Activity

From 04/26/2012 to 05/25/2012

11:22 pm Feature #403 (Rejected): Binary (nix/win) building of modules (not just exploits): This basically requires a ruby -> arbitrary executable format compiler. While that may be a cool thing to have, I th... James Lee
09:43 pm Feature #403 (Assigned): Binary (nix/win) building of modules (not just exploits): while I think the powershell stuff is great, it does nothing to resolve this ticket. Rob Fuller
06:10 pm Revision 7c85a279: Whitespace cleanup: James Lee
05:53 pm Unstable Modules Bug #6915 (New): Error getting session listmsfgui.MsfException: error in call: null: I am having a problem using metsaploit. i get this error when i start metasploit "Error getting session listmsfgui.Ms... james frank
05:28 pm Revision 5bf97387: Space at EOF cleanup: James Lee
04:50 pm Bug #5445 (Rejected): store_loot fails when running with database disabled (-n): Works for me with -n... James Lee
03:48 pm Unstable Modules Bug #6913 (New): Error getting session listmsfgui.MsfException: error in call: null: I am having a problem using armitage and metsaploit. i get this error when i start metasploit "Error getting session ... james frank
03:33 pm Bug #3962 (Resolved): linux/x86/meterpreter can't drop to shell: Channels are still not working correctly due to some threading issues (see #6825 and #6414), but I don't think the is... James Lee
03:31 pm Feature #4905: Make meterpreter capabilities queryable: Only thing this is missing now is core_* commands. James Lee
02:31 pm Unstable Modules Bug #6912 (New): Error getting session listmsfgui.MsfException: error in call: null: I am having a problem using armitage and metsaploit. i get this error when i start metasploit "Error getting session ... james frank
11:43 am Revision e8850178: Make sure state is initialized: Fixes a stack trace when the xml has osmatch before osclass. Thanks Sean
Carolan for the report! James Lee
11:16 am Revision 2a24b143: Merge pull request #416 from jvazquez-r7/flexnet_lmgrd_bof_rand_text: flexnet_lmgrd_bof rand_text fix sinn3r .
11:02 am Revision f7224ab3: flexnet_lmgrd_bof rand_text fix: Juan Vazquez
10:11 am Revision 0ecffd22: Make domain option requirement more clear: Tod Beardsley
02:23 am Feature #6827 (Resolved): "RuggedCom Telnet Password Generator" Module: This module is now in the framework, thanks:
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxi... sinn3r .
02:20 am Feature #6894: Possible improvement inIomega StorCenter Pro NAS Web Authentication Bypass: Applied in changeset commit:c606896122a4946b77409adb3ba81cc779badc32 sinn3r .
02:16 am Revision c6068961: Multiple fixes and improvements:: * Make session ID configurable based on feature #6894's suggestion.
* Fix a potential bug when res is nil.
* Use prin... sinn3r
02:06 am Feature #6894: Possible improvement inIomega StorCenter Pro NAS Web Authentication Bypass: That's pretty high. Don't really hava box for testing, but I'll just turn that into something configurable. sinn3r .
12:27 am Revision 50045151: Resolved conflicts merging back from release: Merge branch 'release'
Conflicts:
lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb
modules/exploits/windows/... Tod Beardsley

