 Jack Heysel
|
b8f82e0fe4
|
Add ESC4 detection to ldap_esc_vulnerable_cert_finder module
|
2025-01-23 19:13:13 -08:00 |
|
|
jheysel-r7
|
5374c7b362
|
Merge pull request #19676 from h00die/needrestart
Ubuntu needrestart LPE (CVE-2024-48990)
|
2025-01-09 17:02:54 -08:00 |
|
|
h00die
|
cf7d2584ba
|
update wp themes+plugins
|
2024-12-29 17:31:55 -05:00 |
|
|
h00die
|
87494a0958
|
update modules for inclusion into wordpress updater
|
2024-12-29 17:25:12 -05:00 |
|
|
h00die
|
03ddb8990e
|
sort alphabetically
|
2024-12-29 15:57:23 -05:00 |
|
|
dledda-r7
|
60f26f7062
|
fix: removing reverse_hop_http
|
2024-12-17 08:53:06 -05:00 |
|
|
Chocapikk
|
7d559e0b34
|
Add exploit module for CVE-2024-8856 - WP Time Capsule RCE
|
2024-12-11 01:14:17 +01:00 |
|
|
Aaryan Golatkar
|
ef1b38654b
|
Added perfect-survey to data/wordlists/wp-exploitable-plugins.txt
|
2024-12-10 18:59:20 +05:30 |
|
|
Chocapikk
|
a123234141
|
Add CVE-2024-10924
|
2024-12-05 16:19:09 +01:00 |
|
|
Diego Ledda
|
58702f238c
|
Land #19574, Windows Access Mode Mismatch LPE in ks.sys (CVE-2024-35230)
Land #19574, Windows Access Mode Mismatch LPE in ks.sys (CVE-2024-35230)
|
2024-12-04 16:39:43 +01:00 |
|
|
jheysel-r7
|
c4b7954f15
|
Land #19596, Wordpress Plugin Post SMTP Account Takeover
|
2024-11-29 09:05:03 -08:00 |
|
|
h00die
|
e41f5ad577
|
needrestart exploit updates
|
2024-11-27 15:41:23 -05:00 |
|
|
h00die
|
d778f5469b
|
needrestart improvements
|
2024-11-26 18:22:48 -05:00 |
|
|
h00die
|
d4bd00d48e
|
needrestart improvements
|
2024-11-25 16:38:18 -05:00 |
|
|
Ashley Donaldson
|
7f6bdb385d
|
Added LDAP query searching for likely Pre-Windows-2000 computers
|
2024-11-25 12:30:27 +11:00 |
|
|
h00die
|
7fd82b89df
|
offload files to data
|
2024-11-22 15:57:18 -05:00 |
|
|
Jack Heysel
|
7a5bc60aab
|
Windows Access Mode Mismatch LPE in ks.sys [CVE-2024-35250]
|
2024-11-05 15:31:44 -08:00 |
|
|
Spencer McIntyre
|
e709a18128
|
Merge pull request #19404 from bwatters-r7/smb2http_relay
SMB to NTLM HTTP Relay with ESC8 module
|
2024-11-05 14:12:08 -05:00 |
|
|
Spencer McIntyre
|
006ed90f1c
|
Move the ESC8 module and document the attack
|
2024-11-04 09:37:12 -05:00 |
|
|
dwelch-r7
|
1bfa0755a8
|
Land #19518, Add support for RISC-V 32-bit / 64-bit Little Endian payloads
|
2024-11-01 11:18:30 +00:00 |
|
|
h00die
|
9da5177d11
|
remove old code
|
2024-10-29 16:44:48 -04:00 |
|
|
jheysel-r7
|
87af327507
|
Merge branch 'master' into wp_ultimate_member_sorting_sqli
|
2024-10-29 16:34:10 -04:00 |
|
|
Spencer McIntyre
|
05a149dadc
|
Merge pull request #19572 from cdelafuente-r7/fix/mod/ldap/ad_cs_cert_template
Fix UPDATE certificate templates with `admin/ldap/ad_cs_cert_template`
|
2024-10-22 15:03:31 -04:00 |
|
|
Christophe De La Fuente
|
ae213813b5
|
Updates from code review
|
