d1739f32c2
review of chaos rat
2024-05-13 16:55:43 -04:00
733c014223
Land #19115 , read/write registry key SD
...
Module to read/write registry key security descriptor remotely
2024-05-13 15:41:54 -04:00
b1cd5b3476
Land #19132 , Add LDAPS Channel Binding
...
Add channel binding information to Metasploits NTLM and Kerberos
authentication for the LDAP protocol. This enables users to authenticate
to domain controllers where the hardened security configuration setting
is in place
2024-05-13 11:31:10 -07:00
216ffec555
Add Linux compatibility
2024-05-13 10:11:56 -07:00
f1ee10f486
Code review #2
2024-05-13 12:01:54 +02:00
576191b34f
beta commit
2024-05-10 09:01:58 -07:00
80fdde5fdc
Land #19100 , Add Loadmaster sudo priv esc
...
Add Kemp Progress Loadmaster sudo abuse priv esc
2024-05-10 10:21:38 -04:00
b28e263a2b
Update debug statements and add protection against bad die name
2024-05-10 08:54:23 -05:00
95ebf18691
Adding Arch parameter to dnn_cookie_deserialization_rce module
2024-05-09 23:09:03 +02:00
948b18b08c
Add a check to the file delete
2024-05-09 15:52:29 -05:00
bef50de25a
Update error handling for some LDAP modules
2024-05-08 16:40:34 -04:00
1326849076
Added post module & documentation for CarotDAV FTP Client
2024-05-08 10:54:33 -04:00
c5500a3337
Added post module & documentation for Sylpheed email Client
2024-05-08 10:09:49 -04:00
47f1623d6c
Merge branch 'rapid7:master' into Halloy-Packrat-Module
2024-05-08 14:14:56 +01:00
b3f2904e75
Re-arranged Author list
2024-05-07 16:22:51 -04:00
2ea116efea
Land #19163 , Allow setting the RPORT option for smb_version
2024-05-07 19:36:12 +01:00
37c068a66e
RuboCop Fixes
2024-05-07 13:25:52 -04:00
ee2ca6a35b
Added post module for Halloy IRC Client
2024-05-07 12:51:25 -04:00
0863700f7a
Try 445/tcp before 139/tcp when scanning smb
2024-05-07 10:54:35 -04:00
88efba7cbb
Allow setting the RPORT option for smb_version
2024-05-07 10:17:15 -04:00
946cc3baf1
Land #19147 , Auxiliary module for CVE-2024-4040 - CrushFTP arbitrary file read
2024-05-07 15:44:24 +02:00
47c8d7252b
Land #18519 , Docker kernel module escape
2024-05-06 09:08:08 -04:00
0b5eaef1f7
jasmin_ransomware fix check methods
2024-05-04 16:06:48 -04:00
753ca1da61
reviews for jasmin ransomware panel
2024-05-04 15:56:11 -04:00
8240b869b9
reviews for jasmin ransomware panel
2024-05-04 15:56:11 -04:00
24c689dfde
jasmin ransomware sqli and dir travers
2024-05-04 15:56:10 -04:00
d18700ec3b
jasmin ransomware sqli and dir travers
2024-05-04 15:56:10 -04:00
b044bcab01
Add command payloads and checks for overwritten files
2024-05-03 13:06:16 -05:00
9ee3cfd057
Implement peer review suggestions
...
Added multiple API endpoint injection options
Added TARGETURI to support different reverse proxy configurations
Confirmed that different languages are supported
Removed RHOST 0.0.0.0 default
Set STORE_LOOT to optional and set default to "false"
Added more detail to every check and fail message
Moved print_status message after STORE_LOOT
2024-05-03 12:01:48 -05:00
4c84f8830f
Land #18907 , add mssql_version module
2024-05-03 14:33:35 +01:00
69cbddde92
Land #19050 , Adobe ColdFusion Arbitrary File Read [CVE-2024-20767]
2024-05-03 15:15:08 +02:00
bb473f4004
Reimplement password_spray into login modules
2024-05-03 13:00:24 +01:00
c382066be8
cache prelogin packet
2024-05-02 12:51:33 -05:00
e3d7dce4a9
Updated res.body parsing, responded to comments
2024-05-02 09:47:22 -07:00
7f433bfadb
Implement peer review suggestion to move IOC comments up
2024-05-02 11:44:39 -05:00
168eb9e14d
Implement peer review suggestion to remove unnecessary STORE_LOOT check
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com >
2024-05-02 11:13:54 -05:00
9e8fe15e48
Implement peer review suggestion for more detailed fail_with message
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com >
2024-05-02 11:11:04 -05:00
1bf721b9d5
Land #19152 , Fix apache_normalize_path_rce check
...
Fix apache_normalize_path_rce check method
2024-05-01 17:10:23 -04:00
5e1dc05f09
Fix apache_normalize_path_rce check method
2024-05-01 20:01:38 +01:00
c2bf9ead06
Add support for redhat based containers
...
Containers such as Fedora use a different directory for the kernel
headers.
2024-05-01 13:30:16 -04:00
c2a561630d
Add local privesc module for Flowmon
2024-05-01 09:07:34 -07:00
a7e97e50ad
Add module for flowmon cmd injection CVE-2024-2389
2024-05-01 08:42:55 -07:00
2cb0e44740
Don't change the working directory
2024-05-01 10:35:24 -04:00
a98554a1f4
Land #19048 , Enable inline credentials dump
...
Windows Secrets Dump: Enable inline credentials dump
2024-05-01 09:05:40 -04:00
67dc01f124
Remove the unnecessary payload space
2024-04-30 16:29:43 -04:00
6849e909d0
Code review
...
- remove `#auxiliary_commands`, it is not necessary anymore
- move the connection logic to a separate method
- make sure the connection to Winreg is setup when using direct `read`
and `write` commands
- fix wrong method call to `save_to_file`
2024-04-30 20:57:32 +02:00
91be90c43e
Add registry_security_descriptor module and documentation
2024-04-30 20:57:32 +02:00
9079ce331b
Remove call to each_key on users array, since it is not a Hash
2024-04-30 20:52:23 +02:00
de82fdac50
Remove trailing whitespaces
2024-04-30 12:33:26 -05:00
8b1b940f7c
Fixing a spacing issue that was introduced, as well as a couple msftidy issues
2024-04-30 12:19:16 -05:00
h00die