db4bb0e537
Clean up comments for rdoc
...
Fixes some ugly formatting
2012-02-23 15:32:05 -07:00
9ddca81ab5
Fix test that always evals to false
...
Meterpreter does not respond_to? extension names, they're magic.
2012-02-23 14:52:48 -07:00
e262d7a7ff
Add CVE-2012-0500 Sun Java Web Start exploit
2012-02-23 13:30:45 -06:00
5f2569f1b4
Merge pull request #195 from swtornio/master
...
add osvdb ref
2012-02-23 07:55:13 -08:00
08fb03276f
add osvdb ref
2012-02-23 07:39:31 -06:00
c392287764
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-02-22 23:00:09 -06:00
144fa0dc0e
Comment what \x0b\x04 is for
2012-02-22 22:59:43 -06:00
0ef8d8bb3a
Ensure the dir exists before copying files there
...
Thanks MM for pointing out that this was missed. The other dirs
referenced in #183 were addressed in 134b6c874fCloses #183 ]
2012-02-22 20:54:20 -07:00
92c801d936
Merge branch 'ssh-creds-fix' of https://github.com/gregory-m/metasploit-framework into gregory-m-ssh-creds-fix
2012-02-22 19:49:26 -06:00
291e083d65
Add CVE-2011-5001: TrendMicro Control Manager 5.5 CmdProcessor Stack Bof
2012-02-22 19:44:47 -06:00
5e0862bf9b
Merge branch 'juanvazquez-CVE-2008-1602_orbit_download_failed_bof'
2012-02-22 19:41:17 -06:00
4ee1f989a6
Merge branch 'CVE-2008-1602_orbit_download_failed_bof' of https://github.com/juanvazquez/metasploit-framework
2012-02-22 19:40:56 -06:00
752fd66ca3
Merge branch 'CVE-2008-1602_orbit_download_failed_bof' of https://github.com/juanvazquez/metasploit-framework into juanvazquez-CVE-2008-1602_orbit_download_failed_bof
2012-02-22 16:05:08 -06:00
8d212849dc
Fix typos that result in stack traces when matching the response codes
2012-02-22 16:04:24 -06:00
ace28a8388
1.9 compatibility fix
...
Strings in ruby 1.9 doesn't have #each method
2012-02-22 18:01:17 +02:00
66fa56cc49
Fixed post/multi/gather/ssh_creds to work with shell session
2012-02-22 15:16:11 +02:00
3fecda95be
Fix 1.8 compatibility issue
2012-02-22 02:05:44 -06:00
5e6c40edfd
Remove unnecessary space restrictions.
...
This allows using the full range of PHP payloads
2012-02-21 23:21:07 -07:00
464cf7f65f
Normalize service names
...
Downcases lots and standardizes a few. Notably, modules that reported a
service name of "TNS" are now "oracle". Modules that report http
now check for SSL and report https instead.
[Fixes #6437 ]
2012-02-21 22:59:20 -07:00
7ca573a1b4
Give these two old modules a chance to work by setting a proper arch
...
These must have been broken for quite some time. =/ They should
probably both be ARCH_PHP but I'm reluctant to make that big of a change
without having the target software to test.
2012-02-21 22:59:20 -07:00
72038df7b5
Allow :sname as a synonym for :name when reporting services
2012-02-21 22:59:20 -07:00
4932a9ca25
Dont dump an HTML document to the console
2012-02-21 23:45:25 -06:00
a1826146ef
Permission changes, ignorable
2012-02-21 22:59:45 -06:00
d3fad51f3a
Fix my screwup in winscp for servicename
2012-02-21 20:31:52 -06:00
dcf3f3579d
Fix to the awful sname in this module
2012-02-21 20:28:27 -06:00
02d6089893
Fix a stack trace when an unexpected response from the server
...
Caused by a typo
2012-02-21 18:57:27 -07:00
b87d9a3a80
Version bump.
2012-02-21 17:54:23 -06:00
acb4446e45
Fix #6407 by treating redirects as successful authentication
2012-02-21 16:02:21 -06:00
d6310829ea
Added module for CVE-2008-1602
2012-02-21 22:36:57 +01:00
309b7750f6
Renaming port_cleaner resource script to be correct
...
was .rb should be .rc
2012-02-21 12:36:25 -06:00
a288742376
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-02-21 11:50:05 -06:00
28dbaee5ab
Do a strip() before regex check
2012-02-21 11:46:52 -06:00
b65d448a15
Merge pull request #189 from rsmudge/armitage
...
Armitage 02.21.12
2012-02-21 09:11:35 -08:00
0e375fc555
Remove superfluous db_driver command now that only pg is supported
2012-02-21 10:10:42 -07:00
3857bef9f6
Adds help and tabs for commands in meterpreter core
2012-02-21 10:10:42 -07:00
4a631e463c
Module title normalization
...
Module titles should read like titles. For
capitalization rules in English, see:
http://owl.english.purdue.edu/owl/resource/592/01/
The only exceptions are function names (like 'thisFunc()') and specific
filenames (like thisfile.ocx).
2012-02-21 11:07:44 -06:00
de71a77085
Armitage 02.24.12
...
--------
This release fixes the parsing of meterpreter's ps output. Added cut/copy/paste
menus to the module launcher dialog (when editing values).
2012-02-21 11:50:23 -05:00
bce1c08623
Update modules/auxiliary/server/capture/http_javascript_keylogger.rb
2012-02-21 04:46:56 -06:00
7c1d48d6aa
Merge in MJC's javascript keylogger
2012-02-21 04:25:15 -06:00
1d71aec916
Fix DisclosureDate regex, and avoid checking Rank naming style
2012-02-21 01:04:05 -06:00
ceb4888772
Fix up the boilerplate comment to use a better url
2012-02-20 19:40:50 -06:00
ab92e38628
Small cosmetic change to module descriptions
2012-02-20 19:29:51 -06:00
af56807668
Cleanup the titles of many exploit modules
2012-02-20 19:25:55 -06:00
bb55b4e54f
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-02-20 14:22:23 -06:00
f09ce04b00
Show where store_loot() saves the info
2012-02-20 14:22:05 -06:00
89e0842b1e
Add vim_soap to the mixins list.
...
Fixes an issue where a different module load order would result in one
of the vmware modules failing to load be cause vim_soap hadn't been
required yet. Thanks d0rm0us3 for having a weird system and spotting
stuff like this.
2012-02-20 13:17:45 -07:00
cda9166180
This module should show where store_loot() saves the results
2012-02-20 14:15:55 -06:00
779e3cdcda
Correct more post modules for naming style consistency
2012-02-20 13:49:23 -06:00
fd283dd95b
Correct naming style
2012-02-20 12:38:43 -06:00
3180d75168
Correct naming style
2012-02-20 12:38:31 -06:00
James Lee