2cde2e4e21
Land #11017 , Fix userns_enabled? check for unprivileged_userns_clone
2018-11-26 14:07:14 -06:00
fd75b75c61
Add FrameworkExtension
2018-11-26 13:08:42 -05:00
e144cc6738
Move under Msf::WebServices namespace
2018-11-26 12:58:10 -05:00
0678d33760
Revert "ensure a value exists before returning the normalized key"
...
This reverts commit 063838fb17
2018-11-26 10:10:07 -06:00
a98dbd1d61
Revert "Return the original key if it does not exist in the datastore"
...
This reverts commit 7312fa774f
2018-11-26 10:10:07 -06:00
8f07f299b4
Fix userns_enabled? check for unprivileged_userns_clone
2018-11-25 01:26:49 +00:00
e07e5caebd
don't do a binary regex against a regular string
2018-11-22 09:19:38 -06:00
8694d6dd19
Land #10990 , move metasploit web service code
2018-11-21 16:49:56 -06:00
77723ba2f8
Land #11002 , Support Python 3.7 in external probe scanner code
2018-11-21 16:23:34 -06:00
682ebdc234
Land #11001 , Properly error out when attempting to format ELFs
2018-11-21 16:13:40 -06:00
317f71f7f4
Land #10802 , Make `msfvenom -f` case-insensitive
2018-11-21 16:04:30 -06:00
c9f8a591e5
Land #10872 , Add --pad-nops option for msfvenom
2018-11-21 16:02:02 -06:00
44da31edb8
Support Python 3.7 in external probe scanner code
2018-11-21 15:06:54 -06:00
818c3c9f57
Properly error out when attempting to format ELFs
2018-11-21 14:57:37 -06:00
7312fa774f
Return the original key if it does not exist in the datastore
2018-11-21 06:03:50 -06:00
063838fb17
ensure a value exists before returning the normalized key
2018-11-21 04:43:06 -06:00
da9e6edbf1
delete option aliases when an option is deleted
...
Otherwise the aliases will remain active and if the aliased value is redefined
2018-11-21 04:09:33 -06:00
30bf716827
Use --pad-nops as a boolean to make -n <size> the total payload size.
2018-11-20 23:26:03 -06:00
4cc9959e3f
Move MSF API App and associated servlets
...
The modules interact with the DbManager, however, are not a part of it
and belong in a more meaningful location for web services.
2018-11-19 18:46:15 -05:00
630de06f9e
Land #10972 , Rework session_compatible? check in post mixin, excluding ARCH_CMD modules
2018-11-19 16:08:15 -06:00
4726c58516
Update documentation
2018-11-16 12:40:42 -06:00
1e3515bddc
Clean up code
2018-11-16 05:04:54 -06:00
a58a91613a
Exclude ARCH_CMD modules, not local exploits
...
We don't want to lose SessionTypes. Brain fart.
2018-11-16 05:00:17 -06:00
b60ae0ff1a
Limit session_compatible? check to post modules
...
Local exploits may define a different payload platform or arch.
