adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
48,366 Commits 27 Branches 1,043 Tags
42ccc37bcad1c19fa2019e2bf00366db423bbb5e
Commit Graph

3321 Commits

Author SHA1 Message Date
William Vu 87eb600510 Land #10611, mRemote creds gather module fixes 
Also update #10612 to align with these changes.
 2018-09-10 15:25:09 -05:00
William Vu 93a73f5e71 Fix store_loot OID 
It's supposed to be a loot type, not the filename (now stored).
 2018-09-10 15:19:28 -05:00
William Vu 8b4820004d Land #10612, store_loot text/xml ctype fixes 2018-09-10 15:07:06 -05:00
William Vu 3ec4d2f22b Normalize loot type OID 
1. Include the vendor, product, and technology
2. Content type is already reported, extension changed
3. Original filename including extension is also reported

Can we get some sort of standard on the OID?
 2018-09-10 15:06:07 -05:00
h00die 39a2d9d2a8 save xml files as xml 2018-09-09 21:24:39 -04:00
h00die 0072d9b9b1 save as xml since it is 2018-09-09 21:22:15 -04:00
h00die 70e22707c0 vi loves tabs but i dont 2018-09-09 21:19:17 -04:00
h00die f926f6e9af fix pathing in mremoteng 2018-09-09 21:07:47 -04:00
Shelby Pace dbace01015 modified regex lines 2018-09-07 11:13:09 -05:00
Shelby Pace 18ffd36409 storing config file, changed regex 2018-09-07 08:13:10 -05:00
Shelby Pace 6c3b1081ea added function to grab and store user and passwd 2018-09-06 12:03:00 -05:00
Tim W b7da75d860 fix #10576, fix session upgrade HANDLE_TIMEOUT 2018-09-04 16:46:33 +08:00
Shelby Pace a9376266bc Land #10484, Add PhpMyAdmin password extractor 2018-08-30 12:16:17 -05:00
Shelby Pace 924e61c5c1 Added check and removed register_options 2018-08-30 12:13:39 -05:00
Dhiraj Mishra 25145004b2 Removing arch 2018-08-29 22:05:57 +05:30
Dhiraj Mishra c486dab574 Updating 
Thank you bcoles :)
 2018-08-29 11:45:08 +05:30
bwatters-r7 20daba6e2d fix line endings 2018-08-28 11:33:17 -05:00
alpiste f1e4079641 move add_thread code to lib/rex/post/meterpreter/extensions/peinjector/peinjector.rb 2018-08-28 09:02:21 -05:00
alpiste 015abca8af MSFTidy module 2018-08-28 09:02:21 -05:00
alpiste bb151bb727 MSFTidy module 2018-08-28 09:02:21 -05:00
alpiste 2251c4a712 Add peinjector post module 2018-08-28 09:02:21 -05:00
Dhiraj Mishra 107baee0a2 Updating store_loot? 2018-08-20 16:57:09 +05:30
Dhiraj Mishra a018d24df4 Fixing some more spaces at EOL 2018-08-20 12:56:59 +05:30
Dhiraj Mishra 71f8a66f8d Spaces EOL 2018-08-20 12:45:15 +05:30
Dhiraj Mishra 0ae5a16c8e Adding store_loot 2018-08-20 12:24:31 +05:30
Dhiraj Mishra a926e0f7a6 Root privilege is required 2018-08-20 11:38:02 +05:30
Dhiraj Mishra 6684e5d0eb PhpMyAdmin creds extractor 2018-08-19 23:40:19 +05:30
Adam Cammack 79736406b2 Land #10394, Cleanup aws_ec2_instance_metadata 2018-08-15 14:51:12 -05:00
reka193 d60aa55e07 Modified regex 
Based on the comment: https://github.com/rapid7/metasploit-framework/pull/10394#discussion_r207042496
 2018-08-02 15:55:24 +02:00
William Vu ce9f447a29 Land #10384, upload_exec fixes 2018-07-30 13:55:40 -05:00
h00die 7c8190573c remove unused juniper options 2018-07-30 14:20:01 -04:00
reka193 ece9a72d13 Removed tabs 2018-07-30 15:07:55 +02:00
reka193 5962fa752e Fixes in aws_ec2_instance_metadata 
@@ -36,7 +36,7 @@ def initialize(info = {})

    - unless resp =~ /^instance-id.$/m
    + unless resp =~ /^instance-id$/m
The original regex requires one character after 'instance-id' which is not present in the instance.

@@ -50,15 +50,16 @@ def check_curl

    - base_resp.split(/\r\n/).each do |l|
    -    new_uri = base_uri.merge("./#{l}")
    + base_resp.split(/\r?\n/).each do |l|
    +   new_uri = "#{base_uri}#{l}"

    - key_uri = new_uri.merge("./#{key_id}/")
    - key_resp = simple_get(key_uri)
    + new_uri = new_uri.slice(0..(new_uri.index(%r{/public-keys/})+'/public-keys'.length))
    + key_uri = "#{new_uri}#{key_id}/"
    + key_resp = simple_get(key_uri)

1. merge function was causing 'rescue in merge' errors
2. the split function could not succeed, there were no '\r\n' between the lines but '\n' only
3. the special case was not handled correctly 
was trying to curl http://169.254.169.254/latest/meta-data/public-keys/0=Key0/ instead of http://169.254.169.254/latest/meta-data/public-keys/0/

@@ -94,6 +95,6 @@ def setup

    - cmd_exec("curl #{url}")
    + cmd_exec("curl -s #{url}")
Curl was causing issues when not in silent mode.
 2018-07-30 14:02:15 +02:00
reka193 6790ac1998 Reset to original 2018-07-30 10:48:32 +02:00
William Vu 0433cb92ba Fix upload_exec for absolute paths 
Also prefer chmod 700 over 755, since it's our file.
 2018-07-26 19:48:12 -05:00
Brent Cook 32d6344e6b Land #9964, android post module to extract subscriber info 2018-07-26 16:58:27 -05:00
Brent Cook 71646da97f fix error handling 2018-07-26 16:48:34 -05:00
reka193 408dc7793f Update aws_ec2_instance_metadata.rb 2018-07-23 10:00:12 +02:00
reka193 4c4f0c1d3e Update 
Fixes for Kali linux 4.14 with ruby 2.3.
 2018-07-18 10:42:51 +00:00
Brendan Coles a020d48caf Move module documentation to documentation directory 2018-07-13 04:46:25 +00:00
Brent Cook b4b7bf03da Land #10171, Implement desktop shell and screensaver post modules 2018-07-05 17:33:06 -05:00
thesubtlety 970c164e06 fix undefined method capitalize error for array 2018-07-05 14:33:51 -07:00
William Vu dbb0748c1c Land #9998, customizable golden ticket duration 2018-06-27 15:51:56 -05:00
William Vu d7770a98b2 s/Seperated/Separated/ 2018-06-27 15:36:41 -05:00
Jacob Robles c4bf12cbe0 ntds_grabber msftidy fixes 2018-06-26 08:22:11 -05:00
Eliott Teissonniere c4632f44aa Fix windows 2018-06-21 16:46:15 +00:00
Eliott Teissonniere 2008de4080 Support Windows screensaver and locking 2018-06-21 16:46:00 +00:00
Eliott Teissonniere a8e9c20d6c Make open works on windows 2018-06-20 09:23:57 +00:00
Eliott Teissonniere 4c0ac00f38 Make screensaver works on OSX 2018-06-20 09:13:51 +00:00
Eliott Teissonniere 351a0bd37f Cleanup command execution code 2018-06-18 07:24:54 +00:00