2024-10-22 14:41:02 +02:00 |
|
|
adfoster-r7
|
9c0efc67fb
|
Merge pull request #19567 from bcoles/wordlists
data/wordlists: Add default passwords for common single-board computers
|
2024-10-21 11:58:23 +01:00 |
|
|
Christophe De La Fuente
|
43f13c7e90
|
Add the msPKI-Template-Schema-Version attribute to ESC1, ESC2 and ESC3 templates
|
2024-10-18 18:57:50 +02:00 |
|
|
bcoles
|
e50767bb6f
|
data/wordlists: Add default passwords for common single-board computers
|
2024-10-19 00:49:14 +11:00 |
|
|
Spencer McIntyre
|
8e38010d6e
|
Add an ESC15 template
|
2024-10-17 11:23:31 -04:00 |
|
|
bcoles
|
1c748d376a
|
Add RISC-V 32-bit/64-bit ELF templates
|
2024-10-15 22:51:32 +11:00 |
|
|
Chocapikk
|
668424a444
|
Add unauth SQLi exploit module for Ultimate Member plugin (CVE-2024-1071)
|
2024-10-14 18:14:10 +02:00 |
|
|
Chocapikk
|
8553f625a4
|
Add auxiliary/scanner/http/wp_fastest_cache_sqli
|
2024-10-14 18:03:46 +02:00 |
|
|
Brendan
|
dbc020a745
|
Merge pull request #19441 from Takahiro-Yoko/cve_2023_0386_priv_esc
Land #19441, Add module: Linux Priv Esc (OverlayFS copying bug) CVE-2023-0386
|
2024-09-26 14:07:17 -05:00 |
|
|
bwatters-r7
|
3e6572abde
|
Update binary
|
2024-09-26 13:45:44 -05:00 |
|
|
Takah1ro
|
e89e573160
|
Update exploit binary
|
2024-09-24 19:36:39 +09:00 |
|
|
Takah1ro
|
755830024c
|
Update exploit binary and remove unnecessary
|
2024-09-24 08:37:20 +09:00 |
|
|
cgranleese-r7
|
44efbc21a8
|
Add automated acceptance tests for cmd_exec
|
2024-09-19 11:09:14 +01:00 |
|
|
dledda-r7
|
0bf524482c
|
Land #19345, Post module Windows LPE CVE-2024-30088
|
2024-09-17 08:13:21 -04:00 |
|
|
Takah1ro
|
dd932844b6
|
Remove unused variables
|
2024-09-09 08:15:08 +09:00 |
|
|
Takah1ro
|
8366252ba2
|
Not call payload directory
|
2024-09-07 12:28:40 +09:00 |
|
|
Takah1ro
|
692531bb87
|
Call payload directory
|
2024-09-07 12:16:04 +09:00 |
|
|
Takah1ro
|
2b63f8bb88
|
Rename exploit
|
2024-09-07 10:29:41 +09:00 |
|
|
Takah1ro
|
fd7321dd3f
|
Strip_comments
|
2024-09-06 22:58:31 +09:00 |
|
|
Takah1ro
|
72a9164024
|
Update pre-compiled binary
|
2024-09-06 22:29:09 +09:00 |
|
|
Takah1ro
|
3d20dd6ddf
|
Add module:
Linux Priv Esc (OverlayFS copying bug) CVE-2023-0386
|
2024-09-05 22:54:55 +09:00 |
|
|
Jack Heysel
|
7bfd814297
|
Removed memory polling
|
2024-08-30 12:52:18 -07:00 |
|
|
Jack Heysel
|
b011b67f80
|
Responded to comments
|
2024-08-29 22:25:20 -07:00 |
|
|
Chocapikk
|
bc7840ea7f
|
Add wp_givewp_rce exploit module
|
2024-08-27 19:50:35 +02:00 |
|
|
Jack Heysel
|
6689614d8f
|
Responded to comments
|
2024-08-22 13:06:29 -07:00 |
|
|
Jack Heysel
|
31348dac33
|
Windows LPE CVE-2024-30088
|
2024-08-21 23:16:37 -07:00 |
|
|
cgranleese-r7
|
63ac22950f
|
Adds support to test custom payload branches
|
2024-08-21 15:02:19 +01:00 |
|