adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

4671 Commits

Author SHA1 Message Date
kris 97fee9e16f Return "0 secs" instead of "" in Rex::ExtTime.sec_to_s() 
git-svn-id: file:///home/svn/framework3/trunk@5855 4d416f70-5f16-0410-b530-b9f4589650da
 2008-11-08 22:35:37 +00:00
James Lee 75feaa6fab allow passing args to meterpreter scripts through AutoRunScript 
git-svn-id: file:///home/svn/framework3/trunk@5853 4d416f70-5f16-0410-b530-b9f4589650da
 2008-11-08 19:39:06 +00:00
James Lee 0193cd5219 fix session vs client variable problems with meterpreter AutoRunScript and make usage actually reflect what the code does 
git-svn-id: file:///home/svn/framework3/trunk@5834 4d416f70-5f16-0410-b530-b9f4589650da
 2008-11-04 06:40:12 +00:00
HD Moore b53695f7db The psexec module now uses a service-compatible exe, shellcode is spawned in a subprocess and the service cleans up properly 
git-svn-id: file:///home/svn/framework3/trunk@5829 4d416f70-5f16-0410-b530-b9f4589650da
 2008-11-03 23:06:37 +00:00
HD Moore f1789fc1b2 Adds the check() method and scanner module to ms08-067, massively upgrades the smb/version scanner, with better SP detection and remote language pack detection. 
git-svn-id: file:///home/svn/framework3/trunk@5823 4d416f70-5f16-0410-b530-b9f4589650da
 2008-11-03 09:17:08 +00:00
HD Moore a4d53893ac Improvements to opty2 from vlad902: 
1) Fixed a minor bug, sometimes Opty2 would generate C1 /6 instructions which most processors will execute but which are not technically valid (they would exist for SAL but SAL is an alias for SHL so it is defined as C1 /4).
 2) I changed the 0x90 nop instruction so that it is no longer considered that 0x90 changes the eax register.
3) Removed o16/0x66 prepend byte from 0x0f, this is currently unused anyways but might prevent some poor person from debugging it in the future.
 4) Previously short jumps would only make positive jumps, I added the capability for them to make a "-1" jump which would basically just start executing at the offset byte. For example it could generate something like EB FF XX YY ... where EB FF jumps to FF XX YY ...
 5) I added support for the instructions mov reg, segreg (8C), mov reg, imm8/imm32 (C6/C7), and lea reg, mem (8D). I implemented LEA so that it only allows memory references to be in ModR/M form and not be in SIB form (I don't think it's possible to allow SIB in the way Opty2 works at the moment).
 



git-svn-id: file:///home/svn/framework3/trunk@5804 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-30 07:30:52 +00:00
HD Moore 1df0612f61 Adds a case-sensitivity permutation routine 
git-svn-id: file:///home/svn/framework3/trunk@5780 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-22 22:43:13 +00:00
HD Moore 65419ad206 Adds routines/tools for cracking the NTLM hash from the plaintext case-insensive LANMAN password 
git-svn-id: file:///home/svn/framework3/trunk@5779 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-22 22:42:52 +00:00
Ramon de C Valle f124597a56 Code cleanups 
git-svn-id: file:///home/svn/framework3/trunk@5773 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-19 21:03:39 +00:00
HD Moore e016ff2d76 cleanup patch from antoine 
git-svn-id: file:///home/svn/framework3/trunk@5748 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-13 14:22:38 +00:00
HD Moore a87cbe1c5e Add disassembly mode to msfpescan for -a 
git-svn-id: file:///home/svn/framework3/trunk@5717 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-05 02:40:55 +00:00
HD Moore 0f03e872f1 Fixes ^C and ^Z session handling 
git-svn-id: file:///home/svn/framework3/trunk@5706 4d416f70-5f16-0410-b530-b9f4589650da
 2008-10-01 17:32:55 +00:00
James Lee 43886f3697 typo fix, thanks Kris Katterjohn 
git-svn-id: file:///home/svn/framework3/trunk@5702 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-30 23:24:52 +00:00
HD Moore af9a8eba9a Swap back to 8192 until the exploits which use it are updated. 
