-
Notifications
You must be signed in to change notification settings - Fork 13.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merge 6.2.31 into kerberos feature branch #17379
Merged
cgranleese-r7
merged 402 commits into
rapid7:feature-kerberos-authentication
from
adfoster-r7:merge-msf-6.2.31-into-kerberos-feature-branch
Dec 14, 2022
Merged
Merge 6.2.31 into kerberos feature branch #17379
cgranleese-r7
merged 402 commits into
rapid7:feature-kerberos-authentication
from
adfoster-r7:merge-msf-6.2.31-into-kerberos-feature-branch
Dec 14, 2022
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Fix crash when generating payload sizes
…ck modified files
- combine gitea_version into get_gitea_version for the check method - validate empty username
- move cleanup process to its own method and handle the response - remove timeout and http delay option - adjust target type location as code review suggestion
- move repository migration to execute_command. NOTE: the stageless payload is still unsuccessfull but keep this anyway for christophe to review.
- handle cleanup method on manual `check` - adjust targets flavour option - add :win_dropper target and handle the payload delivery NOTE: the Windows dropper target is still unsuccessfull but keep this for further review
…ple trailing :'s. Update specs accordingly.
The address is returned in the packed format so it's always a string of either length 0 (resolution failed), length 4 (IPv4) or length 16 (IPv6). Anything else is invalid and will actually cause Rex::Socket.addr_ntoa to throw an error. All meterpreters today return the IP address in one of those three correct lengths.
…available on their environment
…_39144.rb Agreed ! Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com>
…_39144.rb Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com>
Store service credentials in the database
Add F5 MCP post module
specifically, the exploit will now search for com.acronis.helpertool in addtion to the 2020 helper tool name. This also updates the check() method to return CheckCode::Detected for when we find the vulnerable service but can't detect the build number
Remove unnecesary sleep in several bypassuac modules
…loads when outputting as hex format
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com>
Everything seems to be working as expected 👍 windows/smb/psexecCommand:
scanner/smb/smb_loginCommand:
gather/ldap_queryCommand:
Full command output
scanner/winrm/winrm_loginCommand:
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
feature-kerberos-authentication
Adds Kerberos Authentication support to framework
rn-no-release-notes
no release notes
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Merging Metasploit 6.2.31 into the kerberos feature branch. This is useful in preparation to releasing 6.3.0, as well as gaining access to
Verification
Verify the ldap_query, windows/smb/psexec, smb_login (#17175) - similar to #17079