github/metasploit-framework
1
Fork 0
mirror of https://github.com/rapid7/metasploit-framework synced 2024-11-05 14:57:30 +01:00
Code Releases Activity
51,405 Commits 20 Branches 919 Tags 1.3 GiB
e7974e4955
Commit Graph

377 Commits

Author SHA1 Message Date
christopher lee
68d72cbfa7 Goliath Cleanup in preparation for merge to master 2018-03-06 10:21:22 -06:00
Brent Cook
d737f77b84 bump gems, lock ruby_smb for now 2018-02-22 10:45:49 -06:00
Brent Cook
05e002e3c5
Land #9366, Add x64 staged Meterpreter for macOS 2018-02-19 23:15:03 -06:00
Brent Cook
d28f6888b2 bump payloads, include bind_named_pipe support 2018-02-15 17:37:33 -06:00
Brent Cook
316e657d10
bump gems, remove rbnacl/ffi since unneeded 2018-02-12 11:21:04 -06:00
Brent Cook
c7ccfb7952 update payload to flush process channel buffers on exit 2018-02-07 08:04:34 -06:00
Brent Cook
d82b8cbf63 bump payloads, fix php meterpreter 
a syntax error slipped in, let's fix it
 2018-01-26 17:48:11 -06:00
bwatters-r7
d62d61667d
bump metasploit-payloads 2018-01-23 07:26:08 -06:00
Brent Cook
7ad296d511 bump payloads, fix cmd_exec meterpreter logic 2018-01-21 07:56:24 -06:00
Brent Cook
f125e13278
python meterpreter whitespace normalization 2018-01-09 16:08:52 -05:00
Tim W
44fbb171a6 osx stager 2017-12-29 11:13:25 +08:00
RageLtMan
18f3815147 Update TLS certificate generation routines 
Msf relies on Rex::Socket to create TLS certificates for services
hosted in the framework and used by some payloads. These certs are
flagged by NIDS - snort sid 1-34864 and such.

Now that Rex::Socket can accept a @@cert_provider from the Msf
namespace, a more robust generation routine can be used by all TLS
socket services, provided down from Msf to Rex, using dependencies
which Rex does not include.

This work adds the faker gem into runtime dependencies, creates an
Msf::Exploit::Remote::Ssl::CertProvider namespace, and provides
API compatible method invocations with the Rex version, but able
to generate higher entropy certs with more variables, options, etc.

This should reduce the hit rate against NIDS on the wire, reducing
pesky blue team interference until we slip up some other way. Also,
with the ability to generate different cert types, we may want to
look at extending this effort to probide a more comprehensive key
oracle to Framework and consumers.

