adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

18316 Commits

Author SHA1 Message Date
gwillcox-r7 2485153263 Remove some duplicate and redundant code 2020-06-10 11:02:55 -05:00
gwillcox-r7 f87ebb71dc More updates to fix @wvu's suggestions 2020-06-10 11:02:55 -05:00
gwillcox-r7 b73da5979b Apply some fixes from wvu's review 2020-06-10 11:02:54 -05:00
gwillcox-r7 60d9d0e2a7 Add note to user that they may have to clean up one of the DLLs as it may sometimes not be cleaned up. 2020-06-10 11:02:54 -05:00
gwillcox-r7 7711cecee9 Final tweaks to make this more reliable, should be good now 2020-06-10 11:02:53 -05:00
gwillcox-r7 4a9c878132 Finally fix up the hanging issue via new template DLLs and associated code 2020-06-10 11:02:53 -05:00
gwillcox-r7 2c4f9d34ad Rubocop module again 2020-06-10 11:02:52 -05:00
gwillcox-r7 24a5774ff2 Fix spelling mistake in DLL name 2020-06-10 11:02:52 -05:00
gwillcox-r7 cb20eaf6f9 Finally fix the issue with the cleanup of the files within the exploit 2020-06-10 11:02:51 -05:00
gwillcox-r7 401feb3e53 Change code so that we automatically exit Notepad upon DLL completing its work. Should help tidy things up more 2020-06-10 11:02:50 -05:00
gwillcox-r7 cf17b2065c Updated module with some output corrections, recompiled DLLs 2020-06-10 11:02:50 -05:00
gwillcox-r7 ae2b40bf99 Update the output of the module to be more correct. Also upload updated DLLs 2020-06-10 11:02:49 -05:00
gwillcox-r7 77791b6120 Update modules description with a simple explanation of what is going on. Add links to explain USODLLLoader code. 2020-06-10 11:02:49 -05:00
gwillcox-r7 fb10178701 Add in BITS configurable wait timer and Windows 10 specific target check 2020-06-10 11:02:48 -05:00
gwillcox-r7 1607b8c342 Add initial files for CVE-2020-0787 2020-06-10 11:02:35 -05:00
bwatters-r7 e48a02ce82 Land #13589, Fix edge case in rubocop module description rule 
Merge branch 'land-13589' into upstream-master
 2020-06-10 07:55:13 -05:00
bwatters-r7 2881a41e55 Land #13585, RuboCop autofix exploit/windows/local/cve_2020_0668_service_tracing 
Merge branch 'land-13585' into upstream-master
 2020-06-10 07:37:45 -05:00
Alan Foster 6007e13379 Fix edgecase in rubocop module description rule 2020-06-10 12:11:49 +01:00
Christophe De La Fuente 797673fd57 Land #13537, add new module linuxki_rce (CVE-2020-7209) 2020-06-10 11:46:34 +02:00
William Vu e669d5d78d Unf*ck the RuboCop Description formatting 2020-06-09 18:30:33 -05:00
William Vu 9f538848c4 RuboCop autofix cve_2020_0668_service_tracing 2020-06-09 18:22:42 -05:00
Numan Türle 14bb64c8ae Update linuxki_rce.rb 
default payload added
 2020-06-10 01:59:00 +03:00
Niboucha Redouane 0f936f7500 Various fixes and enhancements 2020-06-09 23:43:15 +02:00
Niboucha Redouane f1d3b33099 Merge branch 'master' of https://github.com/rapid7/metasploit-framework into GSOC/SQLi_Engine 2020-06-09 21:15:18 +02:00
h00die b5c90ea20c xpost working 2020-06-09 13:07:00 -04:00
Christophe De La Fuente 9f2a29d4fe Update last batch of modules 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 3580ac18a1 Fix typo 2020-06-09 14:18:52 +02:00
Christophe De La Fuente a9a1d01419 Update some libraries and modules 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 0bb93b4efb Update modules 
- ms17_010_command  and ms17_010_psexec: deregister
  SMB::ProtocolVersion option
- client: update error handling
- is_known_pipename: force SMB1 only for #enumerate_directories and
  update error handling
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 2f873fefcd Update modules 
- modules/auxiliary/scanner/smb/smb_enumshares.rb
- modules/exploits/linux/samba/setinfopolicy_heap.rb
- modules/exploits/linux/samba/trans2open.rb
- modules/exploits/multi/samba/usermap_script.rb
- modules/exploits/windows/smb/ipass_pipe_exec.rb
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 31a117f8f7 Update modules 
- smb_ms17_010.rb
- psexec_ms17_010.rb
- psexec_psh.rb
- smb_enumshares.rb
 2020-06-09 14:18:52 +02:00
Christophe De La Fuente 360d38018c Update exploit/windows/smb/psexec 2020-06-09 14:18:51 +02:00
Christophe De La Fuente 79e52d1d4c Fix ms17_010_eternalblue 2020-06-09 14:18:51 +02:00
Alan Foster 695accbb44 update deprecation notice to have a reason 2020-06-08 23:07:01 +01:00
Spencer McIntyre 5c0d9203c9 Deprecate the psexec_psh module 2020-06-08 13:29:10 -04:00
Numan Türle 095b6855e9 Update modules/exploits/linux/http/linuxki_rce.rb 
Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2020-06-08 16:03:33 +03:00
numanturle d238c00e1c add target 2020-06-07 20:36:01 +03:00
Niboucha Redouane 4654941092 add test modules 2020-06-05 22:11:27 +02:00
bwatters-r7 5932e75e1f Land #13384, Add Cisco UCS Director auth bypass, directory traversal(s), 
and Cloupia script RCE (CVE-2020-3243 / ZDI-20-540)

Merge branch 'land-13384' into upstream-master
 2020-06-04 14:55:01 -05:00
Shelby Pace 51fca24a38 Land #13545, add drag / drop file upload rce 2020-06-04 10:35:03 -05:00
Shelby Pace 329ba1091f add session_created, fix typo 2020-06-04 10:32:17 -05:00
h00die 0df1a2a502 more error handling 2020-06-04 06:45:29 -04:00
William Vu 8ad7b71829 Land #13552, WebLogic CVE-2020-2883 exploit 2020-06-03 19:52:52 -05:00
William Vu 464c157ee1 Land #13553, vbulletin_getindexablecontent* fixes 2020-06-03 19:31:18 -05:00
bwatters-r7 26ff9b5b72 Land #13486, fix #13486, add support for python and cmd targets in osx/local/persistence 
Merge branch 'land-13497' into upstream-master
 2020-06-03 16:13:17 -05:00
h00die 434a1f587f rubocop 2020-06-03 10:44:48 -04:00
h00die a2e385e565 more fixes 2020-06-03 10:42:25 -04:00
William Vu 64de8c4503 Document directory traversals 2020-06-02 22:13:07 -05:00
William Vu 4a9c2988e2 Base64-encode command payload to avoid escaping 2020-06-02 22:13:07 -05:00
William Vu 32ae47c9a9 Add Cisco UCS Director Cloupia script RCE 2020-06-02 22:13:07 -05:00