github/metasploit-payloads
1
Fork 0
mirror of https://github.com/rapid7/metasploit-payloads synced 2025-02-22 03:19:04 +01:00
Code Releases Activity
1,490 Commits 7 Branches 260 Tags
Commit Graph

937 Commits

Author SHA1 Message Date
HD Moore
cdd9565dab This fixes garbled characters in lsass hashdump on some platforms 
git-svn-id: file:///home/svn/framework3/trunk@13582 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-19 05:09:49 +00:00
Matt Weeks
d3aef86f22 More PXE dust for extra magic! 
git-svn-id: file:///home/svn/framework3/trunk@13493 4d416f70-5f16-0410-b530-b9f4589650da
 2011-08-05 17:10:27 +00:00
James Lee
7363744f94 add a request type for grabbing the host's directory separator, fixes #4892 
git-svn-id: file:///home/svn/framework3/trunk@13346 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-26 20:51:33 +00:00
James Lee
808dd72cc5 meterpreter compiles on modern linux! see #2418 
git-svn-id: file:///home/svn/framework3/trunk@13333 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-25 07:59:51 +00:00
James Lee
a57f8ebd07 tell the linker to make DT_HASH sections instead of DT_GNU_HASH which msflinker can't handle 
git-svn-id: file:///home/svn/framework3/trunk@13332 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-24 23:50:55 +00:00
James Lee
05bb0342ca add a 'clean' target 
git-svn-id: file:///home/svn/framework3/trunk@13328 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-24 19:25:19 +00:00
HD Moore
aec3ef7e6b Apply a diff to fix bad ifdef usage 
git-svn-id: file:///home/svn/framework3/trunk@13324 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-23 20:31:58 +00:00
HD Moore
70f2d46291 Add an ifdef around the wininet setup routine 
git-svn-id: file:///home/svn/framework3/trunk@13323 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-23 20:16:19 +00:00
James Lee
778ff381d3 add support for java/meterpreter/reverse_http. assuming i didn't miss any files, fixes #4946, thanks mihi! 
git-svn-id: file:///home/svn/framework3/trunk@13213 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-18 23:15:06 +00:00
James Lee
e2388db2c0 fix some incorrect arguments to memset, thanks sbz for noticing. 
git-svn-id: file:///home/svn/framework3/trunk@13123 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-07 23:14:44 +00:00
James Lee
07af2ba697 add support for absolute paths, fixes #4874 
git-svn-id: file:///home/svn/framework3/trunk@13108 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-06 21:35:51 +00:00
HD Moore
bef89e3aa5 Merge in changes from thelightcosine that add RegLoadKey/RegUnloadKey support 
git-svn-id: file:///home/svn/framework3/trunk@13089 4d416f70-5f16-0410-b530-b9f4589650da
 2011-07-02 04:03:23 +00:00
HD Moore
18f78f96a2 Use size_t instead of int 
git-svn-id: file:///home/svn/framework3/trunk@13063 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-29 06:35:44 +00:00
HD Moore
792af05bb6 Lets try this again, POSIX style 
git-svn-id: file:///home/svn/framework3/trunk@13061 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-29 06:30:24 +00:00
HD Moore
a2da008614 Add md5/sha1 
git-svn-id: file:///home/svn/framework3/trunk@13060 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-29 06:12:15 +00:00
HD Moore
a9893a8118 Make sure empty replies are take into account for the session keep alive 
git-svn-id: file:///home/svn/framework3/trunk@13052 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-28 21:22:48 +00:00
HD Moore
ece339958d Adds a remote shutdown api 
git-svn-id: file:///home/svn/framework3/trunk@13050 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-28 18:11:17 +00:00
HD Moore
8874823a91 Re-add the missing SendRequest, make migrate work 
git-svn-id: file:///home/svn/framework3/trunk@13048 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-28 17:25:37 +00:00
HD Moore
17de35d7fb Clean a few things up 
git-svn-id: file:///home/svn/framework3/trunk@13046 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-28 07:40:32 +00:00
HD Moore
0050ed8f3a Rework this for compatibility with older OSs 
git-svn-id: file:///home/svn/framework3/trunk@13045 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-28 07:30:48 +00:00
HD Moore
118d6b2bfb Merge in some recent meterpreter work, still a ways off before this is ready to use. 
git-svn-id: file:///home/svn/framework3/trunk@13044 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-28 05:57:36 +00:00
HD Moore
fb4f5fcb9f Adds support for connecting to remote registry services with the current processes' credentials. See #1894 
git-svn-id: file:///home/svn/framework3/trunk@12923 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-12 00:00:56 +00:00
HD Moore
