adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

27999 Commits

Author SHA1 Message Date
bwatters-r7 4f2ba46125 Stop some of the rubocop carnage 2018-11-05 14:11:24 -06:00
Wei Chen a32d8083f0 Land #10847 - Add blueimp's jQuery (Arbitrary) File Upload 
CVE-2018-9206
 2018-11-05 11:37:20 -06:00
Brent Cook cb229411bc Land #10888, Fix Net::SSH::CommandStream session open failure 2018-11-05 11:15:09 -06:00
bwatters-r7 5ec155fd44 Changed some options to advanced 2018-11-05 09:59:17 -06:00
Green-m 708d067e65 Land #10919, Add doc for ftp capture module. 
And add a custom option banner for it.
 2018-11-05 14:15:52 +08:00
l9c ff07289132 better style according to the review 2018-11-05 13:46:36 +08:00
h00die 04218cff39 ftp capture 2018-11-04 21:46:01 -05:00
Pedro Ribeiro 7464d81c01 Add warning about JSP deletion 2018-11-05 00:52:34 +09:00
Shaksham Jaiswal e3246a9b88 made fixes 2018-11-04 18:07:43 +05:30
Brendan Coles fdf45f269b Move polycom_hdx_auth_bypass to exploit/unix/misc/ 2018-11-04 06:14:26 +00:00
Brendan Coles c3080d69f2 Use writable? method for local modules 2018-11-04 05:28:32 +00:00
bwatters-r7 4ac9fe5c9f Land #10834, For real this time 
Merge branch 'land-10834' into upstream-master
 2018-11-02 14:35:00 -05:00
bwatters-r7 15cc699071 Land #10834, messagebox payload for x64 
Merge branch 'land-10834' into upstream-master
 2018-11-02 14:17:59 -05:00
Jacob Robles 6bc4b71ca3 Land #10873, Add notes to exploit modules 2018-11-02 14:11:11 -05:00
Spencer McIntyre 7faa775b55 Remove the now unnecessary DisableNops option 2018-11-02 14:57:41 -04:00
Jacob Robles 2d3403cdd2 Land #10901, Add modules for iOS images and texts 2018-11-02 13:46:58 -05:00
Brent Cook 86469cc5a0 Land #10836, Add Morris worm sendmail debug mode exploit 2018-11-02 11:17:33 -05:00
Brent Cook 1d81f3764f Land #10700, Add Morris worm fingerd exploit and VAX reverse shell 2018-11-02 11:16:46 -05:00
pasta 6752bdd536 space's purge 2018-11-02 11:27:53 -03:00
Shelby Pace 0d8c8da470 remove useless method wrappers, fix indentation 2018-11-02 08:01:15 -05:00
William Vu e9b3502f98 Fix Net::SSH::CommandStream session open failure 
I suspected this might be a problem for libssh servers.
 2018-11-02 01:08:05 -05:00
Shelby Pace 4a8c1ef8f4 changed where pwd was getting executed 2018-11-01 16:06:08 -05:00
Shelby Pace a1abebedd1 changed location of some code 2018-11-01 15:29:53 -05:00
Shelby Pace 2a2b1a47cc updated block size, title 2018-11-01 15:00:38 -05:00
Brendan Coles a80e571355 Update style 2018-11-01 07:26:12 +00:00
Brendan Coles ca16e93200 rescue => e 2018-11-01 07:24:28 +00:00
Brendan Coles ffecd189ee Report rhost, as ip is undefined 2018-11-01 07:23:44 +00:00
bwatters-r7 114a8127e8 Land #10858, bypassuac_eventvwr optimizations - reduce created processes and artifacts 
Merge branch 'land-10858' into upstream-master
 2018-10-31 16:44:32 -05:00
bwatters-r7 af7a7d586b Add validation check to make sure x64 remote host and a x86 session 
cannot select an x64 target.
 2018-10-31 16:31:52 -05:00
Shelby Pace 7e61ec53da downloading images by modifying block size 2018-10-31 14:36:45 -05:00
pasta a7bb211c20 add OptEnum to filter icon type 2018-10-30 20:30:49 -03:00
pasta 3fb047c0f1 29 rubocop's issues fixed 2018-10-30 19:47:28 -03:00
Shelby Pace b57b269df4 storing images 2018-10-30 15:43:25 -05:00
pasta c8740a1b0f deleted spaces at EOL 2018-10-30 15:09:39 -03:00
bwatters-r7 08ec8e1ef9 Land #10553, add x86/xor_dynamic and x64/xor_dynamic encoders 
Merge branch 'land-10553' into upstream-master
 2018-10-30 09:56:15 -05:00
Fabien 0cf8563fae Update bypassuac_computerDefault.rb 2018-10-30 11:37:05 +01:00
Fabien bf295ecce5 Update bypassuac_computerDefault.rb 2018-10-30 11:36:38 +01:00
Luisco100 7f26364d5b Changes suggested by OJ 2018-10-29 22:01:47 -05:00
Shelby Pace d1da7d84db added metadata and main function 2018-10-29 15:26:26 -05:00
pasta 4960e1b8c8 modification to accomplish the guideline and license changed to GPL 2018-10-29 14:11:21 -03:00
Elazar Broad 6fe7bb0bb6 Increase sleep time to 10 seconds 
Increase the wait time before removing the registry key - allows the payload to spawn successfully on slow systems.
 2018-10-29 12:55:03 -04:00
Quentin Kaiser 1d337e9987 No debug. 2018-10-29 13:46:07 +01:00
Quentin Kaiser e76f3ab22f No debug. 2018-10-29 13:44:16 +01:00
root b705059bca Added channel name length check 2018-10-28 20:18:58 +00:00
root 60aa1181ca Add IBM WebSphere MQ Login Bruteforce module 
Used to bruteforce usernames that can connect to the Queue Manager. The name of a valid server-connection channel without SSL configured is required, as well as a list of usernames to try.

* IBM Downloads page: https://developer.ibm.com/messaging/mq-downloads/
* Tested on IBM MQ 7.5, 8 and 9
* Usage:
  * Download and install MQ Server from the above link
  * Create a new Queue Manager
  * Create a new channel (without SSL)
  * Allow remote connections for admin users by removing the CHLAUTH record that denies all users or configure access for a specific username.
  * Run the module
 2018-10-28 19:29:45 +00:00
pkb1s 92d5ab469c Update ibm_mq_channel_brute.rb 2018-10-28 18:21:54 +00:00
Brendan Coles 1c340f8202 Land #10853, Add universal targeting to Mercury/32 IMAP LOGIN exploit 2018-10-28 18:17:46 +00:00
Brendan Coles 296d9a08eb Removing unnecessary line 
Co-Authored-By: pkb1s <petkoutroubis@gmail.com>
 2018-10-28 18:10:51 +00:00
Brendan Coles 3e3be18189 Using print_line instead of print("\n") 
Co-Authored-By: pkb1s <petkoutroubis@gmail.com>
 2018-10-28 18:10:14 +00:00
Brendan Coles f8c829dc81 Using print_line instead of print("\n") 
Co-Authored-By: pkb1s <petkoutroubis@gmail.com>
 2018-10-28 18:10:09 +00:00