3da17d2775
Addresses PR feedback
2023-10-12 10:59:29 +01:00
87d108aab5
Removes Meterpreter logic
2023-10-03 09:53:02 +01:00
6fdcc43530
Removes mixin
2023-09-21 14:35:13 +01:00
461e661d06
Makes improvement to enum_computers module
2023-09-20 12:50:39 +01:00
86c868084c
Remove joesandbox and virtualpc
2023-08-11 14:42:51 +02:00
88a5a52c1a
Stringy arrays before checking anything
...
As suggested in https://github.com/rapid7/metasploit-framework/pull/18179#pullrequestreview-1533226875
2023-08-11 14:42:01 +02:00
9b87a9d4f1
Run HyperV check after Parallels
...
As suggested in https://github.com/rapid7/metasploit-framework/pull/18179#discussion_r1265637311
2023-08-11 14:42:01 +02:00
075a7e9a14
Narrow a virtualbox check
2023-08-11 14:42:01 +02:00
1188256260
Update the Description to add newly detected VM
2023-08-11 14:42:01 +02:00
89dd8ce930
Add some references
2023-08-11 14:42:01 +02:00
f439ca4fb7
Fix Multi String value issues
...
Spotted by @cdelafuente-r7
2023-08-11 14:42:01 +02:00
c3b77844cc
Improve Qemu detection
2023-08-11 14:42:01 +02:00
fd45073d36
Improve Xen detection
2023-08-11 14:42:01 +02:00
9bed3da364
Improve VirtualBox detection
2023-08-11 14:42:01 +02:00
29d9908f22
Improve virtualpc detection
2023-08-11 14:42:01 +02:00
fdd212625f
Improve VMWare detection
2023-08-11 14:42:01 +02:00
04da17fc7b
Add detection for JoeSandbox
2023-08-11 14:42:01 +02:00
dec237ce0a
Add Parallels detection
2023-08-11 14:42:01 +02:00
afe359281c
Remove manual signature handling, and figure it out for the user.
2023-06-28 09:22:01 +10:00
df0f7de098
Fix an ARGUMENT handling error
...
`datastore['ARGUMENT']` can be `nil` when it's been unset. Avoid an
error when appending it to cln_params by checking that it's present.
2023-06-27 09:29:59 -04:00
0d0906840e
Fix memory protection bug
2023-06-27 09:59:52 +10:00
624643be4a
Catch errors and give meaningful error messages
2023-06-25 22:12:22 +10:00
a7ce4c7fa8
Free memory from the C++ side, rather than the Ruby side.
2023-06-23 09:57:53 +10:00
461240639c
Check PID validity before getting its bitness
2023-06-22 16:05:48 +10:00
6e438d338e
Modify execute_dotnet_assembly to run in existing processes (including our own process) and receive output.
2023-06-21 12:04:09 +10:00
38f542174d
Land #17336 , A more robust implementation for Windows version comparisons
...
Merge branch 'land-17336' into upstream-master
2023-06-13 15:38:56 -05:00
a34c3cf055
linted - all offenses addressed
2023-06-06 09:07:57 +02:00
217df628df
fix getting the username + use Failure::BadConfig instead of NoTarget
2023-05-25 19:05:42 +02:00
39b45694af
Update datastore option USER -> USERNAME
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2023-05-25 18:55:49 +02:00
75ba9110e2
Added module for Windows version comparisons
...
Utilised it in various existing modules - this should fix some subtle bugs in specific modules' version detection.
2023-05-25 14:36:46 +10:00
240fd65d0c
module, not exploit
2023-05-24 16:30:38 +02:00
623657b072
Logontype changed to OptEnum + better meterpreter session requirement check
2023-05-24 16:28:56 +02:00
3a685849a8
add update_token bridge + make_token module
2023-05-24 10:33:52 +02:00
d24f5873bd
Update sticky_keys.rb
...
Persistance -> Persistence
Fix a small typo
2023-05-11 12:22:54 -05:00
5a57ea131e
resolve_sid: Add docs and resolve RuboCop violations
2023-04-23 17:39:32 +10:00
8e2169ed47
Ensure identify hashes helper is accessible to modules
2023-04-12 13:28:56 +01:00
a54f3d4707
fix broken module references
...
doing these "by domain" now, piecemeal.
this PR fixes all broken references to the "insecurety" website, which is long dead.
2023-04-01 05:17:02 -07:00
d6e9e8d3bb
Land #17735 , fix some incorrect YARD parameters
2023-03-22 15:20:12 +00:00
9e1be62f06
Land #17462 , add WhatsUp Gold credential extractor
2023-03-17 16:44:17 -05:00
08f07eccb6
Fix initial incorrect parameters in YARD documentation
2023-03-05 20:15:14 -06:00
26d9026fc2
Fix a filter error
...
When FILTER was nil, the check would fail causing `()` to be appended to
the LDAP query filter which would cause it to fail.
2023-02-24 13:51:58 -05:00
eec73fe394
add module changes
2023-02-23 16:34:43 -06:00
b56213b168
Update linting on post modules
2023-02-08 14:12:43 +00:00
11c886b30f
Land #17616 , Run rubocop on post modules
2023-02-08 14:09:16 +00:00
a81a71c5df
Run rubocop on post modules
2023-02-08 13:47:34 +00:00
433bafdccf
Add missing module notes for stability reliability and side effects
2023-02-08 11:45:17 +00:00
c90a6f9068
Land #17406 , veeam_credential_dump post module
...
Veeam Backup & Recovery and Veeam ONE Monitor credential
capture post module for versions 9.x and 11.x.
2023-02-01 17:29:05 -05:00
d0feedadbf
Refine whatsupgold_credential_dump
...
Added CVE info to the References section.
Modified the registry routines to add sanity around x86 vs. x64 arch.
2023-01-18 15:47:26 -05:00
8ed4f59c60
veeam_credential_dump refinement
...
Fixed stupid typo in markdown.
Fixed a bug in the export code that prevented the disposition column
from being exported.
2023-01-18 14:27:28 -05:00
243c57c1fe
Add whatsupgold_credential_dump post module
...
Add a post module for credential extraction from WhatsUp Gold instances
on Windows hosts. The module should theoretically decrypt ciphertext
from any version of WhatsUp Gold, although it has only been verified
working on WhatsUp Gold versions 11.0 through 22.0.
2023-01-10 15:50:53 -05:00
cgranleese-r7