github/metasploit-payloads
1
Fork 0
mirror of https://github.com/rapid7/metasploit-payloads synced 2024-11-26 17:41:08 +01:00
Code Releases Activity
3,170 Commits 6 Branches 258 Tags 70 MiB
d022d58ae6
Commit Graph

3170 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Grant Willcox
d022d58ae6
Land #601, Pull in upstream COFFLoader changes 2022-12-12 15:50:59 -06:00
Spencer McIntyre
2e4cb890d3 Pull in upstream COFFLoader changes 
Changes include fixes for running BOFs compiled from VS which contained
some relocations that were not being properly handled.

See:
  * https://github.com/trustedsec/COFFLoader/issues/7
  * https://github.com/trustedsec/COFFLoader/pull/8
  * https://github.com/trustedsec/COFFLoader/pull/9
 2022-12-12 08:51:28 -05:00
Metasploit
eb94e82457 Bump metasploit-payloads to 2.0.103 2022-12-08 15:06:16 -06:00
Spencer McIntyre
77464da05e
Land #598, arp command for windows pymeterpreter 
add arp command to windows python meterpreter
 2022-12-08 15:55:42 -05:00
Alex Romero
5b9356d6d2
add arp command to windows python meterpreter 
Update python/meterpreter/ext_server_stdapi.py - apply review suggestion

return associated error code

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py - apply review suggestion

propagate return value

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py - apply review suggestion

commit changes:
- move error codes global to make them reusable
- call iphlpapi.dll directly from windll
- bug fix ipnet_table casting memory allocation

Update python/meterpreter/ext_server_stdapi.py

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

remove TABLE_IPNETTABLE function
 2022-12-07 14:49:14 -05:00
Metasploit
ffa8097832 Bump metasploit-payloads to 2.0.102 2022-11-15 08:55:40 -06:00
Spencer McIntyre
79341d9dfb
Land #595, Mimikatz update 2022-11-15 09:45:46 -05:00
Metasploit
c534275fca Bump metasploit-payloads to 2.0.101 2022-11-10 16:19:29 -06:00
Grant Willcox
3d8b02f17b
Land #592, Fix #584: Close memory and handle leaks 2022-11-10 16:10:23 -06:00
Grant Willcox
f5bae3b63c
Cleanup handles if memory allocation fails before exiting get_token_list 2022-11-10 15:56:05 -06:00
Spencer McIntyre
80e8b721ef Close the handle when it wasn't copied 
Close the hObject handle when it wasn't copied into token_list.
 2022-11-10 16:08:16 -05:00
Spencer McIntyre
d0ab25e521 Close memory and handle leaks 2022-11-10 13:31:28 -05:00
bwatters-r7
c466356cb9
Update mimikatz pinned submodule 2022-11-09 08:16:13 -06:00
Metasploit
c2bc9b2b4a Bump metasploit-payloads to 2.0.100 2022-11-07 15:53:57 -06:00
adfoster-r7
78ba9ee8d3
Land #596, Remove references to wintypes 2022-11-07 21:45:23 +00:00
Spencer McIntyre
f877a4f8cb Remove references to wintypes 
References to wintypes were breaking the Python Meterpreter on platforms
where the wintypes module was not present (anything other than Windows).
 2022-11-07 16:30:57 -05:00
Metasploit
3eb6072275 Bump metasploit-payloads to 2.0.99 2022-11-03 16:16:43 -05:00
Spencer McIntyre
bc1bb0a908
Land #593, add shutdown command for python 
add shutdown command for python (windows only)
 2022-11-03 17:07:42 -04:00
Alex Romero
cdddfbcc7e Update python/meterpreter/ext_server_stdapi.py 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update python/meterpreter/ext_server_stdapi.py

