779da83d59
gitlab password reset account takeoever review
2024-01-27 07:44:11 -05:00
e6c4195ad3
gitlab password reset account takeoever review
2024-01-27 07:42:25 -05:00
482d2b28b1
gitlab password reset account takeoever
2024-01-18 16:19:26 -05:00
75c2de8c3d
Revert spelling correction
2024-01-08 10:51:35 +00:00
8beb6255cb
fix spelling in aux modules
2024-01-07 15:02:53 -05:00
69e5caa1a0
Refactor the ghostcat module to use the AJP defs
2023-11-17 12:58:05 -05:00
b28668790d
allow user to explicitly specify a CLI mode. Valid modes are 'user', 'privileged', and 'global'.
2023-11-06 11:40:22 +00:00
10ee87c712
Add an optional CISCO_ADMIN_USERNAME and CISCO_ADMIN_PASSWORD options. If set these admin creds are used to leverage CVE-2023-20273. If not set, then CVE-2023-20198 is used to create a new temp admin account before leveraging CVE-2023-20273
2023-11-06 10:20:07 +00:00
a55132b36f
strip out "**CLI Line # " from the results and use print_line instead of print_status for cleaner output.
2023-11-03 17:09:08 +00:00
c8121ebd8e
mention dropping to User EXEC mode via two exit keywords
2023-11-03 16:43:21 +00:00
17420289dc
Add two auxiliary modules for the recent Cisco IOS XE exploit chain bugs (CVE-2023-20198 and CVE-2023-20273). This allows for unauthenticated remote CLI or OS command execution.
2023-11-03 15:38:35 +00:00
15aaa90379
Land #18447 , CVE-2023-22515 Confluence Auth Bypass
...
CVE-2023-22515 - Atlassian Confluence Data Center and Server Authentication Bypass
2023-10-19 17:35:17 -04:00
ee0e5b9eda
Tidy the docs, fix the username
...
The username can not contain capital letters, or the operation will
fail.
2023-10-19 17:19:55 -04:00
c79cc5a36b
Final Checks
2023-10-19 17:19:55 -04:00
b3a9579e8a
Update modules/auxiliary/admin/http/atlassian_confluence_auth_bypass.rb
...
Implement changes proposed by Spencer McIntyre (smcintyre-r7)
2023-10-19 17:19:30 -04:00
258ac6421b
Fix fail_with response code compare and documentation fixes
2023-10-19 17:19:30 -04:00
7c977e07ef
Remove of the X-Atlassian-Token header from server-info.action
2023-10-19 17:19:30 -04:00
236a301f27
Check method fixes
...
get_confluence_version inside to check method. Also new status messages
2023-10-19 17:19:08 -04:00
0cb56c1de5
Some fixes
2023-10-13 02:16:17 -07:00
e48ead5e8c
Fingerprint reduction with Rex::Text.rand_text_alpha(8)
2023-10-13 02:11:57 -07:00
84f5c7321e
Reducing fingerprinting via Rex::Text.rand_text_alpha(8)
2023-10-13 02:02:13 -07:00
9219a3e90a
Adding AttackerKB analysis URL
2023-10-13 01:56:14 -07:00
2b05dab554
Fix: Msftidy Warnings
2023-10-11 12:19:40 -07:00
9ef1d1746a
CVE-2023-22515 - Atlassian Confluence Data Center and Server Broken Access Control Leads to Authentication Bypass
2023-10-11 12:09:22 -07:00
13e7f6cc27
fix related modules references
2023-09-15 16:35:55 -04:00
e3983eac1f
Correct incorrect log format
2023-04-12 13:04:13 +09:00
29c24438a6
Correct incorrect log format when no files found
2023-04-12 13:01:49 +09:00
d04c8e1bce
Update broken secunia references
2023-03-23 10:43:57 +00:00
6e9b33dc88
Run rubocop on auxiliary admin http modules
2023-02-08 14:30:08 +00:00
433bafdccf
Add missing module notes for stability reliability and side effects
2023-02-08 11:45:17 +00:00
1e50ba3415
Move to Hashes module, address requested changes
...
Fix rubocop
Move identify to hashes module up one layer, use full reference to identify_hash instead of full include
Fix SMTP require
Remove hashes require statement
Remove hashes require statement
Remove hashes require statement
Remove hashes require statement
Address remaining requested changes, reference constants directly
Add all the missing direct references
Co-Authored-By: Jeffrey Martin <jeffrey_martin@rapid7.com >
2022-10-17 17:28:31 -04:00
8b5223f53b
Modularize Identify, Update referenced use cases
...
Modularize Identity.rb
Include new module style Identify
Update juniper.rb
Fix inadvertent change
Add new module to identify spec
Put the require back
Put back require line for juniper
2022-10-17 17:28:30 -04:00
06aefb630a
string true to bool true
2022-10-03 19:50:04 -04:00
5f92d9418d
Modules: Fix Stability/SideEffects/Reliability notes for several modules
2022-10-01 17:54:59 +10:00
b0e3e95439
Minor Refactor: Remove unneccessary len(cookie)
2022-09-29 01:46:07 +05:00
2958a43a6a
Update to reflect fact that bug is an improper authentication logic bug and to randomize password for auth parameter since it is ignored
2022-09-23 12:19:29 -05:00
edc37835e5
Add more nil checks in, update some of the check code to catch an edge case, update notes to account for indicators of compromise, and fix some extra issues noticed on second round of review
2022-09-23 09:38:35 -05:00
9abe1649ff
Sanitize XML data prior to adding it to the XML POST request and also change the ID option to an integer from a string to match expectations
2022-09-23 09:38:35 -05:00
3ca34568c2
Clean up some of the documentation and module code and descriptions
2022-09-23 09:38:12 -05:00
37caf6dae5
removed exploit information from info section
2022-09-23 09:38:11 -05:00
a4a12d06bc
improved error handling
2022-09-23 09:38:10 -05:00
5ed7ff7f52
init commit module and documentation
2022-09-23 09:38:05 -05:00
3f06e237b7
Correctly format the notes sections
2022-06-10 14:01:57 +01:00
53052af988
Fix login crash for pihole modules
2022-05-04 19:42:39 +01:00
94ed9ae28b
Modules: Prefer CVE references over cve.mitre.org URL references
2022-04-19 20:42:23 +00:00
bbf9e3163a
Fix file reads on Windows for binary files
2022-03-21 12:47:39 +00:00
47532bb49a
use Faker for email and user names
2022-03-07 10:57:40 -06:00
86cad29799
wp masterstudy review
2022-03-06 08:07:20 -05:00
2195edbb8d
masterstudy privesc
2022-02-25 16:36:47 -05:00
d5ba1afbec
fix URLs not resolving
...
fix URLs not resolving
add csv export to references
fix URLs not resolving
pdf not pd
missed a url change
remove extra recirectedfrom fields
remove extra file
fix ovftool url accidental replacement
2022-02-16 17:22:40 -06:00
h00die