adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

27999 Commits

Author SHA1 Message Date
bwatters-r7 f00118851a Revert "Land #10886, Bypassuac computerdefault" 
This reverts commit 14b2cdc120, reversing
changes made to a79b936e09.
 2018-12-13 13:56:16 -06:00
Wei Chen cc7cb7302e Land #10944, Add macOS Safari exploit from pwn2own2018 2018-12-13 13:50:19 -06:00
Jacob Robles 92feeea0ca Minor syntax change 2018-12-13 13:46:40 -06:00
William Vu cb5648a1c7 Add WEBUI_PORT to hp_van_sdn_cmd_inject exploit 2018-12-13 12:22:36 -06:00
Milton-Valencia 3f1aa425b4 msftidy....lol 2018-12-13 11:03:41 -06:00
Milton-Valencia 2e26ceac8f added comments 2018-12-13 10:55:09 -06:00
bwatters-r7 89e4e8bdea Merge branch 'master' of github.com:rapid7/metasploit-framework into upstream-master 2018-12-13 09:30:10 -06:00
William Vu 8b79634338 Update a few stragglers 
And since eaton_xpert_backdoor was copied from my fortinet_backdoor
module, update the error handling there, too.
 2018-12-12 15:47:18 -06:00
William Vu e69f006992 Remove CommandShell mixin in exploits 
This was cargo culting. Exploits use handler instead of start_session.
 2018-12-12 15:43:13 -06:00
William Vu 6e77ae7e3e Update my SSH scanner modules 
Especially with proper error handling for Net::SSH::CommandStream.
 2018-12-12 15:36:54 -06:00
Stephen Haywood 7cffbac65b Update additional scanner modules. 2018-12-12 15:32:31 -06:00
Stephen Haywood fa2164ebb9 Update to match coding style. 2018-12-12 15:32:31 -06:00
Stephen Haywood eceb47a9da Move CREATE_SESSION option to advanced option CreateSession 2018-12-12 15:32:31 -06:00
Stephen Haywood 8a7187ad79 Add CREATE_SESSION option to CommanShell 
Register the CREATE_SESSION option in command_shell_options so it
can be used with all modules that use start_session.
Modify ssh_login.rb, ssh_login_pubkey.rb, and telnet_login.rb to
use the new CREATE_SESSION option.
When CREATE_SESSION is set to true (default) a new session is
created with each successful login. When set to false a new session
is not created but the successful login is still registered in the
credentials database.
 2018-12-12 15:32:31 -06:00
Stephen Haywood 904f342848 Option to not create shell on login. 2018-12-12 15:32:30 -06:00
Wei Chen 8ffd9e47b0 Up to date PR10429 2018-12-12 13:30:58 -06:00
Wei Chen 96c281daef Add send_not_found and module documentation for webdav_delivery 2018-12-12 13:26:46 -06:00
Brendan Coles 68d451711b Fix bpf_priv_esc module 2018-12-12 17:23:12 +00:00
Jacob Robles ea724dec46 Merge in upstream/master 2018-12-12 11:00:31 -06:00
William Vu aa0c206b4b Land #11107, double negative logic cleanup 2018-12-11 20:29:53 -06:00
Shelby Pace ae089ce573 Land #10960, add wp duplicator code inject module 2018-12-11 12:02:07 -06:00
Shelby Pace b82e3469a2 renamed module and doc 2018-12-11 11:59:19 -06:00
Julien Legras 7e953e34b9 Added the clean_up function 2018-12-11 18:13:46 +01:00
bwatters b109321b44 Kill unless not 2018-12-11 10:16:16 -06:00
bwatters ac88c604fd Remove copy/pasta'd funtion that was never called 2018-12-11 10:02:36 -06:00
Jacob Robles 1ab69c221c Land #11040, Add CyberLink LabelPrint Local BOF 2018-12-11 08:19:51 -06:00
Jacob Robles 165f082160 Fix syntax, minor edits 2018-12-11 07:55:20 -06:00
Francesco Soncina ff2d048530 fixes: update x86/xor_dynamic for #11100 2018-12-10 22:45:45 +01:00
Francesco Soncina a94e52ca31 fixes: updates x64/xor_dynamic for #11100 2018-12-10 22:42:31 +01:00
Imran E. Dawoodjee 9cc5569ca2 Cleaned up module per @bcoles's recommendations. 2018-12-11 02:56:56 +08:00
William Vu 3f18ffa224 Land #10318, Oracle function-based index privesc 2018-12-10 11:32:39 -06:00
William Vu d0f1f72426 Clean up module 2018-12-10 11:21:16 -06:00
Brent Cook bc6356a2cd Land #11090, update code and style for exploit/linux/local/glibc_origin_expansion_priv_esc 2018-12-10 09:59:03 -06:00
Imran E. Dawoodjee bbd0c8be32 Greatly improved check and tidied up documentation. 2018-12-10 21:02:51 +08:00
Milton-Valencia 565f2e3e38 wait wrong 2018-12-09 19:23:54 -06:00
Milton-Valencia ee2ed46143 added date based on man page 2018-12-09 19:17:22 -06:00
Milton-Valencia f6bfbddb8d twks 2018-12-09 15:59:58 -06:00
Milton-Valencia 2beddf1012 req changes 2018-12-09 15:01:09 -06:00
Imran E. Dawoodjee 91d0c8f283 Removed offending code, added warning for users, 
and updated documentation.
 2018-12-10 01:57:44 +08:00
Brendan Coles b8dd147d49 Add FreeBSD 9 Intel SYSRET Privilege Escalation module 2018-12-09 16:04:38 +00:00
Brendan Coles 237d3c86c4 Code cleanup and update style 2018-12-09 07:26:51 +00:00
Milton-Valencia 39229125b7 tweak 2018-12-09 00:22:49 -06:00
Milton-Valencia 02f3d4688f changes 2018-12-09 00:10:54 -06:00
Milton-Valencia 69ed80f685 varys -> varies 2018-12-08 22:51:52 -06:00
Milton-Valencia fcad3f0c8f erlang cookie rce exploit module 2018-12-08 22:36:56 -06:00
Brendan Coles a9c0a5d53d Use ::File::binread for exploit_data file read 2018-12-09 04:09:56 +00:00
Alex c5015c62b8 Simplify Chrome Gather Cookies 
Module now uses Chrome itself as a websocket client, reading websockets
via js. It no longer downloads and executes `websocat`.
 2018-12-09 09:52:45 +11:00
Brent Cook d3fc707c98 Land #11080, update mettle payloads 2018-12-08 09:51:37 -06:00
Brent Cook 3768f79568 Land #11085, add lkrg_installed? checks to various modules 2018-12-08 09:19:33 -06:00
Brent Cook 733c2f637d Land #11081, Add Msf::Post::Linux::Kernel.lkrg_installed? method 2018-12-08 09:14:57 -06:00