adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
77,971 Commits 27 Branches 1,043 Tags
6d9d9a70d410cc94de4d3d9afd7a75cd426d43be
Commit Graph

3412 Commits

Author SHA1 Message Date
Niboucha Redouane e63dd77b52 Handle empty strings when hex_encode_strings is true 2021-01-09 14:01:32 +01:00
Niboucha Redouane b9d9a8af5b Fix MySQLi timebasedblind output length detection 2021-01-09 14:00:25 +01:00
bwatters 54f5e565fa Land #14330, SpamTitan Gateway Remote Code Execution 
Merge branch 'land-14330' into upstream-master
 2021-01-04 12:14:12 -06:00
Christophe De La Fuente afea5cd74e Use opts['RHOST'] and opts['RPORT'] to creating the SNMP::Manager instance in connect_snmp 2020-12-16 15:15:27 +01:00
William Vu 9452c1dcfa Fix merge conflict from #14202, in linear history 2020-12-09 17:24:29 -06:00
Spencer McIntyre 90a99ae7c3 Land #14423, Expand wordpress_scanner to look for themes & plugins 2020-12-09 09:12:28 -05:00
h00die ac26d4d79b wordpress version update 2020-12-07 18:36:53 -05:00
dwelch-r7 1617b3ec9b Use zeitwerk for lib/msf/core folder 2020-12-07 10:31:45 +00:00
William Vu 010e110b8d Fix indentation 
Whoops!
 2020-12-07 01:35:13 -06:00
William Vu 6066ad47bd Remove unnecessary includes 2020-12-07 01:35:13 -06:00
William Vu e0561c03e9 Remove useless comment 2020-12-07 01:35:13 -06:00
William Vu 967f573b8d Refactor Msf::Exploit::Remote::SSH 2020-12-07 01:35:13 -06:00
Grant Willcox e26d6ca683 Land #14458, Add auxiliary support to autocheck mixin 2020-12-05 23:54:41 -06:00
Alan Foster 76e967353e Add auxiliary support to autocheck mixin 2020-12-03 01:09:06 +00:00
Spencer McIntyre f82ce5335d Support running local exploits from the meterpreter context 2020-12-01 15:22:48 -05:00
h00die a855a455ce wordpress version lib return plugin version 2020-11-22 07:52:00 -05:00
Alan Foster 79a3328cd3 Validate that AutoCheck is prepended 2020-11-11 22:15:40 +00:00
Spencer McIntyre a1561cff46 Add some additional error handling with more readable messages 2020-10-30 14:34:44 -04:00
Spencer McIntyre 17df870e74 Show the current NS server IP address when doing a transfer 2020-10-30 10:28:14 -04:00
Spencer McIntyre a312688391 Use the datastore nameservers when doing zone transfers when set 2020-10-29 17:52:18 -04:00
Spencer McIntyre 861879275e Land #14250, Fix how DNS enumeration displays AXFR results 2020-10-28 13:38:38 -04:00
Grant Willcox 1ad24fb5d0 Fix up dns_axfr function output so that we have start the output on a new line for better clarity 2020-10-28 09:41:19 -05:00
Grant Willcox ab7ed90457 Add in fixes from Spencer's review so we treat the zone object as an array not as a string, like we should have been doing 2020-10-27 15:20:29 -05:00
Niboucha Redouane 17c7c4fdbe Fix issues 2020-10-27 00:55:06 +01:00
William Vu 1a341ae931 Add SharePoint SSI and ViewState RCE 
CVE-2020-16952
 2020-10-14 17:45:15 -05:00
Grant Willcox d79537e88c Fix up the DNS enumeration library so that AXFR records don't have stray [ and ] characters printed in the output 2020-10-09 14:01:09 -05:00
Grant Willcox 5986bc98f1 Land #14171, Replace erroneous calls to get_service with calls to service 2020-09-30 10:05:13 -05:00
Shelby Pace 6c76442639 Land #14153, display SRVHOST SRVPORT opts w/auto 2020-09-24 11:12:08 -05:00
RageLtMan 2c83cde6a8 Add PSH generation methods to Util::Exe 
MSIL generation was never added to util, and the pending rc4
generator should be accessible from here as well. Add both to the
end of the powershell generators section.

Add rc4 to the powershell method enum in opts which is passed
into rex-powershell.
 2020-09-23 14:41:10 -05:00
William Vu f74eba731e Land #14151, Zerologon (CVE-2020-1472) module 2020-09-22 14:02:23 -05:00
Adam Galway 571504642a fixes get_service calls 2020-09-22 12:54:58 +01:00
Adam Galway a0d6431ed5 adds protocol to search terms 2020-09-22 12:44:32 +01:00
adfoster-r7 9ef5822d3a Revert "Replaces erroneous calls to get_service" 2020-09-18 19:09:25 +01:00
Christophe De La Fuente 673a5303c5 Add auto to server_conditions 
`show options` command will now display SRVHOST and SRVPORT options,
even if `auto` is selected in `CMDSTAGER::FLAVOR`
 2020-09-18 10:26:50 +02:00
Grant Willcox a5c30be10b Land #14143, Replace erroneous calls to get_service 2020-09-17 10:41:15 -05:00
Spencer McIntyre f407da63e8 Initial check for CVE-2020-1472 complete 2020-09-16 16:15:19 -04:00
William Vu 3508ba23d9 Don't expose HttpClient dev options to the user 
HttpKeepCookies and HttpPartialResponses have been removed.
 2020-09-16 12:26:11 -05:00
Adam Galway 4918ecf826 replaced get_service calls with services calls 2020-09-16 12:29:15 +01:00
William Vu a946bdb67c Add cookie management to HttpClient 2020-09-16 00:13:26 -05:00
William Vu 6e64d74a56 Fix send_request_cgi! behavior to use PRG pattern 2020-09-15 15:50:57 -05:00
Spencer McIntyre 58a56a2b24 Support an explicit backend for the SMB simple client 2020-08-28 17:28:07 -04:00
Niboucha Redouane 97d134fe07 Refactor PostgreSQL version of the SQLi library to use utils 2020-08-28 20:29:32 +02:00
Niboucha Redouane 6bb9f9d629 Fix postgreSQL documentation 2020-08-28 20:10:19 +02:00
Niboucha Redouane b23b72fa19 Add documentation for dlink_central_wifimanager_sqli, and add write_to_file to PostgreSQLi 2020-08-28 20:10:19 +02:00
Niboucha Redouane e4364ed6e7 Fix safe mode 2020-08-28 20:10:19 +02:00
Niboucha Redouane 99449f46ef Add initial version of PostgreSQL injection support 2020-08-28 20:10:19 +02:00
Niboucha Redouane 1d4d6c384b Merge support for PostgreSQL injection with the branch having support for SQLite and MySQL/MariaDB 2020-08-28 20:09:45 +02:00
Niboucha Redouane 8d64cb9b6b Rename the common utilities from utils to common 2020-08-27 22:54:42 +02:00
Niboucha Redouane d66bb4058e Fix documentation, remove unused instance variable in SQLite TimeBasedBlind class (sleepdelay) 2020-08-27 19:08:27 +02:00
Niboucha Redouane 4e302dc42b Move get_bitmask to the SQLi::Utils module 2020-08-27 16:28:38 +02:00