04:11 pm Bug #6147: Module synflood Argument INTERFACE: ArgumentError interface must be a string. svn upda...: Same problem here with Fedora 16 and auxiliary/spoof/nbns/nbns_response @ metasploit v4.4.0-dev / svn r15311
Ess Weh
03:23 pm Revision bf0f5a7e: Merge pull request #410 from jjarmoc/ZDI-12-052-ref: Added reference to vendor advisory sinn3r .
02:12 pm Revision a37e98f1: Updating release from master.: Tod Beardsley
01:57 pm Bug #6905 (Resolved): ssh_login NoSuchMethodError: Fixed in "e97994fddeb420702c4f1d104b3340742c1744bf":https://github.com/rapid7/metasploit-framework/commit/e97994fddeb... James Lee
01:49 pm Revision e97994fd: Make sure matches is set: Fixes a nil issue introduced by 17943c7 James Lee
01:22 pm Revision c4b64a51: Added reference to vendor advisory: Jeff Jarmoc
12:55 pm Bug #6905 (Resolved): ssh_login NoSuchMethodError: Revision: 15322
=[ metasploit v4.4.0-dev [core:4.4 api:1.0]
+ -- --=[ 852 exploits - 475 auxiliary - 144 p... Raphael Mudge
11:44 am Revision 0c1d736f: Hrm, out-of-order commits: Looks like my cherry-pick'ing fu hosed the previous commits and somehow
left two copies of dump_references. James Lee
11:27 am Bug #6902 (Resolved): Post modules do not display References: Fixed in https://github.com/rapid7/metasploit-framework/pull/409 , landed as https://github.com/rapid7/metasploit-fra... Tod Beardsley
11:25 am Revision 3bd0276a: Add references to info output for post modules: [Fixes #6902] [Closes #409]
Squashed commit of the following:
commit e29bf83196e39853d12b58d77db1ffdb26fbb6eb
Autho... James Lee
11:17 am Revision 87ce3fe2: Adding extra ref from jjarmoc: Tod Beardsley
10:55 am Bug #6902 (Resolved): Post modules do not display References: This is causing snarky commit messages like this one:
https://github.com/rapid7/metasploit-framework/commit/c9604d... Tod Beardsley
10:52 am Revision c9604d89: Add an invisible reference: sinn3r
09:12 am Feature #6901 (New): rhosts and vhost: I sent this to the list and Tod B mentioned it wasn't a reported issue so figured I'd add it here as a feature reques... Robin Wood
03:11 am Revision d9ab464d: A very quick update to the title.: sinn3r
03:06 am Revision c9aa057b: Merge pull request #407 from wchen-r7/osx_voice: OSX Text-to-Speech tool sinn3r .
03:04 am Revision c43ef8b5: Merge pull request #406 from jvazquez-r7/lmgrd_bof_randomization: randomization when possible for flexnet_lmgrd_bof sinn3r .
03:03 am Revision ca08e225: Add OSX Text-to-Speech tool: sinn3r
01:49 am Revision 5cc98b7d: Import NSE script output as notes: HD Moore
01:32 am Revision c823e809: randomization when possible for flexnet_lmgrd_bof: Juan Vazquez

10:01 pm Revision 3f1a7293: Merge pull request #401 from rsmudge/armitage: Armitage 05.21.12 sinn3r .
09:54 pm Revision c14a3e65: Armitage 05.21.12: This release improves collaboration performance and fixes a few Windows specific issues. Raphael Mudge
08:58 pm Bug #6893: [HavePatch] Error: sniffer_dump: TypeError can't convert nil into Integer: Here's the value of the res dictionary after it comes back from meterpreter [sniffer.rb:129]
"Before changes {:pac... Raphael Mudge
08:45 pm Bug #6893: [HavePatch] Error: sniffer_dump: TypeError can't convert nil into Integer: To reproduce, make sure the pcap file you output to does not exist. This codepath does not trigger when the file exists. Raphael Mudge
08:33 pm Bug #6893 (New): [HavePatch] Error: sniffer_dump: TypeError can't convert nil into Integer: msf > version
Framework: 4.4.0-dev.15205
Console : 4.4.0-dev.15168
meterpreter > sysinfo
Computer : ACM... Raphael Mudge
06:43 pm Bug #6890 (New): MSF file handle leakage: I believe there is a file handle leak somewhere in shell session or general session management. The following tests s... Raphael Mudge
06:20 pm Feature #6748 (Rejected): adobe_pdf_embedded_exe exploit for Windows XP Spanish: Same as: http://dev.metasploit.com/redmine/issues/6855-- probably a dup to get our attention.
Rejected. sinn3r .
06:18 pm Bug #6879 (Resolved): Error when starting metasploit: Related to: http://dev.metasploit.com/redmine/issues/6889#change-29732
Already resolved. sinn3r .
09:58 am Revision 822e109b: Merge pull request #398 from wchen-r7/foxit_reader_launch: CVE-2009-0837 by bannedit - Foxit Reader 3 Launch Action BoF sinn3r .
09:58 am Revision 38dfd806: Merge pull request #400 from swtornio/master: add osvdb refs sinn3r .
07:13 am Revision ba2787df: add osvdb ref: Steve Tornio
07:13 am Revision c95a06e2: add osvdb ref: Steve Tornio

