adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
79,426 Commits 27 Branches 1,043 Tags
8a9eeafd1c7b2d0e6ccc46378cdfd246ea4bf08e
Commit Graph

39275 Commits

Author SHA1 Message Date
Brendan 10d12570c0 Merge pull request #20791 from Chocapikk/webcheck 
Add Web-Check screenshot API command injection RCE exploit (CVE-2025-32778)
 2026-01-12 17:14:04 -06:00
msutovsky-r7 472016b753 Land #20796, moves udev module into persistence category 
update udev to persistence mixin
 2026-01-09 16:14:08 +01:00
jheysel-r7 ae4a5ac986 Merge pull request #20786 from zeroSteiner/feat/lib/mod-merge-target-info 
Merge target info into the module info
 2026-01-08 18:01:14 -08:00
jheysel-r7 b9be6ac259 Merge pull request #20785 from Chocapikk/react2shell-clean 
Update react2shell module: Add Waku framework support
 2026-01-08 17:58:48 -08:00
jheysel-r7 bb98e855e1 Merge pull request #20751 from h00die/sticky_keys 
update windows sticky keys to persistence mixin
 2026-01-08 16:44:04 -08:00
Spencer McIntyre da89d98b1e Merge pull request #20847 from dwelch-r7/fix-ssh-login-print-and-docs 
Fix extra characters in print and merge docs for ssh_login/ssh_login_pubkey
 2026-01-08 16:17:43 -05:00
Spencer McIntyre 16c1b6fa64 Update payload cached sizes 2026-01-08 15:27:31 -05:00
Valentin Lobstein 7b1e7d5320 Apply review feedback: move Space limits to targets, use CheckCode::Detected 
Co-authored-by: bwatters-r7 <bwatters-r7@users.noreply.github.com>
 2026-01-08 16:59:17 +01:00
Valentin Lobstein 0583a4c983 Apply review feedback: revert Platform, simplify framework_config, improve Waku detection 
Co-authored-by: jheysel-r7 <jheysel-r7@users.noreply.github.com>
 2026-01-08 16:50:55 +01:00
Dean Welch 2867729808 Fix extra characters in print and merge docs for ssh_login/ssh_login_pubkey 2026-01-08 13:57:22 +00:00
msutovsky-r7 c289ff44b9 Land #20811, adds module for Prison Management System 1.0 RCE (CVE-2024-48594) 
Add Prison Management System 1.0 auth RCE (CVE-2024-48594)
 2026-01-08 12:33:00 +01:00
Xorriath 2030d19438 Update modules/exploits/linux/http/prison_management_rce.rb 
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
 2026-01-07 14:45:03 +02:00
Xorriath 2ef1b9fbae Update modules/exploits/linux/http/prison_management_rce.rb 
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
 2026-01-07 14:44:51 +02:00
msutovsky-r7 b39e781500 Land #20700, adds module for Taiga.io RCE (CVE-2025-62368) 
Adds exploit module for authenticated deserialization vulnerability in Taiga.io (CVE-2025-62368)
 2026-01-07 11:53:32 +01:00
jheysel-r7 0d21fd4cc9 Merge pull request #20692 from msutovsky-r7/persistence/multi/python-site-specific-config-hook 
Adds module for python site-specific hook persistence
 2026-01-06 16:19:31 -08:00
Spencer McIntyre f545b5b487 Merge pull request #19799 from dledda-r7/fix/mettle-stageless-payload 
Fix Linux Stageless Payload to be Shellcodes
 2026-01-06 14:30:06 -05:00
dledda-r7 79e2b844dd fix: fixing meterpreter template for zarch, removing prepends 2026-01-06 14:07:29 -05:00
Martin Sutovsky d6bffff143 Putting cmd_exec arguments into single argument 2026-01-06 18:38:31 +01:00
jheysel-r7 f0323e8069 Merge pull request #20744 from ptrstr/patch-2 
