adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
46,254 Commits 27 Branches 1,043 Tags
94de5a4e42cfb1dc0fdfc1233707f71b6d9a628b
Commit Graph

23791 Commits

Author SHA1 Message Date
Brendan Coles 0e38823a8f Add NNTP Login Utility scanner module 2017-06-15 20:25:40 +00:00
Tod Beardsley 49383f8f3a Update and fix grammar to the CryptoLog module 
After talking to the vendor, it appears that the PHP version of CryptoLog has been EOL'ed since 2009. It has since been replaced with an ASP.NET version, which, obviously, is no longer vulnerable to these PHP exposures.
 2017-06-15 13:00:44 -05:00
h00die 46ffd250a0 module working and docs 2017-06-14 21:15:56 -04:00
William Vu 549f9e74d8 Fix AMT scanner for mangled HTML (no </p>) 
Also stores proof using the correct :info for report_vuln (not :proof).
 2017-06-14 16:54:32 -05:00
Mehmet Ince c147779097 Add CVE number to the symantec-messaging-gateway-exec module 2017-06-14 23:07:58 +03:00
James Lee c1372456e2 Land #8326, support LLMNR ANY responses 2017-06-14 14:01:44 -05:00
h00die c35dffc648 first draft of oinkcode 2017-06-14 08:04:17 -04:00
James Lee 55f0edb732 Land #8491, fixes for service_persistence 2017-06-13 17:17:53 -05:00
Brendan Coles 0766f92013 Add option for workspace 2017-06-13 12:46:36 +00:00
Jeffrey Martin cbbb57d1a5 Land #8526, Refactor QNAP and airOS modules for creds 2017-06-12 14:46:11 -05:00
William Vu a40e7164d8 Refactor QNAP module for traditional creds 2017-06-12 14:41:58 -05:00
William Vu bb9d1a6768 Land #8507, Riverbed SteelHead VCX file read 2017-06-12 10:39:48 -05:00
Pearce Barry 704a1218fa Land #8498, store more specific credential wordpress_directory_traversal_dos 2017-06-12 10:13:52 -05:00
Pearce Barry 80e91e9de2 Minor fixups. 2017-06-12 09:51:30 -05:00
tkmru 93c4b3fffc update CacheSize 2017-06-12 01:39:13 +09:00
tkmru 1862900aae add error handling 2017-06-12 01:36:13 +09:00
tkmru 17d7bb0c64 add label and regster value to comment 2017-06-11 20:38:47 +09:00
h00die a349eb9a0d fixes per peer review 2017-06-10 14:29:53 -04:00
Mehmet Ince 6ae540d889 Adding Symantec messaging gateway rce 2017-06-10 12:23:12 +03:00
Brendan Coles 6a4c61456d Add ProcessMaker Plugin Upload exploit module 2017-06-10 08:59:20 +00:00
OJ c4288fb35a Update branch to include chances from upstream/master 2017-06-09 17:18:57 +10:00
OJ a3f3dc0a70 Upload payloads/mettle gems, update cache sizes 
Updated both the metasploit-payload and metasploit-payload-mettle gems
to the versions that match for the session GUID pull requests. Updated
the payload cached sizes to match the new payloads.
 2017-06-09 17:15:52 +10:00
Stephen Shkardoon (ss23) a968a74ae0 Update ms17_010_eternalblue description and ranking. 
The module has been noted to cause crashes, reboots, BSOD, etc, on
some systems.
 2017-06-09 11:01:48 +12:00
Brent Cook aa00661fd0 Land #8518, update CVE references where modules report_vuln 2017-06-08 13:38:12 -05:00
William Vu 3e20296cf5 Add service_details for SSH 2017-06-08 13:28:29 -05:00
William Vu e22334343e Use store_valid_credential in my modules 
I used report_note because using the creds API was a pain in the ass.
 2017-06-08 00:57:51 -05:00
OJ eef82a501d Add support for session GUIDs in mettle 2017-06-08 11:20:48 +10:00
Harvey Phillips 4278339869 Added multi-file support for torrc and use locate instead of find when searching 2017-06-07 20:08:23 +01:00
bwatters-r7 99fa52e660 Land #8434, Add Windows 10 Bypassuac fodhelper module 2017-06-07 11:15:01 -05:00
Spencer McIntyre 834e0eba95 Land #8340, add exception handling for rev_tcp_ssl 2017-06-06 19:09:15 -04:00
Harvey Phillips 71fde14b6c Linux post module to grab TOR hidden service hostnames and private keys 2017-06-06 22:29:14 +01:00
Harvey Phillips f557aa3c9c Linux post module to search for and grab TOR hidden service configurations 2017-06-06 21:59:02 +01:00
Anderson d641058f75 Added module to exploit ActiveMQ CVE-2016-3088 2017-06-06 11:33:42 -07:00
Jeffrey Martin b932aae82e reference typo fix 2017-06-06 11:50:07 -05:00
Brent Cook bac17a8e80 Land #8053, Add DC/OS Marathon UI Exploit 2017-06-06 09:29:26 -05:00
NickTyrer 09e4974b99 removed whitespace at end of lines 2017-06-06 14:44:37 +01:00
NickTyrer 1831056010 updated disclosure date 2017-06-06 14:32:19 +01:00
Brent Cook 3ded57e1cd Land #8516, add verbose debug to ntds dumper 2017-06-06 07:26:54 -05:00
Brent Cook 0830e4aaa5 Land #8503, Linux x86 reverse_tcp error handling 2017-06-06 06:36:55 -05:00
OJ 37b9cd07a2 Add support for the session GUID in the UI 
The Session GUID will identify active sessions, and is the beginning of
work that will allow for tracking of sessions that have come back alive
after failing or switching transports.
 2017-06-06 17:15:57 +10:00
Jeffrey Martin 1558db375d update CVE reference in where modules report_vuln 2017-06-05 16:36:44 -05:00
David Maloney 42aa2e5acf add some attempts at debugging to ntds 
add some logging and more status outputs to the
NTDS domain hasdump. Also force the encoding on
strings to UTF8
 2017-06-05 15:21:50 -05:00
bwatters-r7 f47cc1a101 Rubocop readability changes 2017-06-05 14:32:45 -05:00
Pearce Barry bc3b883758 Add docs, fix typo, add missing report mixin to avoid error. 2017-06-05 13:49:59 -05:00
Brent Cook a5805a55dc make this a UDPScanner, rewrite 2017-06-05 12:39:48 -05:00
NickTyrer 994995671e added wmi_persistence module 2017-06-05 17:44:37 +01:00
Pearce Barry 8c39c92245 Add description and loop capability. 2017-06-05 11:27:13 -05:00
Pearce Barry a571834c4d Initial commit of rpcbomb DoS aux module. 
This just brings the code in as-in, next step is to update to use our mixins and such.
 2017-06-05 10:23:39 -05:00
h00die de86c5d991 add storing creds and loot name consistency 2017-06-04 17:46:43 -04:00
tkmru 737f7452ce add my name to author 2017-06-04 04:42:45 +09:00