adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

86 Commits

Author SHA1 Message Date
William Vu 3aad5accac Fix nil RangeWalker length for invalid range 
reset returns false and doesn't initialize length.
 2019-08-14 21:40:58 -05:00
Brent Cook 0c253ab085 add file: support for RHOSTS option on exploit modules 2019-02-28 06:01:30 -06:00
Green-m 96173c101a Fix bug when the cidr of rhosts is 32. 2019-01-11 11:31:54 +08:00
Green-m 3ec71ed549 Fix issue that not interact with session. 2018-10-05 17:30:38 +08:00
Brent Cook 304acd42f0 minor comment tweaks 2018-10-02 05:23:13 -05:00
Green-m 90b98a193c Refactor the rhosts for exploit modules. 2018-09-30 16:08:49 +08:00
Brent Cook fbbfa0e0c3 teach exploit how to parse datastore options too 2018-05-23 12:12:27 -05:00
bwatters-r7 7e34f27004 Land #9246, Support RHOSTS for exploit modules 2018-05-16 14:40:25 -05:00
William Vu 54908021aa Update CommandDispatcher for target names, too 2018-05-16 10:39:22 -05:00
Brent Cook 3f3ed4aa70 change replicant to clone module objects to copy singleton methods 
Without this, we are missing methods like exploit_simple.
https://coderwall.com/p/1zflyg/ruby-the-differences-between-dup-clone
 2018-03-12 15:46:03 -05:00
Brent Cook db6377134e restore original module RHOST on abort 2018-03-12 15:46:03 -05:00
Brent Cook 5d9f2266da handle passive exploits without RHOST 2018-03-12 15:46:03 -05:00
Brent Cook 4f824af696 add support for '-J' which is the opposite of '-j' 2018-03-12 15:46:03 -05:00
Brent Cook 17c8f7c4c7 support iterating across RHOSTS for exploits 2018-03-12 15:46:03 -05:00
Brent Cook 4ab36bc713 factor out exploit runner from command parsing 2018-03-12 15:46:02 -05:00
Brent Cook aae77fc1a4 Land #9349, GoAhead LD_PRELOAD CGI Module 2018-01-22 23:10:36 -06:00
HD Moore 258ce2ceb2 Allow stub payloads to be autoselected when compatible 2017-12-28 16:19:22 -06:00
Spencer McIntyre fb7635502d Tab completion for exploit and handler commands 2017-11-11 17:11:54 -05:00
Adam Cammack d6ed1f6f8d Make backgrounding messages more consistent 
Inspired by the work in #8896
 2017-08-28 11:19:17 -05:00
Marc Green d50c7d7f5c Output job id when jobifying exploit 2017-08-28 14:36:04 +02:00
William Vu febe9625dd Add rcheck/recheck to aux modules and exploits 2017-03-09 15:30:34 -06:00
James Lee 5d4cc7ab40 Add nodejs to list of defaults 2016-06-24 16:06:50 -05:00
James Lee f1857d6350 Kill defanged mode 2016-03-28 09:02:07 -05:00
Brent Cook 85acfabfca remove various library workarounds for the datastore not preserving types 2016-03-05 23:10:57 -06:00
wchen-r7 fa390358a2 Add linux/x86/meterpreter/reverse_tcp to the preference list 
linux/x86/meterpreter/reverse_tcp was not added to the preference
list, because at the time it was reliable. For example: it would
crash while running a post module. This is not the case anymore,
so it looks like linux/x86/meterpreter/reverse_tcp is ready to
serve.
 2015-12-21 23:09:54 -06:00
wchen-r7 c888726a1a Fix #6287, check DisablePayloadHandler value in exploit.rb 
It looks active_module datastore options are always strings. They
are actually different than what the module uses (normalized), so
we have to always have to check it.
 2015-11-26 18:30:31 -06:00
wchen-r7 776455d10a Add another sound and event 
Add sound: "We've got a shell"
Add event on_session_fail
 2015-11-25 22:46:51 -06:00
sinn3r c62beacd31 Revert #4473 - Log backtraces by default 2015-01-24 02:44:29 -06:00
Christian Mehlmauer 6444d8ba64 use kind_of? for checking exceptions 2014-12-30 21:16:57 +01:00
Tab Assassin 7e5e0f7fc8 Retab lib 2013-08-30 16:28:33 -05:00
Tod Beardsley a852304ba3 DRY: Move check things to the common module level 
While it makes lots of sense to bring check to all modules, of course
some modules will not be able to actually use it. Namely modules like
nop and payload modules. If you're feeling creative, you could probably
come up with semantically similar checks for those, too.
 2013-05-23 11:42:41 -05:00
James Lee 5e65976089 Alias 'run' to 'exploit' 
Allows console users to use the 'run' command for exploits as well as
auxiliary and post, in the same way that 'exploit' works for all three.
Saves some typing and makes it do the right thing so users don't have to
remember what kind of module they're using.
 2013-05-20 11:20:12 -05:00
jvazquez-r7 f0cee29100 modified CommandDispatcher::Exploit to have the change into account 2013-03-11 18:08:46 +01:00
James Lee 7fd3440c1a Fix hd's attempt to rename ruby payloads 2013-01-10 15:25:50 -06:00
James Lee 4fcb8b6f8d Revert "Rename again to be consistent with payload naming" 
This reverts commit 0fa2fcd811.
 2013-01-10 15:24:25 -06:00
HD Moore 0fa2fcd811 Rename again to be consistent with payload naming 2013-01-10 14:16:37 -06:00
HD Moore 88b08087bf Renamed and made more robust 2013-01-10 14:05:29 -06:00
HD Moore 4c1e501ed0 Exploit for CVE-2013-0156 and new ruby-platform modules 2013-01-09 23:10:13 -06:00
HD Moore d656e3185f Mark all libraries as defaulting to 8-bit strings 2012-06-29 00:18:28 -05:00
Aram Verstegen d5d285ae96 Adding aczid's minimal exploit configurator 
Note the syntax change, need to chase this down before pushing upstream
and make sure nobody's relying on that.... and grep says everything's
cool.

