8aef054dfd
SCTP Sessions
...
With the introduction of SCTP socket support in Rex::Socket via
https://github.com/rapid7/rex-socket/pull/56 , Framework can utilize
this protocol for session transports similarly to TCP as it is a
stream-wise transport.
Implement bind and reverse handlers for the new socket type.
Implement example bind and reverse payloads using socat copying
from the initial udp sessions implementation.
Testing:
Rudimentary bind session test against local Libvirt Linux VM
Next steps:
Implement the language-level payloads for the interpreters common
to POSIX environments supporting SCTP.
Implement meterpreter transports for SCTP in Python, PHP, Mettle,
and Java modalities (Windows doesn't support it without carrying
its own usermode protocol library).
2023-02-08 21:47:28 -05:00
a9bd7e9f46
automatic module_metadata_base.json update
2023-02-08 13:31:52 -06:00
01a78f972c
Land #17567 , ManageEngine Endpoint Central RCE (CVE-2022-47966)
...
Merge branch 'land-17567' into upstream-master
2023-02-08 13:06:53 -06:00
79a5481d9c
automatic module_metadata_base.json update
2023-02-08 12:10:30 -06:00
c997952d83
Land #17607 , Fortra RCE CVE-2023-0669
...
Fortra deserialization RCE CVE-2023-0669 (ETR)
2023-02-08 12:56:09 -05:00
810ef42bf0
automatic module_metadata_base.json update
2023-02-08 11:55:11 -06:00
0c6ebed3ac
Merge pull request #3 from smcintyre-r7/pr/collab/17607
...
Pr/collab/17607
2023-02-08 09:41:35 -08:00
a878403a3e
Land #17618 , Run rubocop on auxiliary admin http modules
2023-02-08 17:40:26 +00:00
0de766498c
automatic module_metadata_base.json update
2023-02-08 10:49:50 -06:00
c3e9e2751a
Land #17617 , Update linting on post modules
2023-02-08 16:35:20 +00:00
2b008af097
Move the module to reflect it targets Windows too
2023-02-08 10:24:27 -05:00
75ceb7b670
Refactor option handling.
...
Use CamelCase names for advaned options and add validation.
2023-02-08 10:17:16 -05:00
fef7c85518
Add Windows target compatibility
2023-02-08 09:47:37 -05:00
6e9b33dc88
Run rubocop on auxiliary admin http modules
2023-02-08 14:30:08 +00:00
716ba68b25
automatic module_metadata_base.json update
2023-02-08 08:24:26 -06:00
b56213b168
Update linting on post modules
2023-02-08 14:12:43 +00:00
11c886b30f
Land #17616 , Run rubocop on post modules
2023-02-08 14:09:16 +00:00
a81a71c5df
Run rubocop on post modules
2023-02-08 13:47:34 +00:00
488cfc84ef
Disable noisey or unsafe Rubocop rules
2023-02-08 13:42:49 +00:00
f8bb85ffe3
automatic module_metadata_base.json update
2023-02-08 07:06:26 -06:00
7909fe32c2
Land #17612 , Add exception handling for finalizer methods
2023-02-08 12:33:52 +00:00
10144a9f13
Land #17615 , Add missing module notes for stability reliability and side effects
2023-02-08 12:28:47 +00:00
433bafdccf
Add missing module notes for stability reliability and side effects
2023-02-08 11:45:17 +00:00
d261aa6a2b
Land #17603 , Add ul_type 12 (UPN and DNS info) to pac bindata
2023-02-08 11:22:20 +00:00
4311c34a0b
Land #17614 , Weekly dependency updates for Gemfile.lock
2023-02-08 11:13:15 +00:00
affe47957b
Bump up Gems
2023-02-07 17:21:16 -06:00
1168658f0e
automatic module_metadata_base.json update
2023-02-07 17:21:03 -06:00
782e4c0295
Add ul_type 12 (UPN and DNS info) to pac bindata
2023-02-07 23:14:00 +00:00
8ee67085c8
Land #17556 , ManageEngine ADSelfService Plus RCE (CVE-2022-47966)
...
Merge branch 'land-17556' into upstream-master
2023-02-07 16:57:22 -06:00
a036c2fae0
automatic module_metadata_base.json update
2023-02-07 15:54:12 -06:00
c2e8f3fa69
Land #17494 , Add NagiosXI authenticated RCE (CVE-2021-25296, CVE-2021-25297,CVE-2021-25298) exploit module
2023-02-07 15:38:36 -06:00
f145a214ca
Add exception handling for finalizer methods
2023-02-07 20:28:15 +00:00
52fa2e5be6
Add example for version 5.5.6 with CVE-2021-25297
2023-02-07 14:18:53 -06:00
489ab24876
Add in additional case documentation for the various targets and CVEs and fix a bug in the code
2023-02-07 14:18:45 -06:00
8ba7a28caf
Add quotes to set-time command in docs
2023-02-07 14:18:45 -06:00
7c30889784
Refactor code to handle unsigned licenses in one central function
2023-02-07 14:18:39 -06:00
b14bcd40a2
Fix incorrect match logic grabbing the wrong entry from results for NSP
2023-02-07 14:18:38 -06:00
425da60b15
Add in missing case 5 check
2023-02-07 14:18:38 -06:00
90e07ef5ed
Switch to match over scan and add troubleshooting steps
2023-02-07 14:18:37 -06:00
8cddf56238
Verify auth_cookies before use
2023-02-07 14:18:37 -06:00
a276659681
Use more encompassing single regex
2023-02-07 14:18:36 -06:00
7554b5e4fd
Add failure condition for nsp's that fail to match the regex
2023-02-07 14:18:36 -06:00
1cb06b11ac
Adjust exploit and docs to support versions 5.5.6-5.7.5
2023-02-07 14:18:09 -06:00
87176f9d7f
Address Review Comments and add CVE-2021-25297 coverage
2023-02-07 14:18:06 -06:00
c5914d8c99
Insert randomized strings to fix exploit with plugin_output_len
2023-02-07 14:18:05 -06:00
990db5372f
Remove extra payload details, add config check
2023-02-07 14:18:05 -06:00
b042e71b2a
Make Module work for both target url parameters
2023-02-07 14:18:04 -06:00
b606d1ff6b
Add Documentation for Module
...
Fix CVE format
Add Documentation
2023-02-07 14:18:04 -06:00
5846d95b25
Create nagios_xi_configwizards_authenticated_rce.rb
...
Add initial module
2023-02-07 14:18:03 -06:00
676bb2af02
Fix a couple requests from the PR
2023-02-07 09:05:44 -08:00
RageLtMan