metasploit-gs

Author	SHA1	Message	Date
dmaloney-r7	85bee6ea12	Update ftp_login.rb	2014-06-11 17:29:23 -05:00
David Maloney	83a2dc250d	make ftp guest attempts optional	2014-06-11 16:37:59 -05:00
David Maloney	1164cf5363	refactor ftp_login uses new cred goodness	2014-06-11 16:21:55 -05:00
Trevor Rosen	6c0d668f0a	Merge pull request #55 from rapid7/feature/MSP-9701/msssql_login Feature/msp 9701/msssql login MSP-9701 #land	2014-06-11 13:48:59 -05:00
Samuel Huckins	84aa0d42ed	Merge pull request #57 from rapid7/bug/MSP-10004/rubyzip Trevor added a 0.4.1 tag right before this PR landed, making this unmergable. Pulled in staging/electro-release, specs passing.	2014-06-11 13:48:03 -05:00
Samuel Huckins	1903542683	Merge branch 'staging/electro-release' into bug/MSP-10004/rubyzip Conflicts: Gemfile Gemfile.lock	2014-06-11 13:42:26 -05:00
Trevor Rosen	e8752f9c56	Point to correct creds version	2014-06-11 13:38:35 -05:00
Trevor Rosen	651871bd7a	Resolve upstream conflict	2014-06-11 13:34:45 -05:00
David Maloney	9593422f9c	Merge branch 'master' into staging/electro-release	2014-06-11 10:23:56 -05:00
Trevor Rosen	73c3409133	Prayer Merge branch 'staging/electro-release' into feature/MSP-9711/vnc_login	2014-06-10 16:01:24 -05:00
David Maloney	693c4aae66	make sure we capture realms need to account for the possability of realms in mssql_login	2014-06-10 14:41:45 -05:00
Luke Imhoff	b05e7fb9ac	Fix require MSP-10004 Change 'zip/zip' to 'zip' to match >= 1.0.0 rubyzip API.	2014-06-10 13:58:07 -05:00
Luke Imhoff	4d923a4809	Update to Rubyzip 1.X API MSP-10004 `require 'zip'` instead of `'zip/zip'` and rename all classes to remove redundant Zip prefix inside the Zip namespace.	2014-06-10 13:41:42 -05:00
Tod Beardsley	44540e6d00	Land #3437 , CSS Injection MITM scanner	2014-06-10 13:36:35 -05:00
jvazquez-r7	4aa1fee398	Land #3326 , @FireFart's Heartbleed - server response parsing	2014-06-10 13:27:28 -05:00
dmaloney-r7	9826a57429	Update coreftp.rb	2014-06-10 13:01:19 -05:00
David Maloney	0c89d6cdce	refactor mssql_login now uses all the Metasploit::Credential goodness	2014-06-10 11:49:08 -05:00
David Maloney	15ceb1e826	put calls in right place it helps	2014-06-10 11:17:19 -05:00
David Maloney	63ec83ea90	missing public missing the public in the invalidate_login call now fixed	2014-06-10 11:12:17 -05:00
David Maloney	e9d9806408	invalidate_login added invalidate_login call also made to_s on credential drop the @ if there is no realm present	2014-06-10 11:07:15 -05:00
David Maloney	dc590008a7	add invalidate_login call add the new invalidate login call to make sure we update the status on failed logins appropriately	2014-06-10 10:58:27 -05:00
Tod Beardsley	521284253f	Be more clear about the vuln and impact	2014-06-10 10:29:23 -05:00
jvazquez-r7	2c8a99143b	Land #3426 , @Meatballs1's Python v2.3.3 Compatible Command Shell payloads	2014-06-10 09:55:58 -05:00
jvazquez-r7	3ec15b6512	Land #3431 , @bcoles's new targets for efs_easychatserver_username	2014-06-10 09:52:16 -05:00
