adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
57,534 Commits 27 Branches 1,043 Tags
1663bf31847b2cf92c736649c58c81adbce99272
Commit Graph

17046 Commits

Author SHA1 Message Date
bwatters 231ad83773 Land #13860,Mikrotik Processing 
Merge branch 'land-13860' into upstream-master
 2020-08-07 14:48:22 -05:00
Alan Foster a1d7bb62a9 Add feature configuration persistence 2020-08-07 16:42:57 +01:00
Alan Foster d417f43b8d Add WrappedTable support with feature flag integration 2020-08-07 16:42:54 +01:00
Brendan Coles 2955a2f6ac Skip CNAME records in DNS SRV parsing - Fix #13952 2020-08-07 08:45:07 +00:00
gwillcox-r7 80889b2b86 Land #13949, Fix casting issue with the update mode in DBManager::Note's report_note function 2020-08-06 14:36:57 -05:00
Metasploit 7049c1aaf6 Bump version of framework to 6.0.1 2020-08-06 12:05:29 -05:00
Christophe De La Fuente 5b51c338fa Make sure mode is a symbol 2020-08-06 19:00:39 +02:00
Jeffrey Martin 35017886b8 Land #13935, Preliminary Version 6 2020-08-06 10:19:34 -05:00
bwatters ba7f1ea486 Land #13897, Fix dangling reference issue in cve_2020_0688_service_tracing.rb 
and filesystem.rb

Merge branch 'land-13897' into upstream-master
 2020-08-05 17:04:15 -05:00
adfoster-r7 18b2c32c78 Land #13831, update to rails 5.2 2020-08-05 21:05:49 +01:00
gwillcox-r7 a92ffe4486 Fix logic bugs I introduced with my last fix 2020-08-04 16:20:49 -05:00
gwillcox-r7 be4d5d90bb Update fix to use 'if' statement rather than 'unless' as this makes more sense here. 2020-08-04 14:58:01 -05:00
gwillcox-r7 307dcc9b19 Add further checks to ensure that the 'type' value does not cause issues if it is 'nil' 2020-08-04 14:32:21 -05:00
gwillcox-r7 c196d9b733 Fix up lib/postgres/postgre-pr/message.rb and its self.read function so that it will handle cases where stream reads might not return any bytes at all, resulting in length being nil 2020-08-04 14:19:56 -05:00
gwillcox-r7 8a156abdb4 Fix up ExploitError module inside exceptions.rb to properly propagate errors to the end user 2020-08-03 17:14:24 -05:00
gwillcox-r7 2fe92f9325 Land #13903, Allow OpenVAS handler to import vulns without references 2020-08-03 11:59:58 -05:00
Jeffrey Martin 9aa26d1208 Merge upstream into 6.x 2020-08-03 11:43:47 -05:00
Jeffrey Martin dee523f9e7 load to mitigate first missing db connection 
When calling `first` in Rails 5.2 the connection is not found
however by forcing the records to load with `to_a` which happens to
function correctly the call is then sent to `Array.first`
 2020-08-03 10:51:18 -05:00
Jeffrey Martin c43df01e9e remove stale comment 2020-07-31 12:03:12 -05:00
Jeffrey Martin 1fdcde9d03 adjust vuln logic as nil service should be valid 2020-07-31 11:57:43 -05:00
Jeffrey Martin 1e348e0a90 add root path of endpoints that accept :id in path 
When requesting all records of a type :id is not supplied. A behavior change
in `sinatra` now report a `param` of the missing object with value `nil`.
Since this parameter would be used as a search term further down the stack and
most objects cannot have `:id` = `nil` exposing the additional path is needed.
 2020-07-31 11:56:52 -05:00
Jeffrey Martin 0b65266ac1 adjust migration to proxy call to ActiveRecord 
By adding proxy method the call to ActiveRecord::Migrator.migrations_paths
is decoupled from the migration task allowing more flexibility for the
underlying migration set selection to change in future Rails versions.
 2020-07-31 11:56:51 -05:00
Jeffrey Martin ffee2a5a43 remove file no longer needed with rails 5 2020-07-31 11:56:51 -05:00
Jeffrey Martin 2c92d17ed9 refactor migration process for Rails 5 
As noted in https://github.com/rails/rails/issues/36544 using
ActiveRecord migrations internally is not truly supported. This
workaround is valid for Rails 5 and might be easily adjusted
in Rails 6 although that is still TBD.
 2020-07-31 11:56:51 -05:00
Jeffrey Martin 54036d1f60 bump thread allowed by rspec, needs investigation 2020-07-31 11:56:50 -05:00
Jeffrey Martin 5d1c4dafa1 begin adjust migrations and remove old test 
removed connection tests are from rails 3 expectations
 2020-07-31 11:56:50 -05:00
Jeffrey Martin aeb6247e8e adjust vuln connection boundaries for rails 5 2020-07-31 11:56:50 -05:00
Jeffrey Martin 07cbe426e2 Rails 5, all models inherit from ApplicationRecord 
ApplicationRecord is a new superclass for all app models, analogous to app controllers subclassing ApplicationController instead of ActionController::Base. This gives apps a single spot to configure app-wide model behavior.
https://edgeguides.rubyonrails.org/upgrading_ruby_on_rails.html#active-record-models-now-inherit-from-applicationrecord-by-default

