infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,436 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

135 Commits (fa38a19ada13071060c1c5ce4b3974a1843e991a)

Author SHA1 Message Date
James Lee 07f1b6affb update to java meterpreter, now supports file search, thanks mihi! see #406 
git-svn-id: file:///home/svn/framework3/trunk@10295 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-11 17:55:10 +00:00
James Lee b453665e5f avoid infinite recursion when links cause circular directory paths by not following symlinks 
git-svn-id: file:///home/svn/framework3/trunk@10244 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-05 22:18:43 +00:00
James Lee 35fab7b5ae default to the current directory instead of failing 
git-svn-id: file:///home/svn/framework3/trunk@10243 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-05 22:08:05 +00:00
James Lee efeffe3185 add support for file search to php meterp 
git-svn-id: file:///home/svn/framework3/trunk@10242 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-05 21:49:48 +00:00
James Lee 9060ce379b add preliminary support for querying registry values when running on Windows 
git-svn-id: file:///home/svn/framework3/trunk@10241 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-05 20:54:32 +00:00
Joshua Drake 1bd084ff9f add posix meterpreter linux x86 binaries from philip 
git-svn-id: file:///home/svn/framework3/trunk@10223 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-02 16:56:47 +00:00
Stephen Fewer a0f86c62e3 Meterpreter search support to leverage the index on older systems (2000/XP/2003) via Windows Desktop Search v2. 
git-svn-id: file:///home/svn/framework3/trunk@10187 4d416f70-5f16-0410-b530-b9f4589650da
 2010-08-30 09:50:41 +00:00
Stephen Fewer aa6ef3615e ...and the bins for file searching. 
git-svn-id: file:///home/svn/framework3/trunk@10166 4d416f70-5f16-0410-b530-b9f4589650da
 2010-08-27 14:45:36 +00:00
Stephen Fewer 49d34d048f ...and the bins 
git-svn-id: file:///home/svn/framework3/trunk@10054 4d416f70-5f16-0410-b530-b9f4589650da
 2010-08-19 11:35:17 +00:00
James Lee ec1db10fa3 stupid missing files. /me grumbles 
git-svn-id: file:///home/svn/framework3/trunk@9975 4d416f70-5f16-0410-b530-b9f4589650da
 2010-08-09 17:49:01 +00:00
James Lee 4a5f800064 i swear i added this before. 
git-svn-id: file:///home/svn/framework3/trunk@9973 4d416f70-5f16-0410-b530-b9f4589650da
 2010-08-09 16:18:35 +00:00
James Lee 02167b8d16 move the stdapi constants into the stdapi extension to save a little space when php meterpreter is standalone 
git-svn-id: file:///home/svn/framework3/trunk@9939 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-27 21:16:15 +00:00
James Lee 8de510f914 add udp support for tunneling. tested with udp_probe 
git-svn-id: file:///home/svn/framework3/trunk@9816 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-13 22:51:15 +00:00
HD Moore 30d3440b5d New bins, implements the server side of multi-call railgun 
git-svn-id: file:///home/svn/framework3/trunk@9806 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-13 19:19:21 +00:00
Stephen Fewer a47ced6ac4 Partial solution for #1448. Fall back to CreateProcessWithTokenW when CreateProcessAsUser fails with ERROR_PRIVILEGE_NOT_HELD. While only available on 2003 and above this works on my server 2008 test case which was failing before. 
git-svn-id: file:///home/svn/framework3/trunk@9781 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-11 18:36:57 +00:00
Stephen Fewer 7a57ca57a6 Bug fix for a misplaced & in call to DestroyEnvironmentBlock() during process_execute(), was causing a hang on Vista and an Access Violation on server 2008. 
git-svn-id: file:///home/svn/framework3/trunk@9779 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-11 16:37:50 +00:00
HD Moore d3a6418e53 Revert changes to elevate, still not getting around restrictions on primary token creation, needs a deeper look 
git-svn-id: file:///home/svn/framework3/trunk@9759 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-09 21:59:31 +00:00
HD Moore 3d01172af5 Binaries for the previous commit 
git-svn-id: file:///home/svn/framework3/trunk@9757 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-09 21:41:06 +00:00
HD Moore ec9156827e Switch the elevator methods to DuplicateHandleEx to get a primary token 
git-svn-id: file:///home/svn/framework3/trunk@9755 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-09 21:23:05 +00:00
HD Moore 29f9f6671e This *should* fix all cases where execute -t would fail to use an impersonated token 
git-svn-id: file:///home/svn/framework3/trunk@9754 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-09 19:32:51 +00:00
HD Moore 972e7bc282 Clean up some of the token impersonation code around process execution 
git-svn-id: file:///home/svn/framework3/trunk@9751 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-09 18:54:20 +00:00
James Lee 114ca4e535 replace / and \ with the current system's directory separator so it doesn't matter what the user types 
git-svn-id: file:///home/svn/framework3/trunk@9727 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-07 20:40:19 +00:00
HD Moore 38d15c016d Rebuilds of meterpreter, including x64 
git-svn-id: file:///home/svn/framework3/trunk@9716 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-07 16:47:35 +00:00
HD Moore ce1116e622 Add railgun binary 
git-svn-id: file:///home/svn/framework3/trunk@9711 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-07 16:29:55 +00:00
HD Moore e34bbc281a Merge railgun binary and new builds 
git-svn-id: file:///home/svn/framework3/trunk@9710 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-07 16:29:37 +00:00
James Lee 2638153f46 abstract connect out into it's own function 
git-svn-id: file:///home/svn/framework3/trunk@9617 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-25 00:39:48 +00:00
James Lee c9c3e806a5 use $GLOBALS instead of assuming vars declared outside of a function will be global. allows it to work inside a create_function() eval 
git-svn-id: file:///home/svn/framework3/trunk@9597 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-23 22:38:01 +00:00
James Lee c3d183c98d split stadpi out into an extension, add a reverse_tcp stager, make the main meterpreter stage-aware so it will work as a standalone or eval'd by a stager that sets $msgsock and $msgsock_type; see #2128 
git-svn-id: file:///home/svn/framework3/trunk@9594 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-23 20:00:27 +00:00
James Lee 998509529c don't consider compression when looking for a tlv 
git-svn-id: file:///home/svn/framework3/trunk@9527 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-15 17:55:37 +00:00
James Lee dacd38c49c consolidate debugging functions in the file 
git-svn-id: file:///home/svn/framework3/trunk@9517 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-15 00:33:24 +00:00
James Lee 7498c30b30 replace $setsockopt with a function, remove unused hexdump function 
git-svn-id: file:///home/svn/framework3/trunk@9516 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-14 23:20:57 +00:00
James Lee e2740c9e2b watch stderr as well as stdout 
git-svn-id: file:///home/svn/framework3/trunk@9513 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-14 05:01:37 +00:00
James Lee a39a0df5dc shell interaction works in linux, still broken in windows. kill and ps work in windows now 
git-svn-id: file:///home/svn/framework3/trunk@9512 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-13 16:44:22 +00:00
James Lee 975e2c326e ps now works in windows by shelling out to tasklist.exe 
git-svn-id: file:///home/svn/framework3/trunk@9497 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-11 22:07:23 +00:00
James Lee d47ded220f overhaul socket handling to use fsockopen if socket_create isn't available. portfwd now works on default Windows and Ubuntu installs 
git-svn-id: file:///home/svn/framework3/trunk@9450 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-08 07:59:36 +00:00
James Lee f13417be08 stdapi is still in the base payload, but this file needs to exist 
git-svn-id: file:///home/svn/framework3/trunk@9446 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-07 17:00:47 +00:00
James Lee ff0af3fb5a turn off debug logging 
git-svn-id: file:///home/svn/framework3/trunk@9428 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-04 15:59:45 +00:00
James Lee 07ec574c3c fail if the socket couldn't connect 
git-svn-id: file:///home/svn/framework3/trunk@9427 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-04 15:28:11 +00:00
James Lee b23696a916 Woot, portfwd works. 
git-svn-id: file:///home/svn/framework3/trunk@9418 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-04 02:43:17 +00:00
James Lee c068e8e6dc standardize whitespace 
git-svn-id: file:///home/svn/framework3/trunk@9413 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-03 23:18:21 +00:00
James Lee 5c87771a89 basic client sockets, connect and write work 
git-svn-id: file:///home/svn/framework3/trunk@9404 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-03 04:45:48 +00:00
James Lee e4e2bc61a4 break out of the main loop when we get eof (or any other area) on the main socket. fixes infinite loop in the server when client exits 
git-svn-id: file:///home/svn/framework3/trunk@9402 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-03 00:24:55 +00:00
James Lee 975b207710 switch debug logging to the webserver error_log for easier perusement; add fs_stat which fixes downloads; only return success from delete_file if it actually deleted the file 
git-svn-id: file:///home/svn/framework3/trunk@9399 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-02 22:43:03 +00:00
James Lee 4f0ee6d44c add support for deleting files 
git-svn-id: file:///home/svn/framework3/trunk@9398 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-02 18:36:14 +00:00
James Lee cf4597df3f use posix_getuid if it exists 
git-svn-id: file:///home/svn/framework3/trunk@9397 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-02 18:08:09 +00:00
James Lee fe43e91bad initial commit of php meterpreter, see #391. upload, download, cd, pwd, ls, cat, sysinfo, getpid, and ps all work fine. 
* execute works with channel read/write but no interact yet
* getuid is weird, since php's get_current_user() and getmyuid() return the owner of the file instead of the running uid (wtf?)



