adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
32,350 Commits 27 Branches 1,043 Tags
8bcdddfd044b4573fc395d5acecd58dbfea621f5
Commit Graph

469 Commits

Author SHA1 Message Date
jvazquez-r7 6c36a82f78 Land #5059, @void-in's documentation clean up 2015-04-03 14:16:34 -05:00
jvazquez-r7 fe5ddc01ad Fix return documentation 2015-04-03 14:16:06 -05:00
root 0dd987d873 Updated as per jlee-r7 feedback 2015-04-03 10:17:54 +05:00
David Maloney 1684bfec9e add missing data to loginscanner results 
the chef web ui and symantec web gateway
loginscanners do not save the target(host/port/proto) info
in the Result object. This can cause modules to break as they
expected the Result to contain that information

MSP-12499
 2015-04-02 13:53:45 -05:00
root 4ba761986f Correct YARD doc comments 2015-04-02 16:14:25 +05:00
David Maloney 103373a7eb add back accidentally remvoed error 
accidentally dropped Errno::ETIMEDOUT from the exception
handling

MSP-12389
 2015-03-30 11:19:28 -05:00
David Maloney 441feec360 fix missing exception handling 
a few of our http login scanners needed to
handle a couple of other exception classes
for when network communication errors occur

MSP-12389
 2015-03-27 12:31:14 -05:00
sinn3r 6e3e696262 Use symantec_web_gateway as an example of using send_request 2015-03-25 10:55:46 -05:00
sinn3r 60f1d9c961 More yard doc 2015-03-25 10:50:11 -05:00
sinn3r 9b9e157e84 More yard doc 2015-03-25 02:26:06 -05:00
sinn3r ded500a9ae Use send_request 2015-03-25 02:13:40 -05:00
sinn3r 6984e5234e Fix a typo 2015-03-25 02:01:25 -05:00
sinn3r 8a8d6fb5ab Some more changes 2015-03-25 02:00:23 -05:00
sinn3r 855cadc6b1 Rescue more exceptions 
The attempt_login method is rescuing these exceptions, so maybe
I should do the same.
 2015-03-25 01:48:37 -05:00
sinn3r 8f95624bf7 Add #send_request to Metasploit::Framework::LoginScanner::HTTP 2015-03-25 01:40:02 -05:00
sinn3r bef67d773c Don't break untested_payloads.rb 2015-03-24 00:54:11 -05:00
jvazquez-r7 1226b3656f Land #4945, @wchen-r7's login scanner for Symantec web gateway 2015-03-20 14:44:05 -05:00
jvazquez-r7 62871255b0 Match class and file names 2015-03-20 14:25:20 -05:00
jvazquez-r7 179177d5c0 Fix typo 2015-03-20 13:27:41 -05:00
sinn3r 608bf55b79 Update 2015-03-17 11:54:38 -05:00
sinn3r 27b6fbb648 I don't need :ssl and :ssl_version 2015-03-17 11:31:38 -05:00
Meatballs 69453c1955 Missing ? 2015-03-17 12:00:58 +00:00
Meatballs d18224e3cb Correct capitilzation of GitLab 2015-03-17 11:32:14 +00:00
Meatballs 25840c41cf Rubocop 2015-03-17 11:21:05 +00:00
Meatballs f4a1e981ab Add gitlab login scanner 2015-03-17 11:19:23 +00:00
sinn3r ff58f7d270 Add Symantec Web Gateway Login Module 2015-03-17 02:51:57 -05:00
David Maloney 75c075e32b properly anchor regexes 
duh
 2015-03-03 19:15:29 -06:00
David Maloney 64490c746a CredCollection now knows about postgres_md5 
the cred collection can now identify a postgres_md5 hash string
and set the type on the Metasploit::Framework::Credential object
appropriately

MSP-12244
 2015-03-03 16:43:52 -06:00
David Maloney c836078292 allow credentials to have a type of postgres_md5 
add postgres_md5 to the type validation on
Metasploit::Framework::Credential to account
for the new Private type

MSP-12244
 2015-03-03 16:35:30 -06:00
David Maloney aa4038d539 allow the postgres librry to take an md5 hash 
allow the raw md5 password hash to be passed in instead of
a password for md5 authentication in postgres. Adds an extra exception
class for when an md5 hash is given but the server expects
a different form of authentication.

MSP-12244
 2015-03-03 13:16:46 -06:00
William Vu 8c5ff858d0 Land #4812, hp_sys_mgmt_login configurable URIs 2015-02-23 19:04:14 -06:00
HD Moore 97ccf7e23f Fixes SSL support for http_login (variable shadowing) 2015-02-23 14:00:29 -06:00
sinn3r c39d6e152e Land #4819, Normalize HTTP LoginScanner modules 2015-02-23 11:43:42 -06:00
HD Moore c60e2584bf Comment typo 2015-02-22 02:51:18 -06:00
HD Moore 888c718f40 Fix two typos 2015-02-22 02:45:50 -06:00
HD Moore 8e8a366889 Pass Http::Client parameters into LoginScanner::Http (see #4803) 2015-02-22 02:26:15 -06:00
sinn3r bf2be7964b Fix #4592, print_* methods used in LoginScanner modules 
Fix #4592
 2015-02-20 22:46:21 -06:00
sinn3r 40c237f507 Fix #3982, allow URIs to be user configurable 
Fix #3982
 2015-02-20 21:54:03 -06:00
David Maloney ffa6550aec Land #4787, HD's new Zabbix and Chef LoginScanners 
Lands the new LoginScanners HD wrote for Zabbix
and the Chef WebUI
 2015-02-18 14:51:16 -06:00
David Maloney 804db0ff0c add leixcal sorting to methods 
lexical sort the new methods except for
msf module entrypoint methods which should always be at
the top
 2015-02-18 14:50:33 -06:00
HD Moore 2847507f03 Add a chef brute force module 2015-02-17 23:49:57 -06:00
HD Moore 27d5ab45b4 Add a zabbix brute force module 2015-02-17 22:56:08 -06:00
HD Moore 85fd139ab0 Add missing context and a normalize_uri helper method 2015-02-17 22:55:53 -06:00
HD Moore 16932372db Calls to Rex::Proto::Http::Client.new were passing in empty context 2015-02-17 20:44:37 -06:00
HD Moore 8d982e3286 Pass the framework/module down into LoginScanner 2015-02-07 11:50:30 -06:00
HD Moore 985641dbc4 Add missing Context, fixes #4723 2015-02-07 11:27:57 -06:00
Christian Catalan 7d1090baca Convert #find(:all) to #where or #all 2015-02-01 00:31:58 -06:00
William Vu 8f54e4d611 Implement "-" for msfconsole -r from stdin 
More predictable than /dev/stdin, which is usually a symlink to
/proc/self/fd/0 or /dev/fd/0, but the feature is not guaranteed to be
present.

This isn't *terribly* useful, but it can be. -x is recommended, but it
doesn't allow for ERB directives. This is mostly for hax.
 2015-01-29 19:26:56 -06:00
Jon Hart 69f03f5c5d Move ACPP default port into Rex 2015-01-12 19:43:57 -08:00
Jon Hart e9557ffe58 Simplify module in prep for some authbrute cleanups 2015-01-12 13:08:12 -08:00