github/metasploit-payloads
1
Fork 0
mirror of https://github.com/rapid7/metasploit-payloads synced 2025-01-08 14:36:22 +01:00
Code Releases Activity
118 Commits 7 Branches 259 Tags 71 MiB
2047958c1c
Commit Graph

118 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Spencer McIntyre
2047958c1c Pymet transport changing improvements 2015-06-29 14:00:07 -04:00
Spencer McIntyre
1ff059a461 Pymet cleaner transport switching with responses 2015-06-28 13:16:00 -04:00
Spencer McIntyre
0b64d22704 Pymet support for changing transports 2015-06-27 20:57:45 -04:00
Spencer McIntyre
d9f9fc7bc6 Pymet support for creating and listing transports 2015-06-26 16:52:55 -04:00
Spencer McIntyre
68db19d3d4 Refactor the pymet to use transport objects 2015-06-26 14:56:31 -04:00
Spencer McIntyre
43c63a1639 Add pymet support for core_enumextcmd 2015-06-26 11:32:51 -04:00
OJ
84f5698c9d PHP meterpreter refactoring in prep for uuid work 2015-05-18 17:40:48 +10:00
OJ
281ebf1ca8 Stage UUIDs, generation options, php and python meterp uuid 2015-05-18 13:29:46 +10:00
Brent Cook
dea9f0b049 Merge branch 'master' into land-5326- 2015-05-15 11:29:54 -05:00
Brent Cook
f464bc142d Land #5280, update to Ruby on Rails 4.0 
This upgrades a number of other gems as a side-effect.
 2015-05-12 16:48:49 -05:00
Tim
3d3a2d475d Add TLV_TYPE_FILE_HASH 2015-05-10 14:18:16 +01:00
jvazquez-r7
1e2b53863d Land #5080, @bcook-r7's 'ls' and 'download' meterpreter improvements 2015-05-08 18:02:16 -05:00
darkbushido
ee3d28eaea Merge branch 'upstream' into staging/rails-4.0 
Conflicts:
	Gemfile.lock
 2015-05-05 11:00:38 -05:00
Brent Cook
9a629da783 Land #5214, initial meterpreter session recovery support 2015-05-04 16:25:27 -05:00
Brent Cook
5f52fefbef expand glob match 2015-05-04 03:56:15 -05:00
Brent Cook
b85528720b teach pymet how to glob on ls as well 2015-05-04 03:56:14 -05:00
Matt Buck
cbd53ce8a4 Merge branch 'master' into staging/rails-4.0 
Conflicts:
	Gemfile.lock
	plugins/nessus.rb
 2015-04-28 15:33:46 -05:00
Brent Cook
a1b2e2c327 fix crash on fork with OSX Python meterpreter using SystemConfiguration 
Calling into SystemConfiguration before forking seems to allow the child
process to use it without a null pointer dereference.
 2015-04-21 17:17:27 -05:00
Meatballs
221e6c6a74 Dont fork on OSX 2015-04-17 11:43:07 +01:00
Matt Buck
a100df0152 Merge branch 'master' into staging/rails-4.0 
Conflicts:
	Gemfile.lock
 2015-04-10 15:35:27 -05:00
Matt Buck
072a553e03 Merge branch 'master' into staging/rails-4.0 
Conflicts:
	Gemfile.lock
	db/schema.rb
	lib/msf/core/db_manager/session.rb
	metasploit-framework-db.gemspec
 2015-04-06 11:27:00 -05:00
Fernando Arias
4d392ccf8d Merge branch 'staging/rails-4.0' of github.com:rapid7/metasploit-framework into staging/rails-4.0 
Conflicts:
	Gemfile.lock
	metasploit-framework.gemspec
 2015-04-03 13:56:38 -05:00
OJ
b56bc0b513 Code fixes as per suggestions, fix build 
* Use of `ERROR_FAILURE_WINDOWS` in python meterpreter.
* Moving of constants/logic to client_core instead of
command_dispatcher.
* Fix spec include.
