d6e9e8d3bb
Land #17735 , fix some incorrect YARD parameters
2023-03-22 15:20:12 +00:00
9e1be62f06
Land #17462 , add WhatsUp Gold credential extractor
2023-03-17 16:44:17 -05:00
f62994b4c0
Add Gather Wowza Streaming Engine Credentials
2023-03-09 01:31:23 +11:00
08f07eccb6
Fix initial incorrect parameters in YARD documentation
2023-03-05 20:15:14 -06:00
26d9026fc2
Fix a filter error
...
When FILTER was nil, the check would fail causing `()` to be appended to
the LDAP query filter which would cause it to fail.
2023-02-24 13:51:58 -05:00
9a874c352b
Added missing space in fail_with statement
2023-02-23 20:57:19 -05:00
eec73fe394
add module changes
2023-02-23 16:34:43 -06:00
5e2f0965f3
Changed print_bad to fail_with
2023-02-23 17:33:52 -05:00
8db255288b
Spelling
2023-02-23 16:40:09 -05:00
2ed89dda7e
Added nc and python cmd techniques
2023-02-23 16:21:09 -05:00
10552cbc87
msftidy and notes
2023-02-22 21:48:35 -05:00
9ff4cdfd5c
updated w/ socat method
2023-02-22 21:40:26 -05:00
55371f9363
removing to_str
2023-02-22 20:36:55 -05:00
bf5919f461
finisehd msftidy/rubocop fixs
2023-02-19 19:49:39 -05:00
fc5a38e870
Simplifying the module
2023-02-19 19:49:39 -05:00
1f45b1e4b7
initial commit of disable_clamav module
2023-02-19 19:49:39 -05:00
b56213b168
Update linting on post modules
2023-02-08 14:12:43 +00:00
11c886b30f
Land #17616 , Run rubocop on post modules
2023-02-08 14:09:16 +00:00
a81a71c5df
Run rubocop on post modules
2023-02-08 13:47:34 +00:00
433bafdccf
Add missing module notes for stability reliability and side effects
2023-02-08 11:45:17 +00:00
d1e68e634a
Add row indicator to show targets command
2023-02-02 16:12:19 +00:00
c90a6f9068
Land #17406 , veeam_credential_dump post module
...
Veeam Backup & Recovery and Veeam ONE Monitor credential
capture post module for versions 9.x and 11.x.
2023-02-01 17:29:05 -05:00
d0feedadbf
Refine whatsupgold_credential_dump
...
Added CVE info to the References section.
Modified the registry routines to add sanity around x86 vs. x64 arch.
2023-01-18 15:47:26 -05:00
8ed4f59c60
veeam_credential_dump refinement
...
Fixed stupid typo in markdown.
Fixed a bug in the export code that prevented the disposition column
from being exported.
2023-01-18 14:27:28 -05:00
eddac9321c
Merge 6.2.36 master into kerberos feature branch
2023-01-13 17:31:02 +00:00
29968fb76e
Land #17337 , Gather Dbeaver Password
2023-01-12 16:06:00 +01:00
f9b1c17c39
Fix exception handler logic and small improvements
2023-01-11 20:00:09 +01:00
ada6e73af6
Land #17341 , MinIO_Client Post Exploitation Credential Gatherer
2023-01-11 15:36:23 +01:00
43051a2811
Add missing curly bracket
2023-01-11 14:30:23 +01:00
6738ca2c43
Support multiple platforms
2023-01-11 18:04:29 +08:00
ce83086c00
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:31:42 +08:00
633d807dbc
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:29:13 +08:00
e00a86b6d6
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:28:26 +08:00
3dd794a97f
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:27:48 +08:00
8b6387867d
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:27:08 +08:00
243c57c1fe
Add whatsupgold_credential_dump post module
...
Add a post module for credential extraction from WhatsUp Gold instances
on Windows hosts. The module should theoretically decrypt ciphertext
from any version of WhatsUp Gold, although it has only been verified
working on WhatsUp Gold versions 11.0 through 22.0.
2023-01-10 15:50:53 -05:00
6ef38e305f
Support multiple platforms
2023-01-10 15:01:55 +08:00
5845c7cb1f
Update modules/post/windows/gather/credentials/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-10 09:22:50 +08:00
ba5b100fe5
Update modules/post/windows/gather/credentials/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-10 09:20:32 +08:00
499d1ccfd7
Refactor veeam_credential_dump
...
Changed the SQL queries for DB dump to explicit VARCHAR(4096) to get
around sqlcmd's 256-char column limit.
Refactored the BATCH_DPAPI functionality because I can't seem to let
this pattern go: now actually batches with byte threshold set by
advanced option.
Reduced clutter and redundancy.
Various tweaks and bug fixes.
Updated documentation.
2023-01-09 16:31:44 -05:00
3d9ea4492f
Fix up extra blank lines and make ticket type being saved clearer
2023-01-06 14:48:53 -06:00
d64c4b6e7e
Store the binary format of the ccache
...
update key to be correct
2023-01-06 14:48:53 -06:00
ccfc253eb8
Updates to get ccache in golden ticket
...
Fix incorrect reference
Use proper encoding
2023-01-06 14:48:52 -06:00
ff029842ce
Verify NT hash and store golden ticket as kirbi and ccache
2023-01-06 14:48:38 -06:00
4a1c75ae73
dbeaver_store_config
2023-01-06 14:55:49 +08:00
5eae5068cc
update
2023-01-05 20:56:06 +08:00
615bba3d31
Update jenkins_gather.rb
...
blank? should be used instead of empty?
2022-12-27 19:31:49 -06:00
9cc8d41388
veeam_credential_dump post module revisions
...
Cleanup for initial PR.
2022-12-21 15:53:46 -05:00
6758c8313f
Land #17258 , Update sharphound
2022-12-21 14:04:09 +01:00
a6605d36a3
Land #17334 , enum_commands: Cleanup
2022-12-20 22:52:00 +00:00
adfoster-r7