5b3edd4cb2
still need to include Msf::Post::File
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2021-05-25 08:35:55 -05:00
0cefd8eaa6
refactor post API for process lists
2021-05-24 18:39:16 -05:00
9f2dae38c8
Land #15079 , add meterpreter compat requirements
2021-05-24 16:00:08 -05:00
8266f2ffdc
Land #15113 , post gather module for saltstack salt #15113
...
Merge branch 'land-15113' into upstream-master
2021-05-17 15:33:20 -05:00
b2f8bc6958
guard on nil minions
2021-05-15 09:38:15 -04:00
100da2f1b1
Enforce Style/RedundantBegin for new modules
2021-05-13 04:01:03 +01:00
00131a666c
Land #15096 , Add shell support for win checkvm
2021-05-04 17:32:05 -04:00
929197b85e
Fix rubocop errors
2021-05-04 11:34:22 +10:00
2ac4eeb141
Check VAS configuration to find defined kerberos location.
...
Also verify root prior to exploitation (gives better error message)
2021-05-04 11:31:11 +10:00
75ed65a0ab
properly name saltstack salt
2021-05-03 19:34:37 -04:00
4cd7637274
Fixed Rubocop errors added since this module was forked
2021-05-03 13:28:07 +10:00
f0a442b77d
Retrieve configured kerberos ticket location before retrieving tickets
...
Rather than assume that file-configured kerberos tickets will be at /tmp/krb5_*, let's check the config file.
Also allows us to give more meaningful error messages and point people in the direction of where to look if it doesn't work.
2021-05-03 13:07:45 +10:00
2c76671436
add windows minion file
2021-05-02 10:01:06 -04:00
2c0c7791a0
more error handling, updated docs
2021-05-02 08:19:43 -04:00
fd73b03239
add get_processes for windows in common.rb
2021-05-02 14:16:51 +05:30
86a7b7b915
Forked a long time ago, so let's get it closer to the main branch
2021-05-02 14:23:56 +10:00
fde1696ae2
windows and osx updates
2021-04-30 20:59:54 -04:00
da01a839d1
Set required commands spec for all post mixins
2021-04-26 12:28:18 -04:00
77b0b3e183
add shell support for win checkvm
2021-04-24 18:06:37 +05:30
95e59f514c
Land #15021 , add KOFFEE exploit for CVE-2020-8539
2021-04-23 09:25:16 -04:00
50873d3d88
Fix some typos and markdown formatting
2021-04-23 09:24:38 -04:00
12cb8b3f02
Removed not needed require
2021-04-22 04:49:22 -04:00
3c64475da9
Adding new actions on the module and updated documentation
2021-04-22 04:34:22 -04:00
8186a75235
Add meterpreter command compatibility to modules
2021-04-21 18:22:15 -04:00
397530c554
Add meterpreter command compat to module info
2021-04-21 14:24:01 -04:00
f6cb88b642
remove is_root check from linux_hashdump
2021-04-21 10:19:30 +05:30
deaa241ca5
Land #15065 , fix post/linux/gather/checkvm
2021-04-20 17:02:45 +01:00
a4cfc3684e
remove ls_pci_data initialization
2021-04-20 21:26:21 +05:30
32bfa887da
rubocop fixes
2021-04-20 21:23:24 +05:30
43f4ec921d
update docs and remove lscpu check
2021-04-20 21:12:27 +05:30
490e49acdb
fix msftidy warning
2021-04-20 20:58:04 +05:30
673084b65c
remove sys/bus/xen check and add /sys/class/dmi/id/product_name check
2021-04-20 20:51:04 +05:30
cde5c83517
add nil check and remove readable?
2021-04-20 18:44:38 +05:30
61d4ab4e26
fix linux checkvm bug
2021-04-20 09:40:11 +05:30
c4956ce19b
Updatied the module with the full set of actions
2021-04-16 04:54:29 -04:00
cffb82e8d9
Updating KOFFEE module enabling actions that can be selected by a user to trigger functionalities on the head unit
2021-04-13 10:00:12 -04:00
045367cff7
Apply RuboCop formatting to documentation and module
2021-04-12 13:52:00 -05:00
54aa9d42e9
Add one additional guard clause in to prevent outputting a message if the database isn't properly connected
2021-04-12 13:41:17 -05:00
0b06904dd0
Update module with more checks and replace the Process migration strategy with a PID migration strategy. Also update documentation accordingly
2021-04-12 13:05:26 -05:00
7a828b5884
updating w/ proc option to migrate into and proc check before auto migrate
2021-04-12 13:05:26 -05:00
e9088cfc12
Run rubocop and msftidy_docs, both on the module and documentation
2021-04-12 04:13:03 -04:00
938b4741a9
saltstack doc update and tested
2021-04-10 13:46:19 -04:00
e48ebe6659
Update haserl_read module documentation (again)
...
- Add CVE and Ref.
- Add fixed version
2021-04-09 13:24:49 +02:00
586d033909
Land #14833 , haserl-based exploit for Alpine linux
2021-04-09 13:07:47 +02:00
58855af6c6
KOFFEE first commit. This module exploits the Arbitrary Code Execution vulnerabilty (CVE-2020-8539)
2021-04-07 05:33:53 -04:00
690e687e7e
Updates from code review
...
Update modules/post/multi/sap/smdagent_get_properties.rb
Update modules/auxiliary/admin/sap/cve_2020_6207_solman_rce.rb
Update documentation for auxiliary module cve_2020_6207_solman_rce.md
Update documentation for post module smdagent_get_properties.md
Move setup_xml_and_variables to `run` method in auxiliary module cve_2020_6207_solman_rce.rb
Delete list_dir, read_file, file_exist in post module smdagent_get_properties.rb
2021-04-06 21:23:39 +02:00
943698ef19
Add an haserl-based exploit for Alpine linux
2021-04-02 13:43:52 +02:00
1f4046c45f
Update references and delete check_addr in post module smdagent_get_properties.rb
2021-03-29 22:58:48 +03:00
a803d7a0d1
CVE-2019-0307
...
Add post module smdagent_get_properties.rb
Add lib sap_smd_agent_unencrypted_property.rb
Update auxiliary module cve_2020_6207_solman_rce.rb
Update lib sap_sol_man_eem_miss_auth.rb
2021-03-29 20:29:30 +03:00
11b12e4c63
Land #14869 , Add Windows post module for gathering Exchange mailboxes
...
Merge branch 'land-14869' into upstream-master
2021-03-26 15:08:06 -05:00
Jeffrey Martin