adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions 9 Packages Projects Releases Wiki Activity
81,239 Commits 27 Branches 1,043 Tags
master
Commit Graph

3470 Commits

Author SHA1 Message Date
Spencer McIntyre cdb01c692f Add tests 2026-04-01 12:45:31 -04:00
bwatters-r7 1f1ca87753 Update specs to reflect the new constraints for FETCH_COMMAND values 2026-04-01 10:35:12 -05:00
adfoster-r7 acefa87790 Add additional validation to db_import 2026-04-01 10:47:50 +01:00
Spencer McIntyre 839fc52011 Merge pull request #21004 from EclipseAditya/fix/20899-registry-trailing-backslash 
Fix trailing backslash in shell registry operations
 2026-03-31 15:49:09 -04:00
adfoster-r7 c0a9794d7f Update tests and module that needed the rhost option set 2026-03-31 11:40:13 +01:00
bwatters-r7 a0594483b0 Specs for the spec gods 2026-03-30 15:57:06 -05:00
adfoster-r7 438b8e0875 Merge pull request #21102 from zeroSteiner/fix/re-add-20989 
Reapply "This adjusts module options that need a routable address"
 2026-03-30 14:50:05 +01:00
adfoster-r7 15f84bc216 Merge pull request #21073 from Hemang360/fix-duplicate-job 
Fix duplicate handler jobs caused by stop_handler on repeated run
 2026-03-28 13:22:39 +00:00
Nayeraneru e26330a4fb Fix CI specs 2026-03-27 15:06:16 +02:00
SaiSakthidar c6529e83cd Merge branch 'rapid7:master' into php-meterpreter-tcp-server-tests 2026-03-27 00:57:05 +05:30
Spencer McIntyre 93e3616115 Add tests and normalization 2026-03-26 14:43:33 -04:00
Spencer McIntyre b743296f48 Reapply "This adjusts module options that need a routable address" 
This reverts commit 628275ef59.
 2026-03-26 14:43:31 -04:00
Hemang360 e76c21d0db Add tests for #stop_handler 2026-03-26 23:26:28 +05:30
Chocapikk 222e1a28ab Fix: Address Copilot review feedback on blind extraction and calibration 
- Widen blind_dump_data bisection range from 0..127 to 0..255 for
  binary-safe byte extraction, use Encoding::BINARY for chr output
- Revert read_from_file to positional param (binary = false) to stay
  consistent with MSSQL/PostgreSQL implementations
- Add elapsed <= 0 guard and .clamp on calibrated benchmark iterations
- Add unit specs for blind_detect_length and blind_dump_data covering
  zero-length, ASCII, long strings, and high bytes (>127)
- Fix rubocop: remove leading blank line, use single-quoted strings
 2026-03-26 15:53:51 +01:00
cgranleese-r7 266b87bfaa Merge pull request #21174 from adfoster-r7/fix-command-parsing-option-from-msfconsole-cli 
Fix command parsing option from msfconsole cli
 2026-03-26 11:49:13 +00:00
adfoster-r7 1faa27f7e6 Fix encoding issues in files 2026-03-25 19:01:57 +00:00
Christophe De La Fuente bf1a12301b Merge pull request #20967 from jheysel-r7/fix/lib/smb_relay_ruby_client_support 
Add support for Ruby SMB Client and `smbclient` to be compatible with Msf::Exploit::Remote::SMB::RelayServer
 2026-03-24 18:12:45 +01:00
adfoster-r7 80c5c32048 Fix command parsing option frofrom msfconsole cli 2026-03-24 14:09:57 +00:00
Valentin Lobstein 20d795d91e Fix: Address PR review feedback 
Module changes (cgranleese-r7):
- Remove VERBOSE from DefaultOptions
- Make COUNT required with default 0
- Simplify COUNT usage since it's now always present

