adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

35981 Commits

Author SHA1 Message Date
Hakyac 5bf1a7847e Update modules/exploits/multi/http/wp_plugin_sp_project_document_rce.rb 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2021-07-20 09:09:23 +02:00
Hakyac f78c503f9f Update wp_plugin_sp_project_document_rce.rb 2021-07-20 09:04:12 +02:00
dwelch-r7 4141349106 Fix python3 compatibility with wmiexec module 2021-07-19 14:47:39 +01:00
Grant Willcox b27676ca0a Land #15409, Improved PrintNightmare Check and DCERPC Library Bug Fixes 2021-07-16 08:54:42 -05:00
Spencer McIntyre 3098e2fcdd Update the module notes regarding instability 2021-07-16 09:03:40 -04:00
William Vu a6b4d203e5 Fix build 2021-07-15 02:10:24 -05:00
William Vu aebdc0ddfc Update module credits 
Clarified contributions.
 2021-07-14 15:10:25 -05:00
Spencer McIntyre 06b592cfa1 Update the session initialization method 2021-07-13 17:25:19 -04:00
Spencer McIntyre ed979992fd Remove a redundant print status statement 2021-07-13 10:14:16 -04:00
adfoster-r7 57dc806522 Land #15420, Load Net::SSH for eaton xpert backdoor module 2021-07-13 09:46:49 +01:00
William Vu 6a6c08c773 Fix edge case in method overloading 2021-07-12 20:29:56 -05:00
Alan Foster ad20954e0d Load Net::SSH for eaton xpert backdoor module 2021-07-12 22:11:20 +01:00
William Vu d29532d4c4 Add VMware vCenter Server CVE-2021-21985 exploit 2021-07-12 13:07:05 -05:00
Spencer McIntyre 32eab49428 Fix a typo in the module description 2021-07-12 12:20:37 -04:00
Spencer McIntyre beb39ae5bc Mark another Powershell payload as dynamic 2021-07-12 10:06:56 -04:00
Spencer McIntyre a23ef5ec5d Set dynamic cached size on reverse powershell 2021-07-12 09:22:59 -04:00
Yann Castel 4d016a3521 correct CVE id 2021-07-12 14:35:47 +02:00
Yann Castel 6934ec7d18 initial commit 2021-07-12 14:25:38 +02:00
Tim W 6300518e19 Fix #15254, set dynamic cached size on powershell payloads 2021-07-12 12:55:24 +01:00
Tim W 39455827aa Land #15254, use obfuscated powershell protection bypasses 2021-07-12 12:20:17 +01:00
Yann Castel f886ff0a22 now using Metasploit's Wordpress lib 2021-07-12 11:00:43 +02:00
Yann Castel 5cd32cdb36 add references + worpress website check 2021-07-12 10:46:58 +02:00
Yann Castel 20a8aac286 now using Metasploit's Wordpress lib 2021-07-12 10:10:34 +02:00
Grant Willcox 02ecc22751 Land #15386, Add module for CVE-2021-35464; pre-auth RCE in ForgeRock AM (and OpenAM) server 2021-07-09 17:01:25 -05:00
Spencer McIntyre fba838f4e8 Update docs, pin version and fix the check method 2021-07-09 16:39:58 -04:00
Spencer McIntyre 9e61bf5752 Update the rex-powershell gem and unit tests 2021-07-09 15:35:37 -04:00
Grant Willcox 89b36bd1b8 Fix a small error in the logic so that we check the response body vs the response itself as per wvu's comment 2021-07-09 12:26:57 -05:00
Spencer McIntyre e155bb64cd Improved check method for PrintNightmare 2021-07-09 12:15:39 -04:00
Christophe De La Fuente 8b4bce35ca Fix issues from rubocop and msftidy_docs.rb 2021-07-09 15:47:11 +02:00
Christophe De La Fuente 5a71e7b0ee Merge remote-tracking branch 'upstream/pr/15154' into HEAD 2021-07-09 15:32:04 +02:00
adfoster-r7 f189724174 Land #15217, Combine eternalblue modules 2021-07-09 12:23:34 +01:00
Yann Castel 920b88a2bd initial commit 2021-07-09 11:49:53 +02:00
Stephen Bradshaw edf99d06d2 Update modules/auxiliary/scanner/ssh/ssh_login_pubkey.rb 
Suggested change

Co-authored-by: dwelch-r7 <Dean_Welch@rapid7.com>
 2021-07-09 13:27:15 +10:00
wvu aefd2cfd38 Fix CVE references 2021-07-08 22:21:28 -05:00
William Vu 6fbaecf919 Backport print changes to recent modules 2021-07-08 21:26:35 -05:00
Grant Willcox 570ba091f6 Update some typos in the documentation and also update the exploit module to handle various cases whereby the dbus-send command might end up timing out due to TIMEOUT being too low and to fix some final issues found during testing 2021-07-08 16:24:01 -05:00
Grant Willcox 9f88ef0954 Fix up review comments 2021-07-08 16:22:29 -05:00
Jack Heysel 54ee8f7ae7 Added cmd_delay nil check, updated title 2021-07-08 16:20:45 -05:00
Jack Heysel 0f67dd5212 Fixed get_cmd_delay, reponded to comments 2021-07-08 16:20:38 -05:00
Jack Heysel 9a07039e7e Updated docs 2021-07-08 16:09:15 -05:00
Jack Heysel fdbf669da2 Fixed check for /bin/su 2021-07-08 16:09:12 -05:00
Jack Heysel 285a6338fa Print error instead of failwith when exploit commands unsuccessful 2021-07-08 16:09:12 -05:00
Jack Heysel f797f30651 Fixed call to write directory 2021-07-08 16:09:04 -05:00
Jack Heysel 1a73cfbe25 Updated check method 2021-07-08 16:09:03 -05:00
Jack Heysel c5a9ecd45b WritableDir as advanced opt 2021-07-08 16:09:03 -05:00
Jack Heysel f87f831aba Module updates + Docs 2021-07-08 16:09:02 -05:00
Jack Heysel 8d2d445699 Send one large command over many of smaller size 2021-07-08 16:08:36 -05:00
Jack Heysel e7608d79f6 Polkit authentication bypass 2021-07-08 16:08:33 -05:00
Grant Willcox 8b3d057e9e Address Spencer's comments by adding in an extra nil check and removing an unneeded library import 2021-07-08 13:07:51 -05:00
A Galway cb31ffd82f add support for authenticated login with smb1 2021-07-08 18:41:54 +01:00