[Closes #295]

Squashed commit of the following:

commit 33b7438731ae5377c95d3d752d76eca73bad20ef
Merge: 6d3e6dd 7811b0a
Author: Tod Beardsley <todb@metasploit.com>
Date:   Fri May 18 16:55:49 2012 -0500

    Merge branch 'master' into HEAD

commit 6d3e6dd6e2
Author: Aram Verstegen <aram.verstegen@gmail.com>
Date:   Sat Apr 7 22:58:29 2012 +0200

    Automatically configure payloads for wmap-enabled exploits

commit 410008bab7
Author: Aram Verstegen <aram.verstegen@gmail.com>
Date:   Sat Apr 7 22:58:06 2012 +0200

    Exposed exploit_choose_payload as class method Exploit.choose_payload
 2012-05-18 17:24:18 -05:00
HD Moore 71488d37c1 Add the interact payload to the defaults 
git-svn-id: file:///home/svn/framework3/trunk@13138 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-09 06:57:30 +00:00
James Lee f04782904e move @@reload_opts to the correct class, fixes 'help reload' from a non-exploit module context 
git-svn-id: file:///home/svn/framework3/trunk@12447 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-26 21:53:45 +00:00
James Lee 88a5b1982e always reload post modules when run from meterpreter prompt, fail and error out instead of running the old one when a reload fails. Fixes #3557 
git-svn-id: file:///home/svn/framework3/trunk@11659 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-28 17:02:26 +00:00
James Lee a7b5e831f7 clean up how help works, pull cmd_reload up so all module types can use it 
git-svn-id: file:///home/svn/framework3/trunk@11658 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-28 03:29:20 +00:00
James Lee 0ba8cbd8a1 don't complain about no session being created when DisablePayloadHandler is true 
git-svn-id: file:///home/svn/framework3/trunk@11470 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-04 17:06:22 +00:00
Joshua Drake 73d9135c91 merge patch from Larry Wert, fixes #2510 
git-svn-id: file:///home/svn/framework3/trunk@10955 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 02:31:21 +00:00
HD Moore 4a12f9529e Choose a reasonable default if none is set 
git-svn-id: file:///home/svn/framework3/trunk@10539 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-04 04:50:10 +00:00
Joshua Drake 0d8e98a519 handle validation errors more gracefully, check job_id, fixes #2279 
git-svn-id: file:///home/svn/framework3/trunk@9898 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-21 00:50:25 +00:00
HD Moore d9402edde3 Handle cases where the exploit succeeds but then throws an exception, printing the "exploit failed" message. Closes #2260 
git-svn-id: file:///home/svn/framework3/trunk@9840 4d416f70-5f16-0410-b530-b9f4589650da
 2010-07-15 21:28:21 +00:00
Joshua Drake 5dabc4ba3f add more validation to return value from exploit check methods 
git-svn-id: file:///home/svn/framework3/trunk@9305 4d416f70-5f16-0410-b530-b9f4589650da
 2010-05-14 19:53:06 +00:00