adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

55054 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
William Vu 9c3bc0ac67 Add note about WIP PRs to CONTRIBUTING.md 2019-04-30 17:05:12 -05:00
Brendan Coles f11ce8635f Add ptrace Sudo Token Privilege Escalation module 2019-04-30 21:54:18 +00:00
bigendiansmalls 3289d89836 Added Extended passive mode to the core ftp module. 
Extended passive mode (EPSV), as documented in RFC2428
is similar to the PASSive mode in that it requests that
the server open a port and wait for a data connection.
However, in unlike PASSive mode, Extended Passive mode
returns only the port on which the server listens for
the data connection, not the IP + Port.  The client is
expected to use the existing IP (e.g. the one it used to
create the initial control channel connection) to connect
to the new data port.

Where this becomes important is if the server is behind
some type of natting device, EPSV will work in this case,
PASS may not.
 2019-04-30 12:41:11 -05:00
bigendiansmalls f1a5711c0f Fixed Size 2019-04-30 12:15:47 -05:00
bigendiansmalls e79a9ed04b Added to code to remove payload once run. 
The original payload left the binary behind, which could be
then used by someone else intentionally or otherwise. This
addition cleans up the module by removing it after running.
 2019-04-30 11:32:40 -05:00
Wei Chen 1fd54e20fb Update target name 2019-04-30 10:13:01 -05:00
Wei Chen 29344d15b6 Update rails_double_tap doc and module based on bcole feedback 2019-04-30 10:11:32 -05:00
Metasploit efa5fbf070 automatic module_metadata_base.json update 2019-04-30 05:00:28 -07:00
Jacob Robles 6c29da6e8e Land #11673, Add yum persistence module 2019-04-30 06:49:43 -05:00
Jacob Robles e5cb003c5c Remove trailing whitespace 2019-04-30 06:25:48 -05:00
Jacob Robles 02894cccb5 Update documentation 2019-04-30 06:24:16 -05:00
NickTyrer ee7ef7ad4e fix typo 2019-04-29 22:23:49 +01:00
Mike Menasi 487714b98e add new evasion module applocker_evasion_install_util 2019-04-29 21:34:56 +01:00
arntsonl f200c12424 Postgres 8.2+ update to postgres_payload.rb module 2019-04-29 15:28:11 -04:00
Metasploit 1d54b0ad79 automatic module_metadata_base.json update 2019-04-29 12:13:43 -07:00
Wei Chen 6668b226ba Land #11761, Cleanup apport_abrt_chroot_priv_esc 2019-04-29 14:04:24 -05:00
Jacob Robles 68ffdf0ddc Land #11641, Add AIS RCE 2019-04-29 13:52:58 -05:00
Metasploit 78297fc7ca automatic module_metadata_base.json update 2019-04-29 09:09:05 -07:00
Wei Chen 88f7ed25e3 Land #11784, Fix NoMethodError in jira_plugin_upload exploit module 2019-04-29 10:59:41 -05:00
Metasploit 284dba3d75 automatic module_metadata_base.json update 2019-04-29 07:02:32 -07:00
Shelby Pace 10e141c73d Land #11697, add Pimcore unserialize RCE 2019-04-29 08:52:49 -05:00
Shelby Pace d5f76f328a removed version from module title 2019-04-29 08:43:33 -05:00
Metasploit 1fd0654038 automatic module_metadata_base.json update 2019-04-27 10:46:27 -07:00
Jacob Robles 147b9fef98 Land #11665, Add APT persistence module 2019-04-27 12:32:21 -05:00
fabiocogno d60aa92ffc Merge pull request #1 from space-r7/pr11697 
Add more error handling
 2019-04-27 11:09:47 +02:00
Spencer McIntyre fad4ce76ea Clean up the gtp_echo module based on PR feedback 2019-04-26 17:45:27 -04:00
William Vu 561b1ce86d Land #11778, cmd_psh_payload options hash fix 
nil and false are not equivalent here.
 2019-04-26 16:28:50 -05:00
Shelby Pace 31f4c842a6 added a few checks 2019-04-26 16:18:14 -05:00
Matthew Kienow fbf7668889 Fix delete vuln 
Convert fetched Mdm::Vuln::ActiveRecord_Associations_CollectionProxy to
an Array as the code only expects to process an Mdm::Vuln or Array.
 2019-04-26 14:44:37 -04:00
Matthew Kienow a393e3f71f Fix finding a service to return 
Convert fetched Mdm::Service::ActiveRecord_Associations_CollectionProxy
to an Array as the code only expects to process an Mdm::Service or
Array.
 2019-04-26 14:40:49 -04:00
Matthew Kienow 8173fd5d8a Update opts usage to match the method comment 
Conditions assignment is to the singular hosts.address, so the plural
addresses doesn't make sense.
 2019-04-26 14:34:40 -04:00
Matthew Kienow 7a0681f816 Fix incorrect method comments and examples 2019-04-26 14:30:28 -04:00
Jacob Robles 635be0cc9c Update documentation 2019-04-26 13:12:06 -05:00
Jacob Robles 1faa41aafe Dont require hook name 2019-04-26 13:11:40 -05:00
Wei Chen 2141036f13 Remove the extra newline 2019-04-26 12:59:50 -05:00
Fabio Cogno e9e50b2ae3 Refactoring - login function 2019-04-26 19:53:54 +02:00
Shelby Pace 3de617fea5 add checks for xsrf_token 2019-04-26 11:09:33 -05:00
Metasploit 186e2dd65f automatic module_metadata_base.json update 2019-04-26 07:58:39 -07:00
Jacob Robles 3d7f498bfe Land #11783, Allow RHOST option sid_brute 2019-04-26 09:49:48 -05:00
Metasploit a98da6f2ba automatic module_metadata_base.json update 2019-04-26 07:45:34 -07:00
Jacob Robles c282547a0b Land #11745, Add spring-cloud-config-server dir traversal 2019-04-26 09:35:37 -05:00
Metasploit decb88b2ac automatic module_metadata_base.json update 2019-04-26 07:11:28 -07:00
Jacob Robles d72b6fc3cb Land #11782, Update payload cached sizes 2019-04-26 09:01:52 -05:00
Jacob Robles f195c4bde3 Update payload cache sizes 2019-04-26 08:40:07 -05:00
Jacob Robles e173507869 Allow RHOST option 2019-04-26 08:36:32 -05:00
Jacob Robles 306b0fd2e7 Randomize application and profile 2019-04-26 07:15:39 -05:00
Metasploit ec5c3e86b5 automatic module_metadata_base.json update 2019-04-26 05:01:39 -07:00
Brendan Coles c2d02efb3c Land #11777, Fix auxiliary/dos/http/apache_range_dos CHECK action 2019-04-26 12:10:01 +00:00
Jacob Robles 96cb5ce917 Update documentation 2019-04-26 06:57:57 -05:00
Tim W d20801cf12 add apple advisory 2019-04-26 13:25:26 +08:00