30c333b30d
fix typo in shrboadmin
2021-04-23 15:03:34 +07:00
71f5955b42
add OBR SSH module
2021-04-23 15:00:06 +07:00
93c7727622
Land #15058 , Cockpit CMS RCE
2021-04-21 13:21:55 +01:00
e0f13e44d1
Land #14699 , Add Nagios XI snmptrap RCE and docs (CVE-2020-5792)
2021-04-20 14:30:45 -05:00
13d3e4ae89
Add in CentOS 7 with NagiosXI 5.6.5 scenario
2021-04-20 14:12:56 -05:00
f241a050b8
Apply review comments and fixes to documentation and the module
2021-04-20 12:38:34 -05:00
deaa241ca5
Land #15065 , fix post/linux/gather/checkvm
2021-04-20 17:02:45 +01:00
43f4ec921d
update docs and remove lscpu check
2021-04-20 21:12:27 +05:30
51f9e1ae73
cockpit cms rce
2021-04-18 18:52:04 -04:00
4ac9304ca2
Land #14968 - Add Nagios XI Mibs.php Authenticated RCE module and docs (CVE-2020-5791)
2021-04-16 14:37:15 -05:00
496e074ec8
Add in fixes to documentation and module from review
2021-04-16 13:14:17 -05:00
97425602e9
fix typo and docs in chrome_simplifiedlowering_overflow
2021-04-16 14:59:43 +01:00
9e6f425427
Move exploit/linux/http/citrix_dir_traversal_rce
...
To exploit/freebsd/http/citrix_dir_traversal_rce. It's actually FreeBSD.
2021-04-15 19:13:25 -05:00
832ca92f42
Land #14700 , Add Nagios XI Plugins Filename Authenticate RCE module and docs (CVE-2020-35578)
2021-04-14 16:58:55 -05:00
61395f3cb1
Update scenarios in documentation and also update the module to handle cases where the version number may not be in a format that Rex::Text can immediately handle.
2021-04-14 16:32:53 -05:00
154e237edd
Add in fixes to documentation and module that were covered in the review process
2021-04-14 15:33:42 -05:00
a59e7e196d
Land #14701 , Rename Nagios XI authenticated RCE module and integrate Nagios XI mixin
2021-04-13 18:58:29 -05:00
9379f0356b
Add in 5.6.5 exploitation scenario to documentation
2021-04-13 17:42:47 -05:00
0aada27128
Update the documentation to account for the fact that the plugin name has to be check_ping and also update the module to randomize some of the fields where possible.
2021-04-13 17:15:34 -05:00
cdd589f592
Update documentation to wrap some overly long lines to meet msftidy_docs.rb requirements.
2021-04-13 16:36:38 -05:00
ead9d73dc5
Add in fixes from review to documentation and module
2021-04-13 16:34:13 -05:00
e2532ab01b
Land #14994 , Update session_spy.rb to have a PID option for session migration.
2021-04-12 16:18:26 -05:00
c4f88e35ba
Land #14622 , add the sp_oacreate technique to the mssql_exec module
2021-04-12 15:00:15 -04:00
9e43a34599
Add in scenario to documentation for when database is connected and loot is being stored.
2021-04-12 13:52:41 -05:00
ef82219235
Update the mssql_exec docs and some verbiage
2021-04-12 14:52:13 -04:00
045367cff7
Apply RuboCop formatting to documentation and module
2021-04-12 13:52:00 -05:00
0b06904dd0
Update module with more checks and replace the Process migration strategy with a PID migration strategy. Also update documentation accordingly
2021-04-12 13:05:26 -05:00
75aba6707b
modify original module, add technique option
2021-04-11 22:16:15 +02:00
64dcf49311
Land #15017 , Update tomcat ghost module with default ports
2021-04-09 16:30:23 -05:00
7c23f7f546
Fix a minor issue where one command wasn't properly documented in a manner that allowed for easy copy and pasting
2021-04-09 16:29:24 -05:00
608ac3a0b7
Update module description to clean it up and also add documentation for uncommon options
2021-04-09 16:09:02 -05:00
e48ebe6659
Update haserl_read module documentation (again)
...
- Add CVE and Ref.
- Add fixed version
2021-04-09 13:24:49 +02:00
586d033909
Land #14833 , haserl-based exploit for Alpine linux
2021-04-09 13:07:47 +02:00
a2d6ba4b59
Update haserl_read module documentation
2021-04-09 13:04:16 +02:00
7c575cd38f
Land #15007 , add a chrome renderer exploit (CVE-2020-16040)
2021-04-08 22:18:20 +01:00
8814218f20
Update tomcat ghost module with default ports
2021-04-08 10:29:09 +01:00
926f051377
Land #14978 , add Gitea and Gogs exploit modules
2021-04-07 13:44:43 -05:00
258b9d3e28
Land #14998 , Change CVE references from CVE Details to NVD
2021-04-07 10:10:55 +01:00
6a5529c7cc
Land #14965 , Solman post module for CVE-2019-0307 and new action for cve_2020_6207_solman_rce auxiliary module
2021-04-07 09:46:56 +02:00
690e687e7e
Updates from code review
...
Update modules/post/multi/sap/smdagent_get_properties.rb
Update modules/auxiliary/admin/sap/cve_2020_6207_solman_rce.rb
Update documentation for auxiliary module cve_2020_6207_solman_rce.md
Update documentation for post module smdagent_get_properties.md
Move setup_xml_and_variables to `run` method in auxiliary module cve_2020_6207_solman_rce.rb
Delete list_dir, read_file, file_exist in post module smdagent_get_properties.rb
2021-04-06 21:23:39 +02:00
c863c324ae
Add exploit for CVE-2020-16040
2021-04-06 17:25:27 +05:30
4020813b42
Correct broken or redundant CVE references
2021-04-05 13:06:50 -05:00
cfc6b0a8ba
Land #14971 , add Apache OFBiz SOAP Deser rce
2021-04-05 11:44:40 -05:00
a803e1e932
remove spare comma
2021-04-05 09:33:20 -05:00
943698ef19
Add an haserl-based exploit for Alpine linux
2021-04-02 13:43:52 +02:00
71914a1ddb
Land #14813 , additional dup scout bof targets
2021-04-01 13:03:57 -05:00
34a5f7906c
Rebase so we can use the latest mixin code,update the version range, update docs
2021-04-01 13:29:44 -04:00
faab100d9a
Add Nagios XI Mibs.php Authenticated RCE module and docs
2021-04-01 13:06:33 -04:00
f76f58eb51
Rebase, use latest mixin code in check, update version and docs
2021-04-01 12:43:44 -04:00
dd5c747584
Add Nagios XI snmptrap RCE and docs
2021-04-01 12:26:06 -04:00
Pedro Ribeiro