adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
41,886 Commits 27 Branches 1,043 Tags
f8a94de6710abe3042a26a9dca38dcccff2c93be
Commit Graph

21851 Commits

Author SHA1 Message Date
OJ 1c73c190fc Add machine_id support to windows php meterp 2015-05-22 14:55:29 +10:00
Brent Cook 9ce669f878 Land #5328: reworked x64 http/https stagers 2015-05-21 23:26:34 -05:00
Tim 7a9e875a25 use uuid aware generate_uri_uuid_mode 2015-05-22 05:21:08 +01:00
OJ 10bd75348c Merge branch 'upstream/master' into uuid-stagers 2015-05-22 13:07:25 +10:00
OJ a6a274d3a3 Merge recent stager changes 2015-05-22 13:01:45 +10:00
Nicholas Starke 9430d38a09 Adding AVTECH744_DVR Module 
This module retrieves account information from
an AVTECH 744 DVR, including username, cleartext
password, account role, and the device PIN.
 2015-05-21 16:33:06 -05:00
jvazquez-r7 e1f10772b3 Use create_cracked_credential 2015-05-21 16:30:42 -05:00
jvazquez-r7 305da46491 Land #5301, @m-1-k-3's aux module to extract passwords from Netgear soap interfaces 2015-05-21 16:07:05 -05:00
jvazquez-r7 6da94b1dd5 Deprecate windows module 2015-05-21 15:01:41 -05:00
jvazquez-r7 b9f9647ab1 Use all the BES power 2015-05-21 14:06:41 -05:00
Roberto Soares b4a6cdbad0 Remove new line in vprint_line. 2015-05-21 12:33:09 -03:00
Roberto Soares 0135b3639f Add WordPress Simple Backup File Read Vulnerability. 2015-05-21 12:23:24 -03:00
erwanlr d9d8634948 Changes the message displayed when vulnerable 2015-05-21 08:46:16 +01:00
wchen-r7 6e8ee2f3ba Add whitelist feature 2015-05-21 00:05:14 -05:00
RageLtMan 23b69a0c22 license update 2015-05-21 00:32:31 -04:00
wchen-r7 bdf30dd383 Land #5374, --smallest option in msfvenom 2015-05-20 21:06:10 -05:00
HD Moore a8d111ce89 Merge branch 'master' into feature/uuid-registration 2015-05-20 19:48:39 -05:00
jvazquez-r7 aa919da84d Add the multiplatform exploit 2015-05-20 18:57:59 -05:00
RageLtMan 6d9f6c9715 retab exec_powershell.rb 2015-05-20 19:08:50 -04:00
RageLtMan 27e12754fe Import Powershell libraries and sample post module 
Sync critical functionality from Rex and Msf namespaces dealing
with encoding and processing of powershell script for exploit
or post namespaces.

Import Post module. Primarily adds a psh_exec method which will be
replaced in the next PR with @benpturner's work integrated into
the Post module namespace.

Provide a sample metasploit windows post module to show the
execution pipeline - entire subs process can be removed and the
module reduced to a psh_exec(datastore['SCRIPT']).

This commit is designed to provide sync between the SVIT fork and
upstream. Pending commits to be based on this work will provide
access to .NET compiler in the Post namespace to be used for
dynamic persistent payload creation on target and the import of
@benpturner's work.
 2015-05-20 18:18:51 -04:00
wchen-r7 2cadd5e658 Resolve #5373, Add ActiveX info in BrowserRequirements 
Resolve #5373
 2015-05-20 16:34:09 -05:00
Stuart Morgan 7330e004ea Updated name to more accurately reflect purpose 2015-05-20 22:33:06 +01:00
Stuart Morgan dfe52068a7 Fixed error messages 2015-05-20 22:32:26 +01:00
Stuart Morgan 3615656062 Rubocop 2015-05-20 22:28:53 +01:00
Stuart Morgan 226f1a52fb Moved socket creation to per-port code for reliability 2015-05-20 22:27:45 +01:00
Brent Cook a4df3468de unique: should be update:, include uri in data hash 2015-05-20 16:20:09 -05:00
Brent Cook c85b82e8a7 Merge branch 'master' into land-5358-notes 2015-05-20 16:02:59 -05:00
erwanlr 4f6fe2abce Avoids swallowing exceptions 2015-05-20 21:36:03 +01:00
Stuart Morgan 484daf4584 Added Winsock check 2015-05-20 21:09:05 +01:00
Stuart Morgan 782a6ed108 Rubocop 2015-05-20 21:06:19 +01:00
Overlord 41450a4da0 Rubocop 2015-05-20 21:05:07 +01:00
Stuart Morgan 8db0ed04ad Added support for UDP traffic too 2015-05-20 20:51:19 +01:00
Stuart Morgan f039c416c5 Still works, TCP only though at the moment 2015-05-20 20:38:41 +01:00
Stuart Morgan c4fc2132d8 Working version 2015-05-20 20:29:23 +01:00
Stuart Morgan 1ec231c28d Initial working version 2015-05-20 19:43:54 +01:00
erwanlr 202a77fc12 Improves detection of the MS15-034 2015-05-20 18:08:00 +01:00
wchen-r7 23c77adc68 Land #5377, Update cred reporting method for http_ntlm 2015-05-20 11:57:42 -05:00
benpturner cdea522c3e Use the Rex::Powershell::Command function to encode the stream 2015-05-20 10:34:54 +01:00
OJ 44f8cf4124 Add more size to stagers, adjust psexec payloads 
This psexec payload size should be evaluated to make sure I'm not doing
anything stupid. i can't see a reason why increasing these sizes would
be bad. They seem to work fine.
 2015-05-20 17:07:56 +10:00
OJ 5963a5833a Fix up php stageless payload includes 2015-05-20 16:50:00 +10:00
Tim 96a30118e2 add https cert validation 2015-05-20 07:27:59 +01:00
OJ d0a5b803e8 Use generate_payload_uuid instead of manual obj creation 2015-05-20 16:25:52 +10:00
OJ 289873c25f Merge all the stager changes 2015-05-20 16:02:37 +10:00
OJ 6859b24c1c Fix missing label, update payload sizes 2015-05-20 15:42:31 +10:00
Stuart Morgan 6e682e2da3 Sometimes the SSH tools seem to do something strange with sockets, so just cope with tihs 2015-05-19 17:59:34 +01:00
William Vu c1b8cee315 Land #5369, @dmaloney-r7's snmp_login fixes 2015-05-19 10:39:03 -05:00
Tim ebd20fbedd fix http 2015-05-19 16:25:46 +01:00
benpturner 514e382d3b Remove require 2015-05-19 16:20:32 +01:00
benpturner 4a808af40a Typo 2015-05-19 16:17:11 +01:00
Tim e7c8a3b56c add support for SessionRetryTotal and SessionRetryWait on Android 2015-05-19 16:16:04 +01:00