4a9a15e638
Run Rubocop layout rules on modules
2021-08-27 17:19:43 +01:00
7daec4ab39
Update metasploit payloads version
2021-08-27 12:55:19 +01:00
5acd0ee5d6
Fix #15480 , fix IgnoreUnknownPayloads for stageless reverse_http payloads
2021-08-13 16:57:04 +01:00
07c9350733
Land #15430 , Support for SSH pivoting
2021-08-09 18:34:08 +02:00
beb39ae5bc
Mark another Powershell payload as dynamic
2021-07-12 10:06:56 -04:00
a23ef5ec5d
Set dynamic cached size on reverse powershell
2021-07-12 09:22:59 -04:00
6300518e19
Fix #15254 , set dynamic cached size on powershell payloads
2021-07-12 12:55:24 +01:00
9e61bf5752
Update the rex-powershell gem and unit tests
2021-07-09 15:35:37 -04:00
10ad84434c
Initial support for pivoting over SSH
2021-06-25 21:19:05 -04:00
c03b9d78f3
Update metasploit-payloads gem to 2.0.45
2021-05-03 09:50:41 -04:00
7dc1c19814
Land #15078 , Update reverse_http.rb to fix a typo.
2021-04-21 15:25:30 -05:00
faae3ff40e
Update reverse_http.rb
...
Fixing a typo
2021-04-21 19:47:18 +03:00
b6ed3f2752
Update reverse_https.rb
...
Fixing a typo
2021-04-21 19:46:44 +03:00
fb9aa68b7a
Comment out several additional parts of the shellcode for better clarity
2021-04-12 17:26:46 -05:00
6f5c82c388
payloads/x64: exec.rb new behaviour
...
This patch adds new behaviour to CMD option.
Now if CMD is empty or unset, a 21 byte not null-free execve payload is built.
The arbitrary command option continues the same when CMD is set.
It also adds the OptBool NullFreeVersion advanced option.
Its default value is false. When set as true, generate will output a
self included null-free version of the payload without need of encoding.
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-04-10 00:55:44 -03:00
8e0d6d2675
payloads/x64: exec.rb metasm, refactoring
...
This patch converts shellcode to metasm and make it more efficient, resulting
in its size being reduced to 37 bytes + CMD length.
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-04-09 21:50:18 -03:00
0588672415
Land #15020 , Update mettle payloads to 1.0.9
2021-04-09 12:33:32 -05:00
c7635296a1
Update mettle payloads to 1.0.9
2021-04-09 12:09:47 +01:00
74a77fb66e
x64/shell_bind_tcp_random_port: rip one byte off
...
Gets rid of one more byte and adjusts mentions to //bin/sh string.
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-04-03 12:04:32 -03:00
c05ed60dd8
update payloads cached size
2021-03-26 15:25:35 +00:00
ae322abbdf
update payloads cached size
2021-03-22 21:49:50 +00:00
39f730d5fb
update payloads cached size
2021-03-19 20:34:33 +00:00
3684bc6f30
Land #14661 , payload/x86/exec with metasm conversoin and NULL free variant
2021-03-12 12:02:44 -05:00
dc6dac3af1
payload/x86/exec.rb - logic inverted for readability
...
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-03-11 19:11:34 -03:00
1da8c111b7
payloads/x86/exec.rb - set NullFreeVersion as required
...
Set NullFreeVersion as a required option.
Remove nullfreeversion redundant assignment.
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-03-11 18:31:35 -03:00
9ef6bf384e
Update payload cached sizes
2021-02-19 15:35:36 -05:00
8a339f54c1
Land #14734 , updates and runs rubocop against recent modules
...
Rubocop recently landed modules
2021-02-19 13:48:47 +00:00
5b3fde7735
Rubocop recently landed modules
2021-02-16 15:08:08 +00:00
b95be3ed10
Zeitwerk rex folder
2021-02-08 12:24:12 +00:00
f3eafc22a2
Land #14685 , linux/x64/shell_bind_tcp_random_port improvements
2021-02-05 17:14:50 +00:00
4a68ef17fd
update mettle payload cached sizes
2021-02-01 11:50:35 -05:00
ab307fbd87
payload/x64: shell_bind_tcp_random_port improvement
...
This patch reduces the payload to 52 bytes while preserving its functionality
using coordinated xchg instructions.
It also guarantees dup2 call without garbage in rax.
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-01-29 16:58:14 -03:00
4ed8bd8052
payloads/x86/exec.rb - new NullFreeVersion advanced option
...
This patch adds the OptBool NullFreeVersion advanced option.
Its default value is false. When set as true, generate will output a
self included null-free version of the payload without need of encoding.
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-01-26 14:24:03 -03:00
34223874b6
payloads/x86/exec.rb - metasm, refactoring
...
This patch converts shellcode to metasm and adds new behaviour to CMD option.
Now if CMD is empty or unset, a 20 byte not null-free execve payload is build.
The arbitrary command option continues the same when CMD is set.
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-01-26 11:09:25 -03:00
1ad7ae2707
Land #14621 , Refactor (reduce) linux/x64/shell_bind_tcp_random_port
...
Merge branch 'land-14621' into upstream-master
2021-01-21 12:38:53 -06:00
da7a51fbca
Land #14584 , implement the zeitwerk autoloader within lib/msf/base
2021-01-18 13:11:08 +00:00
d0cf0ef0e9
get rid of tabs
...
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-01-17 11:18:59 -03:00
5edb4cd135
reduce to 53 bytes and refactor to embed nasm
...
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-01-17 11:11:07 -03:00
65dfaf9453
Update the metasploit-payloads and mettle gems
2021-01-14 10:16:17 -05:00
6092fa32ae
Land #14515 , fix reverse_awk and bind_awk exit behavior
2021-01-08 14:37:38 +01:00
c0912b358c
Fix tests
2021-01-05 16:20:42 +00:00
bad5ccbc49
Remove msf/base requires
2021-01-05 14:59:46 +00:00
9e41dfec62
Land #14334 , close socket in x86 bind payloads
2021-01-04 11:50:07 -06:00
28bcad82c8
Land #14528 , Note that Meterpreter now requires Windows XP SP2 or newer
2020-12-18 16:50:34 +00:00
4fb8cc06c0
Land #14517 , capture stderr and use metasm
2020-12-17 15:13:44 -06:00
900c4367ec
Note that Meterpreter now requires Windows XP SP2 or newer
2020-12-17 14:32:28 -05:00
00109a68be
Eagerly load hrr_rb_ssh within reverse_ssh module
2020-12-16 16:55:15 +00:00
8c7bffa229
fix #14516 , fix stderr output in osx/x64/shell_reverse_tcp
2020-12-15 00:05:42 +00:00
bc4dc2df15
convert osx/x64/shell_reverse_tcp to Metasm
2020-12-15 00:04:05 +00:00
c7ca0e4ef5
Fix #14510 , fix reverse_awk and bind_awk exit behavior
2020-12-14 17:10:07 +00:00
adfoster-r7