2018-11-16 02:59:59 -06:00
691b9276a6
Fix issue when re-establishing DB connection
2018-11-15 21:00:19 -05:00
420be60900
add CVE-2018-4237
2018-11-15 08:48:10 +08:00
38bea6c29c
Added msmailprobe to msf
2018-11-14 16:15:11 -06:00
795aa3c99c
Land #10828 , git submodule url exec CVE-2018-17456
2018-11-14 12:39:13 -06:00
97ee965c6e
Landing #10884 - Add JSON-RPC Client
2018-11-13 08:31:55 -06:00
d2a78cecd0
improvements to code commente and floe
2018-11-12 17:31:43 -06:00
1b44fd0ade
Remove conditional for path
2018-11-12 11:05:40 -06:00
a80ac67373
Prepend GO path
2018-11-12 11:03:19 -06:00
8dc974b51e
Prepend python path
2018-11-12 07:58:43 -06:00
8ea4ed6314
land #10927 proper identification of centos/alpine linux in post libs
2018-11-10 08:33:35 -05:00
5ba44ff12d
add default service mapping to imports
2018-11-08 18:14:22 -06:00
7127792fcf
tidy up external go modules
2018-11-06 20:23:10 +01:00
407a9f3de1
remove debug
2018-11-06 11:12:02 -06:00
76531cb818
gofmt all the things
2018-11-06 11:12:02 -06:00
97bee891ce
remove some ruby vestiges
2018-11-06 11:12:02 -06:00
df43b372fa
initial golang module support
2018-11-06 11:12:02 -06:00
cfbc0a9a0c
properly bubble up errors on external module load
2018-11-06 11:12:02 -06:00
dea460c813
golang module loader support
2018-11-06 11:12:02 -06:00
08d4e2265d
Add CentOS and Alpine Linux detection to Linux system lib
2018-11-06 03:16:07 +00:00
e7f5c0cfbf
additional solaris-ish regexes
2018-11-05 19:25:08 -05:00
ad58930e9b
Dump formats when invalid format is selected
2018-11-04 09:25:37 -05:00
9f77966ec9
Revert downcase throughout, instead use single downcase within option parsing
2018-11-04 08:57:45 -05:00
7326453024
Merge branch 'master' of https://github.com/rapid7/metasploit-framework into hosts_data
2018-11-03 17:06:00 -04:00
ca0249c539
enhancements to solaris host info db regex
2018-11-03 17:05:47 -04:00
8372007576
Prefer method_defined? for the class
2018-11-02 00:34:17 -05:00
c3311da6e2
Be specific about report_on_exception
2018-11-02 00:24:16 -05:00
0592420ea4
Fix thread exception reporting for Ruby 2.3.8
...
Thread::report_on_exception doesn't exist.
2018-11-01 18:59:23 -05:00
7cf384405e
only change thread behavior if on Ruby 2.5 or above
2018-11-01 18:24:12 -05:00
4dcb31f26b
only turn off thread reporting if it is already on
2018-11-01 18:08:52 -05:00
0b682b6300
Preserve old thread exception reporting behavior
...
https://ruby-doc.org/core-2.5.0/Thread.html#method-c-report_on_exception
2018-11-01 17:30:49 -05:00
08ec8e1ef9
Land #10553 , add x86/xor_dynamic and x64/xor_dynamic encoders
...
Merge branch 'land-10553' into upstream-master
2018-10-30 09:56:15 -05:00
06966312c1
Remove unused code
2018-10-30 00:40:33 -04:00
04e4c2941c
Remove unnecessary require
2018-10-30 00:19:21 -04:00
3c3022902f
Add JSON-RPC Client
2018-10-30 00:15:58 -04:00
24b1898e21
Fix comment
2018-10-29 23:27:50 -04:00
ffc193f49b
Issue #6100 : Finalized changes to pass rake spec Msf::PayloadGenerator
2018-10-26 13:06:37 -05:00
2ab9a003d4
Land #10864 , Add Cisco WebEx RCE Modules
2018-10-24 16:20:00 -05:00
b875a102fe
remove report_host data for another PR
2018-10-24 16:26:38 -04:00
4dd2147d60
Land #10857 , ensure os_flavor can be supplied for non Windows OS
2018-10-24 14:28:32 -05:00
34ae9c38f9
added WebEx modules, arch check
2018-10-23 15:51:23 -05:00
efeacf8666
ensure os_flavor can be supplied for no Windows OS
2018-10-23 12:22:57 -05:00
b65f467ada
Land #10851 , add ndkstager to data/exploits
2018-10-23 12:04:57 -05:00
f742d3bd9a
Land #10450 , Implementation of CTRL+Z in reverse shell session
...
Additionally, a check was added to disable this new functionality on
Windows command shell payloads.
