adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
46,254 Commits 27 Branches 1,043 Tags
94de5a4e42cfb1dc0fdfc1233707f71b6d9a628b
Commit Graph

11200 Commits

Author SHA1 Message Date
sinn3r 4bddd077ec Land #2762 - Use new ntdll railgun functions 2013-12-18 15:18:47 -06:00
Joe Vennix 64273fe41d Move addon datastore options into mixin. 2013-12-18 14:42:01 -06:00
Joe Vennix ca2de73879 It helps to actually commit the exploit. 2013-12-18 14:31:42 -06:00
Joe Vennix 1235615f5f Add firefox 15 chrome privilege exploit. 
* Moves the logic for generating a firefox addon into its own mixin
* Updates the firefox_xpi_bootstrapped_addon module to use the mixin
* Module only works if you move your mouse 1px in any direction.
 2013-12-18 14:30:35 -06:00
Mekanismen 0c0e8c3a49 various updates 2013-12-18 20:54:35 +01:00
jvazquez-r7 ab69454f89 Land #2745, @rcvalle's exploit for CVE-2013-2068 2013-12-18 12:06:27 -06:00
jvazquez-r7 ec64382efc Fix cfme_manageiq_evm_upload_exec according to chat with @rcvalle 2013-12-18 11:53:30 -06:00
jvazquez-r7 a28ea18798 Clean pull request 2013-12-18 11:32:34 -06:00
Meatballs 3e54379b0e Merge remote-tracking branch 'upstream/master' into wmic_post 
Conflicts:
	lib/msf/core/post/windows.rb
 2013-12-18 13:40:54 +00:00
Meatballs c3aee714af shadowcopy should use service_restart 2013-12-18 12:12:34 +00:00
Meatballs 42bc5ab75f Use Services calls in enable_rdp 
Update calls to change_service_config to check success
 2013-12-18 11:34:12 +00:00
Meatballs 55a5a7e032 Fix typo 2013-12-18 11:06:03 +00:00
Meatballs bce7fab2cd Fixup IKEEXT 2013-12-18 00:08:01 +00:00
Meatballs 0bac2415ca Some post testing fixes 
Also deprecate net escalate as it is covered by service_permissions
as a generic exploit
 2013-12-18 00:00:14 +00:00
Mekanismen 2de15bdc8b added module for Zimbra Collaboration Server CVE-2013-7091 2013-12-17 19:32:04 +01:00
Meatballs 067e6d89bb Use service_restart in IKEEXT and ServicePermissions 
Service_restart is aggressive so should attempt to leave as Auto
 2013-12-17 17:21:35 +00:00
sinn3r ad2ec497c2 Land #2773 - Fix ms_ndproxy to work under a sandboxed Reader 2013-12-16 20:32:27 -06:00
jvazquez-r7 52cb43e6a8 Fix typo 2013-12-16 20:28:49 -06:00
Meatballs c2dd174e3c Merge remote-tracking branch 'upstream/master' into extapi_service_post 2013-12-17 01:54:24 +00:00
Meatballs a33721f444 service_change_config keys should match extapi 2013-12-17 01:48:09 +00:00
Meatballs 101e5a8ccf Tidyup trusted_service_path 
Use filedropper, use service exe, dont migrate
 2013-12-17 01:46:45 +00:00
Meatballs 560080fa21 Update start_service return value 
Add service_restart
 2013-12-17 00:43:35 +00:00
Meatballs f39bc0b07a Update service_stop return 2013-12-17 00:22:37 +00:00
jvazquez-r7 84759a552a Save one variable 2013-12-16 16:49:44 -06:00
jvazquez-r7 042bd4f80b Fix ms_ndproxy to work under a sandboxed Reader 2013-12-16 16:19:17 -06:00
Tod Beardsley f88a3a55b6 More slight updates. 2013-12-16 15:05:39 -06:00
sinn3r afcee93309 Land #2771 - Fix description 2013-12-16 15:01:32 -06:00
sinn3r 04b7e8b174 Fix module title and add vendor patch information 2013-12-16 14:59:00 -06:00
Tod Beardsley 040619c373 Minor description changes 
No code changes (one comment made on play_youtube to suggest xdg-open
rather than firefox for linux targets).
 2013-12-16 14:57:33 -06:00
jvazquez-r7 533accaa87 Add module for CVE-2013-3346 2013-12-16 14:13:47 -06:00
Meatballs 5be9622782 Tidy and constants 2013-12-16 18:35:24 +00:00
Meatballs 435cc9b93f Add single quote encapsulation 
For WMI and psh_web_delivery
 2013-12-16 15:13:13 +00:00
Meatballs b252e7873b Merge remote-tracking branch 'upstream/master' into pr2075 2013-12-16 14:29:05 +00:00
Meatballs 87fe6ecfaa Fixup modules 2013-12-15 18:43:55 +00:00
Meatballs f10a35ed08 Use :display correctly 2013-12-15 18:28:29 +00:00
Meatballs cd837ebe16 ikeext_service service_info fixup 2013-12-15 18:28:06 +00:00
Meatballs c89b7cb4ee nvidia_nvsvc service_info fixup 2013-12-15 18:20:25 +00:00
Meatballs 375103b930 trusted_service_path service_info fixup 2013-12-15 18:15:48 +00:00
Meatballs 7d7495a5dd Large refactor of service_permissions 2013-12-15 18:00:14 +00:00
Meatballs fe7852b524 Unworking refactor of serv_perm 2013-12-15 04:02:11 +00:00
Meatballs 2a819d4b08 Tidyup trusted_Path 
We dont just want to escalate to SYSTEM it would be handy to know
if we can escalate to anything e.g. Domain logins etc.
 2013-12-15 04:01:02 +00:00
Meatballs ddf23ae8e8 Refactor service_list to return array of hashes 
Update trusted_service_path, service_permissions,
net_runtime_modify and enum_services to handle change.

Refactor enum_services to tidy it up a bit
 2013-12-15 03:00:29 +00:00
Meatballs 3dec7f61a5 Check in sysnative if wow64 2013-12-15 01:12:52 +00:00
Meatballs 2dc4faad72 Resplat license 2013-12-15 01:12:51 +00:00
Meatballs 8203274256 Small fixes 
Remove " from service command if it is quoted.
Spawn SYSWOW64 notepad.
 2013-12-15 01:12:51 +00:00
OJ f2e2147065 Change unless with else to if with else 2013-12-15 01:12:50 +00:00
OJ cff7008500 Fix final issues with merge 
Hopefully this will be the last of the changes.
 2013-12-15 01:12:50 +00:00
OJ 41c538856a Re-add RDI mixin changes 2013-12-15 01:12:49 +00:00
OJ db29af0f97 First batch of submodule refactorings 2013-12-15 01:12:48 +00:00
Meatballs 6916f7c5d2 Fixup description 2013-12-15 01:12:47 +00:00