github/metasploit-payloads
1
Fork 0
mirror of https://github.com/rapid7/metasploit-payloads synced 2025-01-02 11:36:22 +01:00
Code Releases Activity
3,261 Commits 7 Branches 259 Tags 71 MiB
e6ee74a273
Commit Graph

1524 Commits

Author SHA1 Message Date
Grant Willcox
e6ee74a273
Rename function to does_pipe_exist and fix some typos 2023-03-14 12:05:18 -05:00
Alex Romero
e475e15ebf
fix for #608 issue in getsystem methods 2023-03-10 13:29:53 -05:00
Spencer McIntyre
ae6d4e7956
Land #621, return interface name for arp command 
return interface name instead of index for arp command
 2023-03-09 09:21:10 -05:00
Spencer McIntyre
dd9db6530b
Land #624, Fix incorrect error handling 
Fix incorrect error handling in "packet_transmit_http"
 2023-03-09 09:12:39 -05:00
Spencer McIntyre
82631e898b Include the direction in the log message 2023-03-09 09:12:28 -05:00
Alex Romero
885d63d568
Update c/meterpreter/source/extensions/stdapi/server/net/config/arp.c 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2023-03-07 21:32:37 +03:30
guffre
2153df9f64 Use common.h break macro 2023-03-06 23:46:51 -06:00
Alex Romero
5df4982d73
return interface name instead of index for arp command 2023-03-06 16:25:20 -05:00
Spencer McIntyre
fb8bf774ed Set the metric so routes can be added and deleted 2023-03-02 10:52:20 -05:00
Spencer McIntyre
9f2491bac4
Land #610, Fix getprivs permissions set 
Fix getprivs permissions that are grabbed on C Meterpreter and Python Meterpreter So That They Match
 2023-02-28 14:32:47 -05:00
Grant Willcox
242e66ec44
Add in missing SE_DELEGATE_SESSION_USER_IMPERSONATE_NAME privilege that was not being obtained in C versions of Meterpreter 2023-02-28 10:32:13 -06:00
Spencer McIntyre
16a9a2d2f6
Land #614, Display IPv6 Routes on Windows 
Feature to display IPv6 Routes on Windows
 2023-02-28 10:24:20 -05:00
Spencer McIntyre
f402d7cb9e Fix Windows XP compatibility 
GetIpForwardTable2 is not available on Windows versions prior to Vista.
Use GetProcAddress to call it when it's available while avoiding
crashing on XP.
 2023-02-28 09:36:31 -05:00
Spencer McIntyre
bf7e5cb7c6 Fix compiler and other errors 2023-02-28 09:36:26 -05:00
guffre
fe2acd8332 Update server_transport_winhttp.c 
The response code from packet_transmit_http was hardcoded to always return ERROR_SUCCESS.

This fix emulates how errors are debug-printed and returned from server_transport_tcp and server_transport_pipe.
 2023-02-26 18:10:48 -06:00
guffre
dd91ed13e9 Update server_transport_winhttp.c 
The response code from packet_transmit_http was hardcoded to always return ERROR_SUCCESS.

This fix emulates how errors are debug-printed and returned from server_transport_tcp and server_transport_pipe.
 2023-02-26 18:03:28 -06:00
guffre
1c6241604d Fix error response in packet_transmit_http 
The response code from packet_transmit_http was hardcoded to always return ERROR_SUCCESS.

This fix emulates how errors are debug-printed and returned from server_transport_tcp and server_transport_pipe.
 2023-02-26 17:54:39 -06:00
Nishant Desai
98726de8be Display-ipv6-routes 2023-02-25 05:57:15 -05:00
Grant Willcox
890366cfd1
Land #605, Fix the output of getdesktop 2023-02-16 12:21:28 -06:00
Spencer McIntyre
b45fcc185a Fix the output of getdesktop 2023-01-27 17:38:39 -05:00
Grant Willcox
5ed840fdca
Land #599, Bind to the specified LocalHost 2023-01-19 17:55:02 -06:00
Grant Willcox
ca639d4756
Land #599, Bind to the specified LocalHost 2023-01-19 17:49:34 -06:00
Spencer McIntyre
a54ea83cb0 More error handling and documentation 2023-01-19 15:32:46 -05:00
Spencer McIntyre
b83af142c0 Allow binding to specific addresses in Windows 
Related to rapid7/metasploit-framework#17282
 2023-01-10 15:51:36 -05:00
Spencer McIntyre
2e4cb890d3 Pull in upstream COFFLoader changes 
Changes include fixes for running BOFs compiled from VS which contained
some relocations that were not being properly handled.

