0f65368866
Bump version of framework to 6.3.23
2023-06-22 15:51:18 -05:00
1b562dd02b
Revert "Improve AMSI bypass on new Windows"
...
This reverts commit f97ab80224c8f942cc03
2023-06-21 16:35:41 -05:00
5d96b23d19
Update metasploit-payloads gem to 2.0.143
...
Includes changes from:
* rapid7/metasploit-payloads#662
* rapid7/metasploit-payloads#660
2023-06-20 15:14:18 -04:00
7e3e30f9d0
Bump Mettle Version
2023-06-19 11:56:52 +02:00
8c4c260911
Mettle now supports aarch64-apple-darwin
...
This bumps the metasploit_payloads-mettle version to enable the new
target triple.
2023-06-19 10:57:37 +02:00
ea34db64af
Bump version of framework to 6.3.22
2023-06-15 12:15:30 -05:00
8f11798f5f
Update unknown windows errors on python meterpreter to include hex error code
2023-06-15 11:56:32 +01:00
6f297a8619
Land #18102 , bump metasploit-payloads 2.0.140
...
This metasploit-payloads bump is a fix for false negatives
on files not existing on windows python meterpreter
2023-06-14 13:51:27 -04:00
d3fa7608db
Land #18103 , lock nokogiri due to compile issue
2023-06-14 11:40:08 -05:00
ceb85e08c9
update to latest nokogiri 1.14.x
2023-06-14 11:30:25 -05:00
b2d0cdaa28
lock nokogiri due to compile issue
2023-06-14 11:21:49 -05:00
00d1f03b8a
Fix false negatives on files not existing on windows python meterpreter
2023-06-14 17:09:06 +01:00
793e0887ff
Fix osx route command when mac addresses are split by dots
2023-06-14 16:43:51 +01:00
9187b96756
Land #18099 , Fix python meterpreter subprocess deadlock and file descriptor leak
2023-06-14 15:40:10 +01:00
de07c2eae2
Land #18098 , Fix rex-text crashes when running ruby 3.3
2023-06-14 13:26:02 +01:00
41429aec97
Land #18080 , Weekly dependency updates for Gemfile.lock
2023-06-14 07:16:48 -05:00
d6a50acf83
Fix python meterpreter subprocess deadlock and file descriptor leak
2023-06-14 13:10:46 +01:00
f30bc86c8a
Fix rex-text crashes when running ruby 3.3
2023-06-14 13:04:20 +01:00
21b2e3a597
Fix python meterpreter crashing when extracting osx network configuration
2023-06-14 12:28:15 +01:00
f97ab80224
Land #17942 , Improve AMSI bypass on new Windows
...
The script generated by the web_delivery module is blocked
by the Antimalware Scan Interface (AMSI) on newer versions
of windows. This PR allows the script to bypass AMSI.
2023-06-12 18:50:48 -04:00
14dc102e31
Bump rex-powershell to 0.1.98
2023-06-12 16:34:28 -04:00
4c817ce1de
Land #17946 , CVE-2023-21839 - Oracle Weblogic RCE
...
CVE-2023-21839 - Oracle Weblogic PreAuth Remote Command Execution via ForeignOpaqueReference IIOP Deserialization
2023-06-09 14:55:43 -04:00
694c1006e4
Add more IPv6 support in to the module
2023-06-09 12:24:35 -05:00
eab324714d
Update metasploit-payloads gem to 2.0.136
...
Includes changes from:
* rapid7/metasploit-payloads#656
2023-06-09 12:57:02 -04:00
dce2965d3f
Bump up dependency versions
2023-06-08 14:20:59 -05:00
92cf562950
Bump version of framework to 6.3.21
2023-06-08 12:12:50 -05:00
372f9cdcfc
Update metasploit-payloads gem to 2.0.135
...
