adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
81,239 Commits 26 Branches 1,043 Tags
master
Commit Graph

81239 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Diego Ledda 9d81fe0f2e Apply suggestion from @smcintyre-r7 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2026-04-17 11:26:11 +02:00
Diego Ledda b3ef4db890 Apply suggestion from @smcintyre-r7 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2026-04-17 11:25:14 +02:00
Diego Ledda 2af3bbf34e Update lib/msf/core/payload/windows/x64/block_api_x64.rb 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2026-04-17 11:23:28 +02:00
Takah1ro 3cfbb90b0f Fix bug 2026-04-17 07:31:25 +09:00
Takahiro Yokoyama 4c5ed36c88 Update modules/exploits/multi/http/langflow_rce_cve_2026_27966.rb 
Co-authored-by: Brendan <bwatters@rapid7.com>
 2026-04-17 07:10:53 +09:00
Christophe De La Fuente 04ffe3ce3b MCP Server, specs and documentation 2026-04-16 19:31:35 +02:00
bcoles 6821066217 Add find_writable_directories to Msf::Post::File 
Add a method to discover writable directories on Unix targets using the
`find` command. This is useful in post-exploitation scenarios where a
module needs to locate a writable staging path.

Parameters:
- path: base directory to search (default: /)
- max_depth: find -maxdepth limit (default: 2)
- timeout: maximum seconds for cmd_exec to wait (default: 15)

