daf2acc2b1
Initial work to support Mettle exetensions (and a sniffer).
...
See MS-2775.
2017-10-31 10:04:30 -05:00
56eb828cc5
add e500v2 payloads
2017-10-30 14:04:10 -05:00
9349e1eda5
Fix find_script_path to check only files
2017-10-27 12:28:58 -05:00
85b59c87ca
fix buggy handling of partial ingress packet data
...
If we have more data, and the packet parser needs more data, connect the two
together rather than bailing. This fixes reverse_tcp_ssl along with probably a
lot of other higher-latency corner cases.
2017-10-27 02:15:08 -07:00
f556a5f805
Add compatible session types to post module info
2017-10-12 11:41:02 -05:00
0dbfc9d447
WIP: Drop session objects before JSON conversion
...
The session object is not intended to be store in the DB.
There are a ton of subobjects and unneeded data that causes the JSON conversion
to hang or fail with 'stack level too deep' errors.
2017-10-06 11:43:01 -05:00
e0fee9e317
Land #8821 , Expose session naming
2017-09-29 15:32:47 -05:00
40abbccb03
Merge remote-tracking branch 'rapid7/master' into proxy_loot
2017-09-22 14:10:02 -05:00
d8ee4150e6
move client core constants closer to where they are actually used
2017-09-19 03:22:13 -05:00
b218cc3c7f
Merge branch 'master' into hw_auto_padding_fix
2017-09-11 18:30:34 -07:00
ad9329993d
Added better padding and flowcontrol support.
2017-09-11 18:20:57 -07:00
b9fdca04a1
rework logical fix for #8884 to function with bootstrap code
2017-09-07 01:43:58 -05:00
dfba42e2c1
Fix exception when datastore value is nil in meterp session
2017-09-07 01:36:24 -05:00
558d007d8e
Final tweak to avoid issues in session dump
2017-09-07 01:36:22 -05:00
f004e6f0f2
Fix session output for pivoted sessions
2017-09-07 01:36:22 -05:00
7acd772c10
Pivot session stability, display and handling
2017-09-07 01:36:21 -05:00
fdc9864b61
First working packet pivot session!
2017-09-07 01:36:20 -05:00
abc80655b7
Progress in named pipe pivots, more to come
2017-09-07 01:33:54 -05:00
d3775c3919
fix logic for calling on_session callbacks
2017-08-23 18:41:50 -05:00
c09796ea7e
Merge master
2017-08-23 11:37:04 -05:00
6eae3b3d4e
Add session name output to ReadableText
2017-08-16 18:14:56 -05:00
d7e8b32312
Merge branch 'upstream/master' into transport-agnostic-packet-encryption
2017-08-08 17:30:51 +10:00
347b79e5f2
Land #8643 , pretty printing for aux/post fail_with
2017-08-03 12:07:55 -05:00
6300758c46
use https for metaploit.com links
2017-07-24 06:26:21 -07:00
f5e76092d6
Merge branch 'master' into land-8439-
2017-07-18 08:25:18 -05:00
b81e9a4d2a
Pass 1: externalize database
2017-07-07 13:33:42 -05:00
228fb8c436
Fix small issue with encryptionf flag rendering
2017-07-03 17:31:09 +10:00
999d90687e
Make encryption flags 32 bit
...
This changes the encryption flags on the meterpreter session so that
it's 32 bits (and hence changes the packet header). This also supports
the idea that sessions may use encryption that isn't AES256, so the
flags field will ultimately indicate that. A type flag has been added so
that MSF knows the type that should be done on the wire.
At some point soon we'll add something that makes sure that the packet
encryption type always matches the encryption type expected in MSF, this
will hopefully avoid the risk of having packets injected into the stream
by external entities.
2017-07-03 16:52:58 +10:00
c1f2fc1838
Add Msf::{Auxiliary,Post}::Complete
...
Not sure yet why we're doubling up on cleanup.
2017-07-03 00:26:49 -05:00
48dddd1e46
Pretty-print fail_with for aux and post modules
2017-07-03 00:07:32 -05:00
3c767552e9
Make session list show the encryption status
...
Both extended and verbose session logging will show which of the
sessions has the encryption enabled as it's not yet supported on all
sessions.
2017-06-26 16:41:58 +10:00
67b1a19aa1
Finalised MSF-side of AES key negotiation over RSA
2017-06-25 10:24:00 +10:00
a9e03c1efd
Initial working version of AES encryption of TLVs
2017-06-21 21:01:59 +10:00
64bf6910e2
Remove SSL support from windows reverse_tcp payloads
2017-06-14 22:04:25 +10:00
eef82a501d
Add support for session GUIDs in mettle
2017-06-08 11:20:48 +10:00
37b9cd07a2
Add support for the session GUID in the UI
...
The Session GUID will identify active sessions, and is the beginning of
work that will allow for tracking of sessions that have come back alive
after failing or switching transports.
2017-06-06 17:15:57 +10:00
ccf54f464c
Expand multi-handler for generic http(s) sessions
2017-05-31 14:35:18 -05:00
1582d3a902
support i386
2017-05-26 15:55:42 +08:00
d333077308
osx meterpreter
2017-05-23 14:23:22 +08:00
099fc0176a
move autoroute to a more sensible location
2017-05-10 23:01:02 -05:00
353191992f
move mettle payloads to meterpreter, add reverse_http/s stageless
2017-04-26 17:06:34 -05:00
c4279a837a
Minor formatting/spelling/verbiage changes.
2017-03-20 17:37:12 -05:00
2fde287424
Initial patch for rftransceiver (RfCat / YardstickOne)
2017-03-20 17:36:16 -05:00
06ebb22a8f
Land #8065 , Zigbee Hardware Bridge Extension
2017-03-20 10:44:15 -05:00
dcb42a3e69
Initial zigbee support using killerbee. Core session setup portion
2017-02-27 17:29:54 -08:00
3b2e5e0785
Add a new core_native_arch method for meterpreter
2017-02-26 14:22:24 -05:00
23c2787d57
Land #7795 , Hardware Bridge API.
...
Initial bridge API that supports the HW rest protocol.
2017-02-02 08:47:59 -06:00
16de745437
Minor code cleanups/corrections.
2017-02-01 16:12:45 -06:00
b44e7ff733
Fix argument passing for deprecated scripts
...
This allows the scripts to continue working while warning the user.
See also: c59b5eaa2f
2017-01-29 14:14:55 -06:00
c59b5eaa2f
Fix #7823 , legacy_script_to_post_module fixes
2017-01-26 16:26:00 -06:00
Pearce Barry