05:32 pm Revision f6e9ae65: Merge pull request #397 from rapid7/normalize-memleak: Update MDM from upstream Tod Beardsley
05:24 pm Revision d5d285ae: Adding aczid's minimal exploit configurator: Note the syntax change, need to chase this down before pushing upstream
and make sure nobody's relying on that.... an... Aram Verstegen
05:12 pm Revision e4f80a1f: Francisco is the the one who found it according to advisory: sinn3r
04:44 pm Revision 48e96e75: Adding Powershell post module to unstable: Just so we don't lose it.
[See #251] Tod Beardsley
04:39 pm Revision 7811b0a3: Landing sempervictus's Powershell features: Adding the payload generator, but not the post module -- couldn't get a
satisfactory test out of the module (see the ... Tod Beardsley
01:42 pm Feature #6864: New aux modules HP Printers: Thanks.
What causes the server to return FILEERROR? What does 3 mean? Is there a manual or something I could read? sinn3r .
01:25 pm Revision 41aac751: Add CVE-2009-0837 by bannedit - Foxit Reader 3 Launch Action Buffer Overflow: This was added last year, but yanked due to some reliability issues.
bannedit gave me the updated version recently, a... sinn3r
12:04 pm Revision 373c174a: Updates MDM from upstream.: This pulls in a few recent changes to MDM. Tod Beardsley
11:25 am Revision 52183aa2: Unbreak the migrate command: The server is not returning the core_migrate command. This is a bandaid
to make migrate work again until that gets s... James Lee
11:21 am Revision fec2ec37: Squashed commit of the following:: commit fa9b2841cfcb7c833da5454f108f15ad229e6b75
Author: syndrowm <syndrowm@gmail.com>
Date: Mon Apr 2 17:00:59 2012... syndrowm
10:22 am Feature #6864: New aux modules HP Printers: sinn3r . wrote:
> Is it even a normal thing for the server to return an error?
Yes and in this specific case the ... Matteo Cantoni
10:06 am Feature #6864: New aux modules HP Printers: Is it even a normal thing for the server to return an error? sinn3r .
04:19 am Feature #6864: New aux modules HP Printers: sinn3r . wrote:
> Updated. Could you please test again?
Good, but in some cases (for example downloading a file ... Matteo Cantoni