Includes changes from:
* rapid7/metasploit-payloads#648
* rapid7/metasploit-payloads#637
* rapid7/metasploit-payloads#646
* rapid7/metasploit-payloads#645
* rapid7/metasploit-payloads#643
* rapid7/metasploit-payloads#640
2023-06-02 09:49:57 -04:00
25e8cf8faf
Bump version of framework to 6.3.20
2023-06-01 12:10:08 -05:00
8378435051
Land #17430 , Add AWS SSM Sessions
2023-06-01 11:34:40 -04:00
8368b80ad6
Bump version of framework to 6.3.19
2023-05-25 12:05:49 -05:00
7215b88bad
bump credential version
2023-05-25 10:38:39 -05:00
428229aede
Bump version of framework to 6.3.18
2023-05-18 12:10:55 -05:00
de6e26de8e
Land #18006 , Fix error when msfconsole opens browser links without a display present
2023-05-18 16:56:29 +01:00
39f4ccd9f9
Fix error when msfconsole opens browser links without a display present
2023-05-18 10:29:22 +01:00
3e32c0e22d
Fix crash when running a module through socks 4a proxy
2023-05-18 10:25:56 +01:00
713ec6ae76
Merge branch 'master' into feature/aws_ssm_sessions
2023-05-16 14:39:37 -04:00
484639a2e0
Bump version of framework to 6.3.17
2023-05-11 12:13:25 -05:00
783a1eb504
Bump version of framework to 6.3.16
2023-05-04 12:11:31 -05:00
0a85cba56d
lock msgpack until build resolved
...
MessagePack 1.7.0 gem introduced code not compatible with the current
build env used for nightly packages. This may be addressed in several
ways and has been reported upstream. Lock the version a until a path
forward is determined.
2023-05-02 15:53:26 -05:00
ca0739b3b2
Update rubocop dependency
2023-04-28 23:42:00 +01:00
41c75c2e30
Land #17906 , Weekly dependency updates for Gemfile.lock
2023-04-28 17:01:09 -05:00
5169174c45
Remove Rubocop updates until we can fix underlying issues in our code
2023-04-28 15:19:03 -05:00
36f9025cea
Update metasploit-payloads gem to 2.0.130
...
Includes changes from:
* rapid7/metasploit-payloads#631
* rapid7/metasploit-payloads#639
* rapid7/metasploit-payloads#634
2023-04-27 13:47:37 -04:00
601d9cef96
Bump version of framework to 6.3.15
2023-04-27 12:03:50 -05:00
f1602dd772
Bump payloads to 2.0.127
2023-04-20 18:50:36 -05:00
04df1ef7e8
Bump version of framework to 6.3.14
2023-04-20 12:11:36 -05:00
8e77b70c99
Fix Windows7 Meterpreter crash when in debug mode
2023-04-19 17:30:05 +01:00
2de950c244
Weekly dependency updates for Gemfile.lock
2023-04-18 14:25:28 -05:00
afce19d378
Update metasploit-payloads gem to 2.0.125
...
Includes changes from:
* rapid7/metasploit-payloads#633
* rapid7/metasploit-payloads#625
2023-04-14 11:19:33 -04:00
2c8ad1f158
Land #17809 , Add bootsnap for bootup performance
2023-04-14 14:01:12 +01:00
fae910eb6b
Bump version of framework to 6.3.13
2023-04-13 12:11:45 -05:00
275963eca2
Land #17353 , Persist icpr cert as pkcs12 credential
2023-04-12 13:16:18 +01:00
875ad34b62
Persist icpr cert as pkcs12 credential
...
Update creds command to support pkcs12
2023-04-11 16:25:25 +01:00
eec0e71dd7
Update metasploit-payloads gem to 2.0.123
...
Includes changes from:
* rapid7/metasploit-payloads#628
2023-04-07 10:45:14 -04:00
261fc5227d
Bump version of framework to 6.3.12
2023-04-06 12:13:28 -05:00
653234e1d0
Add bootsnap for bootup performance
2023-04-04 10:35:53 +01:00
3aabb738bf
Bump version of framework to 6.3.11
2023-03-30 12:10:12 -05:00
f9c6caa804
Land #17785 , add SolarWinds (SWIS) deser RCE
2023-03-27 15:25:17 -05:00
a36a475111
Bump rex-socket to 0.1.49
...
This includes the SSL fix from rapid7/rex-socket#58
2023-03-27 16:02:57 -04:00
99aca10c8d
Bump version of framework to 6.3.10
2023-03-23 12:10:35 -05:00
8b26064855
Bump version of framework to 6.3.9
2023-03-16 12:14:04 -05:00
192af217b6
Bump version of framework to 6.3.8
2023-03-13 13:23:26 -05:00
d188170169
Bump version of framework to 6.3.7
2023-03-09 14:03:37 -06:00
4866c2b8b8
Land #17686 , Additional PetitPotam Methods
2023-03-09 19:29:16 +01:00
0cbac03f91
Update ruby_smb gem to 3.2.5
2023-03-09 11:58:49 -05:00
876b7c2c0f
Update metasploit-payloads gem to 2.0.122
...
