11a00fa1f2
post/multi/gather/env: Cleanup and support non-Meterpreter sessions
2022-08-01 13:37:15 +10:00
f324b8c24e
enum_powershell_env: Cleanup and support non-Meterpreter sessions
2022-08-01 00:56:21 +10:00
b00cadfbeb
Initial commit of MobileIron Core Log4Shell exploitation (CVE-2021-44228)
2022-07-29 10:31:15 -07:00
d6dabd4bfb
additional code review improvements for xnode auxiliary modules/lib/docs
2022-07-28 15:12:00 +03:00
4e4a1da4e4
Add module docs for the split-up unrar modules
2022-07-27 13:24:29 -07:00
b4b5f31c3d
Add documentation
2022-07-26 10:48:18 -07:00
860cd38bbb
Add documentation
2022-07-26 10:23:24 -07:00
74496c1a29
Add in updated scenario documentation
2022-07-25 14:14:52 -05:00
72b1dbfeee
Remove code that could cause check method to fail, fix up some documentation errors and add in scenario, and generally address some review comments
2022-07-25 13:05:04 -05:00
1094ce95c0
Update roxy_wi_exec.md
2022-07-25 17:14:02 +00:00
bdf8defe53
Apply suggestions from code review
2022-07-25 16:03:09 +00:00
a6bdc5ea29
-Validating md file with msftidy_docs.
...
-Removing global variables, and calling data stored in datastore when required.
-Calling methods or variables instead of calling terminal commands.
-Some indentations.
-Using heredocs when handling multiple strings.
-Handling the case where LHOST does not contain IP address.
2022-07-24 18:51:53 +03:00
c6c745c633
ManageEngine Xnode library changes and some docs/module adjustments after code review
2022-07-22 16:06:21 +03:00
bc0b27e1e2
Apply suggestions from code review
...
Co-authored-by: Grant Willcox <63261883+gwillcox-r7@users.noreply.github.com >
2022-07-22 12:58:46 +00:00
fc3b08fb8b
Apply suggestions from code review
...
Co-authored-by: Grant Willcox <63261883+gwillcox-r7@users.noreply.github.com >
2022-07-22 12:51:40 +00:00
420e67aca9
Apply suggestions from code review
...
Co-authored-by: Grant Willcox <63261883+gwillcox-r7@users.noreply.github.com >
2022-07-22 12:24:43 +00:00
628f5970b1
Apply suggestions from code review
...
Co-authored-by: Grant Willcox <63261883+gwillcox-r7@users.noreply.github.com >
2022-07-22 12:24:26 +00:00
37f1fdd47b
Add module docs, add Ubuntu 22.04 offsets, update check method
2022-07-22 03:30:03 +02:00
e1b0e871b3
add finished module and docs
2022-07-21 18:33:56 -05:00
135a25be4d
Tested and fixed problems
2022-07-21 11:42:18 +00:00
336a1feaf7
Fix up naming of module and documentation and fix most of the RuboCop and formatting errors
2022-07-19 15:44:52 -05:00
d2769ef82b
Add Roxy-WI exec
2022-07-19 21:08:45 +03:00
28c3dd5739
A SCADA scanner module for BACnet protocol.
...
The scanner discovers BACnet devices on the network by broadcasting
Who-is packets, extracts model name, software version, firmware
revision and description from the discovered devices by sending
specific read-property packets. After parsing the data the module saves
it to a local xml file.
Because devices can be nested, every address can have multiple devices.
2022-07-19 17:02:35 +03:00
ebb15ee9e7
Land #16598 , Add in LDAP Query Module
2022-07-19 09:51:00 -04:00
e3e6afbaa3
Land #16753 , ms03_007_ntdll_webdav: Cleanup and add additional offsets
...
Merge branch 'land-16753' into upstream-master
2022-07-19 08:48:06 -05:00
cf54762191
Initial commit of CVE-2022-30526 LPE
2022-07-19 03:29:11 -07:00
2af8042bfa
Land #16761 , clean up ms01_023_printer
...
Adds additional offsets for various Windows 2000 targets.
Replaces raw socket TCP with HttpClient. This works fine in testing.
