adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

16492 Commits

Author SHA1 Message Date
James Lee bf2abaeeaf Make help route more informative 2017-05-02 11:07:08 -05:00
Brent Cook b7d6be05ee split python loader from generic implementation 2017-05-01 16:10:12 -05:00
William Vu 585fac0457 Fix nil bug when creating nonexistent encoder 
Found by irthewinner on IRC.
 2017-04-30 03:43:51 -05:00
William Vu e026a8c663 Fix typo (s/Remote/Reverse/) in portfwd -L 
Found by ThePortWhisperer on IRC.
 2017-04-29 00:10:13 -05:00
Brandon Knight f8fb03682a Fix issue in ps_wmi_exec and powershell staging 
The staging function in the post/windows/powershell class was broken
in a previous commit as the definition for env_variable was removed and
env_prefix alone is now used. This caused an error to be thrown when
attempting to stage the payload. This changes the reference from
env_variable to env_prefix.

Additionally, the ps_wmi_exec module created a powershell script to be
run that was intended to be used with the EncodedCommand command line
option; however the script itself was never actually encoded. This
change passes the compressed script to the encode_script function to
resolve that issue.
 2017-04-28 03:31:56 -04:00
Pearce Barry 5450e96204 Land #8306, fix #8305, escape unadorned periods within SMTP payloads 2017-04-27 17:51:14 -05:00
itsmeroy2012 cd73bd137a Making use of while loop and solving StagerRetryWait issue 2017-04-27 11:50:13 +05:30
William Vu 7a6a124272 Land #8279, POSIX Meterpreter replaced by Mettle 2017-04-26 18:32:17 -05:00
Brent Cook a57067c4a7 append metasploit lib to PYTHONPATH 2017-04-26 18:13:46 -05:00
Brent Cook 037fdf854e move common json-rpc bits to a library 2017-04-26 18:08:08 -05:00
Brent Cook 43ac2c339e Land #8291, Acunetix XML import improvements 2017-04-26 17:38:52 -05:00
Brent Cook 353191992f move mettle payloads to meterpreter, add reverse_http/s stageless 2017-04-26 17:06:34 -05:00
Brent Cook 288cb6536d fix #8305, escape unadorned periods in the front of SMTP payloads 2017-04-26 16:05:46 -05:00
Pearce Barry c4f1130619 Acunetix XML import improvements. 
This patch updates the MSF db_import functionality  w.r.t. importing Acunetix XML files to do the following:

 - import web vulnerabilities identified by Acunetix
 - import all services for each scanned host
  - does not pull in the specifc program/version name of each service, as that's pretty loosely formatted in the Acunetix XML
 2017-04-26 12:16:20 -05:00
Spencer McIntyre 3347af24ba Add some basic libc definitions for railgun 2017-04-25 15:12:39 -04:00
Spencer McIntyre 9c60c3ee46 Support platform specific railgun constants 2017-04-25 14:36:15 -04:00
Brent Cook 6f763a616d Land #8225, Expose the shared wifi profile dumping feature in Mimikatz 2017-04-25 11:23:34 -05:00
Craig Smith aeed81de29 Code cleanup from Rubocop output 
Signed-off-by: Craig Smith <agent.craig@gmail.com>
 2017-04-24 20:42:03 -07:00
Craig Smith c2296dcd1b Addes 'isotpsend' command to interactive commands to send ISO-TP related queries 
Signed-off-by: Craig Smith <agent.craig@gmail.com>
 2017-04-24 20:42:03 -07:00
Craig Smith 36026ba8b4 Fixed active buses not being recorded. The 'connect' command now works for other extensions as well as modules. Added TesterPresent background packet transmissions to hold debugging sessions open. 
Signed-off-by: Craig Smith <agent.craig@gmail.com>
 2017-04-24 20:42:03 -07:00
Craig Smith 2012ebf38f Fixed bug with a duplicate ID in hash for errors 
Signed-off-by: Craig Smith <agent.craig@gmail.com>
 2017-04-24 20:42:03 -07:00
Craig Smith 406051a3ff Added more session management to hwbridge. Commands 'sessions' and 'background' added. 
Signed-off-by: Craig Smith <agent.craig@gmail.com>
 2017-04-24 20:42:03 -07:00
Craig Smith 5537348e28 Addes Statistics support from the API. When typing status in a hardware bridge it will also print packet statistics. 
Signed-off-by: Craig Smith <agent.craig@gmail.com>
 2017-04-24 20:42:03 -07:00
Craig Smith c4a6cc1907 Array was being checked with even? and should be array.size.even? 
Signed-off-by: Craig Smith <agent.craig@gmail.com>
 2017-04-24 20:42:03 -07:00
Spencer McIntyre daf8833174 Refactor a bunch of windows_name references 2017-04-24 19:54:00 -04:00
Spencer McIntyre 3cc089bcef Support loading platform specific railgun defs 2017-04-24 19:46:56 -04:00
Spencer McIntyre d3a759d631 Make changes for initial linux railgun support 2017-04-24 17:11:27 -04:00
itsmeroy2012 bd2379784e Improved error handling for the python reverse_tcp payload 
Handling all kinds of errors

