adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

20644 Commits

Author SHA1 Message Date
Spencer McIntyre 708c795890 Land #18560, Forging diamond and sapphire tickets 2023-11-28 11:14:15 -05:00
h00die 147aa3df33 fixes 2023-11-28 08:04:49 -05:00
Ashley Donaldson 2ea1f43f12 Unit test for new kerberos client pre-auth behaviour 2023-11-27 17:10:19 +11:00
Ashley Donaldson c293c273ba Attempt to decrypt pre-auth kerberos response 2023-11-27 13:09:59 +11:00
Ashley Donaldson 3ca13d9358 Changes from code review. 
Added in the stability/IOC notes, since diamond/sapphire do make requests.
 2023-11-27 10:30:54 +11:00
Ashley Donaldson ff70cc7e42 Clearer RHOST error message 2023-11-24 11:34:18 +11:00
Ashley Donaldson 2ead152173 Add specific module to perform ASREP-roasting 2023-11-24 07:43:49 +11:00
Christophe De La Fuente 0d591a3136 Land #18526, Add a command to customise DNS resolution 2023-11-23 17:46:16 +01:00
Metasploit 21d23be8e3 Bump version of framework to 6.3.45 2023-11-23 09:57:42 -06:00
Jack Heysel 397b9971a3 Clean up started 2023-11-22 21:06:55 -05:00
Ashley Donaldson 473ded345b Fix UDP detection when DNS resolution is not on 2023-11-23 10:34:09 +11:00
Spencer McIntyre 4321aafe77 Land #18547, Update ssh login pubkey module 
Update ssh login pubkey module to correctly identify windows ssh platform
 2023-11-22 17:09:06 -05:00
Spencer McIntyre e9d6bab975 Move the ServerClient code into a dedicated file 2023-11-22 13:34:18 -05:00
Ashley Donaldson ef9a165d22 Changes from code review 2023-11-22 16:43:02 +11:00
h00die bba178e87f crack windows 2023-11-21 17:11:15 -05:00
h00die 4bca269e01 doc overhaul 2023-11-21 17:11:15 -05:00
h00die 46909f63bc linux cracker enhancements 2023-11-21 17:11:15 -05:00
h00die aa27b140cf crack aix rewrite 2023-11-21 17:11:15 -05:00
Ashley Donaldson 34bd661d3f Fall back to other server if first one fails 2023-11-22 09:06:06 +11:00
Spencer McIntyre 8d4ae4bc78 Check the cache for a TGT without a host 
This fixes allows forged golden tickets to be reused from the cache
 2023-11-21 14:19:47 -05:00
Simon Janusz 9870d97ece Land #18538, Update database connection logic to avoid startup crashes 2023-11-21 15:32:01 +00:00
adfoster-r7 7f8da5a121 Land #18558, Support x64 in enum_chrome 2023-11-21 15:26:56 +00:00
adfoster-r7 d98a1e9aaa Land #18548, Refactor the ghostcat module to use the AJP definitions provided by Rex::Proto 2023-11-21 13:29:11 +00:00
Ashley Donaldson 1b4099f5a3 Copy across some more properties from the PAC 2023-11-21 13:51:05 +11:00
Spencer McIntyre 9d757990fe Fix LocalAlloc/LocalFree definitions 
Railgun should not be using DWORD for pointer sizes because it breaks
things on 64-bit sessions.

Fixes #18544
 2023-11-20 16:23:33 -05:00
Ashley Donaldson 45a5c62308 Fix diamond tickets 2023-11-20 10:11:38 +11:00
Spencer McIntyre 69e5caa1a0 Refactor the ghostcat module to use the AJP defs 2023-11-17 12:58:05 -05:00
adfoster-r7 1b12dc3940 Update ssh login pubkey module to correctly identify windows ssh platform 2023-11-17 12:51:01 +00:00
Ashley Donaldson 5e9ff17e59 Handle NTHASH tickets, including warning users that it's a terrible idea 2023-11-17 19:24:25 +11:00
Ashley Donaldson fb9bd2cae1 Use empty string for missing values rather than nil 2023-11-17 15:09:30 +11:00
Ashley Donaldson 9d873cb7ac Fix bug in writing UpnDnsInfo structure, and include in sapphire PAC 2023-11-17 13:49:55 +11:00
Ashley Donaldson 24490cbe1e Replicate Logon domain name and extra sids from sapphire ticket 2023-11-17 13:16:40 +11:00
Metasploit 56016cb3e7 Bump version of framework to 6.3.44 2023-11-16 12:06:13 -06:00
dwelch-r7 a41fd9deda Land #18532, Fix db2 scanner module crashes 2023-11-16 15:21:48 +00:00
Ashley Donaldson 4e6a29d0fb Implement sapphire tickets 2023-11-15 22:31:11 +11:00
adfoster-r7 e011fbeb32 Land #18516, extract common dispatcher commands into a single resuable mixin 
Extract reusable core session commands
 2023-11-15 11:25:52 +00:00
Ashley Donaldson bdb13601ae Implement diamond tickets 2023-11-15 16:13:01 +11:00
adfoster-r7 ad608f6999 Update database connection logic to avoid startup crashes 2023-11-14 18:29:14 +00:00
adfoster-r7 fc988c2033 Fix db2 scanner module crashes 2023-11-13 21:41:28 +00:00
Ashley Donaldson 1a07ab5aee Improved comments on functions 2023-11-10 15:56:45 +11:00
Ashley Donaldson 987bed6972 Remove unimplemented command 2023-11-10 15:01:45 +11:00
Ashley Donaldson f351d7b5e1 Don't create DNS cached resolver on every test, because it'll exhaust the OS's resources 2023-11-10 12:07:37 +11:00
Metasploit 3d98cf7e85 Bump version of framework to 6.3.43 2023-11-09 12:08:08 -06:00
Ashley Donaldson d0585e0df5 Added unit tests 2023-11-09 14:45:06 +11:00
bwatters 77a93e452f Land #18507, Exploit & Auxiliary modules for CVE-2023-20198 and CVE-2023-20273 (Cisco IOS XE) 
Merge branch 'land-18507' into upstream-master
 2023-11-08 09:05:40 -06:00
Jack Heysel c243125612 Land #18379, Improve ccache hostname matching 
The service authenticator was filtering out valid credentials
when the hostname wasnt an exact match when credentials for
a domain should work on a subdomaini. This PR fixes that issue.
 2023-11-07 22:08:15 -05:00
Ashley Donaldson 8ce328022c Clearer dns feature results 2023-11-08 11:15:01 +11:00
Ashley Donaldson 00f508170c Implemented tab completion for DNS command 2023-11-08 10:16:22 +11:00
Ashley Donaldson 1a7eefd972 Support saving and loading DNS in the MSF config file 2023-11-08 07:38:12 +11:00
Dean Welch ea41ec7a5d Fix tests leaving behind threads 2023-11-07 17:43:43 +00:00