adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
46,254 Commits 27 Branches 1,043 Tags
94de5a4e42cfb1dc0fdfc1233707f71b6d9a628b
Commit Graph

14299 Commits

Author SHA1 Message Date
Jeffrey Martin b04f5bdf90 Land #9077, Enhancing the functionality on the nodejs shell_reverse_tcp payload. 2017-10-16 10:49:17 -05:00
Jeffrey Martin 6df8c40bb1 adjust whitespace 'no tabs' more reabable 2017-10-13 17:01:47 -05:00
Wei Chen 6b89f62b08 Land #9080, ensure autoruns on shell sessions 
Land #9080
 2017-10-13 15:35:31 -05:00
Wei Chen 5ce4c32213 Use session object instead of self 
The session object has :process_autoruns, not self
 2017-10-13 15:33:27 -05:00
William Vu b2de5aba07 Fix #9075, super setup fix for local exploits 2017-10-13 12:45:14 -05:00
bigendiansmalls 1b306caf39 Fixed ftp.rb to get files larger than 16384 
Existing ftp.rb did get_once, which limits file
DL to 16384 (def_block_size). Change to get and
added one more timeout variable see:
http://www.rubydoc.info/gems/librex/Rex%2FIO%2FStream:def_block_size
and
http://www.rubydoc.info/gems/librex/Rex%2FIO%2FStream:get_once
and
http://www.rubydoc.info/gems/librex/Rex%2FIO%2FStream:get
 2017-10-13 12:41:11 -05:00
Metasploit 88585a5cfd Bump version of framework to 4.16.12 2017-10-13 10:03:48 -07:00
bigendiansmalls e5e9c7ccd6 Fixed ftp.rb so it closes all data sockets 
ftp.rb was doing a shutdown without a close on data
(not command) sockets.  This can cause CLOSE_WAIT
for extended periods in certain circumstances-ending
only when msf itself is closed.
 2017-10-13 10:09:43 -05:00
Brent Cook e209256d62 ensure we do autoruns for all session types 2017-10-12 23:11:58 -05:00
William Vu bf2fb7051a Fix session compatibility check for post modules 2017-10-12 11:57:11 -05:00
itsmeroy2012 a0abffb6c4 Adding functionality of StagerRetryWait and StagerRetryCount 2017-10-12 22:25:00 +05:30
William Vu f556a5f805 Add compatible session types to post module info 2017-10-12 11:41:02 -05:00
itsmeroy2012 374c139d33 Increasing the functionality of the nodejs shell_reverse_tcp payload 2017-10-12 19:05:59 +05:30
bwatters-r7 294230c455 Land #8509, add Winsxs bypass for UAC 2017-10-11 16:24:52 -05:00
William Webb 84fe0847bf Land #9074, Add prints and error checking to HTTP CmdStagers 2017-10-11 14:27:52 -05:00
William Vu 27876a91d3 Add prints and better checking to HTTP CmdStagers 
Admittedly, this code is more convoluted than it needs to be.
 2017-10-11 14:01:56 -05:00
Jeffrey Martin b76c1f3647 remove invalid 'client' object reference in nodejs 
fix #9063 by removing invalid object reference introduced in PR #8825
 2017-10-11 11:09:28 -05:00
Bradley Landherr bdc00ef2df Removing unecessary comment 2017-10-11 06:34:09 -07:00
Bradley Landherr 8dee369eb7 Fixing the -f option, removing reference to undefined 'path' variable & get_file_mace already returns a 'Time' object instance 2017-10-11 06:28:03 -07:00
James Barnett 31bb0ff068 More typo 2017-10-10 15:29:15 -05:00
Adam Cammack 88f53352c7 Land #9056, Check for /etc/issue before reading 2017-10-10 15:05:27 -05:00
James Barnett 35533cd401 Another Typo 2017-10-10 14:01:23 -05:00
James Barnett 2002697be7 Typo 2017-10-10 13:58:41 -05:00
James Barnett 4c164fafb0 WIP: proxy credentials 2017-10-10 13:52:30 -05:00
Jeffrey Martin 57afc3b939 Land #9044, Address generation issues with pure PSH payloads 2017-10-10 10:40:33 -05:00
h00die bf731b4f5e look before leap issues 2017-10-09 14:27:09 -04:00
Adam Cammack 436b72d4cc Land #9023, Add tab completion to the edit command 2017-10-09 11:37:12 -05:00
William Vu 27dcc162b2 Revert to Vim because ed is the standard editor 
https://www.gnu.org/fun/jokes/ed-msg.html
 2017-10-09 11:34:45 -05:00
William Webb 14308fb77d Land #9045, Copy original request ID into TLV response 2017-10-09 10:58:02 -05:00
bwatters-r7 fc5ab96ad6 Merging to prep for testing 
Merge branch 'master' of github.com:rapid7/metasploit-framework into upstream-master
 2017-10-09 10:31:30 -05:00
bwatters-r7 7df18e378d Fix conflicts in PR 8509 by mergeing to master 2017-10-09 10:30:21 -05:00
James Barnett 56e95f15c9 Land #9024, fix bug when manually adding loot 
cmd_loot was throwing a stack trace when the host was not properly defined.
This fixes it to give a useful error message.
 2017-10-06 16:02:12 -05:00
Jeffrey Martin d0a1fb6019 tlv response to ID based request with original ID 
When a tlv response is created the request ID being responded to
needs to be copied into response created.
 2017-10-06 13:58:38 -05:00
William Webb d9e0d891a1 Land #9010, Remove checks for hardcoded SYSTEM account name 2017-10-06 13:42:18 -05:00
RageLtMan 124a1531f4 Clean up powershell exec string 
The scriptblock invocation is already coming from Rex, so there's
no need to re-wrap the executed code in more of the same.
 2017-10-06 13:19:36 -04:00
Metasploit 4acef04e0d Bump version of framework to 4.16.11 2017-10-06 10:01:51 -07:00
James Barnett 0dbfc9d447 WIP: Drop session objects before JSON conversion 
The session object is not intended to be store in the DB.
There are a ton of subobjects and unneeded data that causes the JSON conversion
to hang or fail with 'stack level too deep' errors.
 2017-10-06 11:43:01 -05:00
RageLtMan 9afdde2938 Address generation issues with pure PSH payloads 
Powershell payloads were generating using the :generate method
mixed in from Payload::Windows::Exec which is a binary payload
mixin.

