adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions 9 Packages Projects Releases Wiki Activity
75,610 Commits 27 Branches 1,043 Tags
3ba000cbd7dd701a55adf666b39a5405d5680b6d
Commit Graph

75610 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
sfewer-r7 000ffb2406 make the check routine return a message for Detected. 2024-11-22 12:37:50 +00:00
dwelch-r7 d3b7683532 Land #19672, Added mwalas-r7 to the mail map 2024-11-22 10:06:39 +00:00
Marcin Walas 4d25cd90c6 Added mwalas-r7 to the mail map 2024-11-22 10:25:53 +01:00
Ashley Donaldson 6f4ab97c83 Commenting changes 2024-11-22 13:06:58 +11:00
remmons-r7 74cfde39f0 Merge pull request #2 from smcintyre-r7/pr/collab/19630 
Cups Exploit Updates
 2024-11-21 14:28:40 -06:00
Spencer McIntyre 0ec9b1bcb9 Fix a multicast socket issue 2024-11-21 15:14:46 -05:00
Spencer McIntyre 24d3ef16cf Remove some unnecessary code, switch to passive stance 2024-11-21 15:08:43 -05:00
jenkins-metasploit d75ed350db automatic module_metadata_base.json update 2024-11-21 17:59:45 +00:00
jheysel-r7 d95d549992 Land #19531 ProjectSend r1335 - r1605 RCE module 2024-11-21 09:53:36 -08:00
ostrichgolf 68eb6599fd Create projectsend_unauth_rce 2024-11-21 09:34:58 -08:00
jenkins-metasploit b79c0037f6 automatic module_metadata_base.json update 2024-11-21 12:42:37 +00:00
adfoster-r7 d9d7f1a898 Merge pull request #19654 from h00die/strapi 
strapi 3.0.0 beta 17.4 password reset (CVE-2019-18818)
 2024-11-21 12:35:30 +00:00
Metasploit bc7adfbe41 Bump version of framework to 6.4.38 2024-11-21 03:32:51 -06:00
h00die 4ff389762d xspy updates 2024-11-20 19:35:19 -05:00
jenkins-metasploit 3419bfec43 automatic module_metadata_base.json update 6.4.37 2024-11-20 22:41:34 +00:00
jheysel-r7 afbbba09e8 Land #19584 Judge0 sandbox escape CVE-2024-28185, CVE-2024-28189 2024-11-20 14:35:38 -08:00
Takah1ro da6f8cd552 Add Judge0 module and document 2024-11-20 14:15:38 -08:00
jenkins-metasploit d69c146fb0 automatic module_metadata_base.json update 2024-11-20 19:26:21 +00:00
jheysel-r7 05cbd1d9a3 Land #19593 Add exploit for CVE-2023-28324 (Unauthenticated RCE in Ivanti EPM) 
This exploits an unauthenticated RCE in Ivanti's EPM where a .NET remoting client can invoke a method that results in an OS command being executed in the context of NT AUTHORITY\SYSTEM.
 2024-11-20 11:18:58 -08:00
Spencer McIntyre e52edf447c Implement feedback from the PR 2024-11-20 13:51:39 -05:00
adfoster-r7 e6615d3a74 Merge pull request #19659 from sjanusz-r7/fix-irb-deadlock-error 
Fix IRB deadlock recursive locking on Ctrl+C
 2024-11-19 16:11:09 +00:00
jenkins-metasploit 1d7e6050d3 automatic module_metadata_base.json update 2024-11-19 16:05:05 +00:00
Spencer McIntyre f7e210d3e9 Merge pull request #19624 from cdelafuente-r7/fix/mod/ms_icpr 
Fix a crash when generating CSRs with OpenSSL 3.4.0
 2024-11-19 10:58:52 -05:00
adfoster-r7 09db1811f1 Merge pull request #19662 from sjanusz-r7/fix-no-readline-crash 
Load Readline without a conditional
 2024-11-19 13:25:41 +00:00
sjanusz-r7 523a172e23 Load Readline without a conditional 2024-11-19 13:02:06 +00:00
adfoster-r7 e199dd7ca7 Merge pull request #19657 from sjanusz-r7/deprecate-real-readline 
Deprecate real-readline option
 2024-11-19 12:50:15 +00:00
sjanusz-r7 fefc8438f5 Deprecate real-readline option 2024-11-19 12:38:05 +00:00
Christophe De La Fuente 519c18a858 Update specs for auxiliary/admin/dcerpc/icpr_cert 2024-11-18 21:28:55 +01:00
jenkins-metasploit 2177fdadbd automatic module_metadata_base.json update 2024-11-18 16:32:34 +00:00
Christophe De La Fuente 7bab1c1980 Fix specs and add algorithm argument 2024-11-18 17:17:58 +01:00
adfoster-r7 1ed2d7e258 Merge pull request #19658 from cdelafuente-r7/fix/mod/get_ticket/file_read 
Fix `auxiliary/admin/kerberos/get_ticket` issue on Windows
 2024-11-18 16:08:27 +00:00
sjanusz-r7 bc45734fed Fix IRB deadlock recursive locking on Ctrl+C 2024-11-18 14:37:01 +00:00
jenkins-metasploit 26e424a921 automatic module_metadata_base.json update 2024-11-18 14:32:24 +00:00
Christophe De La Fuente 2970c99471 Use binread instead 2024-11-18 15:32:08 +01:00
Spencer McIntyre dd7e1786e1 Merge pull request #19643 from smashery/dcsync_individual 
DCsync individual accounts and groups
 2024-11-18 09:25:21 -05:00
Christophe De La Fuente 7c512b7054 Read the certificate in binary mode 2024-11-18 15:11:36 +01:00
sfewer-r7 4856817131 fix a typo 2024-11-18 09:44:53 +00:00
Ashley Donaldson 20b8fc61a8 Updated ruby_smb module with SAMR group membership query ability 2024-11-18 10:08:00 +11:00
h00die dfebca457c strapi review 2024-11-16 15:47:54 -05:00
h00die 219981227d Update documentation/modules/auxiliary/scanner/http/strapi_3_password_reset.md 
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
 2024-11-16 15:36:00 -05:00
h00die 6629d5dff2 strapi password reset 2024-11-15 15:12:34 -05:00
sfewer-r7 c58dbbfb61 add in documentation 2024-11-15 17:42:57 +00:00
sfewer-r7 feb1ac79da add in a suitable certificate and private key to use by default. 2024-11-15 17:41:31 +00:00
jenkins-metasploit acc9940cdb automatic module_metadata_base.json update 2024-11-15 14:30:41 +00:00
Spencer McIntyre 5d9add4450 Merge pull request #19640 from jheysel-r7/pyload_js2py_cve_2024_39205 
Pyload RCE (CVE-2024-39205) with js2py sandbox escape (CVE-2024-28397)
 2024-11-15 09:24:37 -05:00
jenkins-metasploit 786e8551ee automatic module_metadata_base.json update 2024-11-15 12:55:28 +00:00
adfoster-r7 d039bead93 Merge pull request #19601 from sjanusz-r7/add-teamcity-login-scanner 
Add JetBrains TeamCity HTTP Login Scanner
 2024-11-15 12:49:10 +00:00
sfewer-r7 e520ca7ee9 comment the intent of this code block 2024-11-15 12:29:31 +00:00
sfewer-r7 2ec5778405 get_cert_subject_item may return nil, so test for that here 2024-11-15 12:28:25 +00:00
sfewer-r7 51ad7ad0bf improve the send_packet logic to fail gracefully if bad data is recieved 2024-11-15 12:27:33 +00:00