adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

11360 Commits

Author SHA1 Message Date
debifrank 33524c0cbf Create cisco_7937g_ssh_privesc.py 2020-08-21 13:40:53 -04:00
adfoster-r7 5a26aa602e Land #14014, improve squid_pivot_scanning's handling of http response codes 2020-08-21 18:39:05 +01:00
Brendan Coles 37a06756cc telpho10_credential_dump: Prevent traveral in untar 2020-08-21 15:30:55 +00:00
Shelby Pace 5bcdaa50d6 Land #13984, add cisco 7937g dos module 2020-08-21 09:21:46 -05:00
Shelby Pace e74a8f38e9 misaligned except statement 2020-08-21 09:01:45 -05:00
0x44434241 178bc3fe50 Serve the public trust. Protect the innocent. Tell noobs to delete necessary parameters. Uphold the law. 2020-08-21 08:47:05 +09:00
0x44434241 935403d937 Applying rubocop suggestions. 2020-08-21 08:35:20 +09:00
0x44434241 06cbf9a86c Applying suggested fixes. 2020-08-21 08:20:21 +09:00
h00die c8a541c187 pre rubocop 2020-08-20 14:27:51 -04:00
Shelby Pace 86dbac3466 add a space to author field 2020-08-20 10:52:39 -05:00
h00die 3326d86db7 review comments 2020-08-20 10:26:13 -05:00
h00die 43fabcad53 arista 2020-08-20 10:25:08 -05:00
0x44434241 02e6e3feda Adding documentation for auxiliary/scanner/http/squid_pivot_scanning. 2020-08-20 17:41:03 +09:00
Christophe De La Fuente f05f2b1846 Land #13989, TeamViewer URI SMB exploit (CVE-2020-13699) 2020-08-19 11:08:40 +02:00
h00die 28338ace57 review comments 2020-08-18 13:45:28 -04:00
0x44434241 d50ed2eb37 Better handling of Squid HTTP response codes. 
The previous version has a bug where HTTP codes that are not [200, 401, 404],
or the word "Zero" is not included in the response body(??), the valid open
port is not printed to the user. This patch fixes that and improves outut.

This commit improves the resilience of this module by looking at the HTTP
response header 'X-Squid-Error', which has static strings from an enum struct
documented here: http://www.squid-cache.org/Doc/code/err__type_8h.html

If the client receives an error from Squid that is not handled, the error type
will now also be printed for the user (eg: ERR_READ_TIMEOUT).

Previously, the module would also output (almost) every IP:PORT pair, even when
they are closed or forbidden by Squid ACL. This has been moved to be a verbose
option, so that non-verbose port-scanning prints a significantly shorter list
for human consumption.

As (among others) HTTP 3xx redirects were not previously displayed to users,
the redirect location is now also printed in the output. The server header is
printed for all open ports where available, and stored in the database.
 2020-08-18 12:57:18 +09:00
debifrank c19836b7d5 Rename cisco_7937G_DoS.py to cisco_7937g_dos.py 2020-08-17 20:24:34 -04:00
debifrank cfea0db83c Rename cve_2020_16139.py to cisco_7937g_dos_reboot.py 2020-08-17 20:24:17 -04:00
debifrank 9906c931a2 Rename cve_2020_16138.py to cisco_7937G_DoS.py 2020-08-17 20:21:33 -04:00
Christophe De La Fuente 4e7a609976 Merge remote-tracking branch 'upstream/master' into windows_secretsdump 2020-08-17 15:05:49 +02:00
debifrank 7eba463769 Update cve_2020_16138.py 2020-08-14 17:39:24 -04:00
debifrank 1e50ca7d30 Update cve_2020_16139.py 2020-08-14 17:36:43 -04:00
debifrank 9d3da31411 Update cve_2020_16139.py 
catch unintended request exceptions
 2020-08-14 16:18:47 -04:00
William Vu a6f7c0c0de Backport miscellaneous fixes to my modules 2020-08-14 13:40:23 -05:00
debifrank 921e3142c5 Add files via upload 2020-08-14 12:48:08 -04:00
debifrank ae065530f1 Delete CVE-2020-16138.py 2020-08-14 12:47:55 -04:00
debifrank 7d125c9741 Add files via upload 2020-08-14 12:16:52 -04:00
debifrank ffa23ba850 Delete CVE-2020-16139.py 2020-08-14 12:16:22 -04:00
Christophe De La Fuente 1f9fb97c4e Some fixes and improvements after testing against older Windows 2020-08-13 17:47:51 +02:00
Christophe De La Fuente 86656b77ee Add reporting and fix some encoding issues 2020-08-13 17:47:50 +02:00
Christophe De La Fuente cd65d69cd9 Cleanup module 2020-08-13 17:47:50 +02:00
Christophe De La Fuente 0e0690276f Add Windows Secrets Dump module 2020-08-13 17:47:50 +02:00
h00die 55d1efc18b missed one 2020-08-13 10:45:55 -04:00
h00die c9f39def13 review comment 2020-08-13 10:44:57 -04:00
debifrank d1afe60262 Add files via upload 
Linted with autopep8
 2020-08-13 09:52:21 -04:00
debifrank dada2abaad Delete CVE-2020-16139.py 
Linting
 2020-08-13 09:52:04 -04:00
debifrank a21907fcc6 Add files via upload 
Linted with autopep8
 2020-08-13 09:51:24 -04:00
debifrank 4434e37a09 Delete CVE-2020-16138.py 
linting
 2020-08-13 09:51:03 -04:00
h00die 16c95c4e85 teamviewer exploit 2020-08-12 19:59:00 -04:00
gwillcox-r7 bdad038e70 Land #13959, Add a login scanner for Jupyter Notebooks 2020-08-12 13:21:21 -05:00
debifrank 884b0ec897 Update CVE-2020-16139.py 
Removed jest, included more useful information
 2020-08-12 11:25:32 -04:00
debifrank a77931c479 Update CVE-2020-16139.py 2020-08-11 10:51:58 -04:00
debifrank 70fc0b3375 Update CVE-2020-16138.py 2020-08-11 10:41:58 -04:00
debifrank a17d29b6a2 CVE-2020-16138 
Targets the Cisco Unified IP Conference Station 7937G vulnerability CVE-2020-16138 causing a DoS condition.
 2020-08-11 10:40:15 -04:00
debifrank 78a7e8ae96 Update CVE-2020-16139.py 2020-08-11 10:32:37 -04:00
debifrank 18fdbfd917 Update CVE-2020-16139.py 2020-08-11 10:30:29 -04:00
debifrank 16a00ea338 Cisco 7937G DoS Reset Attack 
Python module for metasploit that targets the Cisco 7937G Conference Station and vulnerability CVE-2020-16139
 2020-08-11 10:29:28 -04:00
Robin 92e0522524 Fixes for bug #13956 2020-08-10 16:31:11 +01:00
Spencer McIntyre c57391501a Fix typos and clarify documentation for jupyter_login 2020-08-10 09:47:59 -04:00
Spencer McIntyre 07ab8b294f Land #13957, allow dns server on different port 2020-08-07 16:15:17 -04:00