adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

7956 Commits

Author SHA1 Message Date
Meatballs 256204f2af Use correct pack/unpack specifier 2014-08-13 11:36:16 +01:00
Meatballs 351b687759 Land #3612, Windows Local Kernel exploits refactor 2014-08-10 22:05:06 +01:00
Meatballs b277f588fb Use railgun helper functions 2014-08-10 21:52:12 +01:00
Jon Hart d6198c786d Move rdoc for Msf::Auxiliary::DRDoS 2014-08-08 23:23:48 -07:00
Jon Hart ddcaa11216 Add new mixin for helping to detect DRDoS vulns 2014-08-08 23:15:09 -07:00
Jon Hart ed3ccdc9e0 Initial commit of modules for NTP vulns described in R7-2014-12 
Not entirely functional or polished, but mostly working
 2014-08-08 21:00:43 -07:00
sinn3r e432f3f442 Support all text-based ctypes 2014-08-07 11:10:32 -05:00
Luke Imhoff 1d430dbb45 Run migrations when connection already established in console 
MSP-10955

`Msf::Ui::Console::Driver#initialize` doesn't call
`framework.db.connect` if it can't find the the `database.yml`, but when
using `msfpro`, the connection is already established, so the console
doesn't need to know where the database file is and should just run the
migrations so that `framework.db.migrate` can be set and
`framework.db.active` will return `true`.
 2014-08-06 19:55:51 -05:00
Brandon Turner 91bb0b6e10 Merge tag '2014072301' into staging/electro-release 
Conflicts:
	Gemfile.lock
	modules/post/windows/gather/credentials/gpp.rb

This removes the active flag in the gpp.rb module.  According to Lance,
the active flag is no longer used.
 2014-08-06 15:58:12 -05:00
Spencer McIntyre 2ed02c30a8 Use better variable names instad of an array 2014-08-05 21:34:36 -07:00
Spencer McIntyre b602e47454 Implement improvements based on feedback 2014-08-05 21:24:37 -07:00
Samuel Huckins 8fe9ec098e Date attrs set after creation in report import 
MSP-11021

* created_at and updated_at are protected against mass-assignment, so
these need to be set after for reports and report artifacts
 2014-08-04 14:02:59 -05:00
Spencer McIntyre 6543b08eb4 Support writing a copy of the original token 2014-08-04 11:49:00 -07:00
Spencer McIntyre 4b73ad6f40 Fix guessing the arch with modules specifying an array 2014-08-04 11:49:00 -07:00
Spencer McIntyre 893b9a6e99 Add an open_device function for wrapping CreateFileA 2014-08-04 11:49:00 -07:00
Spencer McIntyre 43a5120696 Cleanup the WindowsKernel mixin 2014-08-04 11:49:00 -07:00
Spencer McIntyre 49837a3ba6 Create a basic WindowsKernel exploit mixin 2014-08-04 11:49:00 -07:00
b00stfr3ak 88f23832e6 Added Time out 
For some reason the handler was closing before the command could
complete.  Added the time out from bypassuac and now both psh and exe
work perfectly.
 2014-08-02 14:29:42 -07:00
Tom Sellers 693e744da4 Hide icon flash on taskbar during cmd_psh_payload 
When 'cmd_psh_payload' is run via 'cmd_exec' on a windows shell that is running in the context of an interactive user an icon will flash very quickly on the user's task bar.  This can be avoided (verified) by adding the /b switch to the start section of the command launcher text.  I have verified that this switch exists from Windows 2000 through Windows 2012 R2.
 2014-08-02 15:52:52 -05:00
Luke Imhoff 6603443df4 Add missing require 
MSP-10998
 2014-08-01 21:54:41 -05:00
Luke Imhoff 9096a8a1f5 Remove Msf::Framework::VersionAPI 
MSP-10998

It's compacting of the version parts into a single float doesn't work
with APIMinor over 10, so replace with Gem::Version, which compares
parts correctly.
 2014-08-01 21:43:14 -05:00
Luke Imhoff 22db5aad8a Remove Msf::Framework::VersionCore 
MSP-10998

It can't handle 4.10.0 because it tries to compact the multiple part
version into one float using (1 / 10.0).
 2014-08-01 21:31:48 -05:00
b00stfr3ak 5aa347ef65 Changed Method Names 
Changed names to look like shell_execute_(option), to make it more
defined on what it does.
 2014-08-01 17:10:32 -07:00
b00stfr3ak def652a50e Merge https://github.com/rapid7/metasploit-framework into bypassuac/psh_option 2014-08-01 14:32:55 -07:00
Tod Beardsley c31fc61617 Land #3270, @jlee-r7 deprecation ipv6 payloads 
These are not needed, since you can just config the regular handler now
and pick either.

