c38ad92ade
Post module to upload shortcut (LNK) files with UNC path ICONs for post exploitation
2012-02-16 18:34:19 +00:00
1f1e67cb16
Moved railgun function definitions into central storage and out of individual modules where possible
2012-02-09 04:56:13 +00:00
858401463d
add exec timeout
2012-02-05 14:52:38 -05:00
53ec982385
download_exec_fix
2012-02-05 14:35:44 -05:00
e4faa33517
Fix a typo introduce in the usb dumper
2012-02-04 00:03:20 -06:00
0737ccb8e2
Remove nulls from the unicode drive name
2012-02-04 00:03:03 -06:00
36e37e04fb
Fixes to post module cred reporting.
...
call to session.db_record.id would error if no db
was connected.
Fixes #6325
2012-02-01 12:26:35 -06:00
98fbf84dac
Module should inform where the files are saved
2012-02-01 03:41:19 -06:00
6068580813
Should fix the report_auth_info call -- needs a host, not a session. Be nice if it handled a session, though.
...
[See #146 ]
2012-01-30 19:23:05 -06:00
1dec4c0c45
These modules should use vprint_xxx() instead of print_xxx() ... if datastore['VERBOSE']
2012-01-30 13:08:35 -06:00
21a05ce1d6
Fix bug: NoMethodError undefined method `report_vm' ( #6298 )
2012-01-30 00:44:45 -06:00
a4c876a424
No need to manually add VERBOSE as an option, it already is (built-in)
2012-01-27 02:17:59 -06:00
3f4dbd9df6
Merge branch 'master' of https://github.com/averagesecurityguy/metasploit-framework
2012-01-27 01:58:42 -06:00
efda420e5f
Updates to enum_artifacts
2012-01-26 19:35:39 -05:00
33c53b1f3f
Updates vm checking
2012-01-26 13:02:39 -06:00
76ebbc48ec
Update modules/post/windows/gather/dumplinks.rb
2012-01-24 23:16:40 -06:00
ea9e9852cf
ah man, typo!
2012-01-23 11:59:13 -06:00
afc547e0fb
Improve: Proper use of cmd_exec() and correct cmd path. More error handling for exec and rm. Fix bug with path setting, etc.
2012-01-23 11:54:19 -06:00
5671e2f691
Downloand and execute (railgun)
2012-01-22 23:25:49 -05:00
ad6f8257e1
MSFTidy fixes.
2012-01-18 15:01:32 -06:00
6ad2eda24c
Windows artifacts module
2012-01-12 17:26:35 -06:00
cb146f9021
Used msf library for digest, fixed name.
2012-01-12 12:49:50 -05:00
2e60d2e01a
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2012-01-06 17:46:42 -05:00
72072c4ef3
Added enum_artifacts
2012-01-06 17:43:50 -05:00
7b692aa0b9
Adding references to vss modules.
2012-01-04 12:10:03 -06:00
12221b0433
UAC will disrupt these modules
...
Added checks for UAC.
UAC must be bypassed before using these modules.
2012-01-03 12:07:38 -08:00
dd0b07b2cc
Adds mixin and post modules to manipulate Volume shadowcopy Service(VSS)
2011-12-30 15:03:04 -08:00
a330a5c63a
Add e-mail for Brandon
2011-12-29 10:53:39 -06:00
05f3af1e77
Fixed typo in the windows autlogin post module
2011-12-26 11:17:17 -08:00
a00937b4d8
Fix typo.
2011-12-24 15:32:08 -06:00
062f661991
Fix bug #6161 - Must explicitly convert e to e.to_s
2011-12-24 15:11:26 -06:00
8a705c9223
Fix bug #6158 - session.db_record might return nil but wasn't checked
2011-12-24 15:06:43 -06:00
2e2e28afb8
Fix bug #6160 - undefined method '[] for nil:NilClass' due to an invalid path
2011-12-24 14:57:46 -06:00
e991094bd2
Fix host info for report_auth_info(). Change print_status vs print_line order
2011-12-15 13:05:03 -06:00
2648e533a2
nil bug fix
2011-12-15 12:58:21 -06:00
829d96ffbe
Add Windows Gather RazorSQL cred collector (Feature #6117 )
2011-12-15 11:15:44 -06:00
a9e4474eda
Add missing require, fix load error on invalid constant
2011-12-12 23:24:03 -06:00
cd0679ab5d
Increase timeout for cmd_exec()
2011-12-12 21:15:28 -06:00
6e8fdf1ce1
Apply patch #6081
2011-12-12 19:51:02 -06:00
5ba5bbf077
Apply feature #6074
2011-12-12 12:03:34 -06:00
4e95eb5d34
Update description (Feature #6080 )
2011-12-12 11:33:17 -06:00
1694e22e74
Merge pull request #42 from chao-mu/master
...
