39f288bfe3
Rex::Proto::Http: Add evasion options to shuffle GET / POST parameters
2022-07-11 01:37:41 +10:00
67ea2bc23c
Land #16630 Fix duplicate ntlm hash storage
...
Net-NTLM (v1 and v2) hashes were being duplicated when
stored in the database due to the unique data in the challenge
dispite being the same. This fixes that issue
2022-06-08 14:07:34 -04:00
1a7cbe5b4f
Update lib/msf/core/exploit/remote/smb/server/hash_capture.rb
2022-06-08 13:45:57 -04:00
a983bbd8ba
Land #16615 , Solicited multicast-address creation bugfix
2022-06-07 14:41:52 -05:00
2b99967d0c
Merge branch 'master' into fix/duplicate-netntlm
2022-06-07 11:42:51 -04:00
a47b3fe694
Don't report duplicate Net-NTLM hashes
2022-05-27 14:13:06 -04:00
1e5f86703f
Report the correct JtR type
2022-05-27 10:16:02 -04:00
862c6a94a2
Log ntlm_session hashes too
...
Despite being called ntlm_session, these hashes are capable of being
cracked as the John 'netntlm' format. Additionally the format is
reported as NTLMv1-SSP in similar tools.
2022-05-27 10:07:39 -04:00
c33f284786
change from lambda to line by line logic
2022-05-24 16:24:15 +03:00
7f9ead454e
bugfix of improper solicited address creation
2022-05-23 15:25:53 +03:00
19a9ff1198
Update a couple of modules for the new SMB server
2022-05-16 14:39:45 -04:00
e0b9002238
Fix an SMB relay bug
2022-05-16 14:39:45 -04:00
f14f8da1df
Use the new thread_factory
2022-05-16 14:39:45 -04:00
b79b550d6c
Centralize the log adapter
...
This should eventually be updated to map the levels to the framework
logger and appropriate module-print_* function.
2022-05-16 14:39:45 -04:00
7c15b144c4
Update the SMB capture server
2022-05-16 14:39:44 -04:00
22993e910e
Move server code into the server mixin
2022-05-16 14:39:44 -04:00
c39fd87073
Finish removing unneeded server code
2022-05-16 14:39:44 -04:00
475f6eee8c
Capture hash when serving files over SMB
2022-05-16 14:39:44 -04:00
d740786211
Add the on_client_connect callback
...
Also update the group_policy_startup module.
2022-05-16 14:39:44 -04:00
317516d90f
Enable guest access
2022-05-16 14:39:44 -04:00
882bcf08f7
Fix bugs when stopping the service
2022-05-16 14:39:44 -04:00
09dc65eb6a
Remove the FILE_CONTENTS datastore option
...
None of the 14 modules use this option, they all deregister it.
2022-05-16 14:39:44 -04:00
63af7cdef7
Initial update to the RubySMB share server
2022-05-16 14:39:44 -04:00
013a819cff
Out with the old
2022-05-16 14:39:44 -04:00
db694efd36
Improve relative redirect handling
2022-05-16 12:03:24 +01:00
739c0fcad1
Specify peer hostname for ssl connections
2022-05-13 13:55:43 +01:00
c0c02e56ba
Land #16430 , Improve kerberos user enum module
2022-05-13 12:17:26 +01:00
a76600f4a9
Land #16462 , add support for armle/aarch64 architectures
2022-05-03 15:48:50 +01:00
02d911e655
gdb_server_exec: Cleanup and add support for armle/aarch64 architectures
2022-04-25 19:25:06 +00:00
4417a335ff
Land #16379 , Make SSH defaults widely used
...
Refactored a number of modules to use ssh_client_defaults
2022-04-19 22:08:45 -07:00
0d3f50522d
Land #16318 Add support to old KEX algorithms
...
This commit fix the issue #16138 by adding
support to old key exchange algorithms in
the net/ssh lib by defining the
append_all_supported_algorithms to true.
2022-04-14 11:29:39 -07:00
04f042ae47
Land #16221 , a wordpress_scanner bug fix
...
Adjust wordpress_url_rest_api definition to support
sites that don't place REST API under /index.php/
2022-04-13 14:22:17 -07:00
0eb9d68319
Added support to depecreted key exchange algorithms
2022-04-13 18:53:50 +02:00
a53be3184a
Improving error handling of Kerberos
2022-04-08 20:48:10 +01:00
a82c936613
Land #16373 , Add initial ruby 3.1 support
2022-04-07 16:44:02 +01:00
283dda8172
Land #16386 , Exploit::Remote::SocketServer: Wait if service is running
2022-03-28 03:41:06 +00:00
c4b6eb0165
Fix java rmi service undefined method wait
2022-03-27 17:01:43 +01:00
79783bbe9b
Checking if datastore is defined
2022-03-25 16:32:58 +01:00
76ede9ef8f
Add ruby 3.1 support
2022-03-24 21:59:02 +00:00
ee8618e68a
Handling undefined local variable
...
Auxiliary failed: NameError undefined local variable or method `datastore'
for #<Metasploit::Framework::LoginScanner::SSH
2022-03-24 22:57:27 +01:00
bf88b7f618
Land #16325 - Replace IO read on binary files with File binread
2022-03-24 10:08:40 -05:00
ff0ecfa49e
Display the HTTP port when necessary
2022-03-21 20:11:31 -04:00
aca272dd76
Always return a comm from #_determine_server_comm
...
Instead of returning nil from Rex::Socket::SwitchBoard.best_comm, return
the local comm which Rex::Socket will defer to anyways.
2022-03-21 11:47:56 -04:00
551f159993
Don't pass nill to #best_comm
...
It'll crash if you do
2022-03-21 11:47:56 -04:00
0ab97b858f
Update the TCP server and HTTP server mixins
2022-03-21 11:47:56 -04:00
2e4f04a804
Add and use the new bindhost/bindport options
2022-03-21 11:47:55 -04:00
bbf9e3163a
Fix file reads on Windows for binary files
2022-03-21 12:47:39 +00:00
da1e4853b8
Land #16317 , Free UDP ports after use
2022-03-17 16:39:09 -04:00
ce062973cb
Make changes from review process, redo code for module to make it make less requests, and generally improve overal operations.
2022-03-17 11:29:05 -05:00
c1d6dced8d
Update library code to read exchange versions from exchange_versions.json and populate exchange_versions.json with initial info
2022-03-17 11:29:01 -05:00
bcoles