adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
43,802 Commits 27 Branches 1,043 Tags
fc40fe0da209deeb3ab758b2d3c8f0ac52ec79ac
Commit Graph

13409 Commits

Author SHA1 Message Date
Jeffrey Martin 57afc3b939 Land #9044, Address generation issues with pure PSH payloads 2017-10-10 10:40:33 -05:00
Adam Cammack 436b72d4cc Land #9023, Add tab completion to the edit command 2017-10-09 11:37:12 -05:00
William Vu 27dcc162b2 Revert to Vim because ed is the standard editor 
https://www.gnu.org/fun/jokes/ed-msg.html
 2017-10-09 11:34:45 -05:00
William Webb 14308fb77d Land #9045, Copy original request ID into TLV response 2017-10-09 10:58:02 -05:00
James Barnett 56e95f15c9 Land #9024, fix bug when manually adding loot 
cmd_loot was throwing a stack trace when the host was not properly defined.
This fixes it to give a useful error message.
 2017-10-06 16:02:12 -05:00
Jeffrey Martin d0a1fb6019 tlv response to ID based request with original ID 
When a tlv response is created the request ID being responded to
needs to be copied into response created.
 2017-10-06 13:58:38 -05:00
William Webb d9e0d891a1 Land #9010, Remove checks for hardcoded SYSTEM account name 2017-10-06 13:42:18 -05:00
RageLtMan 124a1531f4 Clean up powershell exec string 
The scriptblock invocation is already coming from Rex, so there's
no need to re-wrap the executed code in more of the same.
 2017-10-06 13:19:36 -04:00
Metasploit 4acef04e0d Bump version of framework to 4.16.11 2017-10-06 10:01:51 -07:00
RageLtMan 9afdde2938 Address generation issues with pure PSH payloads 
Powershell payloads were generating using the :generate method
mixed in from Payload::Windows::Exec which is a binary payload
mixin.

Address the breakage by implementing a generate method which simply
outputs the script code produced by the module with no additional
content prepended or appended.

While here, cleanup the commandline generation for the script being
produced by having Rex do it (this permits changes made in Rex to
benefit all consumers).

As a bonus, drop the IEX invocation since it'll trip up AMSI and
upgrade to the scripblock execution semantic.

Credit for finding this little gem goes to bperry - i dont usually
use the native powershell command shells, and managed to miss this
for a long time. Thanks boss.

Testing:
  Local in pry

@bperry: Could you test and ping me back if this is right?
 2017-10-06 12:32:52 -04:00
Brent Cook 809d0f79a1 Land #9026, Fix cache invalidation bug in tab completion 2017-10-05 16:41:00 -05:00
Brent Cook b7e209a5f3 Land #9033, Geolocate API update 2017-10-05 16:39:09 -05:00
Tim e534d3cdc8 fix transport and sleep commands on java 2017-10-04 10:36:01 +08:00
William Vu 5b9a4d73ee Readd hostless loot display 
In the chance event someone actually managed to store it.
 2017-10-02 23:31:44 -05:00
William Vu 403b5e2fa8 Move TARGET check into option_values_payloads 2017-10-02 23:22:42 -05:00
h00die fc66683502 fixes #8928 2017-10-01 19:49:32 -04:00
William Vu 9941097a5c Remove extraneous else 2017-09-29 19:01:04 -05:00
William Vu e8d0f2dde0 Fix missing message for vprint_* in AuthBrute 2017-09-29 18:51:35 -05:00
William Vu 6de986bd70 Fix cache invalidation bug in tab completion 
We use active_module instead of cmd_use to invalidate @cache_payloads,
since the ivar is no longer shared between cmd_set and cmd_use.