Fix for issue #6012 ; post/windows/manage/enable_rdp broken
2011-12-06 23:01:20 -08:00
fd1935b3de
show is_admin
2011-12-07 00:23:06 -06:00
8fdfd9f97b
Additional verbosity on WLAN error message
...
to explain that the modules will error if the
Wireless Zero Configuration Service is turned off.
2011-12-06 20:42:11 -05:00
459eafd96d
Fix to WLAN mdoules for when wLAN not installed on target
...
The modules did not close out properly when WLAN was determined not to be
installed on the host. This fix corrects that.
fixes #6070
2011-12-06 20:22:47 -05:00
679ef457d8
Correct spelling, thx bannedit
2011-12-04 14:59:54 -06:00
f26447e021
Correct my own weird grammar
2011-12-04 14:50:53 -06:00
e07868d613
Catch possible exception if WTSGetActiveConsoleSessionId isn't available on the target machine
2011-12-04 14:48:45 -06:00
e52ebd602f
Encorporating patch submitted by Boris Lukashev to fix issue 6012 (Post module enable rdp broken and fixed (here)). Fix was to have the module include Msf::Post::Windows::WindowsServices, make service_change_startup available
2011-12-04 15:26:43 -05:00
89ed25978d
Add feature #6048
2011-12-04 13:44:21 -06:00
950b4a54a0
Fix bug #6050
2011-12-03 22:00:48 -06:00
27974c4c27
Merge branch 'master' of github.com:rapid7/metasploit-framework into fastlib
...
Conflicts:
modules/auxiliary/scanner/http/axis_login.rb
modules/exploits/multi/http/axis2_deployer.rb
modules/post/multi/gather/thunderbird_creds.rb
modules/post/windows/gather/credentials/imvu.rb
msfopcode
2011-12-03 14:07:09 -06:00
30e3607ec0
The SUCCESS message may not be constant across foreign language verions according to jduck, chaning back to the old way
2011-12-02 15:11:27 -06:00
608a5586b2
Actually, don't really have a good reason for that exception handling anymore. I think.
2011-12-01 22:47:42 -06:00
0eb3b5a49b
Fix undefined method 'cmd_exec' bug. Thx Boris.
2011-12-01 22:47:42 -06:00
a91926716d
don't dup the last part of the key, fixes #6036
2011-12-01 15:24:58 -07:00
d0db88d35d
Make key_base an instance var so other functions can access it. Bug #6036
2011-12-01 14:41:44 -06:00
8399ce6e41
Fix bug #6031
2011-11-30 15:22:52 -06:00
f503bd9488
Fixes #5749 by converting to unix-style linefeeds and forcing jtr modules to read files as binary, and updating msftidy to allow for r+b as a ghetto append.
2011-11-28 17:52:34 -06:00
c411c216c0
Solved most of msftidy issues with the /modules directory
2011-11-28 17:10:29 -06:00
ec3c37d963
Actually, don't really have a good reason for that exception handling anymore. I think.
2011-11-25 00:41:28 -06:00
3e7c821119
Fix undefined method 'cmd_exec' bug. Thx Boris.
2011-11-25 00:34:33 -06:00
4ef7c373e9
Fix to typo in the tables being pushed.
2011-11-22 00:06:58 -06:00
f81567fb6f
Fix to typo in the tables being pushed.
2011-11-21 15:49:57 -08:00
f35b6c5269
msftidy on post modules for spaces at EOL
2011-11-20 12:53:25 +11:00
a4cadf0d53
remove the extra comment that's not used
2011-11-19 12:48:39 -06:00
11c1f0983f
Fixes #5993
2011-11-17 18:05:36 -08:00
77cba9de7c
Merge branch 'cbdfix'
...
Conflicts:
modules/post/windows/gather/credentials/imvu.rb
modules/post/windows/gather/forensics/duqu_check.rb
modules/post/windows/recon/computer_browser_discovery.rb
2011-11-17 14:55:20 -08:00
3bfe7e9b98
fix to comptuer browser discovery to output properly and sotre as loot
...
added additional option to save detected hosts in the db.
2011-11-17 14:17:28 -08:00
84fb5b441a
Cleaning up some names and descs
2011-11-17 07:47:26 -06:00
eae171b216
Addresses issue #5984
2011-11-16 19:07:56 -08:00
d8347a1245
Fixes to post modules that store creds as loot.
...
All post modules that store creds as loot now store in
a CSV format with User and then Password always as the
first two columns.
2011-11-15 14:13:51 -08:00
f6b0ffd630
Cleanup of the stack traces in the pidgin and filezilla client cred modules
2011-11-15 12:19:15 -08:00
8d47883af0
Moving the wlan directory up a level. It makes more sense in it's own area
...
instead of under gather.
2011-11-15 08:29:13 -08:00
c8142043e9
Fixes to credential handling to downcase usernames whenever they are not case sensitive.
...
Also report_auth_info now checks to see if a non-case sensitive version of the cred
may already exist.
2011-11-14 22:50:52 -08:00
5856112797
Quickfix: missing require in post/windows/escalate/getsystem.rb
...
Resolves:
[-] WARNING! The following modules could not be loaded!
