adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
79,274 Commits 27 Branches 1,043 Tags
0cc080fbe9cfa89af3bc87bd12cbe108d1c625f5
Commit Graph

39193 Commits

Author SHA1 Message Date
dledda-r7 0cc080fbe9 fix: updated mettle payload generation and cached_size 2026-01-06 09:49:00 -05:00
Martin Sutovsky 679ebb070b Code refactor, loader delivery update 2026-01-06 09:48:24 -05:00
Martin Sutovsky 7c77a9cfc7 ARMBe and Zarch stageless payload 2026-01-06 09:47:55 -05:00
dledda-r7 3f2be78f9b feat: add mips64 elf template and meterpreter_loader 2026-01-06 09:47:54 -05:00
Martin Sutovsky ca9706b6ae PPC progress 2026-01-06 09:47:27 -05:00
dledda-r7 71d2eb2046 fix: move mipsbe and mipsle meterpreter_loader into separate mixin 2026-01-06 09:46:08 -05:00
dledda-r7 6d750fef07 fix: move x64 meterpreter_loader into separate mixin 2026-01-06 09:46:07 -05:00
dledda-r7 38cd623b63 fix: move meterpreter_loader into separate mixin 2026-01-06 09:46:07 -05:00
dledda-r7 afb93ec158 feat(payload): linux/mips in_memory_loader for stageless meterpreter 2026-01-06 09:46:06 -05:00
dledda-r7 dba8ddbd6f feat(payload): linux/mipsel in_memory_loader for stageless meterpreter 2026-01-06 09:46:06 -05:00
Martin Sutovsky fd0427e55f Adding itoa function for ARM64 and ARMbe 2026-01-06 09:46:06 -05:00
Martin Sutovsky afba87eb4f Adding itoa function for ARM64 and ARMbe 2026-01-06 09:46:05 -05:00
Martin Sutovsky 4c8e4285cf Adding itoa for ARMle stageless payload 2026-01-06 09:46:05 -05:00
Martin Sutovsky c9cd7831ea Armbe draft and ARM64 functional payload for memfd_create 2026-01-06 09:46:04 -05:00
Martin Sutovsky bc28e3a712 Shellcode for memfd_create for ARM 2026-01-06 09:46:04 -05:00
dledda-r7 a5bae331bc feat(payload): linux/x64 in_memory_loader for stageless meterpreter 2026-01-06 09:46:04 -05:00
dledda-r7 750bbdf9d7 feat(payload): linux/x86 in_memory_loader itoa improvement 2026-01-06 09:46:03 -05:00
dledda-r7 14f62457b3 feat(payload): linux/x86 in_memory_loader for stageless meterpreter 2026-01-06 09:46:03 -05:00
dledda-r7 b9adfb740e fix: removing unnecessary elf parsing in linux/x86/meterpreter 2026-01-06 09:46:02 -05:00
cgranleese-r7 3bf76a3f9f Merge pull request #20815 from h00die/fix_panda_refs 
fix panda local privesc refs
 2026-01-06 09:40:02 +00:00
Diego Ledda 385c4f9896 Merge pull request #20733 from bcoles/linux-riscv-tcp-bind-shell 
Add Linux RISC-V 32-bit/64-bit TCP bind shell payloads
 2026-01-05 06:38:23 -05:00
Diego Ledda 0dee8a82b8 Merge pull request #20734 from bcoles/linux-riscv-command-payload-adapters 
Add Linux RISC-V command payload adapters
 2026-01-05 05:06:21 -05:00
Diego Ledda acc206b2dc Merge pull request #20833 from xaitax/CVE-2025-14847_Mongobleed 
Add MongoDB memory disclosure module (CVE-2025-14847)
 2025-12-30 08:49:30 -05:00
Diego Ledda cd83a441b9 Merge pull request #20767 from Chocapikk/geoserver 
Add GeoServer WMS GetMap XXE file read module (CVE-2025-58360)
 2025-12-30 08:39:00 -05:00
Alex 3b3d4f238e Update cve_2025_14847_mongobleed.rb 2025-12-30 14:34:57 +01:00
Alex Hagenah ece7649af5 Update modules/auxiliary/scanner/mongodb/cve_2025_14847_mongobleed.rb 
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com>
 2025-12-30 14:25:22 +01:00
Alex 70798665aa Update cve_2025_14847_mongobleed.rb 2025-12-30 13:49:57 +01:00
Alex 44b2adafa7 Add MongoDB memory disclosure module (CVE-2025-14847) 2025-12-30 13:04:25 +01:00
h00die 2b85112a36 fix panda local privesc refs 2025-12-27 09:09:19 -05:00
Spencer McIntyre fba6040445 Merge pull request #20781 from jbx81-1337/fix/remove-ppc 
remove ppc meterpreter
 2025-12-22 14:56:48 -05:00
Spencer McIntyre 68965f667e Remove the ppc64le adapters 
This is dead code now. We don't have any PPC64LE payloads.