jvazquez-r7	a554b25855	Use EXITFUNC	2014-06-10 09:51:06 -05:00
Trevor Rosen	2c8c4f238c	Merge pull request #49 from rapid7/feature/MSP-9746/ssh_creds refactor ssh_creds post module MSP-9746 #land	2014-06-10 09:32:11 -05:00
Trevor Rosen	dcca5802e4	Merge pull request #48 from rapid7/feature/MSP-9745/linux_hashdump refactor linux hashdump post module MSP-9745 #land	2014-06-10 09:23:31 -05:00
jvazquez-r7	9b55f5143a	Add module for CVE-2014-0224	2014-06-09 17:38:11 -05:00
Meatballs	dc69afebb1	License and Require	2014-06-09 21:41:38 +01:00
David Maloney	32f87b985c	refactor mysql_login refactor mysql_login to use the new Metasploit::Credential apradigm	2014-06-09 14:20:58 -05:00
David Maloney	61fd962331	refactor vnc_login refactor for new credential usage	2014-06-09 13:55:24 -05:00
David Maloney	8e35f5fa12	username and password flipped we reported the username as the password and vice versa	2014-06-09 13:45:12 -05:00
Tod Beardsley	4103f2295b	Missing comma	2014-06-09 13:44:46 -05:00
Tod Beardsley	0e14d77dba	Minor fixup on DTLS module	2014-06-09 13:42:30 -05:00
jvazquez-r7	0e611b5d64	Land #3429 , @jhart-r7's auxiliary module for CVE-2014-0195	2014-06-09 13:34:38 -05:00
jvazquez-r7	ed5d83a41b	Add vulnerability discoverer	2014-06-09 13:25:33 -05:00
jvazquez-r7	daf662b3c0	Do minor cleanup	2014-06-09 13:23:56 -05:00
David Maloney	a4e96d8f59	Merge branch 'master' into staging/electro-release	2014-06-09 13:07:22 -05:00
David Maloney	90c63efaeb	refactor ssh_creds post module the sssh_ creds post module now stores SSH Keys as Metasploit::Credential objects	2014-06-09 11:49:49 -05:00
jvazquez-r7	1f33566033	Land #3432 , @Meatballs1 sap_soap_rfc_brute_login's clean up	2014-06-09 11:39:52 -05:00
jvazquez-r7	b39b41e29f	Land #3371 , @Meatballs1 fix for sap_mgmt_con_getprocessparameter	2014-06-09 11:25:01 -05:00
Jon Hart	06e45e8253	Clean up TLS fragment building	2014-06-09 08:39:30 -07:00
David Maloney	482aa2ea08	Merge branch 'master' into staging/electro-release	2014-06-09 10:27:22 -05:00
Meatballs	25ed68af6e	Land #3017 , Windows x86 Shell Hidden Bind A bind shellcode that responds as 'closed' unless the client matches the AHOST ip.	2014-06-08 13:49:49 +01:00
Christian Mehlmauer	099003708c	Land #3422 , SAP Bruterforcer datastore cleanup	2014-06-08 08:42:27 +02:00
Brendan Coles	6bef6edb81	Update efs_easychatserver_username.rb Add targets for versions 2.0 to 3.1. Add install path detection for junk size calculation. Add version detection for auto targeting.	2014-06-08 06:36:18 +10:00
Jon Hart	a7a1a2bf3b	Move dtls_fragment_overflow.rb under ssl where it belongs	2014-06-07 12:56:34 -07:00
Meatballs	2be6b8befe	Remove bind hidden handler	2014-06-07 14:34:20 +01:00
Meatballs	bf1a665259	Land #2657 , Dynamic generation of windows service executable functions Allows a user to specify non service executables as EXE::Template as long as the file has enough size to store the payload.	2014-06-07 13:28:20 +01:00
Jon Hart	8637a1fff1	OpenSSL DTLS CVE-2014-0195 POC	2014-06-06 19:24:47 -07:00

1 2 3 4 5 ...

13297 Commits