adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
81,203 Commits 27 Branches 1,043 Tags
48f178a93fe6a656a8243094537faceec0d32dfd
Commit Graph

1199 Commits

Author SHA1 Message Date
g0t mi1k 815afec083 ftp: Add report_host 2026-05-06 10:46:01 +01:00
g0t mi1k 7d824835bc ftp: Add report_note 2026-05-06 10:46:01 +01:00
g0t mi1k 1ce7473b84 ftp: Add report_service 2026-05-06 10:45:55 +01:00
g0t mi1k 98f3bb1d84 ftp: Add banner_version 2026-05-06 10:38:30 +01:00
g0t mi1k 1a9e378dcf ftp: Fix verbose argument fallback 2026-05-06 10:36:59 +01:00
g0t mi1k addbc1b646 ftp: Remove dup IP:PORT in output 2026-05-06 10:36:59 +01:00
adfoster-r7 557ff0d068 Defer loading dependencies 2026-05-01 00:07:59 +01:00
Spencer McIntyre 2634142f0d Merge pull request #21323 from jheysel-r7/feat/http_to_ldap 
HTTP to LDAP Relay Module
 2026-04-29 15:20:10 -04:00
Jack Heysel 4847d88441 HTTP to LDAP Relay Module and Supporting Libraries 
Remove unnecessary code

Remove commented out code

Added documentation

Responded to Spencer and Copilot

Add anonymous identity check

Doc update

Warning surpression

Renamed ldap_client to relayed_connection

Comments
 2026-04-29 07:48:42 -07:00
adfoster-r7 3ecbadd032 Improve vuln and vuln attempt tracking 2026-04-24 16:26:49 +01:00
g0t mi1k ca27731285 Fix #21338: NoMethodError undefined method `domain_handle' for nil 2026-04-23 12:59:18 +01:00
g0t mi1k 1d9c922488 Make smb_version happy with smbv1 2026-04-22 13:08:19 +01:00
tair 4607741a16 Fix LoadError in http_cookie_jar for Ruby 3.3.0 2026-04-18 07:17:26 +05:00
Spencer McIntyre 6f813f9b7a Report services using the new style 2026-04-10 11:43:37 -04:00
Spencer McIntyre 657310042b Remove extra OID definitions 2026-04-09 10:37:05 -04:00
Spencer McIntyre b7e7de2fa4 Update the specs so they pass again 2026-04-09 10:37:05 -04:00
Spencer McIntyre 57bb3bbce7 Refactor code to use #with_adcs_certificate_request 2026-04-09 10:37:05 -04:00
Spencer McIntyre 9cedb4a069 Refactor the method name to namespace it to icpr 2026-04-09 10:37:05 -04:00
Spencer McIntyre 8a748d4954 Standardize printed messages a bit more 2026-04-09 10:37:05 -04:00
Spencer McIntyre 4d02f92fab Consolidate the attribute creation 2026-04-09 10:37:05 -04:00
Spencer McIntyre f177b98bfb Consolidate more into #create_csr 2026-04-09 10:37:05 -04:00
Spencer McIntyre a0e188bbbe Use #fetch so that nil is honored 2026-04-09 10:37:04 -04:00
adfoster-r7 6c24a059ae Merge pull request #21031 from zeroSteiner/fix/issue/20959 
LDAP Reporting Improvements
 2026-04-08 10:39:17 +01:00
jheysel-r7 94ccd8bd20 Merge pull request #20948 from ArkaprabhaChakraborty/osticket 
Add initial osticket arbitraray file read auxiliary module
 2026-04-07 09:39:01 -07:00
Spencer McIntyre a0852387fc Merge pull request #20752 from bwatters-r7/feature/certificate-web-enrollment 
Add Authenticating Web Enrollment module for AD/CS
 2026-04-06 15:27:28 -04:00
bwatters-r7 06edc3d08f change minor syntax and raise exception for rsa keylength mismatch 2026-04-06 13:12:47 -05:00
bwatters-r7 d10341befd Fixes for different paths to create_csr and build_csr 2026-04-02 16:23:34 -05:00
Jack Heysel 5111f9eb52 Refactor HashCapture 2026-04-02 13:14:06 -07:00
Jack Heysel 4125b209f8 Refactor reusable relay classes out of SMB directory 
Apply suggestions from code review