2018-10-22 15:50:41 -05:00
dd5ac16240
re-add report
2018-10-22 15:42:47 -04:00
4426e4131a
remove unecessary include
2018-10-20 15:01:40 -04:00
da38dfb29a
Clarify we never receive CHANNEL_OPEN_FAILURE
2018-10-19 13:25:19 -05:00
cc283d9def
Add testing note about session channel opens
2018-10-19 13:13:22 -05:00
21397330f8
Refactor fortinet_backdoor copypasta
2018-10-19 00:07:18 -05:00
d1354cc1f7
Add libssh auth bypass packet
2018-10-18 23:03:23 -05:00
64e257649f
cleanup module
2018-10-18 11:45:59 +08:00
290d4428c1
create git mixin
2018-10-18 11:31:31 +08:00
e78b760678
database host info from post modules
2018-10-17 12:43:05 -04:00
e8a08c9eeb
review changes
2018-10-16 20:59:42 -04:00
32f4e2c9a0
add version and hostname to cisco config parser
2018-10-16 15:02:42 -04:00
1241041739
[Issue 6100] Add --pad-size option to msfvenom to prepend nopsled given total payload size
2018-10-15 14:46:16 -05:00
1e066df7fd
fix debug printing
2018-10-15 17:04:31 +08:00
f399b59ae4
Merge branch 'master' of https://github.com/rapid7/metasploit-framework into cisco_device_manager
2018-10-13 13:31:20 -04:00
46a3d065ce
fix indentation
2018-10-13 08:54:44 -04:00
aadefdbc82
Update msfvenom formatter to be case insensitive
2018-10-12 11:11:52 -04:00
4ae45cb20b
comment around why we do this, make check more explicit
2018-10-12 02:12:30 -05:00
e8097791fe
remove spaces at eol
2018-10-11 21:46:45 -04:00
d480a78b91
capture ephone creds
2018-10-11 21:21:53 -04:00
14e87bf06f
Baby come back
2018-10-11 11:10:36 -06:00
e207c225a2
Remove function entirely
2018-10-11 10:41:43 -06:00
5c061c02b9
Remove peer information from the prefix
2018-10-10 16:31:48 -06:00
3349ecf212
Land #10788 , Clarify "NameError: wrong constant name" message on invalid module name
2018-10-10 15:34:55 -05:00
0b8926715e
Reactively check for invalid module names
2018-10-10 14:33:59 -05:00
29f36a3921
Add Msf::ModuleLoadError exception
2018-10-10 14:22:40 -05:00
1737935dc0
Convert reverse_relative_name to a class method
...
It'll be easier to use this way if someone uses it externally.
2018-10-10 13:21:18 -05:00
1a0df7ce07
Land #10787 , Remove unused 'unknown' author mapping in author.rb
2018-10-10 13:01:05 -05:00
63bcbdc8db
Remove unknown author mapping in author.rb
...
No one was using it and instead writing "Unknown" directly. It was also
producing an invalid e-mail address.
2018-10-10 11:59:01 -05:00
fe356dabca
convert payload to dylib
2018-10-10 23:35:20 +08:00
ba0bfb1114
Land #10781 , Fix error in rpc_shell_read RPC method.
2018-10-10 09:02:47 -05:00
4653cbdda1
add macho mixin
2018-10-10 20:27:56 +08:00
50755b2e00
Fix function rpc_shell_read - return result as string
2018-10-10 11:36:17 +02:00
36b7fb3524
Fix function rpc_shell_read - remove wrong parameter data, return correct values
2018-10-10 11:31:03 +02:00
6c74820843
Land #10773 , session.platform TypeError fix
...
This also adds an "unknown" platform class.
2018-10-08 14:38:31 -05:00
ccfdfb6a5c
Clean up new "unknown" platform and current use
2018-10-08 14:31:31 -05:00
023f7db9ba
explicitly declare rank 0
2018-10-08 13:16:14 -04:00
cd9ef01c9a
add default case unknown platform and new cisco ios proof
2018-10-08 13:07:45 -04:00
c7efd57144
Sync up with master
2018-10-06 08:27:01 -05:00
15d8cbbff6
Land #10744 , Add AUDIO_EFFECTS to distinguish from others
2018-10-05 16:51:36 -05:00
6efadb5f2d
Further clarify {AUDIO,PHYSICAL}_EFFECTS
2018-10-05 16:03:21 -05:00
eb0febc86c
Land #10729 , Namespace modules using full name instead of hex
2018-10-05 11:40:50 -04:00
f6306254ce
Land #10746 , Fix RPC module.payloads method performance
2018-10-05 11:30:46 -04:00
4a4c759a4b
add ndkstager to data/exploits
2018-10-05 15:10:21 +08:00
08c196c5d5
show the output of apktool if injection fails
2018-10-05 14:11:36 +08:00
06700efbc4
Skip payload generate to reduce processing time
2018-10-04 22:06:32 -04:00
9e512b0246
Clarify {SCREEN,AUDIO,PHYSICAL}_EFFECTS
2018-10-04 14:20:26 -05:00
566d540b87
Add AUDIO_EFFECTS to distinguish from others
2018-10-04 14:06:50 -05:00
9f30512532
Land #10707 , module traits to augment module rank
2018-10-04 13:26:14 -05:00
a4509c1757
Land #10739 , Remove unneeded UserServlet from JSON-RPC App
2018-10-04 08:28:35 -05:00
e9ef18bff6
Land #10735 , Enhance RPC module information retrieval
2018-10-04 08:21:58 -05:00
ff0ee51da1
Land #10686 , ARGS, TIMEOUT, and output to upload_exec module
...
