Commit Graph

4055 Commits (f6e3065a5154947fc6612ddce413452b790ae832)

Author SHA1 Message Date
David Rude 3b5cf3826a Added TheLightCosines OpenSSL ChangeCipherSpec DoS aux module
git-svn-id: file:///home/svn/framework3/trunk@12538 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 19:08:28 +00:00
Steve Tornio fdd9b361bb add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12532 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 11:40:09 +00:00
Tod Beardsley 98831c3285 Clean up an SNMP rescue clause that makes Windows Ruby builds sad.
git-svn-id: file:///home/svn/framework3/trunk@12530 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 07:51:09 +00:00
Wei Chen eb2c0a5919 Fixed more typos
git-svn-id: file:///home/svn/framework3/trunk@12527 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 05:29:59 +00:00
Wei Chen c4e8889119 Fixed typo.
git-svn-id: file:///home/svn/framework3/trunk@12526 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 05:27:54 +00:00
Wei Chen c0baf731f8 Updated print_error() for sqlite3's rescue
git-svn-id: file:///home/svn/framework3/trunk@12524 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 05:23:51 +00:00
HD Moore 23c355ba2c Just use :mac not :host_mac
git-svn-id: file:///home/svn/framework3/trunk@12517 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-03 03:03:38 +00:00
HD Moore 7cb8e56cfe Fix upexec handle_connection_stage arguments
git-svn-id: file:///home/svn/framework3/trunk@12511 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-02 18:54:02 +00:00
HD Moore 9f53aa15a5 Catch other error types from SNMP
git-svn-id: file:///home/svn/framework3/trunk@12504 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-02 05:38:13 +00:00
Wei Chen 352fc92539 Show OTR key and save it to disk
git-svn-id: file:///home/svn/framework3/trunk@12493 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 22:36:20 +00:00
Joshua Drake 94fa25ee7a remove crufty method
git-svn-id: file:///home/svn/framework3/trunk@12491 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 22:07:49 +00:00
Mario Ceballos 0522b69de2 s instead of n
git-svn-id: file:///home/svn/framework3/trunk@12488 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 13:31:08 +00:00
Wei Chen 94832059e5 The path fix would work if I remembered to uncomment the code... geez.
git-svn-id: file:///home/svn/framework3/trunk@12487 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 00:32:17 +00:00
Wei Chen b763d66b39 Fixed two issues: NoMethodError undefined method `text' for nil:NilClass and The system cannot find the file specified.
git-svn-id: file:///home/svn/framework3/trunk@12486 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-01 00:20:57 +00:00
Wei Chen 9c619c3a40 Added mjm quickplayer s3m bof
git-svn-id: file:///home/svn/framework3/trunk@12474 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-30 02:37:14 +00:00
Wei Chen 72af607aef Added MJM Coreplayer s3m bof
git-svn-id: file:///home/svn/framework3/trunk@12473 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-30 02:36:14 +00:00
Mario Ceballos be2f68afbd this method doesnt work with a licensed install.
git-svn-id: file:///home/svn/framework3/trunk@12470 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-29 22:17:40 +00:00
HD Moore d9bee35456 Handle cases where iTunes is not installed or the base user directory has been changed
git-svn-id: file:///home/svn/framework3/trunk@12468 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-29 16:10:29 +00:00
Wei Chen 8fa4443a68 Added Subtitle Processor 7.7.1 bof
git-svn-id: file:///home/svn/framework3/trunk@12461 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-28 08:12:32 +00:00
Mario Ceballos be83842dff added exploit module emc_homebase_exec.rb
git-svn-id: file:///home/svn/framework3/trunk@12458 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 20:29:27 +00:00
HD Moore 77328e7327 Fix report calls, thanks Minga!
git-svn-id: file:///home/svn/framework3/trunk@12457 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 19:39:28 +00:00
Wei Chen f59db11f0e Fixed typo in description. Thanks ragecyr.
git-svn-id: file:///home/svn/framework3/trunk@12456 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 16:54:49 +00:00
David Rude 5e374e1d36 Post module title changes for consistency
git-svn-id: file:///home/svn/framework3/trunk@12455 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 16:25:15 +00:00
Wei Chen 46c919cc8a Removed meetRequirements(). No need since it's already specified in SessionTypes.
git-svn-id: file:///home/svn/framework3/trunk@12454 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 15:48:35 +00:00
Wei Chen 2f6b941584 Fixed a bug with "TypeError can't convert nil into String"
git-svn-id: file:///home/svn/framework3/trunk@12453 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 15:41:37 +00:00
HD Moore 95e9153b33 Move to Windows to reflect the removal of the OS X target
git-svn-id: file:///home/svn/framework3/trunk@12452 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-27 15:29:56 +00:00
James Lee dbf2f5a4af add a post module for stealing obfuscated winscp stored passwords, fixes #4210, thanks TheLightCosine!
git-svn-id: file:///home/svn/framework3/trunk@12449 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-26 23:55:56 +00:00
Wei Chen e39739231d Added CVE reference
git-svn-id: file:///home/svn/framework3/trunk@12431 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 05:37:41 +00:00
Wei Chen a31ac81b57 Added eZip Wizard 3.0 Stack Buffer Overflow
git-svn-id: file:///home/svn/framework3/trunk@12428 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-25 01:06:34 +00:00
HD Moore f7eb047659 Fix the title and remove OS X shell session support until bugs are fixed
git-svn-id: file:///home/svn/framework3/trunk@12427 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-24 22:23:00 +00:00
HD Moore 66631388ed Add a Post module that pulls sensitive files from the Apple iOS backup images. This includes a full manifest parser and can be used to collect stored camera images, call history, saved passwords, and the wireless location "tracking" database.
git-svn-id: file:///home/svn/framework3/trunk@12425 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-24 19:28:55 +00:00
Wei Chen 2772be9125 Small offset change for Win 7 target requested by sd
git-svn-id: file:///home/svn/framework3/trunk@12422 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-24 03:50:55 +00:00
Tod Beardsley 3829d2606b Removing the un-used USER_AS_PASS option for ssh_login_pubkey.
git-svn-id: file:///home/svn/framework3/trunk@12411 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 21:05:27 +00:00
James Lee 219b796e28 dup of enum_applications
git-svn-id: file:///home/svn/framework3/trunk@12408 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 20:13:43 +00:00
amaloteaux 91bb4b0130 auxiliary: add a basic pcap replay module
git-svn-id: file:///home/svn/framework3/trunk@12403 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 18:25:19 +00:00
Tod Beardsley ea6b1bb626 Fixes #4190 by reseting self.ssh_socket after the connection is established.
git-svn-id: file:///home/svn/framework3/trunk@12402 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-22 15:32:00 +00:00
James Lee 2a06f2b70c remove extraneous options, fixes #4146. note that INTERFACE is not extraneous (since the user needs to be able to specify which iface to inject on)
git-svn-id: file:///home/svn/framework3/trunk@12398 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 21:05:17 +00:00
Steve Tornio 319b4993a4 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12397 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 19:38:42 +00:00
Tod Beardsley 794dfc502f Avoid trying duplicate SNMP community strings against the same host.
