07aa024b21
Add custom session types and minor cleanups
2022-09-07 15:43:50 -05:00
670288a939
Fix issue where reverse_tcp did not work because of double length prepend
2022-06-06 09:10:57 -05:00
e312619418
Add support for 64-bit, rubocop, and some requested changes
2022-05-24 16:13:01 -05:00
681455dec3
Add a custom stager type for x86 windows
2022-05-24 16:09:47 -05:00
d5373a7278
Removed redundant cleanup calls which exploit_driver will call anyway
2022-03-11 12:08:51 +11:00
c9d43aafe6
Use dereferencing directly, and rename 'stop' to 'cleanup' for clarity
2022-03-10 09:06:25 +11:00
837cf199a0
Use reference counting consistently for HTTP handlers ( Fixes #16315 )
2022-03-09 10:56:38 +11:00
2447ce3eba
Use a random, modern UA string for HTTP payloads
2021-11-10 10:40:32 +11:00
0df82e9a21
HTTP payload listeners support ReverseListenerComm param, and display of the session it transits over
2021-10-04 20:27:06 +11:00
8b8d138812
Land #15496 , specify SSLVersion for servers
2021-08-26 10:57:11 -05:00
5acd0ee5d6
Fix #15480 , fix IgnoreUnknownPayloads for stageless reverse_http payloads
2021-08-13 16:57:04 +01:00
c43d55068c
Add the SSLVersion datastore option for handlers
...
Requires rapid7/rex-socket#37 for the option to be honored.
2021-08-06 14:44:48 -05:00
a9d38ecc15
Land #14430 , Add warnings for no db connection while using uuid tracking
2021-03-24 12:12:18 +00:00
7fbbe23426
Remove more requires that were missed before
2021-02-08 14:51:58 +00:00
b95be3ed10
Zeitwerk rex folder
2021-02-08 12:24:12 +00:00
1617b3ec9b
Use zeitwerk for lib/msf/core folder
2020-12-07 10:31:45 +00:00
8f729b6fd5
removed this JSON
2020-12-04 11:26:01 +08:00
893dd6b653
fix #14158
2020-11-25 20:07:00 +08:00
48290ac38a
Fix a stupid mistake with core_patch_url
...
This was not originally ported to an int when it should have been.
2020-06-09 08:58:27 +10:00
059dd59d90
Use the new max_length check elsewhere
2020-03-11 11:56:15 -04:00
db9626153b
Minor refactoring for style, whitespace, etc.
2020-03-11 11:56:15 -04:00
2283948fcf
Fixed description in reverse_http payload, for real
2020-03-11 11:55:18 -04:00
364b6c1359
Fixed description in reverse_http payload
2020-03-11 11:55:18 -04:00
f10f5701dd
Added maximum string length check
2020-03-11 11:43:10 -04:00
5621d200cc
Stop error rendering in multi/meterpreter
...
The reverse_http/s listeners result in awful errors when
multi/meterpreter is set as the payload. Anyone that hits the endpoint
with an invalid or missing UUID will spam the MSF console with
exceptions.
This patch avoids this issue in cases where the UUID isn't specific. We
avoid setting it as a default, which doesn't make sense anyway.
2019-06-11 13:39:52 +10:00
73c8e803fe
Land #11892 , Fix parse IPv6 address in reverse_http
2019-05-31 12:41:36 -05:00
ecda8d864a
Fix incorrect parsing of IPv6 uri.
2019-05-28 16:41:34 +09:00
26eebb9620
Fix multi handler reverse_http to not care so much about the workspace.
2019-05-25 16:25:06 -04:00
b51d016a93
Store and search payloads with workspace id
2018-09-24 14:11:48 -05:00
7e6c3261b6
Update payload count method
2018-09-18 16:36:11 -05:00
9b5326994f
Add remote data endpoint support for searching payloads
2018-09-18 15:50:55 -05:00
8f4e17c277
Replace uuid methods for payload count and url validation
2018-09-13 12:28:04 -05:00
f1a1e1a357
Implement specific dispatch extensions for tunnels
...
All meterpreter Clients are created equal, and as such they all
include the PacketDispatcher mixin and call its init methods when
a passive dispatcher is needed. However, since tunneling protocols
have different requirements for implementation, the methods which
provide protocol-specific functionality need to be mixed into the
Client before it attempts to initialize the dispatcher.
Provide a dispatch_ext option in the has passed to the client on
init from the session handler which is an Array containing mixin
references which are sent to :extend calls in the :init_meterpreter
method just prior to calling :initialize_passive_dispatcher.
Each handler implementation can thus push chains of mixins to the
client in order to provide middleware specific to the tunnel. Down
the road, this should permit stacking C2 encapsulations or tunnel
protocols/permutators to create unique session transports on the
fly.
2017-12-29 00:56:06 -05:00
bb5ea540ab
fix a number of TODO's in the HTTP handler, remove duplication in handlers
2017-12-12 03:12:36 -06:00
f49006222c
remove unneeded uri
2017-12-12 03:12:36 -06:00
8e76c4cb4f
handle override at the meterpreter config layer
2017-12-12 03:12:36 -06:00
017374be71
pass lhost/lport back into generate_stage with reverse_http/s
2017-12-12 03:12:36 -06:00
1fd7f7c8bc
prefix MeterpreterUserAgent and PayloadProxy* with Http for consistency,
...
this also adds aliases where needed
2017-11-21 13:47:19 -06:00
a78d8f83fc
Add HTTP header support for Host/Cookie/Referer
...
This is to start the support for things like domain fronting.
2017-11-21 13:47:18 -06:00
81bcf2ca70
updating all LHOST to use the new opt type
2017-05-04 12:57:50 -05:00
af3cd18c9f
Fix #8041 so it works
2017-03-16 13:27:47 -05:00
ccf345f696
move method to module level
2017-03-09 14:32:51 -07:00
40204703f0
remove unnecessary newline
2017-03-09 12:26:11 -07:00
e7b47865be
ruby formatting fix
2017-03-09 12:23:02 -07:00
274089a7f1
cleanup for lhost loopback warn
2017-03-09 11:33:27 -07:00
2f55b5e00e
reconfigure lhost warn for loopback address
2017-03-09 11:10:27 -07:00
870621d169
Add OverrideScheme option, fixes #7841
2017-02-08 23:30:29 +08:00
99047fa8a1
be stricter in what we accept for payload uri
...
datastore needs to contain something to produce a valid URI
2017-01-22 10:20:04 -06:00
e8d7a074fa
Tweak to stageless handling for python payloads
2016-11-29 07:54:51 +10:00
496836fc06
Remove debug junk, rejig order of ops in initializer
2016-11-28 15:25:07 +10:00
bwatters