adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
78,922 Commits 27 Branches 1,043 Tags
1e4527d8338b4f431cdc8011c052d3744e29d7ed
Commit Graph

14565 Commits

Author SHA1 Message Date
msutovsky-r7 af5baeb3c6 Land #20660, adds windows task scheduler persistence module 
Windows task scheduler persistence
 2025-10-31 10:16:19 +01:00
h00die 4fdce5e510 windows persistence: task scheduler 2025-10-26 16:26:32 -04:00
Adrian Șendroiu c2ce203281 lib/msf/base/sessions/meterpreter.rb: Use &. across the entire chain when handling datastore['AutoLoadExtensions'] 2025-10-24 14:30:56 +03:00
adfoster-r7 edd536b3bf Future proof peinject method override 2025-10-13 15:22:05 +01:00
adfoster-r7 55bb27711d Merge pull request #20608 from molecula2788/peinject_valid_fix 
Add missing datastore argument in the `valid?` function in pe_inject.rb
 2025-10-10 19:18:36 +01:00
Adrian Șendroiu 7d5ad67ad6 pe_inject.rb: Add missing datastore argument 2025-10-10 13:24:50 +03:00
Spencer McIntyre 27d0e638ed Merge pull request #20546 from dwelch-r7/fix-ssh-login-pubkey 
Fix ssh login pubkey module
 2025-10-09 14:24:09 -04:00
Dean Welch 8c5c395ce7 Fix ssh login pubkey module 2025-10-09 12:36:00 +01:00
Brendan 10d1f53692 Merge pull request #19975 from dledda-r7/feat/split-stdapi 
Split Stdapi
 2025-10-08 13:00:04 -05:00
jheysel-r7 5252e92954 Merge pull request #20568 from bcoles/vbsobfuscate 
Msf::Exploit::VBSObfuscate: Add VBS obfuscation library
 2025-10-03 13:36:43 -07:00
dledda-r7 5f2adab0e7 fix: updated stdapi loading logic 2025-10-03 09:53:50 -04:00
Jack Heysel 1da518ec82 Responded to comments 2025-10-01 17:35:36 -07:00
Jack Heysel 66d59a7ddc Update reg checks when DC and CA are separate 2025-10-01 17:35:36 -07:00
Spencer McIntyre 3d1d49b71a Merge pull request #20517 from cgranleese-r7/adds-postgres-ssl-support 
Adds SSL support to the postgres_login module
 2025-09-26 08:53:47 -04:00
bcoles 5b0565a4a1 Msf::Exploit::VBSObfuscate: Add VBS obfuscation library 2025-09-26 03:06:20 +10:00
msutovsky-r7 86381a6394 Land #20412, swaps to psh_exec in powershell/exec_powershell 
Remove errant write_log call and swap to the all-in-one psh_exec rath…
 2025-09-25 12:49:33 +02:00
adfoster-r7 40c32a2599 Merge pull request #20561 from cgranleese-r7/fixes-report-note-warning-when-no-data-key 
Fixes deprecation message logic when no `data` object present
 2025-09-24 14:29:45 +01:00
adfoster-r7 13b6c6eb98 Add named variable 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-09-24 13:57:39 +01:00
msutovsky-r7 1a84744f15 Land #20557, fixes ActiveRecord error in reporting failure for file-based/multi-value RHOSTS 
Fix ActiveRecord error when reporting failures with file-based RHOSTS
 2025-09-23 16:28:10 +02:00
cgranleese-r7 a4f9dc7f13 Fixes deprecation message logic when no data object present 2025-09-23 08:38:14 +01:00
Brendan e6e7a455e5 Merge pull request #20540 from Chocapikk/tips 
Add new helpful tips to COMMON_TIPS for better usability
 2025-09-22 13:25:59 -05:00
Jeff McJunkin 893a4a5c98 failure.rb: Make comments accurate again 2025-09-19 14:47:03 -07:00
Jeff McJunkin 094fa8191a Update lib/msf/core/module/failure.rb 
Per @smcintyre-r7's suggestion, which is a damned good one.