Includes changes from:
* rapid7/metasploit-payloads#621
* rapid7/metasploit-payloads#623
2023-03-09 11:40:45 -05:00
d3f84af790
Included mixin for PHP code injection at PNGs
2023-03-09 09:28:14 -06:00
350984bc41
Land #17661 , Weekly dependency updates for Gemfile.lock
2023-03-09 08:36:26 -06:00
0fc94f14e8
Bump up gems again
2023-03-08 10:26:29 -06:00
0bf809697c
Update metasploit-payloads gem to 2.0.120
2023-03-07 10:55:07 -06:00
2c1de9b2e4
Update metasploit-payloads gem to 2.0.118
...
Includes changes from:
* rapid7/metasploit-payloads#619
* rapid7/metasploit-payloads#617
* rapid7/metasploit-payloads#610
2023-03-03 17:19:05 -05:00
96c9f60cc1
Land #17715 , Update metasploit-payloads gem to 2.0.115
2023-03-02 16:52:24 -06:00
673a574b3d
Bump version of framework to 6.3.6
2023-03-02 12:11:53 -06:00
75ed29964e
Update metasploit-payloads gem to 2.0.115
...
Includes changes from:
* rapid7/metasploit-payloads#614
* rapid7/metasploit-payloads#611
2023-02-28 12:56:34 -05:00
7db2d86147
Update metasploit-payloads gem to 2.0.113
...
Includes changes from:
* rapid7/metasploit-payloads#604
* rapid7/metasploit-payloads#605
* rapid7/metasploit-payloads#607
* rapid7/metasploit-payloads#606
* rapid7/metasploit-payloads#609
2023-02-24 12:09:21 -05:00
f4549b0a1e
Bump version of framework to 6.3.5
2023-02-23 12:11:22 -06:00
676dd5cbbd
Bump up gems
2023-02-17 11:40:23 -06:00
71cecfb1d4
Bump version of framework to 6.3.4
2023-02-16 12:12:20 -06:00
e420dc123d
Bump version of framework to 6.3.3
2023-02-09 12:10:37 -06:00
affe47957b
Bump up Gems
2023-02-07 17:21:16 -06:00
5d6e989e64
Bump version of framework to 6.3.2
2023-02-02 12:11:52 -06:00
d1e68e634a
Add row indicator to show targets command
2023-02-02 16:12:19 +00:00
0d9a282237
Use the new NDR types in RubySMB v3.2.4
2023-01-31 10:08:27 -05:00
fb196cb378
Testing Ruby 3.2 against CI
2023-01-31 13:19:06 +00:00
d80a18a00c
Bump version of framework to 6.3.1
2023-01-26 13:40:05 -06:00
bdb0cadc4f
Land #17291 , Add support for rails 7
2023-01-26 11:50:29 -06:00
672fb9ce9f
Land #17460 , add support for feature kerberos authentication
2023-01-26 17:47:27 +00:00
b295429fc9
latest metasploit-credential gem
2023-01-26 09:22:56 -06:00
25ba3304ab
Fix rails 7 deprecation warning for secrets dump module
2023-01-26 10:22:28 +00:00
ea96629925
Bump Metasploit version to 6.3.0
2023-01-25 18:36:48 +00:00
58172267ac
update to latest Rails 7 gem
2023-01-23 09:59:21 -06:00
6b64a15ab1
updated metasploit_data_models
2023-01-23 09:59:19 -06:00
1323889b65
update to released Rails 7 supported deps
2023-01-23 09:58:22 -06:00
5ce04e97e8
update Gemfile dev deps
2023-01-23 09:57:51 -06:00
d9716ebecf
core updates for Rails 7
2023-01-23 09:57:09 -06:00
20408f4446
Fix deprecation warning in socks proxy
2023-01-23 12:05:57 +00:00
9d07f206fc
Bump windows_error to 0.1.5
2023-01-20 16:29:24 -05:00
190249b993
Bump ruby_smb to 3.2.2
2023-01-20 16:29:24 -05:00
15237e5154
Update metasploit-payloads gem to 2.0.108
...
