28108517a7
Remove the version from the default prompt
...
Fixes #20355
2025-07-16 15:40:54 -04:00
432bcfc4d3
Mention our corporate sponsors in the banner
2025-07-08 08:37:14 -04:00
a6cdb6deb9
Adds support for MITRE ATT&CK References
2025-06-25 17:24:47 +01:00
65ed80f5b0
Add flag to vuln command to show vuln attempts
2025-06-19 16:06:25 +01:00
5aa91bd57c
Rubocop: Resolve Rubocop Style/RedundantRegexpArgument violations
2025-05-24 13:34:32 +10:00
f6faa5598b
Fixes modules to now correctly use a hash with report note
2025-05-22 10:59:50 +01:00
ae65bb3034
Ui::Console::ModuleOptionTabCompletion#tab_complete_option_names: sort results
2025-05-05 21:22:21 +10:00
b0f8df0894
Flow the action through to the exploit class
2025-04-29 17:13:02 +10:00
c9c89da213
Include action in parsing options
2025-04-29 09:48:15 +10:00
630c2c03bc
Update certs command, pkcs12 matching and specs
...
- use the `status`, certificate's `not_before`/`not_after` and check if the TLS
OID is present to filter pkcs12 before using them with PKInit
- add the `activate`, `deactivate` and `export` capabilities to the
certs command
- add specs
2025-04-02 18:23:14 +02:00
e7535d8fae
Add certs command & use pkinit if kerberos tickets are not available in cache
2025-04-02 18:23:14 +02:00
7f8a762922
Update ms_icpr and creds to reflect the changes in the Pkcs12 data model
...
- a separate field is now used for metadata (`private_metadata`) when
creating a new Pkcs12
- the `creds` command now support adding an encrypted Pkcs12 with a password
2025-04-01 19:12:41 +02:00
865626fbd2
Update Pkcs12-related code to report CA and ADCS Template to the database
...
- Update the `creds` command to add Pkcs12 private credentials with
metadata.
- Update `ms_icpr` module to store metadata.
2025-04-01 19:07:48 +02:00
b43dc8be08
Switch relay modules, add ESC8 check method
2025-03-05 13:44:33 -05:00
5e3953e53e
Add a new mixin for handling multiple targets
2025-03-05 13:44:33 -05:00
f2bcf34d51
Apply the same refactoring to exploits
2025-03-04 17:01:46 -05:00
f2e29a326e
Remove dead code that shouldn't get hit anymore
2025-03-04 13:05:56 -05:00
112b8f5ece
Call #validate before walking the rhosts
2025-03-04 13:05:56 -05:00
8d3d8d8662
Call #validate in run_simple like it is in call_simple
2025-03-04 13:05:56 -05:00
57e3045b57
Fixes crash when searching modules by target
2025-02-28 13:51:22 +00:00
2e9326897f
Land #19887 , Update reload_lib to ignore gemfiles
2025-02-17 14:14:02 +00:00
f16d31b7b1
Update reload_lib to ignore gemfiles
2025-02-17 13:50:41 +00:00
3f85d6d46d
Add osvb search to msfconsole
2025-02-17 10:06:39 +00:00
8e9c144e2c
Consolidate datastore with fallbacks logic
2025-02-09 20:26:52 +00:00
ee4f01f0a4
Ability to reorder DNS entries
2024-12-20 11:02:38 +11:00
6167596c20
Revert "Use existing input object when calling init_tab_complete"
2024-12-11 16:22:18 +00:00
4293aac54e
Use existing input object when calling init_tab_complete
2024-12-10 10:56:26 +00:00
523a172e23
Load Readline without a conditional
2024-11-19 13:02:06 +00:00
fefc8438f5
Deprecate real-readline option
2024-11-19 12:38:05 +00:00
6be0182b1f
Fix crash when using modules
2024-11-14 21:19:41 +00:00
0d0631aa2a
Squash to a single line of output
2024-11-13 11:27:17 +00:00
2c009d02f9
place current action display behind feature flag
2024-11-12 15:53:30 +00:00
6018adbbb3
Display current action and number of available actions on module use
2024-11-12 15:53:30 +00:00
b2075e5e6b
Merge pull request #19553 from smashery/offered-etype-fix
...
Only retrieve cached credentials that match the requested KrbOfferedEncryptionTypes
2024-10-28 09:47:26 -04:00
7dc918f122
Don't monkey patch RbReadline multiple times
2024-10-18 18:51:40 +01:00
02dd5ac604
Monkey-patch Readline to fix unresponsiveness on Windows 11
2024-10-18 17:46:25 +01:00
617270265d
Only retrieve cached credentials that match the requested OfferedEncryptionTypes
2024-10-11 16:23:26 +11:00
a31261ecf2
Revert "Replace Readline with Reline"
2024-10-02 13:15:12 +01:00
10dee226c6
Replace Readline with Reline
2024-09-04 16:39:41 +01:00
6a31ceb9e6
Improve setg SessionLogging support
2024-07-24 17:22:11 +01:00
0bba494d1d
Fix edgecase in Meterpreter job persistence
2024-05-16 11:16:55 +01:00
1c8d62abc1
Land #19129 , Add missing '-S' to cmd_notes
2024-04-24 15:57:33 -04:00
99c56c5410
Add missing '-S'
2024-04-24 12:24:01 +03:00
e3625307b3
Land #18914 , Add OpenVAS import improvement
...
This PR adds functionality so that CVE and URL references will be
imported from an OpenVAS XML report by default. DNF-CERT and CERT-BUND
references can also be collected by sending additional flags to the
db_import command
2024-04-22 18:11:33 -07:00
298e03b1cd
Land #18885 , update the sessions command to be consistent
2024-03-20 18:49:33 +00:00
b363f6f87d
Alias blackhole to black-hole in the UI
2024-03-20 10:57:04 -04:00
2b3a723557
Consistently refer to black hole as two words
2024-03-19 20:49:28 -04:00
b3b6f79594
Update the presentation of static entries
...
Keep the first line blank for consistency with rules and sort hostnames
and addresses.
2024-03-19 12:48:13 -04:00
5b1d0100d2
Add spell checking for resolvers
2024-03-19 12:48:07 -04:00
287b07281d
Use Rex Parser to parse options for sessions command
2024-03-15 18:50:19 +05:30
Spencer McIntyre