6557cabd65
Land #12900 , add teamviewer password recovery
2020-02-07 10:24:12 -05:00
cbf0d14666
Fix the store_valid_credentials service info
2020-02-07 10:07:41 -05:00
a5a5ea7ded
clean up code, update documentation
2020-02-06 22:27:47 -06:00
4474b6f6dc
fix carriage return and spaces at EOL
2020-02-03 21:54:55 -06:00
13e670ceb3
fix carriage return and spaces at EOL
2020-02-03 21:52:30 -06:00
5f6c9a265f
Fix puts to print_error
2020-02-03 16:11:23 -06:00
f3e6f562a1
add docs, fix module location
2020-02-03 13:16:53 -06:00
97f5f37344
Land #12807 , Install OpenSSH for Windows
2020-02-03 14:50:30 +00:00
9314e8b65b
Reference URL is broken
...
The URL http://www.fishnetsecurity.com/6labs/blog/post-exploitation-using-netntlm-downgrade-attacks redirects to the www.optiv.com homepage.
The correct current URL is https://www.optiv.com/blog/post-exploitation-using-netntlm-downgrade-attacks
2020-01-28 20:35:57 +11:00
0d8d17c63d
Land #12736 , Add support for PPID spoofing
2020-01-24 08:49:51 -06:00
5d7c50e3ed
updated to use Msf::Post::Windows::Powershell mixin
2020-01-19 19:51:44 -05:00
c4d6feb0aa
Land #12721 , windows post module docs
2020-01-16 08:50:19 -05:00
7eeb8c33eb
Added new post exploitation module: 'Install OpenSSH for Windows'
2020-01-09 19:58:31 -05:00
988971bd94
Update shellcode_inject.rb
2019-12-18 16:05:37 +01:00
f22c6f2f63
add support for PPID spoofing to migrate
2019-12-17 16:39:18 +01:00
f9d2f9fa2e
Update shellcode_inject.rb
2019-12-17 01:42:52 +01:00
cbd225dfed
Update shellcode_inject.rb
2019-12-17 01:34:12 +01:00
5c7c071094
add support for PPID spoofing to shellcode_inject
2019-12-17 01:31:40 +01:00
eb8814d5fe
Land #12697 , module docs
2019-12-15 06:25:44 -05:00
3257b8b4cc
enum_patches
2019-12-14 15:58:45 -07:00
6be4729a02
Land #12391 , Add shellcode_inject post module
...
Merge branch 'land-12391' into upstream-master
2019-12-12 15:20:51 -06:00
fb5c896d40
Streamline Checks and error for channelized comms before injection
2019-12-12 15:19:17 -06:00
c4e304574c
Update enum_applications.rb
2019-12-11 14:10:48 -07:00
0a31e3b909
Update bitlocker_fvek.rb
...
Fix spelling errors.
2019-12-11 13:39:25 -07:00
cc25a30d1a
Move dpendency to mixin and adjust print statements
2019-12-04 09:00:03 -06:00
2a14332f20
First try at adding error handling and offloading methods to the
...
Post::Windows::Process mixin for resusability and deduplication
2019-12-03 14:11:50 -06:00
f5fbdcacc3
Add support for shell sessions to post/windows/gather/enum_hostfile
2019-11-16 04:07:01 +00:00
2549de809d
fix bug in PID check
2019-11-07 12:57:05 +01:00
e992480b5c
Update shellcode_inject.rb
2019-10-17 16:02:59 +02:00
74ae445128
Add AUTOUNHOOK support for shellcode_inject post module
...
The module will now first inject the unhook dll and then the provided shellcode.
2019-10-10 16:35:57 +02:00
47dd96df68
Remove duplicate module in the wrong place
2019-10-08 08:48:11 -05:00
905eb17132
begining to fix spelling errors
2019-10-05 14:26:34 -04:00
f95f952b65
fix separated spelling
2019-10-05 14:13:38 -04:00
dd9fb2d9d6
Add shellcode_inject post module
...
This module injects an arbitrary shellcode into a target process.
2019-10-03 16:47:10 +02:00
c86511722a
Land #12258 , Update gpp.rb to display GPO name
2019-09-26 03:36:28 -05:00
a587668b9e
Remove Default targets from aux modules
2019-09-24 12:15:43 +01:00
fe2b3f8f29
Remove targets from post modules
2019-09-23 17:26:36 +01:00
795e0ebeb5
Restore a "print" to "print_good"
...
Aesthetics modification
2019-09-07 09:02:04 +02:00
a2d2475618
Fixed wrong previous commit
2019-09-05 22:12:33 +02:00
88d424cf3f
Make the modification suggested by @acammack-r7
...
Directly insert the new value in the "table", instead of modifying the screen output manually. Simpler and cleaner, thanks @acammack-r7 !
2019-09-05 21:44:18 +02:00
13560e93c0
Improve ADSI GPO filter to return only one result
2019-09-02 20:15:00 +02:00
71b825ee06
Update gpp.rb to display GPO name
...
GPO files on SYSVOL do only include the GPO GUID, not the GPO name defined by the administrator. This modification makes this gpp module make an ADSI query to retrieve all of the domain's GPOs, and compare their GUID. If one GUID matches, then we know the GPO name and we can display it. On a pentest, a client is much more interested by knowing the GPO name rather than the obscure GUID. The ADSI query relies on meterpreter "extapi" extension.
2019-08-31 12:37:49 +02:00
b6b3a54b79
fix typo in payload_inject
...
:)
2019-07-27 19:02:33 +02:00
53557cc92e
replace trivial usage of expand_path with getenv
...
expand_path is not implemented consistently across platforms and
sessions, which leads to confusing behavior. In places where we have trivial
single variable expansions, this changes modules and library code to just use
getenv.
We'll look at the rest individually to see if they can also be reimplemented in
terms of getenv.
2019-05-31 17:44:35 -05:00
9d71020d9c
Removed credit
2019-03-24 19:11:22 -04:00
8a36a0f410
Added support for later versions of Outlook, rubocop complaints
2019-03-24 18:39:55 -04:00
85066938df
Land #11157 , Add Windows Gather Power Shell History module
2019-02-13 12:39:28 -06:00
366d060b5d
Minor changes for psreadline_history
2019-02-13 12:38:36 -06:00
28283809f9
Add nil check to enum_patches
2019-02-02 15:33:48 +00:00
e9a8d5708a
Land #11234 , @bcoles revisionism
2019-01-11 20:15:34 -06:00
Spencer McIntyre