adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

1363 Commits

Author SHA1 Message Date
David Maloney 9919d54116 Revert "final touches and specs" 
This reverts commit e025fa1791.
 2014-05-07 18:34:34 -05:00
David Maloney e025fa1791 final touches and specs 
add finishing touches to postgres
Loginscanner and add specs to cover
the behaviour
 2014-05-07 18:32:36 -05:00
James Lee 338ed7bd18 First attempt at smb login scanner 2014-05-07 16:38:56 -05:00
David Maloney 7a476dc21a fully operational lgoinscanner 
Now you will witness the power of this fully operational
LoginScanner. fire at will, Commander!
 2014-05-07 15:57:06 -05:00
David Maloney ec974535ac create base object for mssql scanner 
created skeleton for MSSQL Loginscanner
included concerns.

also added an NTLM concern and shared example group
 2014-05-07 14:43:15 -05:00
David Maloney 234e129523 add NTLM concern for loginscanners 
add a new concern for LoginScanners
that provides the basic accessors and validations
for anything requiring NTLM
 2014-05-07 14:28:10 -05:00
David Maloney e6b15541ff replace datastore calls 
replace datastore calls with stub
methods that will be implmeneted by the loginscanner
 2014-05-07 11:41:49 -05:00
James Lee 9ad5ae44be Add abstract attempt_login and cleanup some docs 2014-05-06 15:24:18 -05:00
David Maloney 6077135782 extract login neccisary methods 
create new mssql mixin. extract only the methods
required for mssql_login to work and copy them
into this mixin.
 2014-05-06 11:59:21 -05:00
David Maloney 5e6f57f711 fix up some more specs 
some spec cleanup and added basic specs
to the HTTP LoginScanner
 2014-05-01 12:10:51 -05:00
David Maloney 1a5abc49d1 Merge branch 'staging/electro_release' into feature/login_scanners/mixin_refactor 
Conflicts:
	lib/metasploit/framework/login_scanner/ftp.rb
	lib/metasploit/framework/login_scanner/ssh.rb
	lib/metasploit/framework/login_scanner/ssh_key.rb
 2014-05-01 10:19:00 -05:00
David Maloney 0dd22395eb use credential objects inside results 
altered results to just hold a credential
object instead of duplicating attributes
 2014-04-30 17:17:57 -05:00
Lance Sanchez 3d94a1f77d Merge branch 'feature/http_login_scanner' into staging/electro_release 2014-04-30 16:30:46 -05:00
David Maloney 2483a37c04 Rexsocket mixin for LoginScanners 
add a mixin for Rex Socket dependent behaviour
in certain Loginscanners to DRY up code more
 2014-04-30 15:43:28 -05:00
James Lee 6a41697955 Add require 2014-04-30 15:03:49 -05:00
David Maloney a4cc311106 test base behaviour in shared examples 
start moving specs to a shared example group
for all behaviour defined by the LoginScanner
Base
 2014-04-30 14:35:29 -05:00
David Maloney f1e303d400 add connection error handling 
if we get too many connection errors
or too many errors in a row, we bail on
the host
 2014-04-30 14:06:18 -05:00
David Maloney a08421b30f apply reasonable defaults 
give each lgoinscanner the ability to select
reasonable defaults for certain attributes
 2014-04-30 13:56:29 -05:00
James Lee ea8dc4db5d Handle connection errors 
Also fix up some yardoc issues
 2014-04-30 13:33:39 -05:00
James Lee b617be3dda Move doc to the right place 2014-04-30 13:30:42 -05:00
David Maloney ad264cb031 remove dead variable 
dead variable left in a method from
a previous code iteration. removed
 2014-04-30 13:30:09 -05:00
David Maloney 90882f803b use base mixin in scanners 
refactor the LoginScanner classes to use the
new Base mixin. Still some more cleanup to be done
 2014-04-30 13:29:14 -05:00
David Maloney 7978587428 add lgoinscanner base mixin 
start moving common behaviour for
all LoginScanners into a mixin
 2014-04-30 13:11:48 -05:00
David Maloney f61ede7fd2 fix merge wonkiness 2014-04-30 10:23:20 -05:00
David Maloney e5276d111d Merge branch 'staging/electro_release' into feature/login_scanner/snmp 
Conflicts:
