91633fdad7
Remove the encrypted shell payload and libs
2026-04-15 12:43:29 -04:00
1d5eae0f5b
Merge pull request #21034 from Chocapikk/add-module-opendcim-sqli-rce
...
Add openDCIM install.php SQLi to RCE module
2026-04-14 16:04:13 -04:00
addcd69205
Merge pull request #20933 from madefourit/persis_pwrshell_profile
...
Windows Persistence: Powershell Profile
2026-04-14 15:43:06 -04:00
31a2de9562
Merge pull request #20839 from h00die/bits
...
New persistence module: Microsoft Bits
2026-04-14 15:42:55 -04:00
b3d367f1bf
Merge pull request #21085 from dledda-r7/issue-19309
...
Update block-api to prepare for a random IV
2026-04-14 15:35:10 -04:00
53f8053b77
Merge pull request #21255 from mxnvel/payloads-multi-python-support
...
multi python support for cmd/unix/reverse_python and cmd/unix/reverse_python_ssl
2026-04-14 15:25:09 -04:00
7ea55d86d9
fix: update from srvhost to srvhost_addr
2026-04-14 17:16:54 +02:00
976f5a8e66
fix: remove unecessary srvhost check
2026-04-14 17:14:51 +02:00
4c421532d6
Merge pull request #21288 from g0tmi1k/AutoCheck
...
Add AutoCheck to various exploit modules
2026-04-14 09:59:25 -05:00
5b6c2be9d1
Land #21003 , unifies Selenium Firefox and Chrome modules
...
Unified Selenium Grid/Selenoid RCE with Firefox + Chrome auto-detection
2026-04-14 16:32:06 +02:00
1b195b1406
fix: removing ARCH_AARCH64 from powershell_profile persistence
2026-04-14 09:45:47 -04:00
9433413166
final module fixes
2026-04-14 09:45:46 -04:00
a94dd32492
final module
2026-04-14 09:45:46 -04:00
14cd7fad47
module docs
2026-04-14 09:45:44 -04:00
4474c77ca3
update pshell module
2026-04-14 09:45:44 -04:00
9e506cc5a0
update pshell module
2026-04-14 09:45:43 -04:00
9189436a42
payload debugging
2026-04-14 09:45:43 -04:00
3c341e3b72
update pshell module
2026-04-14 09:45:42 -04:00
c03a9a5ce2
update modules_2
2026-04-14 09:45:42 -04:00
f255fe398d
update modules
2026-04-14 09:45:41 -04:00
17a5daabf1
inital modules
2026-04-14 09:45:41 -04:00
e2810a791b
Add Profile and initial skeleton
2026-04-14 09:45:40 -04:00
18c11b17a9
Update modules/exploits/windows/persistence/bits.rb
2026-04-14 14:34:00 +02:00
62e2c336d0
Remove old Selenium modules replaced by unified selenium_greed_rce
2026-04-14 12:32:51 +02:00
7f0b8c83a1
fix: update CachedSize
2026-04-14 06:06:47 -04:00
db0fe4aaef
Fixes Python payload delivery for Firefox profile
2026-04-14 10:17:04 +02:00
10fd6b9ef8
Add AutoCheck to various exploit modules
2026-04-14 06:21:15 +01:00
1113a5e109
Merge pull request #21252 from zeroSteiner/feat/adcs/api-consolidation
...
Feat/adcs/api consolidation
2026-04-13 15:52:55 -05:00
d84b09a16e
Fix: Wrap Python payload for Firefox profile handler
...
The Firefox exploit path delivers payloads via a MIME handler mapped to
/bin/sh. When using the default Python target, the raw Python payload
would fail to execute in /bin/sh. Wrap it with python3 -c so the shell
can invoke it correctly.
2026-04-13 17:57:48 +02:00
cb6c6492cd
Update shell_bind_tcp_random_port.rb
...
changing my name to a nickname due to some irrelevant and confusing occurances on the Internet for my name and the surname first letter.
2026-04-13 16:10:37 +02:00
4ce14e6696
Merge pull request #21268 from adfoster-r7/update-checkcode-usage-in-aux-modules
...
Update checkcode usage in aux modules
2026-04-13 11:50:02 +01:00
e28969980d
Update modules/exploits/windows/persistence/bits.rb
...
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com >
2026-04-13 06:15:03 -04:00
44a6da0e53
Merge pull request #21078 from Chocapikk/fix-churchcrm
...
Fix ChurchCRM unauthenticated RCE module
2026-04-13 10:36:18 +01:00
a4d84fa734
Merge branch 'rapid7:master' into bits
2026-04-13 05:14:48 -04:00
5f52ad082f
Update shell_bind_tcp_random_port.rb
...
Removed my email and shorten the full surname. I got too much spam recently.
2026-04-12 21:12:33 +02:00
5824bd5d03
Fix kerberos authentication for web_enrollment_cert
2026-04-10 11:43:37 -04:00
3aa019470e
Update checkcode usage in aux modules
2026-04-10 16:18:07 +01:00
e0c28496b9
fix: update CachedSize
2026-04-10 10:53:25 -04:00
929b79a346
fix: update cache size, fix bug in reverse pipe and tcp x64
2026-04-10 10:53:25 -04:00
91c96c7e46
fix: updated cache size after blockapi changes
2026-04-10 10:53:24 -04:00
800614101d
Merge pull request #21233 from bcoles/exploit-linux-local-riscv
...
Add RISC-V arch support to Linux local exploit modules
2026-04-10 07:58:34 -05:00
a90ec1071c
Merge pull request #21075 from Chocapikk/avideo-catname-sqli
...
Add AVideo catName blind SQLi credential dump (CVE-2026-28501)
2026-04-09 16:22:45 -05:00
2f8d66bc6c
Change nil check to blank in reverse_python_ssl.rb
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2026-04-09 22:08:26 +02:00
63dd2ab31a
Change nil check to blank in reverse_python.rb
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2026-04-09 22:07:57 +02:00
b7e7de2fa4
Update the specs so they pass again
2026-04-09 10:37:05 -04:00
57bb3bbce7
Refactor code to use #with_adcs_certificate_request
2026-04-09 10:37:05 -04:00
9cedb4a069
Refactor the method name to namespace it to icpr
2026-04-09 10:37:05 -04:00
3d5692e9bb
Swapping the datastore is no longer necessary
2026-04-09 10:37:05 -04:00
d84f6f9f8a
Merge pull request #21262 from adfoster-r7/update-cache-sizes-for-bash-payloads
...
Update cache sizes for bash payloads
2026-04-09 10:33:16 -04:00
887137d615
Update cache sizes for bash payloads
2026-04-09 15:09:10 +01:00
Spencer McIntyre