|
|
|
@5605
|
[5605]
|
07/26/08 16:09:36 |
hdm |
Better check method |
|
|
|
@5604
|
[5604]
|
07/26/08 13:23:54 |
hdm |
Need another red bull… |
|
|
|
@5603
|
[5603]
|
07/26/08 13:15:35 |
hdm |
This fixes raw socket support for FreeBSD, NetBSD, BSDi, and Mac OS X. … |
|
|
|
@5602
|
[5602]
|
07/25/08 23:35:28 |
hdm |
Adds an option to randomize the source address of the queries as well as … |
|
|
|
@5601
|
[5601]
|
07/25/08 22:16:25 |
hdm |
Add timestamps, researching something |
|
|
|
@5600
|
[5600]
|
07/25/08 21:59:56 |
hdm |
Better logging |
|
|
|
@5599
|
[5599]
|
07/25/08 21:53:49 |
hdm |
Do not reply to non TXT records for now |
|
|
|
@5598
|
[5598]
|
07/25/08 17:42:04 |
hdm |
Fix the resolver on darwin |
|
|
|
@5597
|
[5597]
|
07/25/08 17:01:12 |
hdm |
This patch changes how we determine the number of spoofed replies to send … |
|
|
|
@5596
|
[5596]
|
07/25/08 01:04:51 |
hdm |
consistency fixes |
|
|
|
@5595
|
[5595]
|
07/25/08 00:05:32 |
hdm |
Raw socket mode that should work for 'everyone' |
|
|
|
@5594
|
[5594]
|
07/24/08 23:59:11 |
hdm |
Raw socket support for BSD systems |
|
|
|
@5593
|
[5593]
|
07/24/08 17:26:02 |
hdm |
Fix authoritativeness check |
|
|
|
@5592
|
[5592]
|
07/24/08 15:21:47 |
druid |
Test commit to verify my new account. |
|
|
|
@5591
|
[5591]
|
07/23/08 23:29:14 |
hdm |
Credit Cedric for his help in implementing the NS injection/domain module. … |
|
|
|
@5590
|
[5590]
|
07/23/08 22:53:35 |
hdm |
Tweak the XIDs again (this seems better), correct the module descriptions |
|
|
|
@5589
|
[5589]
|
07/23/08 22:15:59 |
hdm |
Be nice to Dan's server :P |
|
|
|
@5588
|
[5588]
|
07/23/08 21:44:16 |
hdm |
Be more accomodating of longer domains |
|
|
|
@5587
|
[5587]
|
07/23/08 21:40:48 |
hdm |
Adds the domain version of this exploit, which replaces the cached … |
|
|
|
@5586
|
[5586]
|
07/23/08 20:15:12 |
hdm |
Correct the TTL variable usage (was getting squished and then setting way … |
|
|
|
@5585
|
[5585]
|
07/23/08 18:09:21 |
hdm |
Better XID mixing |
|
|
|
@5584
|
[5584]
|
07/23/08 17:47:36 |
hdm |
set HOSTNAME pwned.doxpara.com |
|
|
|
@5583
|
[5583]
|
07/23/08 17:23:43 |
hdm |
Proper spelling for the win. |
|
|
|
@5582
|
[5582]
|
07/23/08 16:59:57 |
hdm |
Log the name correctly and fix the whitespace issues |
|
|
|
@5581
|
[5581]
|
07/23/08 16:40:58 |
hdm |
Indentation |
|
|
|
@5580
|
[5580]
|
07/23/08 16:21:41 |
hdm |
Correct the advisory URL |
|
|
|
@5579
|
[5579]
|
07/23/08 16:15:50 |
hdm |
ZOMG. What is this? >:-) |
|
|
|
@5578
|
[5578]
|
07/23/08 15:56:36 |
hdm |
Add the US-CERT-VU reference type |
|
|
|
@5577
|
[5577]
|
07/23/08 15:14:47 |
hdm |
Add |)ruid's infos to author, fix an issue with auxiliary options … |
|
|
|
@5576
|
[5576]
|
07/23/08 12:46:07 |
hdm |
Lower the ttl |
|
|
|
@5575
|
[5575]
|
07/23/08 12:39:02 |
hdm |
Fix socket, change requires in dns |
|
|
|
@5574
|
[5574]
|
07/23/08 12:32:05 |
hdm |
Import the Net-DNS library |
|
|
|
@5573
|
[5573]
|
07/23/08 03:26:42 |
egypt |
add ie_createobject to browser_autpwn |
|
|
|
@5572
|
[5572]
|
07/23/08 01:40:27 |
egypt |
add detection for IE6 on XPSP0 |
|
|
|
@5571
|
[5571]
|
07/23/08 01:06:41 |
egypt |
fix stupid missing quote bug, thanks MC |
