adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
59,898 Commits 27 Branches 1,043 Tags
14a3d480448600a9fc24ca6aa089f632aa34c35c
Commit Graph

30424 Commits

Author SHA1 Message Date
Adam Cammack 6096d0f135 Remove superfluous default_cred? methods 2021-04-07 06:12:25 -05:00
Grant Willcox 8dce1acd64 Land #14794, dup_scout_enterprise_login_bof: Add v9.9.14 target and auto targeting 2021-03-12 12:07:57 -06:00
Spencer McIntyre 3684bc6f30 Land #14661, payload/x86/exec with metasm conversoin and NULL free variant 2021-03-12 12:02:44 -05:00
Grant Willcox ef97b33d74 Land #14877, Support more recent versions of Firefox's default profile directory 2021-03-12 10:53:09 -06:00
Geyslan G. Bem dc6dac3af1 payload/x86/exec.rb - logic inverted for readability 
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com>
 2021-03-11 19:11:34 -03:00
Geyslan G. Bem 1da8c111b7 payloads/x86/exec.rb - set NullFreeVersion as required 
Set NullFreeVersion as a required option.
Remove nullfreeversion redundant assignment.

Signed-off-by: Geyslan G. Bem <geyslan@gmail.com>
 2021-03-11 18:31:35 -03:00
Spencer McIntyre aaf7e21def Update the microfocus_ucmdb_unauth_deser module to use the new mixin 
This updates the microfocus_ucmdb_unauth_deser module to use the new
Java Deserialization mixin. Unfortunately we do not have access to the
software for testing so these changes can not be verified.
 2021-03-11 12:09:29 -06:00
Spencer McIntyre d580e7d122 Fix some documentation, remove unnecessary code and fix a filename typo 2021-03-11 12:09:29 -06:00
Spencer McIntyre 8d2e644f4f Add a new Java Deserialization mixin and use it to set the shell 2021-03-11 12:09:29 -06:00
Spencer McIntyre 2bd6b7abc7 Specify the modified_type when generating ysoserial payloads 
Fixes #13753
 2021-03-11 12:09:29 -06:00
Alan Foster f5edb5a105 Remove redundant rubocop disables 2021-03-11 17:23:44 +00:00
Security Curious 59086989f7 Update Firefox Default Profile Directory 
The default firefox profile directory now no longer ends in `.default`
but instead `.default-release`. For backwards compat the new regex
supports both. For more information see:

https://support.mozilla.org/bm/questions/1264072#answer-1235567

It's possible we might want to also support things like
`.default-nightly`, etc but really if we want to do more than grab
the default profile we should read the `profiles.ini` file to get
an itemized list of profiles from Firefox itself. This would also
future-proof this script.

