make ports/payloads configurable
git-svn-id: file:///home/svn/framework3/trunk@11611 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 20:32:18 +00:00
James Lee f3bda46333 doesn't work on IE8, fixes #3566, thanks Hauke Mehrtens for the patch
git-svn-id: file:///home/svn/framework3/trunk@11610 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 19:30:59 +00:00
Joshua Drake 362c409623 Fixes #3554, add missing variable to published_applications (from published_bruteforce), some clean ups
git-svn-id: file:///home/svn/framework3/trunk@11606 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-20 00:22:21 +00:00
Joshua Drake be0169cef1 add android file snarfer exploit
git-svn-id: file:///home/svn/framework3/trunk@11601 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-19 18:04:54 +00:00
Joshua Drake 41e43b557c Rename to MSXX format, add references
git-svn-id: file:///home/svn/framework3/trunk@11598 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 17:19:17 +00:00
Joshua Drake 667d7aacea add keywords, some references
git-svn-id: file:///home/svn/framework3/trunk@11597 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 00:36:45 +00:00
Joshua Drake 680625ff2d add exploit for cve-2010-2743
git-svn-id: file:///home/svn/framework3/trunk@11596 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-18 00:33:05 +00:00
Tod Beardsley 1d7745d449 Add some tracking datastore objects (ParentUUID and AutopwnUUID) to browser_autopwn.rb's exploits and multi/handlers to make exploit tracking a little easier.
git-svn-id: file:///home/svn/framework3/trunk@11592 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-17 22:15:22 +00:00
Joshua Drake b6b9b83dd7 add CVE reference
git-svn-id: file:///home/svn/framework3/trunk@11579 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-14 16:25:37 +00:00
James Lee f2661e68db don't respond with 404's for requests that don't match the URIPATH exactly. allows for more generic hash stealing and fixes 3442
git-svn-id: file:///home/svn/framework3/trunk@11576 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 20:57:33 +00:00
Carlos Perez 3c8501cd82 Keylogrecorder script migrated in to post module keylog_recorder
git-svn-id: file:///home/svn/framework3/trunk@11570 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 02:44:22 +00:00
Joshua Drake 166b4d3250 whitespace
git-svn-id: file:///home/svn/framework3/trunk@11568 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-13 00:14:44 +00:00
Carlos Perez 1f4d36b758 removed spaces
git-svn-id: file:///home/svn/framework3/trunk@11566 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:25:00 +00:00
Carlos Perez 3fc76be37c removed spaces
git-svn-id: file:///home/svn/framework3/trunk@11565 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:24:46 +00:00
Carlos Perez c6c5488a04 changed threading
git-svn-id: file:///home/svn/framework3/trunk@11564 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:24:17 +00:00
Carlos Perez 0a111ee265 get_valid_community migrated to post module and expanded. Now enum_snmp
git-svn-id: file:///home/svn/framework3/trunk@11563 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 23:22:41 +00:00
James Lee 9887e4cc08 fix header comments
git-svn-id: file:///home/svn/framework3/trunk@11560 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 18:29:56 +00:00
James Lee 3781b3e912 fix header comments
git-svn-id: file:///home/svn/framework3/trunk@11559 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 18:11:24 +00:00
Carlos Perez 6599e0638e Fixed small indent
git-svn-id: file:///home/svn/framework3/trunk@11558 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 17:36:58 +00:00
Carlos Perez 50d4f35601 fixed indenting
git-svn-id: file:///home/svn/framework3/trunk@11557 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 17:33:46 +00:00
Carlos Perez 0cfc2f8e45 get_application_list script migrated in to post module enum_applications
git-svn-id: file:///home/svn/framework3/trunk@11556 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 03:55:19 +00:00
Carlos Perez 2af5907220 enum_powershell_env script migrated in to post module
git-svn-id: file:///home/svn/framework3/trunk@11555 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 02:31:13 +00:00
Carlos Perez f2a211cabc checkvm script migrated in to post module
git-svn-id: file:///home/svn/framework3/trunk@11554 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 02:16:06 +00:00
Carlos Perez f7af7924c0 Update windows/registry mixin path for module import
git-svn-id: file:///home/svn/framework3/trunk@11551 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-12 00:11:43 +00:00
Carlos Perez 212e38a3d7 Migrated enum_shares script to module
git-svn-id: file:///home/svn/framework3/trunk@11549 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 22:31:37 +00:00
Carlos Perez 3daaaf0c7e Keywords and formatting