[-] contrib/metasploit-framework/modules/post/windows/escalate/getsystem.rb: NameError uninitialized constant Msf::Post::Windows
2011-11-13 14:25:31 +01:00
2ec21858c6
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-11 16:20:27 -06:00
65fc693c66
Add a getsystem post module for automation
2011-11-11 16:19:49 -06:00
2f6c9d6d08
Removing a hated semi-colon, noting that the rescue does nothing
2011-11-11 13:59:14 -06:00
e1cea699a7
yo, format police is in town for some law and order around here
2011-11-11 11:39:13 -06:00
184eee0e64
Merge branch 'duqu'
2011-11-11 10:22:12 -06:00
e03b6d27d2
Adding a colon to Request keyword mostly just to test local changes
2011-11-11 10:20:52 -06:00
ef1a86e839
adding email address
2011-11-11 09:44:18 -06:00
6ae8bbb6ce
Fixes #5832
2011-11-10 21:57:24 -08:00
5a75a67830
cleaning up tabs and rename variables for clarity
2011-11-10 23:26:19 -06:00
7191542503
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-11-10 18:09:55 -06:00
457b7cb6d1
sinn3r: *knock, knock* Whitespace: who's there? sinn3r:Me, I kill you
2011-11-10 18:08:28 -06:00
0675def3d4
Whitespace, I kill you.
2011-11-10 18:00:50 -06:00
e140361ffd
change keys to array instead of comma delimited string
2011-11-10 16:11:11 -06:00
7348a71c24
adding duqu_check.rb
2011-11-10 15:20:48 -06:00
a9ebfbd604
Add feature #5912
2011-11-10 03:13:57 -06:00
3ff1449995
Do report_note()
2011-11-10 02:16:25 -06:00
3ac11b7d44
Whitespace clean up
...
git-svn-id: file:///home/svn/framework3/trunk@14190 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 15:48:04 +00:00
4490bb4683
handle better certain options that may use = sign
...
git-svn-id: file:///home/svn/framework3/trunk@14189 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 15:14:00 +00:00
2d80d1e144
Fixes Cred Sourcing in report_auth_info() for post modules.
...
git-svn-id: file:///home/svn/framework3/trunk@14187 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 03:34:49 +00:00
28c2408fdd
handle better certain options that may use = sign
...
git-svn-id: file:///home/svn/framework3/trunk@14186 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-08 03:22:54 +00:00
e767214411
Fix: whitespaces, svn propset, author e-mail format
...
git-svn-id: file:///home/svn/framework3/trunk@14175 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-06 22:02:26 +00:00
b1d38a44a4
Clenaup
...
git-svn-id: file:///home/svn/framework3/trunk@14174 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-06 21:23:21 +00:00
70a64bf4db
Fix indent level and whitespace
...
git-svn-id: file:///home/svn/framework3/trunk@14170 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-05 23:18:30 +00:00
1272736b72
indent level fix
...
git-svn-id: file:///home/svn/framework3/trunk@14162 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 21:04:54 +00:00
a0aebe98bb
Adds the community submitted ePO database password post module
...
Did some minor code cleanup and replaced the hostname resolution with mubix's railgun
code to make the victim do the resolution. This should be more reliable.
Fixes #5210
git-svn-id: file:///home/svn/framework3/trunk@14160 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 20:15:14 +00:00
69193f9fe4
Some quick fixes to enum_cred_store
...
Fixes #5218
git-svn-id: file:///home/svn/framework3/trunk@14159 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 19:28:53 +00:00
07a41924a6
Added mubix's enum_termserv post module.
...
Fixes #5914
git-svn-id: file:///home/svn/framework3/trunk@14158 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 18:47:22 +00:00
057725450c
svn propset. fix author email format
...
git-svn-id: file:///home/svn/framework3/trunk@14154 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-04 08:16:36 +00:00
f23389390b
better handling of hosts with no USB History
...
git-svn-id: file:///home/svn/framework3/trunk@14153 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 22:59:39 +00:00
c7f0568769
Fix next vs return issue
...
git-svn-id: file:///home/svn/framework3/trunk@14149 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 18:34:30 +00:00
7091fc1eea
Adding mubix's post modules
...
Fixes #5916
Fixes #5913
Fixes #5915
git-svn-id: file:///home/svn/framework3/trunk@14148 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-03 03:00:51 +00:00
131ffe4ab2
Fixed inconsistencies in how data was being passed to report_auth_info(). The command dispatcher and filezilla
...
server cred module both used the accessor :ptype but report_auth_info looks for :type.
While ptype is what the db field is called, almsot everything else references :type so it is better
for consistency to keep everything at :type.
Fixes #5906
git-svn-id: file:///home/svn/framework3/trunk@14141 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-02 02:47:28 +00:00
4ab4a2cec7
fixes issues with with imvu, forgot the require statement.
