adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
47,145 Commits 27 Branches 1,043 Tags
ac20372d00a5bb0e3cbaa0212f04273cb9a8cd30
Commit Graph

11415 Commits

Author SHA1 Message Date
Shelby Pace b5fb970aec Land #10133, Add HID discoveryd RCE exploit 2018-07-06 14:32:29 -05:00
Wei Chen 545e91af00 Land #10262, Add GitList argument injection exploit module 2018-07-06 14:28:20 -05:00
Wei Chen 82c74eb765 Small changes 2018-07-06 14:25:58 -05:00
Shelby Pace b1456df757 made suggested changes 2018-07-06 12:48:38 -05:00
Shelby Pace 5d0652fab1 changed inconsistent capitalization 2018-07-05 15:56:41 -05:00
Shelby Pace 2b452d5681 added documentation and check 2018-07-05 15:47:21 -05:00
Brent Cook 05a0d79be7 Land #10219, Add HP VAN SDN Controller exploit 2018-07-05 14:21:44 -05:00
William Vu 53d5d82498 Rename module to match new vector 2018-07-05 13:31:16 -05:00
Shelby Pace 507fd22958 added http post and generating payload 2018-07-05 13:21:22 -05:00
William Vu 762b4b5e53 Simplify creds auth by checking X-Auth-Token alone 
It's a lot more direct than checking for the redirect.
 2018-07-05 13:20:27 -05:00
William Vu 2b069f45ca Clarify how we're using the auth token for creds 
In the service token's case, the service token *is* the auth token.
 2018-07-05 13:05:23 -05:00
William Vu 41b0adad88 Use uninstall action command injection 2018-07-03 18:07:22 -05:00
Shelby Pace 7d0b8dee4a making request for Gitlist source 2018-07-03 14:27:46 -05:00
William Vu a25a656d28 Add "E" to HP to make HPE for better searches 
We'll stick with calling it HP everywhere else.
 2018-07-03 10:29:09 -05:00
Brent Cook 5946245d87 avoid using SMBv2 on Windows XP Native Upload targets 2018-07-02 16:07:27 -05:00
Wei Chen 2ec091931a Land #10237, Add Boxoft WAV to MP3 Converter exploit module 2018-07-02 14:01:27 -05:00
Wei Chen 3e33a6f0a4 Update moduel boxoft_wav_to_mp3 2018-07-02 14:00:33 -05:00
William Vu 1bf94ac448 Spruce up check method and related 2018-07-02 13:59:24 -05:00
Wei Chen 12141136d7 Land #9896, Java JMX Package Name Randomization 
Land #9896
 2018-07-02 13:41:39 -05:00
William Vu 6e090acc76 Stop joking with timeouts 2018-07-02 13:18:31 -05:00
William Vu 78ca4d4217 Finally use Msf::Util::EXE.to_zip 8) 2018-07-02 13:04:59 -05:00
Shelby Pace 54fce378fa added target versions to documentation 2018-07-02 09:20:17 -05:00
Brent Cook 85dc81a58b Land #10185, add SMBv1/2 support in psexec 2018-06-29 17:49:27 -05:00
Shelby Pace 3b5555542c add exploit module and documentation 2018-06-29 15:17:12 -05:00
William Vu 78cefe0528 Clarify original exploit credit 
It's definitely more than a PoC (exploit). It's weaponized.
 2018-06-29 13:02:40 -05:00
William Vu 34f303187f Drop privesc retval, since it's obsoleted by print 2018-06-29 12:53:59 -05:00
Jacob Robles fc3199259b Land #9958, Nagios xi 2 electric 2018-06-29 12:16:18 -05:00
William Vu dbb502ae19 Refactor code and address review comments 2018-06-29 12:13:15 -05:00
Jacob Robles 675a736ab7 Update Docs 2018-06-29 11:08:31 -05:00
Jacob Robles 574c47cba6 Change Ranking 
Command to change the database user
account could cause a DoS condition
if the credentials are incorrect.
 2018-06-29 10:56:18 -05:00
Jacob Robles 57b89444f3 Additional style fixes 2018-06-29 10:53:57 -05:00
Brendan Coles c508a5f7f3 Land #10213, Add FTPShell client 6.70 Stack Buffer Overflow exploit 2018-06-29 14:40:51 +00:00
Daniel Teixeira 1e148a8862 Update ftpshell_cli_bof.rb 2018-06-29 14:22:40 +01:00
Jacob Robles 7532490a1e Style/Whitespace fixes 2018-06-29 07:02:45 -05:00
William Vu 40ac79ced0 Land #10218, MS17-010 Windows Embedded Standard 7 2018-06-28 16:11:56 -05:00
Daniel Teixeira 1854793253 Update ftpshell_cli_bof.rb 2018-06-28 13:01:13 +01:00
Daniel Teixeira bd2fb56adf Update ftpshell_cli_bof.rb 2018-06-28 12:55:48 +01:00
William Vu 36a37cf6ab Add HP VAN SDN Controller exploit 2018-06-28 02:14:04 -05:00
zerosum0x0 a5c0881c08 add Windows Embedded Standard 7 support 2018-06-27 19:17:18 -06:00
Daniel Teixeira 837427ccae Update ftpshell_cli_bof.rb 2018-06-27 16:42:29 +01:00
Daniel Teixeira 4a4e38a7b0 FTPShell client 6.70 (Enterprise edition) 2018-06-27 16:37:22 +01:00
William Vu 9c38c9f63c Land #10207, msftidy fixes 2018-06-26 14:38:57 -05:00
Jacob Robles 00102a7413 oscommerce msftidy fix 2018-06-26 08:21:10 -05:00
Jacob Robles 2fd0d797ac psexec smb2 support 2018-06-25 15:06:23 -05:00
Brendan Coles 6d3c141553 Update patched version check 2018-06-22 15:08:19 +00:00
Brendan Coles a71a5a10d5 Add Quest KACE Systems Management Command Injection 2018-06-22 08:07:18 +00:00
Adam Cammack 6dafb13f28 Module metadata cleanup 2018-06-21 15:10:47 -05:00
Jeffrey Martin 2f40b2cb45 address missed impacket dependency check 2018-06-21 13:56:17 -05:00
William Vu 4bb6afb24e Move dependency check so we can send our metadata 
I missed this detail about the module.run method when adding the check.
Defining the metadata or where you put it doesn't matter so much as if
you're sending it over JSON-RPC.
 2018-06-20 15:03:26 -05:00
William Vu 8277a4da24 Add better targeting feedback 2018-06-20 12:41:22 -05:00