Raises on Windows sessions. Returns an array of absolute paths, or nil
on failure. Non-absolute lines (e.g. find error messages) are filtered
from the output.
 2026-04-17 02:31:19 +10:00
jenkins-metasploit 37ff9f8530 automatic module_metadata_base.json update 2026-04-16 16:00:17 +00:00
adfoster-r7 e7c5e0e4a3 Merge pull request #21238 from bcoles/loongarch64-chmod 
Add Linux LoongArch64 chmod payload
 2026-04-16 16:51:00 +01:00
adfoster-r7 0644f27cb6 Add module documentation, tests, and misc feedback 2026-04-16 16:18:46 +01:00
jenkins-metasploit 2b37cbe35e Bump version of framework to 6.4.129 2026-04-16 13:29:17 +00:00
adfoster-r7 c887384546 Merge pull request #21275 from adfoster-r7/improve-mongobleed-checks 
Improve mongobleed checks
6.4.128 		2026-04-16 14:22:51 +01:00
Takah1ro 4973d666ff Relocate json to an external file 2026-04-16 21:57:07 +09:00
dledda-r7 953d0343dd fix: updated cache size after blockapi changes 2026-04-16 08:50:42 -04:00
dledda-r7 a50041b697 feat: update register usage for block API calls to use r10d in various payloads 2026-04-16 08:37:32 -04:00
Takahiro Yokoyama b917de89c3 Merge branch 'rapid7:master' into langflow_rce_cve_2026_27966 2026-04-16 20:58:02 +09:00
jenkins-metasploit 03e8567559 automatic module_metadata_base.json update 2026-04-16 11:11:15 +00:00
adfoster-r7 5b58f289e5 Merge pull request #21304 from adfoster-r7/improve-auxiliary-check-code-messages 
Improve auxiliary check code messages
 2026-04-16 12:02:42 +01:00
adfoster-r7 31ef5e03b5 Improve auxiliary check code messages 2026-04-16 11:22:51 +01:00
dledda-r7 340a72438b feat: refactor exit function handling to use block_api_hash 2026-04-16 04:24:44 -04:00
dledda-r7 2be47dbe9c feat: change exitfunc_helper to be accessible 2026-04-16 04:24:44 -04:00
dledda-r7 b8f8366ff1 docs: adding small comment to call out block api randomization 2026-04-16 04:24:43 -04:00
dledda-r7 1f8bb3b52a feat: refactor exit function handling to use helper method for block api randomization 2026-04-16 04:24:43 -04:00
dledda-r7 3233e3c011 feat: block api iv randomization in PrependMigrate 2026-04-16 04:24:43 -04:00
dledda-r7 8a63392284 feat: block api randomization for x86 payloads 2026-04-16 04:24:42 -04:00
dledda-r7 a54f29f02b feat: block api randomization for x64 payloads 2026-04-16 04:24:42 -04:00
dledda-r7 ab0fdf96f8 feat: block api randomization for windows/x64/reverse_tcp 2026-04-16 04:24:41 -04:00
jenkins-metasploit 3106aef203 automatic module_metadata_base.json update 2026-04-16 08:21:35 +00:00
Diego Ledda 214256ffe8 Merge pull request #21310 from zeroSteiner/fix/remove-eshell-payloads 
Remove the encrypted shell payload and libs
 2026-04-16 04:13:02 -04:00
BootstrapBool d530230b5f Reflects module name change in documentation. 2026-04-15 16:16:16 -04:00
BootstrapBool f52184a566 Renames module 
Places rails version check after downgrading concurrent-ruby
 2026-04-15 16:07:15 -04:00
bootstrapbool 1bbfb699e1 Ensure curl 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2026-04-15 15:49:49 -04:00
bootstrapbool eddd3fecff Always output logs pertaining to version 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2026-04-15 15:48:40 -04:00
jenkins-metasploit 796ffb6331 automatic module_metadata_base.json update 2026-04-15 19:31:55 +00:00
Brendan c17c301e36 Merge pull request #21095 from LucasCsmt/multi/http/churchcrm_db_restore_rce 
Adds exploit module for ChurchCRM authenticated RCE (CVE-2025-68109)
 2026-04-15 14:22:56 -05:00
jenkins-metasploit aad2c79603 automatic module_metadata_base.json update 2026-04-15 17:39:53 +00:00
adfoster-r7 cb45c37eea Merge pull request #21309 from sfewer-r7/fortiweb-fix1 
Improve the fortinet_fortiweb_create_admin aux module check method
 2026-04-15 18:31:03 +01:00
Spencer McIntyre 91633fdad7 Remove the encrypted shell payload and libs 2026-04-15 12:43:29 -04:00
sfewer-r7 ad1dac2a5b fix false posatives in the check method by implementing the same check logic as modules/exploits/linux/http/fortinet_fortiweb_rce.rb 2026-04-15 17:37:29 +01:00
Diego Ledda c81a2ee9e3 Merge pull request #21287 from zeroSteiner/fix/exe-compat 
Fix EXE template compatibility with Windows Server 2000
 2026-04-15 11:30:34 -04:00
adfoster-r7 0ba59a1254 Update documentation/modules/exploit/multi/http/churchcrm_db_restore_rce.md 
Co-authored-by: Brendan <bwatters@rapid7.com>
 2026-04-15 16:07:43 +01:00
adfoster-r7 7f413ef68f Merge pull request #21291 from sjanusz-r7/add-notes-to-module-info-over-rpc 
Return notes for module over RPC
 2026-04-15 14:33:30 +01:00
adfoster-r7 c3cc091a2f Merge pull request #21289 from sjanusz-r7/rpc-hosts-returns-comments 
Return comments for hosts over RPC
 2026-04-15 14:31:35 +01:00
adfoster-r7 d2f350f627 Merge pull request #21290 from dledda-r7/fix/payload-cached-size-debug 
Fix annoying bug for payload cached size
 2026-04-14 22:58:19 +01:00
Spencer McIntyre 862b1e1aaa Add the test since it'll work now 2026-04-14 17:28:44 -04:00
Spencer McIntyre e8e5362aa9 Bump rex-bin_tools to 0.1.16 2026-04-14 17:28:35 -04:00
jenkins-metasploit e2dff5cc50 automatic module_metadata_base.json update 2026-04-14 20:15:55 +00:00
Diego Ledda 1d5eae0f5b Merge pull request #21034 from Chocapikk/add-module-opendcim-sqli-rce 
Add openDCIM install.php SQLi to RCE module
 2026-04-14 16:04:13 -04:00
Diego Ledda b13b669aaa Add MeterpreterDebugBuild option to payload options 
Added 'MeterpreterDebugBuild' option to payload options.
 2026-04-14 21:46:21 +02:00
Diego Ledda addcd69205 Merge pull request #20933 from madefourit/persis_pwrshell_profile 
Windows Persistence: Powershell Profile
 2026-04-14 15:43:06 -04:00