...
git-svn-id: file:///home/svn/framework3/trunk@14140 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-01 21:50:06 +00:00
1b9a6bb20f
Fix :host key
...
git-svn-id: file:///home/svn/framework3/trunk@14130 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-31 19:50:22 +00:00
10dd6ff38e
Fix "TypeError can't convert String into Hash" when using report_note()
...
git-svn-id: file:///home/svn/framework3/trunk@14129 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-31 19:48:20 +00:00
f64893d305
Consistent naming
...
git-svn-id: file:///home/svn/framework3/trunk@14122 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-30 08:20:18 +00:00
f365050c6f
Keeping the style police happy =)
...
git-svn-id: file:///home/svn/framework3/trunk@14119 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-29 19:54:32 +00:00
47ea0d7b96
Added WlanAPI Post modules. These will probably get an upgrade in the future pending some Railgun improvements Chao-mu is working on.
...
Fixes #5598
git-svn-id: file:///home/svn/framework3/trunk@14118 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-29 19:32:45 +00:00
391f39d6a3
Fixes #5165
...
git-svn-id: file:///home/svn/framework3/trunk@14111 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-29 00:33:16 +00:00
292a1d087b
Fixes #4288
...
git-svn-id: file:///home/svn/framework3/trunk@14110 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-29 00:23:02 +00:00
b15f878b2f
Forgot to close out the registry hives when done. fixed now
...
git-svn-id: file:///home/svn/framework3/trunk@14100 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-28 18:00:10 +00:00
8be10d4abe
Added the IVMU password collector post module submitted in #5582
...
git-svn-id: file:///home/svn/framework3/trunk@14099 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-28 17:50:16 +00:00
ef808f20e8
Post module for enumerating on a host that is part of the domain domain members in its local groups, impersonation tokens of domain accounts and processes that run under domain accounts and on all cases checks if those domain accounts are part of the Domain Admins group
...
git-svn-id: file:///home/svn/framework3/trunk@14087 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-27 00:54:54 +00:00
b098257154
fixes a syntax error.
...
git-svn-id: file:///home/svn/framework3/trunk@14053 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-24 22:43:27 +00:00
587f0fb4d6
This picasa module steals passwords, therefore should go to the credentials section
...
git-svn-id: file:///home/svn/framework3/trunk@14045 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-24 05:09:47 +00:00
ef5d3e1d02
Added more messages for the different stages in case a problems happens to better pinpoint it.
...
git-svn-id: file:///home/svn/framework3/trunk@14039 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-24 01:12:38 +00:00
f2e4278307
Fixed problems when running in x64 with a x64 payload
...
git-svn-id: file:///home/svn/framework3/trunk@14038 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-23 23:47:54 +00:00
70c4061c64
These are the "myca" modules by Nick Freeman. Feature #5503
...
git-svn-id: file:///home/svn/framework3/trunk@14037 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-23 17:17:32 +00:00
62c8c6ea9f
big msftidy pass, ping me if there are issues
...
git-svn-id: file:///home/svn/framework3/trunk@14034 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-23 11:56:13 +00:00
75a1b18690
Persistence Meterpreter script re-wrote and optimized in to post module
...
git-svn-id: file:///home/svn/framework3/trunk@14010 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-19 22:09:29 +00:00
9329203eb9
Added payload selection and architecture check of payload for Windows Service PE output
...
git-svn-id: file:///home/svn/framework3/trunk@14008 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-19 22:08:23 +00:00
88dbc6adee
Accidental assignment
...
git-svn-id: file:///home/svn/framework3/trunk@14005 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-19 13:04:40 +00:00
a5dc422f9a
Windows Credential Store enumeration and decryption module by Kx499
...
git-svn-id: file:///home/svn/framework3/trunk@14000 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-18 23:25:28 +00:00
975cc52bac
Fix spelling errors
...
git-svn-id: file:///home/svn/framework3/trunk@13983 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-18 00:54:05 +00:00
6e3b36e142
path could be nil but only checked using empty?. Defaulting value to ''
...
git-svn-id: file:///home/svn/framework3/trunk@13979 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 16:35:53 +00:00
87ec1c390e
We caught a problem with the module timing out (execution expired), this is an attempt to handle that more gracefully.
...
git-svn-id: file:///home/svn/framework3/trunk@13977 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 15:38:09 +00:00
bbfbb38a5f
wording fix.
...
git-svn-id: file:///home/svn/framework3/trunk@13973 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 08:56:07 +00:00
c336d063da
Mostly file format (unix linefeeds) and File.open() calls using binary. Fixed ranking for mozilla_nstreerange and disclosure and BID # for tugzip.
...
git-svn-id: file:///home/svn/framework3/trunk@13971 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 04:20:53 +00:00
3c36b0c975
Msftidy: knocking out all those trailing spaces. Screw those guys.