Merge remote-tracking branch 'upstream/pr/10686' into upstream-master
2018-10-04 04:28:02 -05:00
97ebc832f0
Clarify target of PHYSICAL_EFFECTS
2018-10-03 20:34:24 -05:00
fa92808cc6
Add PHYSICAL_EFFECTS constant
2018-10-03 20:32:00 -05:00
d69ae54835
Remove unneeded UserServlet
2018-10-03 16:40:37 -04:00
ccad78d567
Fix spelling mistake
2018-10-02 14:11:02 -04:00
d807600ebe
Enhance RPC information retrieval
...
Add the ability to retrieve additional module information for payloads,
encoders and nops. Add ability to filter these modules by architectures.
2018-10-02 13:38:07 -04:00
b3dca6081d
Land #10720 , better handle errors with multi-host exploits
2018-10-02 05:28:57 -05:00
46e7b8ac98
Namespace modules using full name instead of hex
2018-10-01 18:32:23 -05:00
7842174d8b
Fix loading external modules without notes
2018-10-01 12:41:39 -05:00
90b98a193c
Refactor the rhosts for exploit modules.
2018-09-30 16:08:49 +08:00
572d430429
Land #10682 , add JSON RPC framework and msfrpc v1.0 API endpoints
2018-09-28 15:21:02 -05:00
5f5b334493
Call keyword argument methods with params hash
2018-09-28 11:11:18 -04:00
60bd00ee5b
Move prepare_params method to v1.0 RpcCommand
...
The method was created to support RPC v1.0 (v10) processing and should
not be necessary for future RPC versions.
2018-09-28 10:51:10 -04:00
a2694555d0
Change typo
2018-09-27 12:45:17 -05:00
974a727862
Update comment
2018-09-27 12:32:43 -05:00
086e2b311b
Update constants
2018-09-27 12:31:04 -05:00
31e9b831d8
Change constant name
2018-09-26 21:42:00 -05:00
e34371c7d3
Add a newline
2018-09-26 21:19:49 -05:00
c0ddbba049
rm junk code
2018-09-26 21:19:16 -05:00
9064fac1ff
Fix code based on Will's feedback
2018-09-26 21:13:37 -05:00
583874d370
Update use of reliability/side-effects/stability metadata
2018-09-26 18:54:08 -05:00
bbfac2af1c
Fix copypasta typo
2018-09-26 18:46:43 -05:00
5444d7a1a5
Update chmod_x_file to chmod
2018-09-26 18:46:42 -05:00
896dd13bbe
&& instead of and
2018-09-26 18:46:42 -05:00
4adca52103
create chmod helper function
2018-09-26 18:46:42 -05:00
04ff0931d7
Add metadata place holders for reliability/side-effects/stability
2018-09-26 17:42:54 -05:00
0269110faf
Land #10696 , autofilter_{ports,services} in cache
2018-09-25 17:12:54 -05:00
2db3279956
use symbols and match filter keys to code
2018-09-25 15:04:26 -05:00
f08cb18afd
Land #10594 , Fix hashdump and user enumeration on new macOS versions
2018-09-24 22:18:24 -05:00
c89d8f8fb7
fix user enumeration methods, be more robust
2018-09-24 22:17:32 -05:00
ea888eaa7c
Add method comments for raise
2018-09-24 17:22:25 -04:00
cb2f4ae419
Add filter_ports and filter_services to cache
...
When caching metadata about module include `filters` when available.
