OJ
c8aa435b3c
Finally removed delay loading from the last extension: extapi
2020-04-22 13:06:49 +10:00
OJ
4cd3a29319
Remove delay loading from the kiwi extension
2020-04-22 13:06:48 +10:00
OJ
f4f6bb01d8
Remove delay loading from mimikatz
2020-04-22 13:06:48 +10:00
OJ
472a6b1f9e
Move incognito to no more delay loading
2020-04-22 13:06:48 +10:00
OJ
86a4763164
Update powershell extension to avoid delay loading
2020-04-22 13:06:48 +10:00
OJ
05d5a16fe5
Get the python extension working without delay loading
2020-04-22 13:06:47 +10:00
OJ
ce8544bd2d
Move sniffer over to metserv api
2020-04-22 13:06:47 +10:00
OJ
8565f9967e
Update lanattacks to not use delay loading of metsrv
2020-04-22 13:06:47 +10:00
OJ
f7b50df020
Update peinjectory to avoid delay loading
...
Also added the GetExtensionName function.
2020-04-22 13:06:47 +10:00
OJ
136a58a194
Clean comments & update winpmem to avoid delay loading
...
Also, added the "GetExtensionName" functions to winpmum and unhook
2020-04-22 13:06:46 +10:00
OJ
9ca881235e
Change unhook extension to remove delay loading of metsrv
2020-04-22 13:06:46 +10:00
OJ
cd18f98caf
Make espia work without delay loading metsrv
2020-04-22 13:06:46 +10:00
OJ
4ffe127f04
Begin removing the delay-load dependency
...
The 'common' library has been removed. The only project that actually
used it was metsrv, so the code that metsrv required from common is now
directly compiled in as part of that project.
The common folder now contains files that are importanta cross all of
the projects, with a primary focus on the new "API" style function. What
this means is that MetSrv has an API that it exposes through a function
pointer that is passed to the extension when it's initialised. This
pointer references a structure with all the API functions wired in. This
means that:
* Extensions don't need to know anything about metsrv at compile time.
* The delay loading code can be removed, which was one of the last
instances of "metsrv.dll" as a string.
* Metsrv.dll no longer exports any functions.
More to come.
2020-04-22 13:06:40 +10:00
OJ
1fb386c93b
Remove metcli and bare extension projects
2020-04-22 13:01:26 +10:00
OJ
23b7a7b9ad
Finalise support for building on all the toolsets.
2020-04-21 09:37:11 +10:00
OJ
dbe13941c3
Update mimikatz code to avoid warnings
2020-04-16 11:06:59 +10:00
OJ
8f5d4bef01
Replace OpenSSL with LibreSSL in the Python extension
...
This was a bit of a pain, but was well worth it. Had to add a couple of
hacks to make it all work, but this is a nicer solution than having to
depend on OpenSSL and its horrendous build experience.
2020-04-15 13:43:50 +10:00
OJ
ef721b1f3c
Update make file and dependencies
2020-04-14 14:24:30 +10:00
OJ
078a3e960f
Finalise 'Release' build for both x86 and x64 _clean_
...
Still need to fix dependencies and whatnot as well.
2020-04-14 13:18:25 +10:00
OJ
1a6bb89845
Update to build against new libs, remove hacks to make things work
2020-04-14 12:40:02 +10:00
OJ
712268fab7
Get Python extension building clean
...
Warnings as errors, builds clean. Had to do some horrible hacks:
1) Include custom implementation of a lib function just so we could
link against stuff built with older VS.
2) Include legacy symbols for old io for the same reason.
2020-04-14 12:13:30 +10:00
OJ
100ffd6d5b
First round of VS2019 changes
2020-04-14 10:28:08 +10:00
Brent Cook
2e9943af8d
Land #385 , enhance Windows extapi support for window enumeration
...
Merge remote-tracking branch 'upstream/pr/385' into upstream-master
2020-04-08 06:04:41 -05:00
cn-kali-team
6d7740cc72
Process Unicode support
2020-04-05 11:53:22 +08:00
cn-kali-team
451a094269
Process Unicode support
2020-04-05 11:53:16 +08:00
cn-kali-team
25f770dcb3
Process Unicode support
2020-04-05 11:53:06 +08:00
cn-kali-team
a8df9b3604
Process Unicode support
2020-04-05 11:52:08 +08:00
bwatters
903620268f
Land #377 , Reducing permissions requested for sys_steal_token
...
Merge branch 'land-377' into upstream-master
2020-04-02 08:37:42 -05:00
cn-kali-team
348aa69f68
Add window class name filter,Unicode Support etc.
2020-03-27 22:12:37 +08:00
cn-kali-team
443b6f2f23
add window class name filter
2020-03-27 22:12:04 +08:00
Spencer McIntyre
03ddbd773e
Send addrinfo when opening a channel in Windows
2020-02-24 18:40:12 -05:00
Justin Bui
bad3ef7df4
Update config.c
...
Reduced permissions from ALL_ACCESS to the minimum access needed.
2020-02-12 20:18:18 -08:00
Francesco Soncina
b35cc0ac70
add support for PPID spoofing
...
fix #373
2019-12-17 00:57:49 +01:00
Brent Cook
363a90be11
Land #370 , update kiwi to latest mimikatz release
2019-12-06 09:34:15 -06:00
Brent Cook
c3624d73b2
bump to kiwi 2.2.0-20191125
2019-12-06 09:28:19 -06:00
Brent Cook
188fef721e
Land #366 , fix unhook extension logic around clr.dll
2019-12-05 17:02:55 -06:00
OJ
d2f7bfd420
Update to kiwi 2.2.0-20190813
2019-11-17 13:14:07 +10:00
Francesco Soncina
b527e76abd
fix: syntax error
2019-11-07 17:19:16 +01:00
Francesco Soncina
e386835042
fix: exclude clr.dll from being unhooked
...
see https://github.com/rapid7/metasploit-framework/issues/12549
2019-11-07 17:11:02 +01:00
Tim W
a74dedca56
fix espia screenshot
2019-10-22 23:51:21 +08:00
bwatters
f6808dde30
Land #352 , add windows keyevent api
...
Merge branch 'land-352' into upstream-master
2019-09-03 16:39:51 -05:00
Tim W
6253af16c8
use MapVirtualKey
2019-07-31 13:16:28 +08:00
bwatters
db171fb83a
Those should be usigned ints, not unsigned longs.
2019-07-23 10:21:21 -05:00
bwatters
509c1936a3
Update OS names to be more generic in kernel versions 10.0.x
2019-07-23 08:17:06 -05:00
Tim W
d95d827c8e
add windows mouse doubleclick
2019-06-20 15:26:07 +08:00
Tim W
ab53c872fa
fix windows move and click
2019-06-19 12:42:11 +08:00
Tim W
a29110ca5c
add windows keyevent api
2019-06-17 12:36:55 +08:00
Tim W
48171ecc48
fix crash in keyboard_send on windows
2019-05-31 06:55:02 +08:00
Tim W
16213667b7
add mouse api for windows
2019-05-13 02:32:27 +08:00
Tim W
35d908b6bf
add send_keys api for windows
2019-05-13 02:31:44 +08:00
