1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
|
================================================================
Version 1.3
================================================================
Medusa Core Updates:
-Module listing fix for OpenBSD/AMD64
-Autoconf tweaks for NCP & SVN checks
-Autoconf tweaks for Solaris/OpenBSD
-Removed unnecessary IP address checks
-Other minor bug fixes
================================================================
Version 1.2
================================================================
Moved following modules to stable:
NCP, VNC, PostgreSQL, SVN, CVS, VmAuthd, SNMP
Medusa Core Updates:
-Compile on x86_64, Mac OS X.
-Minor bug fixes.
-Modified license with OpenSSL GPL exemption.
Module Updates:
SMBNT
-Added AS/400 target support.
-Global "-e" option now works with module "PASS:HASH".
FTP
-Modified response parsing code to support AS/400 brute-forcing.
REXEC
-Modified response parsing code.
Wrapper
-Added oracle script.
-Added SMB NULL session script.
================================================================
Version 1.1
================================================================
Added following modules (unstable):
CVS, NCP, PostgreSQL, SMTP/VRFY, SNMP, SVN, VmAuthd, VNC
Moved following modules to stable:
PcAnywhere, FTP, IMAP, RSH, REXEC, RLOGIN, and generic wrapper
Medusa Core Updates:
-Display module list sorted alphabetically
-Compiles on OpenBSD
-Added delayed receive functions which allow the modules to specify the timeout
for both the initial socket read and the second "is any more data there?" check.
-Modified SSL connect function. The function now takes an already existing socket
and switches it over to SSL. This is needed for modules like VMAUTHD.
-Major rework of network receive function. Original code was copied from Hydra and
seemed to have some issues.
Module Updates:
HTTP
-Added check for 301 error code (success)
-NTLM authentication support
IMAP
-Minor code cleanup
MySQL
-Added support for testing accounts without password
PcAnywhere
-Added sleep to deal with servers freaking out when attempts arrive too quickly
POP3
-Added AS/400 mode. Examines error codes to give us better information about
account status.
SMBNT
-Added check to detect non-existent accounts when auditing an XP client
Telnet
-Moved receive functions to new delayed receive functions. This is slower, but
we should actually be able to brute devices with long logon banners now.
Wrapper
-Added support for scripts to pass error messages back to Medusa.
Misc. Updates:
Rdesktop
-Added better success/failure detection
-Added support to detect various error messages
-Added basic W2K support
-Added basic OS detection
Ebuilds
-Updated libssh2 ebuild based on bugs.gentoo.org feedback.
-Updated Medusa ebuild based on bugs.gentoo.org feedback.
-Updated Medusa version and added new module dependencies.
-Modified ncpfs ebuild for "install-dev" option.
================================================================
Version 1.0
================================================================
Initial release
Modules (stable): HTTP, MS-SQL, SMBNT, SSHv2, Telnet, POP3 and MySQL
Modules (unstable): RSH, RLOGIN, REXEC, FTP, IMAP, PcAnywhere, and generic wrapper
|
