adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
77,971 Commits 27 Branches 1,043 Tags
6d9d9a70d410cc94de4d3d9afd7a75cd426d43be
Commit Graph

1894 Commits

Author SHA1 Message Date
Chocapikk efa49d2aa2 refactor(wp_photo_gallery): drop unused action + guard against LocalJumpError in SQLi helper 2025-07-16 22:04:13 +02:00
Chocapikk 9d56001643 fix 2025-07-10 16:20:53 +02:00
Valentin Lobstein cf0596a8e9 Update modules/auxiliary/gather/wp_photo_gallery_sqli.rb 
Co-authored-by: Brendan <bwatters@rapid7.com>
 2025-07-10 16:19:13 +02:00
Valentin Lobstein 69f8679ac2 Update modules/auxiliary/gather/wp_photo_gallery_sqli.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2025-07-10 16:18:27 +02:00
Chocapikk 622072bba4 WP Photo Gallery by 10Web Unauthenticated SQLi (CVE-2022-0169) 2025-07-10 13:22:19 +02:00
jheysel-r7 79d67dd1f0 Merge pull request #20345 from zeroSteiner/feat/lib/ldap-adds/1 
Add an Active Directory LDAP Mixin
 2025-07-08 14:37:23 -07:00
adfoster-r7 a0bb2d8c89 Merge pull request #20298 from bcoles/modules-SSL 
Modules: Convert SSL default option to Boolean in several modules
 2025-06-26 15:00:59 +01:00
cgranleese-r7 40ca2b3b1b Adds sentinel notes to modules that are missing stability, reliability or side effects 2025-06-25 09:32:01 +01:00
Spencer McIntyre cf53956128 Add a method to get domain info 2025-06-24 11:27:52 -04:00
cgranleese-r7 a454217bd4 Update info -d markdown 2025-06-24 11:21:49 +01:00
cgranleese-r7 37388ca1be Adds sentinel values to modules missing notes 2025-06-23 12:24:58 +01:00
bcoles b483312eca Modules: Convert SSL default option to Boolean in several modules 2025-06-23 19:38:36 +10:00
cgranleese-r7 ade9b54d94 Runs Style/TrailingCommaInArguments Rubocop against modules 2025-06-23 09:30:35 +01:00
cgranleese-r7 a4b14d8b64 Runs Rubocop to fix layout in modules 2025-06-20 15:18:01 +01:00
cgranleese-r7 42f31c0fce Fixes some conditionals in modules 2025-06-20 14:57:03 +01:00
bwatters-r7 b1d5319fcb Fix some spacing inssues 2025-06-09 09:17:11 -05:00
Spencer McIntyre a1e3a23eb4 Merge pull request #20262 from bwatters-r7/fix/vcenter_vmdir_gather 
Fix references to LDAP Datastore Options
 2025-06-05 17:44:21 -04:00
bwatters-r7 02a9eb3233 Update rescue clauses and rubocop 2025-06-05 16:33:42 -05:00
Brendan 2a7f40dcc9 Merge pull request #20139 from h4x-x0r/CVE-2023-27856 
ThinManager Path Traversal Download (CVE-2023-27856) Module
 2025-06-04 14:03:21 -05:00
h4x-x0r 53145d7a65 Update thinmanager_traversal_download.rb 2025-06-04 19:18:43 +01:00
Spencer McIntyre 634c480bd0 Update modules/auxiliary/gather/vmware_vcenter_vmdir_ldap.rb 
Co-authored-by: Brendan <bwatters@rapid7.com>
 2025-05-30 10:18:20 -04:00
bwatters-r7 e36336669d Update description in module and docs to reflect nre option name 2025-05-29 08:11:33 -05:00
bwatters-r7 b207a8848c Fix references to LDAP Datastore Options 2025-05-28 12:02:01 -05:00
Diego Ledda 9b7e27e946 Merge pull request #20185 from Chocapikk/wp_depicter_sqli_cve_2025_2011 
Add WP Depicter Plugin Unauth SQL Injection (CVE-2025-2011)
 2025-05-28 18:38:52 +02:00
Diego Ledda 6cb8d8c599 fix(modules): renaming run_host to run 2025-05-28 18:01:32 +02:00
Valentin Lobstein 8055ba3d65 Update modules/auxiliary/gather/wp_depicter_sqli_cve_2025_2011.rb 
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com>
 2025-05-28 16:28:59 +02:00
cgranleese-r7 4309590ffa Lint files 2025-05-22 11:04:11 +01:00
cgranleese-r7 f6faa5598b Fixes modules to now correctly use a hash with report note 2025-05-22 10:59:50 +01:00
jheysel-r7 c5cfbb60ce Merge pull request #20207 from zeroSteiner/fix/mod/kerberoast/krb-cache 
Set the ticket storage so KrbCacheMode is used
 2025-05-21 15:17:39 -07:00
Chocapikk 2820a0418f Update code to use Wordpress::SQLi mixin ^^ 2025-05-21 18:27:02 +02:00
Spencer McIntyre c03c427633 Set the ticket storage so KrbCacheMode is used 2025-05-19 14:40:12 -04:00
Chocapikk 70d5fb4b65 Move from scanner to gather 2025-05-19 17:52:00 +02:00
Ashley Donaldson ae5b06897c Report ASREP hashes; neaten module to use shared code; add error-handling. 2025-05-19 19:13:01 +10:00
Spencer McIntyre 57c69049f7 Merge pull request #20175 from smashery/ruby-kerberoasting 
Ruby kerberoasting
 2025-05-16 10:28:52 -04:00
h4x-x0r 93a60de77f Update thinmanager_traversal_download.rb 2025-05-15 21:54:31 +01:00
h4x-x0r 0476cd9ad5 Update thinmanager_traversal_download.rb 2025-05-15 21:49:51 +01:00
Spencer McIntyre a7d092701a Add error handling to the module 2025-05-15 13:39:10 -04:00
Spencer McIntyre 15f04ca85f Log an error when kerberoasting fails 2025-05-15 12:29:34 -04:00
Ashley Donaldson 2ba2d7976a Changes from code review 2025-05-15 22:19:11 +10:00
msutovsky-r7 e3649b31fe Land #20123, adds module for path traversal and credential harvester in PowerCom UPSMON Pro 
POWERCOM UPSMON PRO Path Traversal (CVE-2022-38120) and Credential Harvester (CVE-2022-38121) Module
 2025-05-15 07:23:07 +02:00
h4x-x0r 3f4c8a5161 Update upsmon_traversal.rb 2025-05-15 04:28:53 +01:00
Ashley Donaldson 6d3fc7b732 Neatening kerberoasting modifications 2025-05-13 18:26:25 +10:00
Ashley Donaldson abba784190 Fix AES kerberoast hashcat format. Change when hashes are displayed in module. 2025-05-13 18:26:25 +10:00
Ashley Donaldson 1e56168905 Move kerberoasting to Ruby code 2025-05-13 18:26:25 +10:00
h4x-x0r e46079ed61 Update upsmon_traversal.rb 2025-05-09 16:52:23 +01:00
h4x-x0r c034c6490c CVE-2023-27856 2025-05-06 20:04:54 +01:00
h4x-x0r 4c03d3240a Update upsmon_traversal.rb 2025-05-06 04:06:14 +01:00
h4x-x0r 0c2ba466c6 Update pacsserver_traversal.rb 2025-05-06 04:02:33 +01:00
h4x-x0r 832c725b93 Update pacsserver_traversal.rb 2025-05-03 20:36:10 +01:00
h4x-x0r d631fdc32f cleanup 
cleanup
 2025-05-03 20:23:39 +01:00