70d5430ba8
Add ignorelist to local exploit suggester datastore options
2024-12-16 17:51:38 +00:00
afbf9af930
Merge pull request #19600 from adfoster-r7/mark-enum-chrome-as-superseded
...
Mark older browser modules for windows as superceded
2024-10-31 11:33:03 +00:00
5e217fb93a
Mark enum_chrome as superceded
2024-10-30 16:21:05 +00:00
7b745b2dcb
Merge pull request #19506 from xaitax/enum_browsers
...
Add Browser Data Extraction for Chromium- and Gecko-based Browsers
2024-10-30 15:30:56 +00:00
6fb49a27e0
[Added] Improvements after review
2024-10-24 13:48:50 +02:00
9ac3f57a17
Merge pull request #19536 from GhostlyBox/patch-1
...
Update enum_unattend.rb
2024-10-24 10:10:08 +01:00
88825a022c
Remove trailing whitespace
2024-10-23 23:41:20 +01:00
1fa9c6a774
[Fixed] Opera Support
2024-10-21 17:03:37 +02:00
e6aa695e99
Update enum_browsers.rb
2024-10-21 09:48:24 +02:00
ecd9f99d16
[Added] Extract Browser Cache
2024-10-20 23:15:18 +02:00
a2d8d7dd76
[Added] Extract Installed Browser Extensions (Name & Version)
2024-10-20 21:23:06 +02:00
880203b503
Remove accidentally committed changes
2024-10-12 14:36:08 +11:00
85d019cd3c
Handle CommandLineToArgv behaviour
2024-10-12 14:36:08 +11:00
6d272759dc
Add Browser Version Detection and display System Information
2024-10-11 12:13:48 +02:00
91beef1dbb
Add BROWSER_TYPE option to choose between Chromium, Gecko, or both for data extraction
2024-10-10 20:08:14 +02:00
47c4679d6b
Fixed migration logic
2024-10-10 19:28:03 +02:00
d3ae5a9ab0
Abort when session is running under SYSTEM privileges.
2024-10-10 13:25:11 +02:00
cd487715c4
[Added] Migration to explorer.exe for user-context based extraction
2024-10-10 12:32:19 +02:00
967f7c30a0
Update enum_unattend.rb
...
Included checks for '.vmimport' files which may have been created by the AWS EC2 VMIE service which will still contain cleartext credentials.
2024-10-07 17:58:30 +01:00
9eda0338af
Improved readability and other small fixes
2024-10-06 10:19:10 +02:00
a31261ecf2
Revert "Replace Readline with Reline"
2024-10-02 13:15:12 +01:00
6d28e4b350
Update modules/post/windows/gather/enum_browsers.rb
...
Co-authored-by: Valentin Lobstein <88535377+Chocapikk@users.noreply.github.com >
2024-09-27 08:03:02 +02:00
4a9754313a
Update modules/post/windows/gather/enum_browsers.rb
...
Co-authored-by: Valentin Lobstein <88535377+Chocapikk@users.noreply.github.com >
2024-09-27 08:02:57 +02:00
1e67d200d2
Update modules/post/windows/gather/enum_browsers.rb
...
Co-authored-by: Valentin Lobstein <88535377+Chocapikk@users.noreply.github.com >
2024-09-27 08:02:48 +02:00
78f7327ea7
Update enum_browsers.rb
2024-09-26 20:49:42 +02:00
6cc6841821
Update modules/post/windows/gather/enum_browsers.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2024-09-26 20:44:45 +02:00
f106f1cf2c
Add enum_browsers post exploitation module
...
This post-exploitation module extracts sensitive browser data from both Chromium-based and Gecko-based browsers on the target system. It supports the decryption of passwords and cookies using Windows Data Protection API (DPAPI) and can extract additional data such as browsing history, keyword search history, download history, autofill data, and credit card information.
2024-09-26 19:21:42 +02:00
b475f0dccb
Land #19448 , Improve screensaver management
...
Add a number of improvements to modules/post/multi/manage/screensaver.rb
2024-09-23 08:31:38 -07:00
862acbdbae
Improve screensaver management
...
- Add modern ways to unlock Linux machines remotely
- Use proper `register_options`
- Clarify the actions: lock/unlock, start/stop
- Add more platforms
- Add a couple of checks before running the commands
2024-09-16 23:41:37 +02:00
10dee226c6
Replace Readline with Reline
2024-09-04 16:39:41 +01:00
0b0f9cdce9
Land #19409 , Add additional Linux VM fingerprints
...
Improve a bit modules/post/linux/gather/checkvm.rb
2024-08-28 16:10:54 -04:00
02eb49ed00
Land #19395 , Electerm post password gather module
...
Merge branch 'land-19395' into upstream-master
2024-08-27 16:17:45 -05:00
3ad24b45e3
Land #19241 , Remove uri unescape usage
2024-08-27 15:22:43 +01:00
debb01062d
Improve a bit modules/post/linux/gather/checkvm.rb
...
Based on some old notes that I never bothered to upstream into metasploit.
2024-08-22 23:19:09 +02:00
ea6efff830
Update modules/post/multi/gather/electerm.rb
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2024-08-22 22:28:01 +08:00
d5fbfaf775
set the default type to ssh
2024-08-18 16:53:09 +08:00
cd21e57576
fix window appdata path
2024-08-18 16:45:36 +08:00
1127225363
electerm
2024-08-16 20:04:57 +08:00
62a3f73e70
Update rubocop target ruby version
2024-07-24 16:47:17 +01:00
1e0db9ec83
Land #10113 , Azure CLI steal tokens post module.
2024-07-03 11:32:04 -04:00
eb81a786d1
replace uri unescape with new proper methods
2024-07-01 15:52:01 -05:00
eb0933fc9a
Update apache_nifi_credentials algo regex
2024-06-28 10:36:35 -04:00
6dc1b6a6e4
fix slashes for linux on azure_cli
2024-06-27 10:45:05 -04:00
b4975f6a23
updates to azure cli creds
2024-06-24 17:06:04 -04:00
db338e364c
fix consolehost_history search
2024-06-16 20:33:18 -04:00
434455757d
tested azure_cli_creds against data files
2024-06-16 20:25:47 -04:00
99b3b607cc
Update azure_cli_creds.rb
2024-06-07 08:53:43 -04:00
7594a4103c
moving azure_cli_files around and stubbing out content
...
Update azure lib with process_context_contents
Update azure_spec.rb
Update azure.rb
Update azure_spec.rb
Update azure_cli_creds.rb
fix lint warning
add function to print consolehost_history
print_consolehost_history spec updates
fixing azure_cli spec, and errors
2024-06-06 17:31:19 -04:00
e8571f23ed
Fix typo
2024-06-04 19:52:02 -04:00
37f7e17fd0
Add osx support to post/multi/gather/azure_cli_creds
2024-06-04 19:52:02 -04:00
sjanusz-r7