Includes changes from:
* rapid7/metasploit-payloads#599
* rapid7/metasploit-payloads#600
* rapid7/metasploit-payloads#602
2023-01-20 09:21:28 -05:00
3602a420d3
Bump version of framework to 6.2.37
2023-01-19 12:05:00 -06:00
eddac9321c
Merge 6.2.36 master into kerberos feature branch
2023-01-13 17:31:02 +00:00
99b2e1d709
add aws ssm gem to lock file
2023-01-13 09:59:05 -05:00
80016b2d22
Bump version of framework to 6.2.36
2023-01-12 12:10:45 -06:00
fd61e31cd3
Bump up additional Gems and bump Pry to support recent versions of Ruby
2023-01-09 09:54:41 -06:00
ebdfabf35d
Bump up pry related gems post 2.6 lock removal
2023-01-06 16:53:04 -06:00
07231a6a8e
Land #17425 , Weekly dependency updates for Gemfile.lock
2023-01-06 13:05:21 -06:00
0ae5aea9e8
Remove lock on Pry version since Ruby 2.6 is no longer supported by Metasploit and so this no longer applies
2023-01-05 18:55:39 -06:00
9585677d2c
Update Gemfile.lock with latest changes
2023-01-05 12:30:08 -06:00
1b093b6e17
Bump version of framework to 6.2.35
2023-01-05 12:10:17 -06:00
8c25786023
Undo bundler version bump
2022-12-29 15:43:31 -06:00
0e2b0fd421
Weekly gem bump
2022-12-29 15:39:52 -06:00
cb682973f7
Bump version of framework to 6.2.34
2022-12-29 12:03:41 -06:00
95d361754f
Merge branch 'upstream-master' into merge-6.2.33-master-into-kerberos-feature-branch
2022-12-28 13:59:42 +00:00
c0597fe1da
Bump version of framework to 6.2.33
2022-12-22 12:09:43 -06:00
37fe3b909a
Land #17931 , Bump IRB version to 1.6.1
...
Bring in changes mentioned at https://st0012.dev/whats-new-in-ruby-3-2-irb
2022-12-15 12:41:52 -06:00
f4a9090128
Bump version of framework to 6.2.32
2022-12-15 12:11:11 -06:00
0ab2d6020e
Bump IRB version to bring in changes mentioned at https://st0012.dev/whats-new-in-ruby-3-2-irb
2022-12-15 11:00:23 -06:00
6e09236c97
Land #17381 , Update rasn1 dependency for pkinit
2022-12-15 17:38:49 +01:00
28bd37b0a7
Update rasn1 dependency for pkinit
2022-12-14 00:32:26 +00:00
a63a98eea4
Bump the version of msf-payload to 2.0.105
2022-12-13 14:29:39 -06:00
a9ccfe31b7
Merge branch 'upstream-master' into merge-msf-6.2.31-into-kerberos-feature-branch
2022-12-13 19:40:39 +00:00
c7ed5f4ba2
Land #17368 , Fix slow msfvenom payload generation for large payloads when outputting as hex format
2022-12-13 02:14:47 -06:00
8013be1d07
Fix slow msfvenom payload generation for large payloads
2022-12-12 21:39:21 +00:00
431bfdfc52
Add enckrbkey database persistence support
2022-12-12 17:19:17 +00:00
60302e1f02
unlock concurrent-ruby
...
Version was locked due to yanked ver 1.1.0, this should have been unlocked long ago.
2022-12-12 08:58:22 -06:00
06b72a0b1c
Bump version of framework to 6.2.31
2022-12-08 12:12:22 -06:00
89009fa66e
Bump dependency versions
2022-12-05 14:48:02 -06:00
fbc842693f
Bump version of framework to 6.2.30
2022-12-01 12:10:26 -06:00
c218063a1a
Land #17280 , Weekly dependency updates for Gemfile.lock
2022-11-24 23:11:49 +00:00
ed954eec0c
Bump version of framework to 6.2.29
2022-11-24 12:09:06 -06:00
f6bdbbd359
Weekly dependency updates for Gemfile.lock
2022-11-18 16:24:55 -06:00
39da40e4b5
Bump version of framework to 6.2.28
2022-11-17 12:21:32 -06:00
054878242a
Update ruby_smb gem to 3.2.1
2022-11-17 12:12:35 -05:00
836109c02b
Update metasploit-payloads gem to 2.0.101
...