git-svn-id: file:///home/svn/framework3/trunk@9393 4d416f70-5f16-0410-b530-b9f4589650da
 2010-06-02 08:28:39 +00:00
HD Moore c6c956ab46 Small patch to enable a new stager 
git-svn-id: file:///home/svn/framework3/trunk@8984 4d416f70-5f16-0410-b530-b9f4589650da
 2010-04-03 05:21:15 +00:00
Stephen Fewer edf030df53 ...and finally the bins! 
git-svn-id: file:///home/svn/framework3/trunk@8789 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-11 17:12:31 +00:00
Stephen Fewer 195d1ab4b8 Commit snojobs jpeg patch for espia with an x64 build and some minor changes on the ruby side (The 'screenshot' command is now 'screengrab' to avoid a future conflict with changes happening in stdapi). 
git-svn-id: file:///home/svn/framework3/trunk@8726 4d416f70-5f16-0410-b530-b9f4589650da
 2010-03-05 15:50:24 +00:00
Stephen Fewer 4ed9e71b76 Commit the meterpreter C side (and bins) for transparent zlib (zlib.c copied from the posix meterpreter source) compression of TLV's and channels. To use transparent compression with channels, create them with CHANNEL_FLAG_COMPRESS. To use transparent compression with any TLV value, bitwise or the TLV type with TLV_META_TYPE_COMPRESSED (Don't create the TLV type with TLV_META_TYPE_COMPRESSED as the compressed flag is removed on the remote end after compression). For consistency with the ruby side we could at a later stage add a boolean compress parameter to all the packet_add_tlv_* functions so you don't have to manually specify TLV_META_TYPE_COMPRESSED flag. 
git-svn-id: file:///home/svn/framework3/trunk@8515 4d416f70-5f16-0410-b530-b9f4589650da
 2010-02-16 14:56:24 +00:00