adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

13654 Commits

Author SHA1 Message Date
William Vu db0803136a Add lost registered option DUMP_OUTPUT 
Oops, I forgot this in the refactor.
 2019-04-11 12:21:11 -05:00
rrockru c0b4e7701f Fix docs 2019-04-11 17:54:10 +03:00
rrockru eab1f6ca54 Added Atlassian Confluence exploit documentation 2019-04-11 17:52:08 +03:00
rrockru 7881d627ca Add Atlassian Confluence RCE exploit 2019-04-11 15:55:51 +03:00
asoto-r7 b32d116e9a Land #11669, exploit/windows/fileformat/microsoft_windows_contact 2019-04-10 17:18:33 -05:00
asoto-r7 94785dabbb Renamed module from 'microsoft_windows_contact_remote_code_execution' to 'microsoft_windows_contact' 2019-04-10 17:17:50 -05:00
asoto-r7 62bf38d530 Simplified user options, recreated CONTACT template from a clean file 2019-04-10 17:14:04 -05:00
William Vu d72672feed Land #11672, Zimbra XXE and SSRF exploit 2019-04-10 09:58:45 -05:00
Shelby Pace 4d0a41ff1a Land #11657, add Horde form file upload 2019-04-09 13:47:59 -05:00
Shelby Pace 4018d47b65 changed if not to unless 2019-04-09 13:43:54 -05:00
Quentin Kaiser 3517a4e237 Adapt ranking and mention potential stability issue. 2019-04-09 11:31:15 +02:00
RatioSec Research b56e171172 Fix extraction of session tokens 2019-04-09 09:28:52 +01:00
Jacob 11385ae29a Update postgres_copy_from_program_cmd_exec.rb 2019-04-08 00:19:55 +01:00
Fabio Cogno 20a8324d8e Add Pimcore from 4.0.0 to 5.6.6 Unserialize RCE 2019-04-07 22:44:02 +02:00
Pearce Barry 7e62a69e16 Land #11660, Update use_single_quotes to wrap_double_quotes 2019-04-06 15:44:39 -05:00
Shelby Pace fff129ae9f Land #11587, add Wordpress core RCE module 2019-04-04 15:22:56 -05:00
Shelby Pace 6efd80e139 added note in info 2019-04-04 15:19:58 -05:00
Shelby Pace 2884d9afcb modified checks, added function 2019-04-04 15:09:12 -05:00
William Vu e164c2350c Properly encode command input with XML entities 
REXML would make this less ghetto.
 2019-04-03 19:10:27 -05:00
Shelby Pace d5ac1e3a33 minor adjustments to indentation and requests 2019-04-03 19:03:47 -05:00
Ben Schmeckpeper 7d1f6afd4a Remove trailing space from CVE reference 2019-04-03 09:21:55 -05:00
todb-r7 9e3984ea51 Remove duplicate CVE for Mailcleaner module 
See #11304
 2019-04-02 12:51:09 -05:00
wilfried 3081b13a1f Adding payload in exploit code 2019-04-02 10:24:48 +02:00
surefire 1b6cd64016 Land #11136, exploit/multi/misc/weblogic_deserialize_unicastref 2019-04-01 18:15:26 -05:00
surefire 40191e5a01 Dissected JSOs, randomized strings, copied T3 header breakdown from @acamro 2019-04-01 18:05:45 -05:00
Jacob Robles 3d662bd962 Fix words because words... 2019-04-01 17:21:23 -05:00
Jacob Robles 69062bb220 Syntax fixes 2019-04-01 17:05:42 -05:00
William Vu 06397bb087 Land #11636, postgres_createlang version check fix 2019-04-01 15:21:57 -05:00
surefire f292befed4 Land #11134, exploit/multi/misc/weblogic_serialize_marshalledobject 2019-04-01 14:11:30 -05:00
surefire 4d0e47044b Fixed a hardcoded payload length resulting in 40% failures 2019-04-01 14:05:39 -05:00
Brendan Coles ddbd7ba080 Case insensitive match 2019-04-01 18:58:14 +00:00
Aaron Ringo 28983df234 Addition of yum package manager module and documentation 2019-04-01 13:26:45 -05:00
Jacob Robles c07b015734 File cleanup 2019-04-01 11:39:40 -05:00
Jacob Robles 51d1216953 Update module name 2019-04-01 07:48:26 -05:00
Jacob Robles 0873ba7ac1 Add Zimbra XXE to RCE module 2019-04-01 07:32:57 -05:00
Aaron Ringo 22c3fe35f7 Changed hook payload to redirect errors, to not show up on target screen 2019-03-31 12:09:40 -05:00
BrennerLittle e733d225b6 microsoft_windows_contact_remote_code_execution 2019-03-31 11:12:09 -05:00
Aaron Ringo 299334ae7f fixed bug where alphanumeric was never hit 2019-03-30 22:51:18 -05:00
Aaron Ringo 38bf99e729 Re-add of module after jacking up rebase, with new arches,conditional logic, documentation 2019-03-30 22:04:21 -05:00
William Vu 496f270b30 Update use_single_quotes to wrap_double_quotes 2019-03-29 18:14:56 -05:00
Brent Cook 82b7c926fe Land #11579, Add support for splunk 7.2.4 to splunk_upload_app_exec 2019-03-29 16:22:26 -05:00
RatioSec Research 5c84e9e61a Remove web root guessing since not reliable 2019-03-29 16:16:06 +00:00
William Vu 269cb4bca6 Land #11635, Authors check for msftidy 2019-03-29 10:45:31 -05:00
William Vu af494300ec Add timwr as an author to his own modules 2019-03-29 10:44:58 -05:00
RatioSec Research f8c5852902 Add Horde Form File Upload 2019-03-29 12:31:14 +00:00
h00die ff5b790028 apache tika exploit msftidy 2019-03-28 22:07:01 -04:00
h00die dc33998374 apache tika exploit 2019-03-28 22:05:05 -04:00
Brent Cook 0a24266029 Land #11482, RV320 Unauthenticated RCE 2019-03-28 17:53:05 -05:00
Quentin Kaiser e2101c7931 Fix module so it supports both ARCH_CMD and ARCH_ARMLE. 2019-03-28 19:50:26 +01:00
Quentin Kaiser 8ec5a124b4 Follow @bcoles recommendations for 'check' function. 2019-03-28 15:59:22 +01:00