Testing:
  None yet, internal tests pending.
  Travis should fail as this requires rex-socket #8.
 2017-12-28 21:00:03 -05:00
Jon Hart
cf21d13b2e
Resolve conflict 2017-12-20 18:58:16 -08:00
Brent Cook
24907938bb
bump payloads, various fixes 2017-12-20 16:47:37 -06:00
Brent Cook
df4f62cde9 bump to mettle 0.3.3 2017-12-20 15:58:17 -06:00
Jon Hart
f15309bc48
Add basic framework for interacting with MQTT 2017-12-20 12:28:02 -08:00
Brent Cook
6b216f2a20
Land #9290, Fix OverrideLHOST/LPORT with http/s Meterpreter payloads 2017-12-20 00:26:06 -06:00
Brent Cook
9f144ce8d4
Land #9151, mettle extension support + sniffer module 2017-12-18 21:49:40 -06:00
Jeffrey Martin
04f294bd53
Fix #8972, Remove libsodium until packaged better 
Due to issues with packaging for multiple platforms libsodium as an optional dependency for 'rbnacl' is being removed.  Once packaging issue are resolved this will be restored.  This removes support for `ed25519` keys used with ssh for the time being however manual installation of this gem allows user to workaround this limitation.
 2017-12-18 15:21:27 -06:00
Brent Cook
2a94a4417a bump payloads 2017-12-18 10:01:10 -06:00
Brent Cook
3f6846c332 update payloads with python retry fix 2017-12-12 03:13:38 -06:00
Brent Cook
602335abf1 bump payloads 2017-12-11 04:11:21 -06:00
Brent Cook
edb2d8b762
fix windows unicode usernames, add recursive directory delete 2017-11-29 17:01:01 -06:00
Brent Cook
035d1ef2c6
bump payloads, pull in AES negotation & transport fixes 2017-11-25 18:21:57 -06:00
Brent Cook
8645a518b3 add mettle support for custom headers 2017-11-24 20:27:34 -06:00
Brent Cook
4050985649
update payloads 2017-11-21 13:53:33 -06:00
OJ
6f9671ff11
Updated Payloads version to 1.3.14 2017-11-08 12:36:50 +10:00
Brent Cook
ebaf0c5484 bump mettle, update toolchain, add e500v2 and reduce size of x86_64 2017-10-30 05:09:31 -05:00
Brent Cook
254c2a33d3 bump metasploit payloads, windows meterpreter fixes 2017-10-27 11:44:23 -05:00
Jeffrey Martin
f2cba8d920
Land #8933, Web_Delivery - Merge regsvr32_applocker_bypass_server & Add PSH(Binary) 
This restores the original PR
 2017-10-25 16:29:11 -05:00
Jeffrey Martin
ca28abf2a2 Revert "Land #8933, Web_Delivery - Merge regsvr32_applocker_bypass_server & Add PSH(Binary)" 
This reverts commit 4999606b61, reversing
changes made to 4274b76473.
 2017-10-25 16:19:14 -05:00
Jeffrey Martin
4999606b61 Land #8933, Web_Delivery - Merge regsvr32_applocker_bypass_server & Add PSH(Binary) 2017-10-25 12:44:04 -05:00
Tim
7e398e2ef5 Fix #9111, bump metasploit-payloads gem to include php 5.3.10 fix 2017-10-24 11:40:02 +08:00
OJ
7ea14e8431
Update payloads for getsystem fixes 2017-09-28 09:43:02 +10:00
g0tmi1k
1ee590ac07 Move over to rex-powershell and version bump 
Version bump for:
- https://github.com/rapid7/rex-powershell/pull/10
- https://github.com/rapid7/rex-powershell/pull/11
 2017-09-25 13:45:06 +01:00
William Webb
721277d39d
bump metasploit-payloads to 1.3.8 2017-09-20 05:04:13 -05:00
Brent Cook
6b0b2550ec
bump payloads, add shell expansion for java/android payloads 2017-09-08 13:45:54 -05:00
Brent Cook
d38ee0f1ee bump payloads, grab java/android fixes for #8938 
fixes #8938
 2017-09-08 10:08:22 +02:00
Brent Cook
9877a61eff bump payloads 2017-09-07 01:36:25 -05:00
OJ
7acd772c10 Pivot session stability, display and handling 2017-09-07 01:36:21 -05:00
Brent Cook
928d632042 import https://github.com/fizx/robots.git 0.10.1 2017-08-28 15:47:46 -05:00
Brent Cook
582b2e238e update mettle payload to 0.2.2, add background and single-thread http comms 2017-08-28 05:31:44 -05:00
Brent Cook
430251b8f6
fix compatibility with php meterpreter 2017-08-21 15:37:31 -05:00
Brent Cook
20b6f37fb8 bump payloads with crypttlv format awareness 2017-08-20 19:01:42 -05:00
Brent Cook
b9b779da9e update references to sourceforge ML 2017-08-20 13:23:54 -05:00
Brent Cook
bb2304a2d1
Land #8769, improve style, compatibility, for ssh modules 2017-08-01 21:43:32 -05:00
Brent Cook
390f4d52db add ed25519 support for net-ssh 2017-08-01 16:05:25 -05:00
Brent Cook
ddc4fd95a5 Update payloads 
This incorporates support for HiDPI displays with screen capture for Windows
