Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Enhance grub_creds module with improvements from grub_password module in #11426 #12505

Merged
merged 16 commits into from Oct 29, 2019

Conversation

@busterb
Copy link
Member

busterb commented Oct 29, 2019

Continuation of work in #11426 to resolve #11166, this merges in additional features from the earlier grub_password module by @dgarvit into the current grub_creds module by @taeber from #12462

Additionally it adds automatic grub.d scanning, fixes a couple of logic bugs, makes loot smarter, and fixes grub.pbkdf2 parsing when tested against newer Grub2 versions.

Verification

  • Start msfconsole
  • Get reverse_tcp shell/meterpreter session
  • use post/multi/gather/grub_creds
  • set session <session-id>
  • run
dgarvit and others added 16 commits Feb 17, 2019
@busterb busterb referenced this pull request Oct 29, 2019
0 of 5 tasks complete
@busterb busterb self-assigned this Oct 29, 2019
bcook-r7 pushed a commit that referenced this pull request Oct 29, 2019
@bcook-r7 bcook-r7 merged commit 04c3b68 into rapid7:master Oct 29, 2019
3 checks passed
3 checks passed
Metasploit Automation - Sanity Test Execution Successfully completed all tests.
Details
Metasploit Automation - Test Execution Successfully completed all tests.
Details
continuous-integration/travis-ci/pr The Travis CI build passed
Details
@busterb

This comment has been minimized.

Copy link
Member Author

busterb commented Oct 29, 2019

Release Notes

This enhances the grub_creds post module to parse and store credentials, as well as adding the ability to scan more places for potential configuration files.

msjenkins-r7 added a commit that referenced this pull request Oct 29, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
5 participants
You can’t perform that action at this time.