1ad7ae2707
Land #14621 , Refactor (reduce) linux/x64/shell_bind_tcp_random_port
...
Merge branch 'land-14621' into upstream-master
2021-01-21 12:38:53 -06:00
b48c413bcc
Redo Jira_User_enum Module to use AuthBrute mixin
2021-01-21 12:07:47 -06:00
b9800b087f
Change notification name
...
From "Exploit" to a random alphanumeric String in order to make it less fingerprintable.
Co-authored-by: acammack-r7 <adam_cammack@rapid7.com >
2021-01-21 18:32:05 +01:00
7ce10f68ae
RuboCop for great justice
...
And update docs.
2021-01-21 10:44:18 -06:00
df8c7829af
Land #14632 , Fix opensmtpd mail from RCE payload failing to trigger
2021-01-21 09:10:14 -05:00
131bf632bd
Update the OpenSMTPD target versions and add the EDB reference
2021-01-21 09:09:42 -05:00
a336ee483a
Update exploit/unix/smtp/opensmtpd_mail_from_rce
...
Failure was caused by POSIX read requiring an argument.
2021-01-21 03:56:19 -06:00
9e8f4dc764
Update modules/auxiliary/scanner/http/jira_user_enum.rb
...
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com >
2021-01-19 13:09:22 -06:00
4e6bcc567a
Update modules/auxiliary/scanner/http/jira_user_enum.rb
...
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com >
2021-01-19 13:09:10 -06:00
ec2a35c3f2
Update jira_user_enum.rb
2021-01-19 11:08:11 -06:00
6e326d6a60
Fix up confusing variable name and a typo as pointed out during review
2021-01-19 09:25:56 -06:00
3ee642a589
Land #14597 , gather/external_ip: set Host header
2021-01-19 09:19:48 -05:00
364591069c
Fix payload failing to trigger
...
For whatever reason, `;for #{rand_text_alpha(1)} in #{iter};do read;done;sh;exit 0;` causes an issue with the payload triggering.
Editing `do read` to `do read r`, as taken from the PoC script at https://www.exploit-db.com/exploits/48051 , causes the `MAIL_FROM` field to exceed 64 characters.
However, this seems to make 0 difference to the payload, so I commented out the length check.
Reliably working on OpenSMTPd 6.6.0 on an Ubuntu 20.04 host.
2021-01-19 18:31:35 +10:00
d95e63c110
Add Jira User Enum Module
2021-01-18 10:13:16 -06:00
d6896dadc0
remove msf folder requires
2021-01-18 14:21:54 +00:00
d437a32374
remove msf/util requires
2021-01-18 14:21:54 +00:00
da7a51fbca
Land #14584 , implement the zeitwerk autoloader within lib/msf/base
2021-01-18 13:11:08 +00:00
14f24b258d
Add PRTG Network Monitor RCE (CVE-2018-9276)
2021-01-18 12:01:44 +01:00
10b29b8e87
add mssql_exec_oacreate module
2021-01-17 17:15:46 +01:00
d0cf0ef0e9
get rid of tabs
...
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-01-17 11:18:59 -03:00
5edb4cd135
reduce to 53 bytes and refactor to embed nasm
...
Signed-off-by: Geyslan G. Bem <geyslan@gmail.com >
2021-01-17 11:11:07 -03:00
95d3bd98ac
Do msftidy_docs and rubocop changes
2021-01-15 18:10:23 -06:00
2f0abe4900
Add in documentation and fix up small issues with module
2021-01-15 18:06:07 -06:00
65370a6b47
Initial module code
2021-01-15 16:20:06 -06:00
c8819259ae
Land #14414 , CVE-2020-1337 - patch bypass for CVE-2020-1048
2021-01-15 19:13:14 +01:00
9beb570ca3
Remove unnecessary require that broke things
2021-01-15 08:32:05 -06:00
1e633276e4
Land #14615 , Update the metasploit-payloads and mettle gems
2021-01-14 12:14:47 -05:00
65dfaf9453
Update the metasploit-payloads and mettle gems
2021-01-14 10:16:17 -05:00
ea154717aa
Use an absolute assembly path for the CVE-2020-17136 exploit
2021-01-14 08:53:11 -05:00
f5b5624b81
Update Exchange DLP check method, add authors and a source
2021-01-12 18:00:27 -05:00
652e4eaf60
Update the exchange ECP DLP Policy exploit for the latest bypass
2021-01-12 17:45:09 -05:00
6fc4518625
Land #14600 , Refactor and document some of the FileSystem mixin methods
2021-01-12 16:10:23 -06:00
d8e68e6487
Specify you must be SYSTEM for dll removal in docs and removed unused variable in the module
2021-01-12 11:45:53 -06:00
33bd712e0a
Land #14585 , Create module for CVE-2020-17136: Cloud Filter Arbitrary File Creation EoP
2021-01-11 17:16:40 -05:00
50e115b414
Cleanup and edits per review from Christophe
...
Removed unused method from ps script
Cleaned up some code in the module
Added removal instructions to the documentation
2021-01-11 16:02:58 -06:00
7aef731267
Land #14572 , add AIT CSV import rce
2021-01-11 15:37:05 -06:00
5ec5db828e
gather/external_ip: set Host header
...
http://ifconfig.me replies with 404 when Host header isn't set.
2021-01-11 15:59:57 +01:00
bdc70869ee
Update documentation to include passwords and clean up password work
2021-01-09 20:34:39 -05:00
0cb1e16c8b
Convert to full login scanner
2021-01-09 12:10:06 -05:00
bcbb1d4573
updated sql for more stealth
2021-01-09 09:10:20 -05:00
7d7263cf1f
spelling
2021-01-09 08:13:19 -05:00
829bacbef6
Refactor and document some of the FileSystem mixin methods
2021-01-08 16:10:36 -05:00
3072391d00
Make second round of review edits to fix Spencer's comments
2021-01-08 12:50:52 -06:00
2886ee0448
Land #14582 , Support command actions for post modules and consolidate VSS modules
2021-01-08 16:54:04 +01:00
e82b5a15fe
rubocop
2021-01-08 14:32:18 +00:00
4215339d34
Added checks for orphaned accounts and fixed a bug around CSV generation
2021-01-08 14:31:31 +00:00
6092fa32ae
Land #14515 , fix reverse_awk and bind_awk exit behavior
2021-01-08 14:37:38 +01:00
2d0571e037
Add valid usernames to the database as new credentials
2021-01-08 07:22:36 -05:00
d5bb36c530
Fix up code to use built in cd() and mkdir() commands, and adjust code to not overwrite datastore hash. Also use service_hash over manually starting the service.
2021-01-07 17:39:30 -06:00
7d81b4826d
Update credits
2021-01-07 16:30:19 -06:00
bwatters