Commit Graph

4912 Commits (ff83f1cd2f2d4bcd62dbbec093d37e5e7a390392)

Author SHA1 Message Date
Joshua Drake ff83f1cd2f add ranking to every exploit module, pfew!
git-svn-id: file:///home/svn/framework3/trunk@7724 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-06 05:50:37 +00:00
Joshua Drake 2cf9c3ce2b revision fixups
git-svn-id: file:///home/svn/framework3/trunk@7723 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-06 05:16:11 +00:00
Joshua Drake 17249f29d3 cve roulette also cve-2009-4054
git-svn-id: file:///home/svn/framework3/trunk@7722 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-06 05:00:06 +00:00
HD Moore 72fa415fd1 Fixes #629 by handling error conditions with a APIError exception
git-svn-id: file:///home/svn/framework3/trunk@7721 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-06 04:16:24 +00:00
Joshua Drake 619f82a420 ugh, rh6.1 isn't vulnerable either
git-svn-id: file:///home/svn/framework3/trunk@7720 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-06 03:42:37 +00:00
Joshua Drake 576d55f821 added some missing CVE references
git-svn-id: file:///home/svn/framework3/trunk@7719 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-06 02:30:42 +00:00
Joshua Drake b35928ba19 typo fix
git-svn-id: file:///home/svn/framework3/trunk@7718 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 23:35:26 +00:00
Mario Ceballos f55d2202c3 renamed and cleaned up.
git-svn-id: file:///home/svn/framework3/trunk@7717 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 14:40:42 +00:00
Mario Ceballos ad4ab0d5ad renamed and fixed description.
git-svn-id: file:///home/svn/framework3/trunk@7716 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 14:30:22 +00:00
Mario Ceballos 9afd42de81 renamed and fixed description.
git-svn-id: file:///home/svn/framework3/trunk@7715 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 14:24:36 +00:00
Mario Ceballos 8ada83595d cleaned up a bit.
git-svn-id: file:///home/svn/framework3/trunk@7714 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 14:18:24 +00:00
Mario Ceballos b731291878 cleaned up name and description.
git-svn-id: file:///home/svn/framework3/trunk@7713 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 14:14:23 +00:00
HD Moore 12e8c97a97 Fixes #612. This adds an alternative syntax for nexpose_connect for when the password contains a ':' or an '@'
git-svn-id: file:///home/svn/framework3/trunk@7712 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 13:54:42 +00:00
HD Moore 42e6486fb4 Module loading broken again by revision r7709.
git-svn-id: file:///home/svn/framework3/trunk@7711 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-05 11:10:46 +00:00
Mario Ceballos 3358b9113f removed writing to a file. only print if get a hit.
git-svn-id: file:///home/svn/framework3/trunk@7710 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 23:54:14 +00:00
Mario Ceballos 43f65b2851 fix for the NLS_LANG issue. (rory)
git-svn-id: file:///home/svn/framework3/trunk@7709 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 23:01:54 +00:00
HD Moore 2c92856612 Fixes #604. This fixes a long-standing race condition with meterpreter channels that received data as soon as they were open (TCP).
git-svn-id: file:///home/svn/framework3/trunk@7708 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 21:08:34 +00:00
James Lee a96a23f95c add cidr parsing for ipv6
git-svn-id: file:///home/svn/framework3/trunk@7707 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 20:17:28 +00:00
James Lee 1e6b6b3d62 fix ipv6 handling for single addresses
git-svn-id: file:///home/svn/framework3/trunk@7706 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 19:55:58 +00:00
James Lee 5952e29040 modify address range specification (for e.g. RHOSTS) to use nmap notation, fixes #182
git-svn-id: file:///home/svn/framework3/trunk@7705 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 19:37:14 +00:00
Joshua Drake 0458622cb7 attempt to persist left over data across calls
git-svn-id: file:///home/svn/framework3/trunk@7704 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 19:20:14 +00:00
James Lee ee0c1d460a remove the lock that was causing segfaults on 1.9; fixes #513, see #514
git-svn-id: file:///home/svn/framework3/trunk@7703 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 19:16:28 +00:00
Joshua Drake d93be3e873 typo in description
git-svn-id: file:///home/svn/framework3/trunk@7702 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 18:46:45 +00:00
HD Moore 9b2d5fcd24 Fixes #605 by re-raising the correct exception class
git-svn-id: file:///home/svn/framework3/trunk@7701 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 18:38:59 +00:00
HD Moore 8a186921e7 Rebuilt Stephen's changes locally, including the sniffer extension
git-svn-id: file:///home/svn/framework3/trunk@7700 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 17:54:01 +00:00
Stephen Fewer 10d9105708 Initial commit of the multi-threaded meterpreter binaries. Only x86 today (minus the sniffer extension), x64 will follow next Monday.
