adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
58,454 Commits 27 Branches 1,043 Tags
2f2d43e3bbbf6edbf6ffd10eccc84ca0c761435d
Commit Graph

29724 Commits

Author SHA1 Message Date
bwatters 2f2d43e3bb Land #14295, update payload sizes from 2.0.22 gem 
Merge branch 'land-14295' into upstream-master
 2020-10-22 08:52:18 -05:00
Brendan Coles 6258d5b561 Land #14296, Move mercury_login module docs to documentation directory 2020-10-22 13:24:54 +00:00
Spencer McIntyre 3dc232aa9a Land #14289, Add version check to exploit/windows/http/exchange_ecp_dlp_policy 2020-10-21 17:52:38 -04:00
Jeffrey Martin a8d41c59e2 update payload sizes from 2.0.22 gem 2020-10-21 16:35:43 -05:00
h00die 5890bc45b5 move docs out of exploits folder 2020-10-21 16:37:02 -04:00
adfoster-r7 a362b6785d Land #14290, set pid to nil for MS17-010 SMB1 clients 2020-10-21 16:20:08 +01:00
Spencer McIntyre b457191eaa Set pid to nil for MS17-010 SMB1 clients 2020-10-20 17:09:51 -04:00
William Vu e4fb76d74f Add version check to exchange_ecp_dlp_policy 
And update modules/exploits/windows/http/sharepoint_ssi_viewstate.rb.
 2020-10-20 14:32:43 -05:00
William Vu 3970b69734 Land #14229, Telerik UI for ASP.NET AJAX exploit 
CVE-2017-11317 && CVE-2019-18935
 2020-10-20 13:24:35 -05:00
Spencer McIntyre b58ed7f909 Update the Telerik RAU module metadata and add the TARGETURI option 2020-10-20 13:48:59 -04:00
Spencer McIntyre 57aef4367c Adjust the exploit timeout and set the default RPORT for Telerik RAU 2020-10-19 19:31:14 -04:00
bwatters 1e568a6d1b Merge branch 'land-14179' into upstream-master 2020-10-19 15:55:25 -05:00
William Vu 253928570b Update module doc 2020-10-19 11:18:00 -05:00
Spencer McIntyre 0f344b0661 Land #14265, Add SharePoint Server-Side Include (SSI) and ViewState RCE (CVE-2020-16952) 2020-10-19 10:27:58 -04:00
Spencer McIntyre a05f8a721b Print what the web.config loot path is 2020-10-19 10:27:41 -04:00
adfoster-r7 76d5a4e444 Land #14258, add documentation and rubocop for several post/windows/gather modules 2020-10-19 12:59:06 +01:00
William Vu 4cb08f7426 Address outstanding issues 2020-10-15 13:24:08 -05:00
Grant Willcox 849dbeca5c Fix up bad merge commit 2020-10-15 11:53:39 -05:00
Tim W 87104a7236 Update docs and make them msftidy_docs.rb compliant 2020-10-15 10:59:46 -05:00
Grant Willcox 59f74438da Rename the LPE exploit to a more appropriate name since their could be future bugs in NtUserMessageCall and also update the description info a bit more 2020-10-15 10:59:44 -05:00
Grant Willcox 7c08a42401 Revamp the check method so that it will check across a lot more versions of Windows and provide full coverage for CVE-2019-1458 2020-10-15 10:59:44 -05:00
Grant Willcox f2899186e4 Add in first round of initial updates to fix review comments 2020-10-15 10:59:40 -05:00
Tim W dcc322436b Update documentation files and module description to more accurately describe what the cause of the LPE bug for CVE-2019-1458 is. also apply RuboCop edits. 2020-10-15 10:58:58 -05:00
Tim W c38064b022 Apply rubocop edits and update documentation 2020-10-15 10:58:38 -05:00
Tim W a3772d43d4 set InitialAutoRunScript to post/windows/manage/priv_migrate 2020-10-15 10:58:08 -05:00
Tim W cf5ca76b5e fix check function 2020-10-15 10:58:07 -05:00
Tim W 12c5f4f916 CVE-2019-1458 chrome sandbox escape initial commit 2020-10-15 10:57:46 -05:00
William Vu 1a341ae931 Add SharePoint SSI and ViewState RCE 
CVE-2020-16952
 2020-10-14 17:45:15 -05:00
h00die 39a623f3e0 docs for domain post modules 2020-10-11 18:53:28 -04:00
h00die f75367d8bd docs and rubocop 2020-10-11 17:44:21 -04:00
youkergav c855857506 Cleaned up more code 2020-10-11 02:26:02 -04:00
youkergav 1cba6080cd Cleaned up code 2020-10-09 22:04:26 -04:00
youkergav d623d85040 Added AutoCheck mixin 2020-10-09 19:45:28 -04:00
Faiz Azhar 193d15381e Cloudflare (NYSE:NET) is an independent company and unrelated to Amazon (NASDAQ: AMZN) 2020-10-10 00:13:43 +08:00
youkergav a59558f03c Made password optional parameter 2020-10-09 06:33:57 -04:00
youkergav 5726db44d0 Bug fixed 2020-10-09 06:01:25 -04:00
youkergav 583e77db60 Cleaned up code 2020-10-09 05:38:54 -04:00
youkergav 263b6bc070 Merge branch 'master' of github.com:rapid7/metasploit-framework into su_login 2020-10-09 05:26:48 -04:00
youkergav 23c6c415eb Added python alternative and check function 2020-10-09 03:58:55 -04:00
Grant Willcox 443f26410e Fix up disclosure date 2020-10-08 15:30:56 -05:00
Grant Willcox 71b9b5c2e7 Land #14235, Patch smart_hashdump so it doesn't skip RID 1001 when dumping hashes 2020-10-08 14:51:52 -05:00
Grant Willcox 7cc9d663dc Land #14242, Remove modules whose deprecation date has past 2020-10-08 11:34:00 -05:00
Spencer McIntyre 3431d97c64 Remove modules whose deprecation date has past 2020-10-08 10:56:37 -04:00
Grant Willcox 87b1facc5b Land #14238, Update sap_service_discovery.rb to support SAP IGS server discovery 2020-10-08 09:43:33 -05:00
Grant Willcox 69c68823d2 Land #14226, convert myworkspace.id to myworkspace_id for no db compat 2020-10-08 08:49:53 -05:00
Vladimir Ivanov d2ee5a838a Update sap_service_discovery.rb 
Add port 40080 - SAP Internet Graphics Server [HTTP]
 2020-10-08 13:51:44 +03:00
0x44434241 4e40ae5d92 Spelling fix; 'controler' -> 'controller'. 2020-10-08 13:13:15 +09:00
0x44434241 659138d6ef Removing unused variables as per rubocop suggestions. 2020-10-08 12:24:58 +09:00
0x44434241 fb04106c2f Applying suggested rubocop formatting fixes. 2020-10-08 12:22:34 +09:00
0x44434241 ac4159b657 Removing 'skip rid 1001' from hashdump loop as per issue #14094. 2020-10-08 10:50:40 +09:00