d31ffa27d3
Add and use a new kerberos CCache model definition
2022-07-01 11:57:30 -04:00
8c3d7ff42f
Rename Thrift related definitions
...
These definitions are only used by one exploit. BinData registers the
class name globally meaning that the Header and Data types were being
defined here which conflicted with those needed for Kerberos.
2022-07-01 11:56:55 -04:00
e40e835fd8
Land #16706 , Kerberos login enhancements
2022-06-30 14:51:30 +01:00
4f650e7c93
Rename parameter
2022-06-28 08:12:56 +10:00
997f9b92d9
Changes from code review
2022-06-24 09:33:57 +10:00
96046f9aec
Remove unnecessary freeze calls
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com >
2022-06-24 08:36:44 +10:00
2cce4ac1c1
Fix unit tests
2022-06-23 16:55:30 +10:00
bcd30b9be8
Don't error if it's not 12, as this can occur on older systems
2022-06-23 11:52:55 +10:00
2553bae018
Report correct password when clock is wrong or password has expired
2022-06-23 11:33:45 +10:00
3e33e2694d
Include information on whether account is disabled or locked.
...
We can do this more precisely for Windows' implementation of Kerberos
by using the undocumented PA-PW-SALT entry.
2022-06-23 10:46:25 +10:00
8d1d2d5aad
Fix bugs from #16685
2022-06-23 10:20:59 +10:00
89187c1fa9
Land #16685 , Add missing Kerberos encryption types
2022-06-22 13:13:30 +01:00
e672fad870
Land #16689 , Update Kerberos to support host addresses in tickets
2022-06-22 12:52:17 +01:00
a4a0fc3028
Changes from code review.
...
Use kwargs instead of default values for rarer crypto args.
Revert case-sensitivity change; we'll leave krb5 on Linux til later.
More constants
2022-06-22 16:03:36 +10:00
15446fd173
Incorporated new encryption methods into login scanner, including negotiating
2022-06-22 09:36:25 +10:00
19b62a5af6
Support several new encryption types for Kerberos.
...
Supports DES-CBC-MD5, DES3-CBC-SHA1, AES128, AES256
2022-06-22 09:13:33 +10:00
f8901a8b17
Add Kerberos LoginScanner support
2022-06-20 16:38:32 +01:00
3f56f9891d
Update keberos to support host addresses in tickets
2022-06-18 04:16:36 +01:00
ac5a885f16
Land #16660 , Fix Kerberos flags decoding logic
2022-06-17 17:38:09 +01:00
5dd650fc76
Support decoding pa_data as part of kdc enc response
2022-06-15 20:46:45 +01:00
affc5bc294
Fix Kerberos flags decoding logic
2022-06-09 12:22:20 +01:00
a983bbd8ba
Land #16615 , Solicited multicast-address creation bugfix
2022-06-07 14:41:52 -05:00
6e9765992c
Fix smb named pipe pivot crash
2022-06-06 13:00:42 +01:00
e79161c236
Bump version of framework to 6.2.2
2022-06-02 12:05:08 -05:00
8ccc1ebf91
Land PR #16628 , Log ntlm_session hashes
...
This PR fixes the logging and storing of
NTLM session hashes
2022-06-02 11:20:37 -04:00
44a22ab720
Land #16640 , Patch LDAP for sychronous reads
2022-06-01 16:12:09 -05:00
6d3ccab1be
Land #16435 , add Microsoft SQL Server sqli support
2022-06-01 10:27:48 -05:00
dac355d9cf
Land #16492 , nfs_mount more intelligent mountability
2022-05-31 11:56:19 +02:00
b8cebe0dbe
nfs mount more intelligent
2022-05-30 09:47:00 -04:00
0c481ed9c9
Patch LDAP for synchronous reads
2022-05-27 10:57:28 -04:00
1e5f86703f
Report the correct JtR type
2022-05-27 10:16:02 -04:00
862c6a94a2
Log ntlm_session hashes too
...
Despite being called ntlm_session, these hashes are capable of being
cracked as the John 'netntlm' format. Additionally the format is
reported as NTLMv1-SSP in similar tools.
2022-05-27 10:07:39 -04:00
a1613d6070
Bump version of framework to 6.2.1
2022-05-26 12:04:57 -05:00
ba9ac52b2c
Land #16622 , Bump Metasploit version to 6.2.0
2022-05-26 11:59:09 -04:00
5f5444936f
Land #16488 , Windows Task Scheduler Mixin
2022-05-25 12:37:03 -04:00
d225d4663c
Land #16413 , update local exploit suggester
2022-05-25 13:24:11 +01:00
c4f004423e
Bump Metasploit framework version to 6.2.0
2022-05-25 12:32:58 +01:00
2bf0107865
Update the cmd_exec_with_result documentation
2022-05-24 17:22:07 +02:00
c33f284786
change from lambda to line by line logic
2022-05-24 16:24:15 +03:00
63dea932ad
Land #16481 , Update Msf::Exploit::Remote::SMB::Server::Share
2022-05-24 11:50:06 +02:00
7f9ead454e
bugfix of improper solicited address creation
2022-05-23 15:25:53 +03:00
a2dc366eb4
Bump version of framework to 6.1.44
2022-05-19 12:04:44 -05:00
7103a619c2
Add validation opts, tables, custom stylers to exploit suggester
2022-05-19 16:22:47 +01:00
5fd18ef864
Fixes from review
2022-05-19 14:54:07 +02:00
5d637b5292
Small fixes and improvements found while writing specs
2022-05-18 15:49:57 +02:00
dba4c25a18
Fix #check_compatibility
2022-05-17 17:04:47 +02:00
fb85d060ec
Update TaskScheduler after first review
...
- Now, it exposes 4 methods to manage scheduled tasks: `#task_create`,
`#task_start`, `#task_delete` and `#task_query`
- Adds `#check_compatibility` to check the OS version and make sure
`schtasks.exe` and `reg.exe` options are compatible
- Adds `#log_and_print`to print log messages on the console (using
`vprint_*` methods) and in the MSF logs at the same time
- `#get_system_privs` now takes care of checking if the session is a
Meterpreter session and if it has loaded the appropriate extension
- Adds `#run_one_off_task` to run a command on a remote host by using
another scheduled task
- Adds `#add_reg_key_value` to restores the Security Descriptor registry
key value to unhide the task
2022-05-17 14:52:47 +02:00
c37387de78
Add #cmd_exec_with_result in lib/msf/core/post/common.rb
2022-05-17 14:52:47 +02:00
14cd7bc335
Add task scheduler mixin and update persistence_exe and vss_persistence modules
2022-05-17 14:52:47 +02:00
19a9ff1198
Update a couple of modules for the new SMB server
2022-05-16 14:39:45 -04:00
Spencer McIntyre