Fixes default payload, adds docs and notes.
2022-07-16 17:56:59 -04:00
77be219bc2
Land #16754 , add offsets to ms02_065
...
Adds additional offsets for various Windows 2000
Professional targets, adds docs, fixes default
payload and resolves rubocop violations.
2022-07-16 16:43:47 -04:00
2a8d95c121
Default to having a near empty custom file so that we can still update the default queries without issues vs preventing updates from occuring. If users want to override the defaults, then they accept the risk of not getting updates. Update documentation to also note this.
2022-07-15 16:29:12 -05:00
2d1acc0369
Refactor code and also add in proper fail_with error codes where needed. Also fix up module and documentation descriptions to be a bit clearer.
2022-07-15 16:29:01 -05:00
03ebbaf2d0
Add in RUN_SINGLE_QUERY and associated options, and then update the code and documentation accordingly. This will allow users to run single queries with associated attribute filters if they want to test out single queries at a time without changing YAML files
2022-07-15 16:29:00 -05:00
67cf39f4b9
Update documentation to include RUN_QUERY_FILE example.
2022-07-15 16:28:55 -05:00
8c236e789e
Rename files to follow proper format. Add in documentation for examples. Then update code so we use Msf::Config.get_config_root to store the config file that we parse to get the actions outside of a Git tracked location. We will still use the default file to populate this non-git tracked location if its not already populated though.
2022-07-15 16:28:43 -05:00
65b9e1cb13
Push initial copy of work up
2022-07-15 16:27:56 -05:00
f2ff7bb913
Add mssql kerberos authentication
2022-07-15 17:26:10 +01:00
55079515ca
implement code review suggestions
2022-07-14 06:04:14 -07:00
662c8bbd87
Land #16742 , add NetScaler decrypt aux module
...
This aux module allows users to decrypt secrets
in Citrix NetScaler appliance configuration files
2022-07-13 14:00:43 -04:00
8f3a0e3856
Land #16742 , add NetScaler decrypt aux module
...
This aux module allows users to decrypt secrets
in Citrix NetScaler appliance configuration files
2022-07-13 12:11:02 -04:00
819d1fa2dd
Land #16762 , Sourcegraph RCE module
...
This module exploits a vuln in the gitserver
component of sourcegraph that results in OS
command execution in the context of gitserver.
2022-07-13 10:09:06 -04:00
9a6013b153
citrix_netscaler_config_decrypt refinements
...
Refactor error handling when composing KEK fragments to be more
streamlined.
Various tweaks and optimizations.
Updates to documentatation.
2022-07-13 08:36:18 -04:00
3f52cc80a2
Update documentation/modules/auxiliary/admin/citrix/citrix_netscaler_config_decrypt.md
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2022-07-13 07:57:06 -04:00
52fd45b7ab
Land #16744 Jboss EAP/AS RCE module
...
This module exploits a Java deserialization vulnerability
in JBOSS EAP/AS Remoting Unified Invoker interface for
versions 6.1.0 and prior.
2022-07-12 10:49:22 -04:00
63734832b2
Add sourcegraph RCE module docs
2022-07-08 17:27:27 -04:00
27ad62c964
Add a decent check method
2022-07-08 16:40:42 -04:00
83bc954e9d
ms01_023_printer: cleanup; use HttpClient; add additional targets
2022-07-09 01:36:10 +10:00
d6b6f47b09
change doc file
2022-07-08 02:36:18 +02:00
f958b0a053
Land #16738 , correct CVE/lint for weblogic module
2022-07-07 18:08:13 -05:00
4da72a9b01
Land #16735 , Fix defaults for aerohive module
...
This change sets the MeterpreterTryToFork advanced
payload option to true by default for the Linux target
in the aerohive_netconfig_lfi_log_poison_rce module.
2022-07-07 16:21:56 -04:00
6db340508f
Land #16703 , add Censys API v2 functionality
...
This PR updates the censys_search.rb module to also
make use of the v2 API functionality
2022-07-07 13:09:31 -04:00
3ad42dd153
change option names to H3 for weblogic_deserialize_asyncresponseservice docs
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2022-07-07 19:04:26 +03:00
bcoles