git-svn-id: file:///home/svn/framework3/trunk@11548 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 22:30:40 +00:00
Joshua Drake ffbea6199f Do not wait for the DCERPC call to timeout
git-svn-id: file:///home/svn/framework3/trunk@11545 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 17:56:27 +00:00
Carlos Perez b9e31bdfb9 migrated enum logged on users script to module
git-svn-id: file:///home/svn/framework3/trunk@11540 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-11 02:02:11 +00:00
James Lee 88eb09ac66 more renaming fail from #3478
git-svn-id: file:///home/svn/framework3/trunk@11538 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 21:36:42 +00:00
Joshua Drake 14617450d0 catch connection errors
git-svn-id: file:///home/svn/framework3/trunk@11537 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 20:03:53 +00:00
Joshua Drake b9836dcf50 fix success detection read loop
git-svn-id: file:///home/svn/framework3/trunk@11535 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 19:40:39 +00:00
Joshua Drake 1604b5616f apply some more changes from Konrads
git-svn-id: file:///home/svn/framework3/trunk@11533 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 14:34:24 +00:00
Joshua Drake 1e951f6245 fix check method
git-svn-id: file:///home/svn/framework3/trunk@11526 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:53 +00:00
Joshua Drake db1f63eb1a remove stray comma
git-svn-id: file:///home/svn/framework3/trunk@11525 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:24 +00:00
Joshua Drake d832296e7d minor cleanups
git-svn-id: file:///home/svn/framework3/trunk@11524 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:33:10 +00:00
Joshua Drake 0b43172413 add exploit for cve-2006-5815, oldy but often requested!
git-svn-id: file:///home/svn/framework3/trunk@11523 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-09 23:23:25 +00:00
Joshua Drake 739604ea12 Fixes #3469, silly typo
git-svn-id: file:///home/svn/framework3/trunk@11520 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 05:58:55 +00:00
Joshua Drake 9ef757bf17 Fixes #3387, add the PACKAGE option to allow 3.2
git-svn-id: file:///home/svn/framework3/trunk@11518 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 04:11:01 +00:00
Joshua Drake d994f595fe remove unused vars
git-svn-id: file:///home/svn/framework3/trunk@11517 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:59:10 +00:00
Joshua Drake 287f4c87fe style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:13:26 +00:00
Joshua Drake af79f5c0ea add description, references, etc
git-svn-id: file:///home/svn/framework3/trunk@11515 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:12:15 +00:00
Joshua Drake 08f3f44f98 allow bypassuac to work on x64 or x86, allow payload selection, cleanup indents
git-svn-id: file:///home/svn/framework3/trunk@11514 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 00:43:01 +00:00
Joshua Drake 19e8a6a5b1 switch AutoRunScript for InitialAutoRunScript, oops
git-svn-id: file:///home/svn/framework3/trunk@11513 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 00:25:44 +00:00
Joshua Drake 452ab6f301 updated description
git-svn-id: file:///home/svn/framework3/trunk@11506 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:51:34 +00:00
Joshua Drake f7e70e8d42 add an automatic target and now includes Office XP SP3
git-svn-id: file:///home/svn/framework3/trunk@11505 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:48:29 +00:00
James Lee 9c7d40b0b9 fix a namespace screwup
git-svn-id: file:///home/svn/framework3/trunk@11504 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 17:00:35 +00:00
James Lee dfd9dd70e6 rename fail
git-svn-id: file:///home/svn/framework3/trunk@11503 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 16:59:02 +00:00
Mario Ceballos a11f0d5e42 fixes a uninitialized constant Msf::Post::Registry warning
git-svn-id: file:///home/svn/framework3/trunk@11501 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-07 00:28:04 +00:00
James Lee e10eb7d313 hashdump is windows specific
git-svn-id: file:///home/svn/framework3/trunk@11500 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 23:48:16 +00:00
James Lee 38a3b8a387 move windows-specific privesc modules into a windows/ directory, multi-platform mods into a multi/ dir, fixes #3448
git-svn-id: file:///home/svn/framework3/trunk@11499 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 22:33:36 +00:00
HD Moore 74bf5199f1 Patches from goony, fixes #3438
git-svn-id: file:///home/svn/framework3/trunk@11497 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:35:57 +00:00
James Lee dbeae8df24 add support for running post modules from the meterpreter prompt. options are set in the same way as the -o arg to run, e.g. run post/escalate/bypassuac LHOST=192.168.0.1
git-svn-id: file:///home/svn/framework3/trunk@11496 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:28:00 +00:00
