adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

20644 Commits

Author SHA1 Message Date
Dean Welch 82057178ca log threads with no uuid 2023-11-07 15:31:46 +00:00
sfewer-r7 7024d4ecac remove redundant unless expression 2023-11-07 09:06:58 +00:00
Stephen Fewer 4dec6640c0 fix typo in cisco_ios_xe.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2023-11-07 09:02:12 +00:00
Ashley Donaldson 7442655ab9 Override to TCP when encountering UDP-unfriendly comms 2023-11-07 15:58:45 +11:00
Ashley Donaldson 21f3335c31 Fully integrated Rex-socket-friendly DNS 2023-11-07 14:05:24 +11:00
Ashley Donaldson a7c4b29748 Register nameserver with framework 2023-11-07 06:46:06 +11:00
Dean Welch c7e0e094fa Add core session commands and test suite 2023-11-06 16:34:37 +00:00
sfewer-r7 b28668790d allow user to explicitly specify a CLI mode. Valid modes are 'user', 'privileged', and 'global'. 2023-11-06 11:40:22 +00:00
JustAnda7 672d651221 Optimization-of-the-libraries-using-Net-NTLM 2023-11-04 11:41:27 -04:00
sfewer-r7 a55132b36f strip out "**CLI Line # " from the results and use print_line instead of print_status for cleaner output. 2023-11-03 17:09:08 +00:00
sfewer-r7 17420289dc Add two auxiliary modules for the recent Cisco IOS XE exploit chain bugs (CVE-2023-20198 and CVE-2023-20273). This allows for unauthenticated remote CLI or OS command execution. 2023-11-03 15:38:35 +00:00
Ashley Donaldson dd209deeb3 Initial syntax handling for DNS command 2023-11-03 12:04:41 +11:00
Metasploit 289dcf733c Bump version of framework to 6.3.42 2023-11-02 12:08:06 -05:00
Jack Heysel 17f7d5c253 Land #18497, Add Exploit For F5 CVE-2023-46747 
This module exploits a flaw in F5s BIG-IP Traffic Management User
Interface (TMUI) that enables an external, unauthenticated
attacker to create an administrative user. The attacker can then use
the admin user to execute arbitrary code in the context of the root user.
 2023-11-02 11:46:15 -04:00
Spencer McIntyre d26742a266 Add check code annotations, update AJP link 2023-11-02 08:53:56 -04:00
Spencer McIntyre 714eeaaa3a Finish cleaning the exploit up 2023-11-01 16:55:36 -04:00
Dean Welch 3f3531d119 Add test for command shell sessions 2023-10-31 16:35:58 +00:00
bwatters ac6aa53fc7 Land #18386, Add a new lmkdir command 
Merge branch 'land-18386' into upstream-master
 2023-10-30 14:36:56 -05:00
Spencer McIntyre 6e9facbefb Merge pull request #18419 from smashery/dcsync_kerberos 
DCSync using Kerberos Pass-the-Ticket
 2023-10-30 09:41:22 -04:00
Ashley Donaldson 2a699b89fa Changes from code review 2023-10-30 12:51:55 +11:00
Spencer McIntyre 7b76cc01f9 Add x86 support to windows/manage/kerberos_tickets 2023-10-27 12:47:19 -04:00
Spencer McIntyre 7e4e6edc2f Fix a typo in the constant name 2023-10-27 12:47:19 -04:00
Spencer McIntyre 79a3e756b3 Add the ENUM_LUIDS action 2023-10-27 12:47:19 -04:00
Spencer McIntyre 7b4caf79f8 Move the code into libraries for reuse 2023-10-27 12:47:19 -04:00
Spencer McIntyre 0dea63904f Allow passing pointers for PBLOB in parameters 
This will cause railgun to use the pointer as is it were defined as an
LPVOID parameter type. This is useful in cases where the contents are
already in the target's memory.
 2023-10-27 12:47:19 -04:00
Spencer McIntyre ba9cb1ef40 Update advapi32 definitions 
Add definitions for ConvertSidToStringSid and fix the data type of the
ThreadHandle parameter.
 2023-10-27 12:47:19 -04:00
Spencer McIntyre 71f019c359 Add initial secur32.dll railgun definitions 2023-10-27 12:47:19 -04:00
Spencer McIntyre ff699aae00 Accept BinData::Struct instances in railgun 
This updates railgun to accept BinData::Structs in key locations of
railgun for convenience.
 2023-10-27 12:47:19 -04:00
Spencer McIntyre 5b5d5ade40 Free data using the new util API 2023-10-27 12:47:19 -04:00
adfoster-r7 3b4302d902 Land #18441, Add at rest encryption to Meterpreter payloads 2023-10-27 12:18:19 +01:00
Metasploit 369c66a85e Bump version of framework to 6.3.41 2023-10-26 13:58:52 -05:00
adfoster-r7 b58f963355 Land #18299, extend error message for timeouts to include more detail to user 2023-10-26 00:21:22 +01:00
adfoster-r7 93645c23ac Land #18403, Fix FileDropper to properly clone string variables before storing them 2023-10-25 20:55:06 +01:00
Spencer McIntyre 235009d0de Use the new AlterContext definition 2023-10-25 15:02:20 -04:00
Zach Goldman 862e738015 extend error message for timeouts to include more detail to user 
initial functionality, testing/cleanup still needed

