378ac00c7d
Merge pull request #19750 from dledda-r7/feat/prepend-multi-arch
...
Fix Prepends in Linux Payloads
2025-01-23 14:26:44 -06:00
e39af38c73
fix(payloads): updating prepend mixin in payloads
2025-01-15 04:32:42 -05:00
4565a04510
fix(payloads): updating prepend mixin in payloads
2025-01-14 09:31:03 -05:00
289e95d530
Land #19367 , fix ARM stager restore r0 in loop
...
Land #19367 , fix ARM stager restore r0 in loop
2025-01-06 17:14:47 +01:00
a27024eb1f
fix: updating aarch64/shell to use the new prepends mixin
2024-12-20 10:18:25 -05:00
4d304c65b5
fix: remove x64 directory flatting in Linux payloads
2024-12-20 04:15:41 -05:00
d0cb6c1e2d
Merge pull request #19741 from dledda-r7/remove-reverse-hop-http
...
Remove reverse_hop_http payload
2024-12-19 15:54:33 -05:00
753447c7f7
fix: updating ppc/shell to use the new mixin structure
2024-12-19 12:13:55 -05:00
cdc51228c1
Update reverse_tcp.rb
2024-12-18 07:26:37 +00:00
60f26f7062
fix: removing reverse_hop_http
2024-12-17 08:53:06 -05:00
b2ab69ea51
fix: removing reverse_https_proxy payload
2024-12-17 05:03:36 -05:00
b33b01e0d8
Update the CachedSize for reverse_http and reverse_http payloads
2024-12-16 12:48:57 +01:00
1d3d3419f6
Clarify documentation in dns_txt_query_exec
2024-12-06 14:26:44 -05:00
6d6608c06c
fix: updated cachedsize reverse_https_proxy
2024-12-06 09:15:36 -05:00
3167a6c73c
fix(payloads): re-wrote reverse_https_proxy stager
2024-11-29 07:57:51 -05:00
4d19535ca0
fix(payloads): removing hardcoded block-api asm and hashes from x86 messagebox module
2024-11-28 06:41:32 -05:00
acb022c18f
fix(payloads): update cachedsize for x64 messagebox module
2024-11-27 08:15:57 -05:00
46292b8b9a
fix(payloads): removing hardcoded block-api asm and hashes from x64 messagebox module
2024-11-27 08:08:31 -05:00
eb58072034
fix(payloads): update cachedsize
2024-11-26 12:07:32 -05:00
9bfb67444d
fix(payloads): fixing typo on block-api hashing function
2024-11-26 12:07:31 -05:00
55515441d2
fix(payloads): update cachedsize reverse_hop_http
2024-11-26 12:07:30 -05:00
e7c23e4a65
fix(payloads): removing hardcoded block-api hashes
2024-11-26 12:07:30 -05:00
3fe1ffb6f3
fix(payloads): removing hardcoded block-api hashes
2024-11-26 12:07:29 -05:00
1bfa0755a8
Land #19518 , Add support for RISC-V 32-bit / 64-bit Little Endian payloads
2024-11-01 11:18:30 +00:00
ff521464f3
Land #19528 , Add Python exec payload
...
Add a python/exec payload to execute OS commands
2024-10-31 15:23:25 -05:00
a2e97b3e38
Update payload cache sizes for... some reason.
2024-10-30 16:19:59 -05:00
27ebde9ad5
Add Linux Execute Command 32-bit/64-bit RISC-V LE payloads
2024-10-15 22:51:36 +11:00
92cf931d6e
Add Linux Reboot 32-bit/64-bit RISC-V LE payloads
2024-10-15 22:51:36 +11:00
9b4cd2241d
Update payload sizes
2024-10-14 15:43:40 +11:00
1b169efe3d
Update payload dependencies
2024-10-14 15:27:15 +11:00
b4da4e74af
Use specific subclass of Command Shell for reverse bash
2024-10-12 14:36:09 +11:00
f2a723541d
Add a test for the python/exec payload
2024-10-04 11:10:50 -04:00
c051ea5a7f
Add a python/exec payload to execute OS commands
2024-10-04 10:03:08 -04:00
b7fff5926b
Use php_preamble/php_system_block instead of system in payloads/singles/php/
...
The `php_preamble`/`php_system_block` combo has builtin low-hanging evasion for
PHP's `disabled_functions` configuration (eg. `system` might not be available
but `shell_exec` is), so use it instead of hardcoding `system`.
This commit also brings modules/payloads/singles/php/reverse_perl.rb's style
more in line with the other uses of `php_preamble`/`php_system_block`.
Oh, and it makes lib/msf/core/payload/php.rb work on older Ruby version as
well.
Co-authored-by: Valentin Lobstein <88535377+Chocapikk@users.noreply.github.com >
2024-09-18 12:40:55 +02:00
ae8e996c46
Restore r0 on each iteration
2024-08-06 00:01:06 +02:00
62a3f73e70
Update rubocop target ruby version
2024-07-24 16:47:17 +01:00
2dfe97673a
Bump metasploit_payloads-mettle to 1.0.31
2024-07-16 11:47:14 -04:00
5d1ee84cb0
Bump metasploit_payloads-mettle to 1.0.30
2024-07-12 05:17:19 -04:00
09debbb93f
fix: fixed rubocop issue
2024-06-24 05:33:30 -04:00
2de112891c
fix: fixed payload cached size
2024-06-24 05:21:07 -04:00
562e1dc453
Add osx aarch64 bind tcp payload
2024-05-31 18:21:24 +01:00
7955381de5
Add osx aarch64 shell reverse tcp payload
2024-05-31 18:05:15 +01:00
dbeeadefc7
Add osx aarch64 exec payload
2024-05-31 17:51:38 +01:00
6d2041b1cb
Fix crashing mipsle modules
2024-05-21 12:52:12 +01:00
96316a94fe
Initial SMB server for fetch payloads
2024-01-29 16:44:28 -05:00
a8c240f671
Refactor existing fetch work
...
* Build the HTTPS server on top of HTTP instead of the other way around
* Set the fetch service to nil after it has been cleaned up
* Don't capitalize the H in the word handler
* Check if the fetch_service is truthy before cleaning it up
* Remove the unused FetchServerName datastore option
* Fixup the description text
* Don't allow slashes in fetch file names
* Also add the #fetch_bindnetloc method
Fix a problem in fetch/tftp.rb
2024-01-29 13:34:56 -05:00
dd3d1a9397
Update metasploit-payloads gem to 2.0.165
...
Includes changes from:
* rapid7/metasploit-payloads#694
2024-01-23 10:42:14 -05:00
04c0dede5e
fix spelling in some modules
2024-01-07 14:06:31 -05:00
e70f356239
Show errors on inaccessible payload files
2023-10-02 14:46:25 +01:00
3ae658285b
Updated socat tcp cache size
2023-09-06 15:52:56 -04:00
Brendan