3dc99fed4e Fixes #4296 by merging in David Maloney's registry patch. The ruby side will be merged once the new binaries are in SVN 
git-svn-id: file:///home/svn/framework3/trunk@12920 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-11 23:04:25 +00:00
HD Moore
42aef8dd93 Check the correct counter before bailing, this would cause a segmented header to kill the session. Pointed out by an anonymous contributor (new bins once the rest of the pending merge work is finished). 
git-svn-id: file:///home/svn/framework3/trunk@12918 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-11 22:53:04 +00:00
HD Moore
d2b80c0237 Remove an unused variable 
git-svn-id: file:///home/svn/framework3/trunk@12917 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-11 22:43:31 +00:00
HD Moore
b461ad297f Fix up the sniffer build environment, add the pivot project to the solution (even though its not part of the OSS tree). 
git-svn-id: file:///home/svn/framework3/trunk@12916 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-11 22:42:59 +00:00
James Lee
41429ddbf4 merge mihi's patch for adding ps and audio recording to java meterpreter, fixes #3898 
git-svn-id: file:///home/svn/framework3/trunk@12372 4d416f70-5f16-0410-b530-b9f4589650da
 2011-04-19 22:39:25 +00:00
James Lee
1ae9217a57 use the correct length for copying arguments, fixes #3526, thanks mihi! 
git-svn-id: file:///home/svn/framework3/trunk@11700 4d416f70-5f16-0410-b530-b9f4589650da
 2011-02-02 21:26:29 +00:00
Stephen Fewer
bc2d317ae0 Fix for #3482, the empty value occurs when no service pack is present. The fix simply tests for this. Also remove the two unused params on the _snprintf call. 
git-svn-id: file:///home/svn/framework3/trunk@11542 4d416f70-5f16-0410-b530-b9f4589650da
 2011-01-11 14:29:16 +00:00
Matt Weeks
8918ab0469 Fix error with recording on certain Windows versions. 
git-svn-id: file:///home/svn/framework3/trunk@11311 4d416f70-5f16-0410-b530-b9f4589650da
 2010-12-12 20:12:03 +00:00
Matt Weeks
19fddbee1d Catch invalid webcam frame requests. 
git-svn-id: file:///home/svn/framework3/trunk@11160 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-29 02:23:01 +00:00
Matt Weeks
9c2adb0e65 Add audio (microphone) recording support to stdapi. 
git-svn-id: file:///home/svn/framework3/trunk@11087 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-22 00:32:39 +00:00
Matt Weeks
264943684a Properly return error if no webcams present (instead of killing session). 
git-svn-id: file:///home/svn/framework3/trunk@11041 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-14 19:59:31 +00:00
Matt Weeks
a9d2817d01 Merge webcam extension into stdapi. 
git-svn-id: file:///home/svn/framework3/trunk@10997 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-11 22:36:54 +00:00
Matt Weeks
1535bf38d8 Fix memory leak. 
git-svn-id: file:///home/svn/framework3/trunk@10964 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 23:37:56 +00:00
Matt Weeks
44fe0b8f80 Add functional in-memory webcam support. 
git-svn-id: file:///home/svn/framework3/trunk@10954 4d416f70-5f16-0410-b530-b9f4589650da
 2010-11-09 02:24:28 +00:00
pks
5e6fe11920 Partial implementation of in memory execution and update binary 
git-svn-id: file:///home/svn/framework3/trunk@10839 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-28 12:44:39 +00:00
HD Moore
95178f024c This commit overhauls much of the meterpreter timeouts and staging processes. This fixes a bug with concurrent session handling, reduces CPU load by caching a single SSL certificate for all sessions, increases all of the critical timeouts, and generally makes mass ownage work better. We still need to limit the maximum number of concurrent on_session() threads to something sane to prevent sesssion spikes from dragging out the process even longer. The C-side meterpreter change is minimal and will only help with future compatibility if we move to non-blocking fd's for the SSL socket. 
git-svn-id: file:///home/svn/framework3/trunk@10595 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-08 04:11:47 +00:00
pks
530115231c Add the ability to clean up file descriptors in the remote process. 
git-svn-id: file:///home/svn/framework3/trunk@10587 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-07 11:52:45 +00:00
pks
191bb4f993 Implement per dispatch run channel_write of packets, remove __FUNCTION__ due to dprintf changes, and fix shutting down networkpug interfaces. Re-add networkpug binary. 
git-svn-id: file:///home/svn/framework3/trunk@10586 4d416f70-5f16-0410-b530-b9f4589650da
 2010-10-07 11:52:38 +00:00
pks
d5c5b55664 Allow debugging to be enabled. 
This will make it easier to hopefully track down bugs.

