9294d3bf5e
Added Adi IRC and Windows version to documentation scenarios
2024-05-17 09:59:20 -05:00
704de79d73
Fixed documentation formatting
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2024-05-17 09:59:20 -05:00
7088b39ecd
Fixed rouge space
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2024-05-17 09:59:20 -05:00
3da09a0092
Added module documentation
2024-05-17 09:58:23 -05:00
c8ce9dc168
Added Quassel IRC and Windows version to documentation scenarios
2024-05-16 19:15:00 -05:00
698895cf7d
Fixed rouge space
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2024-05-16 19:15:00 -05:00
7d8cd04086
Fixed documentation formatting
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2024-05-16 19:15:00 -05:00
41643073ee
Added module documentation
2024-05-16 19:12:54 -05:00
d54b3920b2
Land #19165 , Add Halloy IRC PackRat module
...
Merge branch 'land-19165' into upstream-master
2024-05-16 16:59:47 -05:00
5bc9dd2c5d
Merge remote-tracking branch 'origin/Halloy-Packrat-Module' into Halloy-Packrat-Module
2024-05-15 14:48:44 +01:00
a250477c0e
Added Halloy and Windows version to documentation scenarios
2024-05-15 14:13:58 +01:00
fb74915074
Fixed formatting issues
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2024-05-15 14:06:15 +01:00
733c014223
Land #19115 , read/write registry key SD
...
Module to read/write registry key security descriptor remotely
2024-05-13 15:41:54 -04:00
80fdde5fdc
Land #19100 , Add Loadmaster sudo priv esc
...
Add Kemp Progress Loadmaster sudo abuse priv esc
2024-05-10 10:21:38 -04:00
b28e263a2b
Update debug statements and add protection against bad die name
2024-05-10 08:54:23 -05:00
ec04e62cce
Fixed typo in module documentation
2024-05-07 15:47:07 -04:00
ceafa3761d
Added module documentation
2024-05-07 15:02:48 -04:00
8c76143a9d
Land #19127 , Ldap signing
2024-05-07 17:28:36 +02:00
946cc3baf1
Land #19147 , Auxiliary module for CVE-2024-4040 - CrushFTP arbitrary file read
2024-05-07 15:44:24 +02:00
47c8d7252b
Land #18519 , Docker kernel module escape
2024-05-06 09:08:08 -04:00
b044bcab01
Add command payloads and checks for overwritten files
2024-05-03 13:06:16 -05:00
5653ea5dfb
Implement peer review suggestions for documentation
...
Revise 'Options' section to format each option as a level-3 heading
Update to latest module console output in 'Scenarios'
2024-05-03 12:24:42 -05:00
69d603e6fc
Switch to an enum option for the signing
2024-05-03 10:27:10 -04:00
69cbddde92
Land #19050 , Adobe ColdFusion Arbitrary File Read [CVE-2024-20767]
2024-05-03 15:15:08 +02:00
e3d7dce4a9
Updated res.body parsing, responded to comments
2024-05-02 09:47:22 -07:00
6c91ca37b6
Implement peer review suggestion to add CrushFTP10.zip SHA256
2024-05-02 11:42:49 -05:00
ca669d8f08
Update docs to reflect changes
2024-05-01 13:45:20 -04:00
a98554a1f4
Land #19048 , Enable inline credentials dump
...
Windows Secrets Dump: Enable inline credentials dump
2024-05-01 09:05:40 -04:00
91be90c43e
Add registry_security_descriptor module and documentation
2024-04-30 20:57:32 +02:00
d7b63679c9
Add documentation markdown for crushftp_fileread_cve_2024_4040
2024-04-30 11:24:43 -05:00
d94971598b
Add documentation and fix some debug prints
2024-04-29 15:28:34 -05:00
364d491af7
Land #18972 , Progress LoadMaster unauthenticated command injection module CVE-2024-1212
...
Merge branch 'land-18972' into upstream-master
2024-04-26 18:18:40 -05:00
4794844b67
Update the documentation
2024-04-26 18:44:05 +02:00
631e4e34db
Update LDAP doco with current options
2024-04-24 15:40:11 +10:00
1c8c91096f
Removed port being in documentation as it made no sense
2024-04-23 18:47:30 -04:00
26a108aadc
Land #19046 , Apache Solr Backup Restore RCE [CVE-2023-50386]
2024-04-23 14:08:33 -04:00
a36244073f
Merge pull request #1 from bwatters-r7/update-18972
...
Remove Priv Esc to add it to another module and update it to only run…
2024-04-22 17:53:48 -07:00
c10bde97ff
Merge branch 'rapid7:master' into module/progress_kemp_loadmaster_unauth_cmd_injection
2024-04-22 17:53:32 -07:00
b8675f0fd7
Land #19005 , Add Gambio Webshop Unauth RCE
...
A Remote Code Execution vulnerability in Gambio online webshop version
4.9.2.0 and lower allows remote attackers to run arbitrary commands via
unauthenticated HTTP POST request
2024-04-19 12:18:17 -07:00
488653d942
Land #19082 , FortiNet FortiClient EMS SQLi to RCE [CVE-2023-48788]
2024-04-19 15:03:22 -04:00
4733d1dc04
Land #19101 , Exploit module for CVE-2024-4300 - Palo Alto Networks PAN-OS
...
Merge branch 'land-19101' into upstream-master
2024-04-19 12:49:41 -05:00
3697d4cb77
Land #18956 , Rancher CVE-2021-36782
...
Rancher Authenticated API Credential Exposure (CVE-2021-36782)
2024-04-19 13:27:30 -04:00
d93b97d7c4
Add rancher installation docs
2024-04-19 12:55:46 -04:00
2ad13ac836
Added note about shell from a different IP than RHOST IP
2024-04-19 11:45:56 -05:00
4f3ee3f78a
Incorporate documentation wording change from suggestion
...
Co-authored-by: Brendan <bwatters@rapid7.com >
2024-04-19 08:50:20 -05:00
376bdefefb
Land #19054 , Add NText column parsing to MSSQL
2024-04-19 14:17:50 +01:00
27f5ad8e05
Land #18996 , VSCode Malicious Ext module
...
This PR adds a new exploit that creates a malicious vsix file. a vsix
file is a VS and VSCode extension file. Once installed, the users
computer will call back with a shell. Its not a bug, its a feature!
2024-04-18 18:10:46 -07:00
bcaa5359da
Land #18997 , Add GitLens VSCode Extension Exploit
...
GitKraken GitLens before v.14.0.0 allows an untrusted workspace to
execute git commands. A repo may include its own .git folder including a
malicious config file to execute arbitrary code.
2024-04-18 17:19:41 -07:00
982b6aef0a
Incorporating PAN-OS module peer review suggestions, adding documentation for the module
2024-04-18 18:21:12 -05:00
d35748497c
adds ntext parsing to mssql
2024-04-18 16:41:37 -05:00
The-Pink-Panther