5cd8abe3df
Initial attempts to add a check method
2020-06-10 20:37:20 -05:00
aec1f77b70
wip
2020-06-10 20:42:22 -04:00
276eacccbc
Add AttackerKB assessment link
2020-06-10 11:02:57 -05:00
f0388a4e39
Minor info update to trigger a rebuild and reword some stuff
2020-06-10 11:02:57 -05:00
94b27ce582
Fix up DisclosureDate formatting
2020-06-10 11:02:56 -05:00
e6b07556f7
Fix up Rubocop errors and some spacing fixes
2020-06-10 11:02:56 -05:00
773e63f286
Fix a bug which would prevent allowing support for wow64 targets unless the WindowsCoreDeviceInfo.dll file already existed on the system
2020-06-10 11:02:56 -05:00
7753c41fe0
Remove more duplicate code and further optimize some things
2020-06-10 11:02:55 -05:00
2485153263
Remove some duplicate and redundant code
2020-06-10 11:02:55 -05:00
f87ebb71dc
More updates to fix @wvu's suggestions
2020-06-10 11:02:55 -05:00
b73da5979b
Apply some fixes from wvu's review
2020-06-10 11:02:54 -05:00
60d9d0e2a7
Add note to user that they may have to clean up one of the DLLs as it may sometimes not be cleaned up.
2020-06-10 11:02:54 -05:00
7711cecee9
Final tweaks to make this more reliable, should be good now
2020-06-10 11:02:53 -05:00
4a9c878132
Finally fix up the hanging issue via new template DLLs and associated code
2020-06-10 11:02:53 -05:00
2c4f9d34ad
Rubocop module again
2020-06-10 11:02:52 -05:00
24a5774ff2
Fix spelling mistake in DLL name
2020-06-10 11:02:52 -05:00
cb20eaf6f9
Finally fix the issue with the cleanup of the files within the exploit
2020-06-10 11:02:51 -05:00
401feb3e53
Change code so that we automatically exit Notepad upon DLL completing its work. Should help tidy things up more
2020-06-10 11:02:50 -05:00
cf17b2065c
Updated module with some output corrections, recompiled DLLs
2020-06-10 11:02:50 -05:00
ae2b40bf99
Update the output of the module to be more correct. Also upload updated DLLs
2020-06-10 11:02:49 -05:00
77791b6120
Update modules description with a simple explanation of what is going on. Add links to explain USODLLLoader code.
2020-06-10 11:02:49 -05:00
fb10178701
Add in BITS configurable wait timer and Windows 10 specific target check
2020-06-10 11:02:48 -05:00
1607b8c342
Add initial files for CVE-2020-0787
2020-06-10 11:02:35 -05:00
e48a02ce82
Land #13589 , Fix edge case in rubocop module description rule
...
Merge branch 'land-13589' into upstream-master
2020-06-10 07:55:13 -05:00
6007e13379
Fix edgecase in rubocop module description rule
2020-06-10 12:11:49 +01:00
e669d5d78d
Unf*ck the RuboCop Description formatting
2020-06-09 18:30:33 -05:00
9f538848c4
RuboCop autofix cve_2020_0668_service_tracing
2020-06-09 18:22:42 -05:00
b5c90ea20c
xpost working
2020-06-09 13:07:00 -04:00
9f2a29d4fe
Update last batch of modules
2020-06-09 14:18:52 +02:00
a9a1d01419
Update some libraries and modules
2020-06-09 14:18:52 +02:00
0bb93b4efb
Update modules
...
- ms17_010_command and ms17_010_psexec: deregister
SMB::ProtocolVersion option
- client: update error handling
- is_known_pipename: force SMB1 only for #enumerate_directories and
update error handling
2020-06-09 14:18:52 +02:00
2f873fefcd
Update modules
...
- modules/auxiliary/scanner/smb/smb_enumshares.rb
- modules/exploits/linux/samba/setinfopolicy_heap.rb
- modules/exploits/linux/samba/trans2open.rb
- modules/exploits/multi/samba/usermap_script.rb
- modules/exploits/windows/smb/ipass_pipe_exec.rb
2020-06-09 14:18:52 +02:00
31a117f8f7
Update modules
...
- smb_ms17_010.rb
- psexec_ms17_010.rb
- psexec_psh.rb
- smb_enumshares.rb
2020-06-09 14:18:52 +02:00
360d38018c
Update exploit/windows/smb/psexec
2020-06-09 14:18:51 +02:00
79e52d1d4c
Fix ms17_010_eternalblue
2020-06-09 14:18:51 +02:00
695accbb44
update deprecation notice to have a reason
2020-06-08 23:07:01 +01:00
5c0d9203c9
Deprecate the psexec_psh module
2020-06-08 13:29:10 -04:00
b5f41636b1
Land #13488 , Fix memory leak in ms01_026_dbldecode
2020-05-28 10:23:10 +01:00
ad05cf7870
Update TinyIdentD 2.2 Stack Buffer Overflow module
2020-05-23 04:43:44 +00:00
d6aea635c7
Update authors in Netsweeper/myLittleAdmin modules
...
Edits for accuracy and precision.
2020-05-22 17:05:12 -05:00
afe7ef5d9a
Bump WfsDelay for first exploit attempt
2020-05-22 09:32:22 -05:00
e471efa399
Whitelist :certutil and :vbs CmdStagers
...
These worked for @smcintyre-r7 on Windows Server 2019.
2020-05-22 09:24:16 -05:00
16886fa41e
Move generate_viewstate_payload to mixin
2020-05-21 18:37:13 -05:00
d1a07e9403
Use ViewState mixin in module
2020-05-21 18:37:13 -05:00
11030dff84
Add CVE references (they weren't there before)
2020-05-21 18:12:57 -05:00
889a4cd6e0
Add Plesk/myLittleAdmin ViewState deserialization
2020-05-21 18:12:57 -05:00
12d4ad68e3
Fix things in ThinkPHP and ManageEngine exploits
...
Current pattern is print_good instead of vprint_good for this particular
message directly or indirectly called by execute_command.
CmdStagerFlavor is checked at the top level, but it is also checked per
target. Moving this to where it's more appropriate.
2020-05-20 22:47:03 -05:00
655088bb0d
Fix punctuation typo in exchange_ecp_viewstate
2020-05-20 09:47:11 -05:00
bfe47302cf
Fix memory leak in ms01_026_dbldecode
2020-05-20 00:48:26 +01:00
5508bda29e
Moved module into exploit/windows/local. Added documentation.
2020-05-18 17:09:10 -04:00
gwillcox-r7