git-svn-id: file:///home/svn/framework3/trunk@5694 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-27 17:13:11 +00:00
HD Moore 14e8e75cb6 Another, smaller, win32 wrapper 
git-svn-id: file:///home/svn/framework3/trunk@5693 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-27 05:02:36 +00:00
HD Moore 16d2825b83 Wrap the shellcode in SEH 
git-svn-id: file:///home/svn/framework3/trunk@5692 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-26 23:35:47 +00:00
HD Moore b94d10f53c Switch the exe back to windows mode (vs console) 
git-svn-id: file:///home/svn/framework3/trunk@5691 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-26 23:01:58 +00:00
HD Moore 4d47f49c1c Randomize the timedatestamp 
git-svn-id: file:///home/svn/framework3/trunk@5690 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-26 22:37:41 +00:00
HD Moore 6d5ac7eead Switches the executable template to something a little nicer and adds exe output to msfencode 
git-svn-id: file:///home/svn/framework3/trunk@5689 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-26 22:34:51 +00:00
HD Moore e341e46f6b Remove debugging comment 
git-svn-id: file:///home/svn/framework3/trunk@5688 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-26 13:33:09 +00:00
HD Moore 37d9c3db1d Corrects an issue where a scope ID is passed to IPv4 addresses, cleans up the parsing. 
git-svn-id: file:///home/svn/framework3/trunk@5687 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-26 05:39:06 +00:00
HD Moore 1310e0e94c Imported msfmachscan from Darren Kemp 
git-svn-id: file:///home/svn/framework3/trunk@5682 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-24 22:14:33 +00:00
HD Moore b3c3b29ed1 Wrong fix, right bug. 
git-svn-id: file:///home/svn/framework3/trunk@5681 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-24 20:47:01 +00:00
HD Moore 8491ef3ff9 Correct File namespace (thanks MJM) 
git-svn-id: file:///home/svn/framework3/trunk@5680 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-24 20:39:28 +00:00
James Lee 36a06e7576 initial commit of php findsock. This patch makes all http connections global and removes the "close if (!pipelining)" checks, so beware of bugs. 
git-svn-id: file:///home/svn/framework3/trunk@5678 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-24 04:41:51 +00:00
HD Moore b0225127cf Patch for Ruby 1.9 compat (not there yet) 
git-svn-id: file:///home/svn/framework3/trunk@5674 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-22 15:52:18 +00:00
Ramon de C Valle bd753e8ece Fixed identation 
git-svn-id: file:///home/svn/framework3/trunk@5664 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-17 02:01:15 +00:00
Ramon de C Valle 58cef5775e Added ARCH_POWER constant and fixed AIX payload modules 
git-svn-id: file:///home/svn/framework3/trunk@5663 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-17 01:42:51 +00:00
HD Moore 6772685f3e Merge patch from Julien TINNES for MIPS support (LE/BE) 
git-svn-id: file:///home/svn/framework3/trunk@5658 4d416f70-5f16-0410-b530-b9f4589650da
 2008-09-15 18:50:34 +00:00
HD Moore 1fa95d6050 This patch adds support for IPv6 scope_ids to AddressRange parameters. Ranges consisting of a single address are not expanded 
git-svn-id: file:///home/svn/framework3/trunk@5640 4d416f70-5f16-0410-b530-b9f4589650da
 2008-08-23 07:05:38 +00:00
HD Moore 947dad1f45 Expose the sslctx to the caller 
git-svn-id: file:///home/svn/framework3/trunk@5639 4d416f70-5f16-0410-b530-b9f4589650da
 2008-08-23 05:12:43 +00:00
James Lee 1e3d89b467 fix a bug where firefox detection breaks with obfuscation of the js_osdetect code 
git-svn-id: file:///home/svn/framework3/trunk@5632 4d416f70-5f16-0410-b530-b9f4589650da
 2008-08-15 20:11:42 +00:00
James Lee 36ce7136aa add a couple of javascript os detections 
git-svn-id: file:///home/svn/framework3/trunk@5629 4d416f70-5f16-0410-b530-b9f4589650da
 2008-08-13 16:31:38 +00:00
HD Moore 9903e0bb1d Add the ror/rol ror13hash code to msf3 
git-svn-id: file:///home/svn/framework3/trunk@5627 4d416f70-5f16-0410-b530-b9f4589650da
 2008-08-13 01:44:37 +00:00
HD Moore bd7e616fe3 Need another red bull... 
