1
0
mirror of https://github.com/calebstewart/pwncat.git synced 2024-11-27 19:04:15 +01:00
Commit Graph

726 Commits

Author SHA1 Message Date
Caleb Stewart
61999054c3 Forced Stream.RAW for gtfobins interactions 2021-09-19 02:21:42 -04:00
Caleb Stewart
faec8be275
Merge pull request #194 from calebstewart/issue-185-private-key-password
[FIXES 185] Added logic for calling correct paramiko method
2021-09-19 01:38:51 -04:00
Caleb Stewart
0e8ed033b4 Updated changelog 2021-09-19 01:36:09 -04:00
Caleb Stewart
5bbefd8403 Added checks for open file-like object for ssh 2021-09-19 01:32:29 -04:00
Caleb Stewart
e9e72e3e49
Merge pull request #187 from Mitul16/typo-fixes
Multiple typo fixes
2021-09-18 23:46:48 -04:00
Caleb Stewart
20f1aac027
Removed text from windows temp directory (see comment) 2021-09-18 23:45:48 -04:00
Caleb Stewart
82fbe02fed
Merge pull request #186 from zCri/master
Typo (avialable)
2021-09-18 23:43:34 -04:00
Caleb Stewart
cbd6f1d20f
Merge pull request #182 from calebstewart/issue-181-leak-privkey-root
Updated leak_privkey to leak all keys when UID=0
2021-09-18 23:43:13 -04:00
Caleb Stewart
904571f62c
Merge pull request #188 from calebstewart/issue-169-docker-base-image
[FIX #169] Update docker base image
2021-08-31 17:38:08 -04:00
Caleb Stewart
b6f001d3e1 Updated changelog 2021-08-31 17:35:26 -04:00
Caleb Stewart
a09cab24f3 Changed docker base image to python3.9-alpine 2021-08-31 17:32:15 -04:00
Caleb Stewart
7273e6ad43
Merge pull request #164 from Mitul16/master
[FIXED 163] Multiple verbose outputs issue and minor fixes
2021-08-31 16:54:06 -04:00
Mitul16
e2929573be Multiple typo fixes
This shouldn't break anything, no variable name is changed.
Documentation and strings are fixed, strings that do not come in a 'command' or those that are required for 'pwncat' to work are not changed.
2021-08-23 19:33:35 +05:30
zCri
9e4fd3e91f
Typo (avialable) 2021-08-22 18:53:39 +02:00
Caleb Stewart
2790a7a287
Merge pull request #184 from calebstewart/issue-183-fix-sudo-parsing
Fixed sudo rule parsing
2021-08-16 11:54:42 -04:00
Caleb Stewart
856d4a8134
Merge branch 'master' into issue-183-fix-sudo-parsing 2021-08-16 11:54:25 -04:00
Mitul16
4043e95adc Fixed possible typo in 'id' command in 'refresh_uid'
Real and effective 'gid' are interchanged
2021-08-12 11:27:33 +05:30
Mitul Varshney
58fa22d75f
Merge branch 'master' into master 2021-08-12 11:14:01 +05:30
Mitul16
5d2dd7078e Updated CHANGELOG.md 2021-08-12 11:11:46 +05:30
Mitul16
62baba017f Pre-merge tasks completed! 2021-08-12 11:01:15 +05:30
Mitul16
a859007ca4 Added 'OSError' handling to bind protocol 2021-08-12 11:01:15 +05:30
Mitul16
dfb2f28f90 Added 'PlatformError' to PrivateKey implant 'trigger' method 2021-08-12 11:01:15 +05:30
Mitul16
5477cfac66 Fixed docstrings for local commands
There was inconsistent use of the docstrings affecting the output while using 'help COMMAND'
2021-08-12 11:01:15 +05:30
Mitul16
61cf46214f Added 'verbose' in argument parser
This will set the config variable 'verbose' to True, so we can run 'pwncat ... --verbose/-V'
and have verbose output without the need to 'set vebrose True'.
Because we do not have access to pwncat's local prompt if we run it as 'pwncat ...'
2021-08-12 11:00:39 +05:30
Caleb Stewart
1d7d35e3cd
Merge pull request #160 from calebstewart/issue-159-valueerror-on-loopback
[FIXES 159] Correctly handle IPv6 Sockets
2021-08-10 18:50:13 -04:00
Caleb Stewart
0be4fe0eca Fixed sudo rule parsing 2021-08-10 18:30:11 -04:00
Caleb Stewart
71699807a2 Updated leak_privkey to leak all keys when UID=0
Also added `PermissionError` exception to `LinuxReader` and
`LinuxWriter` when the underlying process completes with a non-zero exit
code.