11:57 pm Revision a88af1dd: Merge pull request #391 from rsmudge/armitage: add color to armitage's presentation of the Metasploit console sinn3r .
09:31 pm Feature #6203: Request for features for RC scripts: sticking in the backlog Jonathan Cran
09:30 pm Bug #702: Windows adduser payload fails on NT 4.0: pulling out of my queue Jonathan Cran
09:19 pm Feature #4668 (Closed): Add ESXi suppor to the lab plugin: closing this up. Jonathan Cran
09:19 pm Bug #3157 (Closed): define & document issue priorities.: Jonathan Cran
09:18 pm Feature #5703: Portable Windows version: pulling this off my queue, but this would still be a neat feature Jonathan Cran
07:07 pm Revision fe7928c1: Merge pull request #390 from jlee-r7/consolidate-250-254-375: Consolidate #250, #254, #375 jlee-r7
06:47 pm Revision de22d76a: Blank fields exist legitimately: The first process in Windows is usually [System Process] which has no
associated path, arch, or user, causing this co... James Lee
06:22 pm Revision 5bd374e6: Refactor the processlist into its own class: *NOTE* Possible backwards compatibility issue! Changes get_processes
hash key from 'parentpid' to 'ppid' James Lee
06:14 pm Feature #6864: New aux modules HP Printers: Made changes to these modules, please test and review before I can do pull requests for you. thanks. sinn3r .
05:14 pm Revision aee9c829: Undo mode change from last commit: >_< James Lee
05:13 pm Revision f60429ea: Linux binaries for consolidation: This includes ps support, sniffer enhancements and the new loadlib API
changes.
[See #250][See #254][See #375] James Lee
05:09 pm Revision 709f860e: Undo mode change from previous commit: James Lee
05:07 pm Revision 62f6ed97: Windows binaries for new loadlib API: James Lee
04:43 pm Feature #6864: New aux modules HP Printers: >> redmine is more practical.. I will try with github for the next request.
I can do it. No problem. And then yo... sinn3r .
02:34 pm Revision dd4aaa07: Fixing CVE reference: Tod Beardsley
02:34 pm Revision 336a00bc: Fixing CVE reference: Tod Beardsley
01:47 pm Revision 7a78c99c: Adding credit to original PoC guy for RuggedCom: Just added and commented. It'd be nice to have a real spot for this kind
of credit, because it comes up a lot and it'... Tod Beardsley
11:51 am Feature #6864: New aux modules HP Printers: sinn3r . wrote:
> * Do you mind doing pull requests instead?
> * Do these modules cause the printer to print stuff?... Matteo Cantoni
11:15 am Feature #6864: New aux modules HP Printers: * Do you mind doing pull requests instead?
* Do these modules cause the printer to print stuff?
* I don't think we ... sinn3r .
04:15 am Feature #6864 (New): New aux modules HP Printers: Hi,
I wrote 5 aux modules useful during a penetration test. Briefly, they permit three actions:
discovery (HP pri... Matteo Cantoni
03:23 am Revision 74e48129: add color to armitage's presentation of the Metasploit console: Raphael Mudge
02:40 am Revision 0b2a8e0b: Correct e-mail format: sinn3r

12:47 pm Revision 65800f7c: Whitespace on solarwinds: Tod Beardsley
11:42 am Bug #6782 (Resolved): API Documentation Issue: Thao Doan
09:08 am Bug #6840: auxiliary/scanner/http/cold_fusion_version: Hmm
I'm using the default ruby install with Backtrack 5. I guess I can update to ruby 1.9.3 :-) Jim Kelly
08:56 am Bug #6840: auxiliary/scanner/http/cold_fusion_version: Neat! I mean, too bad!
Have you tried with ruby 1.9.3 (we like 1.9.3-p125)? We've never had much luck with Ruby 1.... Tod Beardsley
07:52 am Bug #6840 (New): auxiliary/scanner/http/cold_fusion_version: when using contents of file for RHOSTS input ie: file:/path/to/file
Ruby crashes when I run the scanner module
ms... Jim Kelly

11:16 pm Bug #6837 (Closed): ship ruby.h so users can install native gems: HD Moore
07:31 am Bug #6837: ship ruby.h so users can install native gems: Hello,
After upgrading to metasploit v4.4.0-dev [core:4.4 api:1.0] they're are no more troubles.
You can close ... Eric Romang
05:08 am Bug #6837 (Closed): ship ruby.h so users can install native gems: Hello,
I have try to load the "lab" plugin, but have this error :
msf > load lab
[-] Failed to load plugin fro... Eric Romang
12:52 am Revision 24a9cd92: give source code a correct home.: Raphael Mudge

