adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
58,574 Commits 27 Branches 1,043 Tags
a169e01aff80ac5adbcacd8a421e49809b984c19
Commit Graph

29770 Commits

Author SHA1 Message Date
adfoster-r7 a169e01aff Land #14371, Add version details to drupal_views_user_enum.rb 2020-11-10 12:55:03 +00:00
Tim W e14813485a Land #14331, add msfvenom apk template cmd injection exploit 2020-11-10 17:33:10 +08:00
h00die 8b9043c3f3 add drupal views version info 2020-11-09 16:03:23 -05:00
adfoster-r7 a0106aa603 Land #14269, Add Apache Zookeeper Information Disclosure Auxiliary Module 2020-11-09 20:12:35 +00:00
Grant Willcox 5761fe9307 Land #14349, Fix merge mistake in PR 14222 2020-11-05 09:07:51 -06:00
Christophe De La Fuente 55ccc42cde Land #14319, wp_Loginizer unauth sqli (CVE-2020-27615) 2020-11-05 15:36:10 +01:00
cgranleese-r7 70985a09e2 Merge pull request #14280 from h00die/mikrofileread 
Land #14280, Mikrotik unauthenticated directory traversal file read
 2020-11-05 09:27:47 +00:00
Karn Ganeshen f9a12e6e80 Module updated 
Improved handling of response exceptions
 2020-11-05 04:03:05 +05:30
Grant Willcox a0087842fb Fix an earlier merge mistake, was meant to replace URI.escape with Rex::Text.uri_encode() but instead replaced it with CGI.escape. Fix it to be Rex::Text.uri_encode() 2020-11-04 14:39:16 -06:00
Grant Willcox d50ac2972d Land #14222, Update php_fpm_rce.rb to replace depreciated URI.encode calls with Rex::Text::uri_encode 2020-11-04 14:04:28 -06:00
h00die 37b454ce1e chmod +x 2020-11-04 14:18:34 -05:00
h00die dff6a21742 add wp version check 2020-11-04 11:45:06 -05:00
bwatters 8add7fb7ca Land #14335, Remove the DRuby remote code execution module 
Merge branch 'land-14335' into upstream-master
 2020-11-02 18:30:54 -06:00
Grant Willcox 8a82907a0f Land #14323, Use the datastore nameservers when the NS option is set in enum_dns.rb for zone transfers 2020-11-02 16:44:19 -06:00
Spencer McIntyre 708de57499 Land #14297, Modified zabbix login to work with newer versions of zabbix 2020-11-02 15:59:22 -05:00
Grant Willcox 7b72120016 Land #14252, Update Avira password gatherer module and associated libaries and add in documentation 2020-11-02 14:37:47 -06:00
Spencer McIntyre 659137da94 Remove the DRuby remote code execution module 2020-11-02 08:32:52 -05:00
Justin Steven 61f7f01f37 Nicer certificate expiration 
Co-authored-by: bcoles <bcoles@gmail.com>
 2020-10-31 12:14:18 +10:00
Justin Steven cb14287cb2 Add metasploit_msfvenom_apk_template_cmd_injection 2020-10-31 11:28:28 +10:00
Spencer McIntyre a1561cff46 Add some additional error handling with more readable messages 2020-10-30 14:34:44 -04:00
Grant Willcox 46c937089d Fix up regex to properly match on Raw-MD5u only, and fix up refname to be self.refname to fit in with other modules in this directory 2020-10-30 12:37:35 -05:00
Alan Foster 17ac8dab2a Fix smb version error handling 2020-10-30 16:26:31 +00:00
Spencer McIntyre 06d1165a8b Remove dead code in the auxiliary/gather/enum_dns option 2020-10-30 10:45:08 -04:00
Grant Willcox 4479f4f0e1 Update library and module to fully support version 5.2. Also update the module to support guest discovery on newer versions on Zabbix 2020-10-29 19:27:12 -05:00
h00die 238889282a module cleanup 2020-10-29 17:11:19 -04:00
h00die f94acb94c9 cleanup 2020-10-29 10:46:14 -04:00
Spencer McIntyre 861879275e Land #14250, Fix how DNS enumeration displays AXFR results 2020-10-28 13:38:38 -04:00
Grant Willcox 85c3058e7d Delete the unused axfr function from auxiliary/gather/enum_dns 2020-10-28 09:34:13 -05:00
h00die 0abdaf9f67 WIP 2020-10-27 21:30:46 -04:00
h00die c11d07aed2 more cleanup 2020-10-27 17:53:30 -04:00
h00die 9c3b62f071 sqli help needed 2020-10-27 12:09:22 -04:00
Alan Foster 902297d199 Add service stub encoder validation 2020-10-27 15:27:24 +00:00
Grant Willcox bd57832494 First round of changes from review 2020-10-26 16:02:06 -05:00
HuskyHacks 3a66984808 Update enum_putty_saved_sessions.rb 
updating enum_putty_saved_sesssion.rb with additional fields
 2020-10-25 15:45:33 -04:00
h00die 79384e85f3 remove old .keep files in non-empty directories 2020-10-24 09:41:55 -04:00
bwatters 294269bd4e Land #14300, Fixes and updates for the DRuby RCE module 
Merge branch 'land-14300' into upstream-master
 2020-10-23 14:36:04 -05:00
Spencer McIntyre ba17a5d67f Apply rubocop fixes for the DRuby RCE module 2020-10-22 12:35:35 -04:00
Spencer McIntyre 8aca08f80b Add the DRuby RCE check method 2020-10-22 12:34:51 -04:00
Spencer McIntyre 34e41e66ec Fix the syscall DRuby target by adding a small delay before execve 2020-10-22 12:18:12 -04:00
Spencer McIntyre 49145bfd31 Don't start the DRuby service, it appears unnecessary 2020-10-22 12:15:39 -04:00
bwatters 2f2d43e3bb Land #14295, update payload sizes from 2.0.22 gem 
Merge branch 'land-14295' into upstream-master
 2020-10-22 08:52:18 -05:00
Brendan Coles 6258d5b561 Land #14296, Move mercury_login module docs to documentation directory 2020-10-22 13:24:54 +00:00
Spencer McIntyre 3dc232aa9a Land #14289, Add version check to exploit/windows/http/exchange_ecp_dlp_policy 2020-10-21 17:52:38 -04:00
Jeffrey Martin a8d41c59e2 update payload sizes from 2.0.22 gem 2020-10-21 16:35:43 -05:00
h00die 5890bc45b5 move docs out of exploits folder 2020-10-21 16:37:02 -04:00
adfoster-r7 a362b6785d Land #14290, set pid to nil for MS17-010 SMB1 clients 2020-10-21 16:20:08 +01:00
Spencer McIntyre b457191eaa Set pid to nil for MS17-010 SMB1 clients 2020-10-20 17:09:51 -04:00
William Vu e4fb76d74f Add version check to exchange_ecp_dlp_policy 
And update modules/exploits/windows/http/sharepoint_ssi_viewstate.rb.
 2020-10-20 14:32:43 -05:00
William Vu 3970b69734 Land #14229, Telerik UI for ASP.NET AJAX exploit 
CVE-2017-11317 && CVE-2019-18935
 2020-10-20 13:24:35 -05:00
Spencer McIntyre b58ed7f909 Update the Telerik RAU module metadata and add the TARGETURI option 2020-10-20 13:48:59 -04:00