436b72d4cc
Land #9023 , Add tab completion to the edit command
2017-10-09 11:37:12 -05:00
27dcc162b2
Revert to Vim because ed is the standard editor
...
https://www.gnu.org/fun/jokes/ed-msg.html
2017-10-09 11:34:45 -05:00
14308fb77d
Land #9045 , Copy original request ID into TLV response
2017-10-09 10:58:02 -05:00
56e95f15c9
Land #9024 , fix bug when manually adding loot
...
cmd_loot was throwing a stack trace when the host was not properly defined.
This fixes it to give a useful error message.
2017-10-06 16:02:12 -05:00
d0a1fb6019
tlv response to ID based request with original ID
...
When a tlv response is created the request ID being responded to
needs to be copied into response created.
2017-10-06 13:58:38 -05:00
d9e0d891a1
Land #9010 , Remove checks for hardcoded SYSTEM account name
2017-10-06 13:42:18 -05:00
4acef04e0d
Bump version of framework to 4.16.11
2017-10-06 10:01:51 -07:00
809d0f79a1
Land #9026 , Fix cache invalidation bug in tab completion
2017-10-05 16:41:00 -05:00
b7e209a5f3
Land #9033 , Geolocate API update
2017-10-05 16:39:09 -05:00
e534d3cdc8
fix transport and sleep commands on java
2017-10-04 10:36:01 +08:00
5b9a4d73ee
Readd hostless loot display
...
In the chance event someone actually managed to store it.
2017-10-02 23:31:44 -05:00
403b5e2fa8
Move TARGET check into option_values_payloads
2017-10-02 23:22:42 -05:00
fc66683502
fixes #8928
2017-10-01 19:49:32 -04:00
9941097a5c
Remove extraneous else
2017-09-29 19:01:04 -05:00
e8d0f2dde0
Fix missing message for vprint_* in AuthBrute
2017-09-29 18:51:35 -05:00
6de986bd70
Fix cache invalidation bug in tab completion
...
We use active_module instead of cmd_use to invalidate @cache_payloads,
since the ivar is no longer shared between cmd_set and cmd_use.
Fixes #8483 . See #7655 .
2017-09-29 18:01:50 -05:00
0723477b49
Fix nil bug in loot -a and nix hostless loot
...
Apparently you can't actually store hostless loot.
2017-09-29 16:16:16 -05:00
1ec968192b
Add tab completion to the edit command
2017-09-29 15:43:53 -05:00
e0fee9e317
Land #8821 , Expose session naming
2017-09-29 15:32:47 -05:00
32104eb90e
Bump version of framework to 4.16.10
2017-09-29 10:04:04 -07:00
f777e2ab3b
Merge branch 'master' into fix_nmap_imports
...
bringing branch up to date
2017-09-27 12:52:27 -05:00
51c1cddb5c
Removed requirement for a host to have ports
2017-09-27 12:43:50 -05:00
3068fb6e7e
Fix getprivs and getsystem
...
This is a fix for crap and stupid stuff that I did half way through the
packet pivot code. I was working on some priv stuff at the same time,
and when I realised that the work I was doing was not sensible as part
of the packet pivot PR, I failed to revert my changes properly.
As a result I broke `getprivs` and `getsystem`. I am sorry. And I'm
ashamed.
2017-09-27 16:31:42 +10:00
81406a073e
tidy up code
2017-09-27 08:01:48 +02:00
41e3895424
remove checks for hardcoded name
2017-09-27 07:41:06 +02:00
0d31c1c9a8
Land #8945 , fix issue where we can call shutdown on a closed socket
2017-09-26 16:01:51 -05:00
71f13db918
style updates
2017-09-26 15:58:43 -05:00
0408979e54
Land #9005 , Remove spurious commas
2017-09-26 15:36:33 -05:00
cad36ee14e
Land #8952 , suhosin compatibility added to staged payload
2017-09-26 15:22:36 -05:00
968ae8e267
Land #8925 , Allow edit to optionally take a path
2017-09-26 13:32:39 -05:00
ec51ab2547
Exit function param bug
2017-09-26 11:16:41 +03:00
d234409d40
Land #8918 , wp_admin_shell_upload multisite fix
2017-09-25 13:54:10 -05:00
d73e95e7db
Land #8946 , fix #8879 , APK injection edge cases
2017-09-23 20:48:12 -04:00
8853193542
Land #8987 , Fix opening non-existant files on unix
2017-09-22 13:15:44 -05:00
68fa3d45f3
Bump version of framework to 4.16.9
2017-09-22 10:05:19 -07:00
36fc01d375
check files before opening
2017-09-21 19:36:19 -04:00
d8ee4150e6
move client core constants closer to where they are actually used
2017-09-19 03:22:13 -05:00
5b579baa33
remove unused Linux migration code
2017-09-19 03:04:43 -05:00
0e15b2d002
remove unneeded METERPRETER_TRANSPORT constants
2017-09-19 02:59:05 -05:00
271bd4c4fe
Rename METERPRETER_TRANSPORT_SSL to ..._TCP
...
Since OpenSSL is no longer packages with meterpreter, and transport
secrecy is handled at L7, the SSL cons name doesn't apply anymore.
Rename METERPRETER_TRANSPORT_SSL to METERPRETER_TRANSPORT_TCP for
consistency with wire-level implementation.
2017-09-17 14:31:15 -04:00
b2f5bd16e6
Bump version of framework to 4.16.8
2017-09-15 10:02:38 -07:00
9afb09813f
update cmd_edit_help text
2017-09-13 14:54:35 +08:00
363d3c28d7
suhosin comaptibility added to staged payload
2017-09-12 08:49:53 +05:30
b218cc3c7f
Merge branch 'master' into hw_auto_padding_fix
2017-09-11 18:30:34 -07:00
ad9329993d
Added better padding and flowcontrol support.
2017-09-11 18:20:57 -07:00
a58552daad
Land #8825 , Handle missing util.pump in nodejs shell payloads
2017-09-11 15:32:21 -05:00
c3fa30707d
fix #8879 , fix APK injection edge cases
2017-09-11 12:03:20 +08:00
8d60fdf9e7
Bug - HTTP Client can call :shutdown on closed IO
...
When running Rex HTTP client calls across pivots, pivot sockets
can get closed by the remote server, resulting in a closed :conn
object within the client object. The clients :close method calls
self.conn.shutdown which raises an 'IOError closed stream' on what
is effectively a TCPSocket object in a closed state (under the Rex
abstraction).
Resolve by moving the self.conn.closed? check into the conditional
just above the :shutdown call, and remove if from the underlying
:close call as calling :close on an already closed TCPSocket
returns nil as opposed to throwing an exception like the :shutdown
method.
2017-09-10 03:09:59 -04:00
faa84faf25
Bump version of framework to 4.16.7
2017-09-08 15:38:22 -07:00
f5a73f3efe
Bump version of framework to 4.16.6
2017-09-08 10:03:41 -07:00
Adam Cammack