adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
56,758 Commits 27 Branches 1,043 Tags
1cb57a7e79affb4c4dc48f03a2fd39659bb83bbb
Commit Graph

28875 Commits

Author SHA1 Message Date
Shelby Pace 1cb57a7e79 Land #13444, add GOG Galaxy Client Privesc 2020-06-15 08:53:12 -05:00
Shelby Pace 21ccb229b2 rubocop changes 2020-06-15 08:48:51 -05:00
Shelby Pace 34366ea680 add notes, finish check 2020-06-15 08:36:32 -05:00
Shelby Pace f7f711674a remove cmd target 2020-06-12 14:28:39 -05:00
dwelch-r7 10bb17d8fd Land #13374, Fix encoding bug 2020-06-11 12:30:12 +01:00
William Vu 1e7e346448 Land #13554, Windows BITS CVE-2020-0787 LPE 2020-06-11 01:04:42 -05:00
gwillcox-r7 0bf5a1b5ec Add in AutoCheck as per @wvu-r7's recommendation 2020-06-11 00:59:22 -05:00
gwillcox-r7 0eed09e8bd The wisdom of le @wvu-r7 has shown that CheckCode(Reason) is the way to go. Lets use this :) 2020-06-11 00:55:39 -05:00
William Vu 201dbef401 Land #13554, Windows BITS CVE-2020-0787 LPE 2020-06-11 00:38:07 -05:00
gwillcox-r7 6171c0b6fc Redo some of the messages in the module so we get more feedback on where we are in exploitation process, and shorten wait time for job 2020-06-11 00:31:07 -05:00
gwillcox-r7 d716580ffa Fix up the module to fix a Nil reference issue, and to prefer session.shell_command_token() over cmd_exec() due to weird errors in latter 2020-06-10 23:45:47 -05:00
gwillcox-r7 d71a92c121 Rubocop fully fleshed out version of the check method 2020-06-10 22:48:20 -05:00
gwillcox-r7 553c9bf032 Finally fleshed out a full version of the check method 2020-06-10 22:46:26 -05:00
Shelby Pace 1b57c7f68d add dropper target 2020-06-10 22:01:06 -05:00
gwillcox-r7 5cd8abe3df Initial attempts to add a check method 2020-06-10 20:37:20 -05:00
William Vu b90acd3ad2 Clean up module and documentation 2020-06-10 14:41:09 -05:00
William Vu 85b2964eb6 Merge remote-tracking branch 'upstream/master' into pr/13534 2020-06-10 13:05:04 -05:00
gwillcox-r7 276eacccbc Add AttackerKB assessment link 2020-06-10 11:02:57 -05:00
gwillcox-r7 f0388a4e39 Minor info update to trigger a rebuild and reword some stuff 2020-06-10 11:02:57 -05:00
gwillcox-r7 94b27ce582 Fix up DisclosureDate formatting 2020-06-10 11:02:56 -05:00
gwillcox-r7 e6b07556f7 Fix up Rubocop errors and some spacing fixes 2020-06-10 11:02:56 -05:00
gwillcox-r7 773e63f286 Fix a bug which would prevent allowing support for wow64 targets unless the WindowsCoreDeviceInfo.dll file already existed on the system 2020-06-10 11:02:56 -05:00
gwillcox-r7 7753c41fe0 Remove more duplicate code and further optimize some things 2020-06-10 11:02:55 -05:00
gwillcox-r7 2485153263 Remove some duplicate and redundant code 2020-06-10 11:02:55 -05:00
gwillcox-r7 f87ebb71dc More updates to fix @wvu's suggestions 2020-06-10 11:02:55 -05:00
gwillcox-r7 b73da5979b Apply some fixes from wvu's review 2020-06-10 11:02:54 -05:00
gwillcox-r7 60d9d0e2a7 Add note to user that they may have to clean up one of the DLLs as it may sometimes not be cleaned up. 2020-06-10 11:02:54 -05:00
gwillcox-r7 7711cecee9 Final tweaks to make this more reliable, should be good now 2020-06-10 11:02:53 -05:00
gwillcox-r7 4a9c878132 Finally fix up the hanging issue via new template DLLs and associated code 2020-06-10 11:02:53 -05:00
gwillcox-r7 2c4f9d34ad Rubocop module again 2020-06-10 11:02:52 -05:00
gwillcox-r7 24a5774ff2 Fix spelling mistake in DLL name 2020-06-10 11:02:52 -05:00
gwillcox-r7 cb20eaf6f9 Finally fix the issue with the cleanup of the files within the exploit 2020-06-10 11:02:51 -05:00
gwillcox-r7 401feb3e53 Change code so that we automatically exit Notepad upon DLL completing its work. Should help tidy things up more 2020-06-10 11:02:50 -05:00
gwillcox-r7 cf17b2065c Updated module with some output corrections, recompiled DLLs 2020-06-10 11:02:50 -05:00
gwillcox-r7 ae2b40bf99 Update the output of the module to be more correct. Also upload updated DLLs 2020-06-10 11:02:49 -05:00
gwillcox-r7 77791b6120 Update modules description with a simple explanation of what is going on. Add links to explain USODLLLoader code. 2020-06-10 11:02:49 -05:00
gwillcox-r7 fb10178701 Add in BITS configurable wait timer and Windows 10 specific target check 2020-06-10 11:02:48 -05:00
gwillcox-r7 1607b8c342 Add initial files for CVE-2020-0787 2020-06-10 11:02:35 -05:00
bwatters-r7 e48a02ce82 Land #13589, Fix edge case in rubocop module description rule 
Merge branch 'land-13589' into upstream-master
 2020-06-10 07:55:13 -05:00
bwatters-r7 39e63689a5 Land #13525, Gather xshell and xftp passwords 
Merge branch 'land-13525' into upstream-master
 2020-06-10 07:45:02 -05:00
bwatters-r7 2881a41e55 Land #13585, RuboCop autofix exploit/windows/local/cve_2020_0668_service_tracing 
Merge branch 'land-13585' into upstream-master
 2020-06-10 07:37:45 -05:00
Alan Foster 6007e13379 Fix edgecase in rubocop module description rule 2020-06-10 12:11:49 +01:00
Christophe De La Fuente 797673fd57 Land #13537, add new module linuxki_rce (CVE-2020-7209) 2020-06-10 11:46:34 +02:00
William Vu e669d5d78d Unf*ck the RuboCop Description formatting 2020-06-09 18:30:33 -05:00
William Vu 9f538848c4 RuboCop autofix cve_2020_0668_service_tracing 2020-06-09 18:22:42 -05:00
Numan Türle 14bb64c8ae Update linuxki_rce.rb 
default payload added
 2020-06-10 01:59:00 +03:00
Christophe De La Fuente 64669d1132 Land #13576, Deprecate the psexec_psh module 2020-06-09 18:40:56 +02:00
Adam Galway 9c6781aefb Land #13579, updates iis_internal_ip module info 2020-06-09 12:08:27 +01:00
Adam Galway 16425ba4f9 Land #13468, memcahed extractor now works with LRU 2020-06-09 11:12:54 +01:00
h00die 482c4eb247 rubocop iis_internal_ip 2020-06-08 20:25:56 -04:00