502511a71a
memory_search module improvements
2024-01-24 19:55:53 +00:00
904e34434e
Land #18626 , SaltStack Minion Deployer
...
This PR adds an exploit module which allows for
a user who has compromised a host acting as a
SaltStack Master to deploy payloads to the Minions
attached to that Master.
2024-01-23 11:58:38 -05:00
2bd93ae72c
Use a glob for memory_search PROCESS_NAMES_GLOB
2024-01-22 16:53:32 +00:00
f8bdb02593
Validate memory_search PROCESS_IDS using regex
2024-01-22 16:53:00 +00:00
6ca4c113ee
Get memory match length from buffer TLV length for Mettle
2024-01-18 11:08:38 +00:00
337400b9b8
Remove AARCH64 reference
2024-01-18 11:08:38 +00:00
1e7b74a0e5
Correctly use process glob when searching for processes
2024-01-18 11:08:34 +00:00
977a9f3cd4
Add generic memory search module for supported Meterpreter sessions
2024-01-17 15:55:23 +00:00
b654275ec4
add saltstack lib
2023-12-23 13:52:52 -05:00
a0f04a7018
Land #17681 , Add datastore option for Jenkins home directory
2023-07-18 14:17:15 +01:00
d9e23a5c67
Update modules/post/multi/gather/jenkins_gather.rb
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2023-07-18 14:02:27 +02:00
cac515b8db
Update jenkins_gather.rb
...
Change the default Windows location to C:\ProgramData\Jenkins\.jenkins\.
2023-06-26 21:27:59 +02:00
d68eb84334
Land #18065 , Updates jenkins_gather module to work with newer version of Jenkins
2023-06-23 10:44:06 +01:00
9176d0d3e0
Updates jenkins_gather to work with newer version of Jenkins
2023-06-23 10:02:03 +01:00
38f542174d
Land #17336 , A more robust implementation for Windows version comparisons
...
Merge branch 'land-17336' into upstream-master
2023-06-13 15:38:56 -05:00
c6816fceec
Update post agther aws keys to run against linux
2023-06-01 18:19:11 +01:00
75ba9110e2
Added module for Windows version comparisons
...
Utilised it in various existing modules - this should fix some subtle bugs in specific modules' version detection.
2023-05-25 14:36:46 +10:00
f62994b4c0
Add Gather Wowza Streaming Engine Credentials
2023-03-09 01:31:23 +11:00
0f5f495108
Add default locations for the Jenkins home directory, and add an optional value that a user can suggest the home directory.
2023-02-22 03:56:54 +01:00
11c886b30f
Land #17616 , Run rubocop on post modules
2023-02-08 14:09:16 +00:00
a81a71c5df
Run rubocop on post modules
2023-02-08 13:47:34 +00:00
433bafdccf
Add missing module notes for stability reliability and side effects
2023-02-08 11:45:17 +00:00
29968fb76e
Land #17337 , Gather Dbeaver Password
2023-01-12 16:06:00 +01:00
f9b1c17c39
Fix exception handler logic and small improvements
2023-01-11 20:00:09 +01:00
ada6e73af6
Land #17341 , MinIO_Client Post Exploitation Credential Gatherer
2023-01-11 15:36:23 +01:00
43051a2811
Add missing curly bracket
2023-01-11 14:30:23 +01:00
6738ca2c43
Support multiple platforms
2023-01-11 18:04:29 +08:00
ce83086c00
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:31:42 +08:00
633d807dbc
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:29:13 +08:00
e00a86b6d6
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:28:26 +08:00
3dd794a97f
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:27:48 +08:00
8b6387867d
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:27:08 +08:00
6ef38e305f
Support multiple platforms
2023-01-10 15:01:55 +08:00
615bba3d31
Update jenkins_gather.rb
...
blank? should be used instead of empty?
2022-12-27 19:31:49 -06:00
4950124ea0
use more Post::File functions
2022-10-08 09:50:25 -04:00
11a00fa1f2
post/multi/gather/env: Cleanup and support non-Meterpreter sessions
2022-08-01 13:37:15 +10:00
21a6a18d92
trade URI.encode & URI.escape for Ruby 3
...
Ruby 3 removed the `URI.escape` methods however access to
the a parse for the same RFC is stil available at `URI::DEFAULT_PARSER.escape`.
Per the Ruby forum [comment](https://bugs.ruby-lang.org/issues/17309#note-1 ) this should equal.
2021-11-22 14:11:03 -06:00
28eab4d871
Add Meterpreter compatibility metadata
2021-10-06 13:54:51 +01:00
06762d0934
Update references to railgun to be consistent
2021-09-27 12:37:14 +01:00
46718e3390
Run Rubocop layout rules on modules
2021-09-10 12:53:39 +01:00
ded8200396
Land #15537 , Add support for ruby 3
2021-09-01 10:30:54 +01:00
4a9a15e638
Run Rubocop layout rules on modules
2021-08-27 17:19:43 +01:00
03400991af
Update uses of open ssl
2021-08-10 15:40:23 +01:00
8266f2ffdc
Land #15113 , post gather module for saltstack salt #15113
...
Merge branch 'land-15113' into upstream-master
2021-05-17 15:33:20 -05:00
b2f8bc6958
guard on nil minions
2021-05-15 09:38:15 -04:00
929197b85e
Fix rubocop errors
2021-05-04 11:34:22 +10:00
2ac4eeb141
Check VAS configuration to find defined kerberos location.
...
Also verify root prior to exploitation (gives better error message)
2021-05-04 11:31:11 +10:00
75ed65a0ab
properly name saltstack salt
2021-05-03 19:34:37 -04:00
4cd7637274
Fixed Rubocop errors added since this module was forked
2021-05-03 13:28:07 +10:00
f0a442b77d
Retrieve configured kerberos ticket location before retrieving tickets
...
Rather than assume that file-configured kerberos tickets will be at /tmp/krb5_*, let's check the config file.
Also allows us to give more meaningful error messages and point people in the direction of where to look if it doesn't work.
2021-05-03 13:07:45 +10:00
sjanusz-r7