	lib/metasploit/framework/login_scanner/result.rb
 2014-04-30 10:21:35 -05:00
James Lee e8e5a7f72b Add initial stab at LoginScanner::HTTP 2014-04-30 00:55:45 -05:00
Lance Sanchez ddee401e27 Merge branch 'feature/MSP-9684/sshkey_loginscanner' into staging/electro_release 
MSP-9684 #land
 2014-04-29 15:21:56 -05:00
David Maloney 5c24eab526 add snmp specific behaviour 
add the snmp specific attempt_login behaviour
to gear this login scanner to the right protocol.
 2014-04-29 14:08:30 -05:00
David Maloney f1105ebe48 basic template copypasta 
copy the ssh scanner as a template to
start the SNMP scanner from
 2014-04-29 10:14:23 -05:00
David Maloney 00b9c99c89 fix class documentation copypasta 2014-04-29 10:13:11 -05:00
David Maloney 08b2974454 fix class documentation 2014-04-29 10:12:26 -05:00
David Maloney 0fcfb9d655 add proxies to ssh scanner 
allow the SSH LoginScanner
to accept a proxy directive
 2014-04-25 14:22:21 -05:00
David Maloney 35a039848c add sshkey loginscanner 
added the loginscanner class for SSHKey and
the base specs
 2014-04-25 14:21:08 -05:00
David Maloney 2346d583ed touchups and specsfor FTP Scanner 
add some final touchups and specs to the FTP
Loginscanner object. now fully working.
 2014-04-25 11:02:15 -05:00
David Maloney 838a444b23 first pass of FTP LoginScanner 
made the first pass at the ftp
LoginScanner, with base specs.
Need to still tierate, add more new
specs and clean it up
 2014-04-25 10:14:48 -05:00
David Maloney 1f9cf8c68f add the mixins for tcp and ftp 
skimmed down, non-module dependent mixins
for TCP client and Ftp client. neccesary for
loginscanner work
 2014-04-24 13:39:04 -05:00
David Maloney 3a66723741 nake scan! more generic 
scan! can now be reused for each scanner and
only attempt_login is specific for each thing.
 2014-04-24 09:43:39 -05:00
David Maloney ed8f87d3cf allow scan! to take a blcok 
by allowing scan! to take block
and yield the result of each attempt
we can do things like have a module print out
status messages
 2014-04-23 12:41:10 -05:00
David Maloney d25f0d8f6c cash host resolution 
if we successfuly resolve the host during
the validation, then alter host to the resolved
address to avoid the overhead of subsequent
DNS requests.
 2014-04-22 15:34:16 -05:00
David Maloney 0439569ffb more documentation work 
added some more YARD docs
 2014-04-22 11:48:14 -05:00
David Maloney a613d044f5 more cleanup work 
some code and documentation DRY work
 2014-04-22 11:38:24 -05:00
David Maloney bc092af855 Fix credential docs 
expanded return types for the Credential
object to be more accurate
 2014-04-22 11:05:12 -05:00
David Maloney b731889c79 add class level documentation 
add some comments for YARD to have class
level documentation for each class
 2014-04-22 10:59:28 -05:00
David Maloney 526bb4989a more explicit requires 
LoginScanner module brings in all the deps
while the individual classes require
the module then to get their deps.
 2014-04-22 10:28:01 -05:00
David Maloney 645eef51b7 Rename CredDetail to Credential 
it was felt this was better naming
for the class. Refactored all occurence
 2014-04-22 10:25:36 -05:00
David Maloney f079d3f3a9 move requires into module 
move all the requires into the LoginScanner
module area to clean up requires
 2014-04-21 19:14:50 -05:00
David Maloney 9c6528f13f use the CredDetail class 
now that we have the new CredDetail
class, use it instead of hashes
 2014-04-21 18:58:23 -05:00
David Maloney 1a6ef8dced allow for balnk passwords 
have to alter validation slightly
to allow for blank passwords
 2014-04-21 18:57:28 -05:00
David Maloney fd1777a79f add CredDetail class 
rather than passing dumb hashes around
added a CredDetail class that comes
with it's own conditional validations
 2014-04-21 18:26:38 -05:00
David Maloney de2bb7d66c dd tests for #scan! 
the scan! method is mostly done
and has unit tests
 2014-04-21 17:59:50 -05:00