adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

11360 Commits

Author SHA1 Message Date
A Galway ccf5c36c44 combine both verseions of eb into a single module 2021-07-08 17:42:35 +01:00
Grant Willcox 70fd9376e3 Final documentation improvements to explain SMB setup and improvements to module to fix one minor error output 2021-07-07 17:05:22 -05:00
Spencer McIntyre f42aa3742c Automatically reconnect to the named pipe 2021-07-07 13:25:51 -04:00
Spencer McIntyre f74903178e Add a check method that detects the service 2021-07-06 17:29:08 -04:00
Spencer McIntyre d5d48949b2 Update PrintNightmare module docs 2021-07-06 16:30:51 -04:00
Spencer McIntyre 0f9b913b0f Remove the RPORT redefinition 2021-07-06 09:29:01 -04:00
Spencer McIntyre 9c6b023b0d Add PrintNightmare module docs 2021-07-02 16:00:39 -04:00
Spencer McIntyre dfa91961f7 Use enumeration to find target directories 2021-07-02 15:39:00 -04:00
Spencer McIntyre d9ecfb823f Add DCERPC plumbing for EnumPrinterDrivers 2021-07-02 12:10:00 -04:00
Spencer McIntyre b9830487de Add targets for older versions of Windows 2021-07-01 17:48:21 -04:00
Spencer McIntyre 9dea8b5f99 Define necessary flags and print target info 2021-07-01 16:01:07 -04:00
Spencer McIntyre f6279ee9bc Randomize the name and catch some errors 2021-07-01 14:00:51 -04:00
Spencer McIntyre e44eb0005e Initial PrintNightmare PoC 2021-07-01 12:32:43 -04:00
Spencer McIntyre f66a64d2fb Update the ssh_login_pubkey module 2021-06-30 09:51:52 -04:00
Spencer McIntyre 51f8808bed Fix the representation of IPv6 addresses 2021-06-29 14:21:36 -04:00
adfoster-r7 2067e1177e Land #15363, Fix ipmi_dumphashes - session refused after few failed attempts 2021-06-28 10:50:41 +01:00
Hynek Petrak 50a24bf198 handle raw-sha256, ignore *LK*, *NP* 2021-06-28 10:41:45 +02:00
Hynek Petrak 059189d4a4 fix ipmi disconnects after few failed attemts 2021-06-27 22:53:27 +02:00
Hynek Petrak 348c5e2e30 remove null character from base_dn 2021-06-27 22:51:39 +02:00
Spencer McIntyre 10ad84434c Initial support for pivoting over SSH 2021-06-25 21:19:05 -04:00
Hakyac 6cacc9d686 Update modules/auxiliary/gather/http/cve_2021_27850_apache_tapestry_hmac_key.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-06-25 10:40:34 +02:00
Hakyac 719cbc175a Update modules/auxiliary/gather/http/cve_2021_27850_apache_tapestry_hmac_key.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-06-25 10:38:24 +02:00
Hakyac 5aaaf1e1f1 Update modules/auxiliary/gather/http/cve_2021_27850_apache_tapestry_hmac_key.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-06-25 10:33:11 +02:00
Hakyac d5f0bf8425 Update modules/auxiliary/gather/http/cve_2021_27850_apache_tapestry_hmac_key.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-06-25 10:33:03 +02:00
Hakyac f961b534b0 Update modules/auxiliary/gather/http/cve_2021_27850_apache_tapestry_hmac_key.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-06-25 10:32:46 +02:00
Hakyac 79e83f1010 Update modules/auxiliary/gather/http/cve_2021_27850_apache_tapestry_hmac_key.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-06-25 10:31:06 +02:00
Spencer McIntyre 9cc17095d4 Land #15282, CVE-2019-15975 Cisco DCNM auth bypass 2021-06-24 11:59:21 -04:00
Spencer McIntyre fe6b725d3f Update the documentation and fix a couple of bugs 2021-06-24 11:19:26 -04:00
Yann Castel 5ac025477a parent e7983c3b6f 
author Yann Castel <yann.castel@orange.com> 1622466490 +0200
committer Spencer McIntyre <Spencer_McIntyre@rapid7.com> 1624547674 -0400

