Jack Heysel
0d3f50522d
Land #16318 Add support to old KEX algorithms
...
This commit fix the issue #16138 by adding
support to old key exchange algorithms in
the net/ssh lib by defining the
append_all_supported_algorithms to true.
2022-04-14 11:29:39 -07:00
Metasploit
67e710b69b
Bump version of framework to 6.1.39
2022-04-14 12:31:53 -05:00
Jeffrey Martin
60e3e6e532
Land #16455 , Remove railgun requirement from post file mixin
2022-04-14 12:04:47 -05:00
Grant Willcox
82be63ffdc
Land #16451 , Use debug versions of extensions if MeterpreterDebugBuild is enabled
2022-04-14 11:34:08 -05:00
adfoster-r7
7f24482ade
Remove railgun requirement from post file mixin
2022-04-14 17:14:18 +01:00
adfoster-r7
22a3ae1bf5
Land #16411 , expose detailed results for each module match
2022-04-14 17:06:57 +01:00
Jeffrey Martin
4bf199aff5
remove duplicate condition
2022-04-14 10:18:59 -05:00
Jack Heysel
04f042ae47
Land #16221 , a wordpress_scanner bug fix
...
Adjust wordpress_url_rest_api definition to support
sites that don't place REST API under /index.php/
2022-04-13 14:22:17 -07:00
dwelch-r7
aca1b8df9b
Use debug versions of extensions if `MeterpreterDebugBuild` is enabled
2022-04-13 14:10:57 +01:00
sjanusz
fc73498919
Add debug option to Python Meterpreter
2022-04-12 10:54:26 +01:00
Metasploit
c252faf938
Bump version of framework to 6.1.38
2022-04-07 12:06:06 -05:00
Jeffrey Martin
8356b3cc1c
refactor analyze rpc interface & output format
2022-04-07 11:06:42 -05:00
dwelch-r7
a82c936613
Land #16373 , Add initial ruby 3.1 support
2022-04-07 16:44:02 +01:00
adfoster-r7
aafb38c7ed
Fix crash when sorting modules by disclosure date
2022-04-06 18:51:28 +01:00
usiegl00
8495bff61c
Merge master and update the smb_shadow module
...
Add comments detailing the technique used to attack SMBv3. Remove some
comments that are no longer needed. Fix Gemfile.lock conflict.
2022-04-06 07:06:45 +09:00
Jeffrey Martin
d35137ed3a
initial `Msf::Analyze::Result` top level states
2022-04-05 14:06:40 -05:00
usiegl00
09ae52fecd
Update smb_shadow and shadow_mitm_dispatcher
...
Remove duplicated print_status messages. Use respond_to? instead of
methods.include?. Simplify payload generation. Fix naming for the rst
capture thread.
2022-04-05 20:03:14 +09:00
Jeffrey Martin
fd809d49ea
expose detailed results for each module match
2022-04-04 13:10:48 -05:00
sjanusz
3b313b4ebe
Fix setg sessiontlvlogging crashing on non-Meterpreter sessions
2022-04-04 18:31:50 +01:00
usiegl00
7e010cbde2
Merge master and update smb_shadow + dispatcher
...
The smb_shadow module can confirm the server smb version supported with
the ConfirmServerDialect option. The shadow_mitm_dispatcher closes each
stream before opening a new one to prevent leaking file descriptors.
2022-04-02 10:39:02 +09:00
adfoster-r7
bef0c9be8f
Land #16299 , Make TLV Logging cache threadsafe
2022-04-01 16:19:45 +01:00
dwelch-r7
647463b5ad
Use updated payloads gem and refactor debug option
2022-04-01 11:20:22 +01:00
dwelch-r7
8e773c1939
Rename debug option and make it advanced
2022-04-01 11:14:52 +01:00
dwelch-r7
13ca7c88f3
Add debug option for windows meterpreter
2022-04-01 11:14:52 +01:00
Metasploit
39aa17fd61
Bump version of framework to 6.1.37
2022-03-31 12:06:46 -05:00
Brendan Coles
283dda8172
Land #16386 , Exploit::Remote::SocketServer: Wait if service is running
2022-03-28 03:41:06 +00:00
adfoster-r7
c4b6eb0165
Fix java rmi service undefined method wait
2022-03-27 17:01:43 +01:00
Metasploit
a59aa864c3
Bump version of framework to 6.1.36
2022-03-24 18:44:06 -05:00
adfoster-r7
76ede9ef8f
Add ruby 3.1 support
2022-03-24 21:59:02 +00:00
Spencer McIntyre
cec44f0cab
Land #16371 , Fix websocket crash
2022-03-24 13:07:34 -04:00
Grant Willcox
bf88b7f618
Land #16325 - Replace IO read on binary files with File binread
2022-03-24 10:08:40 -05:00
sjanusz
558d8bb727
Make TLV Logging cache threadsafe
2022-03-23 10:35:39 +00:00
Tim W
014c98acd8
Land #16369 , fix upgrading meterpreter sessions with shell_to_meterpreter
2022-03-23 07:15:55 +00:00
alanfoster
cebdebb188
Fix kubernetes websocket crash when identifying peer host
2022-03-23 02:28:47 +00:00
adfoster-r7
03d645016c
Land #16250 , Update service mixins for NAT options
2022-03-23 00:13:20 +00:00
Grant Willcox
964f78fc69
Land #16341 , Implement VNC hash types
2022-03-22 17:00:02 -05:00
Grant Willcox
1408ffbab7
Fix up typo and wording on some comments
2022-03-22 16:29:08 -05:00
Grant Willcox
02c616a29e
Land #16207 , Fix VNC scanner modules and libraries to make them work in 2022
2022-03-22 13:40:29 -05:00
Grant Willcox
c0b0c418d2
Update constants explanation to explain VeNCrypt 19 option a little clearer
2022-03-22 13:06:45 -05:00
sjanusz
b54cfee665
Open a new Meterpreter session when trying to upgrade Meterpreter
2022-03-22 14:08:25 +00:00
Spencer McIntyre
fd2d1c0784
Add and use the ListenerComm option for SOCKS
2022-03-22 09:23:09 -04:00
Spencer McIntyre
ff0ecfa49e
Display the HTTP port when necessary
2022-03-21 20:11:31 -04:00
Grant Willcox
4e8613904a
Address comments from review and make explanations tidier
2022-03-21 17:54:41 -05:00
Jeffrey Martin
122d380f85
Land #16368 , Conditionally recalculate in ModuleSet
2022-03-21 17:50:03 -05:00
Spencer McIntyre
df04435d49
Only recalculate sometimes
...
Recalculations are time consuming, so only do it if necessary.
2022-03-21 17:00:31 -04:00
Grant Willcox
024da204d1
Land #16353 , respect ssl_version in crawler
2022-03-21 12:24:38 -05:00
Spencer McIntyre
aca272dd76
Always return a comm from #_determine_server_comm
...
Instead of returning nil from Rex::Socket::SwitchBoard.best_comm, return
the local comm which Rex::Socket will defer to anyways.
2022-03-21 11:47:56 -04:00
Spencer McIntyre
551f159993
Don't pass nill to #best_comm
...
It'll crash if you do
2022-03-21 11:47:56 -04:00
Spencer McIntyre
0ab97b858f
Update the TCP server and HTTP server mixins
2022-03-21 11:47:56 -04:00
Spencer McIntyre
2e4f04a804
Add and use the new bindhost/bindport options
2022-03-21 11:47:55 -04:00