Address the breakage by implementing a generate method which simply
outputs the script code produced by the module with no additional
content prepended or appended.

While here, cleanup the commandline generation for the script being
produced by having Rex do it (this permits changes made in Rex to
benefit all consumers).

As a bonus, drop the IEX invocation since it'll trip up AMSI and
upgrade to the scripblock execution semantic.

Credit for finding this little gem goes to bperry - i dont usually
use the native powershell command shells, and managed to miss this
for a long time. Thanks boss.

Testing:
  Local in pry

@bperry: Could you test and ping me back if this is right?
 2017-10-06 12:32:52 -04:00
Brent Cook 809d0f79a1 Land #9026, Fix cache invalidation bug in tab completion 2017-10-05 16:41:00 -05:00
Brent Cook b7e209a5f3 Land #9033, Geolocate API update 2017-10-05 16:39:09 -05:00
Tim e534d3cdc8 fix transport and sleep commands on java 2017-10-04 10:36:01 +08:00
James Barnett 08b62db061 Pass loot contents over the API and write file 2017-10-03 12:31:57 -05:00
William Vu 5b9a4d73ee Readd hostless loot display 
In the chance event someone actually managed to store it.
 2017-10-02 23:31:44 -05:00
William Vu 403b5e2fa8 Move TARGET check into option_values_payloads 2017-10-02 23:22:42 -05:00
h00die fc66683502 fixes #8928 2017-10-01 19:49:32 -04:00
William Vu 9941097a5c Remove extraneous else 2017-09-29 19:01:04 -05:00
William Vu e8d0f2dde0 Fix missing message for vprint_* in AuthBrute 2017-09-29 18:51:35 -05:00
William Vu 6de986bd70 Fix cache invalidation bug in tab completion 
We use active_module instead of cmd_use to invalidate @cache_payloads,
since the ivar is no longer shared between cmd_set and cmd_use.

Fixes #8483. See #7655.
 2017-09-29 18:01:50 -05:00
William Vu 0723477b49 Fix nil bug in loot -a and nix hostless loot 
Apparently you can't actually store hostless loot.
 2017-09-29 16:16:16 -05:00
James Barnett 49f5256f88 Make session_events retrievable from the API 2017-09-29 16:04:17 -05:00