502e415344
Merge pull request #19630 from remmons-r7/cups_ipp_rce
...
Exploit module for IPP attributes remote code execution - OpenPrinting CUPS
2024-11-22 09:22:21 -05:00
24d3ef16cf
Remove some unnecessary code, switch to passive stance
2024-11-21 15:08:43 -05:00
bc7adfbe41
Bump version of framework to 6.4.38
2024-11-21 03:32:51 -06:00
05cbd1d9a3
Land #19593 Add exploit for CVE-2023-28324 (Unauthenticated RCE in Ivanti EPM)
...
This exploits an unauthenticated RCE in Ivanti's EPM where a .NET remoting client can invoke a method that results in an OS command being executed in the context of NT AUTHORITY\SYSTEM.
2024-11-20 11:18:58 -08:00
e6615d3a74
Merge pull request #19659 from sjanusz-r7/fix-irb-deadlock-error
...
Fix IRB deadlock recursive locking on Ctrl+C
2024-11-19 16:11:09 +00:00
f7e210d3e9
Merge pull request #19624 from cdelafuente-r7/fix/mod/ms_icpr
...
Fix a crash when generating CSRs with OpenSSL 3.4.0
2024-11-19 10:58:52 -05:00
523a172e23
Load Readline without a conditional
2024-11-19 13:02:06 +00:00
fefc8438f5
Deprecate real-readline option
2024-11-19 12:38:05 +00:00
7bab1c1980
Fix specs and add algorithm argument
2024-11-18 17:17:58 +01:00
bc45734fed
Fix IRB deadlock recursive locking on Ctrl+C
2024-11-18 14:37:01 +00:00
d039bead93
Merge pull request #19601 from sjanusz-r7/add-teamcity-login-scanner
...
Add JetBrains TeamCity HTTP Login Scanner
2024-11-15 12:49:10 +00:00
de39b693b7
Merge pull request #19645 from adeherdt-r7/MS-9862-rails-upgrade-preparation-migration-manager
...
MS-9862 Ruby on Rails Upgrade Preparation : Migration
2024-11-15 08:44:05 +01:00
6be0182b1f
Fix crash when using modules
2024-11-14 21:19:41 +00:00
d2ee472e31
Merge pull request #19185 from dwelch-r7/display-current-action-on-module-load
...
Display current action on module load
2024-11-14 12:49:57 -05:00
b80bd252a8
MS-9862 Ruby on Rails Upgrade Preparation : Migration
...
Updating the logic in the `Msf::DbManager::Migration` to adhere to modern Rails standards and no longer manually control the connection. The connection pool and handling is fully controlled by ActiveRecord, which has a better understanding of what needs to be done than we do.
2024-11-14 11:37:54 +01:00
67e27c60ef
Bump version of framework to 6.4.37
2024-11-13 18:39:19 -06:00
0d0631aa2a
Squash to a single line of output
2024-11-13 11:27:17 +00:00
24e19e4ebb
Update the ESC8 relay module to use the new helper
...
It also fixes some unrelated minor issues found in the module and the documentation
2024-11-12 18:23:31 +01:00
2c009d02f9
place current action display behind feature flag
2024-11-12 15:53:30 +00:00
6018adbbb3
Display current action and number of available actions on module use
2024-11-12 15:53:30 +00:00
35bb832b7c
Add create_csr helper under Rex::Proto
...
Also update `ms_icpr.rb` to use it
2024-11-12 12:34:20 +01:00
422ecd8d3f
Remove setting version for CSR
2024-11-12 12:34:20 +01:00
4951a9b24d
Create mDNS server.rb
2024-11-11 15:54:44 -06:00
f16991af07
Merge pull request #19623 from adfoster-r7/fix-kerberos-cache-storage-exception
...
Fix Kerberos cache storage exception
2024-11-11 09:31:13 -05:00
2206b0c288
Merge pull request #19617 from sjanusz-r7/fix-shell-include
...
Check for nil res when setting echo shell
2024-11-11 10:23:15 +00:00
abfc24efdc
Fix Kerberos cache storage exception
2024-11-08 11:25:28 +00:00
3ccf18f8e9
Merge pull request #19610 from cgranleese-r7/fixes-report-summary
...
Updates report summary mixin with an additional fallback when finding creds
2024-11-07 19:24:40 +00:00
c98830834b
Merge pull request #19620 from dudu7615/Fixed-spelling-errors-in-command-usage
...
Fixed spelling errors in command usage
2024-11-07 09:14:32 -05:00
763793ee3d
Bump version of framework to 6.4.36
2024-11-07 03:35:44 -06:00
96f6f66429
Land #19550 , Fix username/password generation in case both PASSWORD_SPRAY and USER_AS_PASS are enabled
2024-11-06 13:56:05 +00:00
8ffa333a97
Fixed spelling errors in command usage
2024-11-06 20:38:51 +08:00
2470a45eb1
Fix out of scope variable with original behaviour
2024-11-06 18:33:34 +11:00
e709a18128
Merge pull request #19404 from bwatters-r7/smb2http_relay
...
SMB to NTLM HTTP Relay with ESC8 module
2024-11-05 14:12:08 -05:00
975c1ac71f
Check for nil res when setting echo shell
2024-11-05 13:31:07 +00:00
520ac7ef2b
TeamCity: Correctly encrypt UTF-8 codepoints
2024-11-04 16:33:29 +00:00
2073121f5e
TeamCity: Raise ArgumentError, refactor Crypto as an included module
2024-11-04 16:33:29 +00:00
970beb4c27
TeamCity: Consolidate RSA crypto into login scanner
2024-11-04 16:33:29 +00:00
a6ee189502
TeamCity: Use more exceptions, cache public key
2024-11-04 16:33:29 +00:00
386441d3d2
TeamCity: Consolidate HTTP TeamCity into module
2024-11-04 16:33:29 +00:00
c37f4e6508
TeamCity: Prevent endless recursion and stack explosions in try_login
2024-11-04 16:33:29 +00:00
ed1a5d97c3
TeamCity: use vars_post for login request
2024-11-04 16:33:29 +00:00
84cacb5cca
TeamCity: Fire and forget logout request
2024-11-04 16:33:28 +00:00
ef51254fcd
TeamCity: Add maximum message size for string
2024-11-04 16:33:28 +00:00
9cb05efa27
TeamCity: use random padding bytes
2024-11-04 16:33:28 +00:00
cba8962d29
Add JetBrains TeamCity HTTP Login Scanner
2024-11-04 16:33:28 +00:00
e130092d87
Add a missing require statement
2024-11-04 09:37:12 -05:00
7d8baee574
Add some error handling and more logging
2024-11-04 09:37:12 -05:00
80d883b55e
Consistently use strings for HTTP request options
2024-11-04 09:37:12 -05:00
4a4ec9aea4
Add some more logging
2024-11-04 09:37:12 -05:00
316a967414
Update the ESC8 module for the new changes
2024-11-04 09:37:08 -05:00
Spencer McIntyre