dledda-r7
cef2e6cd5e
feat(injection): commenting unused ntdll functions
2024-10-30 12:15:02 -04:00
dledda-r7
af77eda913
feat(injection): adding hTriggerEvent to POOLPARTYCONTEXT
2024-10-30 12:15:02 -04:00
dledda-r7
c6d066fa86
feat(injection): improving x64 shellcode, adding draft x86 shellcode
2024-10-30 12:15:01 -04:00
dledda-r7
51a086bc0b
chore(metsrv): including poolparty sources and headers to Visual Studio project
2024-10-30 12:15:00 -04:00
dledda-r7
25ee5deddf
feat(injection): update base_dispatch to use inject_via_poolparty when possible
2024-10-30 12:15:00 -04:00
dledda-r7
7f66532422
feat(injection): update base_inject to support inject_via_poolparty, added custom stub for x64
2024-10-30 12:15:00 -04:00
dledda-r7
ce387785c8
feat(injection): adding pool-party injection
2024-10-30 12:14:59 -04:00
Ashley Donaldson
a470c4dc3a
Fix edge cases in Python and C meterpreters
2024-09-25 16:28:37 +10:00
Ashley Donaldson
5c2486c003
Treat old-style path separately to new (unescaped) path
2024-09-25 16:28:37 +10:00
Ashley Donaldson
92e9de46ae
Don't use subshell with array arguments
2024-09-25 16:28:37 +10:00
Ashley Donaldson
aa04d88b87
Handle new cmd_exec TLV format
2024-09-25 16:28:37 +10:00
dledda-r7
a6da6ddac6
Land #713 , Removed GetThreadId and replaced with optional CLIENTID argument
2024-09-20 11:15:19 -04:00
dledda-r7
3420144781
Land #712 , Fix linking in MinGW for OpenThreadToken on Windows XP x86
2024-09-19 05:20:23 -04:00
cod
68bbcf2a2b
Revert "Resolve GetThreadId at runtime"
...
This reverts commit 1ac4741094
.
2024-09-17 11:47:39 +02:00
cod
a91fb72536
Revert "Update remote_thread.c"
...
This reverts commit aff81538ec
.
2024-09-17 11:47:22 +02:00
cod
a5c18499a7
C4311: Compiler Warning treated as errors in msvc
2024-09-14 19:21:11 +02:00
dledda-r7
eaf37ada4c
Land #709 , Fix memory leak in request_sys_config_sysinfo
2024-09-13 10:33:11 -04:00
cod
26c3809d6f
removed GetThreadId and replaced with optional CLIENTID argument
2024-08-27 17:35:21 +02:00
cod
aff81538ec
Update remote_thread.c
...
TTypo
2024-08-13 22:42:21 +03:00
cod
788d419c6e
Added advapi32 in LINK_LIBS for modules which uses OpenThreadToken to fix an error in mingw-x86 toolchain
2024-08-13 17:58:44 +02:00
cod
1ac4741094
Resolve GetThreadId at runtime
2024-08-12 18:08:49 +02:00
cod
446b4d18c3
typo in context
2024-08-12 16:03:55 +02:00
cod
4428531701
memory leak in request_sys_config_sysinfo
2024-08-01 10:01:17 +02:00
cod
3332a27af8
typo
2024-08-01 09:03:54 +02:00
Spencer McIntyre
52d58af59a
Update mimikatz to 45c42c71
2024-01-30 16:30:26 -05:00
Christophe De La Fuente
c7abd47585
Update the ReflectiveDLLInjection submodule to the upstream repository
2024-01-19 17:43:25 +01:00
Christophe De La Fuente
83fa146f75
Update ReflectiveDLLInjection submodule to pull in new trampoline detection logic
2024-01-16 18:27:36 +01:00
Christophe De La Fuente
1556007bfd
Update ReflectiveDLLInjection submodule to pull in Win10/8 x86 fix
2024-01-12 19:24:01 +01:00
Christophe De La Fuente
a5e33d167d
Remove include DirectSyscall.c
2024-01-10 15:01:19 +01:00
Christophe De La Fuente
7082431dae
Pull in changes from ReflectiveDLLInjection to support direct syscalls
...
- Includes ColdGate.c in each project
- Change railgun macro name to stdcall_func
- Update VS configs
- Update cmake files for mingw
- Fix cmake files for kiwi builds
- Update ReflectiveDLLInjection module to verify if CI passes
- Update include file names & ReflectiveDLLInjection submodule
2024-01-08 18:53:17 +01:00
sjanusz-r7
aeb6945bd2
Fix incorrect Memory Search variable name
2024-01-08 10:10:16 +00:00
sjanusz-r7
4f19a1c4ae
Fix Memory Search variable shadowing
2024-01-04 16:34:08 +00:00
sjanusz-r7
92d04de09c
Add maximum match length limit to regex matcher
2023-12-11 14:06:32 +00:00
sjanusz-r7
8f51ee7e6d
Move defs to top of file, remove pointer-to-pointer, make RegexNeedle contain static-size arrays
2023-12-11 14:06:32 +00:00
sjanusz-r7
72b39289d0
Compile regex in-place, rename CHAR to CHAR_RE due to Windows typedef'ing CHAR, correctly free compiled needle and associated buffer
2023-12-11 14:06:32 +00:00
sjanusz-r7
6e2889d64c
Add Windows Memory Search support using regex
2023-12-11 14:06:30 +00:00
Spencer McIntyre
4e789ee80f
Identify Windows Server 2003 as well
2023-11-29 15:56:38 -05:00
Spencer McIntyre
6bedffb29a
Add version detection for newer Windows
...
Add version detection by checking the build number for Server 2019,
Server 2022 and Windows 11.
2023-11-28 13:32:34 -05:00
Grant Willcox
2e97a96c1f
Merge pull request #666 , Update extapi OpenClipboard to support retrying if acquiring the lock failed
2023-06-28 17:33:31 -05:00
Grant Willcox
e5d546a17a
Improve description of open_clipboard_with_retries
2023-06-28 10:53:47 -05:00
adfoster-r7
475a7df4c1
Update extapi OpenClipboard to support retrying failing to acquire the lock
2023-06-27 22:42:58 +01:00
adfoster-r7
bb662d67ff
Fix broken readme code snippets
2023-06-26 13:23:13 +01:00
adfoster-r7
3d6c8105be
Land #661 , update install instructions
2023-06-21 22:58:27 +01:00
Zach Goldman
317c45b158
Update c/meterpreter/README.md
...
change 2019 filename to 2017
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
2023-06-21 14:38:49 -04:00
Spencer McIntyre
0404af93b6
Land #662 , Fix getenv bug for missing var
...
fix bug where env lookups not found return garbage
2023-06-20 14:48:41 -04:00
Zach Goldman
f193fe4c9e
Remove unnecessary second error check in env variable lookup
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
2023-06-20 10:24:38 -04:00
Ashley Donaldson
0ebf3a90fc
Switch to always using STARTUPINFOEXW
2023-06-19 06:52:32 +10:00
Zach Goldman
afecfab444
update 2017 section as well
2023-06-15 16:35:12 -05:00
Zach Goldman
670fd695cc
fix bug where env lookups not found return garbage
2023-06-15 16:33:37 -05:00
Zach Goldman
52c8737f28
update install instructions with proper path
2023-06-15 15:37:53 -05:00