|
|
|
@5570
|
[5570]
|
07/22/08 19:55:21 |
egypt |
bug fix in javascript |
|
|
|
@5569
|
[5569]
|
07/22/08 18:49:05 |
mc |
added aux module for the ldap bug in wireshark. |
|
|
|
@5568
|
[5568]
|
07/22/08 16:03:59 |
hdm |
Remove double aux error logging |
|
|
|
@5567
|
[5567]
|
07/22/08 14:37:05 |
hdm |
Adds a new module that demonstrates IP spoofing. |
|
|
|
@5566
|
[5566]
|
07/22/08 14:12:05 |
hdm |
Adds the Exploit::Remote::Ip mixin |
|
|
|
@5565
|
[5565]
|
07/22/08 14:03:59 |
hdm |
Raw IP socket support for Rex. Guess what this is for :-) |
|
|
|
@5564
|
[5564]
|
07/22/08 10:51:01 |
hdm |
Adds a helper service for finding a DNS server's source port |
|
|
|
@5563
|
[5563]
|
07/22/08 02:28:05 |
egypt |
browser_autopwn now works with mozilla_compareto, mozilla_navigatorjava, … |
|
|
|
@5562
|
[5562]
|
07/22/08 01:02:03 |
egypt |
I'm on crack. mozilla_navigatorjava is the one that works on 1.5.0.5; … |
|
|
|
@5561
|
[5561]
|
07/20/08 22:32:51 |
hdm |
Stop leaking file descriptors when source_address() is called |
|
|
|
@5560
|
[5560]
|
07/19/08 10:40:30 |
patrickw |
Added spamassassin_exec module. |
|
|
|
@5559
|
[5559]
|
07/19/08 00:04:33 |
egypt |
typo fix -- really works on <1.5.0.5, not <1.0.5 |
|
|
|
@5558
|
[5558]
|
07/19/08 00:03:01 |
egypt |
don't hang the browser building the exploit buffer if we can't exploit it |
|
|
|
@5557
|
[5557]
|
07/18/08 23:52:12 |
egypt |
tebodell's patch to autorun meterpeter scripts on session creation |
|
|
|
@5556
|
[5556]
|
07/14/08 13:57:13 |
egypt |
add string obfuscation |
|
|
|
@5555
|
[5555]
|
07/14/08 00:37:38 |
hdm |
Offline support for pcaprub |
|
|
|
@5554
|
[5554]
|
07/14/08 00:37:07 |
hdm |
Try 445 before 139 these days |
|
|
|
@5553
|
[5553]
|
07/14/08 00:36:21 |
hdm |
Lots of little tweaks the fake HTTP service |
|
|
|
@5552
|
[5552]
|
07/14/08 00:35:57 |
hdm |
Updated forms |
|
|
|
@5551
|
[5551]
|
07/12/08 20:36:27 |
egypt |
Make browser exploits identify themselves for use with browser_autopwn |
|
|
|
@5550
|
[5550]
|
07/08/08 09:21:48 |
patrickw |
Added pop2 mixin, aux module, typos. |
|
|
|
@5549
|
[5549]
|
07/06/08 03:27:41 |
patrickw |
Added imap_uw_lsub.rb module. |
|
|
|
@5548
|
[5548]
|
07/04/08 06:47:38 |
mc |
added 2.0 target. |
|
|
|
@5547
|
[5547]
|
07/03/08 13:59:29 |
mc |
added exploit module groupwisemessenger_client.rb |
|
|
|
@5546
|
[5546]
|
06/30/08 20:44:56 |
egypt |
initial commit of browser_autopwn;
revamp php payloads;
socks5 for IPv6 … |
|
|
|
@5545
|
[5545]
|
06/29/08 16:37:10 |
hdm |
Patches to README and extconf.rb from Civ <civ[at]8thdaytech.com> |
|
|
|
@5544
|
[5544]
|
06/27/08 15:51:36 |
hdm |
Implements the readline workaround, tested with regular and meterpreter … |
|
|
|
@5543
|
[5543]
|
06/27/08 15:07:53 |
hdm |
Revert this again, breaks meterpreter console |
|
|
|
@5542
|
[5542]
|
06/27/08 14:57:53 |
hdm |
Check for an empty HTTP request before trying to process it |
|
|
|
@5541
|
[5541]
|
06/27/08 14:57:28 |
hdm |
Correctly handle the readline threading issue, tested with sessions. |
|
|
|
@5540
|
[5540]
|
06/25/08 18:04:19 |
hdm |
Updated to not log DNS queries by default |
|
|
|
@5539
|
[5539]
|
06/24/08 15:55:42 |
hdm |
Fix an annoying error |
