 Jacob Robles
|
49c5a91fa7
|
Add linux target to weblogic_deserialize module
|
2018-08-28 11:51:04 -05:00 |
|
|
Jacob Robles
|
12e9cf6af7
|
Version output
|
2018-08-28 08:20:02 -05:00 |
|
|
Jacob Robles
|
f92d2263d0
|
Add check to weblogic_deserialize module
|
2018-08-28 08:09:30 -05:00 |
|
|
William Vu
|
672dbb7acb
|
Land #9364, HP PJL/SNMP CVE-2017-2741 exploit
Finally!
|
2018-08-23 22:47:09 -05:00 |
|
|
Wei Chen
|
2193dd662d
|
Land #10504, add Foxit Reader UAF Module and Docs
|
2018-08-23 18:56:07 -05:00 |
|
|
Matthew Kienow
|
ecc6c473d8
|
Add note about unauthenticated telnetd service
|
2018-08-23 15:50:41 -04:00 |
|
|
Jacob Robles
|
7ceae8df58
|
Remove '.exe' from share name
|
2018-08-23 14:38:46 -05:00 |
|
|
Matthew Kienow
|
56433c8ed2
|
Functional decomposition refactor and cleanup
|
2018-08-23 15:23:42 -04:00 |
|
|
Matthew Kienow
|
961769c346
|
Fix SNMP Null class comparison
|
2018-08-23 15:23:42 -04:00 |
|
|
Matthew Kienow
|
9c05f14a70
|
Modify SNMP null and error handling
|
2018-08-23 15:23:42 -04:00 |
|
|
Matthew Kienow
|
934bb38a44
|
Omit parentheses for no argument method calls
|
2018-08-23 15:23:41 -04:00 |
|
|
Matthew Kienow
|
c5958c6e38
|
Restore original rport value
|
2018-08-23 15:23:41 -04:00 |
|
|
Matthew Kienow
|
70a0b9b1be
|
Remove payload RequiredCmd and reformat info
|
2018-08-23 15:23:41 -04:00 |
|
|
Matthew Kienow
|
dafa62dec4
|
Use string interpolation over concatenation
|
2018-08-23 15:23:40 -04:00 |
|
|
Matthew Kienow
|
7c03454a0b
|
Remove unnecessary explicit msf/core require
|
2018-08-23 15:23:40 -04:00 |
|
|
Matthew Kienow
|
b1a308f3ae
|
Remove final debug output
|
2018-08-23 15:23:40 -04:00 |
|
|
Matthew Kienow
|
e21ea4180f
|
Clean up module and payload
Update module info, remove intermediate ARCH_ARMLE target, simply
options and add cleanup command so that the payload kills telnetd
|
2018-08-23 15:23:40 -04:00 |
|
|
Matthew Kienow
|
81f1555439
|
Rename module, exploits multiple printer models
|
2018-08-23 15:23:40 -04:00 |
|
|
Matthew Kienow
|
df18e354e1
|
Add bind_busybox_telnetd payload, misc cleanup
|
2018-08-23 15:23:39 -04:00 |
|
|
Matthew Kienow
|
c0c3e12c74
|
WIP - hp officejet pro exploit, enhance PJL lib
|
2018-08-23 14:53:54 -04:00 |
|
|
William Vu
|
578d2375d7
|
Add full disclosure for CVE-2018-15473
|
2018-08-22 14:49:13 -05:00 |
|
|
Jacob Robles
|
fd6880d0d0
|
Add Foxit Reader UAF Module and Docs
|
2018-08-21 08:21:51 -05:00 |
|
|
William Vu
|
06582a00a0
|
Add module doc for ssh_enumusers
And update description in module.
