adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
59,500 Commits 27 Branches 1,043 Tags
9beec65ef34c4e90a00a41ee1c8de0f9e6effd2a
Commit Graph

165 Commits

Author SHA1 Message Date
h00die c3a58f93ec cve-2020-29583 2021-01-18 09:52:09 -05:00
h00die ea4cade5c8 cve-2020-29583 2021-01-18 09:49:53 -05:00
h00die 15b5a811e4 update check external scripts and wordpress files 2020-11-21 11:52:18 -05:00
Spencer McIntyre adfc8f89c4 Implement version enumeration and report CVE-2017-11317 for Telerik 2020-10-07 10:27:50 -04:00
gwillcox-r7 7d3653280f Land #13848, Add CDATA OLT telnet backdoor wordlist 2020-07-16 11:32:06 -05:00
0x44434241 703dc79710 Vim ate my trailing space for guest/[nopassword] 2020-07-16 12:50:08 +09:00
0x44434241 94b46209d9 Adding in C-Data FTTH OLT Device telnet backdoor credential pairs. 
Further information:
 - https://www.zdnet.com/article/backdoor-accounts-discovered-in-29-ftth-devices-from-chinese-vendor-c-data/
 - https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html
 2020-07-16 12:38:23 +09:00
Brent Cook 0bca86b10d add new paths from Joris van de Vis 2020-05-04 06:27:02 -05:00
Brent Cook 0622eff907 remove duplicates 2020-05-04 06:23:55 -05:00
Brent Cook caf863b380 sort and normalize list 2020-05-04 06:15:11 -05:00
h00die 91add39ceb extra blank line removed 2020-02-09 19:05:46 -05:00
h00die 65951dd97b nnposter list 2020-02-09 19:04:03 -05:00
h00die cca3184b36 update userlist to ubuntu 18.04 lamp 2020-02-03 19:07:08 -05:00
GabrielMioranza 4d6f16eac1 Update setting new .exe of Sophos AV 
Add .exe used by Sophos AV Endpoint
 2019-07-27 16:47:05 -03:00
NoodleOfDeath 2a5233156f Updated wordlists to match generated script provided on https://github.com/rapid7/metasploit-framework/pull/11862 2019-05-28 12:02:03 -04:00
NoodleOfDeath 7bd9608d5e Removed extraneous newline ending in wp-plugins.txt 2019-05-24 17:50:33 -04:00
NoodleOfDeath d4e79cffe7 added wp-themes wordlist to reflect https://themes.svn.wordpress.org/ 2019-05-24 17:40:37 -04:00
NoodleOfDeath 9f3e4e0b65 modified wordlist to reflect https://plugins.svn.wordpress.org/ 2019-05-24 17:37:02 -04:00
NoodleOfDeath 5f889919b4 Added a wordlist of 1491 WordPress plugins that can be enumerated in the wp/wp-content/plugins directory 2019-05-20 14:30:02 -04:00
William Vu 5867158238 Land #11595, can_flood post module 2019-04-01 12:38:46 -05:00
William Vu f5f4c4bec2 Clean up module 2019-04-01 12:24:35 -05:00
Justin Bollinger c98ed4b494 Updated ipmi_users.txt 
Added username 'Admin'
 2019-03-22 11:40:24 -04:00
PietroBiondi ce218fc86a Add can_flood post exploitation for CAN and added example list of frames 2019-03-20 13:17:41 +01:00
El Nerdo ac0dc8be1f cable-d -> cable-docsis 
cable-docsis is a known hidden community string in Cisco devices.
www.cisco.com/warp/public/707/cisco-sa-20010228-ios-snmp-community.shtml

To me, it looks like cable-d should be cable-docsis
 2019-03-16 20:55:43 +01:00
h00die 42be66a2cf add root/ubnt to router creds 2019-03-12 19:26:58 -04:00
h00die 49b8552d59 update joomla wordlists 2019-01-04 21:38:49 -05:00
Shreyans Devendra Doshi 45c6f1ed62 Fix #11084 Add 'chronos' to unix_users.txt 
This commit adds the username 'chronos' to the user list as it happens
to be the default username on ChromeOS, as highlighted by @h00die in
Issue #11084.
 2018-12-09 09:58:58 -05:00
Tod Beardsley feb4b78227 Add Lumpy Space Princess's password 
http://adventuretime.wikia.com/wiki/Trouble_in_Lumpy_Space
 2018-08-20 16:28:21 -05:00
Tod Beardsley 10d5f32b92 None of these should be executable 2018-08-20 16:25:34 -05:00
Jacob Robles ad249ad62b Sort Wordlist 2018-06-07 11:34:07 -05:00
Jacob Robles cf962b28a5 Add Lync Subdomain Wordlist 2018-06-06 13:05:56 -05:00
follower 57bb7fd819 Add correct filename for /etc/group 
AFAICT the correct filename is the singular form `group` not `groups` (e.g. [see](https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/4/html/Introduction_To_System_Administration/s3-acctspgrps-group.html) & [see](https://linux.die.net/man/5/group)).

Rather than just correcting the filename in place I'm adding the correct form because when even [official Red Hat documentation](https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.3_release_notes/bug_fixes_authentication_and_interoperability#idm140113937457168) sometimes gets it wrong, maybe one day someone will get lucky with the misspelling.
 2018-05-22 00:12:20 +12:00
Auxilus 6e9a4916f5 scanner update 2018-03-13 00:23:18 +05:30
Auxilus 2b7364a637 Add wordlist 2018-03-09 21:46:07 +05:30
Auxilus 1342284dc9 Add wordlist 2018-03-09 21:38:59 +05:30
Jon Hart 37ae5e1303 Add admin as a default unix passwd 2017-12-20 18:44:21 -08:00
Brent Cook 6fb0a06672 add pastebin IoT credentials 2017-08-25 08:57:20 -05:00
Brent Cook d2e6af1845 sort|uniq 2017-08-25 08:54:49 -05:00
Pearce Barry c00b9ca1e5 Land #8175, Get into the DANGER ZOOOOOOONE 2017-03-31 14:31:22 -05:00
HD Moore b5771b0f72 Get into the DANGER ZOOOOOOONE 2017-03-31 12:26:42 -05:00
Mehmet Ince e9f816272d Adding solarwinds lem default ssh credentials to the wordlist 2017-03-24 13:24:05 +03:00
Tonimir Kisasondi 83548a0dde added mirai user/pass to unhash set 2016-10-05 22:24:11 +02:00
Tonimir Kisasondi 7ce73be936 Add linux.mirai wordlists 2016-10-05 17:57:08 +02:00
Adam Muntner 726079c6e7 diffed with fuzzdb 
https://github.com/fuzzdb-project/fuzzdb/blob/master/discovery/predictable-filepaths/webservers-appservers/SAP.txt
 2016-09-21 00:20:46 -04:00
Tim 96f81b4817 add root:vagrant to root_userpass 2016-09-07 12:59:12 +01:00
wchen-r7 23a5d737fc Add password "vagrant" to wordlists 
The password "vagrant" is often used in Metasploitable3.
 2016-09-06 12:36:02 -05:00
h00die cd207df6b8 adding karaf to unix lists per 4358 2016-06-15 20:31:48 -04:00
Brent Cook 7b024d1a72 Land #6914, add siem to the namelist 2016-05-24 14:22:44 -05:00
x90" * 365 9d545b0a05 Update namelist.txt 2016-05-24 13:00:59 -04:00
Meatballs 4f84c5a3b7 Add additional SOLMAN default creds 2016-03-29 15:53:15 +01:00