adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

7956 Commits

Author SHA1 Message Date
HD Moore 9de4137aa7 Patch UA/Proxy settings during migration, lands #3632 2014-12-16 22:21:48 -06:00
Sean Verity 370f6003e3 Refactors metsrv patching in reverse_hop_htt.rb 2014-12-17 11:57:17 -05:00
Sean Verity 1930eb1bf8 Refactors metsrv patching in reverse_http.rb 2014-12-17 10:04:43 -05:00
sinn3r c2bc79c53c Resolves #4275 - Configurable variable name as an option 
Resolves #4275
 2014-12-15 23:59:34 -06:00
Brent Cook c24fdb81b5 Land #4389, Meatballs1's fix for enum_ad_* post module regressions 
Fixes #4387 by adjusting for the new return type from ADSI queries.
 2014-12-15 10:45:12 -06:00
HD Moore e2617c7095 Return the workspace id in responses, lands #4142 2014-12-13 18:04:58 -06:00
HD Moore 6ea5ed1a82 Shrinks windows payloads, lands #4391 2014-12-13 17:41:50 -06:00
HD Moore f67a32ef9c Add missing commits from #3770, lands #4393 2014-12-13 17:36:26 -06:00
Meatballs 5d18de2ebf Fix legacy railgun LDAP implementation 2014-12-13 18:26:26 +00:00
HD Moore 92490ab5e8 Singles updated from the source 2014-12-13 12:22:07 -06:00
HD Moore 4681416a0f Update block_api with @schierlm's changes 2014-12-13 12:06:38 -06:00
HD Moore f676b72767 Add Kademlia scanner, lands #4210 2014-12-12 16:40:58 -06:00
Tod Beardsley 9545b6e4d6 Land #4343, os_flavor reduction 2014-12-12 14:49:15 -06:00
Tod Beardsley 177cade6a5 Merge branch 'land-4274-ssl' into temp 2014-12-12 13:25:54 -06:00
James Lee 0c1d02c940 Fix event handlers on ruby 2 
Fixes #4219
 2014-12-11 20:08:45 -06:00
Tod Beardsley 0eea9a02a1 Land #3144, psexec refactoring 2014-12-10 17:30:39 -06:00
sinn3r 9202c4f2a1 No mercy for os_flavor 2014-12-10 11:46:21 -06:00
Spencer McIntyre d74a8f6c41 Include the datastore options for the encoder too 2014-12-09 16:32:41 -05:00
sinn3r a584a5982f Clarify about how BES uses os_flavor 
We don't. We don't use os_flavor anymore because it is no longer
implemented. We get the information from os_name instead.
 2014-12-09 12:21:59 -06:00
Jon Hart da92e4705c Land #4319, @wchen-r7's fix for #4307 2014-12-05 12:08:39 -08:00
sinn3r abf199f924 Remove junk code 2014-12-05 11:01:34 -06:00
sinn3r cfc1acfcae Fix #4307 - Check action for nil 
Auxiiary modules already do this, but looks like we forgot to do the
same for post modules.

I also changed the error to allow "reason" in order to be more
informative about what the user should do.

Fix #4307
 2014-12-04 17:07:59 -06:00
Jon Hart 743e9fca9d Correctly set default SECRET 2014-12-04 14:06:22 -08:00
Jon Hart 1e423f415e Add missing opt , 2014-12-04 14:05:17 -08:00
Jon Hart 7f425fc3ab Configurable fix for #4305 
Rename UDP_SECRET to just SECRET, as it is used for more than just UDP

Rename and properly document GATEWAY option

Introduce an option to configure what UDP port will be probed
 2014-12-04 13:17:34 -08:00
Meatballs 186d8bd359 Fix starts_with? 2014-12-04 20:16:56 +00:00
Jon Hart f22d7191cd Test fix for #4305 2014-12-04 10:59:57 -08:00
Jon Hart d8b1401545 Test fix for #4306 2014-12-03 19:54:31 -08:00
James Lee 8f2e444aca Land #4281, ::Queue workarounds for 2.1.x 
Conflicts:
	lib/msf/core/handler/reverse_tcp.rb
 2014-12-03 15:48:20 -06:00
sinn3r f6f0050f56 Fix #3886 - Backtrace for #check when session is invalid 
If the user supplies an invalid session (as in not on the session
list), it will cause a backtrace, because the setup method from
Msf::PostMixin isn't actually called.

