James Lee
|
8e97503333
|
fix bug where random URIPATHs sent 404 instead of exploits
git-svn-id: file:///home/svn/framework3/trunk@5657 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-09-13 04:07:28 +00:00 |
Mario Ceballos
|
1ef66ec2ff
|
added auxiliary/exploits modules for emc alphastor.
git-svn-id: file:///home/svn/framework3/trunk@5649 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-09-01 11:28:55 +00:00 |
James Lee
|
49e0daf140
|
bug fix for firefox 1.0; minor code cleanup, better naming
git-svn-id: file:///home/svn/framework3/trunk@5648 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-09-01 05:19:28 +00:00 |
HD Moore
|
eae5315ab7
|
Apply patch for disabling console logging of DNS requests
git-svn-id: file:///home/svn/framework3/trunk@5621 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-08-08 21:20:25 +00:00 |
HD Moore
|
83248c3d60
|
Better parsing in proxy mode, ignore checkbox values
git-svn-id: file:///home/svn/framework3/trunk@5620 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-08-08 06:38:59 +00:00 |
HD Moore
|
cc8ae206b6
|
First batch of karmetasploit updates
git-svn-id: file:///home/svn/framework3/trunk@5618 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-08-08 06:00:30 +00:00 |
HD Moore
|
bfa20906fb
|
Fix a bug in fakedns when TARGETHOST is not an IP address
git-svn-id: file:///home/svn/framework3/trunk@5616 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-08-08 03:46:07 +00:00 |
HD Moore
|
3cf81f257e
|
Ensure that the Content-Type is set to text/html by default.
git-svn-id: file:///home/svn/framework3/trunk@5615 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-08-08 02:37:54 +00:00 |
HD Moore
|
c3c53cae67
|
Adds a simplistic DNS diffing module. Useful for looking for poisoned cache servers and geo-location enabled DNS.
git-svn-id: file:///home/svn/framework3/trunk@5610 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-29 22:09:49 +00:00 |
HD Moore
|
ed3ab97100
|
Better randomization of the hostname element
git-svn-id: file:///home/svn/framework3/trunk@5609 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-28 18:51:24 +00:00 |
HD Moore
|
5371549968
|
Remove the static (and quite obvious) TTL from the requests
git-svn-id: file:///home/svn/framework3/trunk@5608 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-28 18:49:39 +00:00 |
HD Moore
|
f589f5cdb8
|
Fix an exception when the cached entry is a non-A, better descriptions for the timing detection
git-svn-id: file:///home/svn/framework3/trunk@5607 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-28 05:05:04 +00:00 |
HD Moore
|
a531785372
|
Better check method
git-svn-id: file:///home/svn/framework3/trunk@5605 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-26 21:09:36 +00:00 |
HD Moore
|
b4fc255a41
|
Adds an option to randomize the source address of the queries as well as some cosmetic changes. The tuning code should be forwarding queries properly now.
git-svn-id: file:///home/svn/framework3/trunk@5602 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-26 04:35:28 +00:00 |
HD Moore
|
9b56053974
|
Add timestamps, researching something
git-svn-id: file:///home/svn/framework3/trunk@5601 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-26 03:16:25 +00:00 |
HD Moore
|
afa0623e6e
|
Better logging
git-svn-id: file:///home/svn/framework3/trunk@5600 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-26 02:59:56 +00:00 |
HD Moore
|
067d19051e
|
Do not reply to non TXT records for now
git-svn-id: file:///home/svn/framework3/trunk@5599 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-26 02:53:49 +00:00 |
HD Moore
|
6c0356e9e0
|
This patch changes how we determine the number of spoofed replies to send to each query. When XIDS is set to zero (now the default), the code will now determine the length of time it takes for the target server to query the real nameserver for the target domain. This leads to much more accurate testing and is recalculated every 1000 attempts to handle servers which change under load.
git-svn-id: file:///home/svn/framework3/trunk@5597 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-25 22:01:12 +00:00 |
HD Moore
|
07f2ece645
|
Fix authoritativeness check
git-svn-id: file:///home/svn/framework3/trunk@5593 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 22:26:02 +00:00 |
druid
|
1e0e99259b
|
Test commit to verify my new account.
git-svn-id: file:///home/svn/framework3/trunk@5592 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 20:21:47 +00:00 |
HD Moore
|
204072159a
|
Credit Cedric for his help in implementing the NS injection/domain module. Thanks again!
git-svn-id: file:///home/svn/framework3/trunk@5591 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 04:29:14 +00:00 |
HD Moore
|
360f13d11e
|
Tweak the XIDs again (this seems better), correct the module descriptions
git-svn-id: file:///home/svn/framework3/trunk@5590 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 03:53:35 +00:00 |
HD Moore
|
e2f8704aac
|
Be nice to Dan's server :P
git-svn-id: file:///home/svn/framework3/trunk@5589 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 03:15:59 +00:00 |
HD Moore
|
04420662df
|
Be more accomodating of longer domains
git-svn-id: file:///home/svn/framework3/trunk@5588 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 02:44:16 +00:00 |
HD Moore
|
1c6b3581de
|
Adds the domain version of this exploit, which replaces the cached nameservers with the one we specify.
