0cae369a45
automatic module_metadata_base.json update
2023-10-26 10:49:41 -05:00
d960aa522c
Land #18348 , Splunk account take over (CVE-2023-32707) leading to RCE
2023-10-26 11:34:02 -04:00
816048b9f5
Land #18479 , No longer clear remote service msfdb creds by default
2023-10-26 15:09:00 +01:00
e5e58bc0be
Update modules/exploits/multi/http/splunk_privilege_escalation_cve_2023_32707.rb
...
Co-authored-by: Zach Goldman <106169455+zgoldman-r7@users.noreply.github.com >
2023-10-26 14:03:06 +02:00
b58f963355
Land #18299 , extend error message for timeouts to include more detail to user
2023-10-26 00:21:22 +01:00
216f6fbfc5
Land #18466 , Replace grep with getent in entrypoint.sh
2023-10-25 21:22:26 +01:00
93645c23ac
Land #18403 , Fix FileDropper to properly clone string variables before storing them
2023-10-25 20:55:06 +01:00
a503152236
automatic module_metadata_base.json update
2023-10-25 12:55:11 -05:00
9e5e57390f
Land #18194 , Useradd post module
2023-10-25 19:29:59 +02:00
14a5aaab98
Fix small typo
2023-10-25 19:28:23 +02:00
862e738015
extend error message for timeouts to include more detail to user
...
initial functionality, testing/cleanup still needed
script and command functionality
remove unnecessary accessor
switch puts to print_error in proc
ensure proc is reset, run on every error, add yard docs
fix yard, refactor/remove dead code
rename on_error_proc
2023-10-25 11:08:00 -05:00
9e77eba39b
Land #18487 , Fix flakey test failure
2023-10-25 14:45:00 +01:00
a97cc128f7
Fix flakey test failure
2023-10-25 14:09:34 +01:00
c0af43c10b
Update modules/exploits/multi/http/splunk_privilege_escalation_cve_2023_32707.rb
...
Co-authored-by: Zach Goldman <106169455+zgoldman-r7@users.noreply.github.com >
2023-10-25 11:02:30 +02:00
70ae201d5f
automatic module_metadata_base.json update
2023-10-24 10:55:19 -05:00
ff9639e6a6
Land #18460 , VMWare Aria Operations for Networks (vRealize Network Insight) Static SSH key RCE
2023-10-24 17:32:28 +02:00
96a04265c7
Land #18470 , Adds wiki guide for session searching and killing stale sessions
2023-10-24 15:30:46 +01:00
59c277ba67
Land #18737 , Add DB Stats Command to Console
2023-10-24 16:12:39 +02:00
5e19c8fd88
Update splunk_privilege_escalation_cve_2023_32707.rb
2023-10-24 14:44:27 +02:00
8331f4d2ad
Adds wiki guide for session searching
...
Also tweaks an error message
add readme to directory
2023-10-23 15:33:53 -05:00
3bf880192e
review comments
2023-10-23 10:28:33 -04:00
0d2a5795fe
total to bottom
2023-10-23 10:28:33 -04:00
ed78df0f0f
add creds and klist to db_stats
2023-10-23 10:28:33 -04:00
7452cda2b1
db_stats review comments
2023-10-23 10:28:33 -04:00
5f2703f8c0
add stats command
2023-10-23 10:28:33 -04:00
b0b4da543d
Land #18400 , Kerberos ticket_search fix passing in a workspace
2023-10-23 16:17:24 +02:00
77a8b0efa2
Land #18421 , Save Kerberos tickets in the MSF cache upon a successful login
2023-10-23 15:25:09 +02:00
5efaa32bd0
No longer clear msfdb creds by default
2023-10-23 11:55:24 +01:00
fa71d8b6e2
set all targets to dynamically build list
2023-10-23 06:54:38 -04:00
97f9edb5f7
review
2023-10-23 06:35:23 -04:00
1ac0e2dc66
Update splunk_privilege_escalation_cve_2023_32707.md
2023-10-23 11:31:19 +02:00
a3c5ca6cc1
automatic module_metadata_base.json update
2023-10-19 16:59:52 -05:00
15aaa90379
Land #18447 , CVE-2023-22515 Confluence Auth Bypass
...
CVE-2023-22515 - Atlassian Confluence Data Center and Server Authentication Bypass
2023-10-19 17:35:17 -04:00
ee0e5b9eda
Tidy the docs, fix the username
...
The username can not contain capital letters, or the operation will
fail.
2023-10-19 17:19:55 -04:00
c79cc5a36b
Final Checks
2023-10-19 17:19:55 -04:00
b3a9579e8a
Update modules/auxiliary/admin/http/atlassian_confluence_auth_bypass.rb
...
Implement changes proposed by Spencer McIntyre (smcintyre-r7)
2023-10-19 17:19:30 -04:00
258ac6421b
Fix fail_with response code compare and documentation fixes
2023-10-19 17:19:30 -04:00
7c977e07ef
Remove of the X-Atlassian-Token header from server-info.action
2023-10-19 17:19:30 -04:00
236a301f27
Check method fixes
...
get_confluence_version inside to check method. Also new status messages
2023-10-19 17:19:08 -04:00
30e1930444
Bump version of framework to 6.3.40
2023-10-19 12:08:32 -05:00
7baabd08db
Land #18364 , Add support for filtering sessions
2023-10-19 16:40:42 +01:00
b4b73529d3
add -e flag for stale sessions
...
remove single flag
pivot to search flag
added support for search session type
adds search session id support
remove stale references
reshuffle code
fix time parsing, add command support
fix search list, reduce duplicated code
testing added
killall with search lists table of killed sessions
sessions are no longer represented by ids
addresses feedback on code structure and search behavior
some test reshuffling, switch raised errors to printed ones
add checkin validation, rest of cmd_sessions tests
add time parsing test
refactoring
test reformatting and adjusted error validation
make error handling more explicit, add test context
fixes
sub quotes, make constant
rubocopping
switch before and after to greater than and less than
mbetter incorporate constants
update example
2023-10-19 09:41:18 -05:00
dba2ac88f0
automatic module_metadata_base.json update
2023-10-19 03:44:02 -05:00
da9d04d32d
Land #18461 , CVE-2023-22515 - Atlassian Confluence unauthenticated RCE
2023-10-19 10:22:57 +02:00
ce10038546
Replace grep with getent in entrypoint.sh
...
Use native "getent" command to get entries from NSS insead of "grep".
2023-10-18 15:38:21 +02:00
c63aaba760
add in documentation for Options
2023-10-18 10:05:05 +01:00
5e84f57ab3
set :random to true during generate_jar so we can randomize teh metasploit class path
2023-10-18 09:53:46 +01:00
fcffd36af0
no need to test for true, jsut return the value as we are waiting for done to be set to true
2023-10-18 09:37:04 +01:00
9fdbccb74f
catch a JSON ParserError exception and fail_with() if needed. Also detect if the JSON data doesnt have the expected value and fail_with() if needed
2023-10-18 09:36:02 +01:00
00b534dbed
review
2023-10-17 13:17:10 -04:00
Metasploit