a53be3184a
Improving error handling of Kerberos
2022-04-08 20:48:10 +01:00
1e867ac5a7
Improve kerberos user enum module
2022-04-08 15:55:37 +01:00
1fd779c52c
Land #15972 , add LEAK_PARAMS option log4shell scan
2022-04-06 11:17:44 -05:00
70b1da6df4
Fix a misspelling
2022-04-06 09:04:26 -04:00
04ac668e21
Update the docs for readability
2022-04-06 08:58:09 -04:00
23fc179160
Scan for log4shell-provided infoleaks
...
The formatted string containing the JNDI URL can contain further
formatted strings within it sourcing data from the formatting Java
context. This is the mechanism by which this module already gathers
target information.
Expand this capability by permitting the user to supply their own
query string variables separated by '^' and comparing the output
to these inputs for extraction of relevant exposed values.
To help with targeting for the pending-in-PR exploit module, add OS
detection capabilities as well.
2022-04-05 16:38:26 -04:00
cc6eb75cd7
Land #16364 , use dnsruby api for native_spoofer
2022-03-29 09:44:31 -05:00
bf88b7f618
Land #16325 - Replace IO read on binary files with File binread
2022-03-24 10:08:40 -05:00
ff77ff0d11
Fix RuboCop issues with ubiquiti_config.rb
2022-03-23 11:32:45 -05:00
03d645016c
Land #16250 , Update service mixins for NAT options
2022-03-23 00:13:20 +00:00
964f78fc69
Land #16341 , Implement VNC hash types
2022-03-22 17:00:02 -05:00
02c616a29e
Land #16207 , Fix VNC scanner modules and libraries to make them work in 2022
2022-03-22 13:40:29 -05:00
fd2d1c0784
Add and use the ListenerComm option for SOCKS
2022-03-22 09:23:09 -04:00
12c2d6ff7b
Apply rubocop updates to dns/native_spoofer
2022-03-21 14:02:43 -04:00
6abe2516d6
Update the module to use the Dnsruby API
2022-03-21 13:59:27 -04:00
024da204d1
Land #16353 , respect ssl_version in crawler
2022-03-21 12:24:38 -05:00
a739083db9
Readd the missing SocketServer mixin for SMB
2022-03-21 11:51:10 -04:00
929e5d5e76
Update the SMB capture module with new options
2022-03-21 11:47:56 -04:00
bbf9e3163a
Fix file reads on Windows for binary files
2022-03-21 12:47:39 +00:00
ccdc2db9e7
Land #16309 , Catch an exception in ssh_login
...
The ssh_login module would crash when the channel used to execute the
commands to gather the platform information reported that they failed.
2022-03-17 16:41:47 -04:00
da1e4853b8
Land #16317 , Free UDP ports after use
2022-03-17 16:39:09 -04:00
acf3906953
Add another instance of missing error handling
2022-03-17 16:07:31 -04:00
0f2813f70c
Update module and documentation for edits found whilst doing final pass of code
2022-03-16 16:55:03 -05:00
e678615f27
Fix items from code review
2022-03-16 16:54:38 -05:00
33e12bf06f
Correct CVE number, comments and documentation
2022-03-16 16:54:24 -05:00
b745a24a9d
Random payload && TARGETURI option
2022-03-16 16:54:15 -05:00
7c806a8723
Add auxiliary module for DOS IIS Server
2022-03-16 16:53:59 -05:00
40c422cdf7
Close NBNS, mDNS and LLMNR sockets when their modules are complete
2022-03-17 08:12:26 +11:00
972c260969
Fix double dereference by moving DNS cleanup into separate function, and force to run as job.
2022-03-17 08:12:25 +11:00
c3445ccb6f
respect ssl_version in crawler
...
When utilizing `Anemone` to crawl pages using `Rex` sockets
Framework common `SSL` settings can pull from standardized options.
This change enables more fine grained user control and avoids issues
with missing or deprecated SSL versions in newer Ruby versions.
2022-03-16 14:24:45 -05:00
4dd7fc60e6
Land #16324 , Fix broken DNS native_server
2022-03-15 09:06:03 -04:00
a959725f7c
implement vnc hash types
2022-03-13 13:27:38 -04:00
96e7e55496
Land #16252 , add GitLab GraphQL user enum module
2022-03-11 14:53:13 -06:00
d9285044ec
Land #16326 , Fix SMB signing detection when SMB1 is disabled
2022-03-11 18:13:18 +00:00
a602c10241
Add a print statement indicating requests are ongoing
2022-03-11 07:19:09 -08:00
e3061d1ddd
Added blog link. Switched to service_details and create_credential_and_login. Added some exit print info and updated docs
2022-03-11 07:00:21 -08:00
a62ca2259e
Land #16316 , deref services correctly
2022-03-11 12:08:42 +00:00
d5373a7278
Removed redundant cleanup calls which exploit_driver will call anyway
2022-03-11 12:08:51 +11:00
b5c481fd4c
Fix SMB signing detection when SMB1 is disabled
2022-03-10 13:09:18 -05:00
09b094cd64
DNS server: When there are multiple answers, set the answer, not the question, in the returned packet
2022-03-10 15:05:52 +11:00
6f159fa54e
Consistent handling of DNS and LDAP servers wrt ServiceManager
2022-03-10 11:01:37 +11:00
9761d68c19
Rename stop_service to cleanup_service for services that use reference counting
2022-03-10 10:28:25 +11:00
6f2a7d6167
Add note that SMB v1 is not supported
2022-03-08 23:52:24 +00:00
53772fa366
Gracefully handle relay host timeout, fix typos, and move SMBHashCapture location
2022-03-08 23:52:24 +00:00
507b1dab2b
Apply PR feedback
2022-03-08 23:52:22 +00:00
b4fe2502aa
Update smb_relay to support smb 2 and smb3
2022-03-08 23:52:22 +00:00
7a9d30e5b1
Land #16227 , add wp masterstudy privesc module
2022-03-07 10:58:23 -06:00
47532bb49a
use Faker for email and user names
2022-03-07 10:57:40 -06:00
86cad29799
wp masterstudy review
2022-03-06 08:07:20 -05:00
ad2fab6fee
Land #16153 , read full response on smtp send/recv
2022-03-04 01:24:46 +00:00
adfoster-r7