See:
  * https://github.com/trustedsec/COFFLoader/issues/7
  * https://github.com/trustedsec/COFFLoader/pull/8
  * https://github.com/trustedsec/COFFLoader/pull/9
 2022-12-12 08:51:28 -05:00
Spencer McIntyre
79341d9dfb
Land #595, Mimikatz update 2022-11-15 09:45:46 -05:00
Grant Willcox
f5bae3b63c
Cleanup handles if memory allocation fails before exiting get_token_list 2022-11-10 15:56:05 -06:00
Spencer McIntyre
80e8b721ef Close the handle when it wasn't copied 
Close the hObject handle when it wasn't copied into token_list.
 2022-11-10 16:08:16 -05:00
Spencer McIntyre
d0ab25e521 Close memory and handle leaks 2022-11-10 13:31:28 -05:00
bwatters-r7
c466356cb9
Update mimikatz pinned submodule 2022-11-09 08:16:13 -06:00
bwatters-r7
0331174548
Fixes to support compiling new updates to mimikatz 2022-11-03 10:50:18 -05:00
bwatters-r7
a5473e71df
land #588, Add TrustedSec's COFFLoader as Meterpreter Extension 
Merge branch 'land-588' into upstream-master
 2022-09-29 10:16:12 -05:00
Spencer McIntyre
b0ce0fb421 Update the COFFLoader submodule 2022-09-26 08:49:08 -04:00
Spencer McIntyre
36f3783279 Code and docs cleanups 2022-09-21 17:01:37 -04:00
joe
73e8f4f78e secure memzero 2022-09-12 20:18:52 -04:00
Spencer McIntyre
4582587df4 Pull upstream changes, stop disabing warnings 2022-09-09 13:54:07 -04:00
Spencer McIntyre
09001bd539 Get MinGW bofloader builds working 2022-09-09 13:54:07 -04:00
Spencer McIntyre
a3e6d86026 Revert accidental change 2022-09-09 13:54:07 -04:00
Spencer McIntyre
1f62d226a0 Use multiple TLVs instead of load_and_run 2022-09-09 13:53:55 -04:00
Spencer McIntyre
f2de5624e3 Rename some things that are not commands 2022-09-08 17:48:22 -04:00
Spencer McIntyre
cb230d93e5 Refactor a few things 2022-09-08 16:07:00 -04:00
Spencer McIntyre
d7005e679e Switch to using a submodule of TrustedSec/COFFLoader 2022-09-08 15:56:56 -04:00
Spencer McIntyre
b680804951 Don't assume the buffer is null terminated 
Apparently values returned by RegQueryValueExW may not actually be null
terminated.

See: https://docs.microsoft.com/en-us/windows/win32/api/winreg/nf-winreg-regqueryvalueexw#return-value
 2022-09-08 12:07:49 -04:00
Spencer McIntyre
d40b95c1c2 Ensure that the parsed buffer is terminated 
This copies the input buffer to a private copy which is the easiest way
to guarantee that it has two null terminiating characters.
 2022-09-07 12:07:42 -04:00
Spencer McIntyre
2e6fb9c2f3 Add docs for the new functions 2022-09-07 12:07:42 -04:00
Spencer McIntyre
18a3d8d85d Fix REG_MULTI_SZ handling 
This updates the registry handling for the native Windows Meterpreter to
handle REG_MULTI_SZ values as UTF-8 encoded strings in a buffer with an
additional NULL terminator. This is basically what RegSetValueExW wants
but Meterpreter will encode the UTF-8 strings into UTF-16. They are
however split with a NULL byte and no longer \0.
 2022-09-07 12:07:32 -04:00
Spencer McIntyre
89aa11e177 Fix reading REG_MULTI_SZ values for Windows 2022-09-07 09:32:16 -04:00
Spencer McIntyre
d720a549a4 Use RegOpenKeyExW for checking existance 
This has two benefits:
1. It's the same function as what's used to open keys, ensuring that the
   options is consistent.
2. It allows the desired permissions to be explicitly set instead of
   being inferred from the "default securitya ccess mask". See:
   https://docs.microsoft.com/en-us/windows/win32/api/winreg/nf-winreg-regopenkeya#return-value
 2022-09-07 09:32:05 -04:00
skylerknecht
cc6b6a1236 Don't delete responses joe! 2022-09-06 23:59:44 -04:00
joe
00aea8da1a visualstudio builds 2022-09-06 21:04:39 -04:00