 2015-04-02 09:05:38 +10:00
OJ
684d178fe6 Merge branch 'upstream/master' into dynamic-transport 2015-04-01 18:53:20 +10:00
OJ
2f575ca273 Add machine_id functionality to python meterpreter 2015-04-01 17:50:50 +10:00
Spencer McIntyre
bd8441d963 Pymet dont validate ssl certs for 2.7.9/3.4.3 2015-03-25 19:49:42 -04:00
Spencer McIntyre
b847592cf5 Python reverse HTTPS stager 2015-03-21 12:43:14 -04:00
Brent Cook
5e547929be do not die if the uid/gid of a file is > 65535 
The meterpreter stat command is a little broken in that it assumes uid/gids
16-bit. Prevent this from erroring with python meterpreter on a system with a
large uid/gid.
 2015-03-20 22:34:01 -05:00
Spencer McIntyre
a8d7805644 Pymet support for creating and renaming unicode paths 2015-03-20 08:49:23 -04:00
Spencer McIntyre
bc53c1e843 Pymet improved unicode support for working directories 2015-03-19 18:31:42 -04:00
Spencer McIntyre
c521077984 Fix pymet for unicode files and directories 
Closes #4958
 2015-03-19 17:23:00 -04:00
Brent Cook
e507c71699 use the correct implementation for query_value_direct 2015-03-03 22:29:23 -06:00
Brent Cook
f3139b9316 add support for direct reg access to pymeterpreter 
When testing this, I found that the python meterpreter hangs running the
following, with or without these changes.

```
use exploit/multi/handler
set payload python/meterpreter/reverse_tcp
set PythonMeterpreterDebug true
set lhost 192.168.43.1
exploit -j
sleep 5
use exploit/windows/local/trusted_service_path
set SESSION 1
check
```

This turned out to be that pymeterpreter ate all the rest of the data in the
recv socket by consuming 4k unconditionally. This would only be exposed if
there were multiple simultaneous requests so the recv buffer filled beyond a
single request, e.g. when using the registry enumeration functions.
 2015-02-17 06:11:20 -06:00
Brent Cook
853996a980 Land #4600, jvazquez-r7's Linux meterpreter bins 2015-01-20 09:38:35 -06:00
eyalgr
eda0711014 Update meterpreter.py 
Read until exactly pkt_length bytes
 2015-01-18 15:45:28 +02:00
eyalgr
de666d9ade Update meterpreter.py 
Read exactly pkt_length from socket, prevents over-reading.
 2015-01-18 15:29:23 +02:00
Spencer McIntyre
ceb6d55837 Remove file exists check from stdapi_fs_delete_file 2014-12-09 11:03:57 -06:00
Spencer McIntyre
07f9d037ad Error messages for the python meterpreter 2014-12-09 11:03:57 -06:00
Spencer McIntyre
e9293ad4ef Fix stdapi_sys_config_getenv for Python3 2014-12-04 15:58:17 -06:00
Spencer McIntyre
f4bd471ee4 Prefer the pwd module for getuid when available 2014-12-04 15:58:17 -06:00
Spencer McIntyre
b5b1c9f832 Fix pymeterp bugs from testing in osx and python3 2014-11-17 14:04:30 -05:00
Spencer McIntyre
c91d594b73 Pymeterp http proxy and user agent support 2014-11-16 14:29:20 -05:00
Spencer McIntyre
bf55d98f32 Escape inserted vars and fix core_loadlib 2014-11-15 15:06:18 -05:00
Spencer McIntyre
5bacde2dee Patch pymeterp http settings 2014-11-14 17:12:23 -05:00
Spencer McIntyre
bdff25656f Pymet reverse_http stager basic implementation 2014-11-14 14:15:46 -05:00
Spencer McIntyre
529549d13a Prepare for a reverse_http stager 2014-11-14 11:15:22 -05:00
Spencer McIntyre
2b87421748 Don't fail if username_from_token returns None 2014-11-10 09:15:16 -05:00
Spencer McIntyre
796133af57 Add getsid to the python meterpreter 2014-11-08 20:57:24 -05:00
Spencer McIntyre
0c8babc94e Add sys_process_kill to the python meterpreter 2014-10-07 10:10:22 -04:00
Spencer McIntyre
510ef4e3ca Remove an unnecessary var and fix process_close 2014-10-02 20:52:45 -04:00