git-svn-id: file:///home/svn/framework3/trunk@12396 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 19:25:50 +00:00
James Lee d9a80d713c pastographical error, thanks dookie for spotting it
git-svn-id: file:///home/svn/framework3/trunk@12395 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 18:14:51 +00:00
David Rude 0f9a232025 Added Spreecommerce Remote Code Execution exploit module - thanks joernchen
git-svn-id: file:///home/svn/framework3/trunk@12392 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 16:57:17 +00:00
Wei Chen c5d51cf810 Disclosure date change
git-svn-id: file:///home/svn/framework3/trunk@12391 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 15:45:07 +00:00
Wei Chen 6d71990dfc Disclosure date change
git-svn-id: file:///home/svn/framework3/trunk@12390 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 15:40:59 +00:00
Wei Chen 7ef79e3ca5 Changed disclosure date
git-svn-id: file:///home/svn/framework3/trunk@12389 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 15:34:01 +00:00
Mario Ceballos 31f2afc033 fix date
git-svn-id: file:///home/svn/framework3/trunk@12388 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 11:12:34 +00:00
Wei Chen 03ac21e5be Updated disclosure date
git-svn-id: file:///home/svn/framework3/trunk@12387 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 04:34:31 +00:00
Wei Chen 4662f88d43 Incorrect CVE reference removed
git-svn-id: file:///home/svn/framework3/trunk@12385 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 04:21:48 +00:00
Wei Chen cb491e35d2 Changed disclosure date
git-svn-id: file:///home/svn/framework3/trunk@12384 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 02:10:40 +00:00
Wei Chen 458d8cccb8 Modified heap spray routine. Added IE 8 target for XP SP3.
git-svn-id: file:///home/svn/framework3/trunk@12383 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 21:55:33 +00:00
amaloteaux a08bef0a47 allow the wireshark dect dissector exploit to be used remotly
git-svn-id: file:///home/svn/framework3/trunk@12376 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 16:36:48 +00:00
Joshua Drake 78d3998854 Fixes #4125, add hostname support to the Rex DHCP server & aux module
git-svn-id: file:///home/svn/framework3/trunk@12375 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-20 14:21:36 +00:00
Wei Chen 488c6de9df Description change again
git-svn-id: file:///home/svn/framework3/trunk@12371 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 16:41:58 +00:00
Wei Chen 4b7595b8e4 Updated the size of the pcap file. Description also udpated.
git-svn-id: file:///home/svn/framework3/trunk@12369 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 16:34:17 +00:00
Wei Chen 6d0bfaaa57 Updated author
git-svn-id: file:///home/svn/framework3/trunk@12368 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 15:23:49 +00:00
Steve Tornio 0859bb18a7 add cve and osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@12365 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 11:32:17 +00:00
Wei Chen 90668a9913 Date format fix
git-svn-id: file:///home/svn/framework3/trunk@12364 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 07:53:58 +00:00
Wei Chen 9d40da6bbb Title change
git-svn-id: file:///home/svn/framework3/trunk@12363 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 06:43:05 +00:00
Wei Chen 9c60889f02 Added Wireshark packet-dect memcpy overflow (.pcap)
git-svn-id: file:///home/svn/framework3/trunk@12362 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 06:41:57 +00:00
Wei Chen d4dd84536d Added Win 7 target
git-svn-id: file:///home/svn/framework3/trunk@12361 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-19 03:10:36 +00:00
HD Moore b94d09cdf1 Try a little harder to make this module more reliable through TCP proxies
git-svn-id: file:///home/svn/framework3/trunk@12359 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 20:53:21 +00:00
Tod Beardsley 8b5d004997 Adding an nmap version checker so NSE modules can tell if it's okay to run or not.
git-svn-id: file:///home/svn/framework3/trunk@12357 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 19:52:13 +00:00
HD Moore f1f15ba448 Allow socks4a to relay through meterpreter
git-svn-id: file:///home/svn/framework3/trunk@12353 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 18:17:49 +00:00
David Rude 6b538bda06 Fixes for shell commands and store_loot
git-svn-id: file:///home/svn/framework3/trunk@12347 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-18 14:31:01 +00:00
Wei Chen c28e7259ac Added CVE-2011-0611 Adobe Flash 0day
git-svn-id: file:///home/svn/framework3/trunk@12330 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-16 02:09:33 +00:00
Wei Chen 9ac36d6e0a Forgot to change two other hardcoded junks to random alpha bytes
git-svn-id: file:///home/svn/framework3/trunk@12322 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 23:28:58 +00:00
Wei Chen b81d87173f Added mr_me's Win XP SP3 + DEP target
git-svn-id: file:///home/svn/framework3/trunk@12320 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 23:08:47 +00:00
amaloteaux d9e68141e0 arp sweep: correct a bug on the timeout to better detect the latest reply
git-svn-id: file:///home/svn/framework3/trunk@12316 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-14 16:29:56 +00:00
James Lee b5e0962e3e return the appropriate check codes instead of just printing stuff. add some error checks to avoid stack traces against samba and non-existant hosts
git-svn-id: file:///home/svn/framework3/trunk@12314 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-13 23:26:07 +00:00
Steve Tornio 79e84a46e9 add cve & osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@12306 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-12 11:04:29 +00:00
Wei Chen 33249bea32 Changed 0x90 nops to make_nops() instead
git-svn-id: file:///home/svn/framework3/trunk@12305 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 23:32:41 +00:00
Wei Chen 3dec79f346 Format fix again
git-svn-id: file:///home/svn/framework3/trunk@12304 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 23:24:12 +00:00
Wei Chen e5068838ff Last format fix
git-svn-id: file:///home/svn/framework3/trunk@12301 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 22:31:27 +00:00
Wei Chen 300989db5f Format issue fix
git-svn-id: file:///home/svn/framework3/trunk@12299 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 22:28:38 +00:00
Wei Chen eea7a0e743 Added Video Spirit vlsprj buffer overflow exploit
git-svn-id: file:///home/svn/framework3/trunk@12296 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 22:09:23 +00:00
Steve Tornio 6dc526f22b add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12295 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 18:12:17 +00:00
David Rude 39f4c0c42f Added MS08-067 check method thanks staylor =)
git-svn-id: file:///home/svn/framework3/trunk@12294 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 16:32:59 +00:00
David Rude 5e89b22aae Added ISC DHCP Zero Length ClientID DoS Module thx TheLightCosine
git-svn-id: file:///home/svn/framework3/trunk@12293 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 15:56:39 +00:00
Patrick Webster e9e8026832 Fixed author name in modules for myself.
git-svn-id: file:///home/svn/framework3/trunk@12292 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-11 02:25:36 +00:00
Patrick Webster fb33b0cbfd Added contentkeeper_fileaccess aux traversal module.
git-svn-id: file:///home/svn/framework3/trunk@12288 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-10 15:27:17 +00:00
Wei Chen ffe6868d22 Updated vbs stager temp var
git-svn-id: file:///home/svn/framework3/trunk@12286 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-09 18:24:43 +00:00
Joshua Drake d2374a435f add .jar extension, thx for the contribution!
git-svn-id: file:///home/svn/framework3/trunk@12285 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-09 17:03:41 +00:00
Wei Chen c31603beac Updated: Using random nops and padding
git-svn-id: file:///home/svn/framework3/trunk@12284 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 23:09:31 +00:00
Wei Chen 8b0605c418 Added AOL Desktop 9.6 rtx buffer overflow
git-svn-id: file:///home/svn/framework3/trunk@12283 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 23:03:30 +00:00
David Rude 82f5206bc7 change the filename to reflect the vendor
git-svn-id: file:///home/svn/framework3/trunk@12281 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 14:06:10 +00:00
Steve Tornio a8947662db old file hanging around
git-svn-id: file:///home/svn/framework3/trunk@12280 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 13:28:57 +00:00
Steve Tornio bb26593da7 add osvdb ref. rename file to correct typo
git-svn-id: file:///home/svn/framework3/trunk@12279 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 12:41:18 +00:00
Wei Chen 8efd5ce82c Added denial-of-service module for HP Data Protector's RDS service
git-svn-id: file:///home/svn/framework3/trunk@12278 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 07:56:48 +00:00
Wei Chen 717fb83fc9 Added RealNetworks RealGames ActiveX exec arbitrary code execution
git-svn-id: file:///home/svn/framework3/trunk@12276 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-08 02:39:11 +00:00
David Rude 53790c1afb Change Vendor name, forgot one target uri fixup
git-svn-id: file:///home/svn/framework3/trunk@12275 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 23:31:12 +00:00
James Lee 02b3b85e7c port get_application_list to post module, with a couple small tweaks (check wow64 reg keys, and don't print blank lines)
git-svn-id: file:///home/svn/framework3/trunk@12274 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:59:47 +00:00
Mike Smith d5d9d56081 Create a dedicated db table to track sessions & session events.
