adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
35,959 Commits 27 Branches 1,043 Tags
0ae2e64bc56dd8543a97cc4ebc94de4738376488
Commit Graph

18796 Commits

Author SHA1 Message Date
Jon Hart 0ae2e64bc5 Only mark rsync as req'ing auth true/false if we are sure, otherwise vprint and unknown 2015-11-05 09:20:02 -08:00
Jon Hart f1a79bd207 Make motd printing optional, off by default 2015-11-04 10:11:00 -08:00
Jon Hart 8f497faa09 Make read timeout configurable and shorter by default 
This makes the time spent handling motd almost a non-issue
 2015-11-04 10:01:38 -08:00
Jon Hart 3528bb2fa7 Remove optional motd handling; this is always necessary 
without it, detecting authentication on systems w/ a motd does not work
 2015-11-04 09:43:10 -08:00
Jon Hart 0d3232f93a break if we get the rsync exit 2015-11-04 09:12:02 -08:00
Jon Hart ba5a8e4806 style 2015-11-04 09:11:07 -08:00
Jon Hart 2cab70294e sprinkle in peer 2015-11-04 09:05:33 -08:00
Jon Hart 9bcdd19e0a Correct table 2015-11-04 09:01:07 -08:00
Jon Hart 8f4f187c70 More usable format for module metadata in notes 2015-11-04 08:47:37 -08:00
Jon Hart b7ccee949e Improve name and description; update authors 2015-11-04 08:42:29 -08:00
Jon Hart c0993c3797 Appease rubocop 
You have 20 seconds to comply
 2015-11-04 08:28:35 -08:00
Jon Hart c265a371d8 Make testing the rsync module for authentication optional, 
but on by default
 2015-11-04 08:25:38 -08:00
Jon Hart 3c92b109d7 Don't wait for motd when testing for auth 2015-11-02 10:49:48 -08:00
Jon Hart 6c0034fba6 get_once for negotiation and trailing motd_lines 
This feels hacky.
 2015-11-02 09:32:54 -08:00
Jon Hart a120dd1ea9 Return nil when no motd lines 2015-11-02 09:18:10 -08:00
Jon Hart 962cf77873 Not all modules have comments 2015-11-02 09:14:41 -08:00
Jon Hart 4effd3aa81 Handle case where motd comes after negotiation 2015-11-02 09:12:57 -08:00
Jon Hart d18b6ff9cd More doc, error handling 2015-10-30 13:13:44 -07:00
Jon Hart ff1d0709e0 vprint if the thing isn't rsync 2015-10-30 12:39:06 -07:00
Jon Hart eb99aaa216 Print out modules before building/reporting table 2015-10-30 09:49:07 -07:00
Jon Hart 86b48490f0 Merge branch 'master' into poc/rsunk 2015-10-30 09:42:41 -07:00
Louis Sato 57304a30a8 Land #6139, remove bad ref links 2015-10-29 16:00:43 -05:00
wchen-r7 95920b7ff6 Bring back more working links 2015-10-29 15:57:16 -05:00
wchen-r7 da52c36687 Put back some links 2015-10-29 15:48:47 -05:00
Louis Sato da7c4ecac4 Land #6141, update description, authors, and references for zpanel_information_disclosure_rce 2015-10-29 13:50:27 -05:00
wchen-r7 93df45eff1 Land #6138, Land joomla plugin com_realestatemanager Error Based SQLi 2015-10-28 13:36:14 -05:00
wchen-r7 09b79414ee Report hash 2015-10-28 13:33:00 -05:00
wchen-r7 e7d6493311 Replace links 2015-10-28 10:45:02 -05:00
Jon Hart b5d0804442 Detect if an rsync module requires authentication 2015-10-27 18:15:18 -07:00
Jon Hart 4a3848cc4f Handle rsync motd 2015-10-27 18:15:18 -07:00
Jon Hart 73a6b47606 Split out negotiation and listing 2015-10-27 18:15:18 -07:00
Jon Hart 6dd40ec063 Better reporting 2015-10-27 18:15:18 -07:00
Jon Hart caf848ddf4 Store table better 2015-10-27 18:15:18 -07:00
Jon Hart 3e7f7f2eec Remove unnecessary table options, as these are the default 2015-10-27 18:15:18 -07:00
Jon Hart 4f468dbcd7 Usability improvements for rsync modules_list 2015-10-27 18:15:18 -07:00
Jon Hart 6781dfa6ee Style cleanup for rsync modules_list 2015-10-27 18:15:18 -07:00
wchen-r7 5b86d2ef95 Fix #6133, update description, authors and references 
Fix #6133

Thank you @japp-0xlabs
 2015-10-27 14:38:18 -05:00
wchen-r7 154fb585f4 Remove bad references (dead links) 
These links are no longer available. They are dead links.
 2015-10-27 12:41:32 -05:00
William Vu a65172bbcb Land #6125, Joomla SQLi creds gather module 2015-10-27 11:21:30 -05:00
William Vu 9041f95511 Perform final cleanup 2015-10-27 11:21:17 -05:00
nixawk 132cbf0cd7 joomla plugin com_realestatemanager Error Based SQL Ijnection 2015-10-27 15:18:17 +00:00
William Vu 74353686a3 Land #6136, rescue SMB error for psexec 2015-10-27 09:31:37 -05:00
Brandon Perry c7fe014854 remove global variables 2015-10-26 17:13:51 -05:00
jvazquez-r7 b2e3ce1f8a Allow to finish when deletion fails 2015-10-26 16:40:36 -05:00
wchen-r7 9adfd296a0 Land #6128, Th3 MMA mma.php Backdoor Arbitrary File Upload 2015-10-26 15:26:06 -05:00
wchen-r7 0d9ebe13a1 Modify check 2015-10-26 15:25:38 -05:00
wchen-r7 f4abc16c66 Land #6102, Add rsh/libmalloc privilege escalation exploit module 2015-10-26 10:54:05 -05:00
JT 4f244c54f8 Update mma_backdoor_upload.rb 2015-10-26 23:01:38 +08:00
Sam H 5fcc70bea4 Fixed issue w/ msf payloads + added timeout rescue 
Apparently when OS X payload shells get a sudo command, it requires a full path (even though it clearly has $PATH defined in its env...) to that file. The updates here take that into account. Also, the script more directly catches a timeout error when the maximum time for sudoers file to change has passed.
 2015-10-25 23:38:48 -07:00
Brandon Perry 8b4f2290ed no more session ids in desc 2015-10-25 11:01:17 -05:00