5bc618e642
Remove initial code duplication between mssql clients
2022-07-01 14:26:04 +01:00
e40e835fd8
Land #16706 , Kerberos login enhancements
2022-06-30 14:51:30 +01:00
66009ca5e5
Exploit::CmdStager: Expose CMDSTAGER::URIPATH option for HTTP stagers
2022-06-25 23:49:47 +10:00
997f9b92d9
Changes from code review
2022-06-24 09:33:57 +10:00
96046f9aec
Remove unnecessary freeze calls
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com >
2022-06-24 08:36:44 +10:00
2553bae018
Report correct password when clock is wrong or password has expired
2022-06-23 11:33:45 +10:00
3e33e2694d
Include information on whether account is disabled or locked.
...
We can do this more precisely for Windows' implementation of Kerberos
by using the undocumented PA-PW-SALT entry.
2022-06-23 10:46:25 +10:00
8d1d2d5aad
Fix bugs from #16685
2022-06-23 10:20:59 +10:00
a4a0fc3028
Changes from code review.
...
Use kwargs instead of default values for rarer crypto args.
Revert case-sensitivity change; we'll leave krb5 on Linux til later.
More constants
2022-06-22 16:03:36 +10:00
15446fd173
Incorporated new encryption methods into login scanner, including negotiating
2022-06-22 09:36:25 +10:00
19b62a5af6
Support several new encryption types for Kerberos.
...
Supports DES-CBC-MD5, DES3-CBC-SHA1, AES128, AES256
2022-06-22 09:13:33 +10:00
f8901a8b17
Add Kerberos LoginScanner support
2022-06-20 16:38:32 +01:00
b10386ba08
Land #16650 , Add #read_from_file for MSSQL and PostgreSQL, fix the MySQL implementation
2022-06-17 14:58:22 -05:00
d47d1bc259
Remove newlines from base64 output on MySQL also
2022-06-17 00:51:52 +02:00
affc5bc294
Fix Kerberos flags decoding logic
2022-06-09 12:22:20 +01:00
63822f6e37
Land #16651 , [SQLi library] Ensure the encoder is always used in the #test_vulnerable methods
2022-06-08 17:15:22 -05:00
88036a7f1f
Check for nil before using the decoder in test_vulnerable
2022-06-08 22:00:03 +02:00
67ea2bc23c
Land #16630 Fix duplicate ntlm hash storage
...
Net-NTLM (v1 and v2) hashes were being duplicated when
stored in the database due to the unique data in the challenge
dispite being the same. This fixes that issue
2022-06-08 14:07:34 -04:00
1a7cbe5b4f
Update lib/msf/core/exploit/remote/smb/server/hash_capture.rb
2022-06-08 13:45:57 -04:00
a983bbd8ba
Land #16615 , Solicited multicast-address creation bugfix
2022-06-07 14:41:52 -05:00
2b99967d0c
Merge branch 'master' into fix/duplicate-netntlm
2022-06-07 11:42:51 -04:00
5331c343a0
Use the encoder in all the #test_vulnerable methods from the common class
2022-06-06 23:13:26 +02:00
6d9c789f4d
Add method #read_from_file for MSSQL and PostgreSQL, and update the MySQL #read_from_file method
2022-06-06 23:07:25 +02:00
8ccc1ebf91
Land PR #16628 , Log ntlm_session hashes
...
This PR fixes the logging and storing of
NTLM session hashes
2022-06-02 11:20:37 -04:00
6d3ccab1be
Land #16435 , add Microsoft SQL Server sqli support
2022-06-01 10:27:48 -05:00
a47b3fe694
Don't report duplicate Net-NTLM hashes
2022-05-27 14:13:06 -04:00
1e5f86703f
Report the correct JtR type
2022-05-27 10:16:02 -04:00
862c6a94a2
Log ntlm_session hashes too
...
Despite being called ntlm_session, these hashes are capable of being
cracked as the John 'netntlm' format. Additionally the format is
reported as NTLMv1-SSP in similar tools.
2022-05-27 10:07:39 -04:00
c33f284786
change from lambda to line by line logic
2022-05-24 16:24:15 +03:00
7f9ead454e
bugfix of improper solicited address creation
2022-05-23 15:25:53 +03:00
19a9ff1198
Update a couple of modules for the new SMB server
2022-05-16 14:39:45 -04:00
e0b9002238
Fix an SMB relay bug
2022-05-16 14:39:45 -04:00
f14f8da1df
Use the new thread_factory
2022-05-16 14:39:45 -04:00
b79b550d6c
Centralize the log adapter
...
This should eventually be updated to map the levels to the framework
logger and appropriate module-print_* function.
2022-05-16 14:39:45 -04:00
7c15b144c4
Update the SMB capture server
2022-05-16 14:39:44 -04:00
22993e910e
Move server code into the server mixin
2022-05-16 14:39:44 -04:00
c39fd87073
Finish removing unneeded server code
2022-05-16 14:39:44 -04:00
475f6eee8c
Capture hash when serving files over SMB
2022-05-16 14:39:44 -04:00
d740786211
Add the on_client_connect callback
...
Also update the group_policy_startup module.
2022-05-16 14:39:44 -04:00
317516d90f
Enable guest access
2022-05-16 14:39:44 -04:00
882bcf08f7
Fix bugs when stopping the service
2022-05-16 14:39:44 -04:00
09dc65eb6a
Remove the FILE_CONTENTS datastore option
...
None of the 14 modules use this option, they all deregister it.
2022-05-16 14:39:44 -04:00
63af7cdef7
Initial update to the RubySMB share server
2022-05-16 14:39:44 -04:00
013a819cff
Out with the old
2022-05-16 14:39:44 -04:00
879591f686
Land #16499 , Specify peer hostname for SNI
2022-05-16 14:21:57 -04:00
0196b6fa75
Land #16555 , move duplicated retry_until_truthy code into centralized location
2022-05-16 18:31:57 +01:00
db694efd36
Improve relative redirect handling
2022-05-16 12:03:24 +01:00
1aceb71971
Rename the function to emphasize truthy
2022-05-13 09:16:01 -04:00
3d37f2f811
Change the timeout value to be nil
2022-05-13 09:14:23 -04:00
739c0fcad1
Specify peer hostname for ssl connections
2022-05-13 13:55:43 +01:00
adfoster-r7