56c00a8cb6
initial OWA 2016 support
2018-02-19 21:43:49 -06:00
3d67d2ed12
Land #9443 , Add warning to FileDropper for deleting CWD
2018-02-19 21:22:39 -06:00
25d1642664
Land #9575 , Fix wmap_sites -a exception on missing url
2018-02-18 20:49:39 -06:00
310ab9c11d
Land #9573 , fixes for bind_named_pipe
2018-02-18 20:47:20 -06:00
e48f53851e
Land #9568 , handle mismatch uid/gids in docker images
2018-02-18 20:42:58 -06:00
e6e595000f
Fix silent fail on missing url
2018-02-19 12:07:33 +13:00
b3f26ea55f
bind_named_pipe fixes
2018-02-18 10:31:57 -07:00
ca6c55047e
Fix wmap_sites -a exception on missing url
2018-02-19 01:17:48 +13:00
70ad41903b
another approach
2018-02-17 20:12:35 +01:00
eaca91cad7
Land #9572 , add bind_named_pipe tests
2018-02-16 20:47:24 -06:00
0acc5fed20
add missing payload tests for bind_named_pipe
2018-02-16 18:05:45 -06:00
4a631714f5
Land #9571 , specify a python encoding for the claymore DoS module
2018-02-16 16:39:34 -06:00
4fc4b77a8b
Land #9570 , properly handle when there is no stat callback specified on upload
2018-02-16 16:39:06 -06:00
ac7fe99a2b
specify a python encoding for the module
2018-02-16 16:17:52 -06:00
bd2af0143a
properly handle when there is no stat callback specified on upload
2018-02-16 16:14:09 -06:00
289277c613
Land #9516 , Support Bash-Style Continuation Lines
2018-02-16 10:53:58 -06:00
242f2d3117
Land #9512 , Add Claymore Dual GPU Miner<= 10.5 DoS module
2018-02-16 10:46:48 -06:00
d19ee7a403
docker error workaround
2018-02-16 17:39:20 +01:00
6734e532f5
Land #9562 , avoid an error with aux module command dispatcher
2018-02-15 17:46:58 -06:00
a197997aca
avoid chinese finger trap logic, put it all on one side
2018-02-15 17:45:09 -06:00
25d2b551d8
Land #9539 , add bind_named_pipe transport to Windows meterpreter
2018-02-15 17:39:32 -06:00
d28f6888b2
bump payloads, include bind_named_pipe support
2018-02-15 17:37:33 -06:00
b533ec6019
Land #9509 , Ulterius Server < v1.9.5.0 Directory Traversal
...
Land #9509
2018-02-15 16:34:31 -06:00
949b474a0a
Avoid target_uri.path
...
It doesn't look like target_uri.path is suitable for this scenario,
because it causes our input to be modified and hard to use.
2018-02-15 16:31:09 -06:00
38b03fdfff
Merge branch 'upstream-master' into land-9539-
2018-02-15 16:22:13 -06:00
5467f4c97e
Add header
2018-02-15 16:19:54 -06:00
c4c864f391
Land #9558 , Fix #9417 , map timeout exp to a var for telnet_encrypt_overflow
2018-02-15 15:54:23 -06:00
2d3aef9031
Land #9533 , Add output file support to the vulns command
2018-02-15 15:52:25 -06:00
67dc579fd3
update magic numbers
2018-02-15 15:10:26 -06:00
ae684c1002
Land #9564 , honoring retry counts for x86/64 Windows reverse_tcp payloads
2018-02-15 14:37:23 -06:00
93450b87dd
use common retry options for UDP
2018-02-15 14:36:21 -06:00
6fe8691528
Fix #9090 , honoring retry counts for x86/64 payloads
...
Fix #9090
2018-02-15 13:52:34 -06:00
0f656d6b5b
Land #9563 : improve memory usage on meterpreter file upload
2018-02-15 12:07:19 -06:00
5b88f27e2b
Land #9560 , Fix undef method 'gsub' in bavision_cam_login
2018-02-15 11:36:45 -06:00
7e03bf838b
Fix src_size view
2018-02-15 17:44:41 +05:00
a0c473f29e
Upload memory usage optimization
...
Optimize xor_bytes memory usage, use small buffer for upload,
add verbosity
2018-02-15 17:05:22 +05:00
177e1321ae
Aux command dispatcher in exploit ctx with action
...
The Auxiliary command dispatcher checks modules for passive actions
expecting them to have included Msf::Module::HasActions mixin. The
mixin is included in post and aux modules already, but not in
exploits. When the aux dispatcher handles an exploit module, it
may get upset along the lines of:
```
[-] Error while running command exploit: undefined method 'passive'
for #<Msf::Modules::M...3::MetasploitModule:0x0000000d83de0428>
Did you mean? passive?
Call stack:
/opt/metasploit4/msf4/lib/msf/ui/console/command_dispatcher/
auxiliary.rb:106:in `cmd_run'
```
Avoid this mess by having the conditional which checks the methods
included by that mixin depend on the module having included the
mixin in the first place.
Testing:
In local fork (hence the lineno) it seems to fix the problem.
The problem condition and fix should be independently tested
upstream.
2018-02-15 04:20:09 -05:00
d5ab7b127b
Land #9557 , add back udp_probe for now
2018-02-14 11:24:21 -06:00
9a293cd30e
Fix #8120 , Fix undef method 'gsub' in bavision_cam_login
...
Fix #8120
2018-02-14 11:03:03 -06:00
ef948ccc38
Fix #9417 , map timeout exp to a var for telnet_encrypt_overflow
...
Fix #9417
2018-02-14 09:19:28 -06:00
7cfc17860d
udp_probe is necessary for pivot scans
2018-02-14 08:45:46 -06:00
ef13f01820
Remove actually deprecated modules
2018-02-14 08:43:20 -06:00
234f5a316b
Revert "Remove old deprecated modules"
...
This reverts commit a2c5cc0ffb
2018-02-14 08:42:44 -06:00
9611bfdd01
Land #9547 , Delete meterpreter scripts, imporve spelling
2018-02-14 02:24:07 -06:00
5063415b79
Land #9552 , add private_type for stored tomcat pw
...
Fixes #9513
2018-02-13 19:25:27 -05:00
3811665b69
Land #7699 , Add UDP handlers and payloads (redux)
2018-02-13 14:50:09 -06:00
f5768e7ced
gate session reported when using bind udp
...
While this method here is somewhat noisy on the network it eliminates
a poor user experience when the handler is started but the payload is
not yet running on the target.
When a target is sent a udp packet and it is not rejected push down
an initial "echo syn" command that will respond with output. This
allows framework to be aware that the payload is what is running on
the server port instead of assuming a non-existent target is a valid
session.
2018-02-13 14:44:57 -06:00
d56111a33c
update cache sizes from new tests
2018-02-13 14:34:21 -06:00
fbeba8bfd2
Fix #9513 , Add private_type to be able to store password for Tomcat
...
If there is no :private_type, the create_credential method in
Metasploit::Credential::Creation will quietly skip the password,
which makes it look like a bug when the user is trying to view
the password from the creds command.
Fix #9513
2018-02-13 14:31:56 -06:00
b80445e448
add missing payload tests
2018-02-13 14:20:43 -06:00
Brent Cook