Fixes #8483. See #7655.
 2017-09-29 18:01:50 -05:00
William Vu 0723477b49 Fix nil bug in loot -a and nix hostless loot 
Apparently you can't actually store hostless loot.
 2017-09-29 16:16:16 -05:00
William Vu 1ec968192b Add tab completion to the edit command 2017-09-29 15:43:53 -05:00
bwatters-r7 e0fee9e317 Land #8821, Expose session naming 2017-09-29 15:32:47 -05:00
Metasploit 32104eb90e Bump version of framework to 4.16.10 2017-09-29 10:04:04 -07:00
loftwing f777e2ab3b Merge branch 'master' into fix_nmap_imports 
bringing branch up to date
 2017-09-27 12:52:27 -05:00
loftwing 51c1cddb5c Removed requirement for a host to have ports 2017-09-27 12:43:50 -05:00
OJ 3068fb6e7e Fix getprivs and getsystem 
This is a fix for crap and stupid stuff that I did half way through the
packet pivot code. I was working on some priv stuff at the same time,
and when I realised that the work I was doing was not sensible as part
of the packet pivot PR, I failed to revert my changes properly.

As a result I broke `getprivs` and `getsystem`. I am sorry. And I'm
ashamed.
 2017-09-27 16:31:42 +10:00
Christian Mehlmauer 81406a073e tidy up code 2017-09-27 08:01:48 +02:00
Christian Mehlmauer 41e3895424 remove checks for hardcoded name 2017-09-27 07:41:06 +02:00
Brent Cook 0d31c1c9a8 Land #8945, fix issue where we can call shutdown on a closed socket 2017-09-26 16:01:51 -05:00
Brent Cook 71f13db918 style updates 2017-09-26 15:58:43 -05:00
Adam Cammack 0408979e54 Land #9005, Remove spurious commas 2017-09-26 15:36:33 -05:00
Brent Cook cad36ee14e Land #8952, suhosin compatibility added to staged payload 2017-09-26 15:22:36 -05:00
Adam Cammack 968ae8e267 Land #8925, Allow edit to optionally take a path 2017-09-26 13:32:39 -05:00
root ec51ab2547 Exit function param bug 2017-09-26 11:16:41 +03:00
William Vu d234409d40 Land #8918, wp_admin_shell_upload multisite fix 2017-09-25 13:54:10 -05:00
Brent Cook d73e95e7db Land #8946, fix #8879, APK injection edge cases 2017-09-23 20:48:12 -04:00
Pearce Barry 8853193542 Land #8987, Fix opening non-existant files on unix 2017-09-22 13:15:44 -05:00
Metasploit 68fa3d45f3 Bump version of framework to 4.16.9 2017-09-22 10:05:19 -07:00
h00die 36fc01d375 check files before opening 2017-09-21 19:36:19 -04:00
Brent Cook d8ee4150e6 move client core constants closer to where they are actually used 2017-09-19 03:22:13 -05:00
Brent Cook 5b579baa33 remove unused Linux migration code 2017-09-19 03:04:43 -05:00
Brent Cook 0e15b2d002 remove unneeded METERPRETER_TRANSPORT constants 2017-09-19 02:59:05 -05:00
RageLtMan 271bd4c4fe Rename METERPRETER_TRANSPORT_SSL to ..._TCP 
Since OpenSSL is no longer packages with meterpreter, and transport
secrecy is handled at L7, the SSL cons name doesn't apply anymore.
Rename METERPRETER_TRANSPORT_SSL to METERPRETER_TRANSPORT_TCP for
consistency with wire-level implementation.
 2017-09-17 14:31:15 -04:00
Metasploit b2f5bd16e6 Bump version of framework to 4.16.8 2017-09-15 10:02:38 -07:00
Tim 9afb09813f update cmd_edit_help text 2017-09-13 14:54:35 +08:00
Anant Shrivastava 363d3c28d7 suhosin comaptibility added to staged payload 2017-09-12 08:49:53 +05:30
Craig Smith b218cc3c7f Merge branch 'master' into hw_auto_padding_fix 2017-09-11 18:30:34 -07:00
Craig Smith ad9329993d Added better padding and flowcontrol support. 2017-09-11 18:20:57 -07:00
Jeffrey Martin a58552daad Land #8825, Handle missing util.pump in nodejs shell payloads 2017-09-11 15:32:21 -05:00
Tim c3fa30707d fix #8879, fix APK injection edge cases 2017-09-11 12:03:20 +08:00