exploitme-posix.c - make complete stack executable. On some kernel versions, execstack doesn't do the trick.

git-svn-id: file:///home/svn/framework3/trunk@10485 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-26 05:58:59 +00:00
pks
5f49e37fc7 Networkpug improvements 
git-svn-id: file:///home/svn/framework3/trunk@10484 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-26 05:58:48 +00:00
pks
76e6e9090d Change base from 0x90040000 to 0x20040000. 
This is more portable across kernel versions / patches it seems. This
will be better for SEGMEXEC compatibility as well.

git-svn-id: file:///home/svn/framework3/trunk@10455 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-24 04:06:28 +00:00
pks
155854e533 Implement a sniffer for posix meterpreter using libpcap. 
This version of the sniffer supports packet filtering after the packet count variable, like so:

meterpreter > sniffer_interfaces

1 - 'eth0' ( type:0 mtu:1514 usable:false dhcp:false wifi:false )
2 - 'any' ( type:0 mtu:1514 usable:false dhcp:false wifi:false )
3 - 'lo' ( type:0 mtu:1514 usable:false dhcp:false wifi:false )

meterpreter > use sniffer
Loading extension sniffer...success.
meterpreter > sniffer_start 1 500000 icmp <-- picks up only icmp packets.
[*] Capture started on interface 1 (500000 packet buffer)
meterpreter > sniffer_stop 1
[*] Capture stopped on interface 1

git-svn-id: file:///home/svn/framework3/trunk@10424 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-21 11:43:30 +00:00
pks
c1153272b2 Initial import of networkpug, a pivoting interface using libpcap to monitor/inject packets on a interface on the remote machine. 
git-svn-id: file:///home/svn/framework3/trunk@10423 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-21 09:35:46 +00:00
pks
99646300d3 Strip debugging symbols when compiling the linker. 
git-svn-id: file:///home/svn/framework3/trunk@10419 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-21 05:13:53 +00:00
pks
3f3be8e085 Railgun is windows specific at the moment, move the header include down a little bit and #ifdef the functions down a bit. 
git-svn-id: file:///home/svn/framework3/trunk@10418 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-21 05:13:47 +00:00
pks
8a93b682a0 Implement locking in dl* functions 
git-svn-id: file:///home/svn/framework3/trunk@10417 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-21 05:13:40 +00:00
pks
1feb1ff4c1 Implement a crash handler to ease debugging 
git-svn-id: file:///home/svn/framework3/trunk@10416 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-21 05:13:34 +00:00
pks
b9743b90a6 Missing file, QWORD compile fix, and thread error handling improvements. 
asm/ucontext.h will be used to implement a crash handler in msflinker,
which should allow for easier debugging and development of msflinker
and extension code.

thread.c/h, fixes a bug if you thread_create(), but stop the thread before
running it.

Compilation fix for WSAGetLastError

git-svn-id: file:///home/svn/framework3/trunk@10415 4d416f70-5f16-0410-b530-b9f4589650da
 2010-09-21 05:13:27 +00:00