|
|
|
@5720
|
[5720]
|
10/06/08 08:16:08 |
ramon |
Added patch and module from Kris Katterjohn |
|
|
|
@5716
|
[5716]
|
10/04/08 16:55:26 |
hdm |
Make the MSSQL scanner a little better for automation |
|
|
|
@5715
|
[5715]
|
10/04/08 16:42:37 |
hdm |
Improvements to the FTP mixin and scanner, still needs multiline read … |
|
|
|
@5712
|
[5712]
|
10/04/08 07:00:43 |
mc |
updated with better coverage. |
|
|
|
@5711
|
[5711]
|
10/02/08 17:43:20 |
hdm |
Add the telnet capture module from Kris Katterjohn |
|
|
|
@5710
|
[5710]
|
10/02/08 10:48:25 |
mc |
fixed tabbing. |
|
|
|
@5709
|
[5709]
|
10/02/08 00:23:59 |
hdm |
This massive commit changes the metasploit 3 module format. The new syntax … |
|
|
|
@5707
|
[5707]
|
10/01/08 17:40:57 |
mc |
added exploit modules ms08_053_mediaencoder.rb, macrovision_unsafe.rb and … |
|
|
|
@5705
|
[5705]
|
10/01/08 11:16:34 |
hdm |
Close the listening socket, allows the same shellcode to beused on the … |
|
|
|
@5704
|
[5704]
|
09/30/08 22:57:57 |
et |
Implemented Auxiliary::WMAPScanUniqueQuery. |
|
|
|
@5703
|
[5703]
|
09/30/08 18:28:24 |
mc |
add aux module from Kris Katterjohn. |
|
|
|
@5700
|
[5700]
|
09/30/08 14:56:16 |
egypt |
remove debug statements, add disabled_functions evasion in php findsock … |
|
|
|
@5699
|
[5699]
|
09/30/08 08:32:29 |
mc |
added exploit module realwin.rb |
|
|
|
@5697
|
[5697]
|
09/29/08 20:50:08 |
ramon |
Applied patch from Kris Katterjohn to to correct the status message … |
|
|
|
@5678
|
[5678]
|
09/23/08 23:41:51 |
egypt |
initial commit of php findsock. This patch makes all http connections … |
|
|
|
@5675
|
[5675]
|
09/22/08 17:32:20 |
hdm |
Import first version of WMAP from ET LoWNOISE |
|
|
|
@5674
|
[5674]
|
09/22/08 10:52:18 |
hdm |
Patch for Ruby 1.9 compat (not there yet) |
|
|
|
@5673
|
[5673]
|
09/21/08 16:59:15 |
ramon |
Fixed indentation |
|
|
|
@5672
|
[5672]
|
09/21/08 14:35:27 |
ramon |
Moving it in again. Thanks antoine for the fix! |
|
|
|
@5671
|
[5671]
|
09/20/08 13:18:29 |
ramon |
Moving out temporarily |
|
|
|
@5670
|
[5670]
|
09/20/08 13:17:05 |
ramon |
Moving out temporarily |
|
|
|
@5663
|
[5663]
|
09/16/08 20:42:51 |
ramon |
Added ARCH_POWER constant and fixed AIX payload modules |
|
|
|
@5660
|
[5660]
|
09/15/08 14:38:50 |
hdm |
Merge patch and module from Robert, adds a x86 int3 payload for debugging, … |
|
|
|
@5659
|
[5659]
|
09/15/08 13:51:45 |
hdm |
New module from Julien TINNES for Linksys Apply.CGI overflow |
|
|
|
@5658
|
[5658]
|
09/15/08 13:50:34 |
hdm |
Merge patch from Julien TINNES for MIPS support (LE/BE) |
|
|
|
@5657
|
[5657]
|
09/12/08 23:07:28 |
egypt |
fix bug where random URIPATHs sent 404 instead of exploits |
|
|
|
@5656
|
[5656]
|
09/10/08 15:21:00 |
ramon |
Added svn:keywords |
|
|
|
@5655
|
[5655]
|
09/10/08 15:15:38 |
ramon |
Added AIX POWER/PowerPC payload modules |
|
|
|
@5651
|
[5651]
|
09/03/08 22:52:02 |
egypt |
avoid logging socket errors |
|
|
|
@5649
|
[5649]
|
09/01/08 06:28:55 |
mc |
added auxiliary/exploits modules for emc alphastor. |
|
|
|
@5648
|
[5648]
|
09/01/08 00:19:28 |
egypt |
bug fix for firefox 1.0; minor code cleanup, better naming |
|
|
|
@5646
|
[5646]
|
08/31/08 23:41:18 |
egypt |
add simple command execution payload for php |
|
|
|
@5635
|
[5635]
|
08/22/08 01:34:57 |
hdm |
Adds initial support for IPv6, including two stager. Tested Meterpreter … |
