adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
56,646 Commits 27 Branches 1,043 Tags
258a97fa7ee3d57c19552e29b34deb318b407018
Commit Graph

28802 Commits

Author SHA1 Message Date
Christophe De La Fuente 98ac51dd5d Improvements from code review 2020-06-09 14:18:52 +02:00
Christophe De La Fuente cfc7c48333 Update auxiliary/admin/smb/delete_file module 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 9f2a29d4fe Update last batch of modules 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 3580ac18a1 Fix typo 2020-06-09 14:18:52 +02:00
Christophe De La Fuente a9a1d01419 Update some libraries and modules 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 0bb93b4efb Update modules 
- ms17_010_command  and ms17_010_psexec: deregister
  SMB::ProtocolVersion option
- client: update error handling
- is_known_pipename: force SMB1 only for #enumerate_directories and
  update error handling
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 2f873fefcd Update modules 
- modules/auxiliary/scanner/smb/smb_enumshares.rb
- modules/exploits/linux/samba/setinfopolicy_heap.rb
- modules/exploits/linux/samba/trans2open.rb
- modules/exploits/multi/samba/usermap_script.rb
- modules/exploits/windows/smb/ipass_pipe_exec.rb
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 31a117f8f7 Update modules 
- smb_ms17_010.rb
- psexec_ms17_010.rb
- psexec_psh.rb
- smb_enumshares.rb
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 360d38018c Update exploit/windows/smb/psexec 2020-06-09 14:18:51 +02:00
Christophe De La Fuente 79e52d1d4c Fix ms17_010_eternalblue 2020-06-09 14:18:51 +02:00
h00die 02bcd0e3c6 rubocop 2020-06-06 10:30:43 -04:00
h00die 1602d7e975 iis internal ip update 2020-06-06 10:19:29 -04:00
bwatters-r7 19050012fe Land #13306, enum_xchat updates and upgrades 
Merge branch 'land-13306' into upstream-master
 2020-06-05 18:27:06 -05:00
bwatters-r7 5932e75e1f Land #13384, Add Cisco UCS Director auth bypass, directory traversal(s), 
and Cloupia script RCE (CVE-2020-3243 / ZDI-20-540)

Merge branch 'land-13384' into upstream-master
 2020-06-04 14:55:01 -05:00
Shelby Pace 51fca24a38 Land #13545, add drag / drop file upload rce 2020-06-04 10:35:03 -05:00
Shelby Pace 329ba1091f add session_created, fix typo 2020-06-04 10:32:17 -05:00
dwelch-r7 b0bec9c3aa Land #13540, Replace OptString with OptPort for RPORT 2020-06-04 13:01:22 +01:00
h00die 0df1a2a502 more error handling 2020-06-04 06:45:29 -04:00
William Vu 8ad7b71829 Land #13552, WebLogic CVE-2020-2883 exploit 2020-06-03 19:52:52 -05:00
William Vu 464c157ee1 Land #13553, vbulletin_getindexablecontent* fixes 2020-06-03 19:31:18 -05:00
bwatters-r7 26ff9b5b72 Land #13486, fix #13486, add support for python and cmd targets in osx/local/persistence 
Merge branch 'land-13497' into upstream-master
 2020-06-03 16:13:17 -05:00
h00die 434a1f587f rubocop 2020-06-03 10:44:48 -04:00
h00die a2e385e565 more fixes 2020-06-03 10:42:25 -04:00
William Vu 64de8c4503 Document directory traversals 2020-06-02 22:13:07 -05:00
William Vu 4a9c2988e2 Base64-encode command payload to avoid escaping 2020-06-02 22:13:07 -05:00
William Vu 32ae47c9a9 Add Cisco UCS Director Cloupia script RCE 2020-06-02 22:13:07 -05:00
Zenofex 8f587e4c6f A user reported that the CVE-2020-12720 modules were not properly handling cases where a table prefix was not used, this guard clauses was redundant in that the one inside the get_table_prefix method is already checking the result of the SQL injection performed. 2020-06-02 19:16:35 -05:00
bwatters-r7 7dc2bc7f00 Land #13541, Add controls to screen capture module 
Merge branch 'land-13541' into upstream-master
 2020-06-02 17:57:14 -05:00
h00die ff067088fd docs 2020-06-02 16:24:04 -04:00
Shelby Pace b7dd7b3f7a remove old version, rubocop 2020-06-02 14:24:18 -05:00
Spencer McIntyre c7c23a72b1 Land #13512, Add vbulletin_getindexablecontent exploit and auxillary modules 2020-06-01 18:03:08 -04:00
Shelby Pace ffd79ff8cc add exploit for most versions 2020-06-01 09:41:56 -05:00
h00die 41b512ecda dnd multi file upload rce 2020-05-30 21:07:46 -04:00
alanfoster 0c9b6e1721 Add controls to screen capture module 2020-05-30 04:14:16 +01:00
cn-kali-team 1b796aa50b OptString to OptPort 2020-05-30 10:27:48 +08:00
William Vu f60e569c1b Add Cisco CML and VIRL-PE advisory to Salt modules 
Hat tip @brudis-r7!
 2020-05-29 15:24:00 -05:00
Zenofex 7bf2a802b1 Check for existance of res in guard clauses through getindexablecontent exploit and aux module. 2020-05-28 20:00:19 -05:00
Zenofex e5dcb2e23c Switch to use res.get_json_document from JSON.parse and more cleanup. 2020-05-28 11:16:44 -05:00
Alan Foster f1c492fa2d Land #13470, Pi-Hole < 4.3.3 dhcp static address RCE 2020-05-28 16:57:22 +01:00
Zenofex b8e8606977 Added actions to module for dumpuser/dumpall option (and removed module option) plus misc syntax formatting. 2020-05-28 10:13:18 -05:00
h00die 695f212d26 pihole default payload fix 2020-05-28 09:55:04 -04:00
h00die 513b430f19 no leading 0s on IPs 2020-05-28 08:56:08 -04:00
h00die 2e32c7981d encode token in final stage 2020-05-28 08:22:41 -04:00
h00die 504cd0b4db encode token in final stage 2020-05-28 08:22:04 -04:00
Alan Foster b5f41636b1 Land #13488, Fix memory leak in ms01_026_dbldecode 2020-05-28 10:23:10 +01:00
William Vu 924a8b8297 Fix incorrect title in auxiliary/dos/dns/bind_tsig 
Copypasta. I missed this in f9a2c3406f86469190222ac52dc57556f472e6c9...
for nearly three damn years.
 2020-05-27 21:47:37 -05:00
Spencer McIntyre d51e9dab2f Update the author and add a reference to CVE-2020-8617 2020-05-27 09:24:47 -04:00
Zenofex 7ef7af0d30 Ran msftidy across documentation and made recommended changes to clean up module for MSF pull request. 2020-05-26 17:31:02 -05:00
Spencer McIntyre 9df00cd536 Land #13511, Update TinyIdentD 2.2 Stack Buffer Overflow module 2020-05-26 15:56:59 -04:00
Adam Cammack a1f2820673 Land #13477, Fix syntax in wmiexec.py for Python 3 2020-05-26 13:07:01 -05:00