adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
46,254 Commits 27 Branches 1,043 Tags
94de5a4e42cfb1dc0fdfc1233707f71b6d9a628b
Commit Graph

4727 Commits

Author SHA1 Message Date
Jon Hart 63aabc00f1 etcd rubocop style 2018-04-04 11:01:38 -07:00
Jon Hart a8c76638d3 Rename 2018-04-04 10:54:20 -07:00
Jon Hart 518e17118a Add DisclosureDate 2018-04-04 10:52:47 -07:00
Jon Hart a6c31aceb2 Refactor common etc capabilities; add separate version scanner 2018-04-04 10:48:27 -07:00
Brent Cook 3a54f0d5f8 Land #9776, if data is nil, stop reading the heartbleed socket 2018-03-29 11:23:08 -05:00
Jon Hart a1e83ce835 Land #9760, @h00die's etcd scanner 2018-03-28 10:41:22 -07:00
Jon Hart 5cdfadd0df Fix more style issues 2018-03-28 09:43:30 -07:00
Jon Hart 7767505678 Fix some style issues 2018-03-28 09:43:22 -07:00
h00die c97743925f jhart suggestions 2018-03-27 18:46:31 -04:00
Jeffrey Martin 288bd28d3a if data is nil stop reading the heartbleed socket 2018-03-27 15:51:14 -05:00
William Vu 862a3ff74d Land #9618, pipe auditing improvements 2018-03-26 17:01:48 -05:00
h00die 327b2176c0 change and 2018-03-26 17:35:58 -04:00
Andrew Morris 217dea60fc Update blog link to up-to-date blog post 2018-03-26 15:43:10 -04:00
h00die e462cb49a2 updated docs 2018-03-25 14:53:30 -04:00
h00die d739a9a057 working etcd scanner 2018-03-25 13:54:55 -04:00
William Vu 09cb4a52df Update smb_ms17_010 scanner with PipeAuditor mixin 2018-03-22 15:37:45 -05:00
William Vu e4c026fffd Update pipe_auditor module with PipeAuditor mixin 2018-03-22 15:37:45 -05:00
Jacob Robles ca7caae622 Change External Module Type Names 
Change the a couple of external module type names
to be consistent with the template files.
 2018-03-20 10:19:57 -05:00
Brent Cook 65ae1e33e1 Land #9694, move ssh platforms to lib 2018-03-16 12:49:57 -05:00
h00die 97dbc1273a copy pasta 2018-03-12 20:14:08 -04:00
Auxilus ef515d256d msftidy fixes 2018-03-13 00:34:25 +05:30
Auxilus 2c52498d4a Update smb_ms17_010.rb 2018-03-13 00:28:37 +05:30
Auxilus 6e9a4916f5 scanner update 2018-03-13 00:23:18 +05:30
Brent Cook d86dcbc237 Land #9632, owa_login and auth_brute enhancements 2018-03-12 10:31:20 -05:00
Jacob Robles 615f6b02af varnish no auth file read 2018-03-09 11:25:13 -06:00
Jacob Robles 1fd0087a97 Land #7654, varnish file read 2018-03-09 10:59:04 -06:00
Jacob Robles a458cb9ebc varnish file read msftidy fixes 2018-03-09 10:56:52 -06:00
Jacob Robles 037559023a Update connect/disconnect varnish 
[ticket: #7654]
 2018-03-09 10:37:14 -06:00
Auxilus 9df99e8ce3 Update smb_ms17_010.rb 2018-03-09 16:10:20 +05:30
Auxilus 56fe70d84b Update smb_ms17_010.rb 2018-03-09 16:07:09 +05:30
h00die ec7a62bc4c move ssh platforms to lib 2018-03-08 21:23:11 -05:00
Auxilus 478f01d0d9 fix format 2018-03-09 02:25:58 +05:30
Jon Hart a69c2e29d2 Correct comment 2018-03-06 18:16:22 -08:00
Jon Hart 1e04fa009f Fix style 2018-03-06 18:13:50 -08:00
Jon Hart 74ec9f00e7 Add WIP memcached UDP version scanner 2018-03-06 17:54:00 -08:00
Jon Hart e72372d6d8 Add disclosure date and correct CVE for memcached amp 2018-03-06 16:04:00 -08:00
Brent Cook d6871f5733 Land #9614, Juniper post enum module 2018-03-06 10:29:56 -06:00
Jon Hart f2de2a7f21 Appease most of rubocop's concerns 2018-03-04 07:17:25 -08:00
Jon Hart 2edb2dd8d0 Add CVE; clarify vuln name 2018-03-04 07:13:28 -08:00
Jon Hart e7a7b557bc Randomize and doc memcached stats probe; catch multi-packet responses 2018-03-01 16:56:34 -08:00
Jon Hart 155f45fc28 Simplify memcached amplification scanner to use UDPScanner for most of the work 2018-03-01 15:37:23 -08:00
Jon Hart 9e1a7c869c Use drdos mixin for memcached amp module 2018-02-27 22:51:27 -08:00
xistence 05c99ffb5c Add Memcached amplification scanner 2018-02-28 11:24:17 +07:00
Auxilus a1587bcd68 Update smb_ms17_010.rb 2018-02-24 09:05:35 +05:30
Auxilus 46af6239df Update smb_ms17_010.rb 2018-02-24 08:50:39 +05:30
Auxilus 9bae6246b2 Check for accessible named pipe on vuln targets 
```
msf5 auxiliary(scanner/smb/smb_ms17_010) > run

[+] 192.168.0.2:445       - Host is likely VULNERABLE to MS17-010! - Windows 7 Ultimate 7601 Service Pack 1 x64 (64-bit)
[*] 192.168.0.2:445       - Checking for accessible named pipes
[+] 192.168.0.2:445       - Found accessible named pipe: netlogon
[+] 192.168.0.2:445       - Found accessible named pipe: lsarpc
[+] 192.168.0.2:445       - Found accessible named pipe: samr
[+] 192.168.0.2:445       - Found accessible named pipe: browser
[+] 192.168.0.2:445       - Found accessible named pipe: atsvc
[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
```
 2018-02-24 03:20:34 +05:30
James Barnett 133b34827f Fix false+ login in a few more places 2018-02-23 13:16:41 -06:00
h00die c7bbc6eca4 juniper post enum module 2018-02-22 21:08:21 -05:00
James Barnett 5815b626d9 Dont save email addresses as valid 
Also add module doc for owa_login module
 2018-02-22 14:58:11 -06:00
James Barnett e531dbc976 Fix bug causing all logins to appear valid 
The headers we were looking for were a little too loose
and were incorrectly identifying all responses as successful
login attempts
 2018-02-22 11:25:35 -06:00