2018-09-24 14:11:52 -05:00
b51d016a93
Store and search payloads with workspace id
2018-09-24 14:11:48 -05:00
02ef565730
Update evasion_module_type branch
2018-09-24 08:20:32 -05:00
5280cf0c50
Move required members and types to constants
2018-09-21 11:19:38 -04:00
3bc0a821d5
Prefer ye olde TeX-style quotes
...
This was @bcoles' initial commit. I agree. Looks good with the raise.
2018-09-20 22:54:17 -05:00
95e2c388c4
Remove stray quote from raise in writable? method
...
Didn't break the string but looked funny.
2018-09-20 22:19:18 -05:00
7d30f781f6
Add missing raise
2018-09-20 20:09:42 -04:00
c7badd5c37
Add method comments
2018-09-20 20:07:45 -04:00
9d3d9c3ad6
Change parameter version to Symbol
2018-09-20 19:58:04 -04:00
4acf695de9
Remove debug output and unused code
2018-09-20 18:05:36 -04:00
8bd9faad22
Initial JSON-RPC servlet and support architecture
2018-09-20 17:39:33 -04:00
0fd98d5eaa
Add set_raw_response method
2018-09-20 17:31:06 -04:00
8f143daa65
Remove copy/paste error
2018-09-20 16:09:43 -05:00
dbb75fd2af
Land #10659 , Minor code cleanups
2018-09-19 14:55:47 -05:00
f4b7584b6c
use max_by &:size instead of max
...
this should fix the issue in the PR
2018-09-19 10:26:21 -04:00
102b76897c
Add swagger docs for payloads
2018-09-18 17:20:03 -05:00
dc36c3a3db
Remove workspace from opts when getting all payloads
2018-09-18 17:19:46 -05:00
35e767e2dd
Prevent payload creation with duplicate uuids
2018-09-18 16:49:06 -05:00
7e6c3261b6
Update payload count method
2018-09-18 16:36:11 -05:00
54e0c25d33
Add api support for deleting payload by ID
2018-09-18 16:16:10 -05:00
efe98dbcfb
Add api support for updating payload by ID
2018-09-18 16:03:21 -05:00
9b5326994f
Add remote data endpoint support for searching payloads
2018-09-18 15:50:55 -05:00
a462a84b61
Land #10653 additional gcc paths for solaris libs
2018-09-17 18:23:21 -04:00
86f5b25d8f
Land #10563 , Add 'Notes' metadata section
2018-09-17 11:18:08 -05:00
781d808056
use tr insteas of gsub
2018-09-17 09:54:07 -04:00
c3ca1a6cb8
use tr instead of gsub
2018-09-17 09:53:59 -04:00
c97a2ce626
use delete! insteas of gsub
2018-09-17 09:50:21 -04:00
bcf78e6067
use tr instead of gsub
2018-09-17 09:45:52 -04:00
31a2afb586
use max instead of sort[-1]
2018-09-17 09:45:20 -04:00
28f23a842a
Update gcc path for Solaris
2018-09-16 17:22:38 +00:00
b76849d64e
Update gcc path for Solaris
2018-09-16 07:39:07 +00:00
ea47b6de04
Add writable? method to Msf::Post::File - Fix #10644
2018-09-15 06:29:24 +00:00
6fae6065d6
Upcase all the things
2018-09-14 16:05:43 -05:00
e590b7c01f
Consolidate notes reference in erb templates
2018-09-14 12:08:22 -05:00
184d1d5954
Leave notes type as a plain hash
2018-09-14 11:17:37 -05:00
c71078a381
use max instead of sort_by { |p| p.size }.last
...
`sort_by { |p| p.size }.last` is less readable compared to just using the `max` method
I believe this does basicall the exact same thing, ontop of being much faster in my micro benchmark.
The old method was, something like, 8 times slower.
2018-09-14 11:19:16 -04:00
2dcfdcbdc4
remove redundant hash merge
...
https://github.com/JuanitoFatas/fast-ruby#hashmerge-vs-hash-code
2018-09-14 11:04:39 -04:00
ed338bbeec
use tr instead of gsub
...
https://github.com/rails/rails/pull/17257
https://github.com/JuanitoFatas/fast-ruby#stringgsub-vs-stringtr-code
2018-09-14 10:51:51 -04:00
b3e9856851
Revert doc changes to exploit.rb autofilter
...
