adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

7956 Commits

Author SHA1 Message Date
Erin Bleiweiss 659e4f2b34 Build json correctly for new notes field 2018-08-31 16:47:00 -05:00
Wei Chen b976ccd3fe Fix typos 2018-08-31 14:53:52 -05:00
Wei Chen bcaa6e90f6 Fix targeting 2018-08-31 13:37:23 -05:00
Wei Chen f296c204cb Add some comments 2018-08-31 11:55:50 -05:00
Wei Chen 5c6b33bcf4 Add support for evasion targets, also module doc 2018-08-31 11:45:29 -05:00
Wei Chen b085633e49 Style change and move option to evasion.rb 2018-08-29 13:39:29 -05:00
William Vu 4803c889f9 Land #10507, GPP creds for db_import 2018-08-28 11:45:51 -05:00
Brent Cook cb07ba2b6c Land #10516, Add brace expansion encoder and update ${IFS} encoder 2018-08-25 22:23:07 -05:00
William Vu 6df235062b Land #10505, post-auth and default creds info 2018-08-24 18:08:15 -05:00
William Vu 7c0dd2a0fe Add CmdUnixBrace and update CmdUnixIfs 
Acronyms can be capitalized as per the Ruby style guide.
 2018-08-23 21:18:09 -05:00
William Vu 9b3e0d8306 Add additional root tags for GPP XML 
Finally ran through all the samples and cross-referenced with MS14-025.

https://msdn.microsoft.com/en-us/library/cc232650.aspx
https://support.microsoft.com/en-us/help/2962486/ms14-025-vulnerability-in-group-policy-preferences-could-allow-elevati
 2018-08-22 16:48:33 -05:00
William Vu 2891255549 Clarify what is being imported currently 
Since the parser is focused on creds.
 2018-08-22 15:53:19 -05:00
William Vu 1e4eb0eae0 Revert report_note, since it added nothing 
A bit of misunderstanding. We're in agreement that loot was enough.
 2018-08-22 14:34:09 -05:00
William Vu 6fa04950ee Store parsed GPP data as a note 
And refactor slightly.
 2018-08-22 14:19:50 -05:00
王一航 e29135d0f5 Merge branch 'master' into impl-of-ctrl-z 2018-08-22 17:31:00 +08:00
William Vu b1c633faf6 Add Group Policy Preferences support to db_import 
And take the Jaden Smith approach, as @busterb quipped to me. :)

This one's a little weird, since you normally import scans into
Metasploit, but now that creds are first-class in the database, it makes
more sense to be able to import them.

Currently, your alternatives are post/windows/gather/credentials/gpp,
which requires a session, and auxiliary/scanner/smb/smb_enum_gpp, which
requires a network scan.
 2018-08-21 23:44:39 -05:00
Wei Chen 080ba15179 Another boo-boo 2018-08-21 08:55:14 -05:00
asoto-r7 4aee3a4ae2 Land #10448, Implementation of CTRL+C to send SIGINT signal 2018-08-20 18:14:29 -05:00
William Vu 7e496ae067 Import target DefaultOptions into the datastore 2018-08-16 12:18:02 -05:00
James Barnett becd42553a Land #10462, Add API documentation for users and auth endpoints 2018-08-15 17:10:26 -05:00
Erin Bleiweiss 66b761db15 Add doc for user operations 2018-08-14 13:19:56 -05:00
AlbertoCoding 8e109b4f20 Some minor fixes 2018-08-14 19:25:20 +02:00
AlbertoCoding 9bf7bec870 Multiple functions to simulate native commands added 2018-08-14 19:14:15 +02:00
Erin Bleiweiss f7a0b201d7 Add authorization support for auth/bearer tokens 2018-08-14 11:51:15 -05:00
Wang Yihang 0bf699b716 [+] handler CTRL+Z Signal in shell session and remove debug print 2018-08-13 04:22:13 +08:00
Tim W 1ca6cb31d1 Land #10440, fix apk injection on windows 2018-08-13 01:09:55 +08:00
Wang Yihang 6c33854ffc [+] Exit vim opened in reverse shell via signal USR1 2018-08-12 06:07:18 +08:00
Wang Yihang b6e2c34b11 [+] Fix can not abort reverse shell session 2018-08-12 05:40:40 +08:00
Wang Yihang e457eba2dd [+] handler CTRL+C Signal in reverse shell sessions 2018-08-12 02:41:16 +08:00
Green-m 2529fdf322 Fix issue #8887, when injecting into an existing .apk file on windows 2018-08-10 05:43:26 -04:00
Wei Chen d9fc99ec4a Correct false negative post_auth? status 2018-08-09 23:34:03 -05:00
h00die a977121a61 include kernel to solaris.rb 2018-08-08 20:24:59 -04:00
h00die c1635948ce sync some linux local libraries to solaris 2018-08-08 20:08:23 -04:00
James Barnett 201b91f9d7 Land #10410, add script for setting up and managing data services 
The msfdb script allows you to create, delete, start, and
stop local and remote data services. The database backend requires
PostgreSQL and the webservice provides a REST API to interact with it.
 2018-08-07 18:25:51 -05:00
Wei Chen 6223685c37 Update auth requirement for json metadata 2018-08-07 16:42:00 -05:00
Wei Chen f7e49d3f7e Able to successfully run a module 2018-08-06 11:46:19 -05:00
Wei Chen 37f70343e3 Get payload options to work (show, set, etc) 2018-08-03 11:47:43 -05:00
Brendan Coles bc9fcf40d4 2016 2018-08-03 07:07:21 +00:00
Wei Chen f176dd03b5 Add a new module type to support evasion (WIP) 2018-08-02 11:54:38 -05:00
Matthew Kienow fbc9d3ee83 Add print methods from HttpDBManagerService 2018-08-02 12:38:52 -04:00
Adam Cammack 54abc65c55 Land #10406, Fix notes service, port, protocol 2018-08-01 14:39:34 -05:00
Brent Cook 1601e8a844 Land #10330, Add SMBv2 support to bind_named_pipe payloads 2018-08-01 12:58:44 -05:00
Erin Bleiweiss 58b3f63c1a Update to reflect new JSON models 2018-07-31 15:57:26 -05:00
Erin Bleiweiss 3e8efea57a Merge branch 'conform_to_api_standards' into exploit-query 
Prepare for new JSON format.
 2018-07-31 14:48:37 -05:00
Erin Bleiweiss 9d1a2e20ee Add better error handling. 2018-07-31 13:25:49 -05:00
Erin Bleiweiss 1d3761c9d6 Add support for 'check' metadata value 2018-07-31 12:18:09 -05:00
William Vu 2bca1ade05 Normalize note proto better and actually use it 2018-07-31 11:51:34 -05:00
Erin Bleiweiss 3291931955 Merge branch 'upstream-master' into exploit-query 2018-07-31 11:51:14 -05:00
Erin Bleiweiss db91c7f075 Add error message to console if invalid params are supplied 2018-07-31 11:49:09 -05:00
James Barnett 2ef639f99e opts[:id] could sometimes be an integer, so cast to string 2018-07-31 10:58:01 -05:00