We have thought about implementing this in a new OptSession instead.
But you can't use or even pass framework to option_container.rb, so
this is NOT possible.

The original PR was #3956.
 2014-12-02 17:22:46 -06:00
Fernando Arias fb439258b9 Land #4298, arbitrary Ruby extension for replicant 
MSP-11673

* Adds Msf::Module#register_extensions
* Extensions are arbitrary Ruby modules
* Allows overriding of psuedo callbacks
 2014-12-02 14:59:37 -06:00
Trevor Rosen 2a033861dc Just use constants directly 
MSP-11673
 2014-12-02 13:12:53 -06:00
Trevor Rosen 784e138b14 Extend replicants via arbitrary Ruby code 
MSP-11673

* Implements a #register_extensions method on Msf::Module
* Any registered Ruby modules will extend the cloned module returned by #replicant
 2014-12-02 12:18:30 -06:00
HD Moore fc96d011ab Python reverse_http stager, lands #4225 2014-12-02 11:47:31 -06:00
Matt Buck 0249e0a800 Merge branch 'master' into staging/rails-4.0 
Conflicts:
	Gemfile.lock
	db/schema.rb
	metasploit-framework-db.gemspec
 2014-12-02 09:47:47 -06:00
William Vu bd3d63a155 Land #4270, Msf::Author cleanup and improvements 2014-12-02 01:26:42 -06:00
William Vu 394d132d33 Land #2756, tincd post-auth BOF exploit 2014-12-01 12:13:37 -06:00
HD Moore f139795663 Rework queue handling and error reporting, close #4249 2014-11-28 14:56:02 -06:00
Joe Vennix 2bd7a67413 Restructure parts of Author, fix some doc bugs. 2014-11-26 13:54:23 -06:00
Jon Hart 0ed356f71c Move Kademlia stuff to a more OO model, etc, per reviews 
All of the work is done in rex.  The msf mixin just prevents the
desire to call rex directly from the module
 2014-11-24 14:03:43 -08:00
HD Moore 4dc1183ff5 Protecting it once seems like enough (typo) 2014-11-22 17:42:07 -06:00
HD Moore 673e21cfaf Rework meterpreter SSL & pass datastore to handle_connection() 
This allows HandlerSSLCert to be used to pass a SSL certificate into the Meterpreter handler. The datastore has to be passed into handle_connection() for this to work, as SSL needs to be initialized on Session.new. This still doesn't pass the datastore into Meterpreter directly, but allows the Session::Meterpreter code to extract and pass down the :ssl_cert option if it was specified. This also fixes SSL certificate caching by expiring the cached cert from the class variables if the configuration has changed. A final change is to create a new SSL SessionID for each connection versus reusing the SSL context, which is incorrect and may lead to problems in the future (if not already).
 2014-11-22 15:35:00 -06:00
HD Moore 823b4e259a Make it clear SSLVersion is not advertised since it isn't used 2014-11-22 14:25:09 -06:00
HD Moore 842a7a38d8 Change SSLCert to HandlerSSLCert to avoid conflicts with modules 2014-11-22 14:23:56 -06:00
HD Moore 9ed8c59459 Bring options over from reverse_tcp (bind address, etc). 
Also includes the SSLCert => HandlerSSLCert change
 2014-11-22 14:22:54 -06:00
Jon Hart e255db9429 Partial commit 2014-11-20 13:49:36 -08:00
Jon Hart 5d2c02f402 Initial commit of more OO version of Rex/Aux Kademlia support 2014-11-20 13:28:01 -08:00
HD Moore 2f92a83092 Change to example.com as the default domain 2014-11-20 14:53:36 -06:00
Meatballs 7004c501f8 Merge remote-tracking branch 'upstream/master' into psexec_refactor_round2 
Conflicts:
	modules/exploits/windows/smb/psexec.rb
 2014-11-19 14:40:50 +00:00
jvazquez-r7 dff6af0747 Restore timeout 2014-11-18 12:17:10 -08:00