adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
61,763 Commits 27 Branches 1,043 Tags
3c9c057fc3c241c19c1be80787b7fc061663118c
Commit Graph

4034 Commits

Author SHA1 Message Date
adfoster-r7 4a9a15e638 Run Rubocop layout rules on modules 2021-08-27 17:19:43 +01:00
pingport80 406b152752 add shell support to enum_unattend module 
update registry operations

guard against nil when the unattendfile registry key is not present
 2021-08-19 23:39:18 +05:30
adfoster-r7 83a1ff750a Land #15534, fix powershell command length in shell_to_meterpreter 2021-08-11 10:56:11 +01:00
Spencer McIntyre 8dd0347337 Fix a reference to the old option name 2021-08-10 09:36:42 -04:00
Tim W d1fa2e857d fix #15528, fix powershell command length in shell_to_meterpreter 2021-08-10 12:08:50 +01:00
Spencer McIntyre b406257e6b Land #15524, fix a localization issue 2021-08-09 09:03:56 -04:00
pingport80 bc23658123 minor sytling changes 2021-08-09 15:53:58 +05:30
pingport80 815ecd27c3 minor changes 2021-08-06 22:35:05 +05:30
pingport80 d2c2f66374 fix localization issue in linux_enum_network 2021-08-06 22:13:25 +05:30
Spencer McIntyre dba3db741a Land #15462, [CVE-2021-36934] HiveNightmare 2021-07-29 12:53:48 -04:00
Spencer McIntyre 36cc2fd7e5 Rename an option and update docs for HiveNightmare 2021-07-29 12:07:56 -04:00
Yann Castel fb99af1152 Add post module for HiveNightmare 
correct CVE id

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>

use of vars_get + delete payload after use

initial commit

Update hivenightmare_windows_sam_leak.rb

using railgun to read files + specific index option

Update hivenightmare_windows_sam_leak.rb

post module + add description + add documentation

Delete wp_plugin_modern_events_calendar_rce.rb

Delete wp_plugin_modern_events_calendar_rce.md

add scenario in doc

Update windows_sam_hivenightmare.md

Update windows_sam_hivenightmare.rb

Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

minor changes

msftidy

Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb

Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
 2021-07-29 11:54:31 -04:00
sjanusz 1288e85b6b Improved exception handling 2021-07-28 10:22:15 +01:00
sjanusz c63ef142c5 Update local exploit suggester to handle nil targets 2021-07-28 10:22:15 +01:00
cgranleese-r7 9e7859ed25 Reformats some modules so they can be run with new meterpreter_commands_dependencies.rb Rubocop rule 2021-07-23 14:40:19 +01:00
Christophe De La Fuente 8b4bce35ca Fix issues from rubocop and msftidy_docs.rb 2021-07-09 15:47:11 +02:00
Christophe De La Fuente 5a71e7b0ee Merge remote-tracking branch 'upstream/pr/15154' into HEAD 2021-07-09 15:32:04 +02:00
adfoster-r7 fe41a6b518 Land #15350, fix shellcode_inject module 2021-06-21 09:03:26 +01:00
pingport80 27954cc4ae update checkvm module to include system specific mixin 2021-06-20 10:34:18 +05:30
pingport80 cc1abe9d1b adding generic process mixin to the windows process mixin 2021-06-17 21:24:13 +05:30
pingport80 8598183e98 add process mixin in the modules which required it 2021-06-17 20:46:04 +05:30
pingport80 c055b1100b fix shellcode_inject module 2021-06-17 18:51:49 +05:30
pingport80 7c597b4ca2 define error_token as a random alphanumeric string 2021-06-14 23:32:44 +05:30
Gaurav Purswani 622e82cf44 Update modules/post/windows/gather/enum_hyperv_vms.rb 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2021-06-14 23:23:12 +05:30
Gaurav Purswani 59928bf941 Update modules/post/windows/gather/enum_hyperv_vms.rb 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2021-06-14 23:23:04 +05:30
pingport80 9929d1c11d fix new rubocop errors 2021-06-14 18:25:22 +05:30
pingport80 beba2a6e46 add error_token in case the command fails and remove regexp from psh_exec 2021-06-14 15:02:39 +05:30
pingport80 669586a3ed fix localization issue in windows/enum_hyperv_vms and chomp extra data from psh_exec method 2021-06-09 23:35:27 +05:30
pingport80 8d57d9cfec fix localization issue in module linux/gather/ppp_chap_secrets 2021-06-01 21:33:33 +05:30
adfoster-r7 f26d0b676a Land #14984 - OSX Post exploitation .gitignore retrieval 2021-05-26 00:50:43 +01:00
Spencer McIntyre 64eeedf218 Land #15246, Refactor as Msf::Post::Process 2021-05-25 13:07:21 -04:00
Spencer McIntyre 8d834afeae Land #15236, Add additional Xen check to checkvm 2021-05-25 11:15:14 -04:00
Jeffrey Martin 5b3edd4cb2 still need to include Msf::Post::File 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2021-05-25 08:35:55 -05:00
Jeffrey Martin 0cefd8eaa6 refactor post API for process lists 2021-05-24 18:39:16 -05:00
Shelby Pace 9f2dae38c8 Land #15079, add meterpreter compat requirements 2021-05-24 16:00:08 -05:00
Sean M c484391949 Update checkvm.rb 
Removed spaces at end of lines 99/110 from msftidy complaints
 2021-05-23 13:16:22 -04:00
Sean M 5d61ce4a0b Update checkvm.rb 
Extended Xen VM identification - AWS Xen VMs are now detected new  kernel modules.
 2021-05-23 10:23:56 -04:00
bwatters 8266f2ffdc Land #15113, post gather module for saltstack salt #15113 
Merge branch 'land-15113' into upstream-master
 2021-05-17 15:33:20 -05:00
h00die b2f8bc6958 guard on nil minions 2021-05-15 09:38:15 -04:00
Alan Foster 100da2f1b1 Enforce Style/RedundantBegin for new modules 2021-05-13 04:01:03 +01:00
Ashley Donaldson 278c6532d0 Implemented suggested changes. 
Download directly to loot directory.
 2021-05-07 09:28:31 +10:00
Ashley Donaldson 422b6380eb Fix check against dumping own process 2021-05-06 09:34:30 +10:00
Ashley Donaldson a47b1af60b Added module to dump memory for processes, using Windows Meterpreter 2021-05-05 18:12:40 +10:00
Spencer McIntyre 00131a666c Land #15096, Add shell support for win checkvm 2021-05-04 17:32:05 -04:00
Ashley Donaldson 929197b85e Fix rubocop errors 2021-05-04 11:34:22 +10:00
Ashley Donaldson 2ac4eeb141 Check VAS configuration to find defined kerberos location. 
Also verify root prior to exploitation (gives better error message)
 2021-05-04 11:31:11 +10:00
h00die 75ed65a0ab properly name saltstack salt 2021-05-03 19:34:37 -04:00
Ashley Donaldson 4cd7637274 Fixed Rubocop errors added since this module was forked 2021-05-03 13:28:07 +10:00
Ashley Donaldson f0a442b77d Retrieve configured kerberos ticket location before retrieving tickets 
Rather than assume that file-configured kerberos tickets will be at /tmp/krb5_*, let's check the config file.
Also allows us to give more meaningful error messages and point people in the direction of where to look if it doesn't work.
 2021-05-03 13:07:45 +10:00
h00die 2c76671436 add windows minion file 2021-05-02 10:01:06 -04:00