adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
44,964 Commits 27 Branches 1,043 Tags
2d1cecd4d5493f4e38666b76ebffceebee50e596
Commit Graph

23405 Commits

Author SHA1 Message Date
Carter Brainerd 2d1cecd4d5 Fix request pattern matching 2019-01-23 13:39:52 -05:00
Carter Brainerd 47fd066a29 Msftidy 2019-01-22 21:06:11 -05:00
Carter Brainerd 1f56bccf31 Small improvements from review 2019-01-22 20:46:28 -05:00
Carter Brainerd 1121ce1127 Change default filename to random 2019-01-17 20:12:53 -05:00
Carter Brainerd 8cd26b74d7 Please msftidy gods 2019-01-13 19:22:51 -05:00
Carter Brainerd 171d46db9b Add disclosure date, more references, and authors 2019-01-13 19:11:05 -05:00
Carter Brainerd 89e8ff9c80 Update office_excel_slk.rb 2019-01-13 18:08:51 -05:00
Carter Brainerd d88d1d0f1d Create office_excel_slk.rb 2019-01-13 17:31:34 -05:00
William Vu c9473f8cbc Land #9473, new MS17-010 aux and exploit modules 2018-02-01 23:56:29 -06:00
zerosum0x0 ffc7e078e2 don't disconnect until cleanup 2018-02-01 21:46:56 -07:00
h00die 7cb0a118c1 Land #9399 a linux priv esc against apport and abrt 2018-02-01 21:54:54 -05:00
Brendan Coles 3c21eb8111 Update documentation 2018-02-02 02:27:13 +00:00
RageLtMan 812d7ca739 Update native DNS spoofer for Dnsruby 
Fix methods relating to answer/question data structures which were
set up for Net::DNS objects in the original implementation
utilizing uppercase letters in the exact same method names.

Testing:
  None yet, completely forgot i even wrote this module till i saw
it in my merge conflicts after upstream merged the PR.
 2018-01-31 23:44:51 -05:00
Brendan Coles 0d80ca6f79 Change documentation extension from rb to md 2018-01-31 23:26:30 +00:00
Brent Cook beb4d56f7d Land #9354, Debut embedded httpd server (Brother printers) DoS 2018-01-31 17:03:13 -06:00
bwatters-r7 8be2b1f59e Land # 9407, Add BMC Server Automation RSCD Agent RCE exploit module 
Merge branch 'land-9407' into upstream-master
 2018-01-31 13:35:29 -06:00
h00die 08dcb5cc49 Land #9445 fixes for ssl labs scanner module 2018-01-29 20:51:05 -05:00
Jacob Robles d4a0372238 Land #9457, Dup Scout Enterprise v10.4.16 - Import Command Buffer Overflow 2018-01-29 11:40:54 -06:00
zerosum0x0 7cc00c0e10 fixed padding/offsets for win 10 2018-01-28 21:10:51 -07:00
zerosum0x0 237c3f7b2c crash 10.14393... should fail to leak transaction 2018-01-28 18:52:43 -07:00
zerosum0x0 2723b328aa misc tidying, added more randomness 2018-01-28 18:20:18 -07:00
zerosum0x0 6c2d5b1fc2 semi-completed exploit files 2018-01-28 18:13:25 -07:00
Brendan Coles 23f4bf1583 Add documentation 2018-01-27 03:15:06 +00:00
Aaron Soto c390696ddf Land #9379, Oracle Weblogic RCE exploit and documentation 2018-01-25 21:47:18 -06:00
William Vu 309deb9ee7 Land #9446, Post API fix for setuid_nmap 2018-01-25 16:00:40 -06:00
h00die 62573731fe remove empty line 2018-01-24 20:54:21 -05:00
h00die 4be0e7f9ef final fixes for brother debut dos 2018-01-24 20:53:08 -05:00
Daniel Teixeira 4cd5801e6f Dup Scout Import Command Buffer Overflow 2018-01-24 20:47:46 +00:00
Matthew Kienow 6caba521d3 Land #9424, Add SharknAT&To external scanner 2018-01-24 12:40:29 -05:00
Pearce Barry eb572a3ef5 Land #8632, colorado ftp fixes 2018-01-23 17:45:07 -06:00
bwatters-r7 a27cfeaea9 Land #9416, Sync Breeze Enterprise 9.5.16 Import Command buffer overflow 
Merge branch 'land-9416' into upstream-master
 2018-01-23 16:35:51 -06:00
bwatters-r7 3922844650 ninja style changes 2018-01-23 16:34:49 -06:00
Adam Cammack d81d50b491 Land #9430, Improve Hyper-V checkvm checks 2018-01-23 15:22:12 -06:00
bwatters-r7 685a950077 Land #9114, Add module for Kaltura <= 13.1.0 RCE (CVE-2017-14143) 
Merge branch 'land-9114' into upstream-master
 2018-01-23 12:35:59 -06:00
William Vu 5684b9ed7c Readd dropped return during refactoring 2018-01-23 10:12:15 -06:00
Adam Cammack be08af5404 More Python style fixes 2018-01-23 09:17:22 -06:00
William Vu d3b3946669 Use Msf::Post::File#setuid? in setuid_nmap 2018-01-23 02:05:26 -06:00
Brent Cook 03d1523d43 Land #6611, add native DNS to Rex, MSF mixin, sample modules 2018-01-22 23:54:32 -06:00
Brent Cook a6e5944ec5 fix msftidy, add nicer errors on bind failure 2018-01-22 23:37:39 -06:00
Brent Cook aae77fc1a4 Land #9349, GoAhead LD_PRELOAD CGI Module 2018-01-22 23:10:36 -06:00
Brent Cook d1569f8280 Land #9413, Expand the number of class names searched when checking for an exploitable JMX server 2018-01-22 16:49:01 -06:00
Brent Cook 10fde42adc Land #9431, Fix owa_login to handle inserting credentials for a hostname 2018-01-22 16:46:39 -06:00
Brent Cook b12953fa85 Land #9404, update module author 2018-01-22 16:41:50 -06:00
Brent Cook 04d305feb3 update SSL Labs scanner with new API, be robust 
This updates the SSL Labs scanner to know about new additions to the API, and prevents the module from breaking again just because there is new JSON in the output. I couldn't figure out how to get the Api class to print messages normally, and there is some other output that needs to be added. But the module does work again.
 2018-01-22 16:32:16 -06:00
Wei Chen 394c31c1e3 Remove NoMethod Rescue for cerberus_sftp_enumusers 
Please see reasons in #9436
 2018-01-22 11:10:23 -06:00
Wei Chen 38d056b930 Land #9436 - Fix cerberus_sftp_enumusers undefined method start for nil 
Land #9436

Thanks Steve!
 2018-01-22 11:07:23 -06:00
Wei Chen 85d018096b Pass password_prompt and non_interactive to fix #8970 
Fix #8970
 2018-01-22 11:06:12 -06:00
Brent Cook 682c915a09 Land #9267, Add targets to sshexec 2018-01-22 09:59:48 -06:00
Brent Cook 69818aea22 update payload sizes 2018-01-21 08:03:07 -06:00
Pearce Barry 2a6b3671bf Add connection addr+port info to http response object. 
Update owa_login to use this instead of doing lookups on its own.
 2018-01-19 13:37:33 -06:00