I think the changes might have been accidental.
3cf4329335
2018-09-13 13:27:52 -05:00
7994564f25
Add db manager method to delete payload
2018-09-13 12:48:17 -05:00
f6f3ef1194
Remove uuid_db declarations
2018-09-13 12:30:59 -05:00
8f4e17c277
Replace uuid methods for payload count and url validation
2018-09-13 12:28:04 -05:00
8025a49c44
Land #10633 fix for solaris pidof for more versions
2018-09-13 13:10:28 -04:00
89b68df9d8
Use db manager in create_session
2018-09-13 11:49:20 -05:00
53a326c743
Cleanup is_root? method for Linux::Priv / Solaris::Priv
2018-09-13 08:54:31 +00:00
bba818a323
Fix Msf::Post::Solaris::System pidof method
2018-09-13 08:29:56 +00:00
a7105b45a6
add gcc path for solaris
2018-09-11 05:18:26 -04:00
7c1ae843b1
Fix Msf::Post::Solaris::Kernel class name
2018-09-11 07:15:19 +00:00
a3d74d926c
Land #9897 , Fix #8404 ListenerComm Support For Exploit::Remote::TcpServer
2018-09-10 16:25:55 -05:00
1ec1b3b493
Save payloads and urls in database when running a module
2018-09-07 17:02:54 -05:00
1eb703b1b5
Refactor initialization of module's notes attribute
2018-09-06 16:15:52 -05:00
b7ee406203
Use a 'reduce' to transform notes
2018-09-06 15:50:23 -05:00
876240d18c
Condense note transformation inside mod_meta_common
2018-09-06 15:48:22 -05:00
35fb0d19ab
Refactor SSH mixins and update modules
2018-09-05 23:53:11 -05:00
e2428b5c20
Fix target DisableNops not being passed to payload
2018-09-05 18:07:54 -05:00
1f16052988
Make key random and fix RPC
2018-09-05 15:09:47 -05:00
a9af924317
CRUD endpoint stubs
2018-09-04 15:31:06 -05:00
a3df5bb5d9
Fix rpc_info
2018-09-04 08:35:39 -05:00
0a2b0f8cec
Remove trailing comma
...
Fix issue causes target.ret to be an array
2018-09-04 07:43:43 -05:00
d89b971d83
Add API doc for rpc_compatible_evasion_payloads
2018-09-03 22:25:51 -05:00
e9c4698291
Support RPC
2018-09-03 22:15:23 -05:00
d5e78ab66f
Land #10437 , sync some linux local libraries to solaris
2018-09-03 22:46:50 +08:00
1ddd22d073
bug fix and improvements
2018-09-01 03:17:18 +02:00
6c1a83d464
refactor: snake case
2018-09-01 03:17:17 +02:00
27d7d17deb
refactor: beautify stub
...
refactor: beautify stub
refactor: beautify stub
refactor: beautify stub
2018-09-01 03:17:16 +02:00
5c7f59e2f9
Remove AKA formatters from references
2018-08-31 16:54:16 -05:00
420041f287
Don't refer to AKA as 'alias' in order to not overlap nomenclature with upcoming 'alias' feature
2018-08-31 16:54:07 -05:00
e10d9c5d67
Update module search to search aka names
2018-08-31 16:52:17 -05:00
3f9e19c6af
Restructure Notes into NotesContainer object
2018-08-31 16:51:59 -05:00
f61ed95ebe
Add default value for notes
2018-08-31 16:50:23 -05:00
3c115f1bfc
Update json parsing rules for external modules
2018-08-31 16:48:56 -05:00
659e4f2b34
Build json correctly for new notes field
2018-08-31 16:47:00 -05:00
b976ccd3fe
Fix typos
2018-08-31 14:53:52 -05:00
bcaa6e90f6
Fix targeting
2018-08-31 13:37:23 -05:00
f296c204cb
Add some comments
2018-08-31 11:55:50 -05:00
5c6b33bcf4
Add support for evasion targets, also module doc
2018-08-31 11:45:29 -05:00
b085633e49
Style change and move option to evasion.rb
2018-08-29 13:39:29 -05:00
4803c889f9
Land #10507 , GPP creds for db_import
2018-08-28 11:45:51 -05:00
cb07ba2b6c
Land #10516 , Add brace expansion encoder and update ${IFS} encoder
2018-08-25 22:23:07 -05:00
6df235062b
Land #10505 , post-auth and default creds info
2018-08-24 18:08:15 -05:00
7c0dd2a0fe
Add CmdUnixBrace and update CmdUnixIfs
...