* Add new db tables for session & session_events
* Migrate existing session data from events db table
* Modify session report methods to log to the new tables


git-svn-id: file:///home/svn/framework3/trunk@12273 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:59:32 +00:00
David Rude 892e241853 Added Netflow Apps Manager Remote Code Execution exploit
git-svn-id: file:///home/svn/framework3/trunk@12272 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:01:34 +00:00
Wei Chen 904b02c44f Need to track who committed what
git-svn-id: file:///home/svn/framework3/trunk@12271 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 21:01:20 +00:00
Patrick Webster cacac970e1 Added privilege escalation to contentkeeperweb_mimencode exploit module.
git-svn-id: file:///home/svn/framework3/trunk@12265 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 11:02:48 +00:00
Wei Chen b90d6fc16f Modified the heap spraying function. Each block size should be more consistent now.
git-svn-id: file:///home/svn/framework3/trunk@12264 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 07:27:38 +00:00
Wei Chen 1c5f1f9d24 Fixed typo
git-svn-id: file:///home/svn/framework3/trunk@12263 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 06:15:47 +00:00
Patrick Webster 1c2e08d95d Added SonicWall SSL-VPN format string module.
git-svn-id: file:///home/svn/framework3/trunk@12261 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-07 03:56:35 +00:00
Tod Beardsley e07147142f See #3781. smb_login implements the special keyword of <BLANK> (but also needs to be nil safe, which this fixes)
git-svn-id: file:///home/svn/framework3/trunk@12257 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:26:46 +00:00
Tod Beardsley 30fb75c676 In smb_login, work around an odd error where you get an InvalidPacket for ACCESS_DENIED rather than a login failure.
git-svn-id: file:///home/svn/framework3/trunk@12256 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-06 21:15:08 +00:00
Jonathan Cran 1ffb5e97e0 mubix's patch. grab the right value from the reg if it's not a fixnum, and set a default report port
git-svn-id: file:///home/svn/framework3/trunk@12249 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 19:09:44 +00:00
Steve Tornio 46d88f54f6 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12242 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 01:08:07 +00:00
David Rude 0bea0233a0 add the slash =)
git-svn-id: file:///home/svn/framework3/trunk@12241 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 00:13:01 +00:00
David Rude ce7b72bfce Use get_uri instead of manually building the path
git-svn-id: file:///home/svn/framework3/trunk@12240 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 00:08:36 +00:00
David Rude 7816b87595 Added Zend Java Bridge exploit module java meterpreter ftw
git-svn-id: file:///home/svn/framework3/trunk@12239 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 23:39:27 +00:00
Tod Beardsley b91c81a182 Fixes #4074 -- corrects the affected regexes.
git-svn-id: file:///home/svn/framework3/trunk@12238 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 22:19:59 +00:00
Wei Chen 97a9056a1a Added CVE-2010-3407 (IBM Lotus Domino iCalendar SMTP)
git-svn-id: file:///home/svn/framework3/trunk@12236 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 17:43:34 +00:00
Carlos Perez bae9a04cf6 Migration of domain_list script to enum_domain_group_users post module by Stephen Haywood
git-svn-id: file:///home/svn/framework3/trunk@12232 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 00:42:27 +00:00
amaloteaux 7e522d9979 http capture : add challenge as an option
git-svn-id: file:///home/svn/framework3/trunk@12231 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 23:31:14 +00:00
amaloteaux 8e61c108d3 typo fix
git-svn-id: file:///home/svn/framework3/trunk@12229 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 23:11:02 +00:00
Joshua Drake 8a627758f3 update description to remove blurb about ATSVC pipe, since it is no longer used
git-svn-id: file:///home/svn/framework3/trunk@12226 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 20:53:54 +00:00
Joshua Drake f0673cb1ac Tweak to work with FreeBSD, thx for the patch!
git-svn-id: file:///home/svn/framework3/trunk@12224 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 17:40:45 +00:00
HD Moore 86fac4ef95 This module does not meet standards for inclusion:
1) GPLv3 license is not compatible with BSD
2) Hardcoded path to a Windows file system for the shoretel users listing
3) The shortel users file was not included (it would live in data/)
4) Name should be _login not _brute for consistency
5) Incorrect use of the reporting APIs




git-svn-id: file:///home/svn/framework3/trunk@12221 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 16:11:59 +00:00
Carlos Perez 8c96711c6c shroretel user login brute force module by Keith Lee
git-svn-id: file:///home/svn/framework3/trunk@12219 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 14:13:15 +00:00
Steve Tornio 8aff852f5a add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12218 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 13:41:19 +00:00
Carlos Perez 7aa21e7ef8 Qemu detection support, patch provided by Sergio Guzman.
git-svn-id: file:///home/svn/framework3/trunk@12217 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 13:03:43 +00:00
Wei Chen 7502895037 Minor changes
git-svn-id: file:///home/svn/framework3/trunk@12216 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-02 05:54:02 +00:00
Mario Ceballos cab7a1b3e4 added auxiliary module zend/java_bridge.rb
git-svn-id: file:///home/svn/framework3/trunk@12212 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 22:01:46 +00:00
Steve Tornio cd9b742960 add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@12202 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 14:00:49 +00:00
James Lee 6dd44fa516 massive keywords cleanup
git-svn-id: file:///home/svn/framework3/trunk@12196 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-01 00:51:33 +00:00
natron 6743776c75 Fixing ugly spacing
git-svn-id: file:///home/svn/framework3/trunk@12193 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:24:14 +00:00
natron e1c7be1acf Tim Medin's NBNS spoofer / world domination ensurer.
git-svn-id: file:///home/svn/framework3/trunk@12192 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 22:22:13 +00:00
David Rude 98d7e5e75e minor info hash fixes
git-svn-id: file:///home/svn/framework3/trunk@12191 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 16:56:12 +00:00
David Rude 7f91739062 Converted screen_spy to a post module
git-svn-id: file:///home/svn/framework3/trunk@12189 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 16:41:52 +00:00
David Rude 2beeca4c90 Send the session object directly to store_loot fixes issues with report_host stack traces
git-svn-id: file:///home/svn/framework3/trunk@12188 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-31 15:12:08 +00:00
Wei Chen e86040f04f Added Solar FTP Server DOS
git-svn-id: file:///home/svn/framework3/trunk@12184 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-30 19:13:46 +00:00
Wei Chen 045e75c0b6 Added ret addr for win server 2003 sp2 donated by Polar Bear
git-svn-id: file:///home/svn/framework3/trunk@12183 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-30 16:24:52 +00:00
HD Moore 9594829357 Remove the no longer needed require
git-svn-id: file:///home/svn/framework3/trunk@12181 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 18:11:39 +00:00
HD Moore e0e8d986e7 Fix up psexec by adding a reqwuire for the wbemexec mixin
git-svn-id: file:///home/svn/framework3/trunk@12180 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 16:35:26 +00:00
HD Moore 904dd863d1 Remove the WBEM mixin until its actually checked in
git-svn-id: file:///home/svn/framework3/trunk@12179 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 15:26:08 +00:00
James Lee 792bb4da7a allow a user-supplied URI instead of hardcoded "/manager/html", fixes #4038, thanks mubix!
