adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
32,263 Commits 27 Branches 1,043 Tags
a1b4cf375fff7140e4b028248c8a044c8a02efd2
Commit Graph

465 Commits

Author SHA1 Message Date
David Maloney 1684bfec9e add missing data to loginscanner results 
the chef web ui and symantec web gateway
loginscanners do not save the target(host/port/proto) info
in the Result object. This can cause modules to break as they
expected the Result to contain that information

MSP-12499
 2015-04-02 13:53:45 -05:00
David Maloney 103373a7eb add back accidentally remvoed error 
accidentally dropped Errno::ETIMEDOUT from the exception
handling

MSP-12389
 2015-03-30 11:19:28 -05:00
David Maloney 441feec360 fix missing exception handling 
a few of our http login scanners needed to
handle a couple of other exception classes
for when network communication errors occur

MSP-12389
 2015-03-27 12:31:14 -05:00
sinn3r 6e3e696262 Use symantec_web_gateway as an example of using send_request 2015-03-25 10:55:46 -05:00
sinn3r 60f1d9c961 More yard doc 2015-03-25 10:50:11 -05:00
sinn3r 9b9e157e84 More yard doc 2015-03-25 02:26:06 -05:00
sinn3r ded500a9ae Use send_request 2015-03-25 02:13:40 -05:00
sinn3r 6984e5234e Fix a typo 2015-03-25 02:01:25 -05:00
sinn3r 8a8d6fb5ab Some more changes 2015-03-25 02:00:23 -05:00
sinn3r 855cadc6b1 Rescue more exceptions 
The attempt_login method is rescuing these exceptions, so maybe
I should do the same.
 2015-03-25 01:48:37 -05:00
sinn3r 8f95624bf7 Add #send_request to Metasploit::Framework::LoginScanner::HTTP 2015-03-25 01:40:02 -05:00
sinn3r bef67d773c Don't break untested_payloads.rb 2015-03-24 00:54:11 -05:00
jvazquez-r7 1226b3656f Land #4945, @wchen-r7's login scanner for Symantec web gateway 2015-03-20 14:44:05 -05:00
jvazquez-r7 62871255b0 Match class and file names 2015-03-20 14:25:20 -05:00
jvazquez-r7 179177d5c0 Fix typo 2015-03-20 13:27:41 -05:00
sinn3r 608bf55b79 Update 2015-03-17 11:54:38 -05:00
sinn3r 27b6fbb648 I don't need :ssl and :ssl_version 2015-03-17 11:31:38 -05:00
Meatballs 69453c1955 Missing ? 2015-03-17 12:00:58 +00:00
Meatballs d18224e3cb Correct capitilzation of GitLab 2015-03-17 11:32:14 +00:00
Meatballs 25840c41cf Rubocop 2015-03-17 11:21:05 +00:00
Meatballs f4a1e981ab Add gitlab login scanner 2015-03-17 11:19:23 +00:00
sinn3r ff58f7d270 Add Symantec Web Gateway Login Module 2015-03-17 02:51:57 -05:00
David Maloney 75c075e32b properly anchor regexes 
duh
 2015-03-03 19:15:29 -06:00
David Maloney 64490c746a CredCollection now knows about postgres_md5 
the cred collection can now identify a postgres_md5 hash string
and set the type on the Metasploit::Framework::Credential object
appropriately

MSP-12244
 2015-03-03 16:43:52 -06:00
David Maloney c836078292 allow credentials to have a type of postgres_md5 
add postgres_md5 to the type validation on
Metasploit::Framework::Credential to account
for the new Private type

MSP-12244
 2015-03-03 16:35:30 -06:00
David Maloney aa4038d539 allow the postgres librry to take an md5 hash 
allow the raw md5 password hash to be passed in instead of
a password for md5 authentication in postgres. Adds an extra exception
class for when an md5 hash is given but the server expects
a different form of authentication.

MSP-12244
 2015-03-03 13:16:46 -06:00
William Vu 8c5ff858d0 Land #4812, hp_sys_mgmt_login configurable URIs 2015-02-23 19:04:14 -06:00
HD Moore 97ccf7e23f Fixes SSL support for http_login (variable shadowing) 2015-02-23 14:00:29 -06:00
sinn3r c39d6e152e Land #4819, Normalize HTTP LoginScanner modules 2015-02-23 11:43:42 -06:00
HD Moore c60e2584bf Comment typo 2015-02-22 02:51:18 -06:00
HD Moore 888c718f40 Fix two typos 2015-02-22 02:45:50 -06:00
HD Moore 8e8a366889 Pass Http::Client parameters into LoginScanner::Http (see #4803) 2015-02-22 02:26:15 -06:00
sinn3r bf2be7964b Fix #4592, print_* methods used in LoginScanner modules 
Fix #4592
 2015-02-20 22:46:21 -06:00
sinn3r 40c237f507 Fix #3982, allow URIs to be user configurable 
Fix #3982
 2015-02-20 21:54:03 -06:00
David Maloney ffa6550aec Land #4787, HD's new Zabbix and Chef LoginScanners 
Lands the new LoginScanners HD wrote for Zabbix
and the Chef WebUI
 2015-02-18 14:51:16 -06:00
David Maloney 804db0ff0c add leixcal sorting to methods 
lexical sort the new methods except for
msf module entrypoint methods which should always be at
the top
 2015-02-18 14:50:33 -06:00
HD Moore 2847507f03 Add a chef brute force module 2015-02-17 23:49:57 -06:00
HD Moore 27d5ab45b4 Add a zabbix brute force module 2015-02-17 22:56:08 -06:00
HD Moore 85fd139ab0 Add missing context and a normalize_uri helper method 2015-02-17 22:55:53 -06:00
HD Moore 16932372db Calls to Rex::Proto::Http::Client.new were passing in empty context 2015-02-17 20:44:37 -06:00
HD Moore 8d982e3286 Pass the framework/module down into LoginScanner 2015-02-07 11:50:30 -06:00
HD Moore 985641dbc4 Add missing Context, fixes #4723 2015-02-07 11:27:57 -06:00
Christian Catalan 7d1090baca Convert #find(:all) to #where or #all 2015-02-01 00:31:58 -06:00
William Vu 8f54e4d611 Implement "-" for msfconsole -r from stdin 
More predictable than /dev/stdin, which is usually a symlink to
/proc/self/fd/0 or /dev/fd/0, but the feature is not guaranteed to be
present.

This isn't *terribly* useful, but it can be. -x is recommended, but it
doesn't allow for ERB directives. This is mostly for hax.
 2015-01-29 19:26:56 -06:00
Jon Hart 69f03f5c5d Move ACPP default port into Rex 2015-01-12 19:43:57 -08:00
Jon Hart e9557ffe58 Simplify module in prep for some authbrute cleanups 2015-01-12 13:08:12 -08:00
Jon Hart 97f5cbdf08 Add initial Airport ACPP login scanner 2015-01-12 13:08:12 -08:00
Meatballs bdbb26ba31 Land #4540, resolves #4532, honour DB_ALL_* options 2015-01-07 21:12:23 +00:00
David Maloney 5d68d48ca5 Land #4385, fixes bruteforce_speed validator 
bruteforce_speed validator now accepts nil
 2015-01-07 12:09:25 -06:00
David Maloney 702511dbc5 respect DB_ALL_USERS & DB_ALL_PASS 
fix last few things in authbrute
and make the CredentialCollections understand the
additional seperate components

MSP-11986
 2015-01-07 11:41:41 -06:00