James Lee 4b16985eb8 Stop trying more creds for a user after success ...

This is more like the behavior of the old AuthBrute mixin, where a
scanner module was expected to return :next_user in the block given to
each_user_pass when it successfully authenticated.

The advantage is a reduced number of attempts that are very unlikely to
be successful since we already know the password. However, note that
since we don't compare realms, this will cause a false negative in the
rare case where the same username exists with different realms on the
same service.

MSP-10686

2014-07-10 17:48:58 -05:00

..

afp

Initial stab at AFP login scanner

2014-05-20 17:08:12 -05:00

ftp

Add specs, validations for LoginScanner::SMB

2014-05-09 18:58:49 -05:00

jtr

not every version has dupe supression

2014-06-19 16:28:23 -05:00

login_scanner

Stop trying more creds for a user after success

2014-07-10 17:48:58 -05:00

mssql

trivial cleanup work

2014-05-08 13:42:52 -05:00

tcp

refactor telnet_login

2014-06-11 17:46:42 -05:00

telnet

create telnet clinet mixin

2014-05-28 13:53:50 -05:00

common_engine.rb

Extra common engine and fix default encoding

2014-06-02 12:57:48 -05:00

credential_collection.rb

fix to_credential on core

2014-07-07 18:05:04 -05:00

credential.rb

Display 'realm\user' for AD instead of 'user@realm'

2014-07-10 14:31:42 -05:00

database.rb

Use railties to load Metasploit::Credential correctly

2014-05-12 15:03:51 -05:00

engine.rb

Metasploit::Framework::Engine

2014-06-02 13:00:22 -05:00

login_scanner.rb

Use glob instead of entries

2014-07-08 11:00:33 -05:00

version.rb

fix version

2014-06-06 12:07:22 -05:00