adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
41,886 Commits 27 Branches 1,043 Tags
f8a94de6710abe3042a26a9dca38dcccff2c93be
Commit Graph

21851 Commits

Author SHA1 Message Date
OJ 6c00e62649 Small fix to PHP stage 2015-05-18 19:11:33 +10:00
Donny Maasland (Fox-IT) 30f7c651c9 use REGISTRY_VIEW_32_BIT 2015-05-18 10:19:32 +02:00
OJ e2d4ed6045 Add the UUID payloads for PHP 2015-05-18 17:49:34 +10:00
OJ 9296a024e2 PHP meterpreter refactoring in prep for uuid work 2015-05-18 17:40:48 +10:00
OJ e41ae93524 Payload sizes, specs and more 2015-05-18 14:58:10 +10:00
OJ 4488a5e634 Add uuid support to python, and rework stages/stagers 2015-05-18 14:33:35 +10:00
OJ 0d56b3ee66 Stage UUIDs, generation options, php and python meterp uuid 2015-05-18 13:29:46 +10:00
OJ bf2b113abb Merge branch 'upstream/master' into update-x64-stagers 2015-05-18 13:28:36 +10:00
Hans-Martin Münch (h0ng10) d99eedb1e4 Adding begin...ensure block 2015-05-17 20:48:11 +02:00
Hans-Martin Münch (h0ng10) acb053a2a7 CloseHandle cleanup 2015-05-17 20:39:10 +02:00
Stuart Morgan f1955cb15d Rubocopped the file 2015-05-17 16:09:19 +01:00
Brent Cook d804f5fe49 update to metasploit-payloads 0.0.7 2015-05-17 10:06:38 -05:00
Stuart Morgan 5e4566712a Added more detailed description 2015-05-17 16:00:44 +01:00
Stuart Morgan a4f67bce6f Tidied up code 2015-05-17 15:48:05 +01:00
Stuart Morgan b12db7b633 Retrieves saved session lists etc to loot and exports information in CSV format 2015-05-17 14:59:26 +01:00
Stuart Morgan 1177f42263 Renamed module to remain consistent with other enum modules 2015-05-17 14:38:25 +01:00
Stuart Morgan 18a9dfd6da Added PAGEANT_REGISTRY_KEY variable to enhance readability 2015-05-17 14:37:59 +01:00
Stuart Morgan 79b9ef008a Bugfix 2015-05-17 13:55:56 +01:00
Stuart Morgan 4a416bba3c Fixed notes using :unique_data 2015-05-17 13:24:38 +01:00
Stuart Morgan 8aa27eee94 report_note only appears to allow one note per host/type combo... 2015-05-17 13:06:17 +01:00
Stuart Morgan 53311fda2e Fixed logic & added notes storage 2015-05-17 13:02:58 +01:00
Brent Cook 829f8420e2 Update static payload sizes for metasploit-payloads-0.0.6 2015-05-15 18:43:47 -05:00
Stuart Morgan 5d273d53b4 Fixed module logic so that the key fingerprints now get displayed properly: 2015-05-15 22:02:12 +01:00
David Maloney fd1a24d6f9 some more minor cleanup noise 
apparently we standardized on using get_env
instead of expand_path in these cases. Not sure
on the effective difference here but no big deal

MSP-12358
 2015-05-15 13:33:48 -05:00
jvazquez-r7 dd5060e08c Land #5340, @wchen-r7's change to the symantec_web_gateway_login writing style 2015-05-15 13:18:35 -05:00
jvazquez-r7 cf5fa6752e Use parenthesis 2015-05-15 13:17:54 -05:00
Stuart Morgan 4a88790c8c Added SSH host keys 2015-05-15 17:57:15 +01:00
jvazquez-r7 d05cae5faf Land #5329, @wchen-r7's add configurable options to jenkins_login 2015-05-15 11:38:21 -05:00
David Maloney 631dfc0a0e increase timeout on ntdsutil 
default timeout is 15 seconds. we'll give it 90
seconds for now. This may still be too short for
really really large domains, but too long of a timeout
can create other issues

MSP-12358
 2015-05-15 11:19:35 -05:00
David Maloney a3d91dff0b clean up ntds.dit file when done 
delete the ntds.dit file we copied when
we are done

MSP-12358
 2015-05-15 11:13:19 -05:00
jvazquez-r7 2882374582 Land #5276, @lanjelot fixes #4243 and improves java_jdwp_debugger 2015-05-15 11:12:10 -05:00
jvazquez-r7 a46975f1f0 Fix read_reply to use get_once correctly 2015-05-15 11:11:25 -05:00
David Maloney ac04b8d1e7 a little bit of cleanup 
constantise some of the magic numbers in
the NTDS Account class

MSP-12358
 2015-05-15 10:47:31 -05:00
Stuart Morgan 14035a46b1 Fixed description 2015-05-15 16:28:51 +01:00
Stuart Morgan f65207ac40 Initial version, working 
Needs tidying up.

Current version:
* Searches for PuTTY registry keys
* Downloades the Hostname, port, private key filename, username to log in as and any port forwarding instructions
* If the private keys are accessible on the box, download them to loot

To do:
* Detect whether pageant is running or not and report back
* Tidy up code (used another plugin as a template)
 2015-05-15 16:23:39 +01:00
Donny Maasland (Fox-IT) 2721be946a also check Wow6432Node keys 2015-05-15 14:28:12 +02:00
Hans-Martin Münch (h0ng10) e075495a5b string concatenation, clear \ handling 2015-05-15 06:51:42 +02:00
Hans-Martin Münch (h0ng10) 94d39c5c75 remove hard coded pipe name 2015-05-15 06:35:55 +02:00
Hans-Martin Münch (h0ng10) bb4f5da6d9 replace client.sys.config.getenv with get_env 2015-05-15 06:33:57 +02:00
OJ 7b2aee2a60 Merge branch 'upstream/master' into update-x64-stagers 2015-05-15 12:27:40 +10:00
wchen-r7 8bcdd08f34 Some basic code in place for real-time exploit list generation 2015-05-14 19:09:38 -05:00
Hans-Martin Münch (h0ng10) bba261a1cf Initial version 2015-05-15 00:36:03 +02:00
David Maloney 724b7c6f16 save the ntlm hases as creds 
the last step is now complete. the current and historical
hashes are all saved to the database for cracking and/or
replay

MSP-12358
 2015-05-14 13:52:11 -05:00
wchen-r7 24a989b8a3 Land #5249, Add Module for Enum on InfluxDB database 2015-05-14 11:22:54 -05:00
wchen-r7 005c36b2a6 If data is empty, don't save (or even continue) 2015-05-14 11:22:10 -05:00
David Maloney 452fc6b149 Merge branch 'feature/MSP-12357/meterp-ntds' into feature/MSP-12358/ntds-dump-module 2015-05-14 10:31:28 -05:00
OJ 83fbd41970 Merge branch 'upstream/master' into multi-transport-support 
Conflicts:
	Gemfile.lock
	modules/payloads/singles/cmd/windows/powershell_bind_tcp.rb
 2015-05-14 14:50:25 +10:00
HD Moore 5f3947312d Lands #5327, SSL support + refactor for PowerShell 2015-05-13 23:25:15 -05:00
wchen-r7 1a8ab91ce3 Configurable max exploits 2015-05-13 16:23:22 -05:00
wchen-r7 7617217eff Add ability to exclude 2015-05-13 15:55:19 -05:00