10:19 pm Bug #6826: msfvenom fails with NoMethodError undefined method `supports?' for [Msf::Module::Platf...: Twin github issue here:
https://github.com/rapid7/metasploit-framework/issues/357
I get semi-conflicting answers ... Brandon Perry
10:18 pm Bug #6826 (Resolved): msfvenom fails with NoMethodError undefined method `supports?' for [Msf::Mo...: The offending code is:
68 def init_platform(platform)
69 if(platform.supports?(::Msf::Module::PlatformList.win32)... Brandon Perry
09:57 pm Revision 43d730d5: Squashed commit of minor cosmetic fixes:: commit eed15ea9ecc88683c8d922fe155d4777a7ce1286
Author: Tod Beardsley <todb@metasploit.com>
Date: Wed May 2 21:55:5... Tod Beardsley
07:06 pm Revision dd7bc23d: Whitespace: James Lee
06:20 pm Bug #6825: [POSIX] Creating a second tcp channel fails: It's a thread starvation issue:... James Lee
05:11 pm Bug #6825 (New): [POSIX] Creating a second tcp channel fails: No error, just doesn't give back a channel. Here's the relevant bits of a meterpreter debug log:... James Lee
03:56 pm Bug #6316: exception in StreamMonitorRemote thread when pivoting: Also affects linux, but strangely, not Windows. James Lee
02:53 pm Feature #6822: Enhancements to auxiliary/scanner/http/coldfusion_locale_traversal and cold_fusio...: If i understand what you are saying correctly, the way you originally approached it actually worked quite well...
... Thomas Ring
02:49 pm Feature #6822: Enhancements to auxiliary/scanner/http/coldfusion_locale_traversal and cold_fusio...: since you are updating the module, you can add a check if the traversal is working. i've been using
/CFIDE/adminis... Chris Gates
02:20 pm Feature #6822 (HavePatch): Enhancements to auxiliary/scanner/http/coldfusion_locale_traversal an...: Reading CGs blog here: http://carnal0wnage.attackresearch.com/2012/04/from-low-to-pwned-2-coldfusion.html
I was re... Thomas Ring
01:59 pm Feature #6784: Generic XSLT+Java and XSLT+PHP modules: Here's a new version, much more elegant and robust. The Java and PHP features were merged.
Thanks to egypt for helpi... Nicolas Gregoire
11:40 am Bug #6815: Exception while running post/windows/gather/hashdump - stdapi_registry_query_value: Op...: +1 to this. I usually experience this when running hashdump post module against an XP/2003 system. Sometimes it works... Raphael Mudge

01:50 pm Bug #6787 (New): Problems with msfupdate on 4.3.0: ... Jonathan Cran
09:44 am Feature #6594: Liferay XSL Command Execution: FYI, I created ticket #6784 (https://dev.metasploit.com/redmine/issues/6784) regarding some generic Xalan-J and PHP m... Nicolas Gregoire
09:42 am Feature #6784 (HavePatch): Generic XSLT+Java and XSLT+PHP modules: Ticket #6594 describes a module exploiting a feature in the "XSL Portlet" of Liferay. This feature allows to execute ... Nicolas Gregoire
07:04 am Feature #6783 (New): MSF Improvement Notes From Last Pentest: Here are some things I noticed during a recent pentest which I was able to work around but could help pentesters in t... Tessier Ashpool
02:38 am Revision 63ed7fcc: Whitespace, be gone!: sinn3r
02:36 am Revision d985ba5e: Clean up whitespace: sinn3r

« Previous

Also available in: Atom

Metasploit Framework

Activity

Activity

05/24/2012

05/23/2012

05/22/2012

05/21/2012

05/20/2012

05/19/2012

05/18/2012

05/17/2012

05/16/2012

05/15/2012

05/14/2012

05/13/2012

05/12/2012

05/11/2012

05/10/2012

05/09/2012

05/08/2012

05/07/2012

05/06/2012

05/05/2012

05/04/2012

05/03/2012

05/02/2012

05/01/2012

04/30/2012

04/29/2012

04/28/2012

04/27/2012

04/26/2012