|
|
|
@5538
|
[5538]
|
06/23/08 17:57:08 |
egypt |
corrected web address for mailing list archive |
|
|
|
@5537
|
[5537]
|
06/22/08 17:55:38 |
egypt |
initial support for SOCKS5 |
|
|
|
@5536
|
[5536]
|
06/22/08 15:01:41 |
egypt |
spaces -> tabs. =( |
|
|
|
@5535
|
[5535]
|
06/22/08 14:59:12 |
egypt |
add 'resource' command, no tab completion yet because i'm lazy |
|
|
|
@5534
|
[5534]
|
06/22/08 12:14:11 |
hdm |
This patch makes pcap.next non-blocking from a Ruby thread perspective. It … |
|
|
|
@5533
|
[5533]
|
06/18/08 19:06:18 |
mc |
added exploit module novelliprint_getdriversettings.rb. |
|
|
|
@5532
|
[5532]
|
06/18/08 03:30:26 |
egypt |
show the name of the module in the output of 'show options' and friends |
|
|
|
@5531
|
[5531]
|
06/17/08 10:11:17 |
mc |
added exploit module creative_software_cachefolder.rb |
|
|
|
@5530
|
[5530]
|
06/16/08 00:39:36 |
egypt |
typo fix |
|
|
|
@5529
|
[5529]
|
06/09/08 00:13:44 |
patrickw |
Added asus module from Jacopo Cervini. |
|
|
|
@5528
|
[5528]
|
06/06/08 21:16:34 |
patrickw |
Added gld_postfix.rb module |
|
|
|
@5527
|
[5527]
|
06/05/08 23:41:05 |
hdm |
Module typo correction |
|
|
|
@5526
|
[5526]
|
06/05/08 23:39:44 |
hdm |
Add riot's DoubleTake? exploit. Set the svn:keywords properties where it … |
|
|
|
@5525
|
[5525]
|
06/05/08 23:30:56 |
hdm |
Brightstor module from toto |
|
|
|
@5524
|
[5524]
|
06/05/08 23:29:41 |
hdm |
Modules from Matteo Cantoni |
|
|
|
@5523
|
[5523]
|
06/05/08 23:29:19 |
hdm |
Added NTP probe from Matteo Cantoni |
|
|
|
@5522
|
[5522]
|
06/05/08 02:03:10 |
mmiller |
comment out stage encoding until I can troubleshoot it some more |
|
|
|
@5521
|
[5521]
|
06/04/08 19:15:40 |
hdm |
Temporarily revert to the old readline behavior |
|
|
|
@5520
|
[5520]
|
06/04/08 19:13:33 |
hdm |
Temporarily disable the new readline mode |
|
|
|
@5519
|
[5519]
|
06/04/08 19:01:38 |
hdm |
Re-enable readline history |
|
|
|
@5518
|
[5518]
|
06/04/08 17:56:25 |
hdm |
This patch solves a slowness problem introduced by the ruby thread … |
|
|
|
@5517
|
[5517]
|
06/04/08 07:19:43 |
patrickw |
Added guestbook_ssi_exec.rb module. |
|
|
|
@5516
|
[5516]
|
06/03/08 09:56:10 |
patrickw |
added winvnc_http_get.rb module. |
|
|
|
@5515
|
[5515]
|
06/01/08 06:42:31 |
mc |
added exploit module borland_starteam.rb |
|
|
|
@5513
|
[5513]
|
05/26/08 05:27:22 |
mmiller |
update comment |
|
|
|
@5512
|
[5512]
|
05/26/08 03:42:17 |
mmiller |
patch from Kris Katterjohn |
|
|
|
@5511
|
[5511]
|
05/26/08 02:59:03 |
mmiller |
experimental: stages encoded by default, set DisableStageEncoding? 1 to … |
|
|
|
@5510
|
[5510]
|
05/26/08 01:34:12 |
mmiller |
better support for nx with dllinject payloads/meterp |
|
|
|
@5509
|
[5509]
|
05/20/08 15:55:01 |
pusscat |
Added a fix |
|
|
|
@5508
|
[5508]
|
05/19/08 18:56:17 |
egypt |
payload generate now honors ENCODER instead of requiring -e |
|
|
|
@5507
|
[5507]
|
05/17/08 01:27:03 |
egypt |
"set foo" prints the value of foo if it exists; really, that's it this … |
|
|
|
@5506
|
[5506]
|
05/17/08 01:17:41 |
egypt |
Reversing over greedy commit. =( |
|
|
|
@5505
|
[5505]
|
05/17/08 00:29:32 |
egypt |
"set foo" prints the value of foo if it exists |
