08deb21ae3
update remote mouse version checks
2022-10-17 15:29:10 -04:00
6a682f4fe6
Land #16982 , Update Dell iDRAC login scanner to work with v8 and v9
2022-10-14 01:40:35 +01:00
a3e32ffafa
Add TARGET 0 to documentation
2022-10-12 20:00:33 -05:00
e9f54aa5b8
Update documentation with better wording, and add randomization of parameter name to module along with cleanup code for deleting uploaded files
2022-10-12 19:16:52 -05:00
9652823393
Reverted check method to upload shell
2022-10-12 19:16:44 -05:00
3c27c8e5aa
Condensed payload, changed base64 encoding to hex
2022-10-12 19:12:35 -05:00
e4eac96b4b
Add Module for pfSense pfBlockerNG unauth RCE as root
2022-10-12 19:12:22 -05:00
f92d913f0c
Land #17116 , Adding CVE-2022-22947 Spring Cloud Gateway RCE Exploit
2022-10-12 11:53:47 -05:00
4aa2b76bde
Land #17092 , netlm_downgrade Cleanup and support non-Meterpreter sessions
...
Merge branch 'land-17092' into upstream-master
2022-10-12 11:40:20 -05:00
487a26ee0f
Add in some missing info to examples, set default port, and update IOCs to note we include some IOCs in the logs
2022-10-12 11:19:47 -05:00
9abaa00b9e
Adding some changes to documentation as per review comments
2022-10-12 11:36:35 -04:00
e75438d0b2
Documentation fix and minor fixes
...
Fixed the documentation according to msftidy's suggestion and removed a few unessary parts of code
2022-10-11 18:17:52 -04:00
45aa09411e
First round of edits from review
2022-10-11 15:46:04 -05:00
c587360e90
Minor typo fixes
2022-10-11 10:52:42 -05:00
69d1497ae1
netrc and fetchmailrc docs
2022-10-08 10:43:25 -04:00
412a07df54
Fixed #16674
2022-10-07 14:35:21 -04:00
c8cd6a7864
Adding CVE-2022-22947 Spring Cloud Gateway RCE Exploit
...
CVE-2022-22947 exploits Spring Cloud Gateway. The module has been tested with Spring Cloud gateway version 3.1.0 on Linux kali 5.18.0-kali5-amd64
2022-10-06 15:48:36 -04:00
60c21da50e
Land #17009 , Add MobaXterm cred gather module
...
This module determines if MobaXterm is installed and if
it is dumps all saved session information from the target
2022-10-05 14:14:27 -04:00
0145264046
Land #17093 , add Enlightenment priv esc module
...
This PR adds a local priv esc for Enlightenment on Ubuntu
which exploit a simple cmd injection
2022-10-04 14:09:18 -04:00
63af4e3702
Land #17067 , add remote mouse rce
2022-10-04 11:40:33 -05:00
edc0c622fc
Land #17099 , Wordpress Elementor plugin RCE
...
This PR adds a new authenticated exploit module against
3 versions of Elementor, a plugin for Wordpress.
2022-10-03 16:59:38 -04:00
b7073df1e0
review comments
2022-10-03 16:53:14 -04:00
052d233bd9
Land #17006 , Gather_RedisDesktopManager_Password
...
Merge branch 'land-17006' into upstream-master
2022-10-03 15:10:30 -05:00
68b2aec6fb
review comments
2022-10-03 15:25:53 -04:00
c6e18ee469
cve-2022-1329
2022-10-02 15:59:58 -04:00
e78babea90
cve-2022-37706
2022-10-01 11:24:29 -04:00
3ffbc99d9f
netlm_downgrade: Cleanup and support non-Meterpreter sessions
2022-10-01 22:35:11 +10:00
9ad513dade
Land #16933 , Thycotic Secret Server post module
...
This PR adds a post exploitation module that exports
and decrypts Thycotic Secret Server credentials
2022-09-30 13:16:05 -04:00
9e74b9887d
Land #17048 , enum_tokens: Cleanup
...
Merge branch 'land-17048' into upstream-master
2022-09-29 15:58:46 -05:00
e06acc7df0
Update documentation/modules/post/windows/gather/credentials/thycotic_secretserver_dump.md
2022-09-29 13:59:01 -04:00
e8d4bcdcc6
Update documentation/modules/post/windows/gather/credentials/thycotic_secretserver_dump.md
2022-09-29 13:58:37 -04:00
713d63654b
Update documentation/modules/post/windows/gather/credentials/thycotic_secretserver_dump.md
2022-09-29 13:58:22 -04:00
76c6632305
Land #16673 , qdPM 9.1 - Authenticated Remote Code Execution (CVE-2020-7246)
...
Merge branch 'land-16673' into upstream-master
2022-09-29 09:46:27 -05:00
379f303ea8
Land #17061 , Mobile Mouse Server RCE
...
This PR includes a module that uses default
configuration in Unified Remote to spawn a
run prompt and return a shell.
2022-09-28 10:48:41 -04:00
e27dbd2787
Land #16794,Add exploit for CVE-2022-34918
...
Merge branch 'land-16794' into upstream-master
2022-09-27 16:37:52 -05:00
391a27b08c
remote mouse rce
2022-09-27 16:37:42 -04:00
3170eac829
Land #16981 , enum_domain_tokens: Cleanup and fix group member retrieval
...
Merge branch 'land-16981' into upstream-master
2022-09-27 09:47:34 -05:00
a39b1c9fe5
msftidy_docs
2022-09-26 15:56:43 -04:00
61f576d3e1
mobile mouse server exploit
2022-09-26 15:45:42 -04:00
a48c2d9e72
Land #17033 , hikvision password reset via inproper authorization logic - CVE-2017-7921
2022-09-23 15:01:04 -05:00
0908006466
Land #16985 , wifi mouse rce - CVE-2022-3218
2022-09-23 14:46:49 -05:00
b62f163696
Update documentation on module and exploit a little more to make things a bit clearer
2022-09-23 14:08:18 -05:00
2958a43a6a
Update to reflect fact that bug is an improper authentication logic bug and to randomize password for auth parameter since it is ignored
2022-09-23 12:19:29 -05:00
2b5e85cd27
Land #17012 , Veritas Backup Agent RCE
...
This module exploits a chain of the vulnerabilities CVE-2021-27876,
CVE-2021-27877 and CVE-2021-27878 in Veritas Backup Exec Agent which
leads to remote code execution with privileges of system or root user
2022-09-23 12:31:46 -04:00
f2d357eda1
updated documentation with camera specifications
2022-09-23 09:38:37 -05:00
edc37835e5
Add more nil checks in, update some of the check code to catch an edge case, update notes to account for indicators of compromise, and fix some extra issues noticed on second round of review
2022-09-23 09:38:35 -05:00
3ca34568c2
Clean up some of the documentation and module code and descriptions
2022-09-23 09:38:12 -05:00
5ed7ff7f52
init commit module and documentation
2022-09-23 09:38:05 -05:00
d5dcca899d
Fix description scenario
2022-09-23 10:51:36 +03:00
c74f480177
Land #17049 , enum_domain_group_users module clean up
2022-09-22 17:51:12 +01:00
h00die