metasploit-gs

Author	SHA1	Message	Date
Spencer McIntyre	2e842179b7	Merge pull request #19757 from smashery/cms_refactor Refactor Cms ASN.1 definitions	2025-03-19 13:38:34 -04:00
Christophe De La Fuente	f8760a9e3b	Update from code review	2025-03-14 15:28:39 +01:00
Christophe De La Fuente	d4fd890fed	Add the smb_to_ldap relay module and documentation	2025-03-14 15:28:39 +01:00
Ashley Donaldson	d47ec03ca7	Refactor CMS data structures used in pkinit functionality	2025-03-14 10:42:32 +11:00
jheysel-r7	c3ffdb12f5	Merge pull request #19946 from zeroSteiner/feat/mod/relay/ms08-068-warning Add a warning for MS08-068 when applicable	2025-03-05 11:11:20 -08:00
Spencer McIntyre	0116d0c04b	Actually count the hosts RangeWalker handles many more formats for specifying multiple hosts, so simply checking for a space is insufficient.	2025-03-05 13:44:33 -05:00
Spencer McIntyre	b43dc8be08	Switch relay modules, add ESC8 check method	2025-03-05 13:44:33 -05:00
Spencer McIntyre	dbce82416c	Add a warning for MS08-068 when applicable	2025-03-05 13:31:26 -05:00
Diego Ledda	54465f30f2	Land #19917 , Add NIST SP 800 Crypto Primitives Land #19917, Add NIST SP 800 Crypto Primitives	2025-03-04 17:50:01 +01:00
Spencer McIntyre	11818c2812	Switch to using Rex's Crypto module	2025-02-27 10:52:09 -05:00
Diego Ledda	7e0b3af790	Land #19879 , Add MsDtypSecurityDescriptor to_sddl_text Land #19879, Add MsDtypSecurityDescriptor to_sddl_text	2025-02-27 15:28:27 +01:00
Diego Ledda	8dd032e529	Land #19897 , Invoice Ninja unauthenticated RCE (CVE-2024-55555) and Laravel Crypto Killer mixin Land #19897, Invoice Ninja unauthenticated RCE (CVE-2024-55555) and Laravel Crypto Killer mixin	2025-02-25 13:14:18 +01:00
Spencer McIntyre	3487b485e9	Fix an API change from an old commit (#19880 )	2025-02-25 10:15:33 +00:00
h00die-gr3y	79411eace8	added code sugesstions from dledda-r7	2025-02-24 15:51:32 +00:00
h00die-gr3y	ece33ee8ec	added documentation	2025-02-23 09:54:26 +00:00
H00die.Gr3y	b3a5da976b	Apply suggestions from code review Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>	2025-02-22 10:35:45 +01:00
h00die-gr3y	47a2079d19	initial module and laravel crypto killer mixin	2025-02-21 18:09:28 +00:00
Spencer McIntyre	c9dc97c242	Update some modules to print the SDDL	2025-02-13 17:19:43 -05:00
Martin Sutovsky	dfb1ed6d30	Land #19842 , fixing jtr_format for NTLM hashes	2025-02-07 13:24:10 +01:00
jheysel-r7	6232463701	Merge pull request #19835 from cdelafuente-r7/fix/kerberos/ticket_lookup Kerberos ticket lookup fix	2025-01-28 13:01:05 -08:00
Jack Heysel	8e68d1d5f2	Fixed spacing	2025-01-28 10:40:13 -08:00
Jack Heysel	9d50fb66bc	Fix jtr_format assignment in HashCapture module	2025-01-28 10:14:36 -08:00
Stephen Fewer	4c0f407b39	favor SecureRandom.bytes over Rex::Text.rand_text_alphanumeric Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>	2025-01-24 16:15:16 +00:00
sfewer-r7	de6b14e506	change how a Sec-WebSocket-Key is computed to make connect_ws be spec compliant	2025-01-24 14:46:52 +00:00
