09ea05754c
Land #16094 , Fix msfdb init command failure in systems that use the 'pg_ctl.rb' msfdb helper
2022-07-27 12:15:37 -05:00
8a22ec8da8
Msf::Post::Windows::Priv: Fix is_admin? / is_system? for shell sessions
2022-07-28 02:55:01 +10:00
19d044621c
Fix minor capitalization issue
2022-07-27 11:47:31 -05:00
f16e2cfb35
Send TGT to WinRM to allow further access of network resources (kerberos double hop)
2022-07-27 16:19:09 +01:00
00b85e9bb4
Fix msfrpcd console read failures
2022-07-27 13:11:11 +01:00
7c82c1cf32
Land #16817 , Consolidate the config directory lookups
2022-07-26 14:57:50 -05:00
488d361721
Fix --tag for 'hosts' -t | --tag command
...
Enable parsing of the -t argument
2022-07-26 11:39:38 -05:00
a3ce694b88
Fix hosts crash when viewing tags
2022-07-26 12:07:57 +01:00
f779f0f482
consolidate the config directory lookups
...
The user configuration directory can be overridden via environment
variables or configuration files.
In the current implementation `Msf::Config.config_directory` should be
utilized for consistent location reporting. `Msf::Config.get_config_root`
is reserved to generation of a default location and should be considered
`private` as it ignores some injected configuration options. Currently
autoloading does not allow application of the `private` keyword to this method,
requiring guidance during development that module writers should access the
full configured `user` value of `Msf::Config.config_directory`.
2022-07-25 15:27:21 -05:00
c6c745c633
ManageEngine Xnode library changes and some docs/module adjustments after code review
2022-07-22 16:06:21 +03:00
abe90c1089
Land #16668 , HTTP Crawler: don't expect page object for msg
2022-07-21 18:35:35 -05:00
210bd33a01
Land #16774 , Suggest a correct datastore option
2022-07-21 14:37:45 -05:00
c4a245640e
Bump version of framework to 6.2.9
2022-07-21 12:06:12 -05:00
a4dee1a171
Land #16743 , Fix mssql crash when using tds encryption
2022-07-20 16:06:35 -05:00
f9a951d034
Land #16737 , Remove initial code duplication between mssql clients
2022-07-20 19:44:25 +02:00
5dfec3f746
Land #16792 , Widen rescue scope for reverse ssh handler
2022-07-20 09:28:26 -05:00
94db8b957b
Land #16789 , Add openssl version to debug command
2022-07-20 09:27:23 -05:00
526ce819c0
Widen rescue scope for reverse ssh handler
2022-07-19 18:29:58 +01:00
f02012a8ee
Add openssl version to debug command
2022-07-19 15:26:05 +01:00
c388499acf
Suggest a correct datastore option
2022-07-18 09:32:45 -04:00
1dcfc3406a
Add Rex::Exploitation::CmdStagerFtpHttp to Msf::Exploit::CmdStager
2022-07-16 18:10:28 +10:00
1e903807bb
Land #16730 , Add mssql Kerberos auth support
2022-07-15 15:00:14 -04:00
37f7c15b1e
Update mssql login module to support kerberos authentication
2022-07-15 17:33:54 +01:00
f2ff7bb913
Add mssql kerberos authentication
2022-07-15 17:26:10 +01:00
9579e355c1
Land #16749 , Add winrm kerberos authentication support
2022-07-15 16:24:36 +01:00
fde4d4ae22
Bump version of framework to 6.2.8
2022-07-14 12:09:54 -05:00
c675c104d3
LAnd #16771 , Fix msfconsole crashing with openssl3
2022-07-14 11:06:48 -05:00
55079515ca
implement code review suggestions
2022-07-14 06:04:14 -07:00
1103f525a6
Stop msfconsole crashing with openssl3
2022-07-14 12:05:01 +01:00
44e4714b9b
Land #16764 , Rex::Proto::Http: Add evasion options to shuffle GET / POST parameters
2022-07-11 14:17:07 +01:00
39f288bfe3
Rex::Proto::Http: Add evasion options to shuffle GET / POST parameters
2022-07-11 01:37:41 +10:00
728cf97f6e
Land #16718 , Fix run_as module on x64 systems
2022-07-08 09:22:22 -04:00
39f90d95b1
Create sessions for winrm_login successes.
...
Reuses the connection, so that authentication doesn't need to happen again
2022-07-08 16:57:09 +10:00
d3e7152954
Changes from code review
2022-07-08 11:47:54 +10:00
ade10650a8
Set the NTLM flags for LDAP authentication
...
The sign and seal flags need to be removed for LDAP. Because sign and
seal are not set, key56 and key128 can also be removed.
The rest of the flags are taken from
https://github.com/rapid7/ruby_smb/blob/cc5228730f9bc39215322ab6e07fd8da33602bb9/lib/ruby_smb/ntlm.rb#L31
2022-07-07 13:20:34 -04:00
887db0b76e
Bump version of framework to 6.2.7
2022-07-07 12:04:37 -05:00
f9f3be3644
Fix unit tests
2022-07-07 18:04:22 +10:00
b2eb348d94
Added WinRM using Kerberos, including encryption
2022-07-07 13:17:09 +10:00
b8ca08d3ce
Support NTLM and kerberos auth in LDAP
2022-07-06 17:12:27 -04:00
4abef7d373
Remove an unused option and require SmbRhostname
2022-07-06 15:16:50 -04:00
e53bccae85
Set the session key for older SMB dialects too
2022-07-06 15:16:40 -04:00
aea37f7137
Add initial SMB Kerberos authentication support
2022-07-06 16:15:33 +01:00
031b91766c
Fix individual mssql login crashes stopping further login attempts
2022-07-05 16:36:42 +01:00
5b8680ee91
Land #16567 from h00die/juniper_enhancements
...
Juniper config processor enhancements
2022-07-05 12:06:34 +01:00
3a4276ad33
Land #16716 Expose URIPATH option for HTTP stagers
...
This fix exposes the CMDSTAGER::URIPATH option
for HTTP stagers
2022-07-04 21:11:01 -04:00
b42654875e
Fix mssql crash when using tds encryption
2022-07-04 11:41:57 +01:00
065fe425d3
pass in read permissions to process_open()
2022-07-01 13:05:38 -05:00
8094c67465
switch to hash, reorder args
2022-07-01 13:05:38 -05:00
16a2fbe544
add yescrypt format
2022-07-01 13:05:38 -05:00
40b18b5e7a
Update lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2022-07-01 12:56:45 -05:00
Grant Willcox