c9504f9c53
Update the payload specs
2024-01-29 16:44:32 -05:00
1ba704b1cb
Land #18398 , Update deprecated report_auth_info in various modules
2024-01-16 19:30:56 +00:00
fb9bd2cae1
Use empty string for missing values rather than nil
2023-11-17 15:09:30 +11:00
35609d07e9
Fix lotus_domino_hashes_spec to comply with report_cred method
2023-09-25 01:19:43 +05:30
b4dee448bc
Update deprecated report_auth_info method call in lotus_domino_hashes
2023-09-24 22:32:52 +05:30
525c957af2
Land #18333 , Lexmark Device Embedded Web Server RCE (CVE-2023-26068)
2023-09-19 10:32:59 +02:00
483e8175ca
Update unit tests
2023-09-13 14:11:18 +10:00
e5f2ebff19
Fix copy pasta error
2023-08-31 12:14:24 -04:00
3e58183291
updated payloads_spec
2023-08-31 02:43:12 -04:00
33193bdd41
Update java reverse http and https to be dynamic
2023-08-16 00:50:41 +01:00
9e7960fd9f
Land #18224 , First iteration of specs for SSH Login scanner
2023-08-04 16:22:37 +01:00
dfe030cc99
Update payload size warnings to errors on CI
2023-08-04 13:56:31 +01:00
0453877fee
First iteration of specs for SSH Login scanner
2023-07-27 15:29:02 +02:00
03d59ba4e7
Land # 18084, Add x86 Linux Fetch Payloads
...
Merge branch 'land-18084' into upstream-master
2023-06-15 09:04:22 -05:00
fa33052cf8
Land #18090 , Update the exported keytab table entries to sort by db insert id
2023-06-13 08:13:25 -05:00
7fe6b8f481
Update the exported keytab table entries to sort by db insert id
2023-06-13 09:14:06 +01:00
c579c43b72
Update payloads_spec.rb for x86 fetch
2023-06-09 16:50:28 -04:00
1e9d286c77
Land #18044 , Add MIPS64 Linux Fetch Payloads
...
Merge branch 'land-18044' into upstream-master
2023-06-02 10:53:43 -05:00
a6f1be8efd
Add new payloads to payloads_spec.rb
2023-06-02 09:07:18 -04:00
1eb6996ea5
Land #17989 , Improves flag formatting for kerberos ticket presenter
2023-05-22 17:42:10 +01:00
f464401dde
Land #17782 , Add fetch payloads
...
Add http wget cmd based fetch payload for Linux and Windows
2023-05-18 12:18:27 -04:00
548a2d7ab4
Add fetch payloads for Windows and Linux x64
2023-05-18 10:47:29 -05:00
82bf51647d
Improves flag formatting for kerberos ticket presenter
2023-05-16 15:25:36 +01:00
9f2105c06d
add sctp payload specs
...
Update sizes to match automation expectations
2023-04-27 16:42:46 -05:00
61a8481a0f
missing adapter for python Windows
2023-04-27 15:22:12 -05:00
71a058b555
Fix crash for lotus domino hashes module when database not active
2023-04-14 23:28:32 +01:00
3bc4639235
Add nthashes to keytab export
2023-03-08 18:03:44 +00:00
efd79eb638
Add support for forging inter-realm Kerberos tickets
2023-03-03 13:20:39 +00:00
8a37cc6c88
Update inspect ticket tests to use the local timezone
2023-02-23 14:39:19 +00:00
65c11bd8c8
Update inspect ticket tests to use the local timezone
2023-02-23 13:37:16 +00:00
fd5d10e610
Update inspect ticket tests to use the local timezone
2023-02-23 12:43:43 +00:00
fc0324f28b
Consistently print keys without \x
2023-01-26 10:49:05 -05:00
ebfcfd4cb9
Land #17066 , Add module for Certifried
...
Add exploit module for Certifried exploit
2023-01-18 14:51:03 -05:00
1470396f95
Refactor key validation for inspect_ticket and add module tests
2023-01-13 17:42:32 +00:00
3d22fbcad9
Add exploit module for Certifried exploit
...
- Move all the logic from `modules/auxiliary/admin/dcerpc/icpr_cert.rb`
to `lib/msf/core/exploit/remote/ms_icpr.rb` library
- Move all the logic from `modules/auxiliary/admin/dcerpc/samr_computer.rb`
to `lib/msf/core/exploit/remote/ms_samr.rb` library
- Add `modules/auxiliary/admin/dcerpc/cve_2022_26923_certifried.rb` module
- Update the SMB client to disable SSL by default
- Add documentation
- Kerbero client: pass `options` as argument to `send_request_as`
- `calculate_shared_key` returns an EncryptionKey instead of the raw key
- Update `pkinit_login` module to make it compatible
- Add support to `additional_tickets` when requesting tickets
- Add support to PAC CredentialInfo structures
- Add impersonation to escalate privileges
- Add ACTIONS
- Use elevated TGS to delete the computer account
- Update and add specs
2023-01-13 15:30:50 +01:00
2783e92203
Update windows_secrets_dump and Keytab module to export kerberos keys
2022-12-14 13:40:39 +00:00
a9ccfe31b7
Merge branch 'upstream-master' into merge-msf-6.2.31-into-kerberos-feature-branch
2022-12-13 19:40:39 +00:00
41f9ba57b4
Add icpr_cert module specs
2022-11-17 12:12:35 -05:00
1a353ee273
Update Python payloads to have dynamic sizes
...
While the length of the input payload is always the same size,
it may not always have the same contents due to random checksum
URI and UUID generation. This leads to payloads whose sizes
can vary by a few bytes between runs.
2022-11-05 15:58:10 -04:00
1307f01b76
Align with keytab instead of key_tab
2022-11-02 13:04:51 +00:00
98d2633859
Add Kerberos ktutil module
2022-11-02 13:04:50 +00:00
8b53b0d878
add payload tests for new windows custom stager
2022-09-19 08:28:25 -05:00
cdd12b3b11
expand proof verification string
2022-07-07 09:05:16 -05:00
f319d6e509
more explicitly cross platform file location
2022-07-07 08:41:55 -05:00
e7134d5244
code review adjusments for double and context
2022-07-07 08:26:46 -05:00
a41f655060
add lotus domino hash extraction spec
...
Adds a spec targeting a single method in the `lotus_domino_hashes` module. This is a start on
offering example on how a spec can be written to test part of the code in a module using example
responses from a unit testing perspective.
2022-07-05 11:38:25 -05:00
bcac5a1274
add missing payload tests
2022-06-15 14:34:08 -05:00
cb5d449676
add missing payload tests
...
A number of recent payload adds do not conform the patterns
used for suggesting spec configurations. Manually added these
tests to remove warning in rspec run.
2022-04-01 12:01:17 -05:00
beb39ae5bc
Mark another Powershell payload as dynamic
2021-07-12 10:06:56 -04:00
a23ef5ec5d
Set dynamic cached size on reverse powershell
2021-07-12 09:22:59 -04:00
Spencer McIntyre