Christophe De La Fuente	25bd5d736c	Fix comparision case for service name hostname	2025-01-24 14:26:58 +01:00
jheysel-r7	f7554d2467	Update lib/msf/core/exploit/remote/ms_icpr.rb	2025-01-16 09:36:30 -08:00
jheysel-r7	b5a116f85e	Update lib/msf/core/exploit/remote/ms_icpr.rb Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>	2025-01-16 09:25:33 -08:00
Jack Heysel	42abf6be5b	Fix icpr_cert to error when ESC15 is patched	2025-01-13 17:51:21 -08:00
adfoster-r7	31930f47dd	Merge pull request #19700 from jheysel-r7/fix_send_request_cgi_bang Fix query param in reconfig_redirect_opts!	2024-12-11 23:30:51 +00:00
Spencer McIntyre	f36d786736	Merge pull request #19696 from smashery/add_user_module Add user module	2024-12-10 11:26:49 -05:00
Spencer McIntyre	8b93f1a087	Merge branch 'master' into smb_change_pw	2024-12-09 09:37:45 -05:00
Spencer McIntyre	909476ee64	Merge pull request #19671 from smashery/ldap_change_pw LDAP Change Password module	2024-12-06 17:13:50 -05:00
Jack Heysel	c7b96f89b0	Unset opts query if no location.query	2024-12-05 18:24:12 -08:00
Jack Heysel	a544805659	Fix query in reconfig_redirect_opts!	2024-12-05 18:18:06 -08:00
Spencer McIntyre	d22c6996be	Merge pull request #18877 from h00die/xspy New module to replicate xspy tool (and X11 library)	2024-12-02 13:38:37 -05:00
jheysel-r7	a230a353e4	Land #19613 Asterisk authenticated rce via AMI (CVE-2024-42365)	2024-12-02 08:21:35 -08:00
jheysel-r7	c4b7954f15	Land #19596 , Wordpress Plugin Post SMTP Account Takeover	2024-11-29 09:05:03 -08:00
h00die	d13bccca05	peer review	2024-11-28 20:24:25 -05:00
Spencer McIntyre	cd4899da00	Refactor some X11 code around Consistently refer to replys as responses	2024-11-27 15:19:26 -05:00
jheysel-r7	7de3d117b8	Land #19582 Acronis Cyber Backup/Protect Info Disclosure	2024-11-27 07:50:16 -08:00
h00die-gr3y	18c4e9c2f6	moved get_machine_info to the acronis_cyber mixin	2024-11-26 16:10:14 +00:00
h00die-gr3y	b6595eeaf0	added acronis cyber mixin	2024-11-26 15:49:57 +00:00
Ashley Donaldson	469671e59d	Added LDAP password change module	2024-11-21 17:34:21 +11:00
Ashley Donaldson	8158cf5bae	Add Reset and Change_NTLM actions	2024-11-20 12:13:41 +11:00
Christophe De La Fuente	7bab1c1980	Fix specs and add `algorithm` argument	2024-11-18 17:17:58 +01:00
Christophe De La Fuente	24e19e4ebb	Update the ESC8 relay module to use the new helper It also fixes some unrelated minor issues found in the module and the documentation	2024-11-12 18:23:31 +01:00
Christophe De La Fuente	35bb832b7c	Add `create_csr` helper under `Rex::Proto` Also update `ms_icpr.rb` to use it	2024-11-12 12:34:20 +01:00
Christophe De La Fuente	422ecd8d3f	Remove setting version for CSR	2024-11-12 12:34:20 +01:00
Ashley Donaldson	d396d06e35	Enable adding Users, not just computers (if permissions allow) Also added extra error handling for when password is wrong or expired	2024-11-12 12:33:29 +11:00
adfoster-r7	abfc24efdc	Fix Kerberos cache storage exception	2024-11-08 11:25:28 +00:00

1 2 3 4 5 ...

3344 Commits