Joshua Drake 4ae8b8b14a add snmp_set scanner from Matteo Cantoni (Fixes #3437), remove executable property from enums
git-svn-id: file:///home/svn/framework3/trunk@11494 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:23:22 +00:00
James Lee 1ecb293010 pass the listener bind address through to handlers
git-svn-id: file:///home/svn/framework3/trunk@11493 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 21:18:24 +00:00
James Lee 152c380a13 remove an erroneous line to get rid of NameErrors, thanks ReL1K
git-svn-id: file:///home/svn/framework3/trunk@11490 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 20:23:29 +00:00
HD Moore 4971a0d7af Add Skylined's "You Got Pwned" payload
git-svn-id: file:///home/svn/framework3/trunk@11485 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 17:34:09 +00:00
HD Moore c003e4b8ef Merge R3L1K's UAC bypass module into the trunk
git-svn-id: file:///home/svn/framework3/trunk@11483 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 16:59:25 +00:00
Jonathan Cran a206ed8418 clarifying wmi tools are not installed by default
git-svn-id: file:///home/svn/framework3/trunk@11481 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-06 05:27:37 +00:00
Joshua Drake bc7a8e3b47 fix silly merge conflict data in HTML
git-svn-id: file:///home/svn/framework3/trunk@11479 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-05 22:52:54 +00:00
James Lee a79092a0d3 this is really unlimited, but bump it a bit for possible larger payloads later.
git-svn-id: file:///home/svn/framework3/trunk@11474 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 23:37:11 +00:00
Joshua Drake f0202c3350 add MSFT advisory references
git-svn-id: file:///home/svn/framework3/trunk@11473 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 23:00:45 +00:00
James Lee 1735dc8cb2 add bid reference, thanks jjarmoc
git-svn-id: file:///home/svn/framework3/trunk@11472 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 22:08:33 +00:00
Joshua Drake 152eb80710 fix debug target, adjust File reference
git-svn-id: file:///home/svn/framework3/trunk@11469 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 16:55:58 +00:00
Steve Tornio 4a1f45c633 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11467 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 16:15:43 +00:00
Joshua Drake 4fc19971ae add exploit for cve-2010-3970
git-svn-id: file:///home/svn/framework3/trunk@11466 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:29 +00:00
Tod Beardsley 24388f3a38 Adding a CVE reference for weak/blank/guessable passwords.
git-svn-id: file:///home/svn/framework3/trunk@11465 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 15:30:17 +00:00
HD Moore 401d8e5a68 Revert until the mixin is checked in
git-svn-id: file:///home/svn/framework3/trunk@11464 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 02:46:18 +00:00
James Lee a121a73cdb use the mixin for registry fu.
git-svn-id: file:///home/svn/framework3/trunk@11462 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 01:01:29 +00:00
Joshua Drake a59dcc512b switch target to p/p/r that works on multiple versions
git-svn-id: file:///home/svn/framework3/trunk@11459 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-02 09:56:43 +00:00
Joshua Drake 5e2abcc88c add DoS module for IIS FTP server
git-svn-id: file:///home/svn/framework3/trunk@11456 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-31 18:32:55 +00:00
HD Moore bec8a95b02 Merges pello's Cisco uploader module, merges changes back into the TFTP server class. Fixes #3429
git-svn-id: file:///home/svn/framework3/trunk@11454 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-30 16:37:58 +00:00
Joshua Drake 540bd3692c add fileformat exploit for cve-2010-3333
git-svn-id: file:///home/svn/framework3/trunk@11450 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:30:50 +00:00
HD Moore b7a05f03b0 Remove duplicate line
git-svn-id: file:///home/svn/framework3/trunk@11449 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 20:12:14 +00:00
James Lee 9a952b22e4 rearrange post module directory structure
git-svn-id: file:///home/svn/framework3/trunk@11445 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 17:10:46 +00:00
Joshua Drake 08df4dac3b randomize import styles, patch from jjarmoc
git-svn-id: file:///home/svn/framework3/trunk@11443 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-29 16:49:20 +00:00
James Lee e3cd2c2572 add carlos back to authors list, i suck
git-svn-id: file:///home/svn/framework3/trunk@11432 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 19:39:02 +00:00
James Lee a241f435c1 rename the 'privilege_escalation' to the less verbose 'escalate'
git-svn-id: file:///home/svn/framework3/trunk@11431 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 19:29:36 +00:00
Joshua Drake 885545a94e add http:bl scanner from mubix, fixes #3346
