adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
46,484 Commits 27 Branches 1,043 Tags
6594cbb5ccd3f0b6a3db4300a01491f972ef01c0
Commit Graph

23901 Commits

Author SHA1 Message Date
Tim W 6594cbb5cc Land #9947, AF_PACKET packet_set_ring exploit 2018-05-17 18:43:52 +08:00
Tim W dc227153c4 fix gcc on shell_reverse_tcp session 2018-05-17 18:43:27 +08:00
Tim W ce5b24eda0 fork early and cleanup files in module 2018-05-17 00:32:01 +08:00
Jacob Robles 999b895735 Land #9816, Add the scanner/smb/impacket/dcomexec module 2018-05-16 07:15:32 -05:00
William Vu eb0ac79143 Land #9975, local_exploit_suggester fixes 2018-05-16 06:48:02 -05:00
William Vu 739d58135f Move EXE generation in struts_code_exec_parameters 2018-05-16 06:15:40 -05:00
William Vu 6ec0272ff5 Land #8727, CVE-2017-9791 exploit 2018-05-16 05:41:26 -05:00
William Vu eaec1d7486 Clean up module 2018-05-16 05:39:17 -05:00
William Vu 436e414b93 Land #7815, CVE-2016-9299 exploit 2018-05-16 05:29:41 -05:00
William Vu 959cbde6eb Clean up module 2018-05-16 05:29:25 -05:00
William Vu 908857b563 Land #10036, reverse_bash_telnet_ssl fixes 2018-05-16 04:10:36 -05:00
William Vu 3810803276 Land #10035, awk payload improvements 2018-05-16 04:10:21 -05:00
William Vu 6723de2659 Land #10031, zsh payload improvements 2018-05-16 04:10:00 -05:00
William Vu c2c46586cd Land #10030, reverse_ksh payload 2018-05-16 04:08:17 -05:00
William Vu 6abd0d068a Nix explicit return 2018-05-16 04:06:58 -05:00
Brendan Coles c5f980f633 GoodRanking 2018-05-16 02:38:19 +00:00
William Vu 3ea4548343 Fix PayloadType in reverse_bash_telnet_ssl 
It should not be cmd_bash, since it doesn't rely on being in bash.
 2018-05-15 20:50:30 -05:00
William Vu 49bfa3b707 Update CachedSize 2018-05-15 20:07:14 -05:00
William Vu a19c5f723b Improve bind_awk payload (credit @bcoles) 2018-05-15 20:01:57 -05:00
William Vu 5d229abf72 Improve reverse_awk payload (credit @bcoles) 2018-05-15 20:01:32 -05:00
William Vu cc35975164 Update CachedSize 2018-05-15 19:56:55 -05:00
William Vu 1100899ccb Change link to HTTPS 2018-05-15 19:56:42 -05:00
William Vu 3ccfc27096 Redirect stderr as well 2018-05-15 19:51:10 -05:00
William Vu 3f39475579 Update CachedSize 2018-05-15 19:42:39 -05:00
William Vu b58dc3bf5e Refactor zsh payloads 
This also fixes an oversight where the payloads would fail outside zsh.
 2018-05-15 19:26:19 -05:00
WangYihang 49904e0377 Add an reverse shell payload by zsh through redirection operations 2018-05-15 22:43:37 +08:00
WangYihang 53844cb24a Add an reverse shell payload by ksh(the korn shell) 2018-05-15 22:36:47 +08:00
zerosum0x0 4a64401a58 fix ms17-010 similar to 4a56ecf3ae 2018-05-14 15:45:20 -06:00
Aaron Soto f5a43f2ed0 Land #9991, Remove need for temp file with xdebug_unauth_exec 2018-05-14 08:55:38 -05:00
Tim W ed5f2bffa9 Land #9919, add libuser roothelper privilege escalation exploit 2018-05-12 17:11:21 +08:00
Tim W a8660e4042 make the PASSWORD option required 2018-05-12 17:10:21 +08:00
Tim W 67c7a718db Land #9868, fix post/osx/capture/keylog_recorder 2018-05-10 16:47:57 +08:00
Jacob Robles 9811de430c Land #9878, Add MSF module for EDB 6768, Mantis <= v1.1.3 Post-auth RCE 2018-05-09 11:55:22 -05:00
Jacob Robles a1fed72423 store credential, use vprints 2018-05-09 11:50:07 -05:00
miluxsec 5ed1bde65f Removed unused FileDropper include 2018-05-08 18:10:29 +02:00
miluxsec 5038098efb Remove need for writable directory when using xdebug exploit 
By base64 encoding the exploit code and decoding it on the target the
need for writing a temporary file is removed.
See #9918
 2018-05-07 22:11:21 +02:00
William Vu 0240c3f010 Land #9980, PAN-OS readSessionVarsFromFile exploit 2018-05-07 14:55:00 -05:00
Brent Cook 02849bcfd0 Land #9986, initial ruby_smb simple client integration 2018-05-07 14:02:22 -05:00
Jacob Robles a18459a14c Fix indentation, documentation update 2018-05-07 09:22:21 -05:00
Touhid M Shaikh 235cac621f playsms_CVE-2017-9101 
playsms_CVE-2017-9101
 2018-05-07 18:55:22 +05:30
Touhid M Shaikh 74793efdef Delete playsms_uploadcsv_exec.rb 2018-05-07 18:54:35 +05:30
Touhid M Shaikh fefaa45a50 playsms_CVE-2017-9101 
playsms_CVE-2017-9101
 2018-05-07 18:53:07 +05:30
Jacob Robles 222b1fb27c Land #9944, playsms_filename_exec.rb 2018-05-07 07:43:16 -05:00
Jacob Robles 601411fe7b store credentials 2018-05-07 07:26:28 -05:00
Jacob Robles 4b8ceab522 Fix indentation, update documentation 2018-05-07 07:22:53 -05:00
Brent Cook a4ecd43a8f remove unused constants 2018-05-07 00:24:38 -05:00
Jacob Robles 534d05ff44 simpleclient versions option 2018-05-07 00:24:38 -05:00
Jacob Robles ff202a5f5b Simpleclient/SMB2 support 2018-05-07 00:24:38 -05:00
HD Moore 2a211d99af Nuke base_directory after all, FileDropper does not like our path 2018-05-06 22:58:06 -05:00
HD Moore a9f9d61f1e Use the target_directory, not base 2018-05-06 22:56:59 -05:00