adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

35981 Commits

Author SHA1 Message Date
Shelby Pace 9f2dae38c8 Land #15079, add meterpreter compat requirements 2021-05-24 16:00:08 -05:00
Shelby Pace 8e4a33f2a2 Land #15223, move TokenMagic validation logic 2021-05-24 14:51:13 -05:00
Alan Foster 275b5b85e1 Add check method to tomcat ghostcat module 2021-05-24 19:10:10 +01:00
Sean M c484391949 Update checkvm.rb 
Removed spaces at end of lines 99/110 from msftidy complaints
 2021-05-23 13:16:22 -04:00
M. Cory Billington 01a8a6ab30 Remove unrequired reference to msfcore 2021-05-23 12:12:35 -05:00
Sean M 5d61ce4a0b Update checkvm.rb 
Extended Xen VM identification - AWS Xen VMs are now detected new  kernel modules.
 2021-05-23 10:23:56 -04:00
M. Cory Billington 2757e7163c Remove trailing white space found during msftidy 2021-05-22 18:44:15 -05:00
M. Cory Billington 81c056df3b Removed unused return value 2021-05-22 01:32:17 -05:00
M. Cory Billington 963cea939f Changed request method to preferred method 2021-05-22 01:29:24 -05:00
M. Cory Billington ab5256a106 Use more robust version checking and add missing return statements. 2021-05-22 01:26:28 -05:00
M. Cory Billington 64f9ea0848 Update modules/exploits/linux/http/suitecrm_log_file_rce.rb 
Change Metasploit download link to https

Co-authored-by: bcoles <bcoles@gmail.com>
 2021-05-22 00:59:23 -05:00
M. Cory Billington f27c0a481c Update modules/exploits/linux/http/suitecrm_log_file_rce.rb 
Co-authored-by: bcoles <bcoles@gmail.com>
 2021-05-22 00:56:44 -05:00
M. Cory Billington e62efe0690 Added module and documentation for SuiteCRM Log File RCE 2021-05-22 00:11:19 -05:00
bwatters 6b42fa7d20 Land #15220, Added OS version info to ntlm_info_enumeration.rb 
Merge branch 'land-15220' into upstream-master
 2021-05-21 15:59:21 -05:00
bwatters 8e1391f098 Land #15216, Fix targeting for CVE-2021-21551 
Merge branch 'land-15216' into upstream-master
 2021-05-21 14:56:08 -05:00
bwatters 72375d1f67 Land #15024, Add RCE Exploit For CVE-2020-0796 (SMBGhost) 
Merge branch 'land-15024' into upstream-master
 2021-05-20 17:02:04 -05:00
Spencer McIntyre a6f650a1a3 Add a clear warning about instability due to KPP 2021-05-20 17:28:14 -04:00
Yann Castel 72928e0865 module moved to a better location (again) and renamed 2021-05-20 16:47:13 +02:00
bwatters a89fffade1 Update check method and move it to earlier in the module to prevent crashing 
on windows 7 sp0 targets.
 2021-05-19 15:58:40 -05:00
Wyatt Dahlenburg 359b47a146 AutoCheck + JSON Parsing + WfsDelay 2021-05-19 13:42:59 -05:00
Grant Willcox 133b40de30 Land #15212, Converts Python shebangs over to Python 3 2021-05-19 10:39:09 -05:00
bogey3 2d7cb527cc Added OS version to ntlm_info_enumeration.rb 
This modification adds the ability to retrieve the OS version from
an NTLMSSP type 2 message.
 2021-05-19 16:13:42 +01:00
Yann Castel 99799c177f now is validated by robocop 2021-05-19 10:57:05 +02:00
Spencer McIntyre 56388cd696 Land #15146, Add support for extra OSes for CVE-2021-3156 (Baron Samedit) 2021-05-18 18:02:30 -04:00
Spencer McIntyre a8a1cf75b8 Reorder the Fedora targets to be descending 2021-05-18 18:02:12 -04:00
Grant Willcox 47633ac9e6 Land #15205, Fix TLS bug for gitlab file read RCE module to work on TLS enabled GitLab servers 2021-05-18 16:02:04 -05:00
Spencer McIntyre 78d47b11f2 Add targeting for Windows 10 v21H1 2021-05-18 12:56:02 -04:00
Patrick Webster 912cda8a2e Remove title whitespace 2021-05-19 01:07:36 +10:00
Wyatt Dahlenburg 20415172a4 Support additional payload parameters 2021-05-18 09:39:46 -05:00
cgranleese-r7 a894b8cc29 Updates Python shebangs to Python 3 2021-05-18 12:43:04 +01:00
Yann Castel d4c5f59117 file moved to a better place 2021-05-18 09:11:41 +02:00
Wyatt Dahlenburg 7427c68057 Add HashiCorp Nomad Job Exploit 2021-05-17 16:16:21 -05:00
bwatters 8266f2ffdc Land #15113, post gather module for saltstack salt #15113 
Merge branch 'land-15113' into upstream-master
 2021-05-17 15:33:20 -05:00
William Vu aad4ea8e09 Add check 
Thanks to @adfoster-r7 for the round of golf!
 2021-05-17 13:58:03 -05:00
William Vu 47740c8ac3 Add NetMotion Mobility CVE-2021-26914 exploit 2021-05-17 13:58:03 -05:00
William aee65a6d8d Fix indentation 2021-05-17 23:31:49 +08:00
William 5e04eec4fc Update fix 
Changing the regex to solve the bug

Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
 2021-05-17 23:27:12 +08:00
Yann Castel 2005138017 add CVE-2021-27850 Apache Tapestry HMAC secret key leak 2021-05-17 17:13:09 +02:00
William e0f6700a7e Add empty line 2021-05-17 23:10:29 +08:00
William ce4748494a Fix whitespace issue 2021-05-17 23:07:05 +08:00
Grant Willcox e7983c3b6f Land #15192, Enforce Style/RedundantBegin for new modules 2021-05-17 09:51:57 -05:00
William 69b1f4bbc7 Bug fix 
Fix bug that prevent the module from working on SSL enabled GitLab server
 2021-05-16 14:23:16 +08:00
h00die b2f8bc6958 guard on nil minions 2021-05-15 09:38:15 -04:00
Grant Willcox 7a9050c7ea Fix up check method so that it will correctly warn the user that the target might not be vulnerable only cause the DLL hijacking technique doesn't work on certain targets. 2021-05-14 17:47:39 -05:00
Jack Heysel c8b62a1ff9 Fixed check method nil check, update numberd list in docs, added wfsdelay warning when in dll mode 2021-05-14 17:47:31 -05:00
Jack Heysel 950bbad852 Removed nil script check, updated docs 2021-05-14 17:47:15 -05:00
Jack Heysel eb4573164b Addressed comments 2021-05-14 17:46:26 -05:00
Jack Heysel e29dce4f08 Removed comments from powershell script 2021-05-14 17:45:42 -05:00
Jack Heysel d23df37b62 Responded to comments, refactored to remove duplicate code 2021-05-14 17:44:08 -05:00
Jack Heysel d5f2cfb3de Added x86 codepath for uso trigger 2021-05-14 17:44:08 -05:00