git-svn-id: file:///home/svn/framework3/trunk@11429 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 18:33:45 +00:00
Joshua Drake b3bfb5834e change credit to passerby
git-svn-id: file:///home/svn/framework3/trunk@11427 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-28 17:10:19 +00:00
HD Moore d202a5abf2 Add missing mixin
git-svn-id: file:///home/svn/framework3/trunk@11423 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 18:10:41 +00:00
James Lee f0cc6ff596 big commit for converting meterpreter scripts to modules, see #3377. also fixes payload tab-completion and 'show payloads' after TARGET has changed
git-svn-id: file:///home/svn/framework3/trunk@11421 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 17:46:42 +00:00
HD Moore 30affd4b2c This commit adds a new set of discovery modules from wuntee and some useful utility methods for working with link-local addresses
git-svn-id: file:///home/svn/framework3/trunk@11417 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 16:43:53 +00:00
Steve Tornio 37a3ca4643 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11415 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-27 13:16:15 +00:00
Steve Tornio 860e29228b add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11414 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 14:43:13 +00:00
HD Moore 2f97c61f86 Add the uber SNMP enumeration module from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@11412 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:31:38 +00:00
HD Moore 5875fdb701 Two new SNMP community enumeration tools for Windows by tebo (local account list and SMB shares). Addition of a Meterpreter script for snagging the SNMP community from the registry
git-svn-id: file:///home/svn/framework3/trunk@11410 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:08:34 +00:00
HD Moore b7eec06041 Deregister username-specific options since they aren't supported anyways, a suggestion from tebo
git-svn-id: file:///home/svn/framework3/trunk@11409 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:02:35 +00:00
HD Moore a8cb5ee259 Updated return address from Tyler Reguly
git-svn-id: file:///home/svn/framework3/trunk@11407 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 06:01:12 +00:00
HD Moore e7f3c63e1c Exploit for a recent Redmine command injection vulnerability, provided as a holiday gift by Joernchen of Phenoelit.
git-svn-id: file:///home/svn/framework3/trunk@11406 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-25 05:46:29 +00:00
Joshua Drake 5f5d2992ce add reference to 0x557 slides (for .NET 2.0 rop)
git-svn-id: file:///home/svn/framework3/trunk@11405 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-23 01:36:54 +00:00
Joshua Drake cdfe03ce43 add MSFT advisory and CVE
git-svn-id: file:///home/svn/framework3/trunk@11404 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-23 01:30:43 +00:00
Steve Tornio 09b00739fb add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11402 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 22:21:56 +00:00
Joshua Drake 4ddd78c4de add a couple targets
git-svn-id: file:///home/svn/framework3/trunk@11399 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 19:14:29 +00:00
Joshua Drake 0f24d1955c minor corrections, use .NET 2.0 ROP :)
git-svn-id: file:///home/svn/framework3/trunk@11398 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 18:26:18 +00:00
Joshua Drake 44c8a71dcf minor clean ups
git-svn-id: file:///home/svn/framework3/trunk@11397 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 18:23:16 +00:00
Mario Ceballos 1407d7f1d5 revert back. little more reliable.
git-svn-id: file:///home/svn/framework3/trunk@11396 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 17:40:13 +00:00
Mario Ceballos d89c60f2de add exploit module wmi_admintools.rb
git-svn-id: file:///home/svn/framework3/trunk@11395 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-22 14:35:36 +00:00
Joshua Drake 5fb2bfc969 fix super busted mssql_payload some more
git-svn-id: file:///home/svn/framework3/trunk@11392 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 20:36:34 +00:00
Joshua Drake 7db17e323e fix super busted mssql_payload, oops
git-svn-id: file:///home/svn/framework3/trunk@11391 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 20:20:20 +00:00
Joshua Drake c4c0cabccb switch to .NET 2.0 ROP, Merry Xmas!
git-svn-id: file:///home/svn/framework3/trunk@11390 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 19:24:19 +00:00
Steve Tornio 3662fb4bc6 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11389 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 19:16:18 +00:00
HD Moore 4708d5b159 Add coverage for the mitel audio web conferencing web interface command injection.
git-svn-id: file:///home/svn/framework3/trunk@11388 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 19:02:13 +00:00
HD Moore 8a4f6de5c4 Correct state processing in the additional address discovery code.
