adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

1940 Commits

Author SHA1 Message Date
Lance Sanchez 6a029bee02 Merge branch 'staging/electro-release' into feature/MSP-9678/pop3-login-scanner 2014-05-14 10:13:46 -05:00
David Maloney f34090946e derp 2014-05-14 10:10:57 -05:00
Lance Sanchez 06796fb27c returning the result class 
MSP-9678
 2014-05-14 10:09:52 -05:00
David Maloney 2faa015bf3 some minor cleanup 
minor edits requested by kronicdeth during
code review
 2014-05-14 10:09:26 -05:00
James Lee 8a9027b21d Add better #inspect for Credential and Result 2014-05-14 10:04:40 -05:00
Lance Sanchez 3c0625e393 hacking on the pop3 login scanner 
MSP-9678
 2014-05-14 09:44:23 -05:00
David Maloney 72b3c4da35 working DB2 loginscanner 
w00t
 2014-05-13 14:41:15 -05:00
Samuel Huckins 162038bde4 Merge pull request #19 from rapid7/feature/login_scanner/smb 
Specs all passing, functional steps working.
 2014-05-13 14:37:13 -05:00
David Maloney f5751d6a85 first pass at attempt_login for DB2 
first pass through at the attempt_login method
for the DB2 LoginScanner. still adding specs
and possibly refactoring
 2014-05-13 14:10:30 -05:00
James Lee 2d7e90d5df Remove vestigal require 2014-05-13 13:39:40 -05:00
David Maloney 5dcf3efd1a skeleton for DB2 loginscanner 
add basic  skeleton and specs for the DB2
LoginScanner class.
 2014-05-13 13:16:56 -05:00
Luke Imhoff 3370465d84 Use railties to load Metasploit::Credential correctly 
MSP-9606

In order to support Metasploit::Credential correctly,
metasploit-framework needs to support Metasploit::Concern, which does
all its magic using a Rails::Engine initializer, so the easiest path is
to make metasploit-framework be able to use Rails::Engines.  To make
Rails::Engine use Rails::Engine, make a dummy Rails::Application
subclass so that all the initializers will be run when anything requires
msfenv.
 2014-05-12 15:03:51 -05:00
David Maloney f84d763382 refactoring conditional logic 
the class works but the conditional logic needs
refactoring to be smoothed out more.
 2014-05-12 11:10:36 -05:00
James Lee fe3acf08f5 Handle exceptions without error_code 
Also sets smb_direct in attempt_login, which makes this work correctly
when port wasn't set in the constructor.
 2014-05-12 10:31:11 -05:00
James Lee 3831042dca Add specs, validations for LoginScanner::SMB 2014-05-09 18:58:49 -05:00
James Lee ee6a9f99b3 Add require for active_model 
Having proper requires allows loading scanners in IRB without msfconsole
 2014-05-09 18:16:19 -05:00
David Maloney 4e76330643 Add skeleton for VNC lgoinscanner 
Add skeleton and specs for the VNC Loginscanner

MSP-9686
 2014-05-09 11:55:15 -05:00
Trevor Rosen c77412d373 Merge pull request #13 from rapid7/feature/login_scanner/mysql 
Add LoginScanner for MySQL

MSP-9676 #land
 2014-05-08 15:05:24 -05:00
Trevor Rosen 894ecaafb4 Merge pull request #12 from rapid7/feature/login_scanner/pg 
Add Postgres LoginScanner class

