adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

480 Commits

Author SHA1 Message Date
Brendan Coles f2eb73407a Land #12662, Update post/multi/gather/gpg_creds to support GPG v2.1+ keys 2019-12-11 06:53:57 +00:00
Henry Hoggard 2ed613ffa3 Fix file search 2019-12-05 08:46:56 +00:00
William Vu 98c586b76e Fix style 2019-12-04 19:32:14 -06:00
Henry Hoggard 37fb5be381 Remove whitespace 2019-12-04 22:29:57 +00:00
Henry Hoggard 12218b0fde Add GPG 2.1+ keys, Stop storing empty files 2019-12-04 21:54:16 +00:00
MangyCoyote a7e7b9dbf2 post/multi/gather/ssh_creds should verify it has access to a file before reading it 2019-11-21 10:48:42 +01:00
MangyCoyote cfd86f6412 ssh_creds module tries to store ssh public keys (#1) 
Resolves #12599
 2019-11-18 21:28:47 +01:00
Brent Cook 04c3b68820 fix no-creds case, don't print table and creds unless we found some 2019-10-29 04:31:12 -05:00
Brent Cook 99ed2b7bf2 merge modules and documentation 2019-10-29 04:27:25 -05:00
Brent Cook 4abee63936 only loot config files with passwords 2019-10-29 04:18:08 -05:00
Brent Cook 4c1f117566 add auto targeting from grub.d and FILENAME option 2019-10-29 04:17:47 -05:00
Brent Cook 0ebcda3aaa merge credits 2019-10-29 04:17:26 -05:00
Brent Cook 4d8e9bad26 expand file list from grub_cred 2019-10-29 03:42:23 -05:00
Brent Cook bd76e1f2cb initial tidy pass w/rubocop 2019-10-29 03:42:01 -05:00
Brent Cook c6ecef3dc7 Merge #11426, other grub password extraction module 2019-10-29 03:34:36 -05:00
Taeber Rapczak 1c9a3c74d5 Add post module to collect grub passwords 
closes #11166
 2019-10-16 00:45:33 -04:00
Shelby Pace d4ac2efcc9 add parsing function and cred table 2019-10-14 09:34:55 -05:00
h00die f95f952b65 fix separated spelling 2019-10-05 14:13:38 -04:00
h00die f60e8a3dbd less indents 2019-09-08 00:11:11 -04:00
h00die ce5f8d8d2f add datastore option 2019-09-08 00:06:49 -04:00
James Lee 56d81052e8 Save the data we just collected 
Instead of just throwing it away after printing.
 2019-09-05 09:47:04 -05:00
thesubtlety 4f679fad7a fix key material loading and display of blank api keys 2019-05-16 19:31:11 -07:00
h00die 0f6eacda88 add nonverbose prints 2019-05-14 15:54:44 -04:00
h00die 097a503113 unifi 5.10.23 and meterp > shell 2019-05-10 15:05:31 -04:00
h00die ba4990041d osx support for unifi 2019-04-06 11:08:17 -04:00
h00die 724d5c5a26 spaces EOL 2019-03-13 20:48:07 -04:00
h00die f836329bce add osx 2019-03-13 20:20:18 -04:00
h00die 95f6630d32 unifi reviews 2019-03-11 17:20:00 -04:00
h00die a8b09e17da unifi backup downloader 2019-03-10 16:20:42 -04:00
Garvit Dewan c48a6ddbdf Add /boot/grub2/user.cfg path to grub_password 2019-02-21 14:17:15 +05:30
Garvit Dewan a1b1ace18f Save the gathered credentials to database 2019-02-17 23:33:12 +05:30
Garvit Dewan 85add746e1 Make suggested changes to grub_password module 2019-02-17 21:31:58 +05:30
Garvit Dewan 68414d07ce Make suggested changes to grub_password module 2019-02-17 20:23:26 +05:30
Garvit Dewan 22340ab2c1 Add *nix Gather Grub Password module 2019-02-17 19:29:47 +05:30
Jacob Robles 04363b7b7e Doc update 
post:chrome_cookies
 2019-01-15 07:19:46 -06:00
Jacob Robles a95384e288 Additional support and code cleanup 2019-01-08 06:57:56 -06:00
Alex 811605a9b8 Cleanup headless Chrome process for meterpreter sessions 2018-12-30 18:05:41 +11:00
Jacob Robles 3838be0a03 Windows Hide Chrome Window 2018-12-19 05:58:11 -06:00
Jacob Robles 0464f941a7 Add Windows Support 2018-12-18 14:17:10 -06:00
Alex c5015c62b8 Simplify Chrome Gather Cookies 
Module now uses Chrome itself as a websocket client, reading websockets
via js. It no longer downloads and executes `websocat`.
 2018-12-09 09:52:45 +11:00
Tim W b993d74f6c minor tweak 2018-10-02 11:41:58 +08:00
Tim W 5cfc19b804 fix post/multi/gather/wlan_geolocate on Android 2018-10-02 11:35:47 +08:00
William Vu 87eb600510 Land #10611, mRemote creds gather module fixes 
Also update #10612 to align with these changes.
 2018-09-10 15:25:09 -05:00
William Vu 3ec4d2f22b Normalize loot type OID 
1. Include the vendor, product, and technology
2. Content type is already reported, extension changed
3. Original filename including extension is also reported

Can we get some sort of standard on the OID?
 2018-09-10 15:06:07 -05:00
h00die 39a2d9d2a8 save xml files as xml 2018-09-09 21:24:39 -04:00
reka193 d60aa55e07 Modified regex 
Based on the comment: https://github.com/rapid7/metasploit-framework/pull/10394#discussion_r207042496
 2018-08-02 15:55:24 +02:00
reka193 ece9a72d13 Removed tabs 2018-07-30 15:07:55 +02:00
reka193 5962fa752e Fixes in aws_ec2_instance_metadata 
@@ -36,7 +36,7 @@ def initialize(info = {})

    - unless resp =~ /^instance-id.$/m
    + unless resp =~ /^instance-id$/m
The original regex requires one character after 'instance-id' which is not present in the instance.

@@ -50,15 +50,16 @@ def check_curl

    - base_resp.split(/\r\n/).each do |l|
    -    new_uri = base_uri.merge("./#{l}")
    + base_resp.split(/\r?\n/).each do |l|
    +   new_uri = "#{base_uri}#{l}"

    - key_uri = new_uri.merge("./#{key_id}/")
    - key_resp = simple_get(key_uri)
    + new_uri = new_uri.slice(0..(new_uri.index(%r{/public-keys/})+'/public-keys'.length))
    + key_uri = "#{new_uri}#{key_id}/"
    + key_resp = simple_get(key_uri)

1. merge function was causing 'rescue in merge' errors
2. the split function could not succeed, there were no '\r\n' between the lines but '\n' only
3. the special case was not handled correctly 
was trying to curl http://169.254.169.254/latest/meta-data/public-keys/0=Key0/ instead of http://169.254.169.254/latest/meta-data/public-keys/0/

@@ -94,6 +95,6 @@ def setup

    - cmd_exec("curl #{url}")
    + cmd_exec("curl -s #{url}")
Curl was causing issues when not in silent mode.
 2018-07-30 14:02:15 +02:00
reka193 6790ac1998 Reset to original 2018-07-30 10:48:32 +02:00
reka193 408dc7793f Update aws_ec2_instance_metadata.rb 2018-07-23 10:00:12 +02:00