git-svn-id: file:///home/svn/framework3/trunk@12178 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 05:42:33 +00:00
David Rude 9a94359c34 Add a rescue for Profiles directory listing
git-svn-id: file:///home/svn/framework3/trunk@12177 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 04:47:01 +00:00
David Rude c0bde3f030 Add a rescue for the file download
git-svn-id: file:///home/svn/framework3/trunk@12176 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 04:43:02 +00:00
David Rude 30b25994d7 More file stats just to be safe and more clear on the message
git-svn-id: file:///home/svn/framework3/trunk@12175 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:56:46 +00:00
David Rude add0f64a93 Check for Mozilla directory before checking for subdirectories
git-svn-id: file:///home/svn/framework3/trunk@12174 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:50:32 +00:00
David Rude 9904b230fe keep looping don't just return on the first failure
git-svn-id: file:///home/svn/framework3/trunk@12173 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:37:18 +00:00
David Rude c3fb6b3bf8 Fixed the windows enum user check if the Firefox directory does not exist
git-svn-id: file:///home/svn/framework3/trunk@12172 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 03:27:01 +00:00
amaloteaux 3a6a02e43c add wbem exec method for psexec as optional, fix #3972, thanks to pbk-df3 for patch
git-svn-id: file:///home/svn/framework3/trunk@12171 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-29 01:07:32 +00:00
James Lee ca21393c4b remove debug print.
git-svn-id: file:///home/svn/framework3/trunk@12168 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 17:30:02 +00:00
Joshua Drake 0882f18ec0 add fix commit diff and fix broken cve reference
git-svn-id: file:///home/svn/framework3/trunk@12166 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 03:04:54 +00:00
Joshua Drake 24fd896bfb add OSVDB reference back, conflict handling fail!
git-svn-id: file:///home/svn/framework3/trunk@12165 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 03:02:46 +00:00
Tod Beardsley 64c3c86e1f Adding carnal0wnage's iSQL*Plus SID and login brute forcers.
git-svn-id: file:///home/svn/framework3/trunk@12163 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-28 01:20:51 +00:00
James Lee 1096d1c076 add a combined module for exploiting DRb. thanks joernchen!
git-svn-id: file:///home/svn/framework3/trunk@12161 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-27 20:00:06 +00:00
Wei Chen 214751379f Updated: using get_resource() instead of datastore['URIPATH']
git-svn-id: file:///home/svn/framework3/trunk@12156 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-27 03:56:45 +00:00
Wei Chen 25ca59b56f Added Win Vista and debug target
git-svn-id: file:///home/svn/framework3/trunk@12153 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 23:22:51 +00:00
David Rude 349512f48d Updated exploit ranking and description to reflect the new ranking
git-svn-id: file:///home/svn/framework3/trunk@12151 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 19:33:38 +00:00
Steve Tornio 81fae13258 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12147 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 12:05:48 +00:00
David Rude ff3659aa37 Lots of work to make this a lot more reliable =)
git-svn-id: file:///home/svn/framework3/trunk@12146 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 06:35:28 +00:00
Carlos Perez 43ba211d3d Module for injection in to a list of processes a given payload connecting to a list of given IP addresses.
git-svn-id: file:///home/svn/framework3/trunk@12145 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 03:35:59 +00:00
Carlos Perez 33d1baa835 Did not save output of commands when running against shell
git-svn-id: file:///home/svn/framework3/trunk@12144 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 02:56:19 +00:00
Wei Chen eb7df0be8e Updated how the trigger file should be loaded... the proper way.
git-svn-id: file:///home/svn/framework3/trunk@12140 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-26 00:07:36 +00:00
Wei Chen 77ceadc6ad Updated description and how the trigger file loads
git-svn-id: file:///home/svn/framework3/trunk@12139 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 22:49:11 +00:00
Wei Chen 08f210ac52 Added CVE-2010-3275 (VLC AMV vulnerability)
git-svn-id: file:///home/svn/framework3/trunk@12137 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 21:03:12 +00:00
Tod Beardsley fa062b8f32 Sets the cmd stager's temp directory to "." which makes all the writes go to the local data directory for postgresql. This avoids the slashes issue reported by troulouliou and keeps all the uploaded files in one place for somewhat easier cleanup.
git-svn-id: file:///home/svn/framework3/trunk@12135 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 19:42:36 +00:00
Tod Beardsley 8d8696eb8c Fixes #4026, the HTTP options scanner now reports its vulnerability in the normal way.
git-svn-id: file:///home/svn/framework3/trunk@12133 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 17:03:16 +00:00
Steve Tornio 5b79e6b4ec add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12132 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 11:28:57 +00:00
Mario Ceballos c162c0f429 added exploit module hp_nnm_getnnmdata_hostname.rb. now 49 on the list.
git-svn-id: file:///home/svn/framework3/trunk@12131 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-25 00:46:59 +00:00
Tod Beardsley 1d65ae4122 Adding post module conversion for the Meterpreter autoroute script.
git-svn-id: file:///home/svn/framework3/trunk@12126 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 16:34:18 +00:00
David Rude e5ff1b030a fixed Platform and Arch to be compatible with command payloads
git-svn-id: file:///home/svn/framework3/trunk@12125 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 15:53:20 +00:00
Wei Chen aa24f29a03 Fixed nops
git-svn-id: file:///home/svn/framework3/trunk@12124 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 13:51:13 +00:00
Wei Chen c9eef9ffe5 Fixed typo
git-svn-id: file:///home/svn/framework3/trunk@12123 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 13:31:58 +00:00
Wei Chen a05866385f Added target 7.50, provided by MC
git-svn-id: file:///home/svn/framework3/trunk@12122 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 02:48:04 +00:00
Steve Tornio d9dd2a3058 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12121 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-24 00:49:33 +00:00
Mario Ceballos 342d55ac00 heh, a couple for the hp_nnm party. add exploit modules hp_nnm_getnnmdata_icount.rb hp_nnm_getnnmdata_maxage.rb
git-svn-id: file:///home/svn/framework3/trunk@12117 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 21:57:16 +00:00
Wei Chen 1a42a87a65 Added 2011-0267 (exploiting "schdParams" of HP NNM's nnmRptConfig.exe)
git-svn-id: file:///home/svn/framework3/trunk@12116 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 21:35:13 +00:00
Tod Beardsley a3f68b97a6 Fix for 1.8.7 compatability, where regexes need escaped plusses.
git-svn-id: file:///home/svn/framework3/trunk@12115 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 21:24:09 +00:00
amaloteaux ec5e61966d oops revert the unwanted early commit on mssql
git-svn-id: file:///home/svn/framework3/trunk@12114 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:53:57 +00:00
amaloteaux 46cf938475 fix typo
git-svn-id: file:///home/svn/framework3/trunk@12112 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 20:47:49 +00:00
Tod Beardsley b1178686cf Fixes #3988. Adds a command execution module for PostgreSQL by uploading a UDF library and adding sys_exec() as a temporary function. Requires the target to be Windows, uses Bernardo Damele A. G.'s binaries.
Also fixes a typo in the arguments to handler which clears up a heretofore mysterious exception (see exploit.rb).