Removing 'e'

Updating payload cached sizes

Updating payload cached sizes 2.0

Adding option to set retry time
 2017-04-23 20:43:57 +05:30
Metasploit 89e81253ed Bump version of framework to 4.14.15 2017-04-21 10:02:32 -07:00
Brent Cook 6b37e1ecfc Land #8268, Improve metasploit-aggregator UX 2017-04-21 11:21:49 -05:00
Jeffrey Martin 32da0ed3d7 fix some comment typos 2017-04-19 14:14:26 -05:00
Metasploit f90911e09e Bump version of framework to 4.14.14 2017-04-19 09:35:29 -07:00
David Maloney 8d4ccb5d51 SMB over NtBIOS no longer works 
don't try to run the smb loginscanner
against port 139
 2017-04-18 13:34:00 -05:00
Metasploit 05e15cee18 Bump version of framework to 4.14.13 2017-04-18 08:17:22 -07:00
David Maloney 9634248211 treat socket reads as a connection error 
treat failures to read from the socket
as a connection error
 2017-04-17 21:58:22 -05:00
David Maloney a597de516d actually use the coerced values 2017-04-17 11:24:57 -05:00
David Maloney bbdf06af5d coerece nil credentials to empty strings 
rubySMB doesn't take nils for credential data, so coerce any nils into
empty strings bfore sending it on
 2017-04-17 11:17:09 -05:00
Brent Cook 7b936b0012 Land #8184, convert IPMI protocol and modules to bindata 2017-04-17 07:40:15 -05:00
nixawk 484a545629 Replace exe.rb double variable declare 2017-04-16 22:38:49 -05:00
Brent Cook 67047cf770 Revert "Fixes MS-1716, keep sessions in progress alive." 
This reverts commit e5d0370a94.
 2017-04-16 15:52:22 -05:00
Brent Cook 7950087804 Merge branch 'upstream-master' into land-8237- 2017-04-14 21:53:26 -05:00
William Webb cbebc5dc39 really remove errant keyscan_extract() call 2017-04-14 15:21:11 -05:00
Brent Cook 42122d2835 Land #8238, move SMB2 support back into smb_login, add simpler permissions checks 2017-04-14 14:06:46 -05:00
Brent Cook b8e14d7543 Merge branch 'upstream-master' into land-8224- 2017-04-14 12:55:29 -05:00
Metasploit 036d579228 Bump version of framework to 4.14.12 2017-04-14 10:04:35 -07:00
Brent Cook a3fc6791ca Land #8217, don't log empty attributes if they are ignored 2017-04-13 22:08:23 -05:00
Brent Cook bb0a0b5cd9 apply empty attribute fix in more places, simplify and unify 2017-04-13 22:07:10 -05:00
David Maloney 91fb3ce6b8 collapse SMB2 support into smb_login 
converge the SMB and SMB loginscanners so that
there is only one SMB loginscanner that supports both

MS-2636
 2017-04-13 15:22:03 -05:00
David Maloney 89bd110422 reinsert guest checks and uniq fallback 
add checks back from original loginscanner

MS-2636
 2017-04-13 14:55:37 -05:00
David Maloney adeb4d10d7 smb2 login scanner admin check now working 
we can now check for admin privs in the smb2
login scanner

MS-2636
 2017-04-13 14:40:32 -05:00