adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

18316 Commits

Author SHA1 Message Date
Spencer McIntyre 3dc232aa9a Land #14289, Add version check to exploit/windows/http/exchange_ecp_dlp_policy 2020-10-21 17:52:38 -04:00
h00die 5890bc45b5 move docs out of exploits folder 2020-10-21 16:37:02 -04:00
Spencer McIntyre 50a479e675 Alter how the check code details are handled for compatibility 2020-10-21 16:30:00 -04:00
Spencer McIntyre 2077f241c1 Support and use CheckCode details to share relevant information 
Modules that can be used as check modules should be able to share
information with their exploit counterpart.
 2020-10-21 16:29:31 -04:00
adfoster-r7 a362b6785d Land #14290, set pid to nil for MS17-010 SMB1 clients 2020-10-21 16:20:08 +01:00
Spencer McIntyre b457191eaa Set pid to nil for MS17-010 SMB1 clients 2020-10-20 17:09:51 -04:00
William Vu e4fb76d74f Add version check to exchange_ecp_dlp_policy 
And update modules/exploits/windows/http/sharepoint_ssi_viewstate.rb.
 2020-10-20 14:32:43 -05:00
William Vu 3970b69734 Land #14229, Telerik UI for ASP.NET AJAX exploit 
CVE-2017-11317 && CVE-2019-18935
 2020-10-20 13:24:35 -05:00
Spencer McIntyre b58ed7f909 Update the Telerik RAU module metadata and add the TARGETURI option 2020-10-20 13:48:59 -04:00
Spencer McIntyre 57aef4367c Adjust the exploit timeout and set the default RPORT for Telerik RAU 2020-10-19 19:31:14 -04:00
bwatters 1e568a6d1b Merge branch 'land-14179' into upstream-master 2020-10-19 15:55:25 -05:00
William Vu 253928570b Update module doc 2020-10-19 11:18:00 -05:00
Spencer McIntyre 0f344b0661 Land #14265, Add SharePoint Server-Side Include (SSI) and ViewState RCE (CVE-2020-16952) 2020-10-19 10:27:58 -04:00
Spencer McIntyre a05f8a721b Print what the web.config loot path is 2020-10-19 10:27:41 -04:00
William Vu 4cb08f7426 Address outstanding issues 2020-10-15 13:24:08 -05:00
Grant Willcox 849dbeca5c Fix up bad merge commit 2020-10-15 11:53:39 -05:00
ide0x90 d6a91f8965 Remove some unnecessary comments 2020-10-16 00:34:12 +08:00
ide0x90 8d02a1a4c6 Use Rex::MIME for building MIME message 2020-10-16 00:26:10 +08:00
Tim W 87104a7236 Update docs and make them msftidy_docs.rb compliant 2020-10-15 10:59:46 -05:00
Grant Willcox 59f74438da Rename the LPE exploit to a more appropriate name since their could be future bugs in NtUserMessageCall and also update the description info a bit more 2020-10-15 10:59:44 -05:00
Grant Willcox 7c08a42401 Revamp the check method so that it will check across a lot more versions of Windows and provide full coverage for CVE-2019-1458 2020-10-15 10:59:44 -05:00
Grant Willcox f2899186e4 Add in first round of initial updates to fix review comments 2020-10-15 10:59:40 -05:00
Tim W dcc322436b Update documentation files and module description to more accurately describe what the cause of the LPE bug for CVE-2019-1458 is. also apply RuboCop edits. 2020-10-15 10:58:58 -05:00
Tim W c38064b022 Apply rubocop edits and update documentation 2020-10-15 10:58:38 -05:00
Tim W a3772d43d4 set InitialAutoRunScript to post/windows/manage/priv_migrate 2020-10-15 10:58:08 -05:00
Tim W cf5ca76b5e fix check function 2020-10-15 10:58:07 -05:00
Tim W 12c5f4f916 CVE-2019-1458 chrome sandbox escape initial commit 2020-10-15 10:57:46 -05:00
ide0x90 8d43fa4848 Module can now use mkfile+put method to exploit vulnerability. 2020-10-15 17:46:40 +08:00
William Vu 1a341ae931 Add SharePoint SSI and ViewState RCE 
CVE-2020-16952
 2020-10-14 17:45:15 -05:00
Graeme Robinson a8341d72ae skip cleanup when using check method 2020-10-14 17:17:09 +01:00
Graeme Robinson 97f9c67ff1 Use class's cleanup method 2020-10-14 16:25:42 +01:00
Graeme Robinson f6b5053666 Add exploit/multi/http/kong_gateway_admin_api_rce 2020-10-13 16:56:34 +01:00
ide0x90 b9df68cbb6 Fix module according to Rubocop, make documentation follow standard. 2020-10-11 19:04:06 +08:00
stasinopoulos e8823e2630 Minor update 2020-10-11 10:38:58 +03:00
youkergav c855857506 Cleaned up more code 2020-10-11 02:26:02 -04:00
ide0x90 57b0f30e37 Add new module for WordPress File Manager unauth RCE (CVE-2020-25213) 2020-10-11 01:20:28 +08:00
stasinopoulos 361d16b860 Added fail_with and removed redundant else after return. 2020-10-10 19:25:28 +03:00
Anastasios Stasinopoulos 84908108fa Update modules/exploits/unix/webapp/openmediavault_rpc_rce.rb 
Co-authored-by: bcoles <bcoles@gmail.com>
 2020-10-10 18:59:03 +03:00
youkergav 1cba6080cd Cleaned up code 2020-10-09 22:04:26 -04:00
youkergav d623d85040 Added AutoCheck mixin 2020-10-09 19:45:28 -04:00
stasinopoulos a3fac9619c Minor updates 2020-10-09 16:32:44 +03:00
stasinopoulos 9338f9ca4c Updates regarding the logic surrounding login and check 2020-10-09 14:07:22 +03:00
youkergav a59558f03c Made password optional parameter 2020-10-09 06:33:57 -04:00
youkergav 5726db44d0 Bug fixed 2020-10-09 06:01:25 -04:00
youkergav 583e77db60 Cleaned up code 2020-10-09 05:38:54 -04:00
Anastasios Stasinopoulos 51fef32684 Update modules/exploits/unix/webapp/openmediavault_rpc_rce.rb 
Co-authored-by: bcoles <bcoles@gmail.com>
 2020-10-09 12:29:16 +03:00
Anastasios Stasinopoulos 5184241315 Update modules/exploits/unix/webapp/openmediavault_rpc_rce.rb 
Co-authored-by: bcoles <bcoles@gmail.com>
 2020-10-09 12:29:08 +03:00
youkergav 263b6bc070 Merge branch 'master' of github.com:rapid7/metasploit-framework into su_login 2020-10-09 05:26:48 -04:00
stasinopoulos 9fc9b51c0f Multiple fixes and updates 2020-10-09 11:56:11 +03:00
youkergav 23c6c415eb Added python alternative and check function 2020-10-09 03:58:55 -04:00