git-svn-id: file:///home/svn/framework3/trunk@12111 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 19:36:07 +00:00
amaloteaux c0a0e3f217 small fix
git-svn-id: file:///home/svn/framework3/trunk@12110 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 19:02:38 +00:00
amaloteaux e706051bda psexec : allow exploit to succeed on any r/w share
git-svn-id: file:///home/svn/framework3/trunk@12109 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:53:32 +00:00
David Rude c9e4aa11df Fixed the report note to not use the proper data format
git-svn-id: file:///home/svn/framework3/trunk@12108 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:15:40 +00:00
HD Moore fff99db43d Fix the report_note not to clash with smb_enumusers format
git-svn-id: file:///home/svn/framework3/trunk@12107 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 18:14:05 +00:00
James Lee e866eafb06 add keywords
git-svn-id: file:///home/svn/framework3/trunk@12106 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:59:19 +00:00
David Rude 2ea46486a4 fixed report_note
git-svn-id: file:///home/svn/framework3/trunk@12104 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:16:29 +00:00
David Rude 3a0c71f98b Added Xerox Workcenter aux module for enumerating users
git-svn-id: file:///home/svn/framework3/trunk@12102 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:13:37 +00:00
Joshua Drake 6fa39eb32c merge my work on cve-2010-2703
git-svn-id: file:///home/svn/framework3/trunk@12101 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:04:45 +00:00
Joshua Drake efd7b84cc5 change rank / add http fingerprint
git-svn-id: file:///home/svn/framework3/trunk@12100 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 16:02:53 +00:00
Joshua Drake dd5e7f9286 merge in my wacky cve-2010-2709 work
git-svn-id: file:///home/svn/framework3/trunk@12099 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:55:52 +00:00
Joshua Drake 1460d161da add exploit for cve-2010-1552
git-svn-id: file:///home/svn/framework3/trunk@12098 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:47:20 +00:00
Joshua Drake 11e442ed47 add exploit for cve-2010-1964
git-svn-id: file:///home/svn/framework3/trunk@12097 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:45:48 +00:00
Joshua Drake 6920376237 add exploit for cve-2010-1961
git-svn-id: file:///home/svn/framework3/trunk@12096 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:44:55 +00:00
Joshua Drake 46cd08e1aa add exploit for cve-2010-1960
git-svn-id: file:///home/svn/framework3/trunk@12095 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 15:43:25 +00:00
David Rude ea47253814 Changed title for consistency
git-svn-id: file:///home/svn/framework3/trunk@12093 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 14:24:48 +00:00
Steve Tornio 89ec6ab5da add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12092 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 11:19:45 +00:00
David Rude 8233030184 opps removed mixin require as well
git-svn-id: file:///home/svn/framework3/trunk@12091 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 04:41:48 +00:00
David Rude f8534f06dd opps removed mixin reference =)
git-svn-id: file:///home/svn/framework3/trunk@12090 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 04:40:38 +00:00
David Rude d7266b6551 Add CVE-2011-0609 exploit for Adobe Flash
git-svn-id: file:///home/svn/framework3/trunk@12089 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 04:31:48 +00:00
Wei Chen 422e5ae7b1 gone.
git-svn-id: file:///home/svn/framework3/trunk@12088 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:45:01 +00:00
Wei Chen c8ca48388d filenamed fix
git-svn-id: file:///home/svn/framework3/trunk@12085 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:37:18 +00:00
Wei Chen 1a34d81aab Added CVE-2010-2703
git-svn-id: file:///home/svn/framework3/trunk@12083 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:23:06 +00:00
Wei Chen 92d52daea8 Added NNM webappmon.exe OvJavaLocale overflow
git-svn-id: file:///home/svn/framework3/trunk@12082 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:21:56 +00:00
Wei Chen 74e0d2f43e Added HP NNM nnmRptConfig nameParams overflow
git-svn-id: file:///home/svn/framework3/trunk@12081 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:20:24 +00:00
Carlos Perez 1a27e6694f Changed order of description for loot file to make identifying cleanup resource files in loot easier.
git-svn-id: file:///home/svn/framework3/trunk@12080 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:12:43 +00:00
Carlos Perez 0ea46afa75 Migration of getgui script to post module enable_rdp
git-svn-id: file:///home/svn/framework3/trunk@12079 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 03:11:04 +00:00
Carlos Perez 735711ae01 Typo of the variable that has the data.
git-svn-id: file:///home/svn/framework3/trunk@12078 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 02:59:51 +00:00
Mario Ceballos 3f7e3ee93f added auxiliary module igss_exec_17.rb
git-svn-id: file:///home/svn/framework3/trunk@12077 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-23 01:58:09 +00:00
Carlos Perez a5c3987b33 Multi Console Command script migrated to post module. Now names run_console_rc_file. Will read and execute meterpreter console commands found in a given resource file.
git-svn-id: file:///home/svn/framework3/trunk@12074 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 23:04:41 +00:00
Carlos Perez cffe667c71 Multi command script migrated to post module, supports *nix system and both shell and meterpreter. Will run commands in a given resource file.
git-svn-id: file:///home/svn/framework3/trunk@12073 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 22:59:01 +00:00
David Rude 139102de80 Removed testing file extension
git-svn-id: file:///home/svn/framework3/trunk@12068 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 17:24:16 +00:00
David Rude 23d89cd137 Added drb syscall exploit
git-svn-id: file:///home/svn/framework3/trunk@12067 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-22 16:09:03 +00:00
Tod Beardsley 46dfafa81f Fixes #3987. Don't raise on the attr set, raise when the command actually wants to get run.
git-svn-id: file:///home/svn/framework3/trunk@12063 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 20:52:08 +00:00
HD Moore 99d9dc69cd Merge in cookie support from paulino calderon
git-svn-id: file:///home/svn/framework3/trunk@12055 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 04:59:02 +00:00
Carlos Perez 68374e11ef small typo
git-svn-id: file:///home/svn/framework3/trunk@12051 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:35:12 +00:00
Carlos Perez 7648ab6e5f forgot options descriptions
git-svn-id: file:///home/svn/framework3/trunk@12050 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:30:27 +00:00
Carlos Perez c7989fff39 Migrate script migrated to post module.
git-svn-id: file:///home/svn/framework3/trunk@12049 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:27:36 +00:00
Carlos Perez d45969a381 Mubix migration and enhancement of the vnc password script
git-svn-id: file:///home/svn/framework3/trunk@12048 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 02:18:34 +00:00
James Lee 95633f7c3d store_loot in gather/env
git-svn-id: file:///home/svn/framework3/trunk@12046 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:31:05 +00:00
HD Moore c679de9d7a Closes #3976 by merging in an ARM adduser payload from Jonathan Salwan
git-svn-id: file:///home/svn/framework3/trunk@12045 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:26:14 +00:00
Carlos Perez 92e749f6ff USB Drive history enumeration script contributed by nebulus
git-svn-id: file:///home/svn/framework3/trunk@12044 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:23:32 +00:00
Carlos Perez 3fca6a4225 Migration of dumplinks script to dumplinks post module
git-svn-id: file:///home/svn/framework3/trunk@12043 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-21 01:22:44 +00:00
Tod Beardsley 42dd4fa717 Allow for duplicates for vnc_login since there's no username.
git-svn-id: file:///home/svn/framework3/trunk@12037 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 18:10:49 +00:00
Carlos Perez 5b8c2007c8 Migration of credcollector script to credential_collector post module
git-svn-id: file:///home/svn/framework3/trunk@12036 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:42:37 +00:00
Carlos Perez 71fd7136ae Forgot to update descriptions of the options set
git-svn-id: file:///home/svn/framework3/trunk@12035 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:36:28 +00:00
Carlos Perez 9cb690b9e3 ARP Scanner script migrated to Post Module
git-svn-id: file:///home/svn/framework3/trunk@12034 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-20 17:28:35 +00:00
James Lee 8db83e406e try to find wow64 installs. also fixes a problem where blank lines were printed when no DisplayName was found
git-svn-id: file:///home/svn/framework3/trunk@12021 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:46:01 +00:00
James Lee db9c9c625f :host can't be a peerhost (contains the port as well). report will just figure it out if you use a Session object, though
git-svn-id: file:///home/svn/framework3/trunk@12020 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 21:21:56 +00:00
Joshua Drake 586c1f9305 oops, broke the LIBPATH option
git-svn-id: file:///home/svn/framework3/trunk@12015 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 01:18:18 +00:00
Joshua Drake f4fe3f11b0 enable bind payloads, thx hdm :)
git-svn-id: file:///home/svn/framework3/trunk@12014 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:52:58 +00:00
Steve Tornio 4992deed21 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12013 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-18 00:16:06 +00:00
Joshua Drake fb6107ffb5 enable java payloads, currently via one-off method
git-svn-id: file:///home/svn/framework3/trunk@12012 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 23:57:11 +00:00
Tod Beardsley f2057f54a8 De-dup'ed get_link_filter() in the crawler module. Added some comment
docs on crawler_process_page(). Nothing exciting.



