adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
58,321 Commits 27 Branches 1,043 Tags
339c1941efdbe265cfe586f11f1da2d000c19d44
Commit Graph

4799 Commits

Author SHA1 Message Date
Spencer McIntyre 9ee83e2657 Land #14028, Fix msf6 TLV_TYPE_PIVOT_STAGE_DATA_SIZE pivoting error 2020-10-06 09:11:38 -04:00
Grant Willcox b0f96fd755 Land #14200, Fix whitespace issue in OpenVAS importer that was breaking some imports 2020-09-30 14:02:28 -05:00
Grant Willcox 5986bc98f1 Land #14171, Replace erroneous calls to get_service with calls to service 2020-09-30 10:05:13 -05:00
Alan Foster 33fbd52d8b Fix port parsing error when importing openvas 2020-09-30 09:51:30 +01:00
bwatters 9416b9ead4 Land #14030, New GetSystem Technique: Named Pipe Impersonation (RPCSS Variant) 
Merge branch 'land-14030' into upstream-master
 2020-09-28 18:24:44 -05:00
Alan Foster 8bc80c26c1 Remove unused constant references, and add session new command id 2020-09-24 15:00:17 +01:00
Adam Galway 571504642a fixes get_service calls 2020-09-22 12:54:58 +01:00
Adam Galway a0d6431ed5 adds protocol to search terms 2020-09-22 12:44:32 +01:00
adfoster-r7 9ef5822d3a Revert "Replaces erroneous calls to get_service" 2020-09-18 19:09:25 +01:00
Grant Willcox a5c30be10b Land #14143, Replace erroneous calls to get_service 2020-09-17 10:41:15 -05:00
Adam Galway 4918ecf826 replaced get_service calls with services calls 2020-09-16 12:29:15 +01:00
William Vu cada3cdf52 Fix ArgumentError in res.redirection from URI(nil) 2020-09-15 15:50:17 -05:00
William Vu 53fd5c9d14 Fix GET ctype=application/x-www-form-urlencoded 2020-09-15 15:50:07 -05:00
Spencer McIntyre ff00202db7 Update the TECHNIQUE hash in the priv extension 2020-09-03 14:41:44 -04:00
Spencer McIntyre 58a56a2b24 Support an explicit backend for the SMB simple client 2020-08-28 17:28:07 -04:00
Spencer McIntyre 1d7e74b5b6 Use technique constants to make the code more readable 2020-08-20 15:54:00 -04:00
Spencer McIntyre b0cdb8f5d2 Fix missing parameters when using specific getsystem techniques 2020-08-20 11:29:04 -04:00
Spencer McIntyre f3fa41858e Add the new getsystem technique definition 2020-08-20 09:18:39 -04:00
gwillcox-r7 c79f293e52 Land #13846, Add support for import Nmap vulners script output 2020-08-13 12:21:31 -05:00
Jeffrey Martin 35017886b8 Land #13935, Preliminary Version 6 2020-08-06 10:19:34 -05:00
adfoster-r7 18b2c32c78 Land #13831, update to rails 5.2 2020-08-05 21:05:49 +01:00
gwillcox-r7 2fe92f9325 Land #13903, Allow OpenVAS handler to import vulns without references 2020-08-03 11:59:58 -05:00
Jeffrey Martin 9aa26d1208 Merge upstream into 6.x 2020-08-03 11:43:47 -05:00
dwelch-r7 1bf75e338f delete commented out code 2020-08-03 17:34:49 +01:00
Jeffrey Martin 07cbe426e2 Rails 5, all models inherit from ApplicationRecord 
ApplicationRecord is a new superclass for all app models, analogous to app controllers subclassing ApplicationController instead of ActionController::Base. This gives apps a single spot to configure app-wide model behavior.
https://edgeguides.rubyonrails.org/upgrading_ruby_on_rails.html#active-record-models-now-inherit-from-applicationrecord-by-default