...
git-svn-id: file:///home/svn/framework3/trunk@13967 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 03:49:49 +00:00
4c6a1923e7
Fix bug #5687
...
git-svn-id: file:///home/svn/framework3/trunk@13966 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 03:32:43 +00:00
6194486a4c
Fix bug #5689 (it needs a 'rescue' in order to catch an exception)
...
git-svn-id: file:///home/svn/framework3/trunk@13965 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 03:27:58 +00:00
d159937df6
If you don't have a 'rescue', you're not really catching an exception
...
git-svn-id: file:///home/svn/framework3/trunk@13964 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 03:25:12 +00:00
ea2c9d1a46
Adding missing Id and Rev SVN keywords.
...
git-svn-id: file:///home/svn/framework3/trunk@13961 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 01:27:28 +00:00
6e6b5aa926
Apply fixes by jabra
...
git-svn-id: file:///home/svn/framework3/trunk@13960 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-17 00:21:37 +00:00
6620476744
More consistency fixes for modules titles
...
git-svn-id: file:///home/svn/framework3/trunk@13932 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-15 19:41:40 +00:00
8fd0fdf979
Consistency for manage modules
...
git-svn-id: file:///home/svn/framework3/trunk@13931 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-15 19:40:23 +00:00
bc986e82d4
Fix the title for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@13930 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-15 19:39:30 +00:00
4b9346e40e
Switching my BSD modules to MSF_LICENSE to make life easier. Resistance is Futile! Assimilate!
...
git-svn-id: file:///home/svn/framework3/trunk@13925 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-14 23:29:52 +00:00
c0910add22
keywords
...
git-svn-id: file:///home/svn/framework3/trunk@13920 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-14 02:44:30 +00:00
e4ce0bcb42
Added additional product keys
...
git-svn-id: file:///home/svn/framework3/trunk@13919 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-14 02:42:54 +00:00
b019f70d72
Post Module for injecting Windows Payloads in to memory works with x86 and x64 payloads and processes.
...
git-svn-id: file:///home/svn/framework3/trunk@13896 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-12 23:18:07 +00:00
ab8b8802b5
issue with none domain machines fixed and added host resolution and reporting on domain controller using some of Mubix railgun fu
...
git-svn-id: file:///home/svn/framework3/trunk@13895 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-12 23:15:07 +00:00
460353fec4
Migrate to process what? :-)
...
git-svn-id: file:///home/svn/framework3/trunk@13883 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-12 00:01:25 +00:00
9a00527114
Check nil
...
git-svn-id: file:///home/svn/framework3/trunk@13881 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 21:57:20 +00:00
39049a71ca
Chk nil for user in case it returns nil, but password doesn't
...
git-svn-id: file:///home/svn/framework3/trunk@13880 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 21:55:30 +00:00
f1f1d16f8b
handle possible nil return value
...
git-svn-id: file:///home/svn/framework3/trunk@13879 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 21:01:22 +00:00
4a73a21277
registry_getvaldata might return nil due to a RequestError. Need to handle those before printing the values.
...
git-svn-id: file:///home/svn/framework3/trunk@13878 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 20:27:52 +00:00
d49ffd3fc8
Fix naming style, and some other format problems.
...
git-svn-id: file:///home/svn/framework3/trunk@13877 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 20:08:11 +00:00
60296e9cf2
Change naming style for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@13876 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 20:03:40 +00:00
2d3a431fc2
FTP Navigator post module (Feature #5419 )
...
git-svn-id: file:///home/svn/framework3/trunk@13869 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 05:45:03 +00:00
be4f473cfa
Rename meebo for consistency
...
git-svn-id: file:///home/svn/framework3/trunk@13866 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-11 00:38:50 +00:00
50d4e85c57
"bug" #5583 - Dyn-DNS client password extractor
...
git-svn-id: file:///home/svn/framework3/trunk@13863 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-10 21:41:36 +00:00
43e6b3066b
Fix errant spaces, closes #5666 , thanks jjarmoc!
...
git-svn-id: file:///home/svn/framework3/trunk@13858 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-10 21:07:55 +00:00
e1e74de44a
Add enum_ie.rb (feature #5251 )
...
git-svn-id: file:///home/svn/framework3/trunk@13834 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-07 21:02:05 +00:00
15432fa2f5
Fix misspelled word
...
git-svn-id: file:///home/svn/framework3/trunk@13826 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-07 00:31:28 +00:00
1aa5deca43
Updated migrate post module for Meterpreter adding support automatically creating a process with the proper architecture to migrate to and added support to kill original process.
...
git-svn-id: file:///home/svn/framework3/trunk@13825 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-07 00:22:27 +00:00
c97fc2c683
Fix typo
...
git-svn-id: file:///home/svn/framework3/trunk@13816 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-04 21:05:37 +00:00
3398b9fa0b
Add add_user_domain
...
git-svn-id: file:///home/svn/framework3/trunk@13813 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-04 15:50:12 +00:00
5cf6ddc322
Add Windows enum domain post module
...
git-svn-id: file:///home/svn/framework3/trunk@13812 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-03 21:05:54 +00:00
d1a0a66a9d
Add post module enum domain admin tokens (by jabra)
...
git-svn-id: file:///home/svn/framework3/trunk@13804 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-29 08:18:13 +00:00
99d86fc9b7
Adds recording screenshots to disk in non-clobbering way
...
git-svn-id: file:///home/svn/framework3/trunk@13798 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-27 15:26:03 +00:00
de9e99bd3d
Fix some TOCTOU confusion and database errors.
