adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,623 Commits 27 Branches 1,043 Tags
2cf8ea39f94bbf749ca99cd6ddfc034df407d166
Commit Graph

20693 Commits

Author SHA1 Message Date
Metasploit 2a176e5e15 Bump version of framework to 6.4.4 2024-04-11 03:39:05 -05:00
Spencer McIntyre 76145c3091 Land #19064, SNMP TCP support 2024-04-10 07:38:35 -04:00
cgranleese-r7 53efed1606 Land #19022, Add MySQL Arch & Platform detection by query 2024-04-10 12:24:08 +01:00
Spencer McIntyre 8f5052f2e7 Land #19051, Add the Shadow Credentials module 2024-04-09 10:13:08 -04:00
sjanusz-r7 a862b16286 Add MySQL Arch & Platform detection by query 2024-04-09 13:38:07 +01:00
Noam Rathaus 71538a871f 1. Adjust if end if end to if else end 
2. Use ::Rex::Socket create's Proto
 2024-04-09 08:39:45 +03:00
Noam Rathaus 01d31612c6 Add support for TCP 2024-04-08 17:41:46 +03:00
Ashley Donaldson 4557de9a72 Changes from code review 2024-04-08 11:47:09 +10:00
Ashley Donaldson b1d0918074 Add documentation for module and functions 2024-04-08 11:32:53 +10:00
Ashley Donaldson 1ce29ae21e Make OpenSSL unit test work on all versions 2024-04-08 11:32:53 +10:00
Ashley Donaldson 5852fcbb78 Error handling and unit tests 2024-04-08 11:32:53 +10:00
Ashley Donaldson 9f5444680f Some error handling 2024-04-08 11:32:52 +10:00
Ashley Donaldson 049c3ebd1d Promote constants to top of file 2024-04-08 11:32:52 +10:00
Ashley Donaldson 1b92d3b110 Working writing of certs over ldap 2024-04-08 11:32:51 +10:00
Ashley Donaldson c55f8f20a8 Add shadow credentials module 2024-04-08 11:32:50 +10:00
Ashley Donaldson 8800a74b27 Wrap credential struct with nicer API 2024-04-08 11:32:50 +10:00
Ashley Donaldson e803be425f Initial work on shadow credentials 2024-04-08 11:32:49 +10:00
Dean Welch 87b84b00fb Don't close sockets that we're using for sessions 2024-04-05 14:33:30 +01:00
Dean Welch 434e85261b Add postgres client specs 2024-04-05 13:10:15 +01:00
Dean Welch 25a65c0ed7 Consolidate and simplify session tests 2024-04-05 13:10:15 +01:00
adfoster-r7 9e670d2f52 Land #19052, Update user agent strings for April 24 2024-04-04 23:43:10 +01:00
Metasploit a6ffb5fae8 Bump version of framework to 6.4.3 2024-04-04 03:35:15 -05:00
Ashley Donaldson da5d8f3471 Update user agent strings for April 24 2024-04-04 14:29:14 +11:00
adfoster-r7 bd99cfd701 Land #19003, add Zig formatting support to msfvenom and payload generation 2024-04-02 23:17:45 +01:00
Jack Heysel 31cf0e2633 Land #18764, Add unauth Jenkins file read module 
This PR adds a new module to exploit CVE-2024-23897, an unauth arbitrary
(first 2 lines) file read on Jenkins.
 2024-03-28 13:29:39 -07:00
jheysel-r7 14938a2d77 Apply suggestions from code review 2024-03-28 14:41:25 -04:00
Jack Heysel 0cd2bc5010 Land #18935, Fix LDAP auto auth 
This PR fixes a common user mistake when authenticating with LDAP
modules. Now users can specify either the USERNAME (user) and DOMAIN
(domain.local) datastore options or the original format of just the
USERNAME in the UPN format (user@domain.local). This updates the LDAP
library.
 2024-03-28 11:19:55 -07:00
adfoster-r7 20af1a4259 Land #19007, don't run check modules in the background 2024-03-28 17:35:23 +00:00
adfoster-r7 c0d66fd3a9 Land #18933, update SQL sessions to correctly manage history 2024-03-28 17:02:05 +00:00
Metasploit 8d3bfc05ef Bump version of framework to 6.4.2 2024-03-28 07:29:54 -05:00
adfoster-r7 00b9ae32f3 Land #19016, add support for guid column type in mssql and improve error logging 2024-03-28 12:18:58 +00:00
Egor Kalinichev 623307a119 Implement new interactive_read and interactive_write RPC calls for Session API to extend support of meterpreter-style session interaction via RPC to new session types. 2024-03-28 11:42:04 +01:00
Zach Goldman 9af16b2439 add support for guid column type in mssql 2024-03-27 09:50:06 -05:00
dwelch-r7 47fc61f65d Land #19015, Allow static DNS hostnames ending in a . to be queried 2024-03-27 13:49:49 +00:00
ekalinichev-r7 c4995100bf Land #18925: Update RPC API to include Auxiliary and Exploit modules in session.compatible_modules response 2024-03-27 11:46:53 +01:00
Spencer McIntyre 8bb690fa01 Remove any trailing dots from static names 
This allows them to be queried
 2024-03-26 08:40:24 -04:00
adfoster-r7 5a77f76ec9 Land #19006, Fixes WMAP plugin loading failures 2024-03-26 11:28:49 +00:00
sjanusz-r7 e2814d6ad5 Align history manager to IRBs multiple backend library approach 2024-03-26 11:16:37 +00:00
sjanusz-r7 70e27f8112 Passing history manager tests 2024-03-26 10:06:50 +00:00
sjanusz-r7 873d3500ff SQL sessions have correct history manager support 2024-03-26 10:06:50 +00:00
sjanusz-r7 abb861c80a Add interactive query log files 2024-03-26 10:06:50 +00:00
Spencer McIntyre 4c835545a3 Ignore the hosts file if it can't be loaded 2024-03-25 14:44:49 -04:00
sjanusz-r7 88585bab40 Suggest all compatible modules for session in RPC 2024-03-25 15:55:23 +00:00
Dean Welch f132bdbe30 Enforce single module stance 2024-03-25 11:53:23 +00:00
cgranleese-r7 d3251043e5 Fixes WMAP plugin loading failures 2024-03-25 09:55:38 +00:00
ArchiMoebius 533780bde9 feat(ziglang): add buffer/comment support 2024-03-23 14:53:54 +00:00
Metasploit 3af4358281 Bump version of framework to 6.4.1 2024-03-21 03:37:19 -05:00
adfoster-r7 b461f08ba3 Land #18980, improves basic shell help command 2024-03-20 21:27:12 +00:00
Zach Goldman c16b8e6e64 adds help command to basic shells 2024-03-20 14:18:36 -05:00
adfoster-r7 fd8354340b Land #18973, improves the help menu for sessions 2024-03-20 19:11:18 +00:00