remove mistaken 't' in reviews
 2022-11-03 16:39:06 -04:00
bwatters-r7
0331174548
Fixes to support compiling new updates to mimikatz 2022-11-03 10:50:18 -05:00
Alex Romero
d238661726 add shutdown command for python (windows only) 2022-10-31 17:16:36 -04:00
Metasploit
ee92a300ba Bump metasploit-payloads to 2.0.98 2022-09-29 10:27:28 -05:00
bwatters-r7
a5473e71df
land #588, Add TrustedSec's COFFLoader as Meterpreter Extension 
Merge branch 'land-588' into upstream-master
 2022-09-29 10:16:12 -05:00
Spencer McIntyre
b0ce0fb421 Update the COFFLoader submodule 2022-09-26 08:49:08 -04:00
Metasploit
c1ebbb8ca7 Bump metasploit-payloads to 2.0.97 2022-09-22 12:13:06 -05:00
adfoster-r7
07220b8dd9
Land #585, Add stdapi_registry_check_key_exists for Python 2022-09-22 18:02:53 +01:00
Metasploit
03037245bc Bump metasploit-payloads to 2.0.96 2022-09-22 11:21:47 -05:00
adfoster-r7
53ab1e7971
Land #587, registry implementation improvements 2022-09-22 17:11:26 +01:00
Spencer McIntyre
36f3783279 Code and docs cleanups 2022-09-21 17:01:37 -04:00
Spencer McIntyre
8e79f5435a
Merge pull request #2 from Invoke-Mimikatz/pedantics 
secure memzero
 2022-09-13 09:09:38 -04:00
joe
73e8f4f78e secure memzero 2022-09-12 20:18:52 -04:00
Spencer McIntyre
a39d50e2fc
Merge pull request #1 from smcintyre-r7/pr/collab/588 
Switch to COFFLoader to a submodule
 2022-09-12 08:48:11 -04:00
Spencer McIntyre
4582587df4 Pull upstream changes, stop disabing warnings 2022-09-09 13:54:07 -04:00
Spencer McIntyre
09001bd539 Get MinGW bofloader builds working 2022-09-09 13:54:07 -04:00
Spencer McIntyre
a3e6d86026 Revert accidental change 2022-09-09 13:54:07 -04:00
Spencer McIntyre
1f62d226a0 Use multiple TLVs instead of load_and_run 2022-09-09 13:53:55 -04:00
Spencer McIntyre
f2de5624e3 Rename some things that are not commands 2022-09-08 17:48:22 -04:00
Spencer McIntyre
cb230d93e5 Refactor a few things 2022-09-08 16:07:00 -04:00
Spencer McIntyre
d7005e679e Switch to using a submodule of TrustedSec/COFFLoader 2022-09-08 15:56:56 -04:00
Spencer McIntyre
b680804951 Don't assume the buffer is null terminated 
Apparently values returned by RegQueryValueExW may not actually be null
terminated.

See: https://docs.microsoft.com/en-us/windows/win32/api/winreg/nf-winreg-regqueryvalueexw#return-value
 2022-09-08 12:07:49 -04:00
Spencer McIntyre
d40b95c1c2 Ensure that the parsed buffer is terminated 
This copies the input buffer to a private copy which is the easiest way
to guarantee that it has two null terminiating characters.
 2022-09-07 12:07:42 -04:00
Spencer McIntyre
2e6fb9c2f3 Add docs for the new functions 2022-09-07 12:07:42 -04:00
Spencer McIntyre
18a3d8d85d Fix REG_MULTI_SZ handling 
This updates the registry handling for the native Windows Meterpreter to
handle REG_MULTI_SZ values as UTF-8 encoded strings in a buffer with an
additional NULL terminator. This is basically what RegSetValueExW wants
but Meterpreter will encode the UTF-8 strings into UTF-16. They are
however split with a NULL byte and no longer \0.
 2022-09-07 12:07:32 -04:00
Spencer McIntyre
89aa11e177 Fix reading REG_MULTI_SZ values for Windows 2022-09-07 09:32:16 -04:00
Spencer McIntyre
d720a549a4 Use RegOpenKeyExW for checking existance 
This has two benefits:
1. It's the same function as what's used to open keys, ensuring that the
   options is consistent.
2. It allows the desired permissions to be explicitly set instead of
   being inferred from the "default securitya ccess mask". See:
   https://docs.microsoft.com/en-us/windows/win32/api/winreg/nf-winreg-regopenkeya#return-value
 2022-09-07 09:32:05 -04:00
skylerknecht
cc6b6a1236 Don't delete responses joe! 2022-09-06 23:59:44 -04:00
joe
00aea8da1a visualstudio builds 2022-09-06 21:04:39 -04:00
joe
9412beeef4 dprintf 2022-09-05 20:14:11 -04:00
joe
b05945da8a no need to free mem, meterpreter takes care of it 2022-09-04 20:02:20 -04:00
joe
35d3dc0737 debugtrace 2022-09-04 19:40:53 -04:00