This resolves the conflict (rm'ed the old modules)

Conflicts:
	modules/payloads/stagers/windows/reverse_ipv6_http.rb
	modules/payloads/stagers/windows/reverse_ipv6_https.rb
 2014-08-01 16:27:59 -05:00
Meatballs 902cf4bc1e Fix var name 2014-07-31 23:16:53 +01:00
Meatballs 90c0f587bf Fix for newer powershell 2014-07-31 23:11:51 +01:00
Meatballs 15c1ab64cd Quick rubocop 2014-07-31 23:11:00 +01:00
Meatballs d336c56b99 Merge remote-tracking branch 'upstream/master' into land_2551 2014-07-31 23:06:37 +01:00
William Vu 0546282441 Land #3590, #3574 reversion 2014-07-31 09:59:04 -05:00
b00stfr3ak 391e2bb99b Fixed some style changes 
Removed upload var, it really served no purpose.
 2014-07-30 22:42:07 -07:00
Meatballs 53b66f3b4a Land #2075, Powershell Improvements 2014-07-31 00:49:39 +01:00
James Lee 77d99b7374 Land #3586, fix msfconsole when running without db 
Conflicts:
	Gemfile.lock
	metasploit-framework.gemspec
 2014-07-30 17:24:21 -05:00
Tod Beardsley 3320a1ef77 Revert PR #3574 
This reverts commit 96945442ff.

With this PR, the following now appears in framework.log:

````
[07/30/2014 14:01:37] [e(0)] core: Error updating module details for
auxiliary/fuzzers/http/http_form_field: NoMethodError undefined method
`name' for []:Array
````
 2014-07-30 14:06:46 -05:00
Trevor Rosen 3e915e5059 Merge branch 'staging/electro-release' into bug/MSP-10715/import-security-issues 
Update deps

Conflicts:
	Gemfile
	Gemfile.lock
 2014-07-30 12:49:15 -05:00
Luke Imhoff ceb8a0f5c2 Extract option require pattern to helper Module 
MSP-10905

`Metasplot::Framework::Require.optionally` can be used to optionally
require a library and then issue a warning if the require fails or run a
block when it succeeds.
 2014-07-30 10:07:53 -05:00
Trevor Rosen 8fda4ee239 Fix fd leak and blind IO#gets in pwdump import 
MSP-10715
 2014-07-29 15:15:47 -05:00
Luke Imhoff f5ff22eba4 msfconsole with bundle install --without db 
MSP-10905
 2014-07-29 14:46:44 -05:00
Luke Imhoff 8e7dd1b658 Add missing require 
MSP-10905
 2014-07-29 14:06:27 -05:00
David Maloney 3870b59873 remove rpg_get_auth_info 
this is an rpc call that calls a method that
does not even exist...
WAT?!
 2014-07-28 15:13:03 -05:00
David Maloney c9d231b48b remove old rpc methods 
added rpc methods to create new creds
removing the old methods for
the obsolete cred models
 2014-07-28 14:52:53 -05:00
David Maloney e29b2aed9b add credential rpc calls 2014-07-28 14:49:35 -05:00
David Maloney 1e32574768 Merge branch 'staging/electro-release' into feature/MSP-9641/cred-rpc-calls 2014-07-28 11:10:59 -05:00
Joshua Smith 96945442ff removes unnec. retruns & uses of 'not' - has_actions.rb 2014-07-27 18:20:12 -05:00
James Lee a0a2fddee8 Land #3562, yardoc cleanup 2014-07-24 17:25:12 -05:00
James Lee eee72a86ba Fix the case when john cracks only half of LM 2014-07-23 15:25:32 -05:00
Christian Mehlmauer 57839e0f4b Fix some yardoc issues 2014-07-22 23:26:50 +02:00
David Maloney 1f007bf3c9 start adding new rpc calls 
Signed-off-by: David Maloney <DMaloney@rapid7.com>
 2014-07-22 15:46:27 -05:00
jvazquez-r7 f546eae464 Modify encoders to allow back compatibility 2014-07-22 13:27:12 -05:00
jvazquez-r7 a642ce5e1c Delete not necessary end keywords 2014-07-22 11:35:04 -05:00