git-svn-id: file:///home/svn/framework3/trunk@7699 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 17:39:32 +00:00
Stephen Fewer a273c9f07c Initial commit of the multi-threaded meterpreter.
git-svn-id: file:///home/svn/framework3/trunk@7698 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 17:37:21 +00:00
Stephen Fewer a544d71f4e A few small changes to the ruby side of meterpreters packet dispatcher stuff. Allow for blocking a request indefinatly and add in a new command 'wait' to stdapi.sys.process.
git-svn-id: file:///home/svn/framework3/trunk@7697 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 17:32:56 +00:00
HD Moore fda1083d13 Stop throwing an exception on module initialization, delay this until connect() to avoid breaking module enumeration tools. Clean up the tabs and indents. Delete the broken rescue clause with no begin
git-svn-id: file:///home/svn/framework3/trunk@7696 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 17:22:32 +00:00
Joshua Drake 5c271db9b5 add OSVDB reference from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@7695 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 15:52:20 +00:00
HD Moore 8aef3d560c Fixes #579
git-svn-id: file:///home/svn/framework3/trunk@7694 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 11:35:24 +00:00
Joshua Drake e8e98b9be6 add exploit module for cve-2000-0573
git-svn-id: file:///home/svn/framework3/trunk@7693 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 07:50:53 +00:00
Joshua Drake 821f515ff5 add PrependChrootBreak
git-svn-id: file:///home/svn/framework3/trunk@7692 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 07:49:05 +00:00
Joshua Drake 4ab9a59a39 now supporting sequential identical values!
git-svn-id: file:///home/svn/framework3/trunk@7691 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 07:45:08 +00:00
Mario Ceballos 80422f24c4 added exploit module ca_arcserve_342.rb
git-svn-id: file:///home/svn/framework3/trunk@7690 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 02:55:00 +00:00
HD Moore facebbc791 allow module search to continue even if one module fails to load
git-svn-id: file:///home/svn/framework3/trunk@7689 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-04 01:00:48 +00:00
Mario Ceballos 93d02320cf updated oracle mixin and adjusted affected modules. now compatible with ruby 1.8 and 1.9
git-svn-id: file:///home/svn/framework3/trunk@7688 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 23:57:02 +00:00
Joshua Drake d4f1314025 fixed problem reading long lines
git-svn-id: file:///home/svn/framework3/trunk@7687 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 21:52:59 +00:00
Joshua Drake 1d143a6ccf fix silly bug, sorry
git-svn-id: file:///home/svn/framework3/trunk@7686 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 21:11:56 +00:00
Joshua Drake d31d7f869f split buffer to array conversion out
git-svn-id: file:///home/svn/framework3/trunk@7685 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 20:58:07 +00:00
Joshua Drake 7aeb7a08b3 first attempt at support for ftp continuations
git-svn-id: file:///home/svn/framework3/trunk@7684 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 20:56:08 +00:00
HD Moore 9ebcd40a4e Updated references to work better with NeXpose integration
git-svn-id: file:///home/svn/framework3/trunk@7683 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 15:27:29 +00:00
HD Moore 63b087ad1c Adds a token hunter plugin for locating a specific user's credentials across many sesssions
git-svn-id: file:///home/svn/framework3/trunk@7682 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 15:27:07 +00:00
HD Moore b1b7ef0350 Improves the NeXpose plugin, adds the ability to do discovery outside of NeXpose and then scan the results using the database as input (-d).
git-svn-id: file:///home/svn/framework3/trunk@7681 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 15:26:30 +00:00
James Lee 8e0eef03c6 see #594. remove some extraneous junk, don't run the shell in a terminal (it dies immediately). space is the only badchar. still doesn't actually work without a modification to encoder/cmd/generic_sh.
git-svn-id: file:///home/svn/framework3/trunk@7680 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 09:09:56 +00:00
James Lee 8e5d2b98b0 prefer the echo encoder over the simpler and more error prone ifs encoder
git-svn-id: file:///home/svn/framework3/trunk@7679 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 08:39:22 +00:00
Patrick Webster a4fc468700 Handles exception where exec is a directory, or permission is denied.
git-svn-id: file:///home/svn/framework3/trunk@7678 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 08:17:14 +00:00
James Lee 5182d1c927 allow the Connection header to specify keep-alive in a less strict manner. this is more rfc2616 compliant and fixes #601
git-svn-id: file:///home/svn/framework3/trunk@7677 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 07:40:37 +00:00
HD Moore fc983ef7e3 Many bug fixes to db_autopwn, cross-referencing of OS-level vulnerabilities, small bug fixes to HTTP client API
git-svn-id: file:///home/svn/framework3/trunk@7676 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 01:36:17 +00:00
Joshua Drake b8302e6f61 changed default target
git-svn-id: file:///home/svn/framework3/trunk@7675 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-03 00:04:33 +00:00