...
git-svn-id: file:///home/svn/framework3/trunk@13779 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-23 15:12:19 +00:00
1d2ddc55e8
Add UI for PXE attack reset.
...
git-svn-id: file:///home/svn/framework3/trunk@13753 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-18 20:44:16 +00:00
c1446fa4d7
Migration of wmic script to post module
...
git-svn-id: file:///home/svn/framework3/trunk@13725 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-12 23:33:09 +00:00
b7ed699abf
Avoid using session.sock.peerhost to set host in reporting since this will return nil when working thru a pivot, use the address returned by session.tunnel_peer instead
...
git-svn-id: file:///home/svn/framework3/trunk@13716 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-11 03:10:14 +00:00
fafa615d46
Adds store_loot support for cached credentials
...
git-svn-id: file:///home/svn/framework3/trunk@13712 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-09 18:43:59 +00:00
e31acef6e9
whitespace cleanup
...
git-svn-id: file:///home/svn/framework3/trunk@13702 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-07 15:30:08 +00:00
eae3f97bfe
Should have deleted this. The replacement for it is enum_devices.rb
...
git-svn-id: file:///home/svn/framework3/trunk@13692 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-04 17:22:50 +00:00
3260721d6f
Add post module that retrieves MS product key
...
git-svn-id: file:///home/svn/framework3/trunk@13686 4d416f70-5f16-0410-b530-b9f4589650da
2011-09-03 04:16:42 +00:00
6de16f055a
Fix formating problem when saving to file
...
git-svn-id: file:///home/svn/framework3/trunk@13671 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-31 17:20:16 +00:00
160e473943
Minor style tweaks
...
git-svn-id: file:///home/svn/framework3/trunk@13653 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-29 00:59:21 +00:00
d2e0060417
Ruby is not Python
...
git-svn-id: file:///home/svn/framework3/trunk@13652 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-29 00:26:42 +00:00
6146d0ab0f
remove some extra whitespace
...
git-svn-id: file:///home/svn/framework3/trunk@13651 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-28 22:40:32 +00:00
57814c4012
Add nbd_server post module and move forensics modules into a seperate directory
...
git-svn-id: file:///home/svn/framework3/trunk@13650 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-28 22:38:59 +00:00
6853221762
Fixes #5313 by adding logging support to pivoted PXE attacks, and displaying results as the module runs.
...
git-svn-id: file:///home/svn/framework3/trunk@13646 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-27 15:46:49 +00:00
052feebc29
Adds Google Picasa Password Extractor Post module
...
git-svn-id: file:///home/svn/framework3/trunk@13643 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-26 18:32:42 +00:00
3b32e28e0f
Converting the ACTION datastore to the CMD datastore to avoid confusion with an :action attribute.
...
git-svn-id: file:///home/svn/framework3/trunk@13635 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-25 15:56:10 +00:00
06c3dabe31
Fixes #5312 for pivoted PXE attacks.
...
git-svn-id: file:///home/svn/framework3/trunk@13634 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-25 02:07:35 +00:00
110094de1b
Post module for gathering Autologin User Credentials by Myo Soe
...
git-svn-id: file:///home/svn/framework3/trunk@13608 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-22 00:37:09 +00:00
3792a8f4b7
Added enum_dirperms post module
...
git-svn-id: file:///home/svn/framework3/trunk@13603 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-21 05:58:38 +00:00
db57999246
Reverse lookup module using Railgun, written by Mubix
...
git-svn-id: file:///home/svn/framework3/trunk@13594 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-20 01:23:24 +00:00
c77dfcc48e
fixes #5232 Add DLL definition for crypt32. I removed a custom add too
...
git-svn-id: file:///home/svn/framework3/trunk@13560 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-14 21:08:55 +00:00
20df63a94e
enum_pci_devices.rb is now enum_devices.rb because it enums more than just PCI info
...
git-svn-id: file:///home/svn/framework3/trunk@13559 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-14 00:36:06 +00:00
ca569ef26f
Apply changes to enum more items
...
git-svn-id: file:///home/svn/framework3/trunk@13558 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-14 00:34:03 +00:00
8b72de1af6
Cosmetic
...
git-svn-id: file:///home/svn/framework3/trunk@13557 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-13 16:51:49 +00:00
a1fdb3063f
move credential collection modules to the new dir structure
...
git-svn-id: file:///home/svn/framework3/trunk@13529 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-11 18:18:48 +00:00
1c008f3996
Add Meebo Notifier Password Collection post module by silent_dream
...
git-svn-id: file:///home/svn/framework3/trunk@13526 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-11 17:06:56 +00:00
ad941c67ad
move the password-stealing modules into their own directory
...
git-svn-id: file:///home/svn/framework3/trunk@13512 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-10 17:48:30 +00:00
89bc8ce10a
Apply patch by David Maloney
...
git-svn-id: file:///home/svn/framework3/trunk@13504 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-10 01:42:59 +00:00
9564d33c44
add proper require, fixes startup errors
...
git-svn-id: file:///home/svn/framework3/trunk@13501 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-09 19:24:37 +00:00
ca14e50290
fix syntax errors in 1.9+ Ruby is not python.