git-svn-id: file:///home/svn/framework3/trunk@11385 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-21 02:22:56 +00:00
Joshua Drake 5d2f26b41b add exploit for unpatched IE css import bug
git-svn-id: file:///home/svn/framework3/trunk@11383 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-20 16:34:07 +00:00
Joshua Drake b8b0e1af97 fix typo
git-svn-id: file:///home/svn/framework3/trunk@11380 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-20 09:11:45 +00:00
HD Moore 3f7809ca5a Patch to fix vuln reporting by swtornio
git-svn-id: file:///home/svn/framework3/trunk@11375 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-18 18:55:36 +00:00
James Lee f1c13e24a6 remove erroneous OUTPUTPATH overriding the sane one from the fileformat mixin
git-svn-id: file:///home/svn/framework3/trunk@11353 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-16 20:11:01 +00:00
Joshua Drake c46be9d387 better error for non-exim servers
git-svn-id: file:///home/svn/framework3/trunk@11352 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-16 17:30:24 +00:00
Joshua Drake 843b121ea1 fix typo
git-svn-id: file:///home/svn/framework3/trunk@11350 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-16 16:38:31 +00:00
James Lee 9c1f7b28e2 pass SSL opt on to submodules
git-svn-id: file:///home/svn/framework3/trunk@11346 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 23:02:04 +00:00
James Lee fd1fb44bfc add targets for windows and linux
git-svn-id: file:///home/svn/framework3/trunk@11345 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 22:46:22 +00:00
Joshua Drake 6a5ebf2d91 fix nil access
git-svn-id: file:///home/svn/framework3/trunk@11344 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 19:49:40 +00:00
HD Moore 55b21d4aaf Fixes to enable password parsing and rw/ro detection in snmp brute force
git-svn-id: file:///home/svn/framework3/trunk@11336 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 20:51:17 +00:00
James Lee f15e6e5e62 update autopwn, replace ms10-018 behaviors with ms10-090 css clip.
git-svn-id: file:///home/svn/framework3/trunk@11333 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 18:53:22 +00:00
Joshua Drake af56bebfa1 note ms10-090 bulletin
git-svn-id: file:///home/svn/framework3/trunk@11331 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 18:41:20 +00:00
James Lee dd6afdc74c make these titles a little clearer
git-svn-id: file:///home/svn/framework3/trunk@11330 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 17:26:44 +00:00
Joshua Drake d69cff2b34 add bid reference
git-svn-id: file:///home/svn/framework3/trunk@11318 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-13 16:16:29 +00:00
Joshua Drake b30270e742 fix version
git-svn-id: file:///home/svn/framework3/trunk@11310 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 19:06:18 +00:00
HD Moore cff22d7a56 Consistency change to make snmp act like other login modules
git-svn-id: file:///home/svn/framework3/trunk@11303 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:27:35 +00:00
HD Moore 58565cd53f Rename community to snmp_login and include the brute force mixin
git-svn-id: file:///home/svn/framework3/trunk@11302 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-12 07:09:43 +00:00
HD Moore 4e4eb14887 This adds a TFTP version of #3345 (Pello's snmp config downloader). Still more work to do for the generic module
git-svn-id: file:///home/svn/framework3/trunk@11300 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 23:36:37 +00:00
Joshua Drake 573c639c85 remove debug prints
git-svn-id: file:///home/svn/framework3/trunk@11299 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 22:00:34 +00:00
Joshua Drake 7c6eadc24b check more responses, account for corner case in initial headers
git-svn-id: file:///home/svn/framework3/trunk@11298 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 21:58:25 +00:00
HD Moore fb7a06b218 Correct typo, find coffee
git-svn-id: file:///home/svn/framework3/trunk@11296 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 20:03:35 +00:00
HD Moore 909eeefc8f Change of plan, keep this as a single module
git-svn-id: file:///home/svn/framework3/trunk@11295 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:54:47 +00:00
HD Moore 37ffccde08 Rename this module for clarity
git-svn-id: file:///home/svn/framework3/trunk@11294 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 19:27:26 +00:00
Joshua Drake ea4e8c29d3 add hdm to authors, minor cleanups
git-svn-id: file:///home/svn/framework3/trunk@11289 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 10:55:24 +00:00
HD Moore 8162d100fd Add keywords
git-svn-id: file:///home/svn/framework3/trunk@11288 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:49:22 +00:00
HD Moore e3f909cef9 Fixes for chunked http reply processing, additional cisco configuration support, and a scanner module for unprotected cisco device managers.
