adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

11360 Commits

Author SHA1 Message Date
h00die 4d36c2ef79 move aux/admin to netowrking 2020-06-22 06:11:11 -04:00
h00die ca3aabd5f6 move docs and cisco_config 2020-06-21 17:35:38 -04:00
h00die ef2bf10b50 aux admin to networking and rubocop 2020-06-21 16:41:11 -04:00
h00die c61857be96 off to false 2020-06-21 16:21:40 -04:00
Niboucha Redouane 5100f14b6d revert : use interpolation instead of concatenation 
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com>
 2020-06-19 23:31:23 +02:00
Dhiraj Mishra dd616ca4cb Update springcloud_traversal2.rb 2020-06-20 00:03:49 +04:00
Dhiraj Mishra d2677bd4fc springcloud_traversal2 2020-06-19 23:50:17 +04:00
Niboucha Redouane 305dbe9e2f refactor structure, get rid of prefix and suffix 2020-06-18 17:21:10 +02:00
h00die 17bef31bc6 check shodan API key 2020-06-17 14:22:07 -04:00
Niboucha Redouane 083d986dce Undo formatting changes to existing modules 2020-06-11 19:15:17 +02:00
Niboucha Redouane ecb1a0bb16 add test_vulnerable to MySQLi class, and fix minor issues with the test modules 2020-06-10 21:59:51 +02:00
William Vu b90acd3ad2 Clean up module and documentation 2020-06-10 14:41:09 -05:00
Niboucha Redouane 12681b0746 Add support for encodings to exfiltrate data containing bad characters/multibyte characters 2020-06-10 21:40:22 +02:00
William Vu 85b2964eb6 Merge remote-tracking branch 'upstream/master' into pr/13534 2020-06-10 13:05:04 -05:00
Alan Foster 6007e13379 Fix edgecase in rubocop module description rule 2020-06-10 12:11:49 +01:00
Niboucha Redouane 0f936f7500 Various fixes and enhancements 2020-06-09 23:43:15 +02:00
Niboucha Redouane f1d3b33099 Merge branch 'master' of https://github.com/rapid7/metasploit-framework into GSOC/SQLi_Engine 2020-06-09 21:15:18 +02:00
Christophe De La Fuente 98ac51dd5d Improvements from code review 2020-06-09 14:18:52 +02:00
Christophe De La Fuente cfc7c48333 Update auxiliary/admin/smb/delete_file module 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 9f2a29d4fe Update last batch of modules 2020-06-09 14:18:52 +02:00
Christophe De La Fuente a9a1d01419 Update some libraries and modules 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 0bb93b4efb Update modules 
- ms17_010_command  and ms17_010_psexec: deregister
  SMB::ProtocolVersion option
- client: update error handling
- is_known_pipename: force SMB1 only for #enumerate_directories and
  update error handling
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 2f873fefcd Update modules 
- modules/auxiliary/scanner/smb/smb_enumshares.rb
- modules/exploits/linux/samba/setinfopolicy_heap.rb
- modules/exploits/linux/samba/trans2open.rb
- modules/exploits/multi/samba/usermap_script.rb
- modules/exploits/windows/smb/ipass_pipe_exec.rb
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 31a117f8f7 Update modules 
- smb_ms17_010.rb
- psexec_ms17_010.rb
- psexec_psh.rb
- smb_enumshares.rb
 2020-06-09 14:18:52 +02:00
Adam Galway 9c6781aefb Land #13579, updates iis_internal_ip module info 2020-06-09 12:08:27 +01:00
Adam Galway 16425ba4f9 Land #13468, memcahed extractor now works with LRU 2020-06-09 11:12:54 +01:00
h00die 482c4eb247 rubocop iis_internal_ip 2020-06-08 20:25:56 -04:00
h00die 04439e4eb0 more iis internal ip info 2020-06-08 20:24:07 -04:00
h00die 02bcd0e3c6 rubocop 2020-06-06 10:30:43 -04:00
h00die 1602d7e975 iis internal ip update 2020-06-06 10:19:29 -04:00
Niboucha Redouane 4654941092 add test modules 2020-06-05 22:11:27 +02:00
dwelch-r7 b0bec9c3aa Land #13540, Replace OptString with OptPort for RPORT 2020-06-04 13:01:22 +01:00
William Vu 464c157ee1 Land #13553, vbulletin_getindexablecontent* fixes 2020-06-03 19:31:18 -05:00
Zenofex 8f587e4c6f A user reported that the CVE-2020-12720 modules were not properly handling cases where a table prefix was not used, this guard clauses was redundant in that the one inside the get_table_prefix method is already checking the result of the SQL injection performed. 2020-06-02 19:16:35 -05:00
Spencer McIntyre c7c23a72b1 Land #13512, Add vbulletin_getindexablecontent exploit and auxillary modules 2020-06-01 18:03:08 -04:00
Niboucha Redouane a3d6159374 Fix credential collection in qnap_lfi 2020-05-31 18:50:26 +02:00
cn-kali-team 1b796aa50b OptString to OptPort 2020-05-30 10:27:48 +08:00
noncenz a496680af9 Avoid crash for cachedump method 
Guard against potential crash when cachedump extraction method
is used and no keys are in cache
 2020-05-29 22:55:39 +00:00
noncenz d450f74b6b Fix crash when cache is empty 
Fix crash when a valid cache is found with no data stored.
 2020-05-29 22:01:59 +00:00
William Vu f60e569c1b Add Cisco CML and VIRL-PE advisory to Salt modules 
Hat tip @brudis-r7!
 2020-05-29 15:24:00 -05:00
Zenofex 7bf2a802b1 Check for existance of res in guard clauses through getindexablecontent exploit and aux module. 2020-05-28 20:00:19 -05:00
Niboucha Redouane 45c0b3fcc0 Fix formatting of the documentation, and the qnap_lfi module 2020-05-29 01:40:43 +02:00
Niboucha Redouane fd2b63f8b2 Add parenthesis in method calls 2020-05-28 23:00:14 +02:00
Niboucha Redouane 7a32ccdb18 Fix code formatting, and other minor issues 2020-05-28 22:31:51 +02:00
Niboucha Redouane 0496e2d00d update References 2020-05-28 22:09:11 +02:00
Niboucha Redouane faebda4a19 Update qnap_lfi, and add module documentation 2020-05-28 22:06:19 +02:00
Niboucha Redouane ab63b05a2a Add the QNAP LFI module, CVE-2019–7192 2020-05-28 21:11:42 +02:00
Zenofex e5dcb2e23c Switch to use res.get_json_document from JSON.parse and more cleanup. 2020-05-28 11:16:44 -05:00
Zenofex b8e8606977 Added actions to module for dumpuser/dumpall option (and removed module option) plus misc syntax formatting. 2020-05-28 10:13:18 -05:00
William Vu 924a8b8297 Fix incorrect title in auxiliary/dos/dns/bind_tsig 
Copypasta. I missed this in f9a2c3406f86469190222ac52dc57556f472e6c9...
for nearly three damn years.
 2020-05-27 21:47:37 -05:00