4acef2ba41
Land #19997 , PIPE_FETCH option for fetch payloads
...
Add PIPE_FETCH option to fetch payloads to make payloads shorter
2025-04-11 16:06:56 +02:00
f67dfe6a62
Update check
2025-04-11 21:51:45 +09:00
c3c62e5fdd
Improve a bit modules/post/linux/gather/enum_protections.rb
...
- Use proper names instead of executable names
- Add a file-based detection method, with the list taken from https://github.com/hackerschoice/hackshell/issues/6
Co-authored-by: Brendan <bwatters@rapid7.com >
2025-04-11 14:34:56 +02:00
0b4e133001
Land #20018 , pgAdmin Authenticated RCE (CVE-2025-2945)
...
pgAdmin Query Tool Authenticated RCE (CVE-2025-2945)
2025-04-11 10:34:02 +02:00
718a0bc5c7
Change directory from linux to multi
2025-04-11 14:45:10 +09:00
b613b0a41b
Add Langflow unauth RCE module (CVE-2025-3248)
2025-04-11 14:07:54 +09:00
4cec129e1c
Responded to comments
2025-04-10 10:53:05 -07:00
ddb29d6181
Removed unnecessary method
2025-04-10 07:18:42 -07:00
290a35b0f6
pgAdmin Query Tool Authenticated RCE (CVE-2025-2945)
2025-04-09 17:32:10 -07:00
608ebf2f4e
Add LAPS support to ldap_paswords
2025-04-09 16:44:32 -04:00
02bb2e29ac
Move ldap_hashdump -> ldap_passwords
...
We're shifting the focus to password recovery but we'll still gather
hashes if they're found.
2025-04-09 13:04:00 -04:00
a5e1fb8ad3
Refactor the ldap_hashdump module
2025-04-09 13:04:00 -04:00
87293f58cc
Merge pull request #20006 from cgranleese-r7/add-missing-notes-to-modules
...
Fixes modules that were causing Rubocop to fail
2025-04-09 12:18:17 +01:00
7e42746eb0
Code review and fixes
...
- Fix Pkcs12 filer to use case insensitive username and realm
- Handle nil values in `StoredPkcs12`
- Use `fallbacks` options in `ldap_login`
- Small fixes
2025-04-08 18:21:39 +02:00
4da78bd550
Merge pull request #19994 from sfewer-r7/CVE-2021-35587
...
Adds exploit module for CVE-2021-35587, an unauthenticated deserialization vulnerability affecting Oracle Access Manager (OAM).
2025-04-08 08:59:18 -05:00
fe9a0ad25b
Land #20008 , PandoraFMS Auth RCE module
...
Pandora FMS authenticated RCE [CVE-2024-12971]
2025-04-08 07:50:28 +02:00
e3e396b190
Updates module with missing notes
2025-04-07 15:35:40 +01:00
40ba981c98
update based on reviewer suggestions
2025-04-07 14:29:51 +00:00
39e4093310
Rubocop formatting after applied suggestions
2025-04-07 21:03:58 +09:00
7aabe06f66
Apply suggestions from code review
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-04-07 20:59:57 +09:00
ec6f4022cd
Make the Ruby code error-safe
2025-04-07 20:28:57 +09:00
f42083db03
Increased the size of email to avoid duplicate
2025-04-07 20:23:31 +09:00
35c1ccccdb
Update modules/exploits/linux/http/appsmith_rce_cve_2024_55964.rb
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-04-07 20:06:55 +09:00
76fb34a5db
small update in description of the module and documentation
2025-04-06 10:49:03 +00:00
8a72fd6861
init module and documentation
2025-04-06 10:33:56 +00:00
139dd50333
Add Appsmith RCE module (CVE-2024-55964)
2025-04-05 14:56:04 +09:00
9808172c9e
Address OPNSense login scanner PR feedback
2025-04-04 15:58:40 +01:00
791cc0cd82
Implement suggested changes from peer review
2025-04-03 10:24:46 -05:00
460459cd46
Remove CVE identifier reference in description
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2025-04-03 08:22:05 -05:00
459034f171
Implement rubocop changes
2025-04-02 20:19:48 -05:00
4e8b8584ac
crushftp_authbypass_cve_2025_2825.rb
2025-04-02 20:05:29 -05:00
d16eeab32c
Merge pull request #19995 from chutton-r7/cve-2025-24813
...
Module for CVE-2025-24813
2025-04-02 14:20:52 -07:00
b85faf9440
Update documentation
2025-04-02 14:10:46 -07:00
3fa7fe68a1
Consolidated Platform check
2025-04-02 13:57:56 -07:00
c32a34112f
Updated register_file_for_clean to account for windows
2025-04-02 13:52:04 -07:00
6816589378
Added FileDropper for cleanup
2025-04-02 13:37:39 -07:00
4058173a1c
Correct spelling
2025-04-02 12:57:20 -07:00
59b0860ea1
add in Peterjson as the co-finder with Jang
2025-04-02 20:50:57 +01:00
8cd0449550
Responded to comments
2025-04-02 12:50:26 -07:00
630c2c03bc
Update certs command, pkcs12 matching and specs
...
- use the `status`, certificate's `not_before`/`not_after` and check if the TLS
OID is present to filter pkcs12 before using them with PKInit
- add the `activate`, `deactivate` and `export` capabilities to the
certs command
- add specs
2025-04-02 18:23:14 +02:00
d1124c44f5
Fix Rinda msfcrawler error
2025-04-02 16:34:34 +01:00
998d0a78c2
based on the OAM version, pick the prebuilt gadget chain for that version (to account for the serialVersionUID changes)
2025-04-02 15:31:37 +01:00
f6bcf19b91
add a helper get_version and use it in the check
2025-04-02 15:30:32 +01:00
3f46bfe0ad
add in a seperate Unix target, as OAM can run on other things like HP-UX, IBM AIX, and Solaris
2025-04-02 15:29:29 +01:00
63a86109f6
Better error handling, set default Python Meterpreter (seems most reliable). Fix switch
2025-04-02 10:04:33 +01:00
ca3c4a1362
Merge branch 'master' into get_naa_creds_via_relay
2025-04-01 09:34:35 -07:00
37175955cd
Fix some https bugs and generate non-piped commands properly
2025-04-01 11:16:21 -05:00
e1310f4f89
Simplify logic
2025-04-01 15:50:23 +01:00
b77489587a
Remove CmdStager, add version tested, credit
2025-04-01 15:15:30 +01:00
c34c627e18
Support Linux, clean DefaultOptions
2025-04-01 15:05:56 +01:00
msutovsky-r7