48221e594d
Land #18704 , Leverage the module metadata cache in the module_sets
2024-02-02 14:16:46 +00:00
502511a71a
memory_search module improvements
2024-01-24 19:55:53 +00:00
904e34434e
Land #18626 , SaltStack Minion Deployer
...
This PR adds an exploit module which allows for
a user who has compromised a host acting as a
SaltStack Master to deploy payloads to the Minions
attached to that Master.
2024-01-23 11:58:38 -05:00
2bd93ae72c
Use a glob for memory_search PROCESS_NAMES_GLOB
2024-01-22 16:53:32 +00:00
f8bdb02593
Validate memory_search PROCESS_IDS using regex
2024-01-22 16:53:00 +00:00
6ca4c113ee
Get memory match length from buffer TLV length for Mettle
2024-01-18 11:08:38 +00:00
337400b9b8
Remove AARCH64 reference
2024-01-18 11:08:38 +00:00
1e7b74a0e5
Correctly use process glob when searching for processes
2024-01-18 11:08:34 +00:00
977a9f3cd4
Add generic memory search module for supported Meterpreter sessions
2024-01-17 15:55:23 +00:00
2cf045d3c4
Leverage the module metadata cache in the module_sets
2024-01-15 14:56:46 +00:00
b654275ec4
add saltstack lib
2023-12-23 13:52:52 -05:00
90d3d6fc0a
testing for opt_enum changes
2023-12-11 09:08:54 -06:00
56afed78ff
fix optenum, add documentation, fix issue with unset values
2023-12-04 18:03:28 -06:00
095540cea6
Enhance ability to follow payload override in shell to meterpreter
...
Update modules/post/multi/manage/shell_to_meterpreter.rb
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
payload override
2023-12-04 12:01:28 -06:00
a0f04a7018
Land #17681 , Add datastore option for Jenkins home directory
2023-07-18 14:17:15 +01:00
d9e23a5c67
Update modules/post/multi/gather/jenkins_gather.rb
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2023-07-18 14:02:27 +02:00
cac515b8db
Update jenkins_gather.rb
...
Change the default Windows location to C:\ProgramData\Jenkins\.jenkins\.
2023-06-26 21:27:59 +02:00
d68eb84334
Land #18065 , Updates jenkins_gather module to work with newer version of Jenkins
2023-06-23 10:44:06 +01:00
9176d0d3e0
Updates jenkins_gather to work with newer version of Jenkins
2023-06-23 10:02:03 +01:00
38f542174d
Land #17336 , A more robust implementation for Windows version comparisons
...
Merge branch 'land-17336' into upstream-master
2023-06-13 15:38:56 -05:00
61539ac260
Fix VBS stager in shell_to_meterpreter.
2023-06-06 07:23:58 +10:00
0d094f8645
Land #17917 , shell_to_meterpreter: Support using bind payloads with PAYLOAD_OVERRIDE
2023-06-05 13:36:30 -05:00
795980260b
Created mixin to retrieve the architecture of the current shell.
...
Currently only supports Windows, but does work on Win2000 upwards.
2023-06-05 11:10:53 +10:00
c6816fceec
Update post agther aws keys to run against linux
2023-06-01 18:19:11 +01:00
75ba9110e2
Added module for Windows version comparisons
...
Utilised it in various existing modules - this should fix some subtle bugs in specific modules' version detection.
2023-05-25 14:36:46 +10:00
538381bd4d
shell_to_meterpreter: Support using bind payloads with PAYLOAD_OVERRIDE
2023-04-22 15:44:56 +10:00
f62994b4c0
Add Gather Wowza Streaming Engine Credentials
2023-03-09 01:31:23 +11:00
0f5f495108
Add default locations for the Jenkins home directory, and add an optional value that a user can suggest the home directory.
2023-02-22 03:56:54 +01:00
11c886b30f
Land #17616 , Run rubocop on post modules
2023-02-08 14:09:16 +00:00
a81a71c5df
Run rubocop on post modules
2023-02-08 13:47:34 +00:00
433bafdccf
Add missing module notes for stability reliability and side effects
2023-02-08 11:45:17 +00:00
d1e68e634a
Add row indicator to show targets command
2023-02-02 16:12:19 +00:00
29968fb76e
Land #17337 , Gather Dbeaver Password
2023-01-12 16:06:00 +01:00
f9b1c17c39
Fix exception handler logic and small improvements
2023-01-11 20:00:09 +01:00
ada6e73af6
Land #17341 , MinIO_Client Post Exploitation Credential Gatherer
2023-01-11 15:36:23 +01:00
43051a2811
Add missing curly bracket
2023-01-11 14:30:23 +01:00
6738ca2c43
Support multiple platforms
2023-01-11 18:04:29 +08:00
ce83086c00
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:31:42 +08:00
633d807dbc
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:29:13 +08:00
e00a86b6d6
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:28:26 +08:00
3dd794a97f
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:27:48 +08:00
8b6387867d
Update modules/post/multi/gather/minio_client.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-01-11 09:27:08 +08:00
6ef38e305f
Support multiple platforms
2023-01-10 15:01:55 +08:00
615bba3d31
Update jenkins_gather.rb
...
blank? should be used instead of empty?
2022-12-27 19:31:49 -06:00
7bf29c0a4e
Add post/multi/recon/reverse_lookup
2022-11-05 13:18:35 +11:00
4950124ea0
use more Post::File functions
2022-10-08 09:50:25 -04:00
163d4d5b11
Land #16854 , Add CVE-2022-31660 VMware Workspace ONE Access LPE
...
Merge branch 'land-16854' into upstream-master
2022-08-03 16:50:12 -05:00
11a00fa1f2
post/multi/gather/env: Cleanup and support non-Meterpreter sessions
2022-08-01 13:37:15 +10:00
a98f9a69c4
Land #16621 , Fix timeout of duplicated sessions
2022-05-27 17:30:56 +01:00
7b75bd6e27
Cache remote Python binary name
2022-05-27 10:21:59 +01:00
adfoster-r7