42082f0bcf
Add unix platform
2019-06-02 11:31:43 -05:00
fe5bc8242f
Add cmd/unix support
2019-06-02 11:19:44 -05:00
852cd6c6c6
Note unused variables
2019-06-02 11:19:30 -05:00
290741719c
Add default VID to post/multi/manage/play_youtube
2019-06-02 11:01:57 -05:00
4f679fad7a
fix key material loading and display of blank api keys
2019-05-16 19:31:11 -07:00
0f6eacda88
add nonverbose prints
2019-05-14 15:54:44 -04:00
097a503113
unifi 5.10.23 and meterp > shell
2019-05-10 15:05:31 -04:00
ba4990041d
osx support for unifi
2019-04-06 11:08:17 -04:00
724d5c5a26
spaces EOL
2019-03-13 20:48:07 -04:00
f836329bce
add osx
2019-03-13 20:20:18 -04:00
95f6630d32
unifi reviews
2019-03-11 17:20:00 -04:00
a8b09e17da
unifi backup downloader
2019-03-10 16:20:42 -04:00
04363b7b7e
Doc update
...
post:chrome_cookies
2019-01-15 07:19:46 -06:00
c2da3dbbd3
Land #11052 , Add gather chrome cookies post module
2019-01-08 07:32:16 -06:00
a95384e288
Additional support and code cleanup
2019-01-08 06:57:56 -06:00
811605a9b8
Cleanup headless Chrome process for meterpreter sessions
2018-12-30 18:05:41 +11:00
ee7120d63a
fixed post/multi/manage/shell_to_meterpreter
2018-12-25 15:00:39 +08:00
3838be0a03
Windows Hide Chrome Window
2018-12-19 05:58:11 -06:00
1b8b3bbb95
Update nc -j check in cups_root_file_read
2018-12-18 17:38:33 -06:00
0464f941a7
Add Windows Support
2018-12-18 14:17:10 -06:00
c5015c62b8
Simplify Chrome Gather Cookies
...
Module now uses Chrome itself as a websocket client, reading websockets
via js. It no longer downloads and executes `websocat`.
2018-12-09 09:52:45 +11:00
c3080d69f2
Use writable? method for local modules
2018-11-04 05:28:32 +00:00
c71bbc1019
Remove spaces that msftidy caught
2018-10-23 10:13:44 -04:00
15e67de8fc
Add the EMBED option for play_youtube.rb
2018-10-22 19:51:41 -04:00
65d26d3a1e
Use the DISPLAY environment variable when available
2018-10-19 14:35:35 -04:00
ff0ee51da1
Land #10686 , ARGS, TIMEOUT, and output to upload_exec module
...
Merge remote-tracking branch 'upstream/pr/10686' into upstream-master
2018-10-04 04:28:02 -05:00
e0a664c0cd
Improve prints, use FileDropper, and bump TIMEOUT
2018-10-02 21:53:18 -05:00
b993d74f6c
minor tweak
2018-10-02 11:41:58 +08:00
5cfc19b804
fix post/multi/gather/wlan_geolocate on Android
2018-10-02 11:35:47 +08:00
3bda794f00
Update upload_exec with chmod
2018-09-26 18:46:43 -05:00
4adca52103
create chmod helper function
2018-09-26 18:46:42 -05:00
81d020f810
Add a couple more Unix platforms
...
This is so we don't trigger the session compatibility warning. These
platforms have been worked on most recently.
2018-09-26 18:46:42 -05:00
a119465495
Tell the user when there's blank output
2018-09-26 18:46:42 -05:00
6dd6e8abcb
Change vprint to print because we test output
...
Fewer surprises this way when people don't set VERBOSE.
2018-09-26 18:46:42 -05:00
42fab6266d
Prefer vprint_line for better formatting
2018-09-26 18:46:42 -05:00
40f19efe2c
Don't use cmd.exe /c start so we can fetch output
2018-09-26 18:46:42 -05:00
dc1fddd31e
Move chmod so Windows doesn't do it
2018-09-26 18:46:42 -05:00
d5f5ef103f
Refactor everything and add command output
2018-09-26 18:46:42 -05:00
410abdca80
Tweak TIMEOUT to match cmd_exec's default
2018-09-26 18:46:42 -05:00
1df6c43b12
Add ARGS and TIMEOUT options to upload_exec
...
Credit to @bcoles for the initial patch.
2018-09-26 18:46:42 -05:00
87eb600510
Land #10611 , mRemote creds gather module fixes
...
Also update #10612 to align with these changes.
2018-09-10 15:25:09 -05:00
3ec4d2f22b
Normalize loot type OID
...
1. Include the vendor, product, and technology
2. Content type is already reported, extension changed
3. Original filename including extension is also reported
Can we get some sort of standard on the OID?
2018-09-10 15:06:07 -05:00
39a2d9d2a8
save xml files as xml
2018-09-09 21:24:39 -04:00
b7da75d860
fix #10576 , fix session upgrade HANDLE_TIMEOUT
2018-09-04 16:46:33 +08:00
79736406b2
Land #10394 , Cleanup aws_ec2_instance_metadata
2018-08-15 14:51:12 -05:00
d60aa55e07
Modified regex
...
Based on the comment: https://github.com/rapid7/metasploit-framework/pull/10394#discussion_r207042496
2018-08-02 15:55:24 +02:00
ece9a72d13
Removed tabs
2018-07-30 15:07:55 +02:00
5962fa752e
Fixes in aws_ec2_instance_metadata
...
@@ -36,7 +36,7 @@ def initialize(info = {})
- unless resp =~ /^instance-id.$/m
+ unless resp =~ /^instance-id$/m
The original regex requires one character after 'instance-id' which is not present in the instance.
@@ -50,15 +50,16 @@ def check_curl
- base_resp.split(/\r\n/).each do |l|
- new_uri = base_uri.merge("./#{l}")
+ base_resp.split(/\r?\n/).each do |l|
+ new_uri = "#{base_uri}#{l}"
- key_uri = new_uri.merge("./#{key_id}/")
- key_resp = simple_get(key_uri)
+ new_uri = new_uri.slice(0..(new_uri.index(%r{/public-keys/})+'/public-keys'.length))
+ key_uri = "#{new_uri}#{key_id}/"
+ key_resp = simple_get(key_uri)
1. merge function was causing 'rescue in merge' errors
2. the split function could not succeed, there were no '\r\n' between the lines but '\n' only
3. the special case was not handled correctly
was trying to curl http://169.254.169.254/latest/meta-data/public-keys/0=Key0/ instead of http://169.254.169.254/latest/meta-data/public-keys/0/
@@ -94,6 +95,6 @@ def setup
- cmd_exec("curl #{url}")
+ cmd_exec("curl -s #{url}")
Curl was causing issues when not in silent mode.
2018-07-30 14:02:15 +02:00
6790ac1998
Reset to original
2018-07-30 10:48:32 +02:00
0433cb92ba
Fix upload_exec for absolute paths
...
Also prefer chmod 700 over 755, since it's our file.
2018-07-26 19:48:12 -05:00
William Vu