22f9b4a732
define port from options
...
otherwise, L172 fails, as port (RPORT) is not defined
2019-10-22 11:57:02 -06:00
32e7787821
Clearly, I fail at ruby implicit returns
...
Changed the newline remove to a chomp in case the newline is not there
2019-10-22 11:51:00 -05:00
1ceaa1d7ba
add documentation
2019-10-22 10:43:35 -05:00
f4a54df262
change location of rescue, method name
2019-10-22 09:31:43 -05:00
39db3be145
Update tested versions
2019-10-22 06:35:57 +00:00
1fd09b6a81
add solaris targets and Metasm usage
2019-10-21 16:13:10 -05:00
166a20e7d5
automatic module_metadata_base.json update
2019-10-21 15:43:35 -05:00
3565b0efb8
Land #12365 , Total.js CMS widget creation RCE
2019-10-21 15:22:09 -05:00
295d609595
Add CVE-2019-16278 exploit documentation.
2019-10-21 21:15:04 +02:00
800c656fd7
automatic module_metadata_base.json update
2019-10-21 12:45:47 -05:00
58b8990131
Land #12462 , add post module to gather grub passwords
2019-10-21 12:35:52 -05:00
99d55d6110
Land #12423 , added docs for git_scanner and goahead_traversal module
2019-10-21 12:24:54 -05:00
ee282fe84c
Land #12458 , Refactor extended check messages
...
Merge branch 'land-12458' into upstream-master
2019-10-21 12:23:06 -05:00
519c73dcb3
Land #12450 , add docs for the heartbleed module
2019-10-21 12:21:53 -05:00
100c0a7580
Land #12438 , add support for custom Meterpreter prompts
2019-10-21 12:20:06 -05:00
8ca882ddd8
automatic module_metadata_base.json update
2019-10-21 11:13:35 -05:00
d76ea0ca59
Initial module version for Nostromo RCE (CVE-2019-16278).
2019-10-21 18:11:44 +02:00
eaa752454b
Land #12399 , Add Urgent/11 vulnerability scanner
...
Merge branch 'land-12399' into upstream-master
2019-10-21 11:05:09 -05:00
cc8ed049c0
add module docs
2019-10-21 11:03:23 -05:00
be57b284a9
split more neatly, support commas
2019-10-21 10:43:28 -05:00
4d7f29993a
Small changes to the brute_dirs aux module
2019-10-21 16:45:42 +02:00
647839d8b5
add more examples for http_title ( #1 )
...
add more examples for http_title
2019-10-21 10:14:00 +02:00
cdf5ef5e2d
Add documentation
2019-10-21 06:16:09 +00:00
84430c2a66
Add Solaris xscreensaver log Privilege Escalation module
2019-10-21 06:14:50 +00:00
7cb683646f
remove unused RPORT
2019-10-20 21:40:05 -05:00
def423c261
add RHOSTS support for multi-port
2019-10-20 21:37:55 -05:00
b1942bb9ec
use probe socket for detection, pad TCP NOP explicitly
2019-10-20 21:31:33 -05:00
f68e574795
close sockets, do preflight check to avoid F+
2019-10-20 20:26:16 -05:00
0fbf553a49
add more examples
2019-10-20 21:18:30 -04:00
d005c2d3ee
malform packets more (once more with feeling), add report mixin for reporting
2019-10-20 20:00:56 -05:00
f4e15b98ee
Land #12454 docs for redis file upload
2019-10-20 20:35:56 -04:00
c35554b37c
redis doc touchup
2019-10-20 20:34:11 -04:00
7683ab4fc1
Land #12455 , Add generate_random_c method to randomized compiler
...
Add generate_random_c method to randomized compiler
2019-10-18 15:51:19 -05:00
e48132d7df
Bug Fix: nops generate '-s' option ignored
...
This error was trying to parse the contents of undefined '-c' option instead of '-s'.
Making impossible the definition of SaveRegisters from the console.
Step to reproduce:
`msfconsole -q -x 'use nop/x86/single_byte; generate -s esp 10; exit' | grep -v '0m' | tr -d '\n\\x+ ";' | rasm2 -b 32 -D -`
```asm
0x00000000 1 0e push cs
0x00000001 1 d6 salc
0x00000002 1 54 push esp
0x00000003 1 f8 clc
0x00000004 1 43 inc ebx
0x00000005 1 56 push esi
0x00000006 1 5a pop edx
0x00000007 1 56 push esi
0x00000008 1 5a pop edx
0x00000009 1 44 inc esp
```
As we can see, 'inc esp', and some 'push/pop' instructions have been generated although having explicitly asked to save `esp` register through `generate` command.
This commit addresses this issue
2019-10-18 17:31:03 +00:00
b870cadb0f
Reregister INTERFACE datastore option
...
In case configuration failed.
2019-10-18 12:08:45 -05:00
3d08f7c746
Update DisclosureDate comment
2019-10-18 12:07:28 -05:00
3c74bdd7ee
Add CRASH_SAFE module trait to notes
2019-10-18 12:01:27 -05:00
ca755843f1
remove call to generate_random_c
2019-10-18 11:06:40 -05:00
121a6fd0e7
Order matters sometimes
...
Since the constants are evaluated when they are declared, they need to
be after the new `#initialize` method since it sets the messages.
2019-10-18 10:57:16 -05:00
42b251be01
generate random c within compile_random_c
2019-10-18 08:28:25 -05:00
861dc9969f
fix. typo in documentation file.
2019-10-18 16:07:55 +04:00
25f60b07ed
compliance for the framework
2019-10-18 15:51:58 +04:00
aa4534bb50
automatic module_metadata_base.json update
2019-10-18 06:36:43 -05:00
0563edcd28
Land #11420 , Add exchange web services aux module
2019-10-18 12:28:24 +01:00
9ad5e353fe
Use latest framework version
2019-10-18 12:21:33 +01:00
b2c753d446
Land #12459 , Imports need workspace
2019-10-17 17:01:12 -05:00
d1817d8f12
Fix the preceeding newline upstream when we read it rather than when
...
after we pass it around for a while.
2019-10-17 14:46:20 -05:00
299865bdeb
* Clean up cmd_exec test module's dead code and add support for
...
inconsistent windows platform type.
* Add extra front chomp to shell_command response string because
there's a leading newline there.. for some reason?
2019-10-17 13:30:43 -05:00
ccd4e93a9e
Bump version of framework to 5.0.55
2019-10-17 12:05:32 -05:00
37011c5ec0
update author and add documentation
2019-10-17 22:28:17 +08:00
Loïc Jaquemet