0c83e55b00
enum_iam: Update 'Console Login' output to accurately reflect Disabled status
2019-06-26 14:57:32 -05:00
258f631f84
remove echo cmdstagerflavor
2019-06-26 13:56:13 -05:00
2f29c914ab
add changes, remove db backup delete code
2019-06-26 13:48:14 -05:00
e5868170fd
automatic module_metadata_base.json update
2019-06-26 10:35:25 -07:00
61f09d0538
Land #12017 , xdebug_unauth_exec nil fix
2019-06-26 12:26:30 -05:00
11ef19d264
automatic module_metadata_base.json update
2019-06-26 09:23:41 -07:00
a1a630b7af
Land #12018 , Pen Test Partners reference for RV130
2019-06-26 11:13:39 -05:00
cc3fd747aa
Add Pen Test Partners reference
...
Did we somehow miss this?
2019-06-26 11:05:22 -05:00
efc61a4934
Use cmdstager
2019-06-26 10:15:25 -05:00
7c3e566a23
Update check
...
Handle nil error code and fix version extraction based
on both of the possible Apache Tika return pages.
2019-06-26 10:15:25 -05:00
8d6f36e05c
Minor fix for xdebug_unauth_exec
...
Avoid triggering error where res.headers may not exist.
2019-06-27 01:00:49 +10:00
59d75a1658
Land #12015 , dcerpc_getarch documentation fix
2019-06-26 02:44:07 -05:00
9fe138e3dc
Remove misleading comment from dcerpc_getarch
...
I transferred my implementation. I don't understand this comment.
2019-06-26 02:40:16 -05:00
933b5f0413
Tidy up send_request_cgi
2019-06-26 00:59:53 -05:00
00530031fd
Try not encoding the GET parameters
2019-06-26 00:55:23 -05:00
f3b509a1bc
Implement on_request_uri
2019-06-25 23:47:19 -05:00
fe11eabe62
Merge remote-tracking branch 'upstream/master' into pr/11952
2019-06-25 23:47:06 -05:00
01b308fe7c
Fix get_resource nil bug in HttpServer#get_uri
2019-06-25 23:10:50 -05:00
f874f50748
Update Author fields for several modules
...
Add hirura to authors list for the Ruby reverse_ssh payloads.
Update all modules with author-per-line name references to be
consistent (useful given the difference in names between commiter
in git log and GitHub account).
Next steps:
See if HrrRbSsh client-side implementation can be fleshed out
enough to create alternative payload outputs for both of the Ruby
modules (using TARGET/ACTION to select between net/ or hrr_).
2019-06-25 20:49:26 -04:00
0c92c69e95
Initial enum_s3 documentation
2019-06-25 18:07:03 -05:00
d00d5fbff9
Address review comments by Hirura
...
@hirura noticed two bugs: a typo, and a mistake creating an empty
RequestHandler object since the underlying library already does
this when it does not have a RequestHandler assigned for the
request type.
Fix typo for #1
Remove the RequestHandler assignments in #2 and related opt merge.
Testing:
None yet
2019-06-25 18:27:57 -04:00
b59fd4331b
Update documentation
2019-06-25 17:14:10 -05:00
2fb129ad41
Allow check in exploit to be optional
2019-06-25 17:13:55 -05:00
84b6f05947
Fix 'bucket' typo
2019-06-25 16:35:44 -05:00
b672412aeb
automatic module_metadata_base.json update
2019-06-25 14:32:35 -07:00
685fb55179
Land #11987 , Add Nagios XI 5.5.6 magpie_debug Root Exploit
2019-06-25 16:17:50 -05:00
01c49f22fb
Change doc name
2019-06-25 16:16:32 -05:00
23dbc4d90d
Change file name
2019-06-25 16:10:44 -05:00
e9fc9970ba
Make names more random. Also, make metadata changes
2019-06-25 16:09:15 -05:00
de97615e9d
Land #12013 , Make SRVHOST the callback address in confluence_widget_connector
2019-06-25 16:06:37 -05:00
29d9f3ea28
Bump version of framework to 5.0.33
2019-06-25 13:08:28 -07:00
07cb5c5e10
Bump version of framework to 5.0.32
2019-06-25 12:57:14 -07:00
94dd2b1800
Fix disclosure date format.
...
Co-Authored-By: @shellfail <jrobles@rapid7.com >
2019-06-25 20:50:56 +02:00
5ca4163765
Fix documentation markup and titles.
2019-06-25 20:50:09 +02:00
5c14aea1a0
Fix target_platform check (it's empty, not nil)
2019-06-25 12:56:36 -05:00
cf140f0840
Make SRVHOST the callback address
2019-06-25 12:43:04 -05:00
2af76c1997
add documentation and finished module
2019-06-25 11:21:15 -05:00
dae98d27d7
automatic module_metadata_base.json update
2019-06-24 23:05:38 -07:00
77395749da
s/infinite/indefinite/
2019-06-25 01:00:08 -05:00
44ad25ae34
Land #12008 , struts2_content_type_ognl 302 fix
2019-06-25 00:40:58 -05:00
5e8b076714
Final review changes
2019-06-25 07:21:08 +02:00
303bfaa7eb
Don't worry about response code
...
I found one that returned a 302
2019-06-24 13:53:31 -05:00
7739e9f43e
Update my modules
2019-06-24 13:38:14 -05:00
3870dad3d1
Fix handler type copy pasta
2019-06-24 13:55:53 -04:00
8be8aa603c
Adjust logic
...
Early return to reduce nesting ifs
2019-06-24 12:43:26 -05:00
3d143f366c
Remove LIMIT and adjust quotes
2019-06-24 12:40:01 -05:00
b49fa29a7f
Allow true zero-second timeout in send_request_*
...
Also fixes a bogus response when timeout is nil.
2019-06-24 12:07:24 -05:00
9e056601eb
Exploits now also works with netcat
2019-06-24 08:11:13 +01:00
510b2f5aac
Trim reverse ssh cmd payload
2019-06-23 21:27:48 -04:00
d1eaac9932
Implement native reverse SSH via openssh binary
...
Implement a reverse SSH shell using nothing but the on-target SSH
client and a fifo in the same manner as used by netcat payloads.
This is not forensically sound as the fifo will be caught by HIDS,
filesystem snapshots, and other defensive measures. However, it
does provide a way out from almost any modern POSIX system as they
nearly all have an SSH client in one form or another.
Convert existing Ruby reverse SSH payloads to use dynamic cached
payload sizing.
2019-06-23 05:48:50 -04:00
asoto-r7