adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

16492 Commits

Author SHA1 Message Date
wchen-r7 defda01d87 Some doc 2015-05-29 15:09:29 -05:00
wchen-r7 b33ace2f44 Put is_payload_compatible? in exploit.rb 2015-05-29 15:07:59 -05:00
wchen-r7 13779adab4 Merge branch 'upstream-master' into bapv2 2015-05-29 14:59:04 -05:00
wchen-r7 6be363d82a Merge branch 'upstream-master' into bapv2 2015-05-29 14:58:38 -05:00
jvazquez-r7 1be04a9e7e Land #5182, @m-1-k-3's exploit for Dlink UPnP SOAP-Header Injection 2015-05-29 14:49:09 -05:00
jvazquez-r7 8b2e49eabc Do code cleanup 2015-05-29 14:45:47 -05:00
Brent Cook 340792aae4 don't jump past the uuid sender on win32/tcp connect 2015-05-29 14:34:27 -05:00
wchen-r7 dab9a66ea3 Use current ruby hash syntax 2015-05-29 13:43:20 -05:00
Brent Cook 7d5af66fa0 Merge branch 'master' into land-5367-uuid-stagers 2015-05-29 13:00:35 -05:00
Brent Cook 8f747d2541 Land #5382, add meterpreter session reconnect RPC call 2015-05-29 12:53:15 -05:00
Samuel Huckins f6a8982fd7 Merge branch 'master' of github.com:rapid7/metasploit-framework 
Please enter a commit message to explain why this merge is necessary,
 2015-05-29 12:49:45 -05:00
RageLtMan 0d0dbaab60 Fix :gsub! delegator for Powershell::Script 2015-05-29 05:08:27 -04:00
RageLtMan f575b31d58 Remove double assignment typo 2015-05-29 05:05:35 -04:00
RageLtMan 1a08da09cb Fix compression check logic 
Initial check logic would compress any script, even those which
would not need it since an uncompressed script fitting the buffer
would likely fit compressed (unless its uncompressable and the
decoder stub overflows). Ensure that compression occurs only when
a compressed script would fit while the uncompressed one does not.
 2015-05-29 04:15:57 -04:00
RageLtMan e9821f6a70 Update stage_psh_env method 
Replace variable names with generated strings to increase entropy.

Add compression test for stager to determine if a compressed PSH
script will fit into the allowed space. If so, compress and exec
without staging.

Add variable name cleanup to stager mechanism - Remove-Variable
with -ErrorAction SilentlyContinue is called on each stager var
name after the stager executes.

TODO: Update method documentation
 2015-05-29 04:04:51 -04:00
RageLtMan f575fb8df9 Merge branch 'feature-merge_psh_updates_201505' 
Conflicts:
	lib/msf/core/post/windows/powershell.rb

Rename upload_script_via_psh to stage_psh_env within post PSH lib.
Perform the same rename within load_script post module.
 2015-05-29 03:42:25 -04:00
wchen-r7 737559bcbb Land #5180, VBA Powershell for Office Macro 2015-05-28 19:55:27 -05:00
Samuel Huckins 19106a3ea4 Merge branch 'master' of git://github.com/rapid7/metasploit-framework 2015-05-28 08:15:12 -05:00
Spencer McIntyre 24b4dacec5 Land #5408, @g0tmi1k fixes verbiage and whitespace 2015-05-27 21:02:02 -04:00
wchen-r7 583fccdbc8 Resolve #5404, Check payload compatibility when using set payload 
Resolve #5404. This patch will check payload compatibility when
you are using set payload in msfconsole.
 2015-05-27 18:28:08 -05:00
wchen-r7 5d0053e4ef Move iframe instead of hiding, which seems to improve Flash reliability 2015-05-27 00:43:47 -05:00
wchen-r7 60cdf71e6c Merge branch 'upstream-master' into bapv2 2015-05-26 15:56:48 -05:00
Brent Cook d76a9c6565 Land #5409, update cmd stager documentation. 
Merge remote-tracking branch 'upstream/pr/5409' into upstream-master
 2015-05-26 10:34:03 -05:00
benpturner abd4ab548d Edit spaces within the powershell session command 2015-05-25 20:10:29 +01:00
wchen-r7 3102741157 Don't need print_line 2015-05-25 11:54:58 -05:00
wchen-r7 3d5248f023 This is better 2015-05-25 11:46:18 -05:00
benpturner e06f47b2bd Updates load_script to have support for folders and to include the stager process in the mixin module for other post mods 2015-05-25 15:48:27 +01:00
OJ 307dcd09dd Update payload cache sizes again 2015-05-25 20:12:20 +10:00
OJ 87bc198c82 x64 winhttp ie proxy support, autoconfig ignore 2015-05-25 20:01:37 +10:00
wchen-r7 db09b9846c I think I found the speed back 2015-05-25 02:44:57 -05:00
wchen-r7 72112317cc Update 2015-05-25 01:58:34 -05:00
wchen-r7 3efe22d5e2 This seems better, slower though 2015-05-25 01:42:34 -05:00
OJ 78176c4335 First pass of IE proxy support for winhttp x86 2015-05-25 15:44:35 +10:00
OJ 43f7054a5c Refactor base64 stub into base module 
As per @zeroSteiner's suggestion.
 2015-05-25 11:51:01 +10:00
OJ 9e50114082 Merge branch 'upstream/master' into uuid-stagers 2015-05-25 11:22:35 +10:00
OJ 9042f141ff Implement the IPv6 UUID bind stagers 2015-05-25 11:21:28 +10:00
wchen-r7 7089bd945a This payload handling looks much better 2015-05-24 12:47:20 -05:00
Spencer McIntyre 6fb2da4f62 Fix #5391, cmd stager documentation fixes 2015-05-23 13:56:49 -04:00
Michael Messner 10baf1ebb6 echo stager 2015-05-23 15:50:35 +02:00
wchen-r7 a376464710 It kind of blew up 2015-05-23 05:26:13 -05:00
wchen-r7 f378b45408 bug fixes, sorta 2015-05-23 05:06:15 -05:00
wchen-r7 7f4b51f0ff Fix nil bug 2015-05-23 02:08:51 -05:00
wchen-r7 60b0be8e3f Fix a lot of bugs 2015-05-23 01:59:29 -05:00
wchen-r7 916b7b83be Change how we load payload handlers 2015-05-22 20:35:43 -05:00
jvazquez-r7 d10b20b7a3 Land #5251, @hmoore-r7's second opportunity to Oracle connect 
SYSTEM shouldn't have SYSDBA privileges by default anymore
 2015-05-22 17:47:41 -05:00
jvazquez-r7 41a86b2e9b add vprint_status 2015-05-22 17:46:56 -05:00
wchen-r7 6de75ffd9f Merge branch 'upstream-master' into bapv2 2015-05-22 17:11:03 -05:00
jvazquez-r7 c201955fdf Land #5387, @wchen-r7's user-configurable HTTP timeout 
Fixes #5219, Add connection timeout and response timeout for HttpClient
 2015-05-22 15:36:11 -05:00
jvazquez-r7 e0d9ee062f Use HttpClientTimeout 2015-05-22 13:35:37 -05:00
wchen-r7 8fd468a89f Get the dry-run feature right this time 2015-05-22 13:07:30 -05:00