script and command functionality

remove unnecessary accessor

switch puts to print_error in proc

ensure proc is reset, run on every error, add yard docs

fix yard, refactor/remove dead code

rename on_error_proc
 2023-10-25 11:08:00 -05:00
Spencer McIntyre 9253b35fb2 Allow freeing allocated utility strings 
Also use HeapAlloc so we're not leaking entire pages.
 2023-10-24 17:18:36 -04:00
adfoster-r7 96a04265c7 Land #18470, Adds wiki guide for session searching and killing stale sessions 2023-10-24 15:30:46 +01:00
Zach Goldman 8331f4d2ad Adds wiki guide for session searching 
Also tweaks an error message

add readme to directory
 2023-10-23 15:33:53 -05:00
h00die 3bf880192e review comments 2023-10-23 10:28:33 -04:00
h00die 0d2a5795fe total to bottom 2023-10-23 10:28:33 -04:00
h00die ed78df0f0f add creds and klist to db_stats 2023-10-23 10:28:33 -04:00
h00die 7452cda2b1 db_stats review comments 2023-10-23 10:28:33 -04:00
h00die 5f2703f8c0 add stats command 2023-10-23 10:28:33 -04:00
Christophe De La Fuente b0b4da543d Land #18400, Kerberos ticket_search fix passing in a workspace 2023-10-23 16:17:24 +02:00
Christophe De La Fuente 77a8b0efa2 Land #18421, Save Kerberos tickets in the MSF cache upon a successful login 2023-10-23 15:25:09 +02:00
Metasploit 30e1930444 Bump version of framework to 6.3.40 2023-10-19 12:08:32 -05:00
dwelch-r7 7baabd08db Land #18364, Add support for filtering sessions 2023-10-19 16:40:42 +01:00
Zach Goldman b4b73529d3 add -e flag for stale sessions 
remove single flag

pivot to search flag

added support for search session type

adds search session id support

remove stale references

reshuffle code

fix time parsing, add command support

fix search list, reduce duplicated code

testing added

killall with search lists table of killed sessions

sessions are no longer represented by ids

addresses feedback on code structure and search behavior

some test reshuffling, switch raised errors to printed ones

add checkin validation, rest of cmd_sessions tests

add time parsing test

refactoring

test reformatting and adjusted error validation

make error handling more explicit, add test context

fixes

sub quotes, make constant

rubocopping

switch before and after to greater than and less than

mbetter incorporate constants

update example
 2023-10-19 09:41:18 -05:00
Christophe De La Fuente 0b7a1bfcf7 Use #dup instead of #clone #2 2023-10-17 12:39:23 +02:00
Christophe De La Fuente 5f438f729d Use #dup instead of #clone 2023-10-17 12:19:03 +02:00