adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
58,610 Commits 27 Branches 1,043 Tags
04bcbd0253fa52f1083c1839942e2f75fc0a8f64
Commit Graph

3789 Commits

Author SHA1 Message Date
William Vu 04bcbd0253 Update module doc 2020-11-11 15:57:29 -06:00
William Vu 42bdae919b Add SaltStack Salt REST API RCE (CVE-2020-16846) 
Leveraging CVE-2020-25592.
 2020-11-11 13:09:26 -06:00
Shelby Pace 65e1ef4cb8 Land #14253, add wp-file-manager rce for wordpress 2020-11-10 08:48:33 -06:00
Tim W e14813485a Land #14331, add msfvenom apk template cmd injection exploit 2020-11-10 17:33:10 +08:00
adfoster-r7 a0106aa603 Land #14269, Add Apache Zookeeper Information Disclosure Auxiliary Module 2020-11-09 20:12:35 +00:00
Christophe De La Fuente 55ccc42cde Land #14319, wp_Loginizer unauth sqli (CVE-2020-27615) 2020-11-05 15:36:10 +01:00
Justin Steven 34715de016 Add jdk to msfvenom's APK template dependencies 2020-11-05 20:13:52 +10:00
cgranleese-r7 70985a09e2 Merge pull request #14280 from h00die/mikrofileread 
Land #14280, Mikrotik unauthenticated directory traversal file read
 2020-11-05 09:27:47 +00:00
Karn Ganeshen 55daaecc7b doc updated 2020-11-05 04:06:53 +05:30
h00die dff6a21742 add wp version check 2020-11-04 11:45:06 -05:00
Spencer McIntyre 708de57499 Land #14297, Modified zabbix login to work with newer versions of zabbix 2020-11-02 15:59:22 -05:00
Grant Willcox 7b72120016 Land #14252, Update Avira password gatherer module and associated libaries and add in documentation 2020-11-02 14:37:47 -06:00
Justin Steven cb14287cb2 Add metasploit_msfvenom_apk_template_cmd_injection 2020-10-31 11:28:28 +10:00
h00die 6944e67f5c add missing docs 2020-10-30 11:36:28 -04:00
h00die f94acb94c9 cleanup 2020-10-29 10:46:14 -04:00
h00die 220b7ac922 add sqlmap directions 2020-10-28 15:50:08 -04:00
h00die 0abdaf9f67 WIP 2020-10-27 21:30:46 -04:00
Grant Willcox f1dc4fd6fc Fix up the other Regex so it keeps backwards compatability and also supports newer versions 2020-10-26 17:55:19 -05:00
Grant Willcox bd57832494 First round of changes from review 2020-10-26 16:02:06 -05:00
Brendan Coles 6258d5b561 Land #14296, Move mercury_login module docs to documentation directory 2020-10-22 13:24:54 +00:00
spassino 913aee2a45 Modified zabbix login to work with newer versions of zabbix 
Added documentation for zabbix login
 2020-10-21 21:14:57 -04:00
h00die 5890bc45b5 move docs out of exploits folder 2020-10-21 16:37:02 -04:00
William Vu e4fb76d74f Add version check to exchange_ecp_dlp_policy 
And update modules/exploits/windows/http/sharepoint_ssi_viewstate.rb.
 2020-10-20 14:32:43 -05:00
William Vu 3970b69734 Land #14229, Telerik UI for ASP.NET AJAX exploit 
CVE-2017-11317 && CVE-2019-18935
 2020-10-20 13:24:35 -05:00
bwatters 1e568a6d1b Merge branch 'land-14179' into upstream-master 2020-10-19 15:55:25 -05:00
William Vu 253928570b Update module doc 2020-10-19 11:18:00 -05:00
Spencer McIntyre 0f344b0661 Land #14265, Add SharePoint Server-Side Include (SSI) and ViewState RCE (CVE-2020-16952) 2020-10-19 10:27:58 -04:00
adfoster-r7 76d5a4e444 Land #14258, add documentation and rubocop for several post/windows/gather modules 2020-10-19 12:59:06 +01:00
h00die bab5377290 docs are md not rb 2020-10-19 05:19:27 -04:00
h00die 5dcee8c8a9 add download ref 2020-10-18 11:20:06 -04:00
h00die f3a633b89e cve-2018-14847 2020-10-18 11:13:16 -04:00
Karn Ganeshen a71d0576db doc updated with new logs 2020-10-16 03:24:27 +05:30
William Vu 4cb08f7426 Address outstanding issues 2020-10-15 13:24:08 -05:00
Tim W 87104a7236 Update docs and make them msftidy_docs.rb compliant 2020-10-15 10:59:46 -05:00
Grant Willcox 59f74438da Rename the LPE exploit to a more appropriate name since their could be future bugs in NtUserMessageCall and also update the description info a bit more 2020-10-15 10:59:44 -05:00
Grant Willcox f2899186e4 Add in first round of initial updates to fix review comments 2020-10-15 10:59:40 -05:00
Tim W dcc322436b Update documentation files and module description to more accurately describe what the cause of the LPE bug for CVE-2019-1458 is. also apply RuboCop edits. 2020-10-15 10:58:58 -05:00
Tim W 00d209425b add documentation 2020-10-15 10:58:08 -05:00
Karn Ganeshen 2fed443179 Apache Zookeeper Info Disclosure Documentation 2020-10-15 17:32:12 +05:30
ide0x90 8d43fa4848 Module can now use mkfile+put method to exploit vulnerability. 2020-10-15 17:46:40 +08:00
William Vu 1a341ae931 Add SharePoint SSI and ViewState RCE 
CVE-2020-16952
 2020-10-14 17:45:15 -05:00
h00die 39a623f3e0 docs for domain post modules 2020-10-11 18:53:28 -04:00
h00die f75367d8bd docs and rubocop 2020-10-11 17:44:21 -04:00
ide0x90 b9df68cbb6 Fix module according to Rubocop, make documentation follow standard. 2020-10-11 19:04:06 +08:00
ide0x90 57b0f30e37 Add new module for WordPress File Manager unauth RCE (CVE-2020-25213) 2020-10-11 01:20:28 +08:00
youkergav 263b6bc070 Merge branch 'master' of github.com:rapid7/metasploit-framework into su_login 2020-10-09 05:26:48 -04:00
youkergav 23c6c415eb Added python alternative and check function 2020-10-09 03:58:55 -04:00
Grant Willcox a2e15235b8 Make fixes to documentation for smart_hashdump.md to fix msftidy issues and improve readability 2020-10-08 14:07:44 -05:00
0x44434241 73e826486f Adding some basic documentation, as it was missing for this module. 2020-10-08 12:58:31 +09:00
Spencer McIntyre fb569a24ee Add module documentation for Telerik RAU Deserialization 2020-10-07 13:40:10 -04:00