adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

35981 Commits

Author SHA1 Message Date
Quentin Kaiser 5d89b32f58 prepend class rather than import it 2020-12-02 10:03:38 +01:00
Quentin Kaiser 8edcae4bb7 Handle a case where Pulse Secure is installed but no saved entry exists in the registry. Handle a case where the session runs as system on an affected version. 2020-12-02 09:57:28 +01:00
h00die 5ac5a0c68a print command outputs 2020-12-01 17:26:51 -05:00
Spencer McIntyre cea4c92781 Clarify the message by printing the actual path 2020-12-01 13:41:01 -05:00
Spencer McIntyre 0bf9dcfdb8 Check that additional success checks for the registry technique 2020-11-30 18:03:58 -05:00
C4ssandre 7d0c6c3b87 Applying rubocop. 2020-11-30 15:09:53 +00:00
C4ssandre 612096ce03 Passing default waiting time for module to complete from 20 to 120. 2020-11-30 15:02:16 +00:00
C4ssandre b894053efe Changing instance variables to local variables. 2020-11-30 14:31:45 +00:00
C4ssandre 71a33301b7 Removing outdated comment. 2020-11-30 14:27:40 +00:00
C4ssandre e6cffac948 Function check: changing if os =~ /Server/ to if os.include?('Server') to avoid compiling a regular expression. 2020-11-30 14:23:54 +00:00
C4ssandre 4c317fe359 Applying rubocop to ruby module file. 2020-11-30 14:21:41 +00:00
adfoster-r7 2cb2e38c49 Land #14443, Add explicit requires for python payloads to avoid NameError exceptions 2020-11-30 09:50:36 +00:00
dwelch-r7 c92d97ef7d Add requires for python payloads 2020-11-30 05:36:30 +00:00
dwelch-r7 3824f3923f Land #14394, Apache Tomcat - AJP 'Ghostcat' File Read/Inclusion 
Apache Tomcat - AJP 'Ghostcat' File Read/Inclusion
 2020-11-30 05:15:29 +00:00
SunCSR Team 3fbe851d71 Update tomcat_ghostcat.rb 2020-11-30 08:33:32 +07:00
justinopatrny c200a274b2 Corrected headers check for retrieved cookie 
Previous get_cookies method not working properly
 2020-11-29 19:07:44 -06:00
James Lee bc3d41bbe8 Request json response 
For compatibility with older versions of Solr (I tested 5.3.0) where the
default is XML.
 2020-11-29 17:57:36 -06:00
James Lee 4b5dd7389c Cleanup debug prints 2020-11-29 13:15:14 -06:00
James Lee 4496fe0d82 Randomize the header name for commands 2020-11-29 11:32:35 -06:00
James Lee 1be51ded25 Use HTTP ClassLoader instead 2020-11-29 10:53:33 -06:00
h00die 797e1ec35b now saves creds 2020-11-29 07:45:59 -05:00
h00die 79caa33589 gather roster, gather data from minions 2020-11-28 17:49:32 -05:00
Quentin Kaiser 7842d746d3 Wrong return code when Pulse is not installed. 2020-11-27 16:19:52 +01:00
Quentin Kaiser 0ed2b0d253 Fix active record issue when realm is blank due to empty path. 2020-11-27 16:18:21 +01:00
Quentin Kaiser 013a1e4312 Username was not found when running the module just after the connection creation. Turns out it was saved in .tmp rather than .dat or .bak. 2020-11-27 15:11:14 +01:00
Tim W 6de55b3d79 Land #14433, fix typo in exploits/windows/local/bypassuac_comhijack.rb 2020-11-26 20:13:42 +00:00
Tim W 87eba681e0 Land #14365, Update TP-Link AC1750 Pwn2Own 2019 module 2020-11-26 19:55:00 +00:00
h00die 600007a0d7 worked out a bunch of syntax and added some catches 2020-11-26 11:11:37 -05:00
Pedro Ribeiro a99ce581dd Update TP-Link AC1750 Pwn2Own 2019 module 2020-11-26 12:56:02 +00:00
Graeme Robinson f6f78d4710 Make changes suggested in code review 2020-11-26 13:46:02 +01:00
Graeme Robinson 7fa10a0684 Update modules/exploits/multi/http/apache_nifi_processor_rce.rb 
Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2020-11-26 13:46:02 +01:00
Graeme Robinson 5dc7e8f04e Update modules/exploits/multi/http/apache_nifi_processor_rce.rb 
Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2020-11-26 13:46:02 +01:00
Graeme Robinson 78c042cbb7 Update modules/exploits/multi/http/apache_nifi_processor_rce.rb 
Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2020-11-26 13:46:01 +01:00
Graeme Robinson 7894f1eb9a Update modules/exploits/multi/http/apache_nifi_processor_rce.rb 
Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2020-11-26 13:46:01 +01:00
Graeme Robinson fcde932e1b Update modules/exploits/multi/http/apache_nifi_processor_rce.rb 
Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2020-11-26 13:46:01 +01:00
Graeme Robinson 2a9898df25 Update modules/exploits/multi/http/apache_nifi_processor_rce.rb 
Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2020-11-26 13:46:01 +01:00
Graeme Robinson 9a35a5fdee Remove frozen_string_literal directive 
Remove directive that was added by `rubocop -A`, as suggested in review.

Note that this results in an additional offense being reported by rubocop
 2020-11-26 13:46:01 +01:00
Graeme Robinson e33a2ca463 Use cleanup method to perform cleanup 2020-11-26 13:46:01 +01:00
Graeme Robinson f6d39147af Removed pointless comment. 2020-11-26 13:46:01 +01:00
Graeme Robinson 2de77b6e8a Refactored code. Primarily line length increased. 2020-11-26 13:46:01 +01:00
Graeme Robinson 012b040fc1 Reformat code layout to satisfy msftidy 2020-11-26 13:46:01 +01:00
Graeme Robinson 41ff86178b Add new module exploit module 
Add new module /exploits/multi/http/apache_nifi_processor_rce.rb
 2020-11-26 13:46:01 +01:00
Jan Bucher 6d6c71bc2a Fix another typo in the bypassuac_comhijack module 2020-11-26 13:14:36 +01:00
Jan Bucher 9757c68f9b Fix typo in modules/exploits/windows/local/bypassuac module 
Correct small typo in the output to the msfconsole.
 2020-11-26 12:55:29 +01:00
SunCSR Team 4dce7c070b Update tomcat_ghostcat.rb 2020-11-26 16:24:49 +07:00
Grant Willcox 63a98adff0 Land #14427, phpstudy_backdoor_rce.rb TARGETURI handling and default value modifications 2020-11-25 10:32:53 -06:00
Grant Willcox ca28f59ac4 Update the description of the TARGETURI option to reflect the recent changes 2020-11-25 10:32:17 -06:00
Spencer McIntyre 95665e916c Land #14416, wordpress plugin 'simple file list' rce 2020-11-25 09:58:26 -05:00
Spencer McIntyre 94c157bc95 Tweak the documentation and module output just a little for clarity 2020-11-25 09:58:07 -05:00
Quentin Kaiser 54e836e797 Add guard clause to gather_creds function to remove conditional block. 2020-11-25 15:36:37 +01:00