squirtle - Project Hosting on Google Code

Older Nov 17, 2008 r38 (Update for msf 3.2-trunk. ) committed by kurt.grutzmacher - Update for msf 3.2-trunk. Update for msf 3.2-trunk. Nov 06, 2008 PythonSocketFix (Python 2.5 socket bug.) Wiki page added by kurt.grutzmacher Nov 05, 2008 DevelopingEvilAgents (Modifying existing code to support the Squirtle API.) Wiki page edited by kurt.grutzmacher Nov 05, 2008 DevelopingEvilAgents (Modifying existing code to support the Squirtle API.) Wiki page edited by kurt.grutzmacher Nov 05, 2008 issue 4 (Support SMB Auth in addition to HTTP) reported by kurt.grutzmacher - In some cases HTTP authentication may not be permitted but SMB might. Add support for SMB server for authentication requests instead of just HTTP. Attackers could then use file://server/share/ URIs instead. In some cases HTTP authentication may not be permitted but SMB might. Add support for SMB server for authentication requests instead of just HTTP. Attackers could then use file://server/share/ URIs instead. Nov 05, 2008 DevelopingEvilAgents (Modifying existing code to support the Squirtle API.) Wiki page added by kurt.grutzmacher Nov 05, 2008 r33 (Addition of IMAP backup code, modified from http://the.taoof...) committed by kurt.grutzmacher - Addition of IMAP backup code, modified from http://the.taoofmac.com/space/Projects/imapbackup code to include Squirtle API, Maildir support (mbox sucks!) and looping to keep authenticated connection open. Still in beta testing but works in my lab and in a limited production environment. Addition of IMAP backup code, modified from http://the.taoofmac.com/space/Projects/imapbackup code to include Squirtle API, Maildir support (mbox sucks!) and looping to keep authenticated connection open. Still in beta testing but works in my lab and in a limited production environment. Nov 05, 2008 r32 (The REAL Metasploit update, for msf3.2-testing. Previous c...) committed by kurt.grutzmacher - The REAL Metasploit update, for msf3.2-testing. Previous code was incomplete. The REAL Metasploit update, for msf3.2-testing. Previous code was incomplete. Oct 07, 2008 r31 (Evil agent patches for Metasploit. Others to come. ) committed by kurt.grutzmacher - Evil agent patches for Metasploit. Others to come. Evil agent patches for Metasploit. Others to come. Sep 28, 2008 issue 3 (Can Ruby handle the load?) reported by kurt.grutzmacher - Squirtle was programmed in Ruby as it was originally going to use the Metasploit Framework's libraries fairly heavily. Later I decided to not go this route after having a number of issues with socket timeouts, having to do some heavy modifying of the library for debugging, etc. So I went with WEBrick and other standard ruby and gem-based libraries instead. There have been some rumors that Ruby can't handle a large number of sockets. Is this true? I don't know and don't have the resources to really check it out yet. With that perhaps it may be good to port the code to Python or (gasp) C/C++ ? Should we switch to the Mongrel HTTP library instead like most of Ruby on Rails devs have? Squirtle was programmed in Ruby as it was originally going to use the Metasploit Framework's libraries fairly heavily. Later I decided to not go this route after having a number of issues with socket timeouts, having to do some heavy modifying of the library for debugging, etc. So I went with WEBrick and other standard ruby and gem-based libraries instead. There have been some rumors that Ruby can't handle a large number of sockets. Is this true? I don't know and don't have the resources to really check it out yet. With that perhaps it may be good to port the code to Python or (gasp) C/C++ ? Should we switch to the Mongrel HTTP library instead like most of Ruby on Rails devs have? Sep 28, 2008 issue 2 (MySQL/Postgres DB support) Status changed by kurt.grutzmacher - Completed! Status: Verified Completed! Status: Verified Sep 28, 2008 r30 (ToorCon X Updates! Modified SQLite "key" column to be "sess...) committed by kurt.grutzmacher - ToorCon X Updates! Modified SQLite "key" column to be "sesskey" to fix broken SQLite Added Type 3 message display so you can pop it into "decode-ntlm.rb" for verification Added evil agent example code! ToorCon X Updates! Modified SQLite "key" column to be "sesskey" to fix broken SQLite Added Type 3 message display so you can pop it into "decode-ntlm.rb" for verification Added evil agent example code! Sep 24, 2008 ExampleCode (Python, Ruby, C (libcurl) examples to be an Evil Agent.) Wiki page added by kurt.grutzmacher Sep 22, 2008 r28 (Added output of Type 3 messages.) committed by kurt.grutzmacher - Added output of Type 3 messages. Added output of Type 3 messages. Sep 22, 2008 r27 (No longer requires Metasploit Framework, added MySQL and Pos...) committed by kurt.grutzmacher - No longer requires Metasploit Framework, added MySQL and Postgres support and more documentation. Preparing for Toorcon X release of 1.1 No longer requires Metasploit Framework, added MySQL and Postgres support and more documentation. Preparing for Toorcon X release of 1.1 Sep 19, 2008 r26 committed by kurt.grutzmacher Sep 10, 2008 issue 2 (MySQL/Postgres DB support) reported by kurt.grutzmacher - SQLite is great for testing but in larger organizations it can't handle the speed of updates from controlled clients. Adding MySQL and Postgres support through ActiveRecord needs to be performed. SQLite is great for testing but in larger organizations it can't handle the speed of updates from controlled clients. Adding MySQL and Postgres support through ActiveRecord needs to be performed. Sep 10, 2008 issue 1 (Administrative Interface) reported by kurt.grutzmacher - Need to provide a user interface for administration of the Squirtle database. Need to provide a user interface for administration of the Squirtle database. Aug 05, 2008 r25 (JSONing the controller ) committed by kurt.grutzmacher - JSONing the controller JSONing the controller Jul 29, 2008 r24 (NTLMAPS modified to use Squirtle's Pass The Dutchie or stand...) committed by kurt.grutzmacher - NTLMAPS modified to use Squirtle's Pass The Dutchie or standard Pass The Hash attacks. NTLMAPS modified to use Squirtle's Pass The Dutchie or standard Pass The Hash attacks. Jul 29, 2008 r23 (Fix to use standard JSON responses ) committed by kurt.grutzmacher - Fix to use standard JSON responses Fix to use standard JSON responses

issue 3 (Can Ruby handle the load?) reported by kurt.grutzmacher - Squirtle was programmed in Ruby as it was originally going to use the Metasploit Framework's libraries fairly heavily. Later I decided to not go this route after having a number of issues with socket timeouts, having to do some heavy modifying of the library for debugging, etc. So I went with WEBrick and other standard ruby and gem-based libraries instead. There have been some rumors that Ruby can't handle a large number of sockets. Is this true? I don't know and don't have the resources to really check it out yet. With that perhaps it may be good to port the code to Python or (gasp) C/C++ ? Should we switch to the Mongrel HTTP library instead like most of Ruby on Rails devs have?

Squirtle was programmed in Ruby as it was originally going to use the Metasploit Framework's libraries fairly heavily. Later I decided to not go this route after having a number of issues with socket timeouts, having to do some heavy modifying of the library for debugging, etc. So I went with WEBrick and other standard ruby and gem-based libraries instead. There have been some rumors that Ruby can't handle a large number of sockets. Is this true? I don't know and don't have the resources to really check it out yet. With that perhaps it may be good to port the code to Python or (gasp) C/C++ ? Should we switch to the Mongrel HTTP library instead like most of Ruby on Rails devs have?

Older