d31ffa27d3
Add and use a new kerberos CCache model definition
2022-07-01 11:57:30 -04:00
e40e835fd8
Land #16706 , Kerberos login enhancements
2022-06-30 14:51:30 +01:00
997f9b92d9
Changes from code review
2022-06-24 09:33:57 +10:00
96046f9aec
Remove unnecessary freeze calls
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com >
2022-06-24 08:36:44 +10:00
2553bae018
Report correct password when clock is wrong or password has expired
2022-06-23 11:33:45 +10:00
3e33e2694d
Include information on whether account is disabled or locked.
...
We can do this more precisely for Windows' implementation of Kerberos
by using the undocumented PA-PW-SALT entry.
2022-06-23 10:46:25 +10:00
8d1d2d5aad
Fix bugs from #16685
2022-06-23 10:20:59 +10:00
a4a0fc3028
Changes from code review.
...
Use kwargs instead of default values for rarer crypto args.
Revert case-sensitivity change; we'll leave krb5 on Linux til later.
More constants
2022-06-22 16:03:36 +10:00
15446fd173
Incorporated new encryption methods into login scanner, including negotiating
2022-06-22 09:36:25 +10:00
19b62a5af6
Support several new encryption types for Kerberos.
...
Supports DES-CBC-MD5, DES3-CBC-SHA1, AES128, AES256
2022-06-22 09:13:33 +10:00
f8901a8b17
Add Kerberos LoginScanner support
2022-06-20 16:38:32 +01:00
affc5bc294
Fix Kerberos flags decoding logic
2022-06-09 12:22:20 +01:00
a983bbd8ba
Land #16615 , Solicited multicast-address creation bugfix
2022-06-07 14:41:52 -05:00
1e5f86703f
Report the correct JtR type
2022-05-27 10:16:02 -04:00
862c6a94a2
Log ntlm_session hashes too
...
Despite being called ntlm_session, these hashes are capable of being
cracked as the John 'netntlm' format. Additionally the format is
reported as NTLMv1-SSP in similar tools.
2022-05-27 10:07:39 -04:00
c33f284786
change from lambda to line by line logic
2022-05-24 16:24:15 +03:00
7f9ead454e
bugfix of improper solicited address creation
2022-05-23 15:25:53 +03:00
19a9ff1198
Update a couple of modules for the new SMB server
2022-05-16 14:39:45 -04:00
e0b9002238
Fix an SMB relay bug
2022-05-16 14:39:45 -04:00
f14f8da1df
Use the new thread_factory
2022-05-16 14:39:45 -04:00
b79b550d6c
Centralize the log adapter
...
This should eventually be updated to map the levels to the framework
logger and appropriate module-print_* function.
2022-05-16 14:39:45 -04:00
7c15b144c4
Update the SMB capture server
2022-05-16 14:39:44 -04:00
22993e910e
Move server code into the server mixin
2022-05-16 14:39:44 -04:00
c39fd87073
Finish removing unneeded server code
2022-05-16 14:39:44 -04:00
475f6eee8c
Capture hash when serving files over SMB
2022-05-16 14:39:44 -04:00
d740786211
Add the on_client_connect callback
...
Also update the group_policy_startup module.
2022-05-16 14:39:44 -04:00
317516d90f
Enable guest access
2022-05-16 14:39:44 -04:00
882bcf08f7
Fix bugs when stopping the service
2022-05-16 14:39:44 -04:00
09dc65eb6a
Remove the FILE_CONTENTS datastore option
...
None of the 14 modules use this option, they all deregister it.
2022-05-16 14:39:44 -04:00
63af7cdef7
Initial update to the RubySMB share server
2022-05-16 14:39:44 -04:00
013a819cff
Out with the old
2022-05-16 14:39:44 -04:00
db694efd36
Improve relative redirect handling
2022-05-16 12:03:24 +01:00
739c0fcad1
Specify peer hostname for ssl connections
2022-05-13 13:55:43 +01:00
c0c02e56ba
Land #16430 , Improve kerberos user enum module
2022-05-13 12:17:26 +01:00
a76600f4a9
Land #16462 , add support for armle/aarch64 architectures
2022-05-03 15:48:50 +01:00
02d911e655
gdb_server_exec: Cleanup and add support for armle/aarch64 architectures
2022-04-25 19:25:06 +00:00
4417a335ff
Land #16379 , Make SSH defaults widely used
...
Refactored a number of modules to use ssh_client_defaults
2022-04-19 22:08:45 -07:00
0d3f50522d
Land #16318 Add support to old KEX algorithms
...
This commit fix the issue #16138 by adding
support to old key exchange algorithms in
the net/ssh lib by defining the
append_all_supported_algorithms to true.
2022-04-14 11:29:39 -07:00
04f042ae47
Land #16221 , a wordpress_scanner bug fix
...
Adjust wordpress_url_rest_api definition to support
sites that don't place REST API under /index.php/
2022-04-13 14:22:17 -07:00
0eb9d68319
Added support to depecreted key exchange algorithms
2022-04-13 18:53:50 +02:00
a53be3184a
Improving error handling of Kerberos
2022-04-08 20:48:10 +01:00
a82c936613
Land #16373 , Add initial ruby 3.1 support
2022-04-07 16:44:02 +01:00
283dda8172
Land #16386 , Exploit::Remote::SocketServer: Wait if service is running
2022-03-28 03:41:06 +00:00
c4b6eb0165
Fix java rmi service undefined method wait
2022-03-27 17:01:43 +01:00
79783bbe9b
Checking if datastore is defined
2022-03-25 16:32:58 +01:00
76ede9ef8f
Add ruby 3.1 support
2022-03-24 21:59:02 +00:00
ee8618e68a
Handling undefined local variable
...
Auxiliary failed: NameError undefined local variable or method `datastore'
for #<Metasploit::Framework::LoginScanner::SSH
2022-03-24 22:57:27 +01:00
bf88b7f618
Land #16325 - Replace IO read on binary files with File binread
2022-03-24 10:08:40 -05:00
ff0ecfa49e
Display the HTTP port when necessary
2022-03-21 20:11:31 -04:00
aca272dd76
Always return a comm from #_determine_server_comm
...
Instead of returning nil from Rex::Socket::SwitchBoard.best_comm, return
the local comm which Rex::Socket will defer to anyways.
2022-03-21 11:47:56 -04:00
Spencer McIntyre