MSP-9679 #land
 2014-05-08 14:38:56 -05:00
David Maloney 42de1ab1f1 whitespace removal 2014-05-08 14:18:06 -05:00
David Maloney d16a4a4c1d add sane defaults to MySQl 
MySQL LoginScanner now with sane defaults
for TCP evasion stuff
 2014-05-08 13:57:58 -05:00
David Maloney cfb13ed1bd Merge branch 'staging/electro_release' into feature/login_scanner/mysql 2014-05-08 13:55:09 -05:00
James Lee 2d2b5ea9e4 Merge remote-tracking branch 'private/feature/login_scanner/mssql' into feature/login_scanner/smb 2014-05-08 13:45:06 -05:00
David Maloney e0c6e90ae8 trivial cleanup work 
whitespace and alignment stuff
 2014-05-08 13:42:52 -05:00
James Lee 13fe8c0869 Default Credential#paired to true 2014-05-08 13:34:31 -05:00
David Maloney 20edabb0f5 mySQL Loginscanner with specs to match 
This season's colours for Loginscanner is MySQL
with Unit Test Coverage applied to match.
 2014-05-08 13:16:12 -05:00
David Maloney b72f0f8ffc try to fix bad push/revert mess 2014-05-07 18:43:37 -05:00
David Maloney 9919d54116 Revert "final touches and specs" 
This reverts commit e025fa1791.
 2014-05-07 18:34:34 -05:00
David Maloney e025fa1791 final touches and specs 
add finishing touches to postgres
Loginscanner and add specs to cover
the behaviour
 2014-05-07 18:32:36 -05:00
James Lee 338ed7bd18 First attempt at smb login scanner 2014-05-07 16:38:56 -05:00
David Maloney 7a476dc21a fully operational lgoinscanner 
Now you will witness the power of this fully operational
LoginScanner. fire at will, Commander!
 2014-05-07 15:57:06 -05:00
David Maloney ec974535ac create base object for mssql scanner 
created skeleton for MSSQL Loginscanner
included concerns.

also added an NTLM concern and shared example group
 2014-05-07 14:43:15 -05:00
David Maloney 234e129523 add NTLM concern for loginscanners 
add a new concern for LoginScanners
that provides the basic accessors and validations
for anything requiring NTLM
 2014-05-07 14:28:10 -05:00
David Maloney e6b15541ff replace datastore calls 
replace datastore calls with stub
methods that will be implmeneted by the loginscanner
 2014-05-07 11:41:49 -05:00
James Lee 9ad5ae44be Add abstract attempt_login and cleanup some docs 2014-05-06 15:24:18 -05:00
David Maloney 6077135782 extract login neccisary methods 
create new mssql mixin. extract only the methods
required for mssql_login to work and copy them
into this mixin.
 2014-05-06 11:59:21 -05:00
David Maloney 5e6f57f711 fix up some more specs 
some spec cleanup and added basic specs
to the HTTP LoginScanner
 2014-05-01 12:10:51 -05:00
David Maloney 1a5abc49d1 Merge branch 'staging/electro_release' into feature/login_scanners/mixin_refactor 
Conflicts:
	lib/metasploit/framework/login_scanner/ftp.rb
	lib/metasploit/framework/login_scanner/ssh.rb
	lib/metasploit/framework/login_scanner/ssh_key.rb
 2014-05-01 10:19:00 -05:00
David Maloney 0dd22395eb use credential objects inside results 
altered results to just hold a credential
object instead of duplicating attributes
 2014-04-30 17:17:57 -05:00
Lance Sanchez 3d94a1f77d Merge branch 'feature/http_login_scanner' into staging/electro_release 2014-04-30 16:30:46 -05:00
David Maloney 2483a37c04 Rexsocket mixin for LoginScanners 
add a mixin for Rex Socket dependent behaviour
in certain Loginscanners to DRY up code more
 2014-04-30 15:43:28 -05:00
James Lee 6a41697955 Add require 2014-04-30 15:03:49 -05:00
David Maloney a4cc311106 test base behaviour in shared examples 
start moving specs to a shared example group
for all behaviour defined by the LoginScanner
Base
 2014-04-30 14:35:29 -05:00
David Maloney f1e303d400 add connection error handling 
if we get too many connection errors
or too many errors in a row, we bail on
the host
 2014-04-30 14:06:18 -05:00
David Maloney a08421b30f apply reasonable defaults 
give each lgoinscanner the ability to select
reasonable defaults for certain attributes
 2014-04-30 13:56:29 -05:00
James Lee ea8dc4db5d Handle connection errors 
Also fix up some yardoc issues
 2014-04-30 13:33:39 -05:00
James Lee b617be3dda Move doc to the right place 2014-04-30 13:30:42 -05:00
David Maloney ad264cb031 remove dead variable 
dead variable left in a method from
a previous code iteration. removed
 2014-04-30 13:30:09 -05:00
David Maloney 90882f803b use base mixin in scanners 
refactor the LoginScanner classes to use the
new Base mixin. Still some more cleanup to be done
 2014-04-30 13:29:14 -05:00
David Maloney 7978587428 add lgoinscanner base mixin 
start moving common behaviour for
all LoginScanners into a mixin
 2014-04-30 13:11:48 -05:00