adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
43,178 Commits 27 Branches 1,043 Tags
0ac19087cd6015e596fff45a4ca1bed65afcc8ef
Commit Graph

43178 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Brent Cook 0ac19087cd Land #8720, add resiliency (retries + sleep) to linux x86 stagers 2017-08-08 19:36:47 -05:00
Brent Cook 4ca68a178b switch reverse_tcp stagers to all prefer StagerRetryCount 
This leaves ReverseConnectRetries as an alternate spelling.
 2017-08-08 19:27:00 -05:00
Brent Cook 83212b8b6b minor code cleanup 2017-08-08 19:26:59 -05:00
Brent Cook bca8e77163 add alias support for datastore options 2017-08-08 19:26:59 -05:00
Brent Cook b35d53bd02 code cleanup in opt_int while we're here 2017-08-08 19:06:51 -05:00
Brent Cook 47dc3772a7 add OptFloat datastore option 2017-08-08 19:06:51 -05:00
Brent Cook 331279d891 handle fractional seconds 2017-08-08 19:06:46 -05:00
tkmru a396d860e7 change SleepSeconds to StagerRetryWait 2017-08-08 19:26:24 +09:00
Pearce Barry f71ca924c4 Land #8801, Support padding on the CAN bus. 2017-08-06 21:03:28 -05:00
Pearce Barry e1576154fb Document the new padding option. 2017-08-06 18:34:56 -05:00
Pearce Barry cfd377fbd4 Support padding on the CAN bus. 
Also use a hash for passing options around instead of individual params.
 2017-08-06 18:05:59 -05:00
Metasploit 83cd0bc977 Bump version of framework to 4.15.6 2017-08-04 10:07:09 -07:00
Brent Cook 7ce813ae6e Land #8767, Add exploit module for CVE-2017-8464 
LNK Code Execution Vulnerability
4.15.5 		2017-08-03 17:10:16 -05:00
Brent Cook da3ca9eb90 update some documentation 2017-08-03 17:09:44 -05:00
William Vu 347b79e5f2 Land #8643, pretty printing for aux/post fail_with 2017-08-03 12:07:55 -05:00
Yorick Koster 81500f7336 Updated Mutex code, reduce the number of times the payload is executed 2017-08-03 10:26:55 -05:00
Christian Mehlmauer fcb939c717 Land #8792, ruby 2.2 compatibility 2017-08-03 16:08:20 +02:00
Brent Cook ddd841c0a8 code style cleanup + add automatic targeting based on payload 2017-08-03 00:27:54 -05:00
Brent Cook b62429f6fa handle drive letters specified like E: nicely 2017-08-03 00:27:22 -05:00
Brent Cook a12f3c4c23 remove if => unless suggestions from rubocop 2017-08-03 00:26:04 -05:00
Yorick Koster c3bc27385e Added source code for DLL template 2017-08-02 15:47:22 -05:00
Yorick Koster 46ec04dd15 Removed This PC ItemID & increased timeout in WaitForSingleObject 
Remove the This PC ItemID to bypass (some) AV.

Timeout for WaitForSingleObject is set to 2,5s. After this timeout a
mutex is released allowed a new payload to be executed.
 2017-08-02 15:47:22 -05:00
Yorick Koster e6e94bad4b Replace CreateEvent with CreateMutex/WaitForSingleObject 
Time out is set to 1500 ms to prevent running the payload multiple times
 2017-08-02 15:47:22 -05:00
Yorick Koster e51e1d9638 Added new DLL templates to prevent crashing of Explorer 2017-08-02 15:47:21 -05:00
Yorick Koster 67dddd2402 Typo reported by @nixawk 2017-08-02 15:47:21 -05:00
Yorick Koster 3229320ba9 Code review feedback from @nixawk 2017-08-02 15:46:51 -05:00
Yorick Koster 565a3355be CVE-2017-8464 LNK Remote Code Execution Vulnerability 
This module exploits a vulnerability in the handling of Windows
Shortcut files (.LNK) that contain a dynamic icon, loaded from a
malicious DLL.

This vulnerability is a variant of MS15-020 (CVE-2015-0096). The
created LNK file is similar except in an additional
SpecialFolderDataBlock is included. The folder ID set in this
SpecialFolderDataBlock is set to the Control Panel. This is enought to
bypass the CPL whitelist. This bypass can be used to trick Windows into
loading an arbitrary DLL file.
 2017-08-02 15:46:30 -05:00
Brent Cook 24d323d4ed remove more instances of positive? 2017-08-02 12:47:34 -05:00
Brent Cook 6f97e45b35 enable Ruby 2.2 compat checks in Rubocop, correct multi/handler compat 2017-08-02 06:18:02 -05:00
Brent Cook ff189147e7 rb-readline made a release, use 0.5.5 instead of git HEAD 2017-08-02 06:09:27 -05:00
OJ 54ded4300e Land #8791 - Update Accuvant refs to point to Optiv 2017-08-02 13:26:52 +10:00
TC Johnson 8989d6dff2 Modified Accuvant bog posts to the new Optive urls 2017-08-02 13:25:17 +10:00
Brent Cook bb2304a2d1 Land #8769, improve style, compatibility, for ssh modules 2017-08-01 21:43:32 -05:00
Brent Cook 1d75a30936 update style for other ssh exploits 2017-08-01 16:05:25 -05:00
Brent Cook 390f4d52db add ed25519 support for net-ssh 2017-08-01 16:05:25 -05:00
Brent Cook e27b0c7589 remove conditional assignment warning 2017-08-01 15:19:13 -05:00
Brent Cook 8c9fb1d529 remove unneeded netssh checks in modules 2017-08-01 14:46:10 -05:00
Brent Cook 4395f194b1 fixup style warnings in f5 bigip privkey exploit 2017-08-01 14:45:05 -05:00
Brent Cook 176c54fcae disable a couple of unwise rubocop warnings 2017-08-01 14:44:22 -05:00
Brent Cook e61cccda0b Land #8779, Adding error handler for ms17-010 exploit where SMBv1 is disabled 2017-08-01 14:00:12 -05:00
tkmru 14507747d0 update CachedSize 2017-07-29 23:42:43 +09:00
tkmru f961d7da13 update src 2017-07-29 21:08:52 +09:00
tkmru bc6f19a919 add sleepSeconds, sleepNanoseconds option 2017-07-29 20:55:53 +09:00
tkmru b1e26dd17e Merge branch 'master' of https://github.com/rapid7/metasploit-framework into feature/linux_reverse_tcp_x86_retry 2017-07-29 17:24:59 +09:00
wchen-r7 c5021bf665 Land #8761, Add CVE-2017-7442: Nitro Pro PDF Reader JS API Code X 2017-07-28 17:02:59 -05:00
Metasploit 70f659370f Bump version of framework to 4.15.5 2017-07-28 10:21:44 -07:00
Brent Cook cdda4bd918 Land #8784, update payloads 4.15.4 2017-07-28 09:59:11 -07:00
Brent Cook ddc4fd95a5 Update payloads 
This incorporates support for HiDPI displays with screen capture for Windows
meterpreter, and fixes a communications bug with Android meterpreter.
 2017-07-28 09:56:03 -07:00
multiplex3r b2ecaa489d Rescue only RubySMB::Error::CommunicationError 2017-07-27 19:19:45 +10:00
multiplex3r f2091928ec Adding no SMBv1 error handler for ms17-010 exploit 2017-07-27 16:21:09 +10:00