5aa91bd57c
Rubocop: Resolve Rubocop Style/RedundantRegexpArgument violations
2025-05-24 13:34:32 +10:00
f6faa5598b
Fixes modules to now correctly use a hash with report note
2025-05-22 10:59:50 +01:00
57c69049f7
Merge pull request #20175 from smashery/ruby-kerberoasting
...
Ruby kerberoasting
2025-05-16 10:28:52 -04:00
13d18f2c83
Update lib/msf/core/exploit/remote/http/wordpress/login.rb
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2025-05-13 17:32:48 -05:00
ce8ceaddbc
Change check for redirect to be less specific
2025-05-13 10:59:16 -05:00
6d3fc7b732
Neatening kerberoasting modifications
2025-05-13 18:26:25 +10:00
abba784190
Fix AES kerberoast hashcat format. Change when hashes are displayed in module.
2025-05-13 18:26:25 +10:00
365db3c52e
Support different hash type JTR formats
2025-05-13 18:26:25 +10:00
1e56168905
Move kerberoasting to Ruby code
2025-05-13 18:26:25 +10:00
be8f4f929c
Fix an issue in the ESC8 module
2025-05-05 13:40:33 -04:00
d95146e315
Use retry to speed things up but also wait longer
2025-05-05 11:06:09 -04:00
6ab275a120
Remove a couple of debug prints
2025-05-05 10:58:41 -04:00
4a746a3963
Relocate find_management_point method
2025-05-01 20:35:41 -07:00
c47c9b95fd
Merge branch 'master' into get_naa_creds_via_relay
2025-05-01 20:33:35 -07:00
3141152393
Merge pull request #20017 from zeroSteiner/feat/mod/ldap/passwords
...
Add LAPSv1 and LAPSv2 LDAP Module
2025-04-30 14:02:30 -07:00
bdca86f39f
Map the GKDI endpoint as a workaround
2025-04-29 14:01:42 -04:00
eba2b6c1bf
Merge pull request #19760 from cdelafuente-r7/feat/pkcs12/certs_command/pkinit
...
Add certs command & use pkinit if kerberos tickets are not available in cache
2025-04-22 11:11:54 -07:00
226853f535
Fix EKU lookup in certificate
2025-04-22 19:08:45 +02:00
f8a67b83e6
Update lib/msf/core/exploit/pgadmin.rb
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-04-17 08:01:15 -07:00
1cade8f18f
Reponded to comments
2025-04-15 10:10:26 -07:00
4f76ff1633
Apply suggestions from code review
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2025-04-15 10:07:53 -07:00
cbc33ea9ce
Remove extra space
2025-04-11 16:02:36 -07:00
4c5e0203dd
Refactor pgAdmin modules to use new lib
2025-04-11 15:55:46 -07:00
053f0e854c
Merge pull request #20024 from cgranleese-r7/add-support-for-network-capture-decryption
...
Add support for network capture decryption
2025-04-11 13:43:22 +01:00
c79f7db38b
Adds enhanced support for network capture decryption
2025-04-11 13:34:40 +01:00
4cec129e1c
Responded to comments
2025-04-10 10:53:05 -07:00
290a35b0f6
pgAdmin Query Tool Authenticated RCE (CVE-2025-2945)
2025-04-09 17:32:10 -07:00
ac5ba70bd2
Add the MsGkdi mixin
2025-04-09 13:04:00 -04:00
daed558f9a
Remove a piece of dead code
2025-04-09 13:04:00 -04:00
7e42746eb0
Code review and fixes
...
- Fix Pkcs12 filer to use case insensitive username and realm
- Handle nil values in `StoredPkcs12`
- Use `fallbacks` options in `ldap_login`
- Small fixes
2025-04-08 18:21:39 +02:00
630c2c03bc
Update certs command, pkcs12 matching and specs
...
- use the `status`, certificate's `not_before`/`not_after` and check if the TLS
OID is present to filter pkcs12 before using them with PKInit
- add the `activate`, `deactivate` and `export` capabilities to the
certs command
- add specs
2025-04-02 18:23:14 +02:00
e7535d8fae
Add certs command & use pkinit if kerberos tickets are not available in cache
2025-04-02 18:23:14 +02:00
7f8a762922
Update ms_icpr and creds to reflect the changes in the Pkcs12 data model
...
- a separate field is now used for metadata (`private_metadata`) when
creating a new Pkcs12
- the `creds` command now support adding an encrypted Pkcs12 with a password
2025-04-01 19:12:41 +02:00
865626fbd2
Update Pkcs12-related code to report CA and ADCS Template to the database
...
- Update the `creds` command to add Pkcs12 private credentials with
metadata.
- Update `ms_icpr` module to store metadata.
2025-04-01 19:07:48 +02:00
ca3c4a1362
Merge branch 'master' into get_naa_creds_via_relay
2025-04-01 09:34:35 -07:00
33e3a0bd09
Merge pull request #19984 from zeroSteiner/feat/lib/adcs-mm-updates/2
...
Feat/lib/adcs mm updates/2
2025-03-31 10:23:10 -07:00
08e227faca
Merge pull request #19934 from sfewer-r7/bugfix-cisco-iosxe-rce
...
Improve exploit/linux/misc/cisco_ios_xe_rce (CVE-2023-20198 + CVE-2023-20273)
2025-03-27 16:51:16 -07:00
d38dd96861
Renames LDAP datastore options
2025-03-25 17:07:25 +00:00
b3de2516bd
Merge branch 'master' into get_naa_creds_via_relay
2025-03-21 10:43:20 -07:00
87a17424af
Suggestions from code review
2025-03-21 10:34:08 -07:00
02e3a55570
Catch additional exceptions for failures
2025-03-21 12:02:23 -04:00
0f65539bb5
Apply suggestions from code review
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2025-03-21 08:53:53 -07:00
2e842179b7
Merge pull request #19757 from smashery/cms_refactor
...
Refactor Cms ASN.1 definitions
2025-03-19 13:38:34 -04:00
f8760a9e3b
Update from code review
2025-03-14 15:28:39 +01:00
d4fd890fed
Add the smb_to_ldap relay module and documentation
2025-03-14 15:28:39 +01:00
d47ec03ca7
Refactor CMS data structures used in pkinit functionality
2025-03-14 10:42:32 +11:00
fdf4531c10
Add SMB to HTTP relay support for get_naa_creds
2025-03-13 10:59:59 -07:00
c3ffdb12f5
Merge pull request #19946 from zeroSteiner/feat/mod/relay/ms08-068-warning
...
Add a warning for MS08-068 when applicable
2025-03-05 11:11:20 -08:00
0116d0c04b
Actually count the hosts
...
RangeWalker handles many more formats for specifying multiple hosts, so
simply checking for a space is insufficient.
2025-03-05 13:44:33 -05:00
b43dc8be08
Switch relay modules, add ESC8 check method
2025-03-05 13:44:33 -05:00
bcoles