|
2018-08-20 19:26:51 -05:00 |
|
|
Brent Cook
|
11fee8fa2c
|
Land #10471, Import target DefaultOptions into the datastore
|
2018-08-20 17:30:27 -05:00 |
|
|
Brent Cook
|
d1b8846f12
|
Land #10479, Add CVE-2018-15473 to ssh_enumusers
|
2018-08-20 17:14:58 -05:00 |
|
|
William Vu
|
819b8504e2
|
Add a little better randomization
|
2018-08-20 17:10:14 -05:00 |
|
|
William Vu
|
b38a442bb0
|
Refactor once more with feeling
Also flesh out malformed-packet auth method. Let's not be lazy here. :-)
|
2018-08-20 16:25:32 -05:00 |
|
|
Brent Cook
|
e8af2dd67c
|
bool params are truthy, don't cast to a string
|
2018-08-20 15:53:49 -05:00 |
|
|
Auxilus
|
7c3810bbff
|
fix match error in ppc simple nop generator
before changes:
```
msf5 nop(ppc/simple) > generate 10
[-] Sled generation failed: undefined method `match' for true:TrueClass.
```
After changes
```
msf5 nop(ppc/simple) > generate 10
buf =
"\x7c\xf6\xc2\x15\x7c\xf6\xc2\x15"
```
|
2018-08-20 23:16:32 +05:30 |
|
|
Tim W
|
b8b48fd37a
|
Land #10313, add linux autostart persistence module
|
2018-08-20 18:17:50 +08:00 |
|
|
Tim W
|
865898cba7
|
minor fixes
|
2018-08-20 17:51:41 +08:00 |
|
|
Tim W
|
ac71bc86ee
|
Land #10320, add module for persistence in /etc/rc.local
|
2018-08-19 15:30:50 +08:00 |
|
|
Tim W
|
e38775b504
|
minor tweaks
|
2018-08-19 15:27:04 +08:00 |
|
|
William Vu
|
75403d7e05
|
Add testing note about logging
|
2018-08-17 20:20:12 -05:00 |
|
|
William Vu
|
7287779555
|
Make false positive check optional
I couldn't repro this with pubkey-only auth. It also goes to the log.
|
2018-08-17 20:05:04 -05:00 |
|
|
William Vu
|
8e3af2dcfc
|
Add CVE-2018-15473 to ssh_enumusers
|
2018-08-17 18:48:44 -05:00 |
|
|
Eliott Teissonniere
|
63a58d3378
|
Code style random name
|
2018-08-17 14:24:28 +08:00 |
|
|
Eliott Teissonniere
|
eb43e4c0bd
|
Rework status printing
|
2018-08-17 14:24:28 +08:00 |
|
|
Eliott Teissonniere
|
fc234b09c2
|
Fix HEREDOC not always supported
|
2018-08-17 14:24:28 +08:00 |
|
|
Eliott Teissonniere
|
e82bde993f
|
Cleanup indentation
|
2018-08-17 14:24:28 +08:00 |
|
|
Eliott Teissonniere
|
c1d929f5fb
|
Use an HEREDOC for multiline string
|
2018-08-17 14:24:28 +08:00 |
|
|
Eliott Teissonniere
|
e4d6eb07ca
|
Remove useless statement
|
2018-08-17 14:24:28 +08:00 |
|
|
Eliott Teissonniere
|
9962cbebfd
|
Support perl payload
|
2018-08-17 14:24:28 +08:00 |
|
|
Eliott Teissonniere
|
6b4870389d
|
Add autostart module
|
2018-08-17 14:24:28 +08:00 |
|
|
William Vu
|
5096eee2ec
|
Land #10120, npm "marked" ReDoS module
|
2018-08-16 15:01:12 -05:00 |
|
|
William Vu
|
3c1befdacb
|
Clean up module
|
2018-08-16 15:00:56 -05:00 |
|
|
William Vu
|
7e496ae067
|
Import target DefaultOptions into the datastore
|
2018-08-16 12:18:02 -05:00 |
|
|
William Vu
|
7a20d05fa6
|
Land #10456, known_hosts fix for SSH modules
|
2018-08-15 21:28:08 -05:00 |
|
|
William Vu
|
60c0272270
|
Make style consistent
|
2018-08-15 21:27:40 -05:00 |
|
|
Kevin Kirsche
|
45e0b53fc8
|
Fix spacing issue with rocket
|
2018-08-15 14:59:52 -07:00 |
|