adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
25,805 Commits 27 Branches 1,043 Tags
7d1cd22acab75faef3d9d7e6ae4e68839e2dcdfd
Commit Graph

4670 Commits

Author SHA1 Message Date
James Lee 51a9a763c0 Move error_name to InvalidPacket and check for nil 
MSP-10713
 2014-07-15 15:02:53 -05:00
dmaloney-r7 7184d2ed5e Merge pull request #107 from rapid7/feature/MSP-9704/pop3-module-refactor 
Refactor pop3_login
 2014-07-14 13:27:11 -05:00
James Lee e68dcdbb06 Refactor pop3_login 
Also adjusts timeout in the scanner class to account for Dovecot's
default "Authentication Penalty" delay.

See http://wiki2.dovecot.org/Authentication/Penalty
 2014-07-11 17:26:49 -05:00
James Lee 62a2f1dc0a Credential -> Model for realm key constants 2014-07-10 14:30:25 -05:00
James Lee c5226352de Un-login-able should be print_status, not good 2014-07-09 17:45:41 -05:00
James Lee 7d9c0da691 Record correct creds with non-success status 2014-07-09 13:26:49 -05:00
James Lee afe36ab6ad Merge branch 'staging/electro-release' into feature/MSP-9707/smb-bruteforce-refactor 
Conflicts:
	lib/metasploit/framework/login_scanner/smb.rb
 2014-07-09 12:50:24 -05:00
David Maloney aeda74f394 Merge branch 'master' into staging/electro-release 
Conflicts:
	Gemfile
	Gemfile.lock
 2014-07-07 16:41:23 -05:00
James Lee 2a9ac0a007 Axe SSHKey in favor of a unified SSH 2014-07-07 13:35:17 -05:00
Christian Mehlmauer b15297eee0 Land #3490, @Meatballs1 tns listener verbose output 2014-07-03 16:20:38 +02:00
Rob Fuller c6675a2900 Add verbosity to Jenkins Enum 2014-07-02 13:25:18 -04:00
William Vu 68ba79aa16 Remove access_level, since we don't have access 2014-07-01 17:53:18 -05:00
William Vu 5fa0981026 Add login and move print_status 2014-07-01 17:48:42 -05:00
William Vu 864f0f1bbc Update description, loot -> creds 2014-07-01 11:46:21 -05:00
William Vu 3079c47d41 Refactor oracle_hashdump creds 2014-07-01 01:07:22 -05:00
jvazquez-r7 bf9c64d3ee Land #3483, @hmoore-r7's title change for ipmi_cipher_zero 2014-06-30 17:31:12 -05:00
Meatballs cf720a88e8 Be verbose about error codes 2014-06-30 19:10:03 +01:00
Meatballs f8ef6c50b4 Land #3470, Cerberus SFTP User Enumeration 2014-06-30 19:01:15 +01:00
Meatballs 94c5a0b603 More verbose around connection errors 2014-06-30 18:56:30 +01:00
Meatballs 183d601aae Small tidyup 2014-06-30 18:17:49 +01:00
attackdebris 004afa6e0c Clean commit of Cerberus FTP User Enumeration Module 2014-06-30 17:53:46 +01:00
HD Moore 72d8d8a40c RAKP defines auth, not cipher-0 bypass, see below. 
Dan Farmer noted that the RAKP reference in the title was not correct
and that RAKP is a separate issue and protocol implementation than
the use of Cipher Zero to perform an authentication bypass.

Cosmetic only change
 2014-06-30 00:52:40 -05:00
David Maloney 9cec330f05 Merge branch 'master' into staging/electro-release 2014-06-26 10:22:30 -05:00
James Lee 48e93b7fc2 Merge branch 'feature/MSP-9715/linux_hashcracker' into staging/electro-release 2014-06-25 16:15:44 -05:00
David Maloney 34c57f51b1 Merge branch 'staging/electro-release' of github.com:rapid7/metasploit-framework-private into staging/electro-release 2014-06-25 15:02:35 -05:00
David Maloney ac61a8fe4f deprecate jtr_unshadow 2014-06-25 15:01:35 -05:00
James Lee 75be200b97 Merge branch 'feature/MSP-9714/jtr_aix' into staging/electro-release 2014-06-25 14:34:41 -05:00
James Lee 70fd3344fd Merge branch 'feature/MSP-9713/jtr_crack_fast' into staging/electro-release 2014-06-25 14:15:50 -05:00
David Maloney 61d8597a00 missing require 2014-06-25 10:13:41 -05:00
David Maloney 5b0a356045 properly strip extra colons 2014-06-25 10:04:48 -05:00
James Lee 4e0bcc123d More useful msg when domain is ignored 2014-06-25 10:01:07 -05:00
James Lee f225ac92ab Refactor smb_login 
Maintains the new admin check functionality added in
rapid7/metasploit-framework#3330
 2014-06-25 04:13:37 -05:00
David Maloney 560fc93834 jtr_aix refactor 
updated the aix cracker for jtr
 2014-06-24 15:34:28 -05:00
James Lee 85611702f9 Merge branch 'upstream-master' into feature/MSP-9707/smb-bruteforce-refactor 2014-06-23 23:58:47 -05:00
HD Moore 002234993f SMB lib fixes, unattend.xml cred gathering 2014-06-23 20:08:42 -05:00
Meatballs 615aeb66a5 Dont use or 2014-06-23 23:11:04 +01:00
Meatballs 752007848b Tidy up code 
Dont rescue Exception
Remove eol spaces
Dont use and
More verbose path
 2014-06-23 23:08:33 +01:00
David Maloney 6651af2d9b refactor jtr_linux cracker 2014-06-23 16:27:28 -05:00
HD Moore 2772d84a18 Major rework of this module, please see the diff 2014-06-23 16:13:42 -05:00
David Maloney 57c4ed51e9 fix mssql incremental modes 2014-06-23 15:37:37 -05:00
David Maloney 1cbc324774 fix up incremental modes 
those incrmenetal rules don't exist
in all versions. All and Alnum are too long
for a 'fast-mode' crack. We wwill do Digits though
which does all digits 0-8 and gets us blank passwords
for free.
 2014-06-23 15:36:17 -05:00
David Maloney 520c82d7fc deal with blank password in ntlm 2014-06-23 15:32:50 -05:00
David Maloney c5f2efda18 fixed up casing 2014-06-23 15:26:12 -05:00
David Maloney b246e66eb8 successfully cracking ntlm hashes 
still need to handle casing for lm
 2014-06-23 14:40:32 -05:00
David Maloney 57cc390681 fix how we save mssql hashes 
since the 0x prefix is neccisary, just save the hash that way in the first place
 2014-06-23 12:38:36 -05:00
David Maloney c61f59d8a9 make sure to report the realm 2014-06-23 12:08:49 -05:00
David Maloney dadd959c6a refactor postgres hash cracking 
refactored postgres_hashdump to report the creds
it logged in with. added a new jtr module for
dealing with postgres hashes instead of the
crappy old md5 one we had before
 2014-06-23 12:02:39 -05:00
William Vu a0aca251f5 Land #3472, releae fixes 2014-06-23 11:41:35 -05:00
Tod Beardsley 0219c4974a Release fixups, word choice, refs, etc. 2014-06-23 11:17:00 -05:00
William Vu 40d1ec551e Add WEP, PSK, and MGT 2014-06-21 23:15:20 -05:00