adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

35981 Commits

Author SHA1 Message Date
h00die e2ec4438a4 further update examples 2021-11-15 15:16:08 -05:00
Spencer McIntyre a100cd77ae Land #15858, Add exploit for CVE-2021-42237 2021-11-15 14:24:47 -05:00
Spencer McIntyre b428863d9e Land #15875, Bash payload works outside of bash 2021-11-15 10:46:05 -05:00
Ashley Donaldson 7549aaaf61 Remove warning now that bash payloads should work in this situation 2021-11-15 15:56:59 +11:00
Ashley Donaldson 40e45bdaed Ensure bash payload executes from a bash context 2021-11-15 14:44:11 +11:00
h00die 93a1473e49 fix return add http timeout 2021-11-13 04:46:38 -05:00
h00die 69c0c367fe rubocop and example updates 2021-11-13 04:33:24 -05:00
Spencer McIntyre d5e024ae4c Refactor to generic/ssh/interact 2021-11-12 16:03:29 -05:00
Spencer McIntyre 726c5f26e3 SSH session consistency with auto-platform IDing 2021-11-12 16:03:27 -05:00
Spencer McIntyre 87d1e925d0 Add an interactive SSH payload 2021-11-12 16:01:22 -05:00
Spencer McIntyre 0b3f95abca Writeup the module docs and move the protocol code 2021-11-12 15:15:51 -05:00
Spencer McIntyre 1f1e0fc2cc Write and use a check method 2021-11-12 14:08:19 -05:00
space-r7 b6dcb03b45 Land #15843, add Jetty WEB-INF file disclosure 2021-11-12 11:31:27 -06:00
space-r7 9ab969f8fe set default port, change checkcodes 2021-11-12 11:30:42 -06:00
Spencer McIntyre 7284f14fd8 Define custom Thrift types, improve syncing 2021-11-12 10:30:48 -05:00
Spencer McIntyre 21ff65994c Initial commit of the Storm Nimbus cmd exec 2021-11-12 10:30:15 -05:00
Grant Willcox 7e01e33e51 Make the XML generation into a function that accepts an argument and do further cleanup to simplify the code around this 2021-11-11 23:56:11 -06:00
bwatters 4505d7e834 Land #15700, Add Aerohive NetConfig <= 10.0r8a RCE (CVE-2020-16152) module 
Merge branch 'land-15700' into upstream-master
 2021-11-11 17:03:54 -06:00
Grant Willcox 8d55b16ade Fix one more mistake and rename document and module to a more easy to find name 2021-11-11 16:42:58 -06:00
Grant Willcox be4fa90f1a Fix up wvu's review comments 2021-11-11 14:39:40 -06:00
space-r7 f055429189 Land #15806, add BillQuick SQLi module 2021-11-11 11:51:19 -06:00
space-r7 93038f43ce replace fail_with() calls with CheckCode returns 2021-11-11 11:37:55 -06:00
Tim W f2d7f33280 run rubocop on shell_to_meterpreter 2021-11-11 16:00:05 +00:00
Tim W 7a2eb1cbcb fix #15856, fix shell_to_meterpreter to detect x64 windows and return an x64 meterpreter session 2021-11-11 14:40:18 +00:00
adfoster-r7 51914ae858 Land #15861, Lint smb enumshares module 2021-11-11 11:01:55 +00:00
sjanusz fb8ea12de8 Lint SMB EnumShares module 2021-11-11 10:46:24 +00:00
Grant Willcox 9d6f0a0eb2 Update XML to reduce it to the bare minimum needed to get the exploit working. Possible I could do more but in my tests it seems everything in here now is needed 2021-11-10 16:25:08 -06:00
Grant Willcox 27310dc002 Add in exploit and documentation for CVE-2021-42237 2021-11-10 15:52:22 -06:00
Ashley Donaldson 360a0b866a Updated cached sizes because of new UA string 2021-11-10 17:27:02 +11:00
Ashley Donaldson 527057c700 Updated user agent strings in some modules where it shouldn't impact exploitability 2021-11-10 11:12:38 +11:00
Ashley Donaldson cab04d33f5 Use existing Rex::UserAgent class; keep UA string consistent across an MSF session 2021-11-10 10:05:45 +11:00
h00die 28672f3ea5 review 2021-11-09 16:19:20 -05:00
Grant Willcox 3af93cbacc Fix up changes from timwr's review so long 2021-11-09 10:36:50 -06:00
Grant Willcox 780a9370a2 First draft of code, documentation, and exploit DLL plus exploit code 2021-11-09 10:36:40 -06:00
space-r7 1dd26bca03 Land #15802, add OMIGOD LPE 2021-11-09 10:30:50 -06:00
RAMELLA Sébastien 38973510f7 update modules (auxiliary and exploit) 2021-11-09 15:18:58 +04:00
h00die 8f713d00ae remove period 2021-11-09 04:11:23 -05:00
h00die 0fe49cce22 review comments 2021-11-09 04:04:16 -05:00
Ashley Donaldson 551ef90c5f Use default User agent string for generic auxiliary modules 2021-11-09 18:55:49 +11:00
h00die 23ba4a1f3a jetty updates 2021-11-08 14:09:43 -05:00
h00die ea59e89cba jetty web-inf file disclosure 2021-11-08 14:04:08 -05:00
Uli Heilmeier c3c7279de0 sap_router_portscanner: rename validate function 
cmd_run of command_dispatcher/auxiliary.rb calls a validate function
without an argument. As the validate function requires a range argument
running the sap_router_portscanner module fails.

Fix this issue by renaming the function.
 2021-11-07 20:05:20 +01:00
h00die e067535b72 billquick review updates 2021-11-06 06:29:56 -04:00
Matthew Dunn 5b8b718a3d Use fail_with instead of return 2021-11-05 11:49:02 -04:00
Spencer McIntyre 69e9a53b14 Land #15829, Improve Kubernetes exec reliability 2021-11-05 10:35:40 -04:00
Spencer McIntyre 56a544c184 Fix two minor issues in kubernetes/exec 2021-11-05 10:35:22 -04:00
Christophe De La Fuente 836422f9ac Land #15776, Wordpress automatic plugin aux module 2021-11-05 12:47:27 +01:00
alanfoster 9346a43e4a Improve kube exec reliability 2021-11-05 02:38:44 +00:00
h00die b39196fd0f review comments 2021-11-04 15:28:05 -04:00
Spencer McIntyre 7844ee2a49 Land #15805, bump metasploit-payloads to 2.0.60 2021-11-04 07:07:23 -04:00