git-svn-id: file:///home/svn/framework3/trunk@12010 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 21:21:21 +00:00
David Rude 36b83cde6f Added exploit for CVE-2010-3747 RealPlayer CDDA URI Code Execution
git-svn-id: file:///home/svn/framework3/trunk@12009 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 15:42:28 +00:00
David Rude 382e63e16e fixed a typo in javascript
git-svn-id: file:///home/svn/framework3/trunk@12007 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 04:40:36 +00:00
Carlos Perez a5e899cb04 Fix loading problem on one of the test boxes
git-svn-id: file:///home/svn/framework3/trunk@12003 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-17 00:10:07 +00:00
Carlos Perez 6a1acd6a54 small typo
git-svn-id: file:///home/svn/framework3/trunk@12002 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 23:27:13 +00:00
Carlos Perez 4031daa1fb update modules to use is_system? to ensure SID is used to verify when running in certain languages in Windows
git-svn-id: file:///home/svn/framework3/trunk@11999 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:54:40 +00:00
Joshua Drake 5bfd574029 fix parse error
git-svn-id: file:///home/svn/framework3/trunk@11996 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 22:07:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Tod Beardsley d289aa8733 Another touchup on author credit for oracle-brute NSE script integration.
git-svn-id: file:///home/svn/framework3/trunk@11994 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:05:09 +00:00
Wei Chen 5800608356 Not ready to be part of msf repo, killing it
git-svn-id: file:///home/svn/framework3/trunk@11993 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 20:42:56 +00:00
HD Moore f317d60e04 Fix a few cosmetic issues with the kingview module
git-svn-id: file:///home/svn/framework3/trunk@11991 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 18:04:15 +00:00
Wei Chen 26bee16b5c I should probably add myself as an author.
git-svn-id: file:///home/svn/framework3/trunk@11990 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:45:12 +00:00
Carlos Perez 8d1b37a452 save hashes to DB
git-svn-id: file:///home/svn/framework3/trunk@11989 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:26:49 +00:00
Carlos Perez cb9abd8b13 saved sha1 instead of the proper hash, major typo on my part
git-svn-id: file:///home/svn/framework3/trunk@11988 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 16:19:37 +00:00
Mario Ceballos dfd2df6b47 puts this in the appropiate place
git-svn-id: file:///home/svn/framework3/trunk@11987 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:22:07 +00:00
Steve Tornio 78d4822d27 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11986 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:15:54 +00:00
David Rude eeb1aae9d0 Added Japanese NO NX Target
git-svn-id: file:///home/svn/framework3/trunk@11985 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 07:58:50 +00:00
Joshua Drake 4a1e59be8d oops =D
git-svn-id: file:///home/svn/framework3/trunk@11983 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 05:01:29 +00:00
Joshua Drake 4644110962 add exploit for cve-2010-4452, currently windows only and no payloads :(
git-svn-id: file:///home/svn/framework3/trunk@11982 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 04:50:25 +00:00
Wei Chen 7308a032f9 Added kingview historysvr exploit. by rick2600 & Dillon.
git-svn-id: file:///home/svn/framework3/trunk@11980 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:46:20 +00:00
Tod Beardsley c6a9a6efd7 Am I really updating for a misplaced comment? Why yes I am!
git-svn-id: file:///home/svn/framework3/trunk@11979 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:45:29 +00:00
Wei Chen e1ff12292f wrong directory
git-svn-id: file:///home/svn/framework3/trunk@11978 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:44:50 +00:00
Wei Chen 36c05de02e Added kingview historysvr exploit. By rick2600 and Dillon.
git-svn-id: file:///home/svn/framework3/trunk@11977 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:39:45 +00:00
Tod Beardsley 424eb1f192 Adding a reference to NSE as well.
git-svn-id: file:///home/svn/framework3/trunk@11976 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:26:20 +00:00
Tod Beardsley 9b431c0c8d Adding Patrik Karlsson as an author for the nmap nse script
git-svn-id: file:///home/svn/framework3/trunk@11975 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 02:19:57 +00:00
Mario Ceballos 6d3d0adf93 added exploit module coldfusion_traversal.rb from webDEViL
git-svn-id: file:///home/svn/framework3/trunk@11974 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 01:38:16 +00:00
Tod Beardsley ecb89c785b Actually use the API for appending command line arguments for nmap.
git-svn-id: file:///home/svn/framework3/trunk@11970 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:59:35 +00:00
Steve Tornio abcce881b2 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11969 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:56:11 +00:00
Mario Ceballos 8189a1f7a9 added exploit module hp_openview_insight_backdoor.rb
git-svn-id: file:///home/svn/framework3/trunk@11968 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:22:07 +00:00
Tod Beardsley 5e715c22db Final touchup on Oracle login scanner -- adds a pile of defaults from the existing CSV wordlist.
git-svn-id: file:///home/svn/framework3/trunk@11967 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 21:16:18 +00:00
Tod Beardsley 292f357f7a Moving requires from oracle_login to nmap. Duh.
git-svn-id: file:///home/svn/framework3/trunk@11966 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-15 20:46:03 +00:00
James Lee 7d12151ec6 add support for http digest authentication. fixes #2504, thanks oliver kleinecke for the patch!
git-svn-id: file:///home/svn/framework3/trunk@11961 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:37:16 +00:00
Tod Beardsley 6e0e23f5ba Fixups on the Oracle/Nmap stuff. Adding back in the Scanner module, since it has some handy process mgmt functions.
git-svn-id: file:///home/svn/framework3/trunk@11960 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 22:13:57 +00:00
Tod Beardsley f568b3e0d8 Normalize the print_status banners for sid_brute
git-svn-id: file:///home/svn/framework3/trunk@11959 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 18:25:34 +00:00
Tod Beardsley 70127c09fb Fixes #3939 by setting the racket bits correctly.
git-svn-id: file:///home/svn/framework3/trunk@11958 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 15:58:17 +00:00
Tod Beardsley 03f227817e blarg lost a commit in there.
git-svn-id: file:///home/svn/framework3/trunk@11957 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:41:46 +00:00
Tod Beardsley b8b175fd5c See #3941. Don't report the same thing a billion times.
git-svn-id: file:///home/svn/framework3/trunk@11956 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 14:34:19 +00:00
Steve Tornio 45e29834be add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11955 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 12:01:55 +00:00
David Rude 76ee9353aa changed exploit ranking to better reflect the privileges required
git-svn-id: file:///home/svn/framework3/trunk@11954 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 10:54:13 +00:00
David Rude a63534107b minor style fix
git-svn-id: file:///home/svn/framework3/trunk@11953 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:57:51 +00:00
David Rude 994e6eb450 Exploit for Foxit PDF Reader createDataObject() file write vulnerability
git-svn-id: file:///home/svn/framework3/trunk@11952 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 05:36:33 +00:00
Wei Chen 15f52a2e6b Updated: Make sure sqlite3 is supported before executing SQL queries
git-svn-id: file:///home/svn/framework3/trunk@11949 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-14 00:11:06 +00:00
Tod Beardsley b68396351a See #3941. This is a first attempt at supporting driving nmap via a metasploit module. It's a somewhat hefty checkin that includes the Nmap auxiliary mixin as well as an oracle login bruteforce module that uses it.
This definitely needs to be tested on Win32 before it can be called f i x e d, due to the differences between the nmap binaries and the way files are created and used.

Also, the oracle_login scanner could use another once-over for error handling -- don't rely on that yet.

Once this all works the way I expect, I'll document the procedure more thoroghly so people can take advantage.



