bd1df9109c
Land #16224 , Ignore reload lib spec helper file
...
Ignore reload lib spec helper file
2022-02-28 12:23:04 +00:00
4fe7375341
Msf::Payload::Apk: Fix apktool version check
2022-02-27 05:33:00 +00:00
147837e9b6
Validate payload size even when not encoding
2022-02-25 17:21:59 -05:00
9f6e3ba543
Set the cached size for adapated payloads
2022-02-25 11:55:48 -05:00
5ee44bcdb7
Ignore reload lib spec helper file
2022-02-25 12:38:03 +00:00
abe55c8f91
raise RuntimeError on incomplete or extra data
2022-02-24 14:02:44 -06:00
94ca15686f
Fix issue hwereby some sites don't expose the WordPress API under the /index.php/ directory but instead under the root directory. This allows us to expand support for these websites.
2022-02-24 11:39:17 -06:00
bad55a858c
Add the new adapter payload type
2022-02-23 16:38:57 -05:00
3ea032472d
Updated exploit with better check method, added OnSessionCmd option
...
to run a command when a session is bootstrapped, added more
documentation.
2022-02-18 16:30:47 -06:00
6d94a316cf
Add packet fragmentation to ShadowMitmDispatcher
...
The ShadowMitmDispatcher now supports arbitrary size packets. The
ShadowMitmDispatcher now supports SMB3. The ShadowMitmDispatcher no
longer interferes with existing sessions.
2022-02-18 17:05:37 +09:00
480c44e9cb
refactor DEBUG_EXPLOIT code into mixin
2022-02-16 11:38:04 +00:00
0239ef1cc6
Land #16117 , Updates for Log4Shell
2022-02-15 16:39:00 -06:00
18b4ce8a13
Update replicant pattern to increment refs
2022-02-15 16:08:35 +00:00
af3fa09896
refactor smtp delivery to support continuation
...
When dealing with SMTP servers the communication needs to flow
a known protocol. To ensure the socket is in the correct state
after a send and receive it needs to be read until a line return
a response code followed by a `space` and additional data and `\r\n`
or the response code immediately followed by `\r\n` is returned.
2022-02-14 16:55:49 -06:00
732bd3a71c
Land #16173 , Add readline option to msfconsole
...
Add readline option to msfconsole
2022-02-14 16:11:15 +00:00
e9758f33b5
Land #16175 , order the loadpath summary in alphabetical order
2022-02-14 09:52:19 +00:00
d45783a5a0
Add readline option to msfconsole
2022-02-13 23:47:08 +00:00
683d4ac471
Add support for staged python command payloads
2022-02-13 12:03:08 -05:00
881805c543
Update ShadowMitmDispatcher fix PacketFu timeout
...
Setting the timeout to 0 was causing packet capturing issues in
PacketFu. Using cap.stream.each_data instead of cap.next reduces cpu
usage.
2022-02-13 21:24:57 +09:00
a13ae3882b
Land #16174 , fix specifying the mode on File.read for ruby 3 on multiple modules
2022-02-13 12:08:13 +00:00
ec2ae16135
Order loadpath summary output
2022-02-12 21:47:35 +00:00
395ab1d77e
Specify mode rb on file reads
2022-02-12 21:39:12 +00:00
c2cacffee9
Land #16170 , fix java native_arch
2022-02-12 06:13:48 +00:00
db00991f26
Land #16150 , add nagios xi web shell upload
2022-02-11 11:45:06 -06:00
72a0732009
Update ShadowMitmDispatcher to reduce ip lookups
...
The ShadowMitmDispatcher must be initialized with an interface, mac, and
ip address as keyword arguments. This prevents dispatchers from
retrieving the same network configuration multiple times.
2022-02-11 22:35:40 +09:00
2b281dce5c
Add support for Java Meterpreter's native_arch
2022-02-11 11:43:35 +00:00
5bc60f5bf7
clear any additional response on smtp connect
...
When connecting to an SMTP server after `HELO` and auth
complete there can be additional data sent from the client
that sits in the socket queue. Adding a `get_once` after connection
has settled ensure any pending for extension responses are cleared.
2022-02-10 14:25:05 -06:00
9635fde12d
Add support and templates for aarch64 targets
2022-02-10 10:49:02 -06:00
8558f88a14
Update the Shadow Dispatcher for portability
...
Use PacketFu::Utils.whoami? instead of PacketFu::Utils.default_int to
retrieve the ip address for a network interface. The Exploit class for
the Shadow Dispatcher is now a module.
2022-02-10 22:42:25 +09:00
425e57b88b
Land #16163 , Add the ClaimsPrincipal .NET gadget chain
2022-02-09 14:46:38 -06:00
e6c1d20c5d
Add the ClaimsPrincipal .NET gadget chain
2022-02-09 14:38:51 -05:00
47c74a0037
Land #16121 , fix rhost exception due to no session
2022-02-09 10:38:34 -06:00
a50f39ac12
return super if no session
2022-02-09 10:08:02 +00:00
9758251278
Initial commit of CVE-2021-37343
2022-02-05 18:21:18 -08:00
4f69089690
Fix to_handler case sensitivity issue
2022-02-04 13:39:07 +00:00
965493191f
Add and use a Log4Shell mixin
2022-02-03 16:09:49 -05:00
f16815e776
Land #16066 , Fix params not being passed to scripts
2022-02-03 12:28:59 +00:00
d854751f82
Fix params not being passed to scripts
2022-02-03 11:13:27 +00:00
5647e1a94f
Add service manager commands to msfconsle
2022-02-02 22:26:41 +00:00
d9876e889a
Land #15994 , fix console.read does not return command output
2022-02-01 23:44:48 +00:00
5c47ff0e47
Land #16132 , [MySQL injection library] Avoid the use of '<>'
2022-02-01 14:50:55 -06:00
8ab102e72c
Land #16014 , Change custom parsers to Rex Parser and add long arguments
2022-02-01 17:38:51 +00:00
c4700ab2f4
Add state to workspace command, extract sevices columns, correct tab-complete
2022-02-01 17:09:17 +00:00
8bf51dd1d8
Update smb_shadow and shadow_mitm_dispatcher
...
The dispatcher no longer uses an override flag, Instead the smb_shadow
module explicitly sets the attributes.
2022-01-31 14:49:18 +09:00
51814a4a8b
Refactor the code, using if(CONDITION,sleep(...),0) only
2022-01-30 23:49:07 +00:00
e329d78a46
Use = instead of <> for blind queries (fixes some wordpress plugin SQLis)
2022-01-30 23:01:08 +00:00
613e06a8df
Fix exception in rhost during staging
2022-01-29 07:59:22 +00:00
d46822184f
Updates for Log4Shell
2022-01-28 14:56:44 -05:00
c30dcf57d0
prepend_nops: Return unmodified shellcode if no compatible nops for arch
2022-01-28 16:15:29 +00:00
dbc8a70b7c
Merge remote-tracking branch 'origin/master' into mitm_dispatcher
2022-01-28 10:24:50 +09:00
Simon Janusz