| # Short story: | |
| $ cd metasploit-framework/ | |
| $ git checkout master | |
| $ git log -1 | |
| $ git fetch upstream | |
| $ git merge upstream/master | |
| $ git checkout -b something-wonderful | |
| $ echo "Here's something rad" > modules/auxiliary/something_rad.rb | |
| $ git status | |
| $ git add modules/auxiliary/something_rad.rb |
| def validate_suspender | |
| suspender = datastore['SUSPENDER_DLL'] | |
| suspender.valid? | |
| end | |
| # Then call this somewhere. | |
| https://github.com/ALICE/metasploit-framework/pull/new/BOB:BRANCHNAME..BRANCHNAME |
| Module options (exploit/windows/smb/psexec): | |
| Name Current Setting Required Description | |
| ---- --------------- -------- ----------- | |
| RHOST 192.168.155.6 yes The target address | |
| RPORT 445 yes Set the SMB service port | |
| SHARE ADMIN$ yes The share to connect to, can be an admin share (ADMIN$,C$,...) or a normal read/write folder share | |
| SMBDomain WORKGROUP no The Windows domain to use for authentication | |
| SMBPass mypasswd! no The password for the specified username | |
| SMBUser administrator no The username to authenticate as |
Significantly easier than the Windows install, since you're pretty much already there. You just need to remove the broken SVN checkout and get onto the new Git hotness. If you just want the one-liner fix, scroll to the bottom of this page.
After opening a terminal session:
source /opt/metasploit/scripts/setenv.sh
| #!/usr/bin/env ruby | |
| # Check that modules actually pass msftidy checks first. | |
| # To install this script, copy it to ".git/hooks/pre-commit" and | |
| # make it executable | |
| valid = true # Presume validity | |
| files_to_check = [] | |
| results = %x[git diff --cached --name-only] |
| " If using Janus, then this should be .vimrc.after | |
| " Technically this is really a gvimrc but who's counting. | |
| set nocompatible | |
| colorscheme slate | |
| filetype plugin indent on | |
| set hls | |
| " Pretty standard Ruby default tab indentation | |
| set tabstop=2 softtabstop=2 shiftwidth=2 expandtab shiftround smarttab |
| ======================================================================== | |
| Sorted modules by commit counts | |
| modules/exploits/windows/smb/psexec.rb 61 | |
| modules/exploits/windows/smb/ms08_067_netapi.rb 56 | |
| modules/exploits/multi/http/tomcat_mgr_deploy.rb 48 | |
| modules/exploits/multi/browser/java_signed_applet.rb 39 | |
| modules/exploits/windows/browser/ms03_020_ie_objecttype.rb 37 | |
| modules/exploits/multi/http/jboss_maindeployer.rb 36 | |
| modules/exploits/windows/iis/ms03_007_ntdll_webdav.rb 36 | |
| modules/exploits/unix/webapp/php_include.rb 34 |
If you follow this blog at all, you're familiar with Christian Kirsch's round up of the most searched modules in our Exploit database. These stats are gathered from the Metasploit exploit database backend, and tends to have a pretty strong recency bias -- modules that recently got a lot of press or Twitter buzz tend to shoot up to the top of the list.
Of course, that's the point of "Exploit Trends" exercise -- we and our readers want to know what's recently interesting. But we sometimes ask