git-svn-id: file:///home/svn/framework3/trunk@11948 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 22:52:50 +00:00
Wei Chen d8ff158855 Ported Sven Taute's enum_chrome.rb as a POST module. Modified output, saved log format, supports data dumping for x64 Windows, etc. Improvements still needed.
git-svn-id: file:///home/svn/framework3/trunk@11947 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 21:19:27 +00:00
HD Moore 5ab60f2966 Fixes #3938 by correcting the path for the filename
git-svn-id: file:///home/svn/framework3/trunk@11946 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 15:04:16 +00:00
Wei Chen ed6f8b5a78 Updated: Made a slight adjustment to the code format
git-svn-id: file:///home/svn/framework3/trunk@11945 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:27:19 +00:00
Wei Chen 74aab1efe4 Added mr_me's kolibri web server head buffer overflow
git-svn-id: file:///home/svn/framework3/trunk@11944 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 07:18:36 +00:00
HD Moore 293a6f2ef4 Remove unused RHOST option and fix call to .id in ICMP
git-svn-id: file:///home/svn/framework3/trunk@11943 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-13 04:20:19 +00:00
HD Moore 09b3ecff33 Move the module to the correct location
git-svn-id: file:///home/svn/framework3/trunk@11942 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:51 +00:00
HD Moore 2578a0e16b Correct formatting and API usage in the Majordomo2 module
git-svn-id: file:///home/svn/framework3/trunk@11941 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-12 16:38:17 +00:00
amaloteaux 78396e94f9 move linux meterpreter bin to the correct place
git-svn-id: file:///home/svn/framework3/trunk@11938 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:29:25 +00:00
amaloteaux 544fb61aa2 server capture smb will check for empty pass and not display on screen
git-svn-id: file:///home/svn/framework3/trunk@11937 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 20:27:22 +00:00
HD Moore a69278710a Commit an exploit for the Accellion File Transfer appliance default encryption key vulnerability.
git-svn-id: file:///home/svn/framework3/trunk@11935 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:37:23 +00:00
Steve Tornio 03cd23a2d0 remove extra osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11934 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 17:27:27 +00:00
David Rude 00c756ee27 Added patches from Chris John Riley for SAP aux scanner modules
git-svn-id: file:///home/svn/framework3/trunk@11933 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:50:18 +00:00
David Rude 370c42736c Added majordomo2 directory traversal aux module - thx Nicolas Sotiriu
git-svn-id: file:///home/svn/framework3/trunk@11932 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-11 16:37:02 +00:00
amaloteaux dce7dd13fe type fix on psexec
git-svn-id: file:///home/svn/framework3/trunk@11926 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 18:46:58 +00:00
Tod Beardsley 8771b871da Whitespace cleanup on sid_brute.rb, remove redundant target_host def.
git-svn-id: file:///home/svn/framework3/trunk@11924 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 16:55:08 +00:00
Jonathan Cran 79da0ead08 applying description update from zeknox -- thanks!
git-svn-id: file:///home/svn/framework3/trunk@11923 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-10 05:36:17 +00:00
Tod Beardsley e2af0510f6 wanged up the revision splat.
git-svn-id: file:///home/svn/framework3/trunk@11921 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:16:20 +00:00
Tod Beardsley 676fc22249 Fixes #3927. Adds another oracle SID bruteforcer, but it functions more like a scanner than auxiliary/admin/oracle/side_brute.rb does.
git-svn-id: file:///home/svn/framework3/trunk@11920 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 22:15:15 +00:00
Steve Tornio 4534c76882 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11907 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 02:21:36 +00:00
David Rude 45556f7470 .NET Runtime Optimization Service privilege escalation post module
git-svn-id: file:///home/svn/framework3/trunk@11904 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-09 00:29:59 +00:00
Mario Ceballos 631af16d9f revert back.
git-svn-id: file:///home/svn/framework3/trunk@11900 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:48:39 +00:00
Tod Beardsley 42531e097f Fixes #3916. Adds a module for mysql delivery of a payload via a UDF, using Bernardo's quite excellent UDF libraries.
git-svn-id: file:///home/svn/framework3/trunk@11899 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:42:26 +00:00
Mario Ceballos 54382c6080 patch recieved from Peter Van Eeckhout
git-svn-id: file:///home/svn/framework3/trunk@11898 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 22:23:13 +00:00
HD Moore 5299bbb8db Add ip/port prefixes to the jboss scanner
git-svn-id: file:///home/svn/framework3/trunk@11896 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-08 21:12:14 +00:00
amaloteaux 5f6995e8d3 enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
David Rude 695963dde7 Fixed references
git-svn-id: file:///home/svn/framework3/trunk@11888 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 02:28:15 +00:00
David Rude b51c9f8397 oops forgot a , =)
git-svn-id: file:///home/svn/framework3/trunk@11887 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:42:37 +00:00
David Rude 6dc0596870 Added Novell iPrint GetDriverSettings <= 5.52 exploit from mr_me thanks
git-svn-id: file:///home/svn/framework3/trunk@11886 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-06 20:27:06 +00:00
David Rude cdba0d532c Adds a ret for Windows Server 2003 thanks to securityxxpert
git-svn-id: file:///home/svn/framework3/trunk@11882 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 21:00:57 +00:00
James Lee 5299692fc9 fix a typo (thanks to privmode for pointing out), and incorrect host arg for store_loot. fixes #3897
git-svn-id: file:///home/svn/framework3/trunk@11881 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 20:21:12 +00:00
David Rude 921a181ac0 Adds a Firefox post module to collect credentials and cookies
git-svn-id: file:///home/svn/framework3/trunk@11879 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-05 02:57:32 +00:00
David Rude 0663564efc Fixed up some minor bugs, loot converted to csv for parsing
git-svn-id: file:///home/svn/framework3/trunk@11878 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 16:59:35 +00:00
David Rude fafb7debcc fixes some minor bugs
git-svn-id: file:///home/svn/framework3/trunk@11876 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 15:38:01 +00:00
Joshua Drake dee18a8995 add office 2007 msxml5 targets from SAHA! THX
git-svn-id: file:///home/svn/framework3/trunk@11875 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-04 08:39:48 +00:00
Joshua Drake d682069aec add cve-2010-4566 exploit from Erwin Paternotte
git-svn-id: file:///home/svn/framework3/trunk@11873 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 20:51:12 +00:00
David Rude 657c7c55a9 Added a require for msf/core/post/file
git-svn-id: file:///home/svn/framework3/trunk@11872 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:43:30 +00:00
amaloteaux d4d475e9d3 small fix on filezilla_server_cred.rb
git-svn-id: file:///home/svn/framework3/trunk@11871 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 18:32:46 +00:00
HD Moore 3ad7cd61e5 Remove the exploit_module= assignment until this feature is completed
git-svn-id: file:///home/svn/framework3/trunk@11870 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:59:51 +00:00
David Rude f79cfa13a3 Adding post module for collecting FileZilla FTP Server ftp user and admin interface credentials
git-svn-id: file:///home/svn/framework3/trunk@11869 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 13:00:55 +00:00
Joshua Drake c29bca4fb8 add keywords, oops
git-svn-id: file:///home/svn/framework3/trunk@11868 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:47 +00:00
Joshua Drake c7f6324fbd add cve-2011-0404 exploit from Evan
git-svn-id: file:///home/svn/framework3/trunk@11867 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-03 01:04:24 +00:00
Mario Ceballos 94d21dde8e fix a load error
git-svn-id: file:///home/svn/framework3/trunk@11865 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:54:03 +00:00
Mario Ceballos 5e60545446 fix a load error
git-svn-id: file:///home/svn/framework3/trunk@11864 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 21:35:31 +00:00
David Rude 2a90817b80 Fixes more style and API usage issues
git-svn-id: file:///home/svn/framework3/trunk@11863 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 18:46:00 +00:00
David Rude 27ba761cd3 Fixed indentation of the cldap_payload
git-svn-id: file:///home/svn/framework3/trunk@11860 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 14:01:04 +00:00
David Rude 6c1f49e73d Added Wireshark Auxiliary DoS module from joernchen
git-svn-id: file:///home/svn/framework3/trunk@11859 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 13:44:41 +00:00
David Rude 37e9ad1ed4 Added SAP Management Console auxiliary scanner modules
git-svn-id: file:///home/svn/framework3/trunk@11858 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 10:18:31 +00:00
HD Moore 2dbbdc18dd Explicitly yield to other threads after each request, reducing the chance that this module will eat all cycles.