meterpreter, and fixes a communications bug with Android meterpreter.
 2017-07-28 09:56:03 -07:00
Brent Cook
a0511c79a4
pull in minor build fixes and filesystem stat implementation from python 
This pulls in https://github.com/rapid7/metasploit-payloads/pull/219
and https://github.com/rapid7/metasploit-payloads/pull/195
 2017-07-23 22:37:43 -07:00
Brent Cook
3bc0c18e6a Properly handle threads and window destruction, add PID logging 
This pulls in https://github.com/rapid7/metasploit-payloads/pull/213
which fixes https://github.com/rapid7/metasploit-framework/issues/8608
and adds PID logging to verbose keyboard capture.
 2017-07-23 22:27:42 -07:00
Brent Cook
8444038c62
Add eval alternative to PHP Meterpreter to bypass suhosin 
See https://suhosin.org/stories/index.html for more information on this system.
 2017-07-23 22:04:09 -07:00
Brent Cook
b75530b978 Fix an issue where 'sleep' with Python Meterpreter appears to fail. 2017-07-23 05:38:06 -07:00
Brent Cook
302b66c2d8
add payloads support for OSX with python meterpreter 2017-07-23 05:26:59 -07:00
Brent Cook
072b0dc90b Hide errors in Windows Meterpreter sessions 
In Windows Meterpreter sessions, set newly created threads via
SetThreadErrorMode to not display error popups when there are failures.
 2017-07-23 05:09:01 -07:00
Brent Cook
1d0db02a64 bump payloads 2017-07-20 09:10:19 -05:00
Brent Cook
cc3168933f update mettle payloads, template generator 2017-07-18 13:13:38 -05:00
David Maloney
3ad4ff69b4
try and hard lock rex-powershell version 
remove this later when the issues with this gem release are addressed
 2017-07-17 15:25:26 -05:00
Christian Mehlmauer
3c7d6c3a6a
fixed some bugs 2017-07-17 10:10:12 +02:00
Christian Mehlmauer
7d6992c0e8
respect windows 2017-07-17 09:58:20 +02:00
Christian Mehlmauer
d24e2943ca
update docker stuff 2017-07-10 16:38:10 +02:00
Brendan Coles
6a29b87a4c Add pdf-reader dependency 2017-07-07 11:19:06 +00:00
William Webb
6349026134
Land #8442, Exploit module for Backup Exec Windows Agent UaF 2017-06-28 10:39:28 -05:00
Brent Cook
eba8979914 bump payloads 2017-06-27 04:08:15 -05:00
Rob Fuller
2918b3af13
Land #8599, Dynamic DNS updater module 2017-06-25 15:08:22 -05:00
Brent Cook
7a006e0f71 bump payloads 2017-06-23 18:13:52 -05:00
OJ
87cee65a06
Bump payloads to 1.2.35 to include kiwi updates 2017-06-23 13:43:00 +10:00
Brent Cook
fda2e8c73d
Land #8523, Add support for session GUIDs 2017-06-22 20:10:10 -05:00
KINGSABRI
5528084e27 add Dnsruby 2017-06-22 15:55:04 -05:00
Brent Cook
ebfd920222 document why 2017-06-21 03:13:43 -05:00
Brent Cook
22db17a87a bind ruby-pg back to version 0.20 2017-06-21 03:11:11 -05:00
OJ
a3f3dc0a70
Upload payloads/mettle gems, update cache sizes 
Updated both the metasploit-payload and metasploit-payload-mettle gems
to the versions that match for the session GUID pull requests. Updated
the payload cached sizes to match the new payloads.
 2017-06-09 17:15:52 +10:00
Brent Cook
5f10e63923 bump payloads 2017-06-05 08:43:16 -05:00
Brent Cook
43ac76ee2b
Fix #8464, use pathname when determining where .git is 2017-05-30 08:56:10 -05:00
Brent Cook
b05fa9c01e add missing dirname 2017-05-30 08:50:43 -05:00
Brent Cook
a01a2ead1a
Land #8467, Samba CVE-2017-7494 Improvements 2017-05-30 00:15:03 -05:00
Brent Cook
e31e3fc545 add additional architectures and targets 2017-05-30 00:07:37 -05:00
Brent Cook
1a8f84083c data/gui has not existed in a long time 2017-05-26 22:57:59 -05:00
Brent Cook
0f832fd4d1 skip generating gem file contents if this is not a git checkout 2017-05-26 22:57:59 -05:00
Brent Cook
ab6b5f381d msfupdate is no longer a distributed binary, it's a dev tool 2017-05-26 22:57:59 -05:00
Matthew Daley
52363aec13 Add module for CVE-2017-8895, UAF in Backup Exec Windows agent 
This module exploits a use-after-free vulnerability in the handling of
SSL NDMP connections in Veritas/Symantec Backup Exec's Remote Agent for
Windows. When SSL is re-established on a NDMP connection that previously
has had SSL established, the BIO struct for the connection's previous
SSL session is reused, even though it has previously been freed.