|
|
|
@5630
|
[5630]
|
08/15/08 10:46:47 |
egypt |
updated references for ms06_066 |
|
|
|
@5628
|
[5628]
|
08/12/08 20:49:07 |
hdm |
Swap the new NX-enabled stagers for the old ones, keep the old ones since … |
|
|
|
@5626
|
[5626]
|
08/11/08 18:48:45 |
mc |
added exploit module nowsms.rb |
|
|
|
@5625
|
[5625]
|
08/11/08 17:51:28 |
hdm |
Adds the bind_nx_tcp stager (NX support) |
|
|
|
@5624
|
[5624]
|
08/11/08 17:41:35 |
hdm |
Adds a reverse_tcp stager that downloads the stage into a RWX page created … |
|
|
|
@5622
|
[5622]
|
08/10/08 05:12:45 |
patrickw |
Added ms00_094_pbserver.rb |
|
|
|
@5621
|
[5621]
|
08/08/08 16:20:25 |
hdm |
Apply patch for disabling console logging of DNS requests |
|
|
|
@5620
|
[5620]
|
08/08/08 01:38:59 |
hdm |
Better parsing in proxy mode, ignore checkbox values |
|
|
|
@5618
|
[5618]
|
08/08/08 01:00:30 |
hdm |
First batch of karmetasploit updates |
|
|
|
@5616
|
[5616]
|
08/07/08 22:46:07 |
hdm |
Fix a bug in fakedns when TARGETHOST is not an IP address |
|
|
|
@5615
|
[5615]
|
08/07/08 21:37:54 |
hdm |
Ensure that the Content-Type is set to text/html by default. |
|
|
|
@5614
|
[5614]
|
08/02/08 10:03:13 |
mc |
added exploit module lgserver_rxsuselicenseini.rb |
|
|
|
@5613
|
[5613]
|
08/01/08 15:04:42 |
egypt |
fix PrepenEncoder? typo, replace it with 'StackAdjustment?' => -3500 |
|
|
|
@5612
|
[5612]
|
07/31/08 21:48:32 |
egypt |
fix missing semicolon in js |
|
|
|
@5610
|
[5610]
|
07/29/08 17:09:49 |
hdm |
Adds a simplistic DNS diffing module. Useful for looking for poisoned … |
|
|
|
@5609
|
[5609]
|
07/28/08 13:51:24 |
hdm |
Better randomization of the hostname element |
|
|
|
@5608
|
[5608]
|
07/28/08 13:49:39 |
hdm |
Remove the static (and quite obvious) TTL from the requests |
|
|
|
@5607
|
[5607]
|
07/28/08 00:05:04 |
hdm |
Fix an exception when the cached entry is a non-A, better descriptions for … |
|
|
|
@5606
|
[5606]
|
07/27/08 06:23:42 |
mc |
module update from Elazar Broad. |
|
|
|
@5605
|
[5605]
|
07/26/08 16:09:36 |
hdm |
Better check method |
|
|
|
@5602
|
[5602]
|
07/25/08 23:35:28 |
hdm |
Adds an option to randomize the source address of the queries as well as … |
|
|
|
@5601
|
[5601]
|
07/25/08 22:16:25 |
hdm |
Add timestamps, researching something |
|
|
|
@5600
|
[5600]
|
07/25/08 21:59:56 |
hdm |
Better logging |
|
|
|
@5599
|
[5599]
|
07/25/08 21:53:49 |
hdm |
Do not reply to non TXT records for now |
|
|
|
@5597
|
[5597]
|
07/25/08 17:01:12 |
hdm |
This patch changes how we determine the number of spoofed replies to send … |
|
|
|
@5593
|
[5593]
|
07/24/08 17:26:02 |
hdm |
Fix authoritativeness check |
|
|
|
@5592
|
[5592]
|
07/24/08 15:21:47 |
druid |
Test commit to verify my new account. |
|
|
|
@5591
|
[5591]
|
07/23/08 23:29:14 |
hdm |
Credit Cedric for his help in implementing the NS injection/domain module. … |
|
|
|
@5590
|
[5590]
|
07/23/08 22:53:35 |
hdm |
Tweak the XIDs again (this seems better), correct the module descriptions |
|
|
|
@5589
|
[5589]
|
07/23/08 22:15:59 |
hdm |
Be nice to Dan's server :P |
|
|
|
@5588
|
[5588]
|
07/23/08 21:44:16 |
hdm |
Be more accomodating of longer domains |
|
|
|
@5587
|
[5587]
|
07/23/08 21:40:48 |
hdm |
Adds the domain version of this exploit, which replaces the cached … |
|
|
|
@5586
|
[5586]
|
07/23/08 20:15:12 |
hdm |
