adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

13785 Commits

Author SHA1 Message Date
James Barnett 084607b955 Set current_data_service when disconnecting from http 2018-08-31 16:48:33 -05:00
Erin Bleiweiss 659e4f2b34 Build json correctly for new notes field 2018-08-31 16:47:00 -05:00
James Barnett 185fe56e82 Add message when connecting via yaml 2018-08-31 16:13:17 -05:00
James Barnett a413b27e57 Fix bug connecting to https servers 2018-08-31 15:49:29 -05:00
Wei Chen b976ccd3fe Fix typos 2018-08-31 14:53:52 -05:00
Wei Chen bcaa6e90f6 Fix targeting 2018-08-31 13:37:23 -05:00
James Barnett 1e6f19e1de Update db_save message when no valid service connected 
Also add the current data service name to db_status
 2018-08-31 12:54:08 -05:00
Wei Chen f296c204cb Add some comments 2018-08-31 11:55:50 -05:00
Wei Chen 5c6b33bcf4 Add support for evasion targets, also module doc 2018-08-31 11:45:29 -05:00
James Barnett bc4a0345dc Fix bug preventing yaml connections 2018-08-31 11:26:08 -05:00
James Barnett 6ddf4f4c22 Refactor db_connect for updated usage 
db_connect will now automatically save the data service it connects to
db_save will be used to set the current data service as default
add a db_remove command to delete a saved data service
 2018-08-30 18:19:14 -05:00
Wang Yihang a83e63516e [+] Modify script permission in case of TOCTOU 2018-08-30 10:25:27 -04:00
Wang Yihang e6140bc78c Merge branch 'upstream-master' into add-source-meta-command 2018-08-30 10:17:29 -04:00
Wei Chen ea41127c6e Support info command 2018-08-29 16:24:23 -05:00
James Barnett d6d9f9c675 Handle case for no connection for save and disconnect 2018-08-29 13:54:20 -05:00
Wei Chen b085633e49 Style change and move option to evasion.rb 2018-08-29 13:39:29 -05:00
James Barnett 133892629e Dont allow invalid config file characters 
Also only save cert when it is present
 2018-08-29 12:49:03 -05:00
James Barnett f7ecd4436d Even more messaging changes 2018-08-29 11:32:01 -05:00
James Barnett 65f38d6051 More messaging changes 2018-08-29 11:19:37 -05:00
Adam Cammack 7414b18f20 Move prompt_char space to correct place 2018-08-29 10:38:28 -05:00
James Barnett 28954dbc1d More messaging improvements 2018-08-28 17:14:59 -05:00
James Barnett cc5d96a441 Update messaging 2018-08-28 17:00:58 -05:00
James Barnett 161fb52ae3 Dont build connect string manually during loadup 2018-08-28 16:37:14 -05:00
James Barnett 52cc140cd2 Handle case where no default db is set 2018-08-28 15:52:26 -05:00
William Vu 4803c889f9 Land #10507, GPP creds for db_import 2018-08-28 11:45:51 -05:00
James Barnett 5e45e2f1e9 Add help text for -l and -n options 2018-08-28 11:42:10 -05:00
James Barnett 3c1086741b Use correct variable name for api_token 2018-08-28 10:49:50 -05:00
James Barnett 5b7127c826 Use Rex::Text::Table for outputting data services 2018-08-27 13:18:41 -05:00
James Barnett 24cf99f59c Enable deletion of saved data services 2018-08-27 11:32:19 -05:00
Brent Cook cb07ba2b6c Land #10516, Add brace expansion encoder and update ${IFS} encoder 2018-08-25 22:23:07 -05:00
Brent Cook 969170096a Land #10520, Only allow setting persistence on payload jobs 2018-08-25 22:21:46 -05:00
William Vu 6df235062b Land #10505, post-auth and default creds info 2018-08-24 18:08:15 -05:00
William Vu e955e8dc15 Clean up code 
And hope I didn't break anything.
 2018-08-24 18:05:52 -05:00
James Barnett bb0ec0472b Enable saving local data services 2018-08-24 12:51:50 -05:00
Green-m 1dd91434f4 Fix #10518, bug fix when add persistent to non-payload job. 2018-08-24 03:39:18 -04:00
Green-m 6d84d3bfec Add tabs auto completion for irb. 2018-08-23 23:29:12 -04:00
Green-m 418b574161 Merge branch 'master' and resolve conflict. 2018-08-23 23:24:23 -04:00
William Vu 7c0dd2a0fe Add CmdUnixBrace and update CmdUnixIfs 
Acronyms can be capitalized as per the Ruby style guide.
 2018-08-23 21:18:09 -05:00
James Barnett 724e0dcaf3 Add ability to connect to saved data services 2018-08-22 17:16:27 -05:00
William Vu 9b3e0d8306 Add additional root tags for GPP XML 
Finally ran through all the samples and cross-referenced with MS14-025.

https://msdn.microsoft.com/en-us/library/cc232650.aspx
https://support.microsoft.com/en-us/help/2962486/ms14-025-vulnerability-in-group-policy-preferences-could-allow-elevati
 2018-08-22 16:48:33 -05:00
William Vu 2891255549 Clarify what is being imported currently 
Since the parser is focused on creds.
 2018-08-22 15:53:19 -05:00
William Vu 1e4eb0eae0 Revert report_note, since it added nothing 
A bit of misunderstanding. We're in agreement that loot was enough.
 2018-08-22 14:34:09 -05:00
William Vu 6fa04950ee Store parsed GPP data as a note 
And refactor slightly.
 2018-08-22 14:19:50 -05:00
Wang Yihang 29ff1ea952 [+] Add source meta command to execute script remotely 2018-08-22 21:50:40 +08:00
Wang Yihang 8f0a37add6 Merge remote-tracking branch 'upstream/master' into add-resource-meta-shell-command 2018-08-22 21:08:28 +08:00
王一航 e29135d0f5 Merge branch 'master' into impl-of-ctrl-z 2018-08-22 17:31:00 +08:00
William Vu b1c633faf6 Add Group Policy Preferences support to db_import 
And take the Jaden Smith approach, as @busterb quipped to me. :)

This one's a little weird, since you normally import scans into
Metasploit, but now that creds are first-class in the database, it makes
more sense to be able to import them.

Currently, your alternatives are post/windows/gather/credentials/gpp,
which requires a session, and auxiliary/scanner/smb/smb_enum_gpp, which
requires a network scan.
 2018-08-21 23:44:39 -05:00
James Barnett 57243106f7 Connect to the default database on startup 2018-08-21 14:29:20 -05:00
James Barnett b6401dbe56 Add db_save command 2018-08-21 11:10:43 -05:00
Wei Chen 080ba15179 Another boo-boo 2018-08-21 08:55:14 -05:00