metasploit-gs

Author	SHA1	Message	Date
C4ssandre	e6cffac948	Function check: changing if os =~ /Server/ to if os.include?('Server') to avoid compiling a regular expression.	2020-11-30 14:23:54 +00:00
C4ssandre	4c317fe359	Applying rubocop to ruby module file.	2020-11-30 14:21:41 +00:00
Jan Bucher	6d6c71bc2a	Fix another typo in the bypassuac_comhijack module	2020-11-26 13:14:36 +01:00
Jan Bucher	9757c68f9b	Fix typo in modules/exploits/windows/local/bypassuac module Correct small typo in the output to the msfconsole.	2020-11-26 12:55:29 +01:00
Spencer McIntyre	d4b2babae1	Report success when leveraging the registry permissions technique	2020-11-24 09:06:13 -05:00
kalba-security	9417266d21	replace Checkcode:Unknown with Detected in check(), skip cleanup unless required	2020-11-23 08:17:44 -05:00
bwatters	810898e97b	Rough attempt at CVE-2020-1337 Non-functional	2020-11-20 17:36:19 -06:00
Spencer McIntyre	1031b12c57	Land #14206 , Rockwell FactoryTalk CVE-2020-12027 RCE	2020-11-20 08:49:39 -05:00
A Galway	5e4e52c619	convert strings to bytes and mandate python3	2020-11-20 12:57:36 +00:00
Spencer McIntyre	cbc5899edf	Add module docs for the Service Permissions LPE module	2020-11-19 14:17:20 -05:00
Spencer McIntyre	9368f4bdf3	Apply rubocop suggestions to the service permissions module	2020-11-19 12:54:16 -05:00
Spencer McIntyre	d1faea5bb7	Add a TargetServiceName option and adjust exception handling	2020-11-19 12:54:16 -05:00
Spencer McIntyre	205a9db8cf	Add the initial registry technique for the service permissions LPE	2020-11-19 12:54:10 -05:00
Spencer McIntyre	a5024238d3	Tweak the check method to return detected and fix a typo	2020-11-19 09:24:27 -05:00
adfoster-r7	2eb2fad212	Land #14294 , Allow adding details to CheckCodes, and update ms17_010_eternalblue to validate the target is x64	2020-11-19 14:09:55 +00:00
Pedro Ribeiro	b56d2e00fe	Update modules/exploits/windows/scada/rockwell_factorytalk_rce.rb Co-authored-by: bcoles <bcoles@gmail.com>	2020-11-19 19:39:59 +07:00
Pedro Ribeiro	c635538e9d	Update modules/exploits/windows/scada/rockwell_factorytalk_rce.rb Co-authored-by: bcoles <bcoles@gmail.com>	2020-11-19 19:39:47 +07:00
Pedro Ribeiro	4c8adcfd46	Update rockwell_factorytalk_rce.rb	2020-11-19 17:56:31 +07:00
William Vu	d3f16c7061	Land #14361 , COOKIE for sharepoint_ssi_viewstate	2020-11-18 15:55:19 -06:00
A Galway	0328e3f815	Land #14359 , gives preference to default target options	2020-11-13 14:44:13 +00:00
Alan Foster	79a3328cd3	Validate that AutoCheck is prepended	2020-11-11 22:15:40 +00:00
chmod750	5ec0556abd	Update modules/exploits/windows/http/sharepoint_ssi_viewstate.rb CamelCase update Co-authored-by: wvu-r7 <wvu-r7@users.noreply.github.com>	2020-11-06 23:26:40 +01:00
chmod750	7a968fcd39	Update modules/exploits/windows/http/sharepoint_ssi_viewstate.rb CamelCase update Co-authored-by: wvu-r7 <wvu-r7@users.noreply.github.com>	2020-11-06 23:20:12 +01:00
chmod750	22b0fae73c	Update sharepoint_ssi_viewstate.rb	2020-11-06 16:40:16 +01:00
chmod750	8356b44892	Add cookie header functionnality	2020-11-06 16:16:59 +01:00
Alan Foster	5b438fd933	Preference target values when registering options	2020-11-05 23:16:37 +00:00
kalba-security	31237258e5	Add Rubocop changes	2020-11-05 07:27:51 -05:00
kalba-security	0a9589166f	Add CVE ID	2020-11-05 06:55:37 -05:00
kalba-security	ea70c15b56	Implement suggestions from code review	2020-11-04 09:49:27 -05:00
kalba-security	8aceea1872	Add flexdotnetcms_upload_exec module and docs	2020-11-03 09:50:28 -05:00
C4ssandre	33fa947c72	Improving syntax and code style.	2020-10-28 22:48:01 +00:00
C4ssandre	7364758017	Implementing AutoCheck mixin.	2020-10-28 22:43:08 +00:00
C4ssandre	ad74428f6b	Change in order to make sure we get the right notepad executed. Change in response to https://github.com/rapid7/metasploit-framework/pull/14046#pullrequestreview-481887070	2020-10-28 21:55:12 +00:00
C4ssandre	b36f06178a	Fixing some syntax errors.	2020-10-28 18:50:00 +00:00
Che5hireC4t	e4272e3c88	Adding metadata to ruby module.	2020-10-28 19:02:15 +01:00
Alan Foster	902297d199	Add service stub encoder validation	2020-10-27 15:27:24 +00:00
C4ssandre	7ec20cfb0e	Integration of powershell module into exploit. Now, metasploit is in charge of creating the powershell payload and transmit it to running exploit (instead of raw shellcode transformed into powershell previously).	2020-10-25 19:50:45 +00:00
Brendan Coles	6258d5b561	Land #14296 , Move mercury_login module docs to documentation directory	2020-10-22 13:24:54 +00:00
Spencer McIntyre	3dc232aa9a	Land #14289 , Add version check to exploit/windows/http/exchange_ecp_dlp_policy	2020-10-21 17:52:38 -04:00
h00die	5890bc45b5	move docs out of exploits folder	2020-10-21 16:37:02 -04:00
Spencer McIntyre	50a479e675	Alter how the check code details are handled for compatibility	2020-10-21 16:30:00 -04:00
Spencer McIntyre	2077f241c1	Support and use CheckCode details to share relevant information Modules that can be used as check modules should be able to share information with their exploit counterpart.	2020-10-21 16:29:31 -04:00
adfoster-r7	a362b6785d	Land #14290 , set pid to nil for MS17-010 SMB1 clients	2020-10-21 16:20:08 +01:00
Spencer McIntyre	b457191eaa	Set pid to nil for MS17-010 SMB1 clients	2020-10-20 17:09:51 -04:00
William Vu	e4fb76d74f	Add version check to exchange_ecp_dlp_policy And update modules/exploits/windows/http/sharepoint_ssi_viewstate.rb.	2020-10-20 14:32:43 -05:00
William Vu	3970b69734	Land #14229 , Telerik UI for ASP.NET AJAX exploit CVE-2017-11317 && CVE-2019-18935	2020-10-20 13:24:35 -05:00
Spencer McIntyre	b58ed7f909	Update the Telerik RAU module metadata and add the TARGETURI option	2020-10-20 13:48:59 -04:00
Spencer McIntyre	57aef4367c	Adjust the exploit timeout and set the default RPORT for Telerik RAU	2020-10-19 19:31:14 -04:00
William Vu	253928570b	Update module doc	2020-10-19 11:18:00 -05:00
Spencer McIntyre	0f344b0661	Land #14265 , Add SharePoint Server-Side Include (SSI) and ViewState RCE (CVE-2020-16952)	2020-10-19 10:27:58 -04:00

... 17 18 19 20 21 ...

7658 Commits