834e0eba95
Land #8340 , add exception handling for rev_tcp_ssl
2017-06-06 19:09:15 -04:00
a953d94f61
Minor white space cleanups for PR #8340
2017-06-06 19:07:55 -04:00
3ded57e1cd
Land #8516 , add verbose debug to ntds dumper
2017-06-06 07:26:54 -05:00
0830e4aaa5
Land #8503 , Linux x86 reverse_tcp error handling
2017-06-06 06:36:55 -05:00
37b9cd07a2
Add support for the session GUID in the UI
...
The Session GUID will identify active sessions, and is the beginning of
work that will allow for tracking of sessions that have come back alive
after failing or switching transports.
2017-06-06 17:15:57 +10:00
871c30c0b3
refactor stdapi and lanattacks to use filter_commands
2017-06-06 14:05:07 +08:00
e9c9c852ab
check_commands -> filter_commands
2017-06-06 13:56:38 +08:00
f0f21891ad
Land #8512 , Enable adaptive download with variable block sizes
2017-06-05 18:46:24 -05:00
42aa2e5acf
add some attempts at debugging to ntds
...
add some logging and more status outputs to the
NTDS domain hasdump. Also force the encoding on
strings to UTF8
2017-06-05 15:21:50 -05:00
f4013b02e1
renaming db_common to common
...
this moves the following methods into common
arg_host_range ( used in creds and db )
arg_port_range ( used in creds and db )
set_rhosts_from_addrs ( used in creds and db )
show_options ( used in jobs and modules )
2017-06-05 14:19:18 -05:00
7625d36c1c
fix #8199 , check extapi for dependencies
2017-06-05 14:56:59 +08:00
8c35e54934
Land #8495 , Expand multi-handler for generic http(s) sessions
2017-06-04 20:21:32 -05:00
39cee481c1
Making changes similar to the reverse_tcp payload
2017-06-03 22:57:59 +05:30
6a3fc618a4
Add bypassuac_injection_winsxs.rb module
2017-06-03 12:59:50 +02:00
82a83af6c2
add error handling to x86 linux reverse tcp
2017-06-03 04:04:55 +09:00
92a65f5c63
Bump version of framework to 4.14.25
2017-06-02 10:03:44 -07:00
cc0ff8f3db
Enable adaptive download with variable block sizes
...
The aim of this commit is to allow users of Meterpreter in high-latency
environments have better control over the behaviour of the download
function. This code contains two new options that manage the block size
of the downloads and the ability to set "adaptive" which means that the
block size will adjust on the fly of things continue to fail.
2017-06-02 17:16:58 +10:00
abeececb46
Land #8493 , creds -R fix with DbCommon
2017-06-01 14:19:16 -05:00
ccf54f464c
Expand multi-handler for generic http(s) sessions
2017-05-31 14:35:18 -05:00
2682874652
fixing a busted -R on creds search
...
I broke this when moving creds to its own file.
2017-05-30 15:56:51 -05:00
0c792798a7
Bump version of framework to 4.14.24
2017-05-30 07:26:35 -07:00
32a83e0d30
update macho check for 32bit + fat
2017-05-30 14:00:24 +08:00
ee57c7188e
Land #8470 , remove broken check for invalid options
2017-05-30 00:35:46 -05:00
a01a2ead1a
Land #8467 , Samba CVE-2017-7494 Improvements
2017-05-30 00:15:03 -05:00
66f06cd4e3
Fix small typos in comments
2017-05-28 14:40:33 -05:00
4e29b6e5fd
Land #8275 , add retry opts for py rev_tcp stager
2017-05-28 13:02:35 -04:00
2ca53eaebf
Minor white space cleanups for PR #8275
2017-05-28 12:59:06 -04:00
e02d726213
Setting default values to the added options
2017-05-28 14:30:30 +05:30
b7620e13a3
remove special case check for invalid options
2017-05-27 00:53:14 -05:00
11b3fd9067
Land #8468 , Update system info after running getsystem
2017-05-26 23:37:00 -05:00
53cbbbacd8
getsystem update session info
2017-05-26 17:28:11 -06:00
e8b5cc3397
Avoid a stacktrace by verifying that the share is known
2017-05-26 17:01:44 -05:00
8caaba01f1
Add share enumeration methods to the SMB mixin
2017-05-26 17:01:18 -05:00
15b3b7de41
Bump version of framework to 4.14.23
2017-05-26 10:02:14 -07:00
1582d3a902
support i386
2017-05-26 15:55:42 +08:00
a9e6df6f15
fix shell command on osx meterpreter
2017-05-26 15:55:14 +08:00
18a871d6a4
Delete the .so, add PID bruteforce option, cleanup
2017-05-25 16:03:14 -05:00
92a1a3ecf7
Adding for loop instead of while, removing 'counter'
2017-05-25 15:09:34 +05:30
0520d7cf76
First crack at Samba CVE-2017-7494
2017-05-24 19:42:04 -05:00
52363aec13
Add module for CVE-2017-8895, UAF in Backup Exec Windows agent
...
This module exploits a use-after-free vulnerability in the handling of
SSL NDMP connections in Veritas/Symantec Backup Exec's Remote Agent for
Windows. When SSL is re-established on a NDMP connection that previously
has had SSL established, the BIO struct for the connection's previous
SSL session is reused, even though it has previously been freed.
Successful exploitation will give remote code execution as the user of
the Backup Exec Remote Agent for Windows service, almost always
NT AUTHORITY\SYSTEM.
2017-05-24 00:18:20 +12:00
d333077308
osx meterpreter
2017-05-23 14:23:22 +08:00
3e4e5dc810
Land #8421 , fix rspec failures with newer OpenSSL
2017-05-22 21:49:52 -04:00
86aad6b7c3
Fix proxy_type references to handle nil case
2017-05-22 21:47:37 +10:00
29d1022ae2
Fix the rake spec failures under ruby 2.4.
...
Ths typo3_spec is giving some errors under ruby 2.4+
and OpenSSL 1.1+.
2017-05-21 21:56:04 +02:00
18f520382b
Bump version of framework to 4.14.22
2017-05-19 12:12:27 -07:00
a6f416e8df
Land #8290 , Hwbridge Automotive Fix and Extension Enhancements
2017-05-19 13:46:54 -05:00
c54c999efc
Bump version of framework to 4.14.21
2017-05-19 10:02:32 -07:00
22828fcc0f
Land #8406 , add compatibility shims for older Ruby versions
2017-05-18 21:50:45 -05:00
4def7ce6cc
Land #8327 , Simplify storing credentials
2017-05-18 16:49:01 -05:00
126c078ced
Bump version of framework to 4.14.20
2017-05-18 11:53:33 -07:00
Spencer McIntyre