Add an exploit for CVE-2019-15975 (Cisco DCNM)

add documentation

passed rubocop

edit documentation

set ssl to true by default

edit documentation

rubocop again

int return code was replaced by symbols

Update modules/auxiliary/admin/networking/cisco_dcnm_auth_bypass.rb

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

rubocop ok

various changes

Update modules/auxiliary/admin/networking/cisco_dcnm_auth_bypass.rb

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

Update modules/auxiliary/admin/networking/cisco_dcnm_auth_bypass.rb

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

various changes 2

various changes

Update modules/auxiliary/admin/networking/cisco_dcnm_auth_bypass.rb

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

adding some guards + module notes
 2021-06-24 11:19:25 -04:00
Stephen Bradshaw fc509644e7 Fix bug 15218 authentication issue in ssh_login_pubkey 2021-06-22 11:19:01 +10:00
deadjakk dadc59ebbe Added changes requested by @smcintyre-r7 
- Updated default port number to match documentation
- Updated the str append to '<<'
- Fixed issue with the login scanner returning false positives
- Removed rank from login scanner
- Removed Custom Executable target in favor of EXE::CUSTOM
- Moved the X3Crypt code out of the exception block
- Added additional checks to the exploit module, the same that were made in login_scanner
- Changed the check function to produce the proper return 'CheckCode' values
 2021-06-17 12:39:17 -05:00
deadjakk 3825b39195 Merge branch 'rapid7:master' into SageX3-CVE-2020-7388 2021-07-07 19:44:25 -05:00
deadjakk e40b98c5f2 added robocop -a'd files 2021-07-07 12:31:05 -05:00
deadjakk 21446c8455 added Sage X3 modules 2021-07-07 11:14:23 -05:00
guly f243bb1d78 Updated gavazzi_em_login_loot: added CVE 
added CVE
 2021-06-16 15:24:15 +02:00
guly d6de658709 fixed reference url 
fixed reference url
 2021-06-16 10:57:13 +02:00
h00die 0f16c1a633 Land #14836, emby ssrf module and scanner for cve-2020-26948 2021-06-12 15:18:12 -04:00
h00die d58eb309e6 update module location 2021-06-12 15:07:03 -04:00
btnz-k f684955537 updated documentation, modified var type 2021-06-09 15:26:29 -07:00
btnz-k 93f0f62b05 MSFTIDY 2021-06-07 08:40:11 -07:00
btnz-k 3b14151bda Post-'rubocop -a' job. 2021-06-06 14:56:55 -07:00
Spencer McIntyre 1d003e9dee Land #15293, Redis extractor improvements 2021-06-04 10:23:07 -04:00
Spencer McIntyre eea2f10f2e Use ALL_CAPS for normal datastore options 2021-06-04 10:22:42 -04:00
btnz-k 0fd49a595e Updated to pass msftidy. 2021-06-03 13:15:18 -07:00
btnz-k 267a07166c Updated per R7 requests. 2021-06-03 13:08:08 -07:00
Grant Willcox bd8a96aa23 Apply minor RuboCop edit 2021-06-03 07:57:31 -05:00
Grant Willcox 107a6a3ce2 Fix up module by removing an import that was causing crashes 2021-06-03 07:48:12 -05:00
Ashley Donaldson 3920c0873c Fix bugs in redis_extractor module 
- Long values were truncated because the network didn't pull enough data, so parsing failed
- Race condition if value was deleted between scan and retrieval of value
- Also support retrieving a subset of keys (e.g. it stores session IDs, there are thousands of them and we only need a few)
 2021-06-03 11:54:02 +10:00
Hakyac 3b06bdc2e1 Update modules/auxiliary/gather/http/cve_2021_27850_apache_tapestry_hmac_key.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-05-28 09:01:32 +02:00
Spencer McIntyre 4ae442496b Land #15267, Shodan search fix for max pages 2021-05-27 09:21:09 -04:00