d31ffa27d3
Add and use a new kerberos CCache model definition
2022-07-01 11:57:30 -04:00
e40e835fd8
Land #16706 , Kerberos login enhancements
2022-06-30 14:51:30 +01:00
997f9b92d9
Changes from code review
2022-06-24 09:33:57 +10:00
96046f9aec
Remove unnecessary freeze calls
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com >
2022-06-24 08:36:44 +10:00
2553bae018
Report correct password when clock is wrong or password has expired
2022-06-23 11:33:45 +10:00
3e33e2694d
Include information on whether account is disabled or locked.
...
We can do this more precisely for Windows' implementation of Kerberos
by using the undocumented PA-PW-SALT entry.
2022-06-23 10:46:25 +10:00
8d1d2d5aad
Fix bugs from #16685
2022-06-23 10:20:59 +10:00
a4a0fc3028
Changes from code review.
...
Use kwargs instead of default values for rarer crypto args.
Revert case-sensitivity change; we'll leave krb5 on Linux til later.
More constants
2022-06-22 16:03:36 +10:00
15446fd173
Incorporated new encryption methods into login scanner, including negotiating
2022-06-22 09:36:25 +10:00
19b62a5af6
Support several new encryption types for Kerberos.
...
Supports DES-CBC-MD5, DES3-CBC-SHA1, AES128, AES256
2022-06-22 09:13:33 +10:00
f8901a8b17
Add Kerberos LoginScanner support
2022-06-20 16:38:32 +01:00
affc5bc294
Fix Kerberos flags decoding logic
2022-06-09 12:22:20 +01:00
a983bbd8ba
Land #16615 , Solicited multicast-address creation bugfix
2022-06-07 14:41:52 -05:00
8ccc1ebf91
Land PR #16628 , Log ntlm_session hashes
...
This PR fixes the logging and storing of
NTLM session hashes
2022-06-02 11:20:37 -04:00
6d3ccab1be
Land #16435 , add Microsoft SQL Server sqli support
2022-06-01 10:27:48 -05:00
dac355d9cf
Land #16492 , nfs_mount more intelligent mountability
2022-05-31 11:56:19 +02:00
b8cebe0dbe
nfs mount more intelligent
2022-05-30 09:47:00 -04:00
1e5f86703f
Report the correct JtR type
2022-05-27 10:16:02 -04:00
862c6a94a2
Log ntlm_session hashes too
...
Despite being called ntlm_session, these hashes are capable of being
cracked as the John 'netntlm' format. Additionally the format is
reported as NTLMv1-SSP in similar tools.
2022-05-27 10:07:39 -04:00
5f5444936f
Land #16488 , Windows Task Scheduler Mixin
2022-05-25 12:37:03 -04:00
d225d4663c
Land #16413 , update local exploit suggester
2022-05-25 13:24:11 +01:00
2bf0107865
Update the cmd_exec_with_result documentation
2022-05-24 17:22:07 +02:00
c33f284786
change from lambda to line by line logic
2022-05-24 16:24:15 +03:00
7f9ead454e
bugfix of improper solicited address creation
2022-05-23 15:25:53 +03:00
7103a619c2
Add validation opts, tables, custom stylers to exploit suggester
2022-05-19 16:22:47 +01:00
5fd18ef864
Fixes from review
2022-05-19 14:54:07 +02:00
5d637b5292
Small fixes and improvements found while writing specs
2022-05-18 15:49:57 +02:00
dba4c25a18
Fix #check_compatibility
2022-05-17 17:04:47 +02:00
fb85d060ec
Update TaskScheduler after first review
...
- Now, it exposes 4 methods to manage scheduled tasks: `#task_create`,
`#task_start`, `#task_delete` and `#task_query`
- Adds `#check_compatibility` to check the OS version and make sure
`schtasks.exe` and `reg.exe` options are compatible
- Adds `#log_and_print`to print log messages on the console (using
`vprint_*` methods) and in the MSF logs at the same time
- `#get_system_privs` now takes care of checking if the session is a
Meterpreter session and if it has loaded the appropriate extension
- Adds `#run_one_off_task` to run a command on a remote host by using
another scheduled task
- Adds `#add_reg_key_value` to restores the Security Descriptor registry
key value to unhide the task
2022-05-17 14:52:47 +02:00
c37387de78
Add #cmd_exec_with_result in lib/msf/core/post/common.rb
2022-05-17 14:52:47 +02:00
14cd7bc335
Add task scheduler mixin and update persistence_exe and vss_persistence modules
2022-05-17 14:52:47 +02:00
19a9ff1198
Update a couple of modules for the new SMB server
2022-05-16 14:39:45 -04:00
e0b9002238
Fix an SMB relay bug
2022-05-16 14:39:45 -04:00
f14f8da1df
Use the new thread_factory
2022-05-16 14:39:45 -04:00
b79b550d6c
Centralize the log adapter
...
This should eventually be updated to map the levels to the framework
logger and appropriate module-print_* function.
2022-05-16 14:39:45 -04:00
7c15b144c4
Update the SMB capture server
2022-05-16 14:39:44 -04:00
22993e910e
Move server code into the server mixin
2022-05-16 14:39:44 -04:00
c39fd87073
Finish removing unneeded server code
2022-05-16 14:39:44 -04:00
475f6eee8c
Capture hash when serving files over SMB
2022-05-16 14:39:44 -04:00
d740786211
Add the on_client_connect callback
...
Also update the group_policy_startup module.
2022-05-16 14:39:44 -04:00
317516d90f
Enable guest access
2022-05-16 14:39:44 -04:00
882bcf08f7
Fix bugs when stopping the service
2022-05-16 14:39:44 -04:00
09dc65eb6a
Remove the FILE_CONTENTS datastore option
...
None of the 14 modules use this option, they all deregister it.
2022-05-16 14:39:44 -04:00
63af7cdef7
Initial update to the RubySMB share server
2022-05-16 14:39:44 -04:00
013a819cff
Out with the old
2022-05-16 14:39:44 -04:00
879591f686
Land #16499 , Specify peer hostname for SNI
2022-05-16 14:21:57 -04:00
0196b6fa75
Land #16555 , move duplicated retry_until_truthy code into centralized location
2022-05-16 18:31:57 +01:00
db694efd36
Improve relative redirect handling
2022-05-16 12:03:24 +01:00
1959dac1df
Reformat comments a bit and fix a typo.
2022-05-13 19:14:00 -05:00
cb26d02518
Treat space = 0 as a special case
...
Space = 0 is a special case implying that the smallest payload possible
should be used. It's used by msfvenom when the --smallest flag is set.
It should not cause Metasploit to raise an exception.
Fixes #16471
2022-05-13 16:18:08 -04:00
Spencer McIntyre