adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

35981 Commits

Author SHA1 Message Date
Shelby Pace a4af80d3e1 Land #15005, add VMware vRealize SSRF RCE 2021-04-27 09:19:55 -05:00
Ashley Donaldson a640443cab Land #15014, Added string PKey support for ssh module 
Able to specify an individual private key as a string parameter into the module
 2021-04-27 15:42:37 +10:00
Tim W bba6a230b7 add macOS gatekeeper bypass exploit 2021-04-26 22:59:14 +01:00
Shelby Pace 363db0e271 Land #14977, add Apache Druid js rce 2021-04-26 12:01:19 -05:00
Spencer McIntyre da01a839d1 Set required commands spec for all post mixins 2021-04-26 12:28:18 -04:00
pingport80 77b0b3e183 add shell support for win checkvm 2021-04-24 18:06:37 +05:30
Grant Willcox 6b4e5a7e4d Land PR #15088, Fix a typo in Eclipse Equinox product name 2021-04-23 17:07:37 -05:00
Tim W 16401b0c30 Land #14953, fix python3.6 string formatting in rdp_web_login 2021-04-23 21:01:53 +01:00
Tim W d742ee00af use python string.format 2021-04-23 20:59:51 +01:00
Cooper Travis 6cc800e0fc Updated logging and documentation 2021-04-23 10:26:46 -05:00
Pedro Ribeiro 07d82cde93 fix timeout errors in rubocop 2021-04-23 22:10:38 +07:00
Cooper Travis c1c402f069 Update modules/auxiliary/scanner/ssh/ssh_login_pubkey.rb 
Co-authored-by: Ashley Donaldson <smashery@gmail.com>
 2021-04-23 10:07:32 -05:00
Pedro Ribeiro 02ce5a1724 Update modules/exploits/linux/http/microfocus_obr_cmd_injection.rb 
Co-authored-by: Grant Willcox <63261883+gwillcox-r7@users.noreply.github.com>
 2021-04-23 22:01:05 +07:00
Pedro Ribeiro 58e00b582e Update modules/exploits/linux/http/microfocus_obr_cmd_injection.rb 
Co-authored-by: Grant Willcox <63261883+gwillcox-r7@users.noreply.github.com>
 2021-04-23 22:00:55 +07:00
Pedro Ribeiro 651a34af53 add sploit for MF OBR cmd injection 2021-04-23 21:04:36 +07:00
Spencer McIntyre 95e59f514c Land #15021, add KOFFEE exploit for CVE-2020-8539 2021-04-23 09:25:16 -04:00
Spencer McIntyre 50873d3d88 Fix some typos and markdown formatting 2021-04-23 09:24:38 -04:00
Pedro Ribeiro 83329cc8de clarify it's only for winblows 2021-04-23 19:24:49 +07:00
Pedro Ribeiro 02656a2c31 add clarification - it's for linux only 2021-04-23 19:23:18 +07:00
Erran Carey dcf457f7e9 Fix a typo in Eclipse Equinox product name 
The osgi_console_exec module docs had a few stray characters for the
product name and description. The product name confused me when
googling for this module.
 2021-04-23 11:57:48 +01:00
Pedro Ribeiro 62ba64375c fix typos and add default rport 2021-04-23 17:38:06 +07:00
Pedro Ribeiro 092c22ab4e fix typo in URL 2021-04-23 16:47:46 +07:00
Pedro Ribeiro 8b3687b9e6 update privesc sploit 2021-04-23 16:38:25 +07:00
Pedro Ribeiro 9a779fef79 add ZDI id 2021-04-23 15:15:09 +07:00
Pedro Ribeiro 30c333b30d fix typo in shrboadmin 2021-04-23 15:03:34 +07:00
Pedro Ribeiro 71f5955b42 add OBR SSH module 2021-04-23 15:00:06 +07:00
Cooper Travis 9bfcbc8a2e Added string PKey support for ssh module 
* Implemented command shell session reporting
  * Updated ssh login pubkey module documentation
 2021-04-22 14:49:45 -05:00
cgranleese-r7 68ad21c6a6 Adds error handling for NoMethodError 2021-04-22 12:48:39 +01:00
gianpyc 12cb8b3f02 Removed not needed require 2021-04-22 04:49:22 -04:00
gianpyc 3c64475da9 Adding new actions on the module and updated documentation 2021-04-22 04:34:22 -04:00
Spencer McIntyre 8186a75235 Add meterpreter command compatibility to modules 2021-04-21 18:22:15 -04:00
William Vu a62d1dfbcd Add some details back in 2021-04-21 16:02:21 -05:00
Grant Willcox 7dc1c19814 Land #15078, Update reverse_http.rb to fix a typo. 2021-04-21 15:25:30 -05:00
Spencer McIntyre 397530c554 Add meterpreter command compat to module info 2021-04-21 14:24:01 -04:00
William Vu 5111caf536 Address @gwillcox-r7 review 
New words from @gwillcox-r7.
 2021-04-21 13:10:21 -05:00
Nils Putnins faae3ff40e Update reverse_http.rb 
Fixing a typo
 2021-04-21 19:47:18 +03:00
Nils Putnins b6ed3f2752 Update reverse_https.rb 
Fixing a typo
 2021-04-21 19:46:44 +03:00
William Vu 22433d5b2c Add clarifying comment 2021-04-21 10:42:10 -05:00
William Vu 08907a5e3a Add VMware vRealize Operations Manager SSRF RCE 
CVE-2021-21975 + CVE-2021-21983
 2021-04-21 10:42:10 -05:00
Grant Willcox 634e88339d Land #15072, Remove is_root? check from linux_hashdump module and replace it with a check to see if the /etc/shadow file is readable by the current user. 2021-04-21 08:55:18 -05:00
agalway-r7 93c7727622 Land #15058, Cockpit CMS RCE 2021-04-21 13:21:55 +01:00
pingport80 f6cb88b642 remove is_root check from linux_hashdump 2021-04-21 10:19:30 +05:30
Grant Willcox 7b7e521d6c Fix up a wrong type field value and set it back to 1 from 2 in the send_exploit() function, since this was causing the exploit to fail 2021-04-20 17:45:51 -05:00
Spencer McIntyre 00db3767b1 Fix a bug when restoring corrupted memory 2021-04-20 18:18:42 -04:00
Grant Willcox e0f13e44d1 Land #14699, Add Nagios XI snmptrap RCE and docs (CVE-2020-5792) 2021-04-20 14:30:45 -05:00
h00die e39b065e06 vprint to print 2021-04-20 15:26:47 -04:00
Grant Willcox f241a050b8 Apply review comments and fixes to documentation and the module 2021-04-20 12:38:34 -05:00
Tim W deaa241ca5 Land #15065, fix post/linux/gather/checkvm 2021-04-20 17:02:45 +01:00
pingport80 a4cfc3684e remove ls_pci_data initialization 2021-04-20 21:26:21 +05:30
pingport80 32bfa887da rubocop fixes 2021-04-20 21:23:24 +05:30