adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
48,366 Commits 27 Branches 1,043 Tags
42ccc37bcad1c19fa2019e2bf00366db423bbb5e
Commit Graph

942 Commits

Author SHA1 Message Date
Wei Chen ad0291e552 Update false negatives 2018-08-20 18:08:19 -05:00
Wei Chen 01ad152067 Update false negatives on post auth information 2018-08-20 16:05:58 -05:00
Brendan Coles a020d48caf Move module documentation to documentation directory 2018-07-13 04:46:25 +00:00
asoto-r7 1a3a4ef5e4 Revised 88 aux and exploit modules to add CVEs / references 2018-07-12 17:34:52 -05:00
Brendan Coles 904de2dd09 Land #10238, Add ManageEngine Exchange Reporter Plus RCE exploit 2018-07-12 16:07:32 +00:00
Kacper Szurek 486225c2a8 Code review changes 
Use target_uri, split url inside normalize function, replace print with vprint, return CheckCode::Appears
 2018-07-12 14:27:28 +02:00
Jacob Robles 4f039de2fc Fix CVE numbers 2018-07-09 13:22:08 -05:00
Wei Chen 5fc5a47cd2 Update CVE references for exploit modules 
These are based on cross references by EDB, OSVDB, module short
name, blog post and BID.
 2018-07-08 18:46:04 -05:00
Kacper Szurek 2196640de4 Add manageengine_adshacluster_rce 
Manage Engine Exchange Reporter Plus <= 5310 Unauthenticated RCE
 2018-07-02 19:11:08 +02:00
Wei Chen 94fd599756 Land #9684, Adding ManageEngine Application Manager RCE 
Land #9684
 2018-03-27 15:17:20 -05:00
Mehmet İnce 53eabfc1df Update documentation and add check before exploit 2018-03-19 23:27:18 +03:00
Mehmet İnce b55a750fa9 Fix typo and couple tiny nitpicks 2018-03-14 11:51:21 +03:00
Mehmet İnce 889c914b3d Updating documentation and minor code changes 2018-03-13 12:05:27 +03:00
Mehmet İnce ec10a82c56 Make the rubocop happy 2018-03-13 09:44:13 +03:00
Mehmet İnce 2fd9b0b77b Fixing rubocop errors 2018-03-13 01:40:01 +03:00
Jacob Robles 2735ae57cb Documentation accuracy 2018-03-09 07:31:55 -06:00
Mehmet İnce 4b483e079b Adding assigned CVE number 2018-03-09 12:25:19 +03:00
Jacob Robles 24079c345d Style guide and grammar fixes 2018-03-08 07:30:02 -06:00
Mehmet İnce 611b208267 Adding ManageEngine Application Manager RCE 2018-03-07 23:54:01 +03:00
Jacob Robles 9ce6c2ae32 Remove redundant RPORT 2018-03-07 14:31:58 -06:00
Jacob Robles 4ace73a3f9 Added references, fixed code 2018-03-05 22:00:28 -06:00
Jacob Robles 57118e1265 msftidy fix 2018-03-05 13:37:32 -06:00
Jacob Robles a4f48eb80f Add GitStack v2.3.10 RCE 2018-03-05 13:25:41 -06:00
Agahlot 488f27bf76 Small Typo 2018-01-12 07:05:30 -05:00
Wei Chen e6c4fb1dab Land #9269, Add a new target for Sync Breeze Enterprise GET BoF 
Land #9269
 2018-01-11 16:54:23 -06:00
Wei Chen f395e07fc6 Land #9269, add new target for Sync Breeze Enterprise GET BoF 
Land #9269
 2018-01-11 16:53:02 -06:00
Pearce Barry e614e9b732 Land #9268, Update DiskBoss Module (EDB 42395) 2017-12-28 16:39:26 -06:00
Pearce Barry 9a6c54840b Minor tweak to use vprint... 2017-12-11 16:48:47 -06:00
Chris Higgins e91830efe7 Add Dup Scout Enterprise login buffer overflow 2017-12-09 02:20:05 -06:00
Pearce Barry 604b949e23 Updated per review comments. 2017-12-08 10:42:43 -06:00
wetw0rk 4cbb5f2619 added new target 2017-12-01 18:35:45 -06:00
Jacob Robles c79186593a Update DiskBoss Module (EDB 42395) 
Added a new target option for the
DiskBoss Server.
 2017-12-01 15:08:57 -06:00
Steven Patterson df2b62dc27 Add Mako Server CMD injection Linux support, update docs, move to multi 2017-11-10 16:28:39 -05:00
William Vu ea260e87b7 Remove headers, since we didn't send them before 
http was an invalid key for setting headers, and we still got a shell.
These headers also don't seem relevant to the PUT request.
 2017-11-09 11:06:50 -06:00
William Vu 7213e6cc49 Fix #9133, makoserver_cmd_exec cleanup 2017-11-09 10:52:03 -06:00
h00die 52888871e3 Land #8747 RCE for Geutebrueck GCore on Windows 2017-11-08 20:22:54 -05:00
h00die 7ad151e68b gcore formatting update 2017-11-08 20:21:40 -05:00
Adam Cammack 39916ef61a Land #9133, Command injection in Mako Server examples 2017-11-08 15:11:01 -06:00
Patrick Webster 2f6da89674 Change author name to nick. 2017-11-09 03:00:24 +11:00
Maurice Popp 6683ba501f added one missing change 2017-11-07 20:05:43 +01:00
Maurice Popp 8963d77bca multiple changes as requested by h00die 2017-11-07 20:00:56 +01:00
Steven Patterson b96fa690a9 Add brackets to print functions 2017-10-27 15:23:22 -04:00
Steven Patterson 8613852ee8 Add Mako Server v2.5 command injection module/docs 2017-10-26 23:29:11 -04:00
Maurice Popp df14dc4452 autodetection fixing 2017-10-23 09:07:46 +02:00
Wei Chen c67a5872cd Land #9055, Add exploit for Sync Breeze HTTP Server 
Land #9055
 2017-10-13 17:34:03 -05:00
Wei Chen 3a2c6128be Support automatic targeting 2017-10-13 16:53:22 -05:00
Mehmet Ince c14c93d450 Integrate OfficeScan 11 exploitation and fix grammer issues 2017-10-09 22:11:42 +03:00
jakxx ef282ea154 Sync Breeze HTTP Server v10.0.28 BOF 
Added support for v10.0.28 to Sync Breeze BOF module
 2017-10-09 13:50:24 -04:00
Mehmet Ince 79c9123261 Adding Trend Micro OfficeScan widget rce module 2017-10-08 17:54:18 +03:00
Maurice Popp b7184e87c0 fixing a type 2017-10-07 14:16:01 +02:00