b49e480c53
Msf::Post::File.file_remote_digest[md5|sha1]: Print session.fs.file errors
2022-08-13 15:06:57 +10:00
f63ad564a3
Land #16884 , deprecate credcollect script
...
The credcollect script is effectively replaced by
post/windows/gather/credentials/credential_collector
2022-08-11 15:01:59 -04:00
09d3acf696
Land #16833 , deprecate srt_webdrive_priv script
...
The srt_webdrive_priv script is effectively replaced by
exploit/windows/local/service_permissions
2022-08-11 14:46:31 -04:00
a211478d92
Bump version of framework to 6.2.13
2022-08-11 12:09:07 -05:00
5faee26f10
Add the DataSetTypeSpoof .NET deserialization chain
2022-08-08 17:52:51 -04:00
852fac48b1
Add the DataSet .NET deserialization chain
2022-08-08 17:51:37 -04:00
310cfde62b
Fix a bug with empty length-prefixed strings
2022-08-08 15:14:17 -04:00
8b3e9f89b5
Deprecate credcollect script
2022-08-08 17:35:55 +10:00
2a337c9436
Deprecate srt_webdrive_priv script
2022-08-08 16:16:44 +10:00
e99783f329
Post::Windows::Registry.normalize_key: Return hive without trailing slash
2022-08-07 21:50:58 +10:00
44ef271623
Post::Windows::Registry.shell_registry_getvalinfo: Fix reg value parsing
2022-08-07 15:31:54 +10:00
bb22c81c8b
Post::Windows::Registry.normalize_key: Remove $blab global variable
2022-08-07 14:40:55 +10:00
ed3a0959ae
vcenter post lib and spec
2022-08-06 14:01:56 -04:00
703cc872d4
Msf::Post::File.file_remote_digest[md5|sha1]: Add :util to set hash utility
2022-08-06 19:15:30 +10:00
50a2127f3c
Msf::Post::File.file_remote_digest[md5|sha1]: Remote hashing for PS sessions
2022-08-06 18:56:39 +10:00
7d71bf6875
Msf::Post::File.file_remote_digest[md5|sha1]: Use Meterpreter hash methods
2022-08-06 17:42:11 +10:00
c45262cd46
Land #16800 , Add support for OpenSSL 3
2022-08-05 14:20:51 -05:00
756c910b9a
Add warning if OPENSSL_CONF is already present
2022-08-05 15:45:50 +01:00
e93a75cd01
Fix broken reverse ssh command shell
2022-08-04 23:58:11 +01:00
9c6a198453
Land #16796 , Path traversal vulnerability in RARLAB UnRAR < 6.12 with Zimbra RCE module
2022-08-04 19:44:57 +02:00
a858c15b47
Bump version of framework to 6.2.12
2022-08-04 12:05:15 -05:00
a314423e81
Some changes requested by @cdelafuente-r7
2022-08-03 14:51:51 -07:00
163d4d5b11
Land #16854 , Add CVE-2022-31660 VMware Workspace ONE Access LPE
...
Merge branch 'land-16854' into upstream-master
2022-08-03 16:50:12 -05:00
a415a86c11
Fix a bug caused by ClassTypeInfo additional info
...
The ClassTypeInfo does not have a #value method that returns a scalar,
switch to using snapshot instead.
2022-08-03 16:38:43 -04:00
56d1225900
Add the ArraySinglePrimitive data type
2022-08-03 16:38:29 -04:00
2433cccde5
Land #16840 , updates read_profile_list
...
This removes some Meterpreter-only method calls, which
allows non-Meterpreter sessions to use read_profile_list
and load_missing_hives. This also changes read_profile_list
to be able to read profile information for all accounts.
2022-08-03 11:46:44 -04:00
f65119b353
Support OpenSSL3 and run Ubuntu 22.04 in test matrix
2022-08-03 15:49:53 +01:00
cd81ced5cb
Land #16822 , Fix msfrpcd console read failures
2022-08-02 17:29:25 -04:00
4f5c711dc7
Land #16833 , Add easier way to delete host tags
...
This PR adds an easier way to delete host tags from
the metasploit-framework and updates documentation accordingly
2022-08-02 14:02:54 -04:00
7277483022
add safe navigation to ensure fs access valid
2022-08-01 14:33:02 -05:00
c66f98bae6
Make lint happy
2022-08-01 10:03:35 -07:00
e7edafbcfb
Throw errors in the rar-generator library rather than returning nil
2022-08-01 09:54:31 -07:00
4ff03b2305
guard for addtional possible OS errno
...
When communicating to ssh the OS may report `Errno::EPIPE`
this can be handled more gracefully to avoid crashing consumers
of the mixin library.
2022-08-01 10:44:32 -05:00
c447cc53fd
Land #16839 , Fix shell_registry_[enumvals|getvaldata] error check
2022-08-01 13:59:50 +01:00
e2973b0c2e
Post::Windows::UserProfiles: read_profile_list: Add :user_accounts_only option
2022-07-31 21:04:05 +10:00
a4a2b6e6db
Post::Windows::UserProfiles: Use Msf::Post::File mixin
2022-07-31 20:11:25 +10:00
98449b6ce6
Post::Windows::Registry: Fix shell_registry_[enumvals|getvaldata] error check
2022-07-31 18:14:33 +10:00
d26eec6a44
Bump version of framework to 6.2.11
2022-07-29 13:16:33 -05:00
d36bee8755
A few simple feedback changes
2022-07-29 10:48:07 -07:00
de22141e1b
Option aliases are valid option names too
2022-07-29 10:54:57 -04:00
c770b7dd39
Don't interfere when setting options globally
...
This fixes an issue introduce in #16774 where the `setg` and `set -g`
commands were broken. When setting options globally, just use the
original functionality instead of searching the list based on the
current context.
2022-07-29 10:30:39 -04:00
7da5f2ad4a
Changes from PR feedback
2022-07-28 16:05:22 -04:00
1ed064c1ea
Log when a cached credential is used
2022-07-28 16:03:24 -04:00
942259d44b
Add logging for why credentials are filtered
2022-07-28 16:03:24 -04:00
95d8b7005e
Allow reusing cached and explicit CCACHE files
2022-07-28 16:03:22 -04:00
4f3b59bee3
Add easier way to delete host tags
2022-07-28 14:52:17 -05:00
963500f573
Bump version of framework to 6.2.10
2022-07-28 12:03:55 -05:00
d6dabd4bfb
additional code review improvements for xnode auxiliary modules/lib/docs
2022-07-28 15:12:00 +03:00
81ca555d28
Land #16824 , Msf::Post::Windows::Priv: Fix is_admin? / is_system? for shell sessions
2022-07-27 16:28:05 -05:00
f279e8d6ca
Split the CVE-2022-30333 unrar module into two different modules with a shared mixin to generate the file
2022-07-27 12:45:47 -07:00
bcoles