adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

2721 Commits

Author SHA1 Message Date
Patrick Double 8b1ff6d44e change bloodhound OutputDirectory to OptString 
OptPath is intended for a local path and performs validation. Attempting to set it to a target path that doesn't exist on the local fails.
 2024-02-29 07:12:37 -06:00
adfoster-r7 5fa1ce8ed2 Add support for newer sqlcmd versions 2024-02-12 11:51:02 +00:00
adfoster-r7 48221e594d Land #18704, Leverage the module metadata cache in the module_sets 2024-02-02 14:16:46 +00:00
Dean Welch 2cf045d3c4 Leverage the module metadata cache in the module_sets 2024-01-15 14:56:46 +00:00
bwatters 57c882cab5 Land #18604, Add Post Windows Gather to perform Mikrotik Winbox "Keep Password" credentials extraction 
Merge branch 'land-18604' into upstream-master
 2024-01-09 15:38:35 -06:00
siddolo dc6d84d823 Update modules/post/windows/gather/credentials/winbox_settings.rb 
Co-authored-by: Brendan <bwatters@rapid7.com>
 2024-01-09 00:43:10 +01:00
bwatters a0bc08c6ec Quick change to add support for more sessions and to only read the file once 2024-01-05 17:33:54 -06:00
Jack Heysel 3bad98afc6 Land #18488, add kerberos_tickets post module 
Adds a module to manage kerberos tickets from a compromised
host. This PR also includes rail gun enhancements.
 2023-12-07 19:12:48 -05:00
siddolo 48e2e09dfc msftidy fix 2023-12-07 19:23:33 +01:00
siddolo 05800296f3 RuboCop fixes and msftidy fixes 2023-12-07 13:45:19 +01:00
siddolo 4039ea523a RuboCop Fixes 2023-12-07 13:19:13 +01:00
siddolo 32e5dfb12d Windows gather credentials for Mikrotik Winbox 'Keep Password' feature 2023-12-07 13:14:37 +01:00
Spencer McIntyre 13ae9fcded Refactor things in #decrypt_data 
* Check that the initial memory was actually allocated before writing to
  it
* Don't pass 16 to CryptUnprotectData as the ppszDataDescr parameter
  because it is not a valid LPWSTR
* Don't leak memory in the event that CryptUnprotectData by ensuring mem
  and addr are always free'ed
* Combine free calls into one for speed
* Don't assume the sessions is ARCH_X64 if it is not ARCH_X86 because
  that may change some day
 2023-11-20 16:40:42 -05:00
bwatters b5aeab0c9f Merge #18491, Add Module for PL/SQL Developer to gather credentials 
Merge branch 'land-18491' into upstream-master
 2023-11-09 11:18:52 -06:00
Jemmy Wang 893da00c6a Modify Table DisplayName and password matching regex 2023-11-09 13:58:14 +08:00
Jemmy Wang a4750b11bc Optimize AES key 2023-11-09 05:26:20 +08:00
Jemmy Wang 9c23f86d83 Add support for v15 new encryption algorithm 2023-11-09 05:08:27 +08:00
Jemmy Wang d4166098a8 Update to be compatible for PL/SQL 14 2023-11-08 01:15:22 +08:00
Jack Heysel ce5188a76c Land #18218, improve Windows checkvm post module 
This PR includes a number of enhancements to the windows
checkvm post module, including reducing the number of requests
set to the targets among other things.
 2023-11-03 12:17:06 -04:00
jheysel-r7 23110e2ee3 Update modules/post/windows/gather/checkvm.rb 2023-11-03 11:18:55 -04:00
Jemmy Wang 763fae6cd7 Fix typo to pass msftidy 2023-11-02 10:41:53 +08:00
Spencer McIntyre 7b76cc01f9 Add x86 support to windows/manage/kerberos_tickets 2023-10-27 12:47:19 -04:00
Spencer McIntyre 54bce7fcb5 Add module docs 2023-10-27 12:47:19 -04:00
Spencer McIntyre b44bf1ce7e Resolve the ticket host 2023-10-27 12:47:19 -04:00
Spencer McIntyre 7137820381 Refactor the module and update output handling 2023-10-27 12:47:19 -04:00
Spencer McIntyre 79a3e756b3 Add the ENUM_LUIDS action 2023-10-27 12:47:19 -04:00
Spencer McIntyre 98906a5976 Add the SHOW_LUID action, refactor printed output 2023-10-27 12:47:19 -04:00
Spencer McIntyre 7b4caf79f8 Move the code into libraries for reuse 2023-10-27 12:47:19 -04:00
Spencer McIntyre 3a6086d88b Initial kerberos_tickets WIP 2023-10-27 12:47:19 -04:00
Spencer McIntyre 5b5d5ade40 Free data using the new util API 2023-10-27 12:47:19 -04:00
Jemmy Wang 93c13ad6a7 Apply document suggestions from code review 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2023-10-27 02:02:00 +08:00
Jemmy Wang 013e4b5af2 Add Module for PL/SQL Developer to gather credentials 2023-10-26 19:38:02 +08:00
Corey 60b72fb4be remove vmicheartbeat from hyperv_services 2023-10-16 17:27:37 -04:00
gardnerapp 9ee838d08e Update modules/post/windows/gather/checkvm.rb 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2023-10-16 17:21:32 -04:00
cgranleese-r7 3da17d2775 Addresses PR feedback 2023-10-12 10:59:29 +01:00
Corey 5ffac9af0c pull changes 2023-10-09 15:29:14 -04:00
Corey 0863645fdb remove false positive 2023-10-09 15:27:12 -04:00
gardnerapp b0929fe445 Update modules/post/windows/gather/checkvm.rb 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2023-10-09 15:24:26 -04:00
gardnerapp 93d5736f72 Update modules/post/windows/gather/checkvm.rb 
correct spelling

Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2023-10-09 15:23:19 -04:00
Corey 9f795574cd Change spelling error 2023-10-09 15:18:38 -04:00
Corey dabf0b54e3 Add @processes and @services to run 2023-10-09 15:16:30 -04:00
cgranleese-r7 87d108aab5 Removes Meterpreter logic 2023-10-03 09:53:02 +01:00
cgranleese-r7 6fdcc43530 Removes mixin 2023-09-21 14:35:13 +01:00
cgranleese-r7 461e661d06 Makes improvement to enum_computers module 2023-09-20 12:50:39 +01:00
Corey fadd9afb56 Rubocop corrections 2023-09-17 18:23:27 -04:00
Corey dd03ad30d0 minor changes to method argument names 2023-09-17 18:22:40 -04:00
Corey ea63fe5652 store keys in instance variable to prevent multiple lookups 2023-09-17 18:22:40 -04:00
Corey bcaf3b2a3b continue changing nomenclature 2023-09-17 18:22:34 -04:00
Corey 9a8f7af321 Continue changing method names 2023-09-17 18:21:14 -04:00
Corey 26b774d92b rename services? to services_exist? 2023-09-17 18:20:12 -04:00