git-svn-id: file:///home/svn/framework3/trunk@5604 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-26 18:23:54 +00:00
HD Moore 09c1b1d0fc This fixes raw socket support for FreeBSD, NetBSD, BSDi, and Mac OS X. Thanks LibNET! 
git-svn-id: file:///home/svn/framework3/trunk@5603 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-26 18:15:35 +00:00
HD Moore c6930f79f1 consistency fixes 
git-svn-id: file:///home/svn/framework3/trunk@5596 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-25 06:04:51 +00:00
HD Moore bb1db8253a Raw socket mode that should work for 'everyone' 
git-svn-id: file:///home/svn/framework3/trunk@5595 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-25 05:05:32 +00:00
HD Moore cef76df19c Raw socket support for BSD systems 
git-svn-id: file:///home/svn/framework3/trunk@5594 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-25 04:59:11 +00:00
HD Moore a4af2d9d93 Fix socket, change requires in dns 
git-svn-id: file:///home/svn/framework3/trunk@5575 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-23 17:39:02 +00:00
James Lee 0144e9ea6a add detection for IE6 on XPSP0 
git-svn-id: file:///home/svn/framework3/trunk@5572 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-23 06:40:27 +00:00
HD Moore a52530f647 Raw IP socket support for Rex. Guess what this is for :-) 
git-svn-id: file:///home/svn/framework3/trunk@5565 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-22 19:03:59 +00:00
James Lee 2d344e64df browser_autopwn now works with mozilla_compareto, mozilla_navigatorjava, and firefox_queryinterface; increased reliability of OS and browser detection 
git-svn-id: file:///home/svn/framework3/trunk@5563 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-22 07:28:05 +00:00
HD Moore 4415d0370f Stop leaking file descriptors when source_address() is called 
git-svn-id: file:///home/svn/framework3/trunk@5561 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-21 03:32:51 +00:00
James Lee a15e3c08e9 add string obfuscation 
git-svn-id: file:///home/svn/framework3/trunk@5556 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-14 18:57:13 +00:00
James Lee 8800372e46 initial commit of browser_autopwn; 
revamp php payloads;
socks5 for IPv6 (untested)



git-svn-id: file:///home/svn/framework3/trunk@5546 4d416f70-5f16-0410-b530-b9f4589650da
 2008-07-01 01:44:56 +00:00
HD Moore 380aba15b0 Implements the readline workaround, tested with regular and meterpreter sessions 
git-svn-id: file:///home/svn/framework3/trunk@5544 4d416f70-5f16-0410-b530-b9f4589650da
 2008-06-27 20:51:36 +00:00
HD Moore f056b9437f Revert this again, breaks meterpreter console 
git-svn-id: file:///home/svn/framework3/trunk@5543 4d416f70-5f16-0410-b530-b9f4589650da
 2008-06-27 20:07:53 +00:00
HD Moore 596a13ae30 Correctly handle the readline threading issue, tested with sessions. 
git-svn-id: file:///home/svn/framework3/trunk@5541 4d416f70-5f16-0410-b530-b9f4589650da
 2008-06-27 19:57:28 +00:00
HD Moore eb0134d8b6 Fix an annoying error 
git-svn-id: file:///home/svn/framework3/trunk@5539 4d416f70-5f16-0410-b530-b9f4589650da
 2008-06-24 20:55:42 +00:00