Since profiles are not generally used by most Firefox users just going
for the simpler solution of looking for `.default-release`.
 2021-03-10 21:43:04 -05:00
Shelby Pace fbd6f19d04 Land #14846, add HPE SIM unauth AMF deser rce 2021-03-08 16:50:49 -06:00
Grant Willcox 514d46bd4d Rubocop module again and also update the documentation to reflect recent changes 2021-03-08 16:08:36 -06:00
Grant Willcox 8479f01290 Improve the check logic to more accurately detect if a target is vulnerable or not 2021-03-08 15:59:26 -06:00
Grant Willcox 2e45962cc0 Change gsub! to gsub so that we don't end up with nil errors when a match isn't found 2021-03-08 15:11:58 -06:00
William Vu bcf7ad000b Add CheckModule to fingerprint VMware product 2021-03-05 17:25:37 -06:00
William Vu 33e52b0fb2 Update and refactor check 
Now with more science!
 2021-03-05 17:25:37 -06:00
William Vu 26f1c209b2 Add VMware vCenter Server CVE-2021-21972 exploit 2021-03-05 17:25:37 -06:00
Grant Willcox 02e89947c7 Update check method to fix an incorrect check code, change from Appears to Detected 2021-03-05 11:16:24 -06:00
Grant Willcox 2b488800e6 Update the check method to eliminate potential false positives by searching for the presence of three strings that together should only be returned by HPE SIM web servers. 2021-03-05 11:14:30 -06:00
Spencer McIntyre 53f4d3f193 Land #14792, Apply fixes for invalid architecture checks to affected modules 
Fixes #14599
 2021-03-05 09:24:34 -05:00
Christophe De La Fuente 32899a61ea Land #14847, Add Microsoft Windows RRAS Service MIBEntryGet Overflow 2021-03-05 11:01:58 +01:00
Grant Willcox 59d7288773 RuboCop module and fix small spelling mistake in documentation 2021-03-04 18:48:19 -06:00
Grant Willcox f193caa48e Also make sure that the default option is to use Windows Powershell since this supports Meterpreter and is generally a lot more reliable 2021-03-04 18:40:21 -06:00
Grant Willcox d739bf7809 Fix up payload_template_adjustments function to use a simpler loop like structure as per space-r7 
's recommendations
 2021-03-04 18:34:45 -06:00
Grant Willcox 41794fe4e7 Remove redundant assignments of sysinfo["Architecture"] to unused "arch" variable 2021-03-04 15:54:38 -06:00
Grant Willcox 306e1979af First round of code adjustments per review comments 2021-03-04 12:38:11 -06:00
Grant Willcox 3ef8fcd996 Update module to fix an extra print statement and write documentation 2021-03-03 10:14:41 -06:00
Brendan Coles 3da8fce9cf Add Microsoft Windows RRAS Service MIBEntryGet Overflow 2021-03-03 02:50:42 +00:00
Grant Willcox f327d30e08 First attempt at CVE-2020-7200 module, with RuboCopped module 2021-03-02 16:38:19 -06:00
dwelch-r7 dc8fea2063 remove require 'faker' since we globally autoload it now 2021-03-02 13:59:32 +00:00
Grant Willcox 2124ec25ba Rename files and update the exploit module title to better reflect its purpose. Also fix a minor RuboCop related change 
Fix up documentation to reflect recent file renaming changes.
 2021-02-26 14:32:37 -06:00
RAMELLA Sébastien 801164a244 fix. separator for creds collector. 2021-02-26 14:32:29 -06:00
RAMELLA Sébastien eb5f418fe2 fix. some rubocop recommendations 2021-02-26 14:32:21 -06:00
RAMELLA Sébastien b84909fe67 change parsing method 2021-02-26 14:32:20 -06:00
RAMELLA Sébastien 82c8b55be9 fix. remove call to eval and some minor change 2021-02-26 14:32:19 -06:00
RAMELLA Sébastien 7eb91e76ab add. fortios path traversal (cve-2018-13379) 2021-02-26 14:32:13 -06:00
Grant Willcox 6d939c16ce Land #14783, Update KarjaSoft Sami FTP Server v2.0.2 USER Overflow module 2021-02-26 11:17:05 -06:00
Brendan Coles 743248d993 Update KarjaSoft Sami FTP Server v2.0.2 USER Overflow module 2021-02-25 20:53:30 +00:00
Brendan Coles f89d67df19 dup_scout_enterprise_login_bof: Add v9.9.14 target and auto targeting 2021-02-25 17:14:25 +00:00
dwelch-r7 319f15d938 Handle nil versions for rubygems 4 2021-02-25 16:47:49 +00:00
Grant Willcox ff16c24d03 Land #14806, Rubocop recently landed modules continued 2021-02-25 10:36:50 -06:00
Alan Foster b06c5c12aa Rubocop recently landed modules continued 2021-02-25 14:13:40 +00:00
bwatters 7cdd41df76 Land #14544, RDP Web Login User Enumeration Auxiliary Module 
Merge branch 'land-14544' into upstream-master
 2021-02-24 16:10:41 -06:00
bwatters 18f6245637 Land #14648, Process Herpaderping evasion module 
Merge branch 'land-14648' into upstream-master
 2021-02-24 11:39:47 -06:00
bwatters 1acfa55dcd rubocop -a fixes 2021-02-24 11:38:06 -06:00
Spencer McIntyre 8c1721b845 Land #14766, Add Apache Flink JobManager Traversal 2021-02-23 10:16:42 -05:00
Spencer McIntyre f176f6b5de Use CheckCode::Unknown when the HTTP response is nil 2021-02-23 10:16:20 -05:00
Spencer McIntyre 1d5a6e4a0b Land #14771, Add Apache Flink JAR Upload Java Code Execution 2021-02-23 09:19:56 -05:00