2021-08-10 17:09:11 -04:00
Caleb Stewart
26e647a19f
Merge pull request #167 from calebstewart/fix-ssh-password
Correct password processing in connection string
2021-07-20 16:30:59 -04:00
Caleb Stewart
eac56c853d Correct password processing in connection string 2021-07-20 16:30:00 -04:00
Mitul Varshney
6738fd27a4
Merge branch 'calebstewart:master' into master 2021-07-19 17:20:54 +05:30
Mitul16
7ca4760599 Fixed disabling of verbose output
Added a check for the 'set' command, so that if the user changes 'verbose' option then it is applied to every session
2021-07-19 17:14:21 +05:30
Mitul16
2767547019 Updated 'verbose' in 'Platform'
I have changed the logger name from 'str(channel)' to 'str(id(channel))' to create a logger unique to one 'channel'. Also, added a separate method to set verbose output and added a private variable to store the logging handler object
2021-07-19 17:14:13 +05:30
Caleb Stewart
4e38393632 Added changelog entry 2021-07-18 13:54:09 -04:00
Caleb Stewart
350824a8cb Ignored extra results from ipv6 getpeername 2021-07-18 13:48:12 -04:00
Caleb Stewart
4205177806
Merge pull request #158 from Mitul16/master
[FIXED #156] Raised exception on using 'sessions'
2021-07-18 12:49:12 -04:00
Mitul16
168b98ea7b Pre-Merge task: formatted w/ python-black 2021-07-18 13:25:25 +05:30
Mitul16
fd458aa308 Prevented '^C' from being shown to the user
This will only keep the 'log info' in one line, the output for 'rich console'. I have 'force-pushed' to prevent git-history pollution. Oops! I forgot to use same comments :p
2021-07-18 12:58:03 +05:30
Mitul16
a4cee5be27 Completed pre-merge tasks
There was a 'flake8' warning about an unused import 'import signal' in 'pwncat/platform/windows.py'
2021-07-18 02:38:01 +05:30
Mitul16
868ee84f0f Updated CHANGELOG.md 2021-07-18 02:37:49 +05:30
Mitul16
b511a37f71 Fixed some error messages
'socket.gaierror' is caught when we are unable to resolve the host name into the IP address. 'OSError' is caught when the host is invalid. I have now used the appropriate messages.
2021-07-18 02:30:17 +05:30
Mitul16
eae6440145 Replaced a single 'better shell' with a list
This is not a required feature to have, since 'bash' is rarely absent on a system. I may be wrong :p
2021-07-18 02:28:27 +05:30
Mitul16
50998d4c97 Fixed a possible exception leak
Previously, we were registering a new 'session' with the 'manager' before completing the setup: '__init__'. Any exception raised after we registered the 'session' didn't remove the registered session. This will allow the reuse of same 'session_id' because we have already registered the 'session' with this 'session_id', which may possibly be an invalid session because an exception is raised. And 'session_id' variable in 'manager' will not be updated because of this exception. Thus, I have shifted down the session registering part so that it occurs after the completion of session creation.
2021-07-18 02:24:28 +05:30
Mitul16
534002288c Added warning messages for 'KeyboardInterrupt'
I have added warning messages so that the attacker can use 'C-c' to cancel the session when used from command line (not from local prompt). And added the message for already handled same exception. I have also changed two warning message color from 'red' to 'yellow', because 'yellow' is being used everywhere in the code.
2021-07-18 02:21:16 +05:30
Mitul16
230b3995f5 Fixed a minor typo
To me, it looked like a 'typo'. You may !cherry-pick this commit. :)
2021-07-18 02:13:36 +05:30
Caleb Stewart
233919db7e Updated release v0.5.0 to changes in master 2021-07-03 17:01:37 -04:00
Caleb Stewart
e6991fba07
Merge pull request #149 from calebstewart/issue-137-add-pwncat-to-pypi
[FEATURE #137] Add pwncat to PyPI
2021-07-03 16:44:38 -04:00
Caleb Stewart
561a3fcfe9
Merge branch 'release-v0.5.0' into issue-137-add-pwncat-to-pypi 2021-07-03 16:44:30 -04:00
Caleb Stewart
7906614d93
Merge pull request #145 from calebstewart/issue-43-background-listeners
[FEATURE #43] Background Listeners
2021-07-03 16:27:05 -04:00
Caleb Stewart
f894c77bd9
Merge branch 'release-v0.5.0' into issue-43-background-listeners 2021-07-03 16:26:28 -04:00
Caleb Stewart
ca37f74b37
Merge pull request #144 from calebstewart/issue-106-token-impersonation-ability
[FEATURE #106] Token Impersonation Ability and BadPotato PoC
2021-07-03 16:24:38 -04:00