adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

35981 Commits

Author SHA1 Message Date
Tim W e5ef1bb7fc rubocop 2021-11-30 06:30:59 +00:00
Tim W 32f272d96a fix the windows/x64/powershell_reverse_tcp handler 2021-11-30 06:30:58 +00:00
Tim W 21d7bc823e fix URL 2021-11-30 06:30:58 +00:00
Tim W 6a57ef4c65 run rubocop on changed files 2021-11-30 06:30:58 +00:00
Tim W 9097b181b0 add powershell_reverse_tcp_ssl 2021-11-30 06:30:58 +00:00
bwatters 14064ff3f9 Update module description and remove extra module. 2021-11-29 15:23:02 -06:00
sjanusz 84c9a30c40 Fix depth check 2021-11-29 17:54:54 +00:00
sjanusz 0ea203fcfe Add rport comment, change table creation, rubocop lint 2021-11-29 17:00:48 +00:00
Brendan Coles 8fa73f9e90 ms05_039_pnp: Rename 'Windows 2000 SP4 English/French/German/Dutch' target to 'Windows 2000 SP4 Universal' 2021-11-28 13:39:05 +00:00
Brendan Coles 5fab1da09b ms03_026_dcom: cleanup 2021-11-28 08:25:31 +00:00
sjanusz ce3215e35b Fix broken files check, make return dirs consistent 2021-11-26 12:51:07 +00:00
sjanusz 147ca34308 Fix empty list check & add return statement to rescue 2021-11-25 11:38:22 +00:00
usiegl00 bfd57daea7 Update Range Syntax to Support Ruby 2.5 
Change [?..] to [?..-1] to be compatible with older ruby versions. Fix
failing msftidy rubocop linting tests.
 2021-11-25 15:05:39 +09:00
Grant Willcox e21812fa5c Land #15864, fix #15856, fix shell_to_meterpreter to detect x64 windows and return an x64 meterpreter session 2021-11-24 17:41:31 -06:00
usiegl00 e19511a31c Update documentation for the smb_shadow module. 
Add additional clarity and details to the existing documentation for the
smb_shadow module. Remove some outdated comments and fix some spelling
errors.
 2021-11-25 08:12:13 +09:00
Grant Willcox 1b9f9f0620 Add in final review fixes to handle Windows ARM if ever encountered 2021-11-24 16:37:21 -06:00
sjanusz 1a435f8a77 Working spidering on Windows XP, 7 & 10, DB options work, fix error handling 2021-11-24 17:34:33 +00:00
William Vu 344bdacae4 Remove preferred payload 
We'll add it back to Framework later.
 2021-11-24 10:44:59 -06:00
usiegl00 e2734293e1 Add SMB Shadow Module: Direct SMB Session Takeover 
This module intercepts direct SMB connections on the LAN.
Both the SMB Server and Client must be on the LAN.
The SMB Client must be authenticating to the Server as an Administrator.
This module is dependent on an external ARP spoofer.
 2021-11-24 20:05:30 +09:00
William Vu e8e5467b70 Credit mr_me for keytool classloading technique 
Confirmed. :)
 2021-11-23 20:12:05 -06:00
William Vu 3702615003 Improve check precision by matching more stuff 2021-11-23 19:05:09 -06:00
William Vu e2cf3e6706 Clarify working directory for FileDropper 2021-11-23 19:05:09 -06:00
William Vu 2f1bfa738a Add ManageEngine ADSelfService Plus CVE-2021-40539 2021-11-23 19:05:09 -06:00
Grant Willcox 0007887a0c Land #15898, trade URI.encode & URI.escape for Ruby 3 2021-11-23 12:07:48 -06:00
Jeffrey Martin d802a9ee0b remove rubocop exemption no longer required 2021-11-23 07:58:07 -06:00
Jeffrey Martin 21a6a18d92 trade URI.encode & URI.escape for Ruby 3 
Ruby 3 removed the `URI.escape` methods however access to
the a parse for the same RFC is stil available at `URI::DEFAULT_PARSER.escape`.

Per the Ruby forum [comment](https://bugs.ruby-lang.org/issues/17309#note-1) this should equal.
 2021-11-22 14:11:03 -06:00
sjanusz 8f7b9c5ad8 Improve disk shares 2021-11-22 12:41:45 +00:00
sjanusz 779881dd55 Add constants & exception handling for RubySMB 2021-11-22 12:36:59 +00:00
sjanusz 107dadf68c Change readme file to show new module changes 2021-11-22 12:36:59 +00:00
sjanusz db4303912a Add fixes 2021-11-22 12:36:59 +00:00
sjanusz eba2df0a8a Fix smb enumshare to work with SMB1/2/3 2021-11-22 12:36:59 +00:00
Matthew Dunn 888a69b911 Update documentation with blog post link and SSO details 2021-11-21 22:35:15 -05:00
Tim W 423810ca5c fix shell_to_meterpreter cmd_exec powershell 2021-11-22 03:11:26 +00:00
Grant Willcox 7f6d661ff7 Land #15866, Add Exploit For CVE-2021-38294 (Apache Storm Nimbus getTopologyHistory RCE) 2021-11-18 17:02:50 -06:00
Spencer McIntyre d7cb7804e6 Implement some changes from PR feedback 2021-11-18 16:35:13 -05:00
Grant Willcox a915c3ce5c Add fixes for some of the issues raised during the review process on both the documentation and module side of things 2021-11-17 17:25:50 -06:00
Grant Willcox 9023c61ac8 Land #15851, User Agent Refresh 2021-11-17 15:08:52 -06:00
Grant Willcox 1d20393452 We should be safe to change the user agent for Google as well since we are communicating with Google's servers and as far as I can tell changing the user agent doesn't really change the results at all 2021-11-17 15:08:27 -06:00
Christophe De La Fuente 6c57ee376a Land #15755, Azure Active Directory Login Scanner Module 2021-11-17 15:53:22 +01:00
bwatters 2a68b9ae9f Add targets to track http server status 2021-11-17 07:54:49 -06:00
Jeffrey Martin f208e59541 ensure realm reported on credential 
remove default DOMAIN to make input required
 2021-11-16 15:36:04 -06:00
Jeffrey Martin 8c15fde679 adjust service reporting 2021-11-16 14:23:33 -06:00
Jeffrey Martin 5af7847b52 ensure address in an IP when reporting service 2021-11-16 12:39:41 -06:00
Jeffrey Martin 680f068adc move text encode into XML generation 2021-11-16 12:39:41 -06:00
Jeffrey Martin 7b3c9f9d13 utilize AuthBrute more 2021-11-16 12:34:17 -06:00
Spencer McIntyre 9fa65092d1 Switch to the new Rex stopwatch function 2021-11-16 10:12:57 -05:00
Ashley Donaldson f020c99a85 Implement suggestions from code review 2021-11-16 11:07:48 +11:00
Grant Willcox d7047cdb6f Land #15867, Update example modules 2021-11-15 15:32:45 -06:00
Grant Willcox a620b425dd Fix a few capitalization errors 2021-11-15 14:56:25 -06:00
Grant Willcox fc05f53688 Reword comments a bit to make it cleare to end users how to use some of the libraries we provide 2021-11-15 14:54:13 -06:00