adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
80,937 Commits 27 Branches 1,043 Tags
91633fdad7e9474debefbfd044d2b8bc7652deee
Commit Graph

3108 Commits

Author SHA1 Message Date
Spencer McIntyre 91633fdad7 Remove the encrypted shell payload and libs 2026-04-15 12:43:29 -04:00
Spencer McIntyre b3d367f1bf Merge pull request #21085 from dledda-r7/issue-19309 
Update block-api to prepare for a random IV
 2026-04-14 15:35:10 -04:00
msutovsky-r7 e79b3cf8a2 Land #21027, fixes alignment of ELF shared object templates 
Fixes alignment in ELF shared object templates
 2026-04-11 12:20:32 +02:00
dledda-r7 6e4be026a2 fix(block_api): block-api graphml file using unicode_string->length 2026-04-10 10:53:23 -04:00
Spencer McIntyre c3c6a21e55 Update the block API hashing algorithm 
Allow the block API hashing algorithm to accept an IV
 2026-04-10 10:53:22 -04:00
Martin Sutovsky 53df5b989a Fixes alignment for Riscv32 LE 2026-04-09 16:24:51 +02:00
Martin Sutovsky ac715797a7 Rreplaces the hardcoded padding with align 4 keyword 2026-04-09 16:09:55 +02:00
g0t mi1k b0f3dd9fe3 php_include: XXpathXX -> !INJECT! 2026-03-31 06:38:52 +01:00
adfoster-r7 1271eed27d Update bofloader logo location 2026-03-30 11:33:49 +01:00
adfoster-r7 1faa27f7e6 Fix encoding issues in files 2026-03-25 19:01:57 +00:00
Ramesh 53338b6736 fix: correct ARM LE ELF SO entry point alignment 
The _start label in the armle ELF shared object template was landing
at offset 0xF6, which is half-word aligned but not word aligned.

ARM A32 requires 4-byte (word) alignment for instruction addresses.
This caused the shared object to fail to load and execute on 32-bit
ARM Linux targets.

Fix: add 2 null padding bytes between strtab and _start, pushing the
entry point from 0xF6 to 0xF8 (word aligned).

Fixes #19668
 2026-02-27 19:14:08 +05:30
h00die 75ff7b6af1 emacs extension persistence 2026-01-31 22:54:18 -05:00
msutovsky-r7 537a1c5395 Land #19821, adds Burpsuite persistence module 
Burp extension persistence
 2026-01-22 11:03:08 +01:00
h00die 7ccf574e99 burp extension all working 2026-01-16 08:44:27 -05:00
h00die fa83217a07 burp extension java target working 2026-01-15 16:15:48 -05:00
dledda-r7 d5fb4a95ed fix: minor fix linux elf templates 2026-01-06 09:51:56 -05:00
dledda-r7 f7caa72f3f fix: align assembly comments, add single build instructions 2026-01-06 09:51:28 -05:00
Martin Sutovsky 0b0ab91594 Add build script 2026-01-06 09:50:07 -05:00
Martin Sutovsky 7c77a9cfc7 ARMBe and Zarch stageless payload 2026-01-06 09:47:55 -05:00
dledda-r7 3f2be78f9b feat: add mips64 elf template and meterpreter_loader 2026-01-06 09:47:54 -05:00
Martin Sutovsky 861e1b77d6 PowerPC stageless payload 2026-01-06 09:47:50 -05:00
Martin Sutovsky ca9706b6ae PPC progress 2026-01-06 09:47:27 -05:00
Martin Sutovsky 0c2b25e099 PPC64 shellcode added, adding PPC initial work 2026-01-06 09:47:06 -05:00
Martin Sutovsky 764c0c449f PPC64le init 2026-01-06 09:46:33 -05:00
h00die 839a8f2ebc burp extension review 2026-01-04 08:06:14 -05:00
h00die c272d8a0aa burp extension persistence 2026-01-04 08:06:14 -05:00
h00die 30e8ede308 windows and linux build portions working, debugging java 2026-01-04 08:06:14 -05:00
h00die 190fab9b0a windows and linux build portions working 2026-01-04 08:06:14 -05:00
h00die 8752110581 non-compile working just needs testing 2026-01-04 08:06:14 -05:00
h00die 773f2c4b8b burp extension persistence 2026-01-04 08:06:14 -05:00
Brendan 6c4a61fa42 Merge pull request #20761 from Chocapikk/acf-extended-rce 
Add WordPress ACF Extended unauthenticated RCE exploit (CVE-2025-13486)
 2025-12-18 16:03:06 -06:00
jheysel-r7 d86c5f0908 Merge pull request #20746 from Chocapikk/king-addons 
Add WordPress King Addons privilege escalation exploit (CVE-2025-8489)
 2025-12-10 08:37:11 -08:00
Diego Ledda d6560b951f Merge branch 'master' into loongarch64 2025-12-10 07:08:40 -05:00
Valentin Lobstein b4d65afcf5 Add exploit module for WordPress ACF Extended CVE-2025-13486 unauthenticated RCE 2025-12-09 22:02:41 +01:00
sfewer-r7 1a8e88c054 fix a typo with the use of CVE-2025-55102, it should be CVE-2025-55182 2025-12-09 09:05:59 +00:00
jheysel-r7 66279422d1 Merge pull request #20747 from vognik/2025-55182 
Add CVE-2025-55182 / CVE-2025-66478
 2025-12-08 13:41:49 -08:00
vognik 1dde12b483 fix naming errors 2025-12-06 02:53:38 -08:00
vognik 38682b5ed6 refactoring 2025-12-05 14:58:59 -08:00
vognik f71a71ab18 add exploit mvp 2025-12-04 22:16:27 -08:00
vognik eb33e08efa Add Documentation 2025-12-04 05:48:26 -08:00
Valentin Lobstein b3fc1b05e5 Add WordPress King Addons privilege escalation exploit (CVE-2025-8489) 2025-12-04 01:37:40 +01:00
Valentin Lobstein 0ccffdd5ff Fix wp_ai_engine_mcp_rce: handle existing users by updating password via MCP fields API 2025-12-03 00:41:16 +01:00
bcoles 2e000c2b1c Add support for LoongArch64 payloads 2025-11-23 17:22:32 +11:00
h00die 450e1df340 windows service now with persistence mixin 2025-11-17 19:02:50 -05:00
dbono-r7 7aebd592ef Update named_pipes.txt 
Added the cert pipe for quick unauthenticated for likely Certificate Authority servers.
 2025-11-10 16:00:39 -06:00
vognik 9ad83f6454 Add Vvveb CMS Authenticated RCE (CVE-2025-8518) 2025-10-18 17:12:05 -07:00
Brendan 91c0adb17f Merge pull request #20585 from vognik/CVE_2025_60787 
Add MotionEye Authenticated RCE (CVE-2025-60787)
 2025-10-09 13:50:25 -05:00
Vognik 267a26b763 code review changes from smcintyre-r7@ 2025-10-09 21:51:31 +04:00
Spencer McIntyre 75c1415de4 Add the new exe templates 2025-08-28 17:41:48 -04:00
Spencer McIntyre cf8aa2fc48 Fix the build script 2025-08-28 17:41:28 -04:00