 2025-12-22 14:27:09 -05:00
Brendan 3015c9f962 Merge pull request #20792 from sfewer-r7/hpe_oneview_rce 
Add unauth RCE exploit module for HPE OneView (CVE-2025-37164)
 2025-12-19 17:41:51 -06:00
Brendan b12ebc95c0 Merge pull request #20754 from h00die/assist_tech 
assistive technology persistence
 2025-12-19 16:33:21 -06:00
h00die 5ac586a788 Update modules/exploits/windows/persistence/assistive_technology.rb 
Co-authored-by: Brendan <bwatters@rapid7.com>
 2025-12-19 14:52:34 -05:00
sfewer-r7 0c947d05ab add in the AKB analysis 2025-12-19 15:38:43 +00:00
sfewer-r7 5c6c8a3956 better check result given we have the version string 2025-12-19 15:38:27 +00:00
sfewer-r7 a4dba96712 add in the HPE OneView exploit 2025-12-19 15:30:53 +00:00
Brendan 6c4a61fa42 Merge pull request #20761 from Chocapikk/acf-extended-rce 
Add WordPress ACF Extended unauthenticated RCE exploit (CVE-2025-13486)
 2025-12-18 16:03:06 -06:00
h00die d15d4ca5dc .exe guard clause for assistive_tech persistence 2025-12-18 16:17:50 -05:00
Spencer McIntyre 05479c022a Update nodejs cache sizes 2025-12-17 17:33:51 -05:00
jbx81-1337 48c21f5c45 fix: remove broken ppc meterpreters 2025-12-16 11:17:07 +01:00
Jack Heysel 0589121fb9 Update payload options 2025-12-15 18:52:38 -05:00
Valentin Lobstein bd98d3b160 Add randomization to GeoServer WMS GetMap XXE module for evasion 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2025-12-13 17:42:21 +01:00
Jack Heysel ca2ac75e16 Change react2shell default encoder 2025-12-12 15:22:34 -08:00
Valentin Lobstein 46f87e0f6e Add GeoServer WMS GetMap XXE file read module (CVE-2025-58360) 2025-12-12 16:11:15 +01:00
jheysel-r7 388a967101 Merge pull request #20749 from nakkouchtarek/grav-ssti-rce 
Add Grav CMS Twig SSTI Sandbox Bypass RCE Exploit Module & Documentation
 2025-12-11 16:13:09 -08:00
jheysel-r7 33197bd59c Merge pull request #20713 from Chocapikk/nable 
Add N-able N-Central authentication bypass and XXE scanner module (CVE-2025-9316, CVE-2025-11700)
 2025-12-11 11:10:48 -08:00
Tarek Nakkouch a20e2dfa6e Use send_request_cgi! for automatic redirect handling 2025-12-11 20:03:17 +01:00
Tarek Nakkouch 028aa2f544 Wrap zlib require in begin/rescue block for proper error handling 2025-12-11 19:53:02 +01:00
Tarek Nakkouch df9f546d01 Use HttpClientTimeout datastore option instead of hardcoded timeout value 2025-12-11 19:52:16 +01:00