adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

11360 Commits

Author SHA1 Message Date
Shelby Pace ef3545d620 rubocop module 2020-07-09 09:26:39 -05:00
Patrick 78c5d57a32 Added output of build information as replacement for the missing version info 2020-07-09 09:28:35 +02:00
William Vu 398c13a1b2 Add Mikhail Klyuchnikov's writeup as a reference 2020-07-08 14:36:42 -05:00
William Vu ee240393f4 Credit Mikhail Klyuchnikov for CVE-2019-19781 2020-07-08 14:35:16 -05:00
Patrick 9b57c5347e Refactoring based on suggestions by bcoles 2020-07-08 16:37:14 +02:00
Patrick 75dde9551d Added suggestions of msftidy 2020-07-08 14:24:34 +02:00
Patrick 2e96990714 Refactored checking method 2020-07-08 14:22:50 +02:00
Patrick 517180e8d8 Integrated reporting to database 2020-07-08 13:15:28 +02:00
Patrick b4e7815d80 added more suggestions by space-r7 2020-07-07 12:06:40 +02:00
Patrick 361df36f33 Apply suggestions from code review by space-r7 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2020-07-07 10:56:27 +02:00
Shelby Pace a2309f018e Land #13740, add springcloud dir traversal 2020-07-06 09:48:40 -05:00
Shelby Pace 224005ee7a Remove trailing comma 2020-07-06 09:47:58 -05:00
Spencer McIntyre 700d2ff819 Fix the SMB share for the psexec command target 2020-07-06 10:36:25 -04:00
Spencer McIntyre 9dc02229e9 Support ARCH_CMD payloads in the psexec exploit module 2020-07-06 10:33:03 -04:00
Dhiraj Mishra fc018a9410 Update springcloud_directory_traversal.rb 
use gsub for slashes in traversal path
 2020-07-02 10:15:09 +04:00
gwillcox-r7 fdfef2729f Update documentation and modules to better list the range of versions affected now that we know which versions we can target and the CVE IDs. Also update the firmware links to archive.org links in case they ever get removed which is more common than you think 2020-07-01 13:28:46 -05:00
gwillcox-r7 ddb41d5a50 Update module and documentation with new output from the exploit 2020-07-01 13:28:32 -05:00
gwillcox-r7 3db867e5eb Futher updates to the module documentation since technically this module doesn't send the packet to UDP port 23 to enable the telnet server. 2020-07-01 13:28:15 -05:00
gwillcox-r7 d1e66c9d9f Add in rest of the fixes from my updates to the code 2020-07-01 13:27:58 -05:00
gwillcox-r7 79794b32ae Add in update to denote the timeout and MAC options in the telnetenable module in case this helps fix people's issues. 2020-07-01 13:27:56 -05:00
gwillcox-r7 37f2eb8e9d Fix up Failure::UNKNOWN check within get_offset() 2020-07-01 13:27:56 -05:00
Radek Domanski 1e520f27e9 Updating md as per comments 2020-07-01 13:27:32 -05:00
Radek Domanski 4b29b76f0b Adding URLs 2020-07-01 13:27:17 -05:00
Radek Domanski 4a62d473a0 Commit initial files 2020-07-01 13:26:42 -05:00
Spencer McIntyre 53f6dbdf90 Add a missing exception class to the rescue statement 2020-07-01 09:13:01 -04:00
Dhiraj Mishra da9d694599 Update springcloud_directory_traversal.rb 
Thank you Shelby.
 2020-07-01 15:44:43 +04:00
Dhiraj Mishra 4fc361c091 Update and rename springcloud_traversal2.rb to springcloud_directory_traversal.rb 2020-07-01 15:15:32 +04:00
Niboucha Redouane 0680113288 get rid of database parameter in MySQLi methods 2020-06-30 18:49:13 +02:00
Spencer McIntyre f05ffbe576 Scan SMB versions in descending order for efficiency 2020-06-29 12:08:13 -04:00
Spencer McIntyre 04219e3d87 Catch RubySMB errors when authenticating in smb_version 2020-06-29 11:37:14 -04:00
Niboucha Redouane 2c4ca04dca Rename the factory method for SQLi classes, and add a check on the class to instanciate 2020-06-27 14:51:54 +02:00
Spencer McIntyre 42aa479ef2 Log the authentication domain when using RubySMB 2020-06-26 18:07:45 -04:00
Spencer McIntyre 71be2bbe67 Fix status updates and rport in the smb_version scanner 2020-06-26 17:30:15 -04:00
Jeffrey Martin aa6c037dbd refactor mixin as factory for sqli classes 2020-06-26 15:09:01 -05:00
Pedro Ribeiro 0af3b57013 Update ibm_drm_download.rb 2020-06-26 11:38:29 +07:00
Pedro Ribeiro b42f99b652 Add IBM links to download module 2020-06-26 11:24:12 +07:00
Patrick a17b881c96 added more vulnerable versions 2020-06-25 18:34:23 +02:00
Spencer McIntyre a242309e1d Add deprecation reasons to the smb1 and smb2 scanners 2020-06-25 12:18:30 -04:00
Antoine Neuenschwander 071fa300a7 Apply suggestions from code review 
Rename option in `CamelCase`

Co-authored-by: acammack-r7 <adam_cammack@rapid7.com>
 2020-06-25 17:19:41 +02:00
Patrick e8a476e845 added CVE reference 2020-06-25 13:21:59 +02:00
Patrick 8e98db193f added link to exploit 2020-06-25 13:10:15 +02:00
Patrick 59711e3bff added scanner module for fortimail login bypass 2020-06-25 10:28:17 +02:00
Spencer McIntyre 9d1d58a643 Implement code changes suggested by rubocop 2020-06-24 16:25:06 -04:00
Spencer McIntyre 3d717bd43b Defer status updates to group host lines together 2020-06-24 16:25:06 -04:00
Spencer McIntyre d1a1ced5ff Update the smb_version module documentation 2020-06-24 16:25:06 -04:00
Spencer McIntyre efef28912f Report the server uptime, GUID and capabilities in smb_version 2020-06-24 16:24:40 -04:00
Spencer McIntyre 7ec56964cd First commit of the smb_version module enhancements 2020-06-24 16:24:32 -04:00
antoinet b95c02aa2a Add optional baseline for http response time 
A new advanced option BASELINE_AUTH_TIME allows to specify a basline
for http authentication response timess to discriminate valid/invalid
OWA users.
 2020-06-23 22:08:56 +00:00
adfoster-r7 fceb96e659 Land #13608, update elog calls to be consistent across 2020-06-23 09:47:01 +01:00
Adam Galway 1a2bf98222 creates standard elog & updates exisiting usages 2020-06-22 12:48:39 +01:00