adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
50,629 Commits 27 Branches 1,043 Tags
c48a6ddbdfc02bf92b8d4e247dbe89bdfba4e821
Commit Graph

564 Commits

Author SHA1 Message Date
Jeffrey Martin 5cf97fd09b remove nolonger used variable 2019-01-31 13:05:02 -06:00
Jeffrey Martin 35ec947c17 remove is_server/is_client and app search term 2019-01-31 12:14:25 -06:00
James Barnett b98133cded Dont assign unique file name when theres no file on disk 2019-01-25 16:36:17 -06:00
James Barnett 27a0cbfcab Rename file on disk when updating path attribute 2019-01-25 13:34:14 -06:00
James Barnett 4b87d54430 Add comment explaining why we prevent loot.data update 2019-01-16 15:29:27 -06:00
James Barnett fd6527bac8 Prepend loot filenames with unique string 
This should help prevent accidentally overwriting files with the same name
 2019-01-16 15:20:41 -06:00
James Barnett d6462fed63 Dont allow users to update loot.data 2019-01-16 10:01:22 -06:00
James Barnett 65f127a66f Land #11222, Display error when update operation has invalid fields 2019-01-10 11:33:22 -06:00
Erin Bleiweiss 0435d7e1d6 Return the updated objects 2019-01-10 11:04:42 -06:00
Erin Bleiweiss 5055e421f5 Add ! to cred update 2019-01-10 10:56:28 -06:00
Erin Bleiweiss 0ad89528ea Update pattern for creds 2019-01-10 10:55:36 -06:00
Brent Cook f125526e09 Land #11207, implement db_import for web service 2019-01-10 10:28:29 -06:00
Matthew Kienow 84a8c9b638 Minor method comment change 2019-01-08 14:02:40 -05:00
Matthew Kienow d677eb16a9 Enhance session_events query 2019-01-08 14:02:32 -05:00
James Barnett 466b0004e1 Land #11163, add API endpoint for retrieving Mdm::Events 2019-01-08 09:26:53 -06:00
Erin Bleiweiss cfa22bb4ec Exclude key from VulnDetail update 2019-01-07 16:33:50 -06:00
Erin Bleiweiss 771469f4cd Update all Mdm::xx.update() instances 2019-01-07 16:24:13 -06:00
Erin Bleiweiss 6641c606b2 Add support for db import from remote data service 2019-01-07 14:32:27 -06:00
James Barnett 1b29e17827 Dont array wrap refs 2019-01-04 15:10:21 -06:00
James Barnett b875d391fc WIP: updating ref lookup based on code review comments 2019-01-04 15:10:20 -06:00
James Barnett e9931fa70e Fix bug when updating Mdm::Vuln.refs 2019-01-04 15:10:19 -06:00
Matthew Kienow 8361dab983 Minor method comment change 2018-12-27 21:57:31 -05:00
Brent Cook 66505790f9 Land #11179, Replace Sysrandom with Ruby default SecureRandom 2018-12-27 11:33:29 -06:00
Matthew Kienow ebc7a3a315 Replace sysrandom with ruby default securerandom 2018-12-26 13:40:44 -05:00
Matthew Kienow a448b26f73 Remove unnecessary argument default value 2018-12-21 22:13:52 -05:00
Matthew Kienow 5e971132f3 Enhance events method to fully query events 2018-12-21 22:07:43 -05:00
Matthew Kienow eec7a3dafc Remove debug code 2018-12-14 13:33:16 -05:00
Matthew Kienow a683cedcce Enhance race condition workaround in report_host 2018-12-14 12:28:16 -05:00
Matthew Kienow b6cdf7aa9d Add update_session method 2018-12-14 12:04:55 -05:00
Brent Cook 9e110eb9fc Land #10940, add default service mapping to imports 2018-12-06 21:04:05 -06:00
Matthew Kienow 4cc9959e3f Move MSF API App and associated servlets 
The modules interact with the DbManager, however, are not a part of it
and belong in a more meaningful location for web services.
 2018-11-19 18:46:15 -05:00
Matthew Kienow 691b9276a6 Fix issue when re-establishing DB connection 2018-11-15 21:00:19 -05:00
Jeffrey Martin d2a78cecd0 improvements to code commente and floe 2018-11-12 17:31:43 -06:00
Jeffrey Martin 5ba44ff12d add default service mapping to imports 2018-11-08 18:14:22 -06:00
Jeffrey Martin efeacf8666 ensure os_flavor can be supplied for no Windows OS 2018-10-23 12:22:57 -05:00
Matthew Kienow 0fd98d5eaa Add set_raw_response method 2018-09-20 17:31:06 -04:00
William Vu 9b3e0d8306 Add additional root tags for GPP XML 
Finally ran through all the samples and cross-referenced with MS14-025.

https://msdn.microsoft.com/en-us/library/cc232650.aspx
https://support.microsoft.com/en-us/help/2962486/ms14-025-vulnerability-in-group-policy-preferences-could-allow-elevati
 2018-08-22 16:48:33 -05:00
William Vu 2891255549 Clarify what is being imported currently 
Since the parser is focused on creds.
 2018-08-22 15:53:19 -05:00
William Vu 1e4eb0eae0 Revert report_note, since it added nothing 
A bit of misunderstanding. We're in agreement that loot was enough.
 2018-08-22 14:34:09 -05:00
William Vu 6fa04950ee Store parsed GPP data as a note 
And refactor slightly.
 2018-08-22 14:19:50 -05:00
William Vu b1c633faf6 Add Group Policy Preferences support to db_import 
And take the Jaden Smith approach, as @busterb quipped to me. :)

This one's a little weird, since you normally import scans into
Metasploit, but now that creds are first-class in the database, it makes
more sense to be able to import them.

Currently, your alternatives are post/windows/gather/credentials/gpp,
which requires a session, and auxiliary/scanner/smb/smb_enum_gpp, which
requires a network scan.
 2018-08-21 23:44:39 -05:00
Erin Bleiweiss 66b761db15 Add doc for user operations 2018-08-14 13:19:56 -05:00
Erin Bleiweiss f7a0b201d7 Add authorization support for auth/bearer tokens 2018-08-14 11:51:15 -05:00
James Barnett 201b91f9d7 Land #10410, add script for setting up and managing data services 
The msfdb script allows you to create, delete, start, and
stop local and remote data services. The database backend requires
PostgreSQL and the webservice provides a REST API to interact with it.
 2018-08-07 18:25:51 -05:00
Matthew Kienow fbc9d3ee83 Add print methods from HttpDBManagerService 2018-08-02 12:38:52 -04:00
Adam Cammack 54abc65c55 Land #10406, Fix notes service, port, protocol 2018-08-01 14:39:34 -05:00
Erin Bleiweiss 3e8efea57a Merge branch 'conform_to_api_standards' into exploit-query 
Prepare for new JSON format.
 2018-07-31 14:48:37 -05:00
William Vu 2bca1ade05 Normalize note proto better and actually use it 2018-07-31 11:51:34 -05:00
James Barnett 2ef639f99e opts[:id] could sometimes be an integer, so cast to string 2018-07-31 10:58:01 -05:00
James Barnett 7dc14f59f4 We're using named parametes now 2018-07-30 15:38:48 -05:00