Includes changes from:
* rapid7/metasploit-payloads#592
* rapid7/metasploit-payloads#595
2022-11-15 09:52:06 -05:00
bcf8c96128
Bump version of framework to 6.2.27
2022-11-10 12:17:58 -06:00
37fd441b0f
Land #17117 , Authenticate to Kerberos with PKINIT
2022-11-08 18:54:03 +01:00
299a4c4aca
Update metasploit-payloads gem to 2.0.99
2022-11-08 09:59:20 -05:00
8388544457
Bump version of framework to 6.2.26
2022-11-03 12:10:55 -05:00
c6a1146314
Upgrade from RASN1 v0.10.0 to v0.11.0
...
This upgrades the RASN1 library to the latests as of today and fixes
compatibility issues. The issue introduced by v0.11 was that types are
initialized with an `options` hash, which the Name class was not set to
accept.
2022-11-03 12:22:16 -04:00
bc2082aeca
Updated Gemfile.lock rex-text version from 0.2.45 to 0.2.46
2022-11-01 11:53:10 +13:00
d3c9f45133
Bump version of framework to 6.2.25
2022-10-27 12:09:31 -05:00
6eb639ea7b
Weekly dependency updates for Gemfile.lock
2022-10-20 13:48:09 -05:00
9f6134813e
Bump version of framework to 6.2.24
2022-10-20 12:14:26 -05:00
8e08189921
Bump version of framework to 6.2.23
2022-10-13 12:15:51 -05:00
edfc68a809
Bump version of framework to 6.2.22
2022-10-06 12:10:14 -05:00
58c30f10aa
Send and Receive PKINIT responses
2022-10-07 01:04:10 +11:00
2c93f16eed
Bump payloads to 2.0.97
2022-09-30 12:10:15 -05:00
47ea5d9b1d
Bump version of framework to 6.2.21
2022-09-29 19:43:39 -05:00
5d345e6689
Merge branch 'upstream-master' into feature-kerberos-authentication
2022-09-29 16:42:58 +01:00
97c99f46b6
Remove sqlite3 Gemfile.lock linux platform metadata
2022-09-28 15:45:15 +01:00
2364d7074f
Land #16960 , Add ruby debug to Gemfile
2022-09-27 12:05:58 +01:00
c436f42c8c
Land #16994 , Fix Multiple Registry Related Issues
2022-09-27 11:43:02 +01:00
b1a6d9d307
Bump version of framework to 6.2.20
2022-09-23 08:09:46 -05:00
74ca962197
Bump metasploit-payloads to 2.0.96
...
Pulls in:
* rapid7/metasploit-payloads#585
* rapid7/metasploit-payloads#587
2022-09-22 13:35:29 -04:00
cc29266df5
Fix openssl unsafe legacy renegotiation disabled error
2022-09-22 14:16:12 +01:00
c540d6b6f4
Land #17040 , Remove sqlite3 Gemfile.lock platform
2022-09-20 08:52:00 -05:00
eaf685ae28
Remove sqlite3 Gemfile.lock linux platform metadata
2022-09-20 11:07:08 +01:00
88f14950a0
Land #16688 , Add Mimipenguin
...
Merge branch 'land-16688' into upstream-master
2022-09-19 12:43:16 -05:00
664a3eb89c
bump mettle to 1.0.20
2022-09-16 18:20:06 -05:00
31613b9d01
Bump version of framework to 6.2.19
2022-09-15 16:28:10 -05:00
564b393c6d
Weekly dependency updates for Gemfile.lock
2022-09-13 09:30:10 -05:00
638c9db7bb
Bump version of framework to 6.2.18
2022-09-08 12:05:06 -05:00
3fa8c21e6d
Bump rex-text to 2.0.45
2022-09-07 13:21:31 -04:00
9e078420a4
Bump version of framework to 6.2.17
2022-09-02 09:14:48 -05:00
553d5fbaf2
Bumps rex-text version to 0.2.44
2022-09-02 13:31:44 +01:00
2966ec3504
Add in ruby/debug to Gemfile and also provide example of how to create a launch.json file to use it with vscode-rdbg
2022-09-01 13:35:08 -05:00
48594de0b4
Land #16967 , Update reline and suppress Fiddle issue
2022-09-01 13:24:07 -05:00
7113ef7486
Land #16947 , Golang formatted byte array support
...