Deprecated Relation#uniq use Relation#distinct instead.
https://edgeguides.rubyonrails.org/5_0_release_notes.html#active-record-deprecations
 2020-07-31 11:56:49 -05:00
Spencer McIntyre 2382d7530c Land #13900, Add Packet::Header#include? to check for the presence of headers in a case-insensitive manner 2020-07-29 18:36:24 -04:00
Brendan Coles 09a766aed6 Land #13898, Fix error handling when an invalid API_KEY is specified 
post/multi/gather/wlan_geolocate: Fix an issue where the API error
message is not parsed correctly when an invalid `API_KEY` is passed
to the geolocation API.
 2020-07-26 04:38:25 +00:00
Brent Cook 3887fb41b1 Allow OpenVAS import to import vulns without references. 
Local scanning didn't show any results that had CVEs or BIDs, which the default OpenVAS import logic skips. This modifies the importer to allow for importing vulns even if they do not have references.
 2020-07-25 03:18:39 -05:00
Niboucha Redouane 3028e58589 Overload #include? to check the presence of HTTP headers in a case-insensitive manner 2020-07-24 18:29:50 +02:00
Tim W ac9c6174c6 fix #13779, fix error on invalid geolocation api key 2020-07-24 14:33:08 +08:00
Brendan Coles 2f7cce9e41 hwbridge: fix syntax error introduced in aeed81de29 2020-07-22 15:30:47 +00:00
Jeffrey Martin 65039a5091 Merge upstream into 6.x 2020-07-15 09:58:07 -05:00
dwelch-r7 bdabebfb3c Refactor code into functions 2020-07-15 13:15:04 +01:00
dwelch-r7 02b8d436c8 Import vulns discovered from nmap 2020-07-14 13:22:09 +01:00
bwatters 24bf14b4c0 Land #13832, Polymorphic x86/x64 Block API 
Merge branch 'land-13832' into upstream-6.x
 2020-07-09 16:04:37 -05:00
Spencer McIntyre 7745eafa17 Replace usage of Array.filter with Array.select for Ruby < 2.6 2020-07-09 09:00:05 -04:00
Spencer McIntyre 6f153688ff Add labels to shuffled assembly source code for post-processing 2020-07-08 14:39:00 -04:00
Spencer McIntyre 90870c91de Refactor the shuffle code to place it in a more accessible location 2020-07-07 18:13:55 -04:00
Spencer McIntyre af4dcdb22f Add documentation and fix rubocop issues for the new library code 2020-07-07 15:56:22 -04:00
Spencer McIntyre cfae4c76d0 Shuffle the block API source code every time 2020-07-07 15:55:32 -04:00
Spencer McIntyre e29e3be5d4 Add a basic GraphML parser to Rex 2020-07-06 15:23:41 -04:00
Spencer McIntyre e72035f1a3 Support AES-128-CBC as an additional option for TLV encryption 2020-06-29 14:19:43 -04:00
Adam Galway babaee8c8e adds debug command with spec tests 2020-06-29 15:38:56 +01:00
Spencer McIntyre 26cbfa5d56 Land #13417, SMBv3 integration with Framework 2020-06-24 14:09:11 -04:00
OJ 3548a839b5 Java-related UINT command ID generation 2020-06-24 08:11:16 +10:00
OJ d14dac26ec Support removal of TLV strings 
This first bit of code aims to add a "map" to the packet functionality
that is able to translate to and from "method strings" to "command ids".
IDs are sent across the wire, and they're now integers. This removes the
need for the strings to be present in things like native meterp, and
hence makes things a little less obvious on the wire, and way less
obvious on disk/in the payload.

Given that we need this functionality in other Meterpreters to support
the removal of strings, some code has been added that can generate
source files for Python, C# and C. This code might move, but for now
it's at least in a spot where it's used the most.
 2020-06-24 08:10:54 +10:00
OJ 975ee313ff Add support for custom name/ordinal for RDI 2020-06-24 08:01:30 +10:00
Alan Foster 2439342aba Add consistent error logging for module loading 2020-06-23 11:15:08 +01:00
Adam Galway 1a2bf98222 creates standard elog & updates exisiting usages 2020-06-22 12:48:39 +01:00
Spencer McIntyre efbff6faa0 Land #13400, Change from PEM to DER for crypt TLV negotiation 2020-06-19 11:58:32 -04:00