60b2b0f009
update modules and docs
2021-10-10 17:01:15 +04:00
256b4edf78
update modules to CVE-2021-42013
2021-10-08 15:22:47 +04:00
92a0f9034d
add modules docs
2021-10-06 23:51:31 +04:00
6505f9ccbd
Land #14830 , Adding FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload (CVE-2021-3378)
...
Merge branch 'land-14830' into upstream-master
2021-03-24 17:41:10 -05:00
e2dfca86f9
Add warning for failures after rebooting to the documentation.
2021-03-24 17:32:08 -05:00
f01b434160
Land #14896 , Fix apache_activemq_upload_jsp exploit module for Java 8
2021-03-24 10:22:03 -05:00
9d7e9990f4
Update documentation wording a bit to be more appropriate
2021-03-24 09:17:22 -05:00
2dcd0fad04
Land #14860 , Auxiliary/Exploit Scanner/Gather/RCE for Exchange ProxyLogon (CVE-2021-26855)
2021-03-23 13:10:15 +01:00
37b0552803
last code review before land
2021-03-22 23:20:40 +04:00
d4d9001c84
Fix typos
2021-03-22 14:16:45 -05:00
8605fe4529
Use POST for the check method and write the module docs
2021-03-22 15:04:21 -04:00
c543b44fc2
fix: CmdStagerFlavor, add: Powershell target, ...
2021-03-21 22:47:27 +04:00
308a42e95b
Fix apache_activemq_upload_jsp exploit module for Java 8
2021-03-20 15:26:34 +00:00
f5c807590c
a last round of review + rubocop
2021-03-20 01:23:43 +04:00
6e34a80693
fix. OAB + code review
2021-03-19 10:19:57 +04:00
2c1869f9df
Land #14907 , Add exploit for CVE-2021-1732
...
Merge branch 'land-14907' into upstream-master
2021-03-18 14:29:59 -05:00
fb7a97077f
Land #14875,CVE-2021-21978 - VMWare View Planner Harness 4.6.x < 4.6 Security Patch 1 Arbitrary File Upload RCE
...
Merge branch 'land-14875' into upstream-master
2021-03-18 12:06:12 -05:00
b1c3c49eb5
Land #14757 , nagios_xi_magpie_debug: add writable paths, improvements, cleanup, fixes
2021-03-16 17:43:43 -05:00
0bff88c0c0
Update the module metadata and add module docs
2021-03-16 10:40:34 -04:00
e30d8db082
nagios_xi_magpie_debug: add writable paths, improvements, cleanup, fixes
...
Resolve Rubocop violations
Fix off-by-one in array index triggered when no file upload succeeds
Fix cleanup: ensure files are removed when upload succeeds but execution fails
Add AutoCheck
Add module notes
Add error handling and associated operator feedback
Add additional writable paths required for some old Nagios versions
Add fallback to session as `apache` if privlege escalation fails
Update documentation in line with above changes and fix software download links
2021-03-16 07:13:55 +00:00
ae5d31cb39
Land # 14776, Add Window Server 2012 SrClient DLL Hijacking local exploit module
...
Merge branch 'land-14776' into upstream-master
2021-03-15 14:34:35 -05:00
98c04eae6c
Remove TODO comment, update documentaton to include WAIT_FOR_TIWORKER option.
2021-03-15 07:51:12 -04:00
9a92ac87a1
Ensure documentation files have md extension
2021-03-15 10:24:50 +00:00
59955f0a32
add. timeout and fix. CmdStagerFLavor
2021-03-15 01:10:56 +04:00
dcf2b69d6d
add. exploitation module doc and some changes
2021-03-14 22:49:41 +04:00
4f2e299d8f
Update the exploit to use Python as its payload since this is a lot more flexible, allows Meterpreter, returns a shell faster, and we are already injecting into and executing a Python file
2021-03-14 00:00:06 -06:00
c2c5db95d8
Add in documentation and fix some mistakes in the description of the module
2021-03-14 00:00:05 -06:00
8dce1acd64
Land #14794 , dup_scout_enterprise_login_bof: Add v9.9.14 target and auto targeting
2021-03-12 12:07:57 -06:00
d580e7d122
Fix some documentation, remove unnecessary code and fix a filename typo
2021-03-11 12:09:29 -06:00
a227d00275
Add additional setup notes for some modules
2021-03-11 12:09:29 -06:00
8d2e644f4f
Add a new Java Deserialization mixin and use it to set the shell
2021-03-11 12:09:29 -06:00
fbd6f19d04
Land #14846 , add HPE SIM unauth AMF deser rce
2021-03-08 16:50:49 -06:00
514d46bd4d
Rubocop module again and also update the documentation to reflect recent changes
2021-03-08 16:08:36 -06:00
8b149a2c9b
Fixed line numbers of verification steps
2021-03-06 22:50:12 +03:00
729994d4af
Update module doc
2021-03-05 17:25:37 -06:00
7bbb4cc09a
Add module doc
2021-03-05 17:25:37 -06:00
59d7288773
RuboCop module and fix small spelling mistake in documentation
2021-03-04 18:48:19 -06:00
f193caa48e
Also make sure that the default option is to use Windows Powershell since this supports Meterpreter and is generally a lot more reliable
2021-03-04 18:40:21 -06:00
3ef8fcd996
Update module to fix an extra print statement and write documentation
2021-03-03 10:14:41 -06:00
3da8fce9cf
Add Microsoft Windows RRAS Service MIBEntryGet Overflow
2021-03-03 02:50:42 +00:00
9617801bfd
Edited document.
2021-03-02 15:05:48 +03:00
d3338e7380
fortilogger_arbitrary_fileupload
2021-03-01 19:30:39 +03:00
648489cfe5
fortilogger_arbitrary_fileupdate
2021-03-01 17:55:55 +03:00
6d939c16ce
Land #14783 , Update KarjaSoft Sami FTP Server v2.0.2 USER Overflow module
2021-02-26 11:17:05 -06:00
743248d993
Update KarjaSoft Sami FTP Server v2.0.2 USER Overflow module
2021-02-25 20:53:30 +00:00
f89d67df19
dup_scout_enterprise_login_bof: Add v9.9.14 target and auto targeting
2021-02-25 17:14:25 +00:00
1d5a6e4a0b
Land #14771 , Add Apache Flink JAR Upload Java Code Execution
2021-02-23 09:19:56 -05:00
69031fa91f
Add Apache Flink JAR Upload Java Code Execution
2021-02-22 23:00:57 +00:00
edea755096
Land #14740 , CVE-2021-3156 Sudo LPE (AKA: Baron Samedit) Improvements
2021-02-22 17:48:33 +00:00
68d4b197fa
Add SrClient DLL Hijacking local exploit module and docs
2021-02-18 13:50:28 -05:00
RAMELLA Sébastien