2dcd0fad04
Land #14860 , Auxiliary/Exploit Scanner/Gather/RCE for Exchange ProxyLogon (CVE-2021-26855)
2021-03-23 13:10:15 +01:00
d76224066f
Rename option URIPATH to TARGETURI
2021-03-23 13:33:39 +03:00
37b0552803
last code review before land
2021-03-22 23:20:40 +04:00
d4d9001c84
Fix typos
2021-03-22 14:16:45 -05:00
8605fe4529
Use POST for the check method and write the module docs
2021-03-22 15:04:21 -04:00
6e13a26fd3
Delete links to launchpad.support.sap.com in doc files
2021-03-22 11:03:53 +03:00
c543b44fc2
fix: CmdStagerFlavor, add: Powershell target, ...
2021-03-21 22:47:27 +04:00
42726a70c0
client.rb - library for auxiliary and exploit modules
...
cve_2020_6207_solman_rce.rb - auxiliary module
cve_2020_6207_solman_rce.md - documentation for auxiliary module
cve_2020_6207_solman_rs.rb - exploit module
cve_2020_6207_solman_rs.md - documentation for exploit module
2021-03-21 16:51:21 +03:00
308a42e95b
Fix apache_activemq_upload_jsp exploit module for Java 8
2021-03-20 15:26:34 +00:00
1b130cdc74
add new options to documentation
2021-03-19 19:36:35 -07:00
f5c807590c
a last round of review + rubocop
2021-03-20 01:23:43 +04:00
6e34a80693
fix. OAB + code review
2021-03-19 10:19:57 +04:00
2c1869f9df
Land #14907 , Add exploit for CVE-2021-1732
...
Merge branch 'land-14907' into upstream-master
2021-03-18 14:29:59 -05:00
fb7a97077f
Land #14875,CVE-2021-21978 - VMWare View Planner Harness 4.6.x < 4.6 Security Patch 1 Arbitrary File Upload RCE
...
Merge branch 'land-14875' into upstream-master
2021-03-18 12:06:12 -05:00
a38e2702c8
Add recommendations from code review, avoid returning checkcodes
2021-03-18 12:21:51 -04:00
484d5eee09
Correct version ranges for supported exploit modules, update documentation, make sure to return cookies after authentication
2021-03-18 12:21:51 -04:00
aab3b4a7ee
Add Nagios XI mixin and auxiliary scanner module and docs
2021-03-18 12:21:51 -04:00
b1c3c49eb5
Land #14757 , nagios_xi_magpie_debug: add writable paths, improvements, cleanup, fixes
2021-03-16 17:43:43 -05:00
0bff88c0c0
Update the module metadata and add module docs
2021-03-16 10:40:34 -04:00
e30d8db082
nagios_xi_magpie_debug: add writable paths, improvements, cleanup, fixes
...
Resolve Rubocop violations
Fix off-by-one in array index triggered when no file upload succeeds
Fix cleanup: ensure files are removed when upload succeeds but execution fails
Add AutoCheck
Add module notes
Add error handling and associated operator feedback
Add additional writable paths required for some old Nagios versions
Add fallback to session as `apache` if privlege escalation fails
Update documentation in line with above changes and fix software download links
2021-03-16 07:13:55 +00:00
ae5d31cb39
Land # 14776, Add Window Server 2012 SrClient DLL Hijacking local exploit module
...
Merge branch 'land-14776' into upstream-master
2021-03-15 14:34:35 -05:00
98c04eae6c
Remove TODO comment, update documentaton to include WAIT_FOR_TIWORKER option.
2021-03-15 07:51:12 -04:00
9a92ac87a1
Ensure documentation files have md extension
2021-03-15 10:24:50 +00:00
59955f0a32
add. timeout and fix. CmdStagerFLavor
2021-03-15 01:10:56 +04:00
dcf2b69d6d
add. exploitation module doc and some changes
2021-03-14 22:49:41 +04:00
4f2e299d8f
Update the exploit to use Python as its payload since this is a lot more flexible, allows Meterpreter, returns a shell faster, and we are already injecting into and executing a Python file
2021-03-14 00:00:06 -06:00
c2c5db95d8
Add in documentation and fix some mistakes in the description of the module
2021-03-14 00:00:05 -06:00
8dce1acd64
Land #14794 , dup_scout_enterprise_login_bof: Add v9.9.14 target and auto targeting
2021-03-12 12:07:57 -06:00
854e949ce2
add. autodiscover feature (and others change)
2021-03-12 14:49:30 +04:00
b8da46600b
fix. according on nmap nse script
2021-03-12 14:33:04 +04:00
d580e7d122
Fix some documentation, remove unnecessary code and fix a filename typo
2021-03-11 12:09:29 -06:00
a227d00275
Add additional setup notes for some modules
2021-03-11 12:09:29 -06:00
8d2e644f4f
Add a new Java Deserialization mixin and use it to set the shell
2021-03-11 12:09:29 -06:00
b11d8c9d04
fix tidy
2021-03-10 12:55:23 -08:00
dfd0df8264
add documentation
2021-03-10 04:32:21 -08:00
f7fe97a145
rename gather module name
2021-03-09 23:52:01 +04:00
932098dccf
add. gather capability module
2021-03-09 23:46:07 +04:00
cac1be89bb
fix. typo
2021-03-09 23:27:54 +04:00
f9a4bac0ff
updated jira_user_enum with msftidy_docs
2021-03-09 12:00:39 -06:00
fbd6f19d04
Land #14846 , add HPE SIM unauth AMF deser rce
2021-03-08 16:50:49 -06:00
514d46bd4d
Rubocop module again and also update the documentation to reflect recent changes
2021-03-08 16:08:36 -06:00
6b91fbf523
oups... remove old fortios module files.
2021-03-07 17:48:09 +04:00
5e0b8d97a9
add. auxiliary scanner for ProxyLogon (CVE-2021-26855)
2021-03-07 17:37:20 +04:00
8b149a2c9b
Fixed line numbers of verification steps
2021-03-06 22:50:12 +03:00
729994d4af
Update module doc
2021-03-05 17:25:37 -06:00
7bbb4cc09a
Add module doc
2021-03-05 17:25:37 -06:00
59d7288773
RuboCop module and fix small spelling mistake in documentation
2021-03-04 18:48:19 -06:00
f193caa48e
Also make sure that the default option is to use Windows Powershell since this supports Meterpreter and is generally a lot more reliable
2021-03-04 18:40:21 -06:00
3ef8fcd996
Update module to fix an extra print statement and write documentation
2021-03-03 10:14:41 -06:00
3da8fce9cf
Add Microsoft Windows RRAS Service MIBEntryGet Overflow
2021-03-03 02:50:42 +00:00
Christophe De La Fuente