3a33434867
Fix a couple of typos that throw off module authors
2012-03-05 13:28:46 -07:00
43c84483dc
Merge in db console commands for search
...
Incorporates search option from @sempervictus , fixing a couple issues
along the way. This resolves Redmine issue #6185 .
[Closes #107 ]
2012-03-05 13:41:02 -06:00
85d1b77ed3
Fix up notes search implementation
...
Uses delete_if and a negative assertion, rather than the (much nicer but
unavailable) keep_if method.
2012-03-05 13:40:26 -06:00
a957c45daf
Tidies up sempervictus's search patch
...
Affects the console's db commands of hosts, services, vulns, creds, notes,
loot
Skips searching entirely unless a search term is provided, and
explicitly casts the term as a Regexp object from the outset.
Avoids using Object#to_sym in preference of Object#intern (safer in
nearly all cases)
Temporarily disables functionality on notes since Array#keep_if isn't
available prior to Ruby 1.9.2
2012-03-05 13:40:26 -06:00
fb475ca49c
Search functionality for db dispatcher commands
2012-03-05 13:40:26 -06:00
afd1af6377
Merge branch 'apf-info' of https://github.com/gregory-m/metasploit-framework into gregory-m-apf-info
2012-03-05 11:18:23 -06:00
1005de0523
Port should not contain a non-numeric value or even empty when assigned to :port
2012-03-05 11:10:16 -06:00
cd990917be
Don't distinguish between 4 and 6.
...
The client can figure it out from the length.
2012-03-05 09:10:47 -07:00
c81dce2013
Append to the list instead of assigning to it
...
All addresses are being sent to the client now. Just need a way to
parse them out correctly on the other side and meterpreter will be able
to list all addresses on all interfaces on Linux. Next step is to
allocate the proper number of TLVs to avoid good ol' stack smashes on
systems with lots of addresses and then make sure we clean all the
memory leaks.
[See #6476 ]
2012-03-05 09:10:47 -07:00
cb998b91e5
Lay the groundwork for returning all addresses
...
This commit only sends the last interface in the list, but it is looping
through all of them as evidenced by the log, just need to make sure
we're not overwriting as we go.
[See #6476 ]
2012-03-05 09:10:46 -07:00
6726f07dbc
afp_server_info fixes and improvements
...
1.9 compatibility, timeouts, reporting
2012-03-05 14:57:59 +02:00
cea4529f5e
Add an example of preconfigured proxy stager
2012-03-05 00:59:47 -06:00
d9f0453ee9
Added auxiliary/scanner/afp/afp_server_info module
2012-03-02 21:58:40 +02:00
65c0cbdc00
Allow tab completion for resource files in current dir
2012-03-02 11:19:46 -07:00
faad9db393
Merge branch 'wmap_update'
...
Fixed up a few merge conflicts, tested against metasploitable, looks
functional. Thanks Efraim!
[Closes #154 ]
2012-03-02 10:25:31 -06:00
7447052b38
Convert WMAP constant name to the new format.
2012-03-02 10:18:32 -06:00
302853f5a4
Unpolluting SVN Revision keyword
...
Sometimes Revision keywords get expanded, too. Fix those.
2012-03-02 10:18:32 -06:00
3626d48db2
Un-polluting SVN Id keyword
...
Sometimes the SVN Id keyword sneaks back into the github repo already
expanded.
2012-03-02 10:18:32 -06:00
36a3341acd
Fix body cero.
2012-03-02 10:18:32 -06:00
6fba0698e5
Adding another detection method for blind sqli
2012-03-02 10:18:32 -06:00
02f6e3fcb2
Improving report on blind sqli module
2012-03-02 10:18:32 -06:00
126a6133cd
Improving blind sql inj. detection
2012-03-02 10:18:32 -06:00
b608aeeeb7
Migrating modules to use report_web_vulns and minor fixes
2012-03-02 10:18:32 -06:00
8909ad12ba
Add the db_import command to the wmap documentation.
2012-03-02 10:18:32 -06:00
627a4bcb72
Adding new wmap_vulns command to documentation and minor fixes
2012-03-02 10:18:32 -06:00
21c6da5e12
Added wmap_vuln to see web_vulns table results. Basic reporting at this time.
2012-03-02 10:18:32 -06:00
1a09a49f69
Starting getting rid of report_note to use report_web_vuln on all http aux modules
2012-03-02 10:18:32 -06:00
2ce7dc9331
One more module.
2012-03-02 10:18:32 -06:00
9c6fec3c33
First step on module cleaning.
2012-03-02 10:18:32 -06:00
237038dca4
Adjust documentation.
2012-03-02 10:18:32 -06:00
4b412dc9e1
Minor fixes on view nodes jobs.
2012-03-02 10:18:32 -06:00
6437181542
Added job.info as part of nodes jobs details
2012-03-02 10:18:31 -06:00
d35291d1bc
Handle site tree leafs as directories if dont have extension
2012-03-02 10:18:31 -06:00
eaecdb487c
Fix sname in report_ calls to check the use of ssl and report http or
...
https
2012-03-02 10:18:31 -06:00
6d80aa0a44
Renaming duh.
2012-03-02 10:18:31 -06:00
3cb65e24a1
Fix blind sqli module description and bug with http_method
2012-03-02 10:18:31 -06:00
6938b91d07
Execute tests agains a specific path and bug fix in blind sqli module
2012-03-02 10:18:31 -06:00
a780dc0c14
Wmap 1.5 documentation
2012-03-02 10:18:31 -06:00
a2e5a4d9d5
New wmap version 1.5. Plugin and mixin changes. Modules edited to adjust to naming convention
2012-03-02 10:18:31 -06:00
8f30e5548c
Fix bug: "TypeError can't convert nil into String" when fd.read can be nil
2012-03-02 02:18:07 -06:00
67f788768d
Fix tabs
2012-03-01 22:31:08 -06:00
fd2d9ae0ea
Add MP4 file generating function. Update the description regarding exploit usage.
2012-03-01 22:24:35 -06:00
b1b2ec2c7d
Merge branch 'CVE-2008-5036_vlc_realtext' of https://github.com/juanvazquez/metasploit-framework into juanvazquez-CVE-2008-5036_vlc_realtext
2012-03-01 21:13:33 -06:00
3c4c500544
Add a few more meterpreter API tests
2012-03-01 19:21:34 -07:00
8bad0033d3
Update description
2012-03-01 19:16:29 -06:00
0bc26c1665
Add CVE-2009-4656: DJ Studio .pls buffer overflow
2012-03-01 19:09:25 -06:00
323e58d944
Merge pull request #213 from rsmudge/armitage
...
Armitage 03.02.12
2012-03-01 16:32:39 -08:00
d06848ba56
Default to token impersonation before migrating to a different process
2012-03-01 18:31:33 -06:00
e564282ddc
fix armitage pivoting/arp scan tools to work with updated meterpreter route output
2012-03-01 18:35:05 -05:00
9bac806cdb
Add some simple meterpreter API tests
2012-03-01 16:30:37 -07:00
James Lee