git-svn-id: file:///home/svn/framework3/trunk@11857 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 05:03:20 +00:00
David Rude 0afc75e19b post module for FileZilla FTP Client credential collection
git-svn-id: file:///home/svn/framework3/trunk@11856 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-02 04:11:12 +00:00
HD Moore 261ab6c014 Fix stack trace when parsing silc account settings, cosmetic and style tweaks
git-svn-id: file:///home/svn/framework3/trunk@11854 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 15:14:49 +00:00
David Rude dcfd46e3d6 Added Carlos Perez credits from the original meterpreter script.
git-svn-id: file:///home/svn/framework3/trunk@11853 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 07:31:26 +00:00
David Rude 04e2d7a829 more style fixes =)
git-svn-id: file:///home/svn/framework3/trunk@11851 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 05:02:33 +00:00
David Rude 4d4c760e81 style fixes
git-svn-id: file:///home/svn/framework3/trunk@11850 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:54:50 +00:00
David Rude 1e33520a86 post module for pidgin credential collection conversion of get_pidgin_creds
git-svn-id: file:///home/svn/framework3/trunk@11849 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-01 04:02:54 +00:00
HD Moore 77c5f02d4d Call the correct version of the report_auth_info() method (this one takes into account workspace)
git-svn-id: file:///home/svn/framework3/trunk@11847 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:55:56 +00:00
HD Moore e7dbf28626 This patch adds a register_parent() method to the module class, making it easy to propogate things like ParentUUID, Workspace, and Owner down. The multi/handler post modules were updated to use this new api. This fixes an issue where the session generated by a post module would be registered to the wrong workspace.
git-svn-id: file:///home/svn/framework3/trunk@11846 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 04:24:35 +00:00
HD Moore f49e040a96 This patch adds a ListenerTimeout option to multi/handler that sets a maximum wait time for sessions. This is useful to prevent leftover background handlers by unsuccessful or misconfigured post modules.
git-svn-id: file:///home/svn/framework3/trunk@11845 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 03:22:40 +00:00
HD Moore c9c3ef4933 Port the screen unlocker to a post module
git-svn-id: file:///home/svn/framework3/trunk@11836 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 05:56:01 +00:00
HD Moore 9bc2a2cd3a Store keystrokes as loot
git-svn-id: file:///home/svn/framework3/trunk@11835 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:54:45 +00:00
HD Moore 8a5f7c448f Fix typos in the original module
git-svn-id: file:///home/svn/framework3/trunk@11834 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:27:49 +00:00
HD Moore 9a54bc0a95 Fix a typo in the original module
git-svn-id: file:///home/svn/framework3/trunk@11833 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 04:23:06 +00:00
HD Moore d19ab712c4 Quick typo fix
git-svn-id: file:///home/svn/framework3/trunk@11831 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:49:25 +00:00
HD Moore b700ed2075 Cosmetic cleanup of post modules
git-svn-id: file:///home/svn/framework3/trunk@11830 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:47:40 +00:00
HD Moore 880ffeb1f7 This updates the (C) for 2011, adds a CustomPrintPrefix option to set a unique prefix for a module and cleans up some post modules
git-svn-id: file:///home/svn/framework3/trunk@11828 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-26 02:02:34 +00:00
HD Moore 8c01560ade Store enumerated data as loot
git-svn-id: file:///home/svn/framework3/trunk@11826 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:48:03 +00:00
HD Moore 4c4ae90daf Consistency fix
git-svn-id: file:///home/svn/framework3/trunk@11825 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:04:52 +00:00
HD Moore f79f704a68 Make the post module titles consist
git-svn-id: file:///home/svn/framework3/trunk@11824 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 21:00:33 +00:00
Carlos Perez b712be8949 Secure deleting of temporary screencapture files on targets using srm
git-svn-id: file:///home/svn/framework3/trunk@11823 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-25 00:43:23 +00:00
Carlos Perez f75bd0498f corrected description of action
git-svn-id: file:///home/svn/framework3/trunk@11821 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 21:05:53 +00:00
Tod Beardsley 57966c66d8 This allows for blank usernames in the normal case, as well as a domain/<blank> sort of construct for smb logins.
git-svn-id: file:///home/svn/framework3/trunk@11820 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 20:42:14 +00:00
Tod Beardsley 5f70c705c1 Committing the Kippo ssh honeypot detection as seen at AHA!.
git-svn-id: file:///home/svn/framework3/trunk@11817 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 13:57:26 +00:00
Carlos Perez 7050bbc0ce Forgot to uncomment the sections while debuging
git-svn-id: file:///home/svn/framework3/trunk@11816 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 11:57:12 +00:00
Carlos Perez 1c812149b2 Add support to enumerate and download OS X keychain files
git-svn-id: file:///home/svn/framework3/trunk@11815 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-24 01:37:00 +00:00
Carlos Perez a4b6994e46 update to capture all history file on home folder, screncapture will now capture all loginwindow processes if root and it will download .ssh and .gnupg files for all users if running as root
git-svn-id: file:///home/svn/framework3/trunk@11814 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 23:13:12 +00:00
James Lee aea8192c7f apply patch from Spencer McIntyre for newer Lotus versions with a different cookie name, thanks\!
git-svn-id: file:///home/svn/framework3/trunk@11812 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 21:47:52 +00:00
James Lee 5d42ed4552 more descriptive name and description
git-svn-id: file:///home/svn/framework3/trunk@11803 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 04:42:02 +00:00
Mario Ceballos aa859e2f68 force ordinal payload
git-svn-id: file:///home/svn/framework3/trunk@11799 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-23 00:58:54 +00:00
Joshua Drake 8ef05017b8 style compliance fixes, naughty naughty
git-svn-id: file:///home/svn/framework3/trunk@11796 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:49:44 +00:00
Carlos Perez 31d4d335f9 Fixed typos and Regex for clean installs of the OS
git-svn-id: file:///home/svn/framework3/trunk@11795 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 20:11:27 +00:00
James Lee 5c87a5db9c more descriptive, standard naming
git-svn-id: file:///home/svn/framework3/trunk@11794 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 18:07:26 +00:00
Carlos Perez 7e2fb81cb5 Initial set of OSX Shell Post modules for general basic enumeration and for dumping hashes (SHA, LM and NTLM) for OSX 10.4 and above
git-svn-id: file:///home/svn/framework3/trunk@11792 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 14:00:47 +00:00
et dd05954b34 Fix wmap to test parameters, error inj. module as example
git-svn-id: file:///home/svn/framework3/trunk@11790 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 04:27:40 +00:00
James Lee 4b4ed6edbe un-truncate a comment and make sure we didn't append a . to the buffer
git-svn-id: file:///home/svn/framework3/trunk@11788 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-22 01:59:17 +00:00
Steve Tornio 13809850a3 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@11779 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-19 13:35:57 +00:00
Matt Weeks c322534907 Add exploit for CVE-2010-3765, firefox interleaved document.write and appendChild calls.
git-svn-id: file:///home/svn/framework3/trunk@11773 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-18 02:23:10 +00:00
Joshua Drake 160c683f18 Add WbemExec mixin, modify MS10-061 to use MOF technique
git-svn-id: file:///home/svn/framework3/trunk@11766 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:22:11 +00:00
Joshua Drake 8b4ef42fa3 randomize name string
git-svn-id: file:///home/svn/framework3/trunk@11765 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-17 19:21:24 +00:00