Remove current date constraint from uploaded path in `wp_reflexgallery_file_upload`
 2026-01-06 08:54:29 -08:00
dledda-r7 eaead1d2f3 fix: remove zarch inmemory_loader from stageless meterpreter 2026-01-06 09:53:03 -05:00
dledda-r7 892ef86515 fix: remove in_memoryloader for ppc, ppc64le, ppce500v2 and armbe from erb file 2026-01-06 09:53:01 -05:00
dledda-r7 6d4cefdff7 fix: fix erb for mettle payload generation 2026-01-06 09:52:28 -05:00
dledda-r7 d2a2d1e1c8 fix: removed + character in PayloadLinuxMinKernel 2026-01-06 09:52:20 -05:00
Diego Ledda 540f16b3b0 Update modules/payloads/singles/linux/zarch/meterpreter_reverse_http.rb 2026-01-06 09:51:56 -05:00
Diego Ledda 5d8d801454 Update modules/payloads/singles/linux/zarch/meterpreter_reverse_https.rb 2026-01-06 09:51:56 -05:00
Diego Ledda 43669bb7dc Update modules/payloads/singles/linux/zarch/meterpreter_reverse_tcp.rb 2026-01-06 09:51:55 -05:00
Diego Ledda c02498274e chore: remove white-space 2026-01-06 09:51:54 -05:00
Diego Ledda 3886401cea fix: update cached size 2026-01-06 09:51:54 -05:00
Diego Ledda 29678264c0 fix: update cached size 2026-01-06 09:51:53 -05:00
Diego Ledda 9e830c2faf fix: update cached size 2026-01-06 09:51:53 -05:00
dledda-r7 187a7d361a fix: changes based on review comments 2026-01-06 09:51:51 -05:00
dledda-r7 75765fb0eb fix: including prepends mixin on linux stageless meterpreter 2026-01-06 09:51:26 -05:00
dledda-r7 cd0645b502 fix: changing MeterpreterLegacyElf to MeterpreterLinuxMinKernel 2026-01-06 09:51:02 -05:00
Martin Sutovsky 494aeb8061 Updates cached_sizes and rubocop 2026-01-06 09:50:35 -05:00
dledda-r7 3a22eae7c8 feat: add elf-legacy option for systems unsupported by in_memory_loader 2026-01-06 09:50:04 -05:00
Martin Sutovsky 9c2ea9c0dc Rubocoping AARCH64 payload modules 2026-01-06 09:49:32 -05:00
dledda-r7 753b80322f fix: updated mettle payload generation and cached_size 2026-01-06 09:49:30 -05:00
dledda-r7 0cc080fbe9 fix: updated mettle payload generation and cached_size 2026-01-06 09:49:00 -05:00
Martin Sutovsky 679ebb070b Code refactor, loader delivery update 2026-01-06 09:48:24 -05:00
Martin Sutovsky 7c77a9cfc7 ARMBe and Zarch stageless payload 2026-01-06 09:47:55 -05:00
dledda-r7 3f2be78f9b feat: add mips64 elf template and meterpreter_loader 2026-01-06 09:47:54 -05:00
Martin Sutovsky ca9706b6ae PPC progress 2026-01-06 09:47:27 -05:00
dledda-r7 71d2eb2046 fix: move mipsbe and mipsle meterpreter_loader into separate mixin 2026-01-06 09:46:08 -05:00
dledda-r7 6d750fef07 fix: move x64 meterpreter_loader into separate mixin 2026-01-06 09:46:07 -05:00
dledda-r7 38cd623b63 fix: move meterpreter_loader into separate mixin 2026-01-06 09:46:07 -05:00
dledda-r7 afb93ec158 feat(payload): linux/mips in_memory_loader for stageless meterpreter 2026-01-06 09:46:06 -05:00
dledda-r7 dba8ddbd6f feat(payload): linux/mipsel in_memory_loader for stageless meterpreter 2026-01-06 09:46:06 -05:00
Martin Sutovsky fd0427e55f Adding itoa function for ARM64 and ARMbe 2026-01-06 09:46:06 -05:00
Martin Sutovsky afba87eb4f Adding itoa function for ARM64 and ARMbe 2026-01-06 09:46:05 -05:00
Martin Sutovsky 4c8e4285cf Adding itoa for ARMle stageless payload 2026-01-06 09:46:05 -05:00