adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

11360 Commits

Author SHA1 Message Date
Grant Willcox 2124ec25ba Rename files and update the exploit module title to better reflect its purpose. Also fix a minor RuboCop related change 
Fix up documentation to reflect recent file renaming changes.
 2021-02-26 14:32:37 -06:00
RAMELLA Sébastien 801164a244 fix. separator for creds collector. 2021-02-26 14:32:29 -06:00
RAMELLA Sébastien eb5f418fe2 fix. some rubocop recommendations 2021-02-26 14:32:21 -06:00
RAMELLA Sébastien b84909fe67 change parsing method 2021-02-26 14:32:20 -06:00
RAMELLA Sébastien 82c8b55be9 fix. remove call to eval and some minor change 2021-02-26 14:32:19 -06:00
RAMELLA Sébastien 7eb91e76ab add. fortios path traversal (cve-2018-13379) 2021-02-26 14:32:13 -06:00
Paul Werther c570c9f30e add documentation and linting (rubocop) 2021-02-26 16:16:23 +01:00
RAMELLA Sébastien 70b260cb40 fix. separator 2021-02-26 16:52:55 +04:00
RAMELLA Sébastien ee2abf40fb fix. separator for creds collector. 2021-02-26 11:37:24 +04:00
dwelch-r7 319f15d938 Handle nil versions for rubygems 4 2021-02-25 16:47:49 +00:00
Grant Willcox ff16c24d03 Land #14806, Rubocop recently landed modules continued 2021-02-25 10:36:50 -06:00
Alan Foster b06c5c12aa Rubocop recently landed modules continued 2021-02-25 14:13:40 +00:00
bwatters 7cdd41df76 Land #14544, RDP Web Login User Enumeration Auxiliary Module 
Merge branch 'land-14544' into upstream-master
 2021-02-24 16:10:41 -06:00
Spencer McIntyre 8c1721b845 Land #14766, Add Apache Flink JobManager Traversal 2021-02-23 10:16:42 -05:00
Spencer McIntyre f176f6b5de Use CheckCode::Unknown when the HTTP response is nil 2021-02-23 10:16:20 -05:00
Paul Werther 90cfbdd023 nicer formatting 
Co-authored-by: bcoles <bcoles@gmail.com>
 2021-02-23 10:08:27 +01:00
Brendan Coles 8a6c6d18fb Add Apache Flink JobManager Traversal 2021-02-22 23:03:58 +00:00
Spencer McIntyre 4d20e382a0 Land #14784, Update ScadaBR Credentials Dumper module 2021-02-22 15:55:14 -05:00
Spencer McIntyre 4f089c3004 Base64 encode stored hash data for JtR 2021-02-22 15:52:12 -05:00
Brendan Coles bc1ffec2c1 Update ScadaBR Credentials Dumper module 2021-02-22 20:32:55 +00:00
agalway-r7 8a339f54c1 Land #14734, updates and runs rubocop against recent modules 
Rubocop recently landed modules
 2021-02-19 13:48:47 +00:00
agalway-r7 275e9c5454 Land #14696, Further Zeitwerk lands to improve boot speed 
Zeitwerk rex folder
 2021-02-19 10:33:37 +00:00
Christophe De La Fuente bbdaf23672 Land #14576, Wordpress Plugin: Chopslider 3 SQLi 2021-02-18 11:49:07 +01:00
k0pak4 8a4b6461e8 Final pylint updates to module 2021-02-17 08:16:11 -05:00
Alan Foster 5b3fde7735 Rubocop recently landed modules 2021-02-16 15:08:08 +00:00
Jeffrey Martin dbce3982fd Land #14067, [GSoC] Module for CVE-2019-13375, and PostgreSQL support for the library 2021-02-14 12:11:09 -06:00
h00die 28aa29fcab updates from review 2021-02-13 15:11:39 -05:00
Alan Foster bed7ae2c78 Add latest rubocop rules 2021-02-12 13:31:51 +00:00
dwelch-r7 7fbbe23426 Remove more requires that were missed before 2021-02-08 14:51:58 +00:00
k0pak4 c3ba13fe6b Add reference to blog post 2021-02-08 09:25:51 -05:00
dwelch-r7 b95be3ed10 Zeitwerk rex folder 2021-02-08 12:24:12 +00:00
adfoster-r7 b3da14e66b Land #14669, ensure selected cracker is available and viable 2021-02-05 16:24:59 +00:00
Shelby Pace 87af571107 Land #14578, add wp abandoned cart sqli 2021-02-04 10:56:12 -06:00
Shelby Pace 4c4df29f25 change vulnerable version number 2021-02-04 10:50:13 -06:00
noncenz f91f6ccbfe Add module Redis extractor 
Add new module and documentation
 2021-02-01 18:36:49 -05:00
Jeffrey Martin 2db217aac8 remove action set no longer required 2021-02-01 14:16:13 -06:00
RAMELLA Sébastien 846f5be936 fix. rubocop -a. 2021-02-01 10:25:18 +04:00
RAMELLA Sébastien f21e3c2386 fix. typo. 2021-02-01 09:55:56 +04:00
k0pak4 d7197d723a Add back in verify=False on service verification 2021-01-29 13:29:26 -05:00
Brian Halbach 93e27b55ab Add user credential reporting to modules/auxiliary/scanner/http/jira_user_enum.rb 
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com>
 2021-01-29 11:16:03 -06:00
Alan Foster 91febcb194 Fix msftidy warnings 2021-01-29 16:19:13 +00:00
Brian Halbach faf275396d Used rubocop to cleanup jira_user_enum.rb 2021-01-28 15:40:03 -06:00
Brian Halbach 9ff9f438be Removed broken credential reporting 
This technically only finds usernames and not full sets of credentials so I removed the credential reporting method call. Instead, I have the module print out the number of users it found followed by a list of those users. I feel this will be more useful to the users.
 2021-01-28 15:30:18 -06:00
Brian Halbach 0c50e0e731 removing commented out options note needed in modules/auxiliary/scanner/http/jira_user_enum.rb 
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com>
 2021-01-27 16:10:59 -06:00
Brian Halbach 737a0db5a6 Removing Options already built into AuthBrute in modules/auxiliary/scanner/http/jira_user_enum.rb 
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com>
 2021-01-27 15:55:51 -06:00
Jeffrey Martin 6f7f1db6f9 ensure selected cracker is available and viable 
When no password cracker is installed `cracker_version` returns `nil`.
Guard against `nil` in the version check and consolidate detection of
a viable environment and application as a responsibility of the factory
that provides the instance.
 2021-01-27 14:28:08 -06:00
Grant Willcox cd1f0780de Fix up a minor typo. 2021-01-27 10:14:52 -06:00
Sebastian Tauchert edde3b8fa2 Hide negative results as default 2021-01-27 15:16:55 +01:00
k0pak4 12586e4f88 Add user_agent variable in order to circumvent systems that rely on particular user agents 2021-01-26 20:38:22 -05:00
k0pak4 b962f410c9 Update module to do service verification by checking for RD Web presence 2021-01-22 15:19:45 -05:00