...
git-svn-id: file:///home/svn/framework3/trunk@13500 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-09 19:21:33 +00:00
b17248c911
Add forensic modules from Wesley McGrew
...
git-svn-id: file:///home/svn/framework3/trunk@13499 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-09 16:49:12 +00:00
b2733c04db
More PXE dust for extra magic!
...
git-svn-id: file:///home/svn/framework3/trunk@13493 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-05 17:10:27 +00:00
5dc78a8b00
Made SETPASS and advanced option
...
git-svn-id: file:///home/svn/framework3/trunk@13492 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-04 23:34:40 +00:00
3982cf51b4
run_as Post Module by Keith Faber
...
git-svn-id: file:///home/svn/framework3/trunk@13491 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-04 23:29:43 +00:00
dca3aa9d6a
Remove null bytes from passwords returned
...
git-svn-id: file:///home/svn/framework3/trunk@13478 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-03 00:48:35 +00:00
1373d1043d
Indent level fix
...
git-svn-id: file:///home/svn/framework3/trunk@13477 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-02 22:42:26 +00:00
5db12c65eb
Avoid trying to decode empty passwords
...
git-svn-id: file:///home/svn/framework3/trunk@13476 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-02 21:46:51 +00:00
e231ac7681
Name change
...
git-svn-id: file:///home/svn/framework3/trunk@13474 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-02 21:35:06 +00:00
1b326839c9
Consistent naming style
...
git-svn-id: file:///home/svn/framework3/trunk@13456 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 19:16:00 +00:00
2078b874af
Wrong order. Should check nil first, and then ""
...
git-svn-id: file:///home/svn/framework3/trunk@13454 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 19:02:40 +00:00
c59a51667d
return value for registry_enumkeys() should be checked
...
git-svn-id: file:///home/svn/framework3/trunk@13453 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 18:55:38 +00:00
9d1bcc2cb2
return value from registry_enumkeys should be checked
...
git-svn-id: file:///home/svn/framework3/trunk@13452 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 18:52:19 +00:00
50c9bc83cf
Name change
...
git-svn-id: file:///home/svn/framework3/trunk@13451 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 18:47:11 +00:00
ea2326fc3c
Get the actual order right
...
git-svn-id: file:///home/svn/framework3/trunk@13450 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 18:28:46 +00:00
730e41263f
Consistent naming
...
git-svn-id: file:///home/svn/framework3/trunk@13445 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 06:17:00 +00:00
14dfc34930
This time should fix the issue with ruby 1.8 vs 1.9
...
git-svn-id: file:///home/svn/framework3/trunk@13444 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 05:40:08 +00:00
7ff785f886
syntax change to make ruby 1.8 and 1.9 happy
...
git-svn-id: file:///home/svn/framework3/trunk@13443 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 05:05:26 +00:00
2b912e3b4a
add rob and cg's awesome smartlocker (now known as lockout_keylogger) as a post module, fixes #5105
...
git-svn-id: file:///home/svn/framework3/trunk@13429 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 18:50:24 +00:00
49fb90b835
Service enumeration module by Keith Faber
...
git-svn-id: file:///home/svn/framework3/trunk@13423 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 15:11:52 +00:00
973c6fdfc7
Change where print_good() is used.
...
git-svn-id: file:///home/svn/framework3/trunk@13406 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 06:26:22 +00:00
a64e223062
Indentation fix, and svn propset
...
git-svn-id: file:///home/svn/framework3/trunk@13401 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 02:17:54 +00:00
625f8c8591
Add Trillian Instant Messenger password decoder (post module)
...
git-svn-id: file:///home/svn/framework3/trunk@13400 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 02:14:59 +00:00
5d38a47fc6
Indentation fix for metadata
...
git-svn-id: file:///home/svn/framework3/trunk@13399 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 01:29:15 +00:00
b6c09d17a9
creds shouldn't have to re-initialize all the time
...
git-svn-id: file:///home/svn/framework3/trunk@13398 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 01:22:00 +00:00
e7622da121
Better use of print_good()
...
git-svn-id: file:///home/svn/framework3/trunk@13397 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 01:19:33 +00:00
7e01518b69
Minor indentation fix
...
git-svn-id: file:///home/svn/framework3/trunk@13396 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 01:18:02 +00:00
c07a891476
Add Nimbuzz Instant Messenger post module
...
git-svn-id: file:///home/svn/framework3/trunk@13395 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-29 01:14:03 +00:00
1d879e39df
Added patch from thelightcosine for profile mixin
...
