adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

55054 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Wei Chen 923d8b8b2e Fix uri with get_resource 2019-05-08 11:20:36 -05:00
Wei Chen c70c6abe13 Add CVE-2019-2557 - OATS Directory Traversal 2019-05-07 14:56:04 -05:00
Brent Cook 745645d7ca make encoded payloads a little less special-case 
Just operate on the raw_payload buffer so we always have the same thing to look
at in the end of generation.
 2019-05-07 13:48:24 -05:00
Brent Cook ad8188ff51 throw exception on actual payload size violation, not formatted output size 2019-05-07 13:12:58 -05:00
Tim W 7968bd932a improve arch selection 2019-05-07 22:54:58 +08:00
Metasploit 5a07d280d2 automatic module_metadata_base.json update 2019-05-06 23:24:23 -07:00
William Vu 413929b7f6 Land #11598, Postgres COPY FROM PROGRAM exploit 2019-05-07 01:12:44 -05:00
William Vu c252ff2e7e Display NOCVE reason in missing CVE reference 2019-05-07 00:59:09 -05:00
William Vu 982caa95a4 Implement module use by previous search index 2019-05-07 00:50:04 -05:00
Metasploit 1732185683 automatic module_metadata_base.json update 2019-05-06 13:53:21 -07:00
asoto-r7 f89b0e848f Land PR#11780, exploit/multi/misc/weblogic_deserialize_asyncresponseservice 2019-05-06 15:36:47 -05:00
Tim W be1d185a04 Add CVE-2019-8565 OSX Feedback Assistant local root exploit 2019-05-07 04:30:47 +08:00
asoto-r7 aed878100a weblogic_deserialize_asyncresponseservice: Added documentation 2019-05-06 15:18:08 -05:00
asoto-r7 abfe4fd2c2 weblogic_deserialize_asyncresponseservice: Added check method, improved exception handling, minimizing XML strings 2019-05-06 15:16:50 -05:00
Brent Cook 5a8055f41d Land #11803, check for platform-specific env. variables in post-API tests 2019-05-06 09:21:56 -05:00
Tim W 8b489f4fb5 add documentation 2019-05-06 17:05:03 +08:00
Tim W 39969e71fa Initial commit of CVE-2019-5786 2019-05-06 17:05:00 +08:00
Alexandre ZANNI 9d15c10c8a add tested system 2019-05-05 23:30:20 +02:00
Cha0s bd349b8a23 Removed Spaces EOL 2019-05-04 23:24:20 -05:00
Cha0s 4bf0adeade Module corrections 
Corrections in: author metadata, references, removing handler, removing unused  code branch and vulnerable variable, improve module description
 2019-05-04 23:11:40 -05:00
Brendan Coles 2ee75173b8 Add FreeBSD rtld execl() Privilege Escalation module 2019-05-03 09:53:37 +00:00
Caitlin Condon 9eb335ad5c Land #11804, loadpath command generates bad plural for 'auxiliarys' 2019-05-02 17:31:42 -05:00
Brendan Coles 60fb3b2319 Add BSD target to exploit/multi/ssh/sshexec module 2019-05-02 20:40:14 +00:00
Metasploit 8a991d322d Bump version of framework to 5.0.21 2019-05-02 10:08:40 -07:00
Brent Cook 86df78fa4f loadpath command generates bad plural for 'auxiliarys' 
Plural of 'auxiliary' is 'auxiliaries'. Let's get rid of bad logic and just say 'modules'.
 2019-05-02 10:04:26 -05:00
Brent Cook 625f383ade blank 2019-05-02 10:01:21 -05:00
Brent Cook ad1190b5c1 check for platform-specific env. variables 
'USERNAME' is not a standard environment variable outside of Windows,
which leads to this test failing on non-Windows Meterpreter platforms.
 2019-05-02 09:55:58 -05:00
NickTyrer f023fb9525 add further obfuscation 2019-05-02 08:39:35 +01:00
Waqas Ali 48b7f7c904 Update (removed parenthesis) modules/exploits/multi/http/getsimplecms_unauth_code_exec.rb 
(removed parenthesis)

Co-Authored-By: truerandom <masterofdisaster@ciencias.unam.mx>
 2019-05-02 02:03:54 -05:00
Waqas Ali 75c78b761e Update (removed parenthesis) modules/exploits/multi/http/getsimplecms_unauth_code_exec.rb 
(removed parenthesis)

Co-Authored-By: truerandom <masterofdisaster@ciencias.unam.mx>
 2019-05-02 02:03:46 -05:00
Waqas Ali 3a7ebbdc3d Update (removed parenthesis) modules/exploits/multi/http/getsimplecms_unauth_code_exec.rb 
(removed parenthesis)

Co-Authored-By: truerandom <masterofdisaster@ciencias.unam.mx>
 2019-05-02 02:03:26 -05:00
Waqas Ali 33c2a9592a Update (removed parenthesis) modules/exploits/multi/http/getsimplecms_unauth_code_exec.rb 
(removed parenthesis)

Co-Authored-By: truerandom <masterofdisaster@ciencias.unam.mx>
 2019-05-02 02:03:14 -05:00
truerandom ea3e8e5bae exploit module for cve-2019-11231 2019-05-01 20:05:57 -04:00
Brent Cook def3112dde Land #11786, Fix issues with DP RPC commands 5.0.20 2019-05-01 13:20:56 -05:00
NickTyrer 38256a18bd added further obfuscation to module 2019-05-01 17:05:40 +01:00
Metasploit a425bbb683 automatic module_metadata_base.json update 2019-05-01 06:45:07 -07:00
Shelby Pace a88858fc8b Land #11779, add Rails Doubletap Dev mode RCE 2019-05-01 08:35:28 -05:00
Shelby Pace 887c09f806 fixed typo 2019-05-01 08:33:44 -05:00
Andrés Rodríguez d1ca87b810 Improvements to the payloads config. 2019-05-01 00:06:46 -05:00
Andrés Rodríguez 4c612efc16 Spaces at EOL (again). 2019-04-30 23:36:52 -05:00
Andrés Rodríguez 384c8b3959 Pulling the XML out into its own method. 2019-04-30 23:23:38 -05:00
Andrés Rodríguez 554f781382 Spaces at EOL. 2019-04-30 23:03:25 -05:00
Andrés Rodríguez b3a4b639c3 Use of suggested multi-line string for XML and case for the OS. 2019-04-30 22:43:45 -05:00
Andrés Rodríguez ce25253e5a Some suggested fixes. 2019-04-30 21:36:51 -05:00
Metasploit abfe0e03d9 automatic module_metadata_base.json update 2019-04-30 16:10:03 -07:00
Brent Cook d37fa9e5f8 Land #11801, Add note about WIP PRs 2019-04-30 17:55:10 -05:00
Brent Cook d8432fd8de Land #11781, add GTP-U echo scanner module 2019-04-30 17:53:03 -05:00
Brent Cook cc62ca50f1 fix link 2019-04-30 17:52:42 -05:00
Brent Cook 0b24b9f636 add docs 2019-04-30 17:50:54 -05:00
William Vu dbc0811ba4 Fix italics to bold 
Damn you, Slack.
 2019-04-30 17:13:38 -05:00