adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
61,516 Commits 27 Branches 1,043 Tags
4454a7600aab9f19ead043e163fa4fe677bb6f5e
Commit Graph

4393 Commits

Author SHA1 Message Date
kensh1ro 1adde377ec Replace XOR with CHACHA and remove unnecassary code 2021-09-06 12:23:46 +03:00
kensh1ro 87e7718a25 Adding a dynamic way to fetch syscalls 2021-08-04 09:31:43 +03:00
kensh1ro 907be4418e Added module syscall_inject with documentation 2021-08-01 19:22:32 +03:00
Spencer McIntyre dba3db741a Land #15462, [CVE-2021-36934] HiveNightmare 2021-07-29 12:53:48 -04:00
space-r7 809081bc5f Land #15279, add Pi-Hole lpe 2021-07-29 11:15:17 -05:00
space-r7 0561ae978f fix typos, pihole version in docs 2021-07-29 11:13:58 -05:00
Spencer McIntyre 36cc2fd7e5 Rename an option and update docs for HiveNightmare 2021-07-29 12:07:56 -04:00
Yann Castel fb99af1152 Add post module for HiveNightmare 
correct CVE id

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>

Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb

Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>

use of vars_get + delete payload after use

initial commit

Update hivenightmare_windows_sam_leak.rb

using railgun to read files + specific index option

Update hivenightmare_windows_sam_leak.rb

post module + add description + add documentation

Delete wp_plugin_modern_events_calendar_rce.rb

Delete wp_plugin_modern_events_calendar_rce.md

add scenario in doc

Update windows_sam_hivenightmare.md

Update windows_sam_hivenightmare.rb

Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb

Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>

minor changes

msftidy

Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb

Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
 2021-07-29 11:54:31 -04:00
Grant Willcox a518fcac98 Add in timeout to 10th and final request to prevent module from throwing errors like it isn't working when it really is 2021-07-28 11:32:47 -05:00
Grant Willcox a53411229f Move files over to start work on converting this into an auxiliary module 2021-07-27 13:00:17 -05:00
Grant Willcox 8954dd5d2d Add in documentation and update module description to match 2021-07-27 13:00:15 -05:00
Shelby Pace 183caff15c Land #15418, add modern events calendar rce 2021-07-26 09:45:05 -05:00
Shelby Pace 38ae82155e modify info, fix spacing 2021-07-26 09:43:34 -05:00
Shelby Pace 9e95eb7be1 Land #15408, add Wordpress sp doc file upload 2021-07-23 12:36:29 -05:00
Shelby Pace d207f994c0 modify doc description 
randomize form data, formatting
 2021-07-23 12:33:41 -05:00
Hakyac 1a55cfc88c Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-23 10:12:10 +02:00
Hakyac 76a7233ee9 Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-23 10:12:00 +02:00
Hakyac cf9a5be774 Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-23 10:11:49 +02:00
Hakyac 9eb8d521f8 Update documentation/modules/exploit/multi/http/wp_plugin_modern_events_calendar_rce.md 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-23 10:08:19 +02:00
Shelby Pace 7a39f4c4dd Land #15211, add apache tapestry gatherer 2021-07-22 11:58:03 -05:00
Shelby Pace bc1f106bcb change method of retrieving key 
add checks on responses, update docs
 2021-07-21 17:56:41 -05:00
William Vu af0092f290 Land #15400, Sage X3 modules 2021-07-20 20:36:48 -05:00
William Vu b9a71449e5 Add module docs 2021-07-20 20:07:08 -05:00
Shelby Pace 79d49a6857 Land #15402, add Wordpress Backup Guard rce 2021-07-20 15:53:57 -05:00
Shelby Pace f738383b98 rename docs, modify privileged to false 
use vars_get in upload request
 2021-07-20 15:31:38 -05:00
Hakyac 109ca7ec7a Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2021-07-20 09:05:27 +02:00
Grant Willcox 5aad658dae Land #15438, Add new supported eternalblue targets to documentation 2021-07-16 13:12:33 -05:00
Grant Willcox a276f336f0 Final touchup work for PR 15438 to reference kernel pool and clear some wording up 2021-07-16 13:12:14 -05:00
A Galway 42a751e0db Add new supported targets 2021-07-16 16:58:34 +01:00
Grant Willcox b27676ca0a Land #15409, Improved PrintNightmare Check and DCERPC Library Bug Fixes 2021-07-16 08:54:42 -05:00
William Vu 2164d7ed5a Add log IOC 2021-07-12 20:54:54 -05:00
Spencer McIntyre c593ec9e8f Fix the markdown formatting in the module docs 2021-07-12 15:03:39 -04:00
William Vu 1812a71d3d Add module doc 2021-07-12 13:07:05 -05:00
Hakyac d26d9f50fa Update wordpress_plugin_backup_guard_rce.md 2021-07-12 14:29:35 +02:00
Hakyac ba69294967 Update wp_plugin_sp_project_document_rce.md 2021-07-12 14:28:35 +02:00
Yann Castel 6934ec7d18 initial commit 2021-07-12 14:25:38 +02:00
Tim W 39455827aa Land #15254, use obfuscated powershell protection bypasses 2021-07-12 12:20:17 +01:00
Grant Willcox 02ecc22751 Land #15386, Add module for CVE-2021-35464; pre-auth RCE in ForgeRock AM (and OpenAM) server 2021-07-09 17:01:25 -05:00
Grant Willcox 5c8aa9b802 Add in ForgeRock demonstration and fix up some last minor issues with the documentation to make it more accurate 2021-07-09 16:43:25 -05:00
Spencer McIntyre fba838f4e8 Update docs, pin version and fix the check method 2021-07-09 16:39:58 -04:00
Spencer McIntyre e155bb64cd Improved check method for PrintNightmare 2021-07-09 12:15:39 -04:00
Christophe De La Fuente 8b4bce35ca Fix issues from rubocop and msftidy_docs.rb 2021-07-09 15:47:11 +02:00
Christophe De La Fuente 5a71e7b0ee Merge remote-tracking branch 'upstream/pr/15154' into HEAD 2021-07-09 15:32:04 +02:00
Yann Castel d9233b9d98 typo 2 2021-07-09 11:54:25 +02:00
Yann Castel 3f2d7cda10 typo 2021-07-09 11:51:52 +02:00
Yann Castel 920b88a2bd initial commit 2021-07-09 11:49:53 +02:00
William Vu 6fbaecf919 Backport print changes to recent modules 2021-07-08 21:26:35 -05:00
Grant Willcox 570ba091f6 Update some typos in the documentation and also update the exploit module to handle various cases whereby the dbus-send command might end up timing out due to TIMEOUT being too low and to fix some final issues found during testing 2021-07-08 16:24:01 -05:00
Grant Willcox 9f88ef0954 Fix up review comments 2021-07-08 16:22:29 -05:00
Jack Heysel 0f67dd5212 Fixed get_cmd_delay, reponded to comments 2021-07-08 16:20:38 -05:00