Successful exploitation will give remote code execution as the user of
the Backup Exec Remote Agent for Windows service, almost always
NT AUTHORITY\SYSTEM.
 2017-05-24 00:18:20 +12:00
Brent Cook
c59371dd5e add ruby backports compat library 2017-05-17 23:41:20 -05:00
Brent Cook
337db56d4f bump payloads 2017-05-11 14:57:10 -05:00
James Lee
fd05cea033
Update packetfu and remove version lock 2017-05-09 11:03:32 -05:00
Zero_Chaos
9295a39c92 update packetfu dep now that 1.1.13 is released 
Please use the release instead of the pre-release
 2017-05-09 11:18:28 -04:00
Brent Cook
7f1e2e6c71 bump metasploit-payloads 2017-05-08 17:34:55 -05:00
Brent Cook
0bc9d9259d meterpreter bugfixes 
fixed stdapi_fs_mount_show to show full mapped drive path for Python
Meterpreter on Windows

Updated the Windows Meterpreter `getprivs` command to list all privileges
 2017-05-08 16:26:32 -05:00
Brent Cook
7c11e0065d update mettle 2017-04-26 18:00:50 -05:00
Brent Cook
7613bd8964 bump metasploit-payloads, fix 64-bit builds 2017-04-16 08:52:41 -05:00
Brent Cook
fe33fe5571 bump payloads with new keyscan code 2017-04-14 21:54:50 -05:00
Brent Cook
7eaba1fdee bump payloads 2017-04-14 13:17:25 -05:00
Brent Cook
eedbf25f06 bump android meterpreter, adding in-app screenshot support 2017-04-14 12:38:53 -05:00
Brent Cook
f8a94de671 bump metasploit-payloads, enhance windows support in python meterpreter 2017-04-14 12:28:52 -05:00
Brent Cook
5dd681ead7 we only need xmlrpc for ruby >= 2.3 2017-04-13 17:33:29 -05:00
Brent Cook
cdccd1df19 add xmlrpc as an explicit dependency 2017-04-13 07:12:38 -05:00
Jeffrey Martin
157d28ab3d
make metasploit-aggregator a framework package 2017-04-12 12:33:13 -05:00
Jeffrey Martin
c845745f0b
remove platform restriction on metasploit-aggregator 2017-04-06 13:09:09 -05:00
David Maloney
2d9c2321d1
add ruby_smb as a dep 
added the ruby_smb library to the gemspec

MS-2557
 2017-03-28 16:12:12 -05:00
Brent Cook
9542087642 bump mettle to 0.1.8 2017-03-21 16:45:25 -05:00
Brent Cook
2701fef34b bump to metasploit-payloads 1.2.29 2017-03-17 17:34:16 -05:00
Brent Cook
0631bc4c29 bump payloads and such 2017-03-16 23:51:51 -05:00