f21bcaede9
Land #12463 , Fix delimiter selection on powershell payload commands
2019-11-01 11:12:24 -05:00
c9cc8c547f
Remove "now" from moved_from message
...
It's confusing to the user, since they think the prompt will change.
Thanks, @h00die.
2019-11-01 10:22:40 -05:00
099054ded2
Update powershell.rb
2019-11-01 15:19:36 +01:00
8563a29003
Convert all python code to python3. Fixes #12506 .
2019-10-31 14:16:14 -07:00
be07ded3fa
handle stderr and stdout from compilation
2019-10-31 16:09:44 -05:00
38c09b8aa3
Scanner modules: explain limitation of THREADS option
...
Closes #12521
2019-10-31 19:26:45 +01:00
f302df31aa
Add note about opts['headers']
2019-10-31 12:24:04 -05:00
8bb1c5102b
opt for inline asm instead of pre-compiled object
2019-10-31 11:55:40 -05:00
b9baa80823
Refactor to use config hash and new option
2019-10-31 11:11:43 -05:00
d17f041dbd
fix inner payload for web_delivery
2019-10-31 16:29:56 +01:00
b268feda73
Allow partial response due to timeout
2019-10-29 21:25:21 -05:00
de845214d1
Add module check result tracking to RPC API
...
This adds a few sets and a hash to the Msf::Simple::Framework that help
keep track of running checks and their eventual results.
2019-10-29 12:45:09 -05:00
a04291678f
add require, fix module context generate
2019-10-29 08:35:04 -05:00
f65c5a30b2
use SecureRandom, bail if no db present
2019-10-28 16:25:28 -05:00
72abac0683
Fix call to method in null object in rpc_creds method
2019-10-24 11:19:09 +02:00
991ccdbda5
Land #12106 , Add Linux PTRACE_TRACEME local root exploit
2019-10-23 14:01:14 +00:00
8c93b219d1
fix compile.rb and rubocop
2019-10-23 20:54:42 +08:00
3cb9f2d709
remove pointless upload_binary function
2019-10-23 20:28:13 +08:00
32e7787821
Clearly, I fail at ruby implicit returns
...
Changed the newline remove to a chomp in case the newline is not there
2019-10-22 11:51:00 -05:00
ee282fe84c
Land #12458 , Refactor extended check messages
...
Merge branch 'land-12458' into upstream-master
2019-10-21 12:23:06 -05:00
121a6fd0e7
Order matters sometimes
...
Since the constants are evaluated when they are declared, they need to
be after the new `#initialize` method since it sets the messages.
2019-10-18 10:57:16 -05:00
d1817d8f12
Fix the preceeding newline upstream when we read it rather than when
...
after we pass it around for a while.
2019-10-17 14:46:20 -05:00
299865bdeb
* Clean up cmd_exec test module's dead code and add support for
...
inconsistent windows platform type.
* Add extra front chomp to shell_command response string because
there's a leading newline there.. for some reason?
2019-10-17 13:30:43 -05:00
ba9c46ee91
Remove CheckCodes kludge from external modules
...
Now that the new CheckCode class can add boilerplate human text by
itself we no longer need the hash of built-in values.
2019-10-15 16:24:35 -05:00
7e5f866ffe
Keep extended check reasons separate from messages
...
Have the long code text and the reason glued together does not make
sense for all check displayers. I would prefer to have this at a
different level, but I'm not too keen on refactoring all the places
where it's touched. I couldn't find any remaining places that depend on
the length of the struct, so this looks safe to add straight as another
field.
2019-10-15 16:24:02 -05:00
7505e1bf71
Consolidate logic for actions taken on a workspace
...
* When renaming a workspace allow validation to handle all cases the same
* Do not display backtrace on console for rename failure, this is still logged to framework.log
2019-10-15 16:12:11 -05:00
b494bf5d65
cred imports need a workspace object passed to lib
...
Metasploit::Credential importers expect an Mdm::Workspace object.
2019-10-15 14:51:53 -05:00
f5bb6f8ca2
Land #12428 , Extend check codes with custom messages
...
Merge branch 'land-12428' into upstream-master
2019-10-15 11:06:33 -05:00
59bf03b947
Land #12420 , Add environment-based API token authentication
2019-10-15 15:27:05 +01:00
d670e31e34
Remove unnecessary requirement
2019-10-15 15:18:41 +01:00
4997d72201
add options for keeping/deleting files
...
This change makes it optional to keep/delete
the files that are created when generating
compiled payloads
2019-10-14 13:34:30 -05:00
63acf686a6
Fixed typos, extended messages append existing ones
2019-10-14 15:52:24 +01:00
b1b59fca35
add support for Powershell::prepend_protections_bypass
2019-10-13 03:27:21 +02:00
3d2d49259a
use uuid to get key/nonce, fall back to datastore
2019-10-11 12:24:56 -05:00
85a39f75d8
Use a larger payload size to include the UUID
2019-10-10 22:08:26 -04:00
e8abbfe5c2
add db usage
2019-10-10 12:16:10 -05:00
b78b36dc8a
add utility module for retrieving chacha key/nonce
2019-10-10 12:16:10 -05:00
7c8af0754d
add warning about db
2019-10-10 12:16:10 -05:00
fd347be3dc
make optimization level configurable
2019-10-10 12:16:10 -05:00
b674f3dda3
add AlignRSP call, remove begin from linker script
2019-10-10 12:16:10 -05:00
e295732d3f
generate alphanumeric key/nonce
2019-10-10 12:16:10 -05:00
4b8a1a99e0
use new key after session begins
2019-10-10 12:16:10 -05:00
e4c25a7e2b
separate encryption function for payloads
2019-10-10 12:16:10 -05:00
bb742771e5
add stager and stage for x64 arch
2019-10-10 12:16:10 -05:00
2d00e7332a
fix staged payload
2019-10-10 12:16:10 -05:00
c3a7d377f4
add payload for X64 arch
2019-10-10 12:16:10 -05:00
ca45d77595
randomize key
2019-10-10 12:16:10 -05:00
3e6283c193
add staged payload
2019-10-10 12:16:10 -05:00
e17013867a
add stager code
2019-10-10 12:16:09 -05:00
fe1b802cf9
check for dependency in stager/stage
2019-10-10 12:16:09 -05:00
Brent Cook