Acronyms can be capitalized as per the Ruby style guide.
2018-08-23 21:18:09 -05:00
9b3e0d8306
Add additional root tags for GPP XML
...
Finally ran through all the samples and cross-referenced with MS14-025.
https://msdn.microsoft.com/en-us/library/cc232650.aspx
https://support.microsoft.com/en-us/help/2962486/ms14-025-vulnerability-in-group-policy-preferences-could-allow-elevati
2018-08-22 16:48:33 -05:00
2891255549
Clarify what is being imported currently
...
Since the parser is focused on creds.
2018-08-22 15:53:19 -05:00
1e4eb0eae0
Revert report_note, since it added nothing
...
A bit of misunderstanding. We're in agreement that loot was enough.
2018-08-22 14:34:09 -05:00
6fa04950ee
Store parsed GPP data as a note
...
And refactor slightly.
2018-08-22 14:19:50 -05:00
e29135d0f5
Merge branch 'master' into impl-of-ctrl-z
2018-08-22 17:31:00 +08:00
b1c633faf6
Add Group Policy Preferences support to db_import
...
And take the Jaden Smith approach, as @busterb quipped to me. :)
This one's a little weird, since you normally import scans into
Metasploit, but now that creds are first-class in the database, it makes
more sense to be able to import them.
Currently, your alternatives are post/windows/gather/credentials/gpp,
which requires a session, and auxiliary/scanner/smb/smb_enum_gpp, which
requires a network scan.
2018-08-21 23:44:39 -05:00
080ba15179
Another boo-boo
2018-08-21 08:55:14 -05:00
4aee3a4ae2
Land #10448 , Implementation of CTRL+C to send SIGINT signal
2018-08-20 18:14:29 -05:00
7e496ae067
Import target DefaultOptions into the datastore
2018-08-16 12:18:02 -05:00
becd42553a
Land #10462 , Add API documentation for users and auth endpoints
2018-08-15 17:10:26 -05:00
66b761db15
Add doc for user operations
2018-08-14 13:19:56 -05:00
8e109b4f20
Some minor fixes
2018-08-14 19:25:20 +02:00
9bf7bec870
Multiple functions to simulate native commands added
2018-08-14 19:14:15 +02:00
f7a0b201d7
Add authorization support for auth/bearer tokens
2018-08-14 11:51:15 -05:00
0bf699b716
[+] handler CTRL+Z Signal in shell session and remove debug print
2018-08-13 04:22:13 +08:00
1ca6cb31d1
Land #10440 , fix apk injection on windows
2018-08-13 01:09:55 +08:00
6c33854ffc
[+] Exit vim opened in reverse shell via signal USR1
2018-08-12 06:07:18 +08:00
b6e2c34b11
[+] Fix can not abort reverse shell session
2018-08-12 05:40:40 +08:00
e457eba2dd
[+] handler CTRL+C Signal in reverse shell sessions
2018-08-12 02:41:16 +08:00
2529fdf322
Fix issue #8887 , when injecting into an existing .apk file on windows
2018-08-10 05:43:26 -04:00
d9fc99ec4a
Correct false negative post_auth? status
2018-08-09 23:34:03 -05:00
Brent Cook
Matthew Kienow
Brendan Coles
Adam Cammack
Patrick
William Vu
Tim W
Christopher Lee
Jacob Robles
Jeffrey Martin
h00die
Christian Mehlmauer
Kevin Kirsche
bwatters-r7
Wei Chen
Shelby Pace
asoto-r7
Nate Caroe
Nate Caroe
Ivo Nutár
Green-m
Erin Bleiweiss
Kent 'picat' Gruber
stefano118
王一航
James Barnett
AlbertoCoding
Wang Yihang