adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

27999 Commits

Author SHA1 Message Date
bwatters-r7 b12128a8d0 Fix odd edge case converting binary to hex string 2019-05-30 11:37:34 -05:00
bwatters-r7 1ab0a04f60 Use nonvolitile register for the counter 
Change option name to match convention
 2019-05-30 11:37:33 -05:00
bwatters-r7 b818d6d9d3 Updated to have a handler 2019-05-30 11:37:33 -05:00
bwatters-r7 a2f55947e6 Add support for pingback as a single and session... 2019-05-30 11:37:33 -05:00
bwatters-r7 e233ee38ea Let's try it as a single this time.... 2019-05-30 11:34:06 -05:00
bwatters-r7 c9c78ba707 Add new files 2019-05-30 11:34:06 -05:00
bwatters-r7 bd65f81627 Add pingback changes 2019-05-30 11:33:46 -05:00
bwatters-r7 535dc343b9 Maybe stage the new files, too 2019-05-30 11:30:55 -05:00
Shelby Pace 74812ffe4d Update modules/exploits/linux/http/librenms_addhost_cmd_inject.rb 
Co-Authored-By: @shellfail <jrobles@rapid7.com>
 2019-05-30 10:52:34 -05:00
Shelby Pace 8c11a1c95a Update modules/exploits/linux/http/librenms_addhost_cmd_inject.rb 
Co-Authored-By: @shellfail <jrobles@rapid7.com>
 2019-05-30 10:51:57 -05:00
William Vu 622e67d20a Land #11900, normalize_uri style fix 2019-05-30 00:16:16 -05:00
William Vu a0c6035380 Prefer initial slash in normalize_uri 
I missed the indirect call in check. This decides on a style.

If a URI part contains a slash, we begin with a slash.
 2019-05-30 00:08:17 -05:00
Brent Cook 810d5e356f Land #11865, expand utility for allegro_rompager_auth_bypass 2019-05-29 23:40:37 -05:00
Jeffrey Martin 1833c97c8c more require for pdf-reader 
In ruby 2,5+ on windows the ttfunk dependency loading causes ruby to crash so
only load this only when specifically required.
 2019-05-29 22:36:50 -05:00
Shelby Pace 590b9748c1 changed file name and documentation 2019-05-29 18:30:39 -05:00
Shelby Pace 6606e1fed4 Update modules/exploits/linux/http/librenms_cmd_injection.rb 
Co-Authored-By: bcoles <bcoles@gmail.com>
 2019-05-29 18:00:59 -05:00
Shelby Pace 5253d34dd3 Update modules/exploits/linux/http/librenms_cmd_injection.rb 
Co-Authored-By: bcoles <bcoles@gmail.com>
 2019-05-29 18:00:07 -05:00
Shelby Pace 34528b1512 Update modules/exploits/linux/http/librenms_cmd_injection.rb 
Co-Authored-By: bcoles <bcoles@gmail.com>
 2019-05-29 17:59:55 -05:00
Shelby Pace fa1ce20e74 add note 2019-05-29 15:50:31 -05:00
Shelby Pace de081a08cd add working exploit 2019-05-29 15:09:23 -05:00
bcoles ca8c72d586 Fix abrt package version check 2019-05-30 04:24:53 +10:00
Jacob Robles 87e9fddd2f CMD Target Update 
Generic payload auto-disables the handler so we don't have
to handle that now. Also, remove datastore modifications
in the module.
 2019-05-29 13:09:21 -05:00
William Vu 6580f14c3a Once more, with feeling 2019-05-29 12:19:52 -05:00
William Vu 78fca9f91a Suggest CASTV2 is unsupported 2019-05-29 11:50:53 -05:00
William Vu 9ba1ac075a Add word 2019-05-29 11:46:45 -05:00
William Vu ba0ce74a35 Don't downcase anymore 2019-05-29 11:45:52 -05:00
William Vu 6aac15b539 Add note about CASTV2 protocol 2019-05-29 11:39:19 -05:00
William Vu 472f2c0d0b Deprecate DIAL protocol in chromecast_youtube 2019-05-29 11:31:14 -05:00
Shelby Pace 6279136359 adding and deleting devices 2019-05-28 15:12:35 -05:00
Jacob Robles ff6350183e Land #11882, oracle_login verbose message 2019-05-28 11:35:08 -05:00
bwatters-r7 efaacbeb2a Land #11797, Added to code to remove payload once run. 
Merge branch 'land-11797' into upstream-master
 2019-05-28 11:12:00 -05:00
NickTyrer 4a359f5f5e format 2019-05-27 21:19:10 +01:00
NickTyrer 894d817fd1 updated instructions function 2019-05-27 16:58:16 +01:00
NickTyrer ab20c24340 fix setting mod variables 2019-05-27 16:34:53 +01:00
NickTyrer b7221a65a1 addressed issues raised by @cbrnrd 2019-05-26 22:18:43 +01:00
苇子 8af7ed9526 Update shell_bind_tcp.rb 
fix a mistake in payloads/singles/linux/armle/shell_bind_tcp.rb
 2019-05-25 17:51:30 +08:00
William Vu 54eb73f8b8 Address @egypt's rdp_scanner review 2019-05-24 17:31:22 -05:00
Clément Notin 0c38780692 fix msftidy 2019-05-24 23:56:27 +02:00
Shelby Pace e16d144723 added base of module 2019-05-24 16:20:44 -05:00
asoto-r7 11b3feeaff Land #11869, auxiliary/scanner/rdp/cve_2019_0708_bluekeep 2019-05-24 16:01:45 -05:00
Clément Notin fe0cb19333 oracle_login: add verbose print error when login fails 2019-05-24 20:02:01 +02:00
zerosum0x0 82debcbada remove useless debug print 2019-05-24 11:23:25 -06:00
William Vu e3be9d2871 Restore syntactic sugar 2019-05-24 11:41:19 -05:00
Jacob Robles 55dcdace03 Land #11846, OATS Console War Deployment 2019-05-24 11:27:36 -05:00
William Vu d158cd131c Add metadata and style fixes 2019-05-24 11:25:58 -05:00
Wei Chen fcd360891f Check #attributes for nil, and make sure target is oats console 2019-05-24 10:06:47 -05:00
Jacob Robles 527658dfbc Land #11822, Add CVE-2019-2557 OATS Directory Traversal 2019-05-24 06:40:25 -05:00
William Vu 9d0cf0661c Land #11857, cmd/unix/reverse_bash_udp payload 2019-05-24 02:19:44 -05:00
bcoles 2d6847ab5e Add alternative cmd payload 2019-05-24 16:33:44 +10:00
William Vu eb006fd2b3 Send to the socket to initiate the session 2019-05-24 00:01:06 -05:00