git-svn-id: file:///home/svn/framework3/trunk@13393 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 22:56:40 +00:00
f0877e1c5b
Applied patch from lightcosine for profile mixin, minor fixes and some code standard changes
...
git-svn-id: file:///home/svn/framework3/trunk@13386 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 12:35:50 +00:00
f685e179cd
Do not error if time can not be obtained
...
git-svn-id: file:///home/svn/framework3/trunk@13383 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 21:31:21 +00:00
2a6b9957d0
fixed problem with the command execution
...
git-svn-id: file:///home/svn/framework3/trunk@13377 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 19:37:43 +00:00
eedc77e2ba
fixed problem where it looped when ran as system
...
git-svn-id: file:///home/svn/framework3/trunk@13370 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 15:44:29 +00:00
5b7a8ad6a3
Fix a stack trace when loading sqlite gem
...
git-svn-id: file:///home/svn/framework3/trunk@13369 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 15:35:35 +00:00
f3fecacc0f
Fix bug #5066
...
git-svn-id: file:///home/svn/framework3/trunk@13366 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 14:38:19 +00:00
3b85b2d08b
check for empty keys returning nil
...
git-svn-id: file:///home/svn/framework3/trunk@13364 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 13:51:37 +00:00
49d1bbe9d2
make sure nil is not returned for systems with no share history
...
git-svn-id: file:///home/svn/framework3/trunk@13361 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 13:14:11 +00:00
41f72deee2
Add PCI devices enum post module
...
git-svn-id: file:///home/svn/framework3/trunk@13358 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 04:53:14 +00:00
c41d60ab1b
Description clean up and a tiny bit of whitespace changes. Also changed one use of eql?() to == since that's nearly always better, says me.
...
git-svn-id: file:///home/svn/framework3/trunk@13357 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 02:39:49 +00:00
eced6619e9
I believe I meant 'next', not 'break'
...
git-svn-id: file:///home/svn/framework3/trunk@13344 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 16:25:42 +00:00
f15dc33ae6
Add store_loot feature
...
git-svn-id: file:///home/svn/framework3/trunk@13343 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 01:49:51 +00:00
4135572816
i don't like giving up based on matching platform since it means we have to rewrite stuff if those APIs ever get implemented in posix, but for now it prevents stack traces
...
git-svn-id: file:///home/svn/framework3/trunk@13341 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 00:21:21 +00:00
4793cd9aed
ugh, I gots to fix my Engrish
...
git-svn-id: file:///home/svn/framework3/trunk@13340 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-25 22:55:40 +00:00
d56ba5d645
Add Ipswitch iMail user data enumeration post module
...
git-svn-id: file:///home/svn/framework3/trunk@13339 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-25 22:44:51 +00:00
e0430ee69b
Remote the Post::File mixin its not needed
...
git-svn-id: file:///home/svn/framework3/trunk@13335 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-25 15:29:18 +00:00
2ed6d1e0ac
report_auth_info() should not be used because we're not storing host IP
...
git-svn-id: file:///home/svn/framework3/trunk@13298 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 23:09:04 +00:00
21aae8f749
Exercising my author e-mail format dictatorship for some of the win gather post mods
...
git-svn-id: file:///home/svn/framework3/trunk@13296 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 20:09:26 +00:00
38638a2daf
Internet Download Manager password decoder by Silent Dream
...
git-svn-id: file:///home/svn/framework3/trunk@13295 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 19:55:20 +00:00
253f656b07
fixes #4751 "New Post Module: SmartFTP Password Extraction." Brought to us by thelightcosine/David Maloney. Thank you for such a fantastic module!
...
git-svn-id: file:///home/svn/framework3/trunk@13289 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-21 21:44:58 +00:00
86644e4941
fix typos
...
git-svn-id: file:///home/svn/framework3/trunk@13256 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-20 03:02:15 +00:00
f544b85d47
Post module that selects the best method to safely dump hashes depending on the Windows Version, permission and role, will normalize the data returned by the lsass injection method and accounts names with none ASCII chars.
...
git-svn-id: file:///home/svn/framework3/trunk@13246 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 22:25:07 +00:00
866d250178
Fixed double output being saved
...
git-svn-id: file:///home/svn/framework3/trunk@13243 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 21:52:38 +00:00
c066ee0a90
no need for railgun_setup
...
git-svn-id: file:///home/svn/framework3/trunk@13230 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 18:05:59 +00:00
6e8992acaf
no need for VERBOSE using vprint_status
...
git-svn-id: file:///home/svn/framework3/trunk@13228 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 17:40:19 +00:00
Rob Fuller
RageLtMan
HD Moore
David Maloney
sinn3r
Tod Beardsley
Stephen Haywood
Dave Hull
sinn3r
chao-mu
James Lee
andurin
Tod Beardsley
Marcus J. Carey
Carlos Perez
Mario Ceballos
Joshua Drake
Jonathan Cran
Chao Mu
David Rude
Matt Weeks
James Lee