Golang formatted byte array support payload generation.
2022-09-01 13:21:28 -04:00
66ac389b30
Bump rex-text to 2.0.43
2022-09-01 13:08:53 -04:00
1b2895de13
Bump version of framework to 6.2.16
2022-09-01 12:04:56 -05:00
16d7a9315b
Update reline and suppress Fiddle issue
...
This reverts commit 64946035105d3b8f8030
2022-09-01 11:05:54 -05:00
c3877ef551
lock reline again until better support is solved
2022-09-01 08:33:02 -05:00
5ec728a201
lock pry-byebug until project drops Ruby 2.6
2022-08-31 12:15:56 -05:00
ea919d70fc
Weekly dependency updates for Gemfile.lock
...
* unlock `reline` as new guards in 0.3.0 address load errors
2022-08-30 17:38:19 -05:00
ba527f8c3c
Update RubySMB to pull in the new functionality
...
New features include the necessary MS-ICPR definition and more
authentication support for DCERPC over named pipes.
2022-08-30 11:13:27 -04:00
97dc219064
bump mettle
2022-08-30 09:40:00 -05:00
23cb265b22
Bump version of framework to 6.2.15
2022-08-25 12:05:36 -05:00
455c25b1cb
Land #16834 , Weekly dependency updates for Gemfile.lock
2022-08-24 16:27:17 +01:00
0b5a2ffecf
Bump version of framework to 6.2.14
2022-08-18 12:03:30 -05:00
a211478d92
Bump version of framework to 6.2.13
2022-08-11 12:09:07 -05:00
c45262cd46
Land #16800 , Add support for OpenSSL 3
2022-08-05 14:20:51 -05:00
a858c15b47
Bump version of framework to 6.2.12
2022-08-04 12:05:15 -05:00
f65119b353
Support OpenSSL3 and run Ubuntu 22.04 in test matrix
2022-08-03 15:49:53 +01:00
d26eec6a44
Bump version of framework to 6.2.11
2022-07-29 13:16:33 -05:00
44f605357f
Weekly dependency updates for Gemfile.lock
...
* Restrict `octokit` until Ruby 2.6 support ends for Framework
2022-07-29 07:49:15 -05:00
963500f573
Bump version of framework to 6.2.10
2022-07-28 12:03:55 -05:00
9191003c74
Land #16739 , Weekly dependency updates for Gemfile.lock
2022-07-27 15:33:15 -05:00
c4a245640e
Bump version of framework to 6.2.9
2022-07-21 12:06:12 -05:00
f8101aa8e4
bump rex-exploitation gem from 0.1.31 to 0.1.33
2022-07-14 17:23:49 -05:00
fde4d4ae22
Bump version of framework to 6.2.8
2022-07-14 12:09:54 -05:00
887db0b76e
Bump version of framework to 6.2.7
2022-07-07 12:04:37 -05:00
debf619968
Land #16733 , add dfscoerce scanner module
2022-07-06 18:18:00 -05:00
c092291236
Bump ruby_smb to 3.1.6
2022-07-06 15:34:25 -04:00
aea37f7137
Add initial SMB Kerberos authentication support
2022-07-06 16:15:33 +01:00
f7209bfc75
Land #16724 , Modernize ms01_026_dbldecode
...
Use HttpClient; remove meterpreter code; fix stager
2022-07-05 09:36:58 -04:00
ec2445751f
Bump rex-exploitation gem from 0.1.30 to 0.1.31
2022-07-03 19:18:21 +10:00
ac4f50ebad
Weekly dependency updates for Gemfile.lock
2022-07-01 10:57:29 -05:00
a172fa0da0
Bump version of framework to 6.2.6
2022-06-30 12:05:30 -05:00
0d19e47b8d
Land #16677 , Add module for adding/deleting computers via MS-SAMR
2022-06-30 12:12:26 +02:00
685e35788b
Bump rex-text version
2022-06-29 15:11:42 -05:00
Metasploit