Deprecated Relation#uniq use Relation#distinct instead.
https://edgeguides.rubyonrails.org/5_0_release_notes.html#active-record-deprecations
 2020-07-31 11:56:49 -05:00
Jeffrey Martin 8fac591f7a rails 5.2 update 2020-07-31 11:56:42 -05:00
Metasploit 37e0c7d017 Bump version of framework to 5.0.102 2020-07-30 12:02:52 -05:00
gwillcox-r7 b6bce114ea Add in further edits to the library code to remove the possiblity of dangling handles and also update the module code accordingly. 2020-07-30 10:45:19 -05:00
h00die d366666418 add Mikrotik SwOS 2020-07-30 11:29:25 -04:00
Spencer McIntyre 2382d7530c Land #13900, Add Packet::Header#include? to check for the presence of headers in a case-insensitive manner 2020-07-29 18:36:24 -04:00
Jeffrey Martin 0bd2a295d0 make default prompt always display running major # 2020-07-29 11:40:37 -05:00
h00die 94e36a2160 Land #13896, updates to msftidy_docs and ERB for doc generation 2020-07-28 15:39:00 -04:00
Spencer McIntyre 9ba9690c14 Put more information into the generated module docs 2020-07-26 13:14:16 -04:00
Brendan Coles 09a766aed6 Land #13898, Fix error handling when an invalid API_KEY is specified 
post/multi/gather/wlan_geolocate: Fix an issue where the API error
message is not parsed correctly when an invalid `API_KEY` is passed
to the geolocation API.
 2020-07-26 04:38:25 +00:00
Brent Cook 3887fb41b1 Allow OpenVAS import to import vulns without references. 
Local scanning didn't show any results that had CVEs or BIDs, which the default OpenVAS import logic skips. This modifies the importer to allow for importing vulns even if they do not have references.
 2020-07-25 03:18:39 -05:00
Spencer McIntyre 65f9b62c52 Initial outline of module doc info template 2020-07-24 18:09:52 -04:00
gwillcox-r7 35e48c83bb Add in call to session.fs.dir.rmdir() in library code and in the module as sometimes the file might not be deleted otherwise. 2020-07-24 15:39:19 -05:00
Niboucha Redouane 3028e58589 Overload #include? to check the presence of HTTP headers in a case-insensitive manner 2020-07-24 18:29:50 +02:00
Tim W ac9c6174c6 fix #13779, fix error on invalid geolocation api key 2020-07-24 14:33:08 +08:00
gwillcox-r7 88c10de36f Add in proposed changes to cve_2020_0688_service_tracing.rb and filesystem.rb so that we can properly create mount points without dangling handle references 2020-07-23 21:44:18 -05:00
Metasploit 1bd4a8d752 Bump version of framework to 5.0.101 2020-07-23 12:07:28 -05:00
William Vu e06511cb42 Land #13883, syntax error fix in Hardware Bridge 2020-07-23 10:07:33 -05:00
William Vu 93df021c4a Land #13884, Linux::Priv#download_cmd removal 2020-07-23 09:36:39 -05:00
William Vu 8e94fd55db Force OpenSSL::SSL::VERIFY_NONE 
Thanks, @HynekPetrak!
 2020-07-22 16:33:37 -05:00
William Vu f736b0192f Add LDAPS support and update vCenter vmdir modules 2020-07-22 14:23:00 -05:00
William Vu 41457b21d9 Land #13868, vCenter vmdir CVE-2020-3952 hash dump 2020-07-22 14:00:44 -05:00
William Vu 84c6b752ea Fix typo 2020-07-22 10:52:24 -05:00