adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
60,845 Commits 27 Branches 1,043 Tags
5b3edd4cb2accbf2bd8eb835470f6e9cd59cd2f6
Commit Graph

4255 Commits

Author SHA1 Message Date
Shelby Pace 8e4a33f2a2 Land #15223, move TokenMagic validation logic 2021-05-24 14:51:13 -05:00
bwatters 8e1391f098 Land #15216, Fix targeting for CVE-2021-21551 
Merge branch 'land-15216' into upstream-master
 2021-05-21 14:56:08 -05:00
bwatters 72375d1f67 Land #15024, Add RCE Exploit For CVE-2020-0796 (SMBGhost) 
Merge branch 'land-15024' into upstream-master
 2021-05-20 17:02:04 -05:00
Spencer McIntyre a6f650a1a3 Add a clear warning about instability due to KPP 2021-05-20 17:28:14 -04:00
bwatters a89fffade1 Update check method and move it to earlier in the module to prevent crashing 
on windows 7 sp0 targets.
 2021-05-19 15:58:40 -05:00
Spencer McIntyre 56388cd696 Land #15146, Add support for extra OSes for CVE-2021-3156 (Baron Samedit) 2021-05-18 18:02:30 -04:00
Spencer McIntyre a8a1cf75b8 Reorder the Fedora targets to be descending 2021-05-18 18:02:12 -04:00
Grant Willcox 7a6bf2efbc Land #15210, Add ssl setup documentation for gitlab 2021-05-18 15:05:45 -05:00
Spencer McIntyre 78d47b11f2 Add targeting for Windows 10 v21H1 2021-05-18 12:56:02 -04:00
Alan Foster 2b837a9d11 Add ssl setup documentation for gitlab 2021-05-17 23:59:08 +01:00
bwatters 8266f2ffdc Land #15113, post gather module for saltstack salt #15113 
Merge branch 'land-15113' into upstream-master
 2021-05-17 15:33:20 -05:00
William Vu 1f9a3d99bb Add module doc 2021-05-17 13:58:03 -05:00
Grant Willcox 24352567e7 Add final touches to documentation for code highlights and minor fixes 2021-05-14 17:47:38 -05:00
Jack Heysel c8b62a1ff9 Fixed check method nil check, update numberd list in docs, added wfsdelay warning when in dll mode 2021-05-14 17:47:31 -05:00
Jack Heysel 950bbad852 Removed nil script check, updated docs 2021-05-14 17:47:15 -05:00
Jack Heysel eb4573164b Addressed comments 2021-05-14 17:46:26 -05:00
Jack Heysel d23df37b62 Responded to comments, refactored to remove duplicate code 2021-05-14 17:44:08 -05:00
Jack Heysel fab3a9afc8 Added wfsdelay, updated docs 2021-05-14 17:44:07 -05:00
Jack Heysel 1eab94cc26 beta draft 2021-05-14 17:43:44 -05:00
bwatters 8792febcf8 Land #15190, Add Exploit For CVE-2021-21551 (Dell DBUtil_2_3 IOCTL) 
Merge branch 'land-15190' into upstream-master
 2021-05-14 13:55:12 -05:00
Spencer McIntyre d990e884af Add and test even more targets 2021-05-13 17:27:58 -04:00
Grant Willcox ad266b4348 Update documentation to clear a few things up and add in additional checks to module to check the file exists and is readable before using it 2021-05-13 13:39:39 -05:00
pingport80 baabd0265f update docs and add a check 2021-05-13 13:39:32 -05:00
pingport80 e475eaa7bd add formatting option back and update docs 2021-05-13 13:39:19 -05:00
pingport80 854b6a4be4 update telegram/send_message to support multiple chat_ids and document 2021-05-13 13:38:50 -05:00
pingport80 b3bd0ee03f add send_document module and docs 2021-05-13 13:38:41 -05:00
Spencer McIntyre 7d841a0f79 Add a target for Windows 7 x64 2021-05-13 14:24:15 -04:00
Spencer McIntyre 477749f77f Refactor the code to be reusable and add docs 2021-05-12 16:36:17 -04:00
adfoster-r7 1a321e3cc1 Land #15164, Converts Cockpit CMS to use new CookieJar API 2021-05-12 19:25:47 +01:00
Alan Foster 5a0360228f Update cockpit cms module 2021-05-12 17:20:31 +01:00
Grant Willcox 5290549cac Land #15185, Add CVE-2021-22204 ExifTool ANT perl injection 2021-05-11 16:41:44 -05:00
Justin Steven fa73c0af3e Add CVE-2021-22204 ExifTool ANT perl injection 2021-05-11 12:02:12 +10:00
Shelby Pace b9525c581d Land #15102, add GateKeeper Bypass exploit 2021-05-07 09:10:10 -05:00
William Vu 637e9cff48 Update vmware_vrops_mgr_ssrf_rce documentation 2021-05-06 18:30:20 -05:00
Ashley Donaldson 5dc8d0e684 Added automatic cleanup for exploit scripts that modify /etc/passwd 2021-05-06 21:50:03 +10:00
Tim W 410c37b2c8 add documentation 2021-05-04 21:02:53 +01:00
Shelby Pace 0b5ec2f643 Land #15138, idrac docs and improvements 2021-05-04 11:06:41 -05:00
Christophe De La Fuente 1b0f9519a6 Land #15030, GravCMS Unauthenticated Arbitrary YAML Write/Update RCE (CVE-2021-21425) 2021-05-04 14:23:16 +02:00
Christophe De La Fuente 7f667fab4e Update documentation 2021-05-04 14:12:48 +02:00
Ashley Donaldson a055e9a8b7 Land #11130, Added modules to steal Active Directory credentials 2021-05-04 11:35:38 +10:00
Mehmet INCE e3662034ea Update documentation/modules/exploit/linux/http/gravcms_exec.md 
Making consistent with documentation template.

Co-authored-by: cdelafuente-r7 <56716719+cdelafuente-r7@users.noreply.github.com>
 2021-05-03 20:38:17 +03:00
Mehmet INCE 686f8c309a Fix the module documentation 2021-05-03 12:17:24 +03:00
Mehmet INCE 9e04805c0e Adding check method to gravcms exec 2021-05-03 11:14:43 +03:00
Mehmet INCE e3d05395de Add GravCMS exec 2021-05-03 11:14:42 +03:00
Ashley Donaldson 0435e281d9 Updated CVE-2021-3156 documentation to reflect code changes. 2021-05-03 16:45:50 +10:00
Ashley Donaldson 14f9414e94 Added instructions to help understand how to use the extracted data 2021-05-03 13:22:19 +10:00
Ashley Donaldson f0a442b77d Retrieve configured kerberos ticket location before retrieving tickets 
Rather than assume that file-configured kerberos tickets will be at /tmp/krb5_*, let's check the config file.
Also allows us to give more meaningful error messages and point people in the direction of where to look if it doesn't work.
 2021-05-03 13:07:45 +10:00
William Vu a2047071e2 Refine vmware_vrops_mgr_ssrf_rce module doc again 
I've used this Markdown trick before, but I wasn't sure it'd work here.
 2021-05-02 21:18:53 -05:00
William Vu 8b4a763eb1 Add words to vmware_vrops_mgr_ssrf_rce module doc 
I had dropped this sentence for brevity, but now I realize it's useful.
 2021-05-02 17:24:58 -05:00
h00die 2c76671436 add windows minion file 2021-05-02 10:01:06 -04:00