adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
49,186 Commits 27 Branches 1,043 Tags
5a978dca2e902ec2344cd7f85dc43ba0b96df108
Commit Graph

15179 Commits

Author SHA1 Message Date
William Vu 8372007576 Prefer method_defined? for the class 2018-11-02 00:34:17 -05:00
William Vu c3311da6e2 Be specific about report_on_exception 2018-11-02 00:24:16 -05:00
William Vu 0592420ea4 Fix thread exception reporting for Ruby 2.3.8 
Thread::report_on_exception doesn't exist.
 2018-11-01 18:59:23 -05:00
Brent Cook 7cf384405e only change thread behavior if on Ruby 2.5 or above 2018-11-01 18:24:12 -05:00
Brent Cook 4dcb31f26b only turn off thread reporting if it is already on 2018-11-01 18:08:52 -05:00
William Vu 0b682b6300 Preserve old thread exception reporting behavior 
https://ruby-doc.org/core-2.5.0/Thread.html#method-c-report_on_exception
 2018-11-01 17:30:49 -05:00
bwatters-r7 08ec8e1ef9 Land #10553, add x86/xor_dynamic and x64/xor_dynamic encoders 
Merge branch 'land-10553' into upstream-master
 2018-10-30 09:56:15 -05:00
James Barnett bd7c867485 Land #10862, fix issue with session reporting when DB is disabled 2018-10-26 10:58:06 -05:00
Matthew Kienow eb9dd311ce Add check that data service is active 2018-10-25 23:07:31 -04:00
Matthew Kienow 2f8aacbf8d Remove debug output 2018-10-25 14:44:11 -04:00
Matthew Kienow 64f8852797 Use data_service_operation block to perform work 
This fixes the session report issue when the database is disabled,
because no exceptions are thrown from the DataProxy under these
conditions.
 2018-10-25 14:38:13 -04:00
Matthew Kienow 7f8aeeb498 Raise RuntimeError rather than Exception 2018-10-25 14:29:24 -04:00
Matthew Kienow 8e2d6a62b1 Add block process data service operation method 2018-10-25 14:24:47 -04:00
Wei Chen 6920470f99 Land #10821, Enhance windows compiler w/ new functions 2018-10-24 20:28:36 -05:00
Wei Chen 2ab9a003d4 Land #10864, Add Cisco WebEx RCE Modules 2018-10-24 16:20:00 -05:00
Brent Cook 4dd2147d60 Land #10857, ensure os_flavor can be supplied for non Windows OS 2018-10-24 14:28:32 -05:00
Green-m 3c5aa93a0d Fix for style consistency. 2018-10-24 15:17:37 +08:00
Green-m 129425ca94 Fix session report bug when database disabled. 2018-10-24 14:48:03 +08:00
Shelby Pace 34ae9c38f9 added WebEx modules, arch check 2018-10-23 15:51:23 -05:00
Jeffrey Martin efeacf8666 ensure os_flavor can be supplied for no Windows OS 2018-10-23 12:22:57 -05:00
Brent Cook b65f467ada Land #10851, add ndkstager to data/exploits 2018-10-23 12:04:57 -05:00
William Vu 4182777488 Support SSH shell/exec channel request output 
Looks like channel[:data] was initialized but never used.
 2018-10-23 09:34:12 -05:00
asoto-r7 f742d3bd9a Land #10450, Implementation of CTRL+Z in reverse shell session 
Additionally, a check was added to disable this new functionality on
Windows command shell payloads.
 2018-10-22 15:50:41 -05:00
William Vu da38dfb29a Clarify we never receive CHANNEL_OPEN_FAILURE 2018-10-19 13:25:19 -05:00
William Vu cc283d9def Add testing note about session channel opens 2018-10-19 13:13:22 -05:00
William Vu 21397330f8 Refactor fortinet_backdoor copypasta 2018-10-19 00:07:18 -05:00
William Vu d1354cc1f7 Add libssh auth bypass packet 2018-10-18 23:03:23 -05:00
William Vu cf00f20e11 Update Net::SSH::CommandStream exception handling 2018-10-18 22:45:16 -05:00
William Vu 6fd53fcb6a Fix whitespace further 2018-10-17 15:45:02 -05:00
William Vu 1e1950c83d Prefer keyword args after all 
SINCE we've been using only the first two params, we're fine!
 2018-10-17 15:41:19 -05:00
William Vu a453760aa4 Add PTY option to Net::SSH::CommandStream 
This allows us to spawn a PTY for our shell session. Note that this will
write us to {u,w}tmp and lastlog, so use this option with care.

And yes, I did change the API, but up until now, we've been using only
the first two parameters. We should be using keyword args. /shrug
 2018-10-17 15:40:13 -05:00
Green-m ef3b1df647 Fix regular 2018-10-17 18:34:35 +08:00
Green-m 7b1b2198cb resolve confiict. 2018-10-17 17:33:01 +08:00
Green-m 5df6f11cfc Enhance regular to match blank before include. 2018-10-17 16:20:10 +08:00
Jacob Robles 786629afc9 Land #10818, Disable ERB templating for Metasploit::Framework::Compiler::Utils 2018-10-16 14:18:50 -05:00
Wei Chen 69cd0a5ddc Disable ERB templating for Metasploit::Framework::Compiler::Utils 2018-10-16 14:02:13 -05:00
Rich Whitcroft 854485a016 add bg command to meterpreter 2018-10-16 14:01:50 +00:00
Brent Cook 4ae45cb20b comment around why we do this, make check more explicit 2018-10-12 02:12:30 -05:00
Nate Caroe 14e87bf06f Baby come back 2018-10-11 11:10:36 -06:00
Nate Caroe e207c225a2 Remove function entirely 2018-10-11 10:41:43 -06:00
Nate Caroe 5c061c02b9 Remove peer information from the prefix 2018-10-10 16:31:48 -06:00
Brent Cook 3349ecf212 Land #10788, Clarify "NameError: wrong constant name" message on invalid module name 2018-10-10 15:34:55 -05:00
William Vu 0b8926715e Reactively check for invalid module names 2018-10-10 14:33:59 -05:00
William Vu 29f36a3921 Add Msf::ModuleLoadError exception 2018-10-10 14:22:40 -05:00
William Vu 1737935dc0 Convert reverse_relative_name to a class method 
It'll be easier to use this way if someone uses it externally.
 2018-10-10 13:21:18 -05:00
Brent Cook 12857a1d93 Land #10784, Add 'evasion' to search help 2018-10-10 13:02:45 -05:00
Brent Cook e829c6a838 Land #10786, Fix 'show evasion' command 2018-10-10 13:01:35 -05:00
Brent Cook 1a0df7ce07 Land #10787, Remove unused 'unknown' author mapping in author.rb 2018-10-10 13:01:05 -05:00
William Vu 63bcbdc8db Remove unknown author mapping in author.rb 
No one was using it and instead writing "Unknown" directly. It was also
producing an invalid e-mail address.
 2018-10-10 11:59:01 -05:00
Wei Chen b103ea256d Fix #10785, incorrect implementation of "show evasion" command 
Fix #10785
 2018-10-10 10:20:12 -05:00