ed3a0959ae
vcenter post lib and spec
2022-08-06 14:01:56 -04:00
703cc872d4
Msf::Post::File.file_remote_digest[md5|sha1]: Add :util to set hash utility
2022-08-06 19:15:30 +10:00
50a2127f3c
Msf::Post::File.file_remote_digest[md5|sha1]: Remote hashing for PS sessions
2022-08-06 18:56:39 +10:00
7d71bf6875
Msf::Post::File.file_remote_digest[md5|sha1]: Use Meterpreter hash methods
2022-08-06 17:42:11 +10:00
c45262cd46
Land #16800 , Add support for OpenSSL 3
2022-08-05 14:20:51 -05:00
e93a75cd01
Fix broken reverse ssh command shell
2022-08-04 23:58:11 +01:00
9c6a198453
Land #16796 , Path traversal vulnerability in RARLAB UnRAR < 6.12 with Zimbra RCE module
2022-08-04 19:44:57 +02:00
a314423e81
Some changes requested by @cdelafuente-r7
2022-08-03 14:51:51 -07:00
163d4d5b11
Land #16854 , Add CVE-2022-31660 VMware Workspace ONE Access LPE
...
Merge branch 'land-16854' into upstream-master
2022-08-03 16:50:12 -05:00
a415a86c11
Fix a bug caused by ClassTypeInfo additional info
...
The ClassTypeInfo does not have a #value method that returns a scalar,
switch to using snapshot instead.
2022-08-03 16:38:43 -04:00
56d1225900
Add the ArraySinglePrimitive data type
2022-08-03 16:38:29 -04:00
2433cccde5
Land #16840 , updates read_profile_list
...
This removes some Meterpreter-only method calls, which
allows non-Meterpreter sessions to use read_profile_list
and load_missing_hives. This also changes read_profile_list
to be able to read profile information for all accounts.
2022-08-03 11:46:44 -04:00
f65119b353
Support OpenSSL3 and run Ubuntu 22.04 in test matrix
2022-08-03 15:49:53 +01:00
4f5c711dc7
Land #16833 , Add easier way to delete host tags
...
This PR adds an easier way to delete host tags from
the metasploit-framework and updates documentation accordingly
2022-08-02 14:02:54 -04:00
7277483022
add safe navigation to ensure fs access valid
2022-08-01 14:33:02 -05:00
c66f98bae6
Make lint happy
2022-08-01 10:03:35 -07:00
e7edafbcfb
Throw errors in the rar-generator library rather than returning nil
2022-08-01 09:54:31 -07:00
c447cc53fd
Land #16839 , Fix shell_registry_[enumvals|getvaldata] error check
2022-08-01 13:59:50 +01:00
e2973b0c2e
Post::Windows::UserProfiles: read_profile_list: Add :user_accounts_only option
2022-07-31 21:04:05 +10:00
a4a2b6e6db
Post::Windows::UserProfiles: Use Msf::Post::File mixin
2022-07-31 20:11:25 +10:00
98449b6ce6
Post::Windows::Registry: Fix shell_registry_[enumvals|getvaldata] error check
2022-07-31 18:14:33 +10:00
d36bee8755
A few simple feedback changes
2022-07-29 10:48:07 -07:00
de22141e1b
Option aliases are valid option names too
2022-07-29 10:54:57 -04:00
c770b7dd39
Don't interfere when setting options globally
...
This fixes an issue introduce in #16774 where the `setg` and `set -g`
commands were broken. When setting options globally, just use the
original functionality instead of searching the list based on the
current context.
2022-07-29 10:30:39 -04:00
7da5f2ad4a
Changes from PR feedback
2022-07-28 16:05:22 -04:00
1ed064c1ea
Log when a cached credential is used
2022-07-28 16:03:24 -04:00
942259d44b
Add logging for why credentials are filtered
2022-07-28 16:03:24 -04:00
95d8b7005e
Allow reusing cached and explicit CCACHE files
2022-07-28 16:03:22 -04:00
4f3b59bee3
Add easier way to delete host tags
2022-07-28 14:52:17 -05:00
d6dabd4bfb
additional code review improvements for xnode auxiliary modules/lib/docs
2022-07-28 15:12:00 +03:00
f279e8d6ca
Split the CVE-2022-30333 unrar module into two different modules with a shared mixin to generate the file
2022-07-27 12:45:47 -07:00
8a22ec8da8
Msf::Post::Windows::Priv: Fix is_admin? / is_system? for shell sessions
2022-07-28 02:55:01 +10:00
f16e2cfb35
Send TGT to WinRM to allow further access of network resources (kerberos double hop)
2022-07-27 16:19:09 +01:00
7c82c1cf32
Land #16817 , Consolidate the config directory lookups
2022-07-26 14:57:50 -05:00
488d361721
Fix --tag for 'hosts' -t | --tag command
...
Enable parsing of the -t argument
2022-07-26 11:39:38 -05:00
a3ce694b88
Fix hosts crash when viewing tags
2022-07-26 12:07:57 +01:00
f779f0f482
consolidate the config directory lookups
...
The user configuration directory can be overridden via environment
variables or configuration files.
In the current implementation `Msf::Config.config_directory` should be
utilized for consistent location reporting. `Msf::Config.get_config_root`
is reserved to generation of a default location and should be considered
`private` as it ignores some injected configuration options. Currently
autoloading does not allow application of the `private` keyword to this method,
requiring guidance during development that module writers should access the
full configured `user` value of `Msf::Config.config_directory`.
2022-07-25 15:27:21 -05:00
c6c745c633
ManageEngine Xnode library changes and some docs/module adjustments after code review
2022-07-22 16:06:21 +03:00
abe90c1089
Land #16668 , HTTP Crawler: don't expect page object for msg
2022-07-21 18:35:35 -05:00
210bd33a01
Land #16774 , Suggest a correct datastore option
2022-07-21 14:37:45 -05:00
f9a951d034
Land #16737 , Remove initial code duplication between mssql clients
2022-07-20 19:44:25 +02:00
5dfec3f746
Land #16792 , Widen rescue scope for reverse ssh handler
2022-07-20 09:28:26 -05:00
94db8b957b
Land #16789 , Add openssl version to debug command
2022-07-20 09:27:23 -05:00
526ce819c0
Widen rescue scope for reverse ssh handler
2022-07-19 18:29:58 +01:00
f02012a8ee
Add openssl version to debug command
2022-07-19 15:26:05 +01:00
c388499acf
Suggest a correct datastore option
2022-07-18 09:32:45 -04:00
1dcfc3406a
Add Rex::Exploitation::CmdStagerFtpHttp to Msf::Exploit::CmdStager
2022-07-16 18:10:28 +10:00
1e903807bb
Land #16730 , Add mssql Kerberos auth support
2022-07-15 15:00:14 -04:00
37f7c15b1e
Update mssql login module to support kerberos authentication
2022-07-15 17:33:54 +01:00
f2ff7bb913
Add mssql kerberos authentication
2022-07-15 17:26:10 +01:00
npm-cesium137-io