adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
45,746 Commits 27 Branches 1,043 Tags
a129eb40407bd42ec588142a6b5542eb7926a249
Commit Graph

11104 Commits

Author SHA1 Message Date
William Vu c19fc4c18f Land #9423, PSH for jenkins_xstream_deserialize 2018-03-26 17:09:16 -05:00
h00die 0028e2c5ba documentation update 2018-03-24 19:25:59 -04:00
Touhid M Shaikh 230c0a295f Delete playsms_uploadcsv_exec.rb 2018-03-23 12:29:07 +05:30
Touhid M Shaikh a506efe0b6 playsms_uploadcsv_exec.rb 
PlaySMS 1.4 Remote Code Execution using Phonebook import Function in import.php
 2018-03-21 14:13:52 +05:30
Touhid M Shaikh f012916742 Delete playsms_uploadcsv_exec.rb 2018-03-18 13:57:53 +05:30
Touhid M Shaikh 0e0fcdf727 PlaySMS 1.4 RCE 
PlaySMS 1.4 Remote Code Execution using Phonebook import Function in import.php
 2018-03-18 13:46:30 +05:30
Touhid M Shaikh ea3378753b syntax error fixed on 70 line 
improve check payload was uploaded or not condition using AND condition on line 121
 2018-03-13 14:15:03 +05:30
Touhid M Shaikh 5e30982184 check fucktion and some words fixed 
all changes done which is bcoles suggested
 2018-03-12 21:03:34 +05:30
Touhid M Shaikh 9b0ba4a6fa clipbucket_fileupload_exec 2018-03-12 14:17:13 +05:30
Jacob Robles 86dd382e6a Land #9554, Eclipse Equinoxe OSGi console RCE 2018-03-07 08:41:31 -06:00
William Vu 176fb13c84 Fix #9650, missed code from TelnetEnable refactor 
1. Functionality was added incrementally, and I missed an opportunity to
consolidate a few methods under @do_exploit.
2. The Capture mixin can raise RuntimeError for a number of different
reasons, not just a lack of root privileges.

tl;dr Fix my incompetence and laziness. :-)

I don't think EDB and friends usually get these updates. :(
 2018-03-05 14:46:27 -06:00
h00die ea62497385 Land #9658 spelling and grammar fixes 2018-03-04 06:24:59 -05:00
Biswajit Roy 3925686173 Fixed error in my correction 
Changed from `an username` to `a username`
 2018-03-03 10:16:44 +05:30
William Vu 6dbf9445c9 Add MAC address discovery 2018-03-02 19:18:30 -06:00
William Vu 107512498c Add check method 2018-03-02 19:16:37 -06:00
William Vu 25f36fb926 Refactor code into new methods 2018-03-02 19:16:37 -06:00
William Vu 109bc87ffb Check for nil, EOFError, and zero-length response 2018-03-02 19:15:20 -06:00
William Vu bcdfebf93c Add a vprint for creds we chose 2018-03-02 19:15:19 -06:00
William Vu 4418a0de02 Enhance detection of telnetenabled vs. telnetd 2018-03-02 19:15:19 -06:00
William Vu fba30d47a2 Use default creds specific to protocol 2018-03-02 19:15:18 -06:00
William Vu 1f40afea9c Add automatic target for detection of TCP or UDP 2018-03-02 19:15:18 -06:00
William Vu a5e5b618fd Add print statements I forgot 2018-03-02 19:15:17 -06:00
William Vu e87681f2c4 Add NETGEAR TelnetEnable 2018-03-02 19:15:17 -06:00
Biswajit Roy 38c42f3b10 Fixed Typos 
Fixed minor typing errors.
 2018-03-02 17:38:19 +05:30
Sonny Gonzalez 883654f0ea Land #9653, fix Y2k38 issue (until Jan 1, 2038) 2018-03-01 09:13:41 -06:00
Brent Cook 27bd2a4a9f workaround Y2k38 issues in java certificate generation 2018-03-01 08:41:28 -06:00
Brent Cook 325ad7256e if multi/handler is disabled, exit 2018-02-27 04:30:09 -06:00
attackdebris 2939695991 Add ARCH_CMD and general fixup 2018-02-26 16:59:36 -05:00
William Vu 7663e5c1f6 Land #9601, ms17_010_eternalblue reliability fixes 2018-02-22 15:30:45 -06:00
bwatters-r7 4b8a8fa2b1 Land #9441, Create exploit for AsusWRT LAN RCE 
Merge branch 'land-9441' into upstream-master
 2018-02-22 10:40:45 -06:00
Aaron Soto af45c1764b Tweak exception handling and timing of ms17_010_eternalblue 2018-02-21 13:40:04 -06:00
Brent Cook 78822fd799 Land #9524, prefer 'shell' channels over 'exec' channels for ssh CommandStream 2018-02-21 06:59:09 -06:00
Jacob Robles b2cb4c425d Land #9594, CloudMe Sync v1.10.9 Buffer Overflow 2018-02-20 17:49:19 -06:00
Jacob Robles 6a62ca15e7 Remove NOPS 
[ticket: #9594]
 2018-02-20 17:40:33 -06:00
Daniel Teixeira 745ad4d727 CloudMe Sync Client BoF 2018-02-20 21:57:13 +00:00
Jacob Robles 107a41a4ce Land #9561, Disk Savvy Enterprise v10.4.18 built-in server buffer overflow 2018-02-20 15:42:12 -06:00
Jacob Robles d02bf40d69 Modified Exploit 
Remove NOPS that weren't needed and freed up space for a larger payload.

[ticket: #9561]
 2018-02-20 15:35:43 -06:00
Chris Higgins 74c6e21f49 Lands #9504, MagniComp SysInfo privilege escalation 2018-02-19 22:47:33 -06:00
Quentin Kaiser 9e3f12665e Plaintext for console type to see what's going on. 2018-02-17 20:11:05 +01:00
Quentin Kaiser e877151895 Attempt at clarifying network exchange using Telnet class IAC related constants. 2018-02-17 14:00:57 +01:00
Quentin Kaiser e86169c217 Clean up Telnet IAC negotation and xplain obscure hex bytes. 2018-02-15 23:08:17 +01:00
Daniel Teixeira 651ddbb7eb Disk Savvy Server Buffer Overflow 2018-02-15 10:09:07 +00:00
Daniel Teixeira 929027ab96 Disk Savvy Server Buffer Overflow 2018-02-14 20:35:32 +00:00
Quentin Kaiser 5fbeb74f0c Remove osx platform and fix date. 2018-02-13 23:57:53 +01:00
Quentin Kaiser 0259e794ba OSGi console remote command execution. 2018-02-13 23:38:18 +01:00
h00die 285b329ee1 Land #9422 abrt race condition priv esc on linux 2018-02-11 11:58:39 -05:00
Pearce Barry add7ae8fa1 Land #9536, Add Ubuntu notes to documentation 2018-02-11 07:27:00 -06:00
Pearce Barry 321b78b0fe Land #9408, Add Juju-run Agent Privilege Escalation module (CVE-2017-9232) 2018-02-11 07:19:49 -06:00
Brendan Coles 4e5cbd68b9 Add Ubuntu notes to documentation 2018-02-11 06:52:36 +00:00
Brendan Coles 1177efef89 Update tested versions 2018-02-10 16:32:20 +00:00