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2025-09-19 14:45:33 -07:00
Jeff McJunkin 1dc1a24f73 Improve RHOST validation logic inside report_failure 2025-09-19 14:30:27 -07:00
Jeff McJunkin 4b2a354d21 Prevent file: paths from being saved as host addresses in report_failure 
Added check to prevent saving file paths as host addresses.
 2025-09-19 14:07:32 -07:00
msutovsky-r7 5eecb1feac Land #20535, adds a test login scanner and fixes ANONYMOUS_LOGIN 
Add a test login scanner and fix ANONYMOUS_LOGIN
 2025-09-16 16:51:26 +02:00
Chocapikk 93472898ce Add new helpful tips to COMMON_TIPS for better usability 2025-09-12 19:49:45 +02:00
mwalas-r7 d3d2950e80 Merge pull request #20537 from zeroSteiner/fix/null-cache-path 
Check the path is set before checking the file exists
 2025-09-12 05:18:37 -07:00
jheysel-r7 96a83143f1 Merge pull request #20479 from msutovsky-r7/exploit/sitecore/postauth-rce 
Adds modules for Sitecore XP post-auth remote code executions (CVE-2025-34510, CVE-2025-34511)
 2025-09-11 11:25:27 -07:00
Spencer McIntyre e197f532db Check the path is set before checking the file exists 2025-09-11 12:35:30 -04:00
Spencer McIntyre afdaf4ff39 Merge pull request #20514 from dledda-r7/fix/remove-unhook-autoload 
Removing unhook extension autoload
 2025-09-11 10:45:39 -04:00
Diego Ledda 4104497498 Merge pull request #20502 from zeroSteiner/feat/refactor-pe-compiling 
Update PE EXE Templates
 2025-09-10 12:37:35 +02:00
Spencer McIntyre 1bd44fa485 Set the anonymous_login option 2025-09-09 13:52:47 -04:00
h00die c4936d1b0f adjustments to the persistence lib and modules 2025-09-09 10:02:06 -04:00
cgranleese-r7 dbb631ffb6 Adds SSL support to the postgres_login module 2025-09-09 09:56:36 +01:00
Diego Ledda 4ede319b0a fix: review changes 2025-09-05 15:21:49 +02:00
Diego Ledda 55d8a3f33c fix: adding issue reference 2025-09-04 14:36:55 +02:00
dledda-r7 96c6a14e95 fix: removing unhook extension autoload 2025-09-03 11:22:02 -04:00
adfoster-r7 3d6993d4ba Merge pull request #20500 from cgranleese-r7/fixes-docker-invalid-uri-error 
Fixes database name stripping
 2025-09-02 12:42:53 +01:00
Martin Sutovsky fa64376c5c Adds comments for login function 2025-09-01 15:50:21 +02:00
Spencer McIntyre 3af8bd97ad Consistently use the same technique for exe-service 2025-08-28 17:39:57 -04:00
cgranleese-r7 5a3195d9f6 Fixes database name stripping 2025-08-28 15:32:11 +01:00
msutovsky-r7 c163cb3141 Land #20490, adds the HTTP::Auth option to HTTP modules 
This adds the `HTTP::Auth` Option to HTTP Modules
 2025-08-28 16:13:38 +02:00
Spencer McIntyre 196e19808d Add some error handling for kerberos options 2025-08-28 10:00:19 -04:00
Brendan f1dffd3ad6 Merge pull request #20480 from msutovsky-r7/exploit/pretalx/file-rw 
Adds modules for Pretalx File Read/Limited File Write (CVE-2023-28459, CVE-2023-28458)
 2025-08-27 15:46:39 -05:00
bwatters-r7 090743abbd Update error message when there may be a timeout 2025-08-27 11:04:43 -05:00
Martin Sutovsky 2533ddf441 Rubocoping 2025-08-26 12:42:28 +02:00
Martin Sutovsky b43b4c9f37 Updates library, addressing comments 2025-08-25 17:49:34 +02:00
Spencer McIntyre c1074c138e Move the options into the mixin 2025-08-22 16:05:12 -04:00
Spencer McIntyre 7fdb1e03fa Tie in Kerberos authentication for HTTP modules 2025-08-22 15:58:18 -04:00