git-svn-id: file:///home/svn/framework3/trunk@11287 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 07:37:09 +00:00
HD Moore c1a3364ea9 Update the privileged flag
git-svn-id: file:///home/svn/framework3/trunk@11285 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 03:31:45 +00:00
HD Moore 8ad08ec535 Update the description/refs
git-svn-id: file:///home/svn/framework3/trunk@11284 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 03:31:04 +00:00
HD Moore 61e8ab1432 This module will now automatically gain root if Perl is installed
git-svn-id: file:///home/svn/framework3/trunk@11283 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-11 03:21:52 +00:00
Joshua Drake 6a4e52f667 Account for SEH offset depending on the path
git-svn-id: file:///home/svn/framework3/trunk@11282 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 23:35:58 +00:00
Joshua Drake c1f37b3c8a minor adjustment to output printing
git-svn-id: file:///home/svn/framework3/trunk@11281 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 23:29:26 +00:00
Joshua Drake 5624c55599 add EHLO_NAME advanced option, remove debug print, fix version regex
git-svn-id: file:///home/svn/framework3/trunk@11280 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:51:05 +00:00
Joshua Drake b5d44d1684 handle hosts that reverse properly, whitespace
git-svn-id: file:///home/svn/framework3/trunk@11279 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:32:39 +00:00
HD Moore cc81d3bbc0 Automagic updates to jduck's exim module
git-svn-id: file:///home/svn/framework3/trunk@11278 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:17:47 +00:00
HD Moore a683f7b7d4 Automagic updates to jduck's exim module
git-svn-id: file:///home/svn/framework3/trunk@11277 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 22:16:34 +00:00
Steve Tornio d5fc9df054 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11276 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 21:43:12 +00:00
Joshua Drake 5cc8407748 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@11275 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 19:50:16 +00:00
Joshua Drake 9f5df90e60 add exploit for cve-2010-4344
git-svn-id: file:///home/svn/framework3/trunk@11274 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 19:34:23 +00:00
HD Moore 26aca9d6ba Swap some module locations, add loot and cred reporting
git-svn-id: file:///home/svn/framework3/trunk@11271 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 05:47:33 +00:00
Tod Beardsley e18548387c Ensure that UDP services are set to "open" in case they already had a "closed" record.
git-svn-id: file:///home/svn/framework3/trunk@11270 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 01:13:44 +00:00
HD Moore b3b2bf6675 Stop testing users if the device doesn't support it
git-svn-id: file:///home/svn/framework3/trunk@11269 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-10 00:58:55 +00:00
Tod Beardsley 493db14006 Adds a "duplicate_ok" option to report_auth_info to allow for multiple passwords on the same username. Never came up before I took a look at SNMP.
Also normalizes the print_status messages to be explicit about which module is reporting (important when you're running several at once).



git-svn-id: file:///home/svn/framework3/trunk@11267 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-09 21:23:39 +00:00
Joshua Drake 1da08b0bdc abort if retries count exceeded
git-svn-id: file:///home/svn/framework3/trunk@11263 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:57:14 +00:00
HD Moore ac0222f73d Ignore empty string replies
git-svn-id: file:///home/svn/framework3/trunk@11262 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:52:53 +00:00
HD Moore 1fe9af1b2f A little rewording
git-svn-id: file:///home/svn/framework3/trunk@11261 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:22:04 +00:00
Joshua Drake b88f18c7e5 add one to the delay for todb
git-svn-id: file:///home/svn/framework3/trunk@11260 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:13:08 +00:00
Joshua Drake f788425865 add retry for vnc4server
git-svn-id: file:///home/svn/framework3/trunk@11259 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 23:07:10 +00:00
Tod Beardsley 0b1e3e12ea Adds autofilter ports to vnc_login.
git-svn-id: file:///home/svn/framework3/trunk@11257 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 22:13:51 +00:00
HD Moore 9d5ac80cb5 Fix to work with IIS 7
git-svn-id: file:///home/svn/framework3/trunk@11254 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 16:22:04 +00:00
Joshua Drake add6955501 add disclosure date, fix parse error on 1.8.7
git-svn-id: file:///home/svn/framework3/trunk@11253 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 16:17:16 +00:00
HD Moore 2a22713804 Fix up match
git-svn-id: file:///home/svn/framework3/trunk@11252 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-08 15:29:45 +00:00
James Lee 05d073c467 move the evil-looking metasploit.PayloadApplet to the more inocuous SiteLoader.class, re-enable rjb compiling for the applet class
git-svn-id: file:///home/svn/framework3/trunk@11249 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-07 20:43:53 +00:00
Joshua Drake 9c1576b20e update the title
git-svn-id: file:///home/svn/framework3/trunk@11246 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-07 17:46:24 +00:00