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-04-02 13:14:06 -07:00
arkaprabhachakraborty 26a73b060d Resolve rubocop errors and warnings. Address copilot comments on docs and code quality. 
Signed-off-by: arkaprabhachakraborty <chakrabortyarkaprabha998@gmail.com>
 2026-03-27 00:43:23 +05:30
Spencer McIntyre 700d063645 Implement copilot feedback 2026-03-26 14:43:33 -04:00
Spencer McIntyre b743296f48 Reapply "This adjusts module options that need a routable address" 
This reverts commit 628275ef59.
 2026-03-26 14:43:31 -04:00
Spencer McIntyre 308b7277a1 Apply suggestion from @adfoster-r7 
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
 2026-03-26 13:21:42 -04:00
adfoster-r7 1faa27f7e6 Fix encoding issues in files 2026-03-25 19:01:57 +00:00
Christophe De La Fuente bf1a12301b Merge pull request #20967 from jheysel-r7/fix/lib/smb_relay_ruby_client_support 
Add support for Ruby SMB Client and `smbclient` to be compatible with Msf::Exploit::Remote::SMB::RelayServer
 2026-03-24 18:12:45 +01:00
Jack Heysel 45884fa090 Removed method parse override 2026-03-23 23:10:29 -07:00
Jack Heysel 81b34421a9 Responded to comments 2026-03-19 14:15:49 -07:00
Jack Heysel e9502ce7ed Fix for gss token identification 2026-03-18 16:56:07 -07:00
Jack Heysel a4a34410c7 Mech type update for ruby_smb 2026-03-18 11:18:28 -07:00
Spencer McIntyre 09bb0337d1 Merge pull request #20997 from Nayeraneru/OptTD 
Introduce OptTimedelta
 2026-03-17 18:41:42 -04:00
Nayeraneru 01d88791d2 Removed unnecessary code and module 2026-03-18 00:14:15 +02:00
Jack Heysel 143071ab36 Refactor duplicate code 2026-03-16 19:59:46 -07:00
Jack Heysel e0a4b969ae Add support for simplified single target relaying (smbclient) 2026-03-16 19:42:17 -07:00
msutovsky-r7 b3aa45fb09 Land #20719, adds module for authenticated command injection in FreePBX filestore (CVE-2025-64328) 
Add authenticated RCE module for FreePBX filestore (CVE-2025-64328)
 2026-03-13 11:00:43 +01:00
adfoster-r7 c882d91155 Merge pull request #21025 from Hemang360/cookie-jar-doc-fix 
Fix HttpCookie integer conversion and cookie jar docs
 2026-03-13 00:08:13 +00:00
Valentin Lobstein 16b55848b4 Fix: Remove duplicate Content-Type header from FreePBX requests 
send_request_cgi already sets Content-Type when vars_post is used.
Setting it manually in headers causes a duplicate header.
 2026-03-11 20:09:52 +01:00
Valentin Lobstein 2b0f1c3c21 Fix: Omit default port from Referer header in FreePBX mixin 
FreePBX rejects ajax requests when the Referer includes :80 for HTTP
or :443 for HTTPS. Only include the port when it differs from the
protocol default.
 2026-03-11 20:06:08 +01:00
Valentin Lobstein c42e44e349 Optimize FreePBX module: cache auth/version, reduce verbosity, inline single-use functions 2026-03-11 19:43:29 +01:00
Valentin Lobstein c266e687c2 Add authenticated RCE module for FreePBX filestore (CVE-2025-64328) 2026-03-11 19:43:28 +01:00
Christophe De La Fuente 31665e1b88 Land #20730, Allow toggling the SACL in LDAP queries 
# Release Notes
This update modifies the ldap_query module to skip querying the SACL (System Access Control List) on security descriptors by default. This behavior is now controlled by a new option, LDAP::QuerySacl. This change is necessary when using a non-privileged user to query security descriptors via LDAP; otherwise, querying the SACL will cause the entire query to be blocked, resulting in no security descriptors being returned.
 2026-03-11 16:36:35 +01:00