Specs (bwatters-r7):
- Expand mysqli_common_spec.rb with tests for version, current_database,
  current_user, enum_database_names, enum_table_names, enum_table_columns,
  sleep_call, hex_encode_strings, hex/base64 encoders, time_blind_payload,
  and blind_detect_length binary search
- Expand mysqli_time_based_spec.rb with tests for IF/sleep payload
  generation, SqliDelay usage, test_vulnerable, and Common inheritance
- Add mysqli_benchmark_based_blind_spec.rb with tests for BENCHMARK
  multiplication payload, calibrated iterations, SHA1 seed randomization,
  test_vulnerable, and calibrate
 2026-03-23 01:58:29 +01:00
Nayeraneru 242cf2894f Fix reused option visibility mutations 2026-03-20 09:44:56 +02:00
adfoster-r7 f9976dd8a2 Add global datastore option configuration 2026-03-20 00:10:33 +00:00
SaiSakthidar 929c977fcf Update PHP meterpreter socket channel acceptance expectations 2026-03-18 17:43:46 +00:00
Spencer McIntyre 09bb0337d1 Merge pull request #20997 from Nayeraneru/OptTD 
Introduce OptTimedelta
 2026-03-17 18:41:42 -04:00
adfoster-r7 3768efbacc Improve payload size generation script 2026-03-16 22:06:39 +00:00
adfoster-r7 c882d91155 Merge pull request #21025 from Hemang360/cookie-jar-doc-fix 
Fix HttpCookie integer conversion and cookie jar docs
 2026-03-13 00:08:13 +00:00
msutovsky-r7 e6ee6a7c94 Land #20961, adds service reporting to Wordpress mixin 
Update Wordpress Mixin to log services
 2026-03-10 09:05:05 +01:00
adfoster-r7 628275ef59 Revert "This adjusts module options that need a routable address" 2026-03-08 17:37:49 +00:00
bwatters-r7 34cc1a663c Also remove ms_icpr_spec that had the same tests as the other spec file removed before 2026-03-05 15:44:20 -06:00
bwatters-r7 f2e98c76d8 Move specs for create_csr and build_on_belhalf_of to new location since we moved them. 2026-03-05 15:19:31 -06:00
Spencer McIntyre 400b2d7eb8 Update the specs 2026-03-05 13:56:17 -05:00
Spencer McIntyre c9d14ef449 Update ESC reported services and findings 2026-03-03 09:38:23 -05:00
adfoster-r7 c87d6519da Add linting rule 2026-03-03 09:34:49 -05:00
Nayeraneru 4b363017ef minor change for CI 2026-03-03 06:24:42 +02:00
adfoster-r7 7545328be1 Linting 2026-03-02 15:02:56 +00:00
adfoster-r7 1a4ae7bfa3 Fix broken module url references 2026-03-02 14:35:48 +00:00
Hemang360 b2500442fe Fix cookie jar documentation examples and add test 2026-02-27 15:01:16 +05:30
msutovsky-r7 62a466cbed Land #20819, adds WSL startup folder persistence module 
wsl startup folder persistence
 2026-02-24 07:59:11 +01:00
Nayeraneru e6452f5879 hashing adjustment 2026-02-24 03:15:08 +02:00
Nayera 8fb5e4fcad Update spec/lib/msf/core/exploit/http/wordpress/version_spec.rb 
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
 2026-02-24 02:52:46 +02:00
Nayera d069cba900 Update Wordpress Mixin to log services 2026-02-23 13:31:32 +01:00
EclipseAditya 320effe9a1 Fix trailing backslash in shell registry operations 2026-02-21 06:13:23 +00:00
Nayeraneru ce2e23ccef add OptTimedelta datastore option and remove Kerberos-specific clock skew parsing 2026-02-20 22:28:05 +02:00
Jack Heysel 4197e759f2 Add spec 2026-02-18 16:55:09 -08:00
Simon Janusz 8b58c62375 Merge pull request #20807 from webbsssss/fix/acunetix-vulnerability-import 
Fix #17932: Allow Acunetix vulnerabilities to be imported without complete web_page data
 2026-02-13 15:25:54 +00:00
sjanusz-r7 f111ccc5ec Add working Acunetix import tests 2026-02-13 14:50:18 +00:00
Christophe De La Fuente dc2ef2ed77 Update specs after code review 2026-02-10 09:46:37 +00:00
Christophe De La Fuente c02ac3920d Reapply "Vulnerability Report Enhancement" 
This reverts commit c35537252f.
 2026-02-10 09:46:37 +00:00
Valentin Lobstein f41eda1128 Add GHSA and OSV reference type support 
Add support for GHSA (GitHub Security Advisories) and OSV (Open Source
Vulnerabilities) as structured reference types in Metasploit modules.

Convert 49 hardcoded GHSA URLs to structured ['GHSA', 'GHSA-xxxx'] format
across existing modules, and add support for repository-specific GHSA
references with an optional third parameter ['GHSA', 'GHSA-xxxx', 'repo'].

Update reference validation, module validator, and info_fixups to handle
the new reference types correctly.
 2026-02-09 15:17:23 +01:00
cgranleese-r7 8af6bae699 Merge pull request #20906 from rudraditya21/fix/ssh-cmd-exec-trailing-newlines 
Fix SSH command shells dying on cmd_exec with trailing newline
 2026-02-09 12:25:11 +00:00
bwatters-r7 ad8ee601ff add lib in spec 2026-02-06 13:35:18 -06:00