Correct the TTL variable usage (was getting squished and then setting way … |
|
|
|
@5585
|
[5585]
|
07/23/08 18:09:21 |
hdm |
Better XID mixing |
|
|
|
@5584
|
[5584]
|
07/23/08 17:47:36 |
hdm |
set HOSTNAME pwned.doxpara.com |
|
|
|
@5583
|
[5583]
|
07/23/08 17:23:43 |
hdm |
Proper spelling for the win. |
|
|
|
@5582
|
[5582]
|
07/23/08 16:59:57 |
hdm |
Log the name correctly and fix the whitespace issues |
|
|
|
@5581
|
[5581]
|
07/23/08 16:40:58 |
hdm |
Indentation |
|
|
|
@5580
|
[5580]
|
07/23/08 16:21:41 |
hdm |
Correct the advisory URL |
|
|
|
@5579
|
[5579]
|
07/23/08 16:15:50 |
hdm |
ZOMG. What is this? >:-) |
|
|
|
@5576
|
[5576]
|
07/23/08 12:46:07 |
hdm |
Lower the ttl |
|
|
|
@5573
|
[5573]
|
07/23/08 03:26:42 |
egypt |
add ie_createobject to browser_autpwn |
|
|
|
@5571
|
[5571]
|
07/23/08 01:06:41 |
egypt |
fix stupid missing quote bug, thanks MC |
|
|
|
@5570
|
[5570]
|
07/22/08 19:55:21 |
egypt |
bug fix in javascript |
|
|
|
@5569
|
[5569]
|
07/22/08 18:49:05 |
mc |
added aux module for the ldap bug in wireshark. |
|
|
|
@5567
|
[5567]
|
07/22/08 14:37:05 |
hdm |
Adds a new module that demonstrates IP spoofing. |
|
|
|
@5564
|
[5564]
|
07/22/08 10:51:01 |
hdm |
Adds a helper service for finding a DNS server's source port |
|
|
|
@5563
|
[5563]
|
07/22/08 02:28:05 |
egypt |
browser_autopwn now works with mozilla_compareto, mozilla_navigatorjava, … |
|
|
|
@5562
|
[5562]
|
07/22/08 01:02:03 |
egypt |
I'm on crack. mozilla_navigatorjava is the one that works on 1.5.0.5; … |
|
|
|
@5560
|
[5560]
|
07/19/08 10:40:30 |
patrickw |
Added spamassassin_exec module. |
|
|
|
@5559
|
[5559]
|
07/19/08 00:04:33 |
egypt |
typo fix -- really works on <1.5.0.5, not <1.0.5 |
|
|
|
@5558
|
[5558]
|
07/19/08 00:03:01 |
egypt |
don't hang the browser building the exploit buffer if we can't exploit it |
|
|
|
@5557
|
[5557]
|
07/18/08 23:52:12 |
egypt |
tebodell's patch to autorun meterpeter scripts on session creation |
|
|
|
@5554
|
[5554]
|
07/14/08 00:37:07 |
hdm |
Try 445 before 139 these days |
|
|
|
@5553
|
[5553]
|
07/14/08 00:36:21 |
hdm |
Lots of little tweaks the fake HTTP service |
|
|
|
@5551
|
[5551]
|
07/12/08 20:36:27 |
egypt |
Make browser exploits identify themselves for use with browser_autopwn |
|
|
|
@5550
|
[5550]
|
07/08/08 09:21:48 |
patrickw |
Added pop2 mixin, aux module, typos. |
|
|
|
@5549
|
[5549]
|
07/06/08 03:27:41 |
patrickw |
Added imap_uw_lsub.rb module. |
|
|
|
@5548
|
[5548]
|
07/04/08 06:47:38 |
mc |
added 2.0 target. |
|
|
|
@5547
|
[5547]
|
07/03/08 13:59:29 |
mc |
added exploit module groupwisemessenger_client.rb |
|
|
|
@5546
|
[5546]
|
06/30/08 20:44:56 |
egypt |
initial commit of browser_autopwn;
revamp php payloads;
socks5 for IPv6 … |
|
|
|
@5542
|
[5542]
|
06/27/08 14:57:53 |
hdm |
Check for an empty HTTP request before trying to process it |
|
|
|
@5540
|
[5540]
|
06/25/08 18:04:19 |
hdm |
Updated to not log DNS queries by default |
|
|
|
@5533
|
[5533]
|
06/18/08 19:06:18 |
mc |
added exploit module novelliprint_getdriversettings.rb. |
|
|
|
@5531
|
[5531]
|
06/17/08 10:11:17 |
mc |
added exploit module creative_software_cachefolder.rb |
|
|
|
@5529
|
[5529]
|
06/09/08 00:13:44 |
patrickw |
Added asus module from Jacopo Cervini. |
|
|
|
@5528
|
[5528]
|
06/06/08 21:16:34 |
patrickw |
Added gld_postfix.rb module |
