infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Metasploit Framework
43,271 Commits
7 Branches
556 Tags
419 MiB
Ruby 97.9%
C 0.8%
Python 0.4%
HTML 0.2%
JavaScript 0.2%
Other 0.1%
 
 
 
 
 
 
Go to file
RageLtMan d76616e8e8 Reverse and bind shells in R 
Initial implementation of bind and reverse TCP shells in R.
Supports IPv4 and 6, provides stateless sessions which wont change
the cwd when cd is invoked since each command invocation actually
spawns a pipe to execute that specific line's invocation.

R injections are common in academic software written in a hurry by
students or lab administrators. The language runtimes are also
commonly found adjacent to valuable data, and often used by teams
which are not directly responsible for information security.

Testing:
  Local testing with netcat bind and rev handlers.

TODO:
  Add the appropriate platform/language library definitions
 		2017-08-19 06:12:05 -04:00
.github Add documentation requirement to PR template 2017-04-05 10:03:05 -04:00
app Move shared example from pro into framework 2016-04-07 13:09:52 -05:00
config Land #6556, include Vagrant development environment provisioner 2016-06-09 09:55:37 -05:00
data unknow to unknown 2017-08-18 11:33:48 -04:00
db Bump version of framework to 4.13.11 2017-01-04 14:53:33 -08:00
docker update bundler before installing gems 2017-08-09 15:34:23 +02:00
documentation Update connect.md 2017-08-17 18:55:44 +08:00
external Land #8771, rewrite linux x64 stagers with Metasm 2017-08-14 02:32:29 -04:00
lib Bump version of framework to 4.15.8 2017-08-18 10:03:23 -07:00
modules Reverse and bind shells in R 2017-08-19 06:12:05 -04:00
plugins remove more instances of positive? 2017-08-02 12:47:34 -05:00
script kill cucumber in framework 2017-07-12 08:00:29 -05:00
scripts Fix references to multi_console_command 2017-08-06 18:58:38 -05:00
spec add OptFloat datastore option 2017-08-08 19:06:51 -05:00
test use https for metaploit.com links 2017-07-24 06:26:21 -07:00
tools rename decode methods as well, keep this working for ruby X.X 2017-08-17 03:27:12 -04:00
.dockerignore use https for metaploit.com links 2017-07-24 06:26:21 -07:00
.gitignore use https for metaploit.com links 2017-07-24 06:26:21 -07:00
.gitmodules Add RDI submodule, port Kitrap0d 2013-11-27 16:04:41 +10:00
.mailmap refine rageltman, add rwhitcroft 2016-12-22 00:58:58 -06:00
.rspec Add modern --require to .rspec 2014-10-08 10:55:40 -05:00
.rubocop.yml disable redundant return warning, update a couple others 2017-08-13 23:51:52 -04:00
.ruby-gemset Restoring ruby and gemset files 2014-05-20 10:17:00 -05:00
.ruby-version revert back to Ruby 2.4.1 2017-06-23 20:39:44 -05:00
.simplecov Remove fastlib 2014-09-18 15:24:21 -05:00
.travis.yml kill cucumber in framework 2017-07-12 08:00:29 -05:00
.yardopts update .yardopts 2014-07-24 13:59:04 -05:00
CODE_OF_CONDUCT.md Add individual contacts 2016-01-13 10:35:39 -06:00
CONTRIBUTING.md Add note about release notes to CONTRIBUTING.md 2016-08-22 15:15:22 -05:00
COPYING Updated COPYING 2017-01-17 12:36:26 +10:00
Gemfile unpin dnsruby, new release is out 2017-08-10 10:48:03 -05:00
Gemfile.local.example update Gemfile.local example, use Gemfile.local if it exists when bundling 2017-04-30 10:57:55 -05:00
Gemfile.lock Bump version of framework to 4.15.8 2017-08-18 10:03:23 -07:00
HACKING Update link for The Metasploit Development Environment 2014-07-15 10:16:47 -05:00
LICENSE move gem licenses to a separate auto-generated file 2017-04-07 11:49:58 -05:00
LICENSE_GEMS kill cucumber in framework 2017-07-12 08:00:29 -05:00
README.md Removed dead SourceForge link 2017-07-20 09:32:52 -05:00
Rakefile trying rspec-retry 2017-06-20 14:02:32 -05:00
Vagrantfile fix #8693, update Vagrant to latest rvm syntax 2017-07-10 21:41:50 -05:00
docker-compose.yml add timezone 2017-05-21 15:21:40 +02:00
metasploit-framework.gemspec Land #8769, improve style, compatibility, for ssh modules 2017-08-01 21:43:32 -05:00
msfconsole Move service stub in x86 encoder to be easily used. 2016-06-23 14:56:03 +02:00
msfd Initialize the DisableBanner option 2015-10-08 14:08:45 -05:00
msfrpc Change {} back to do/end 2015-03-09 00:00:49 -05:00
msfrpcd allow overriding the default timeout for a session 2015-05-01 15:04:55 -05:00
msfupdate update specs 2017-05-27 00:34:12 -05:00
msfvenom Removing unnecessary spaces 2017-05-04 10:41:02 -03:00

README.md

Metasploit Build Status Code Climate

The Metasploit Framework is released under a BSD-style license. See COPYING for more details.

The latest version of this software is available from: https://metasploit.com

Bug tracking and development information can be found at: https://github.com/rapid7/metasploit-framework

New bugs and feature requests should be directed to: https://r-7.co/MSF-BUGv1

API documentation for writing modules can be found at: https://rapid7.github.io/metasploit-framework/api

Questions and suggestions can be sent to: Freenode IRC channel or e-mail the metasploit-hackers mailing list

Installing

Generally, you should use the free installer, which contains all of the dependencies and will get you up and running with a few clicks. See the Dev Environment Setup if you'd like to deal with dependencies on your own.

Using Metasploit

Metasploit can do all sorts of things. The first thing you'll want to do is start msfconsole, but after that, you'll probably be best served by reading Metasploit Unleashed, the great community resources, or the wiki.

Contributing

See the Dev Environment Setup guide on GitHub, which will walk you through the whole process from installing all the dependencies, to cloning the repository, and finally to submitting a pull request. For slightly more information, see Contributing.