git-svn-id: file:///home/svn/framework3/trunk@5587 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 02:40:48 +00:00 |
HD Moore
|
b2f2e4cab6
|
Correct the TTL variable usage (was getting squished and then setting way too low TTLs)
git-svn-id: file:///home/svn/framework3/trunk@5586 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-24 01:15:12 +00:00 |
HD Moore
|
e0bdbacb5d
|
Better XID mixing
git-svn-id: file:///home/svn/framework3/trunk@5585 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 23:09:21 +00:00 |
HD Moore
|
255998f3b3
|
set HOSTNAME pwned.doxpara.com
git-svn-id: file:///home/svn/framework3/trunk@5584 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 22:47:36 +00:00 |
HD Moore
|
8948ac5f2a
|
Proper spelling for the win.
git-svn-id: file:///home/svn/framework3/trunk@5583 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 22:23:43 +00:00 |
HD Moore
|
4f67ae9186
|
Log the name correctly and fix the whitespace issues
git-svn-id: file:///home/svn/framework3/trunk@5582 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 21:59:57 +00:00 |
HD Moore
|
b9fc41cf9c
|
Indentation
git-svn-id: file:///home/svn/framework3/trunk@5581 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 21:40:58 +00:00 |
HD Moore
|
b9b0f05add
|
Correct the advisory URL
git-svn-id: file:///home/svn/framework3/trunk@5580 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 21:21:41 +00:00 |
HD Moore
|
c7ba912c94
|
ZOMG. What is this? >:-)
git-svn-id: file:///home/svn/framework3/trunk@5579 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 21:15:50 +00:00 |
HD Moore
|
e0f773d14d
|
Lower the ttl
git-svn-id: file:///home/svn/framework3/trunk@5576 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 17:46:07 +00:00 |
James Lee
|
5cfdffc395
|
add ie_createobject to browser_autpwn
git-svn-id: file:///home/svn/framework3/trunk@5573 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 08:26:42 +00:00 |
James Lee
|
10f57cedcd
|
fix stupid missing quote bug, thanks MC
git-svn-id: file:///home/svn/framework3/trunk@5571 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-23 06:06:41 +00:00 |
Mario Ceballos
|
627999574a
|
added aux module for the ldap bug in wireshark.
git-svn-id: file:///home/svn/framework3/trunk@5569 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-22 23:49:05 +00:00 |
HD Moore
|
43f9501c52
|
Adds a new module that demonstrates IP spoofing.
git-svn-id: file:///home/svn/framework3/trunk@5567 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-22 19:37:05 +00:00 |
HD Moore
|
e5018eeec8
|
Adds a helper service for finding a DNS server's source port
git-svn-id: file:///home/svn/framework3/trunk@5564 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-22 15:51:01 +00:00 |
James Lee
|
2d344e64df
|
browser_autopwn now works with mozilla_compareto, mozilla_navigatorjava, and firefox_queryinterface; increased reliability of OS and browser detection
git-svn-id: file:///home/svn/framework3/trunk@5563 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-22 07:28:05 +00:00 |
HD Moore
|
798ea895b8
|
Lots of little tweaks the fake HTTP service
git-svn-id: file:///home/svn/framework3/trunk@5553 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-14 05:36:21 +00:00 |
Patrick Webster
|
301b1514f3
|
Added pop2 mixin, aux module, typos.
git-svn-id: file:///home/svn/framework3/trunk@5550 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-08 14:21:48 +00:00 |
James Lee
|
8800372e46
|
initial commit of browser_autopwn;
revamp php payloads;
socks5 for IPv6 (untested)
git-svn-id: file:///home/svn/framework3/trunk@5546 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-07-01 01:44:56 +00:00 |
HD Moore
|
5221b25aba
|
Check for an empty HTTP request before trying to process it
git-svn-id: file:///home/svn/framework3/trunk@5542 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-06-27 19:57:53 +00:00 |
HD Moore
|
d700c51e1a
|
Updated to not log DNS queries by default
git-svn-id: file:///home/svn/framework3/trunk@5540 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-06-25 23:04:19 +00:00 |
HD Moore
|
06c6ad6acd
|
Add riot's DoubleTake exploit. Set the svn:keywords properties where it was missing
git-svn-id: file:///home/svn/framework3/trunk@5526 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-06-06 04:39:44 +00:00 |
HD Moore
|
ed43da5b07
|
Modules from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@5524 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-06-06 04:29:41 +00:00 |
HD Moore
|
d437a0edda
|
Added NTP probe from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@5523 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-06-06 04:29:19 +00:00 |
HD Moore
|
88a04a0ba0
|
New FrontPage modules from Matteo Cantoni
git-svn-id: file:///home/svn/framework3/trunk@5500 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-05-01 18:53:28 +00:00 |
HD Moore
|
16170bd716
|
Let the GUI handle -r, change default window size to fit smaller screens, updated HTTP capture code, added keywords to payload
git-svn-id: file:///home/svn/framework3/trunk@5491 4d416f70-5f16-0410-b530-b9f4589650da
|
2008-04-22 23:20:35 +00:00 |