adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
29,698 Commits 27 Branches 1,043 Tags
c2bcde24ef4cbabcbf8cd52cde9afacf7ad737bc
Commit Graph

29698 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Meatballs c2bcde24ef Land #4377, Support DYNAMIC_BASE templates - resolves #4366 2014-12-23 11:57:33 +00:00
sinn3r 36404eb67f Land #4457 - Fix firefox in-memory payload execution 
Fix #4374
 2014-12-23 01:34:11 -06:00
jvazquez-r7 01cf14d44e Fix banner 2014-12-23 01:02:09 -06:00
jvazquez-r7 4928cd36e4 Land #4187, @BorjaMerino's post module to get output rules 2014-12-23 01:01:03 -06:00
jvazquez-r7 49fef9e514 Do minor module clean up 2014-12-23 01:00:21 -06:00
Joe Vennix e974d272f0 Remove stray line comment that ruined things when minified. 2014-12-23 00:22:50 -06:00
sinn3r 30916e35ad Land #4454 - Fix duplicate :ua_maxver key in firefox exploit 2014-12-22 23:43:17 -06:00
Joe Vennix 0bf3a9cd55 Fix duplicate :ua_maxver key. 2014-12-22 14:57:44 -06:00
William Vu 58e4d39993 Land #3394, for real 2014-12-22 12:27:50 -06:00
William Vu 6c252e3492 Land #3394, bind_hidden_tcp stager 2014-12-22 11:31:34 -06:00
Borja Merino 1013ca6298 Merge pull request #10 from wvu-r7/pr/3394 
Fix invalid URL in splat
 2014-12-22 18:27:29 +01:00
William Vu 93be828738 Fix invalid URL in splat 2014-12-22 11:26:20 -06:00
Borja Merino 2035f606c1 Merge pull request #9 from wvu-r7/pr/3394 
Align shellcode in bind_hidden_tcp
 2014-12-22 18:18:56 +01:00
William Vu f1b9862665 Align shellcode in bind_hidden_tcp 2014-12-22 11:17:14 -06:00
Borja Merino 7efa85ea3f Merge pull request #8 from wvu-r7/pr/3394 
Readd block_hidden_bind_tcp.asm
 2014-12-22 18:15:18 +01:00
William Vu e34c37042a Readd block_hidden_bind_tcp.asm 
Because stager_hidden_bind_tcp.asm includes it.
 2014-12-22 11:13:07 -06:00
Borja Merino 25fabfcab1 Merge pull request #7 from wvu-r7/pr/3394 
Add bind_hidden_tcp to payload spec
 2014-12-22 17:45:03 +01:00
William Vu e4191866d9 Add bind_hidden_tcp to payload spec 2014-12-22 10:37:46 -06:00
root 9a7e431a4a New block_api applied 2014-12-22 17:21:13 +01:00
Peregrino Gris 42636fb3c0 Handler and block_hidden_bind_tcp deleted 2014-12-22 17:21:13 +01:00
root fa8e944e34 AHOST OptAddress moved to the payload 2014-12-22 17:21:11 +01:00
Peregrino Gris c0fa8c0e3f Add stager for hidden bind shell payload 2014-12-22 17:21:11 +01:00
William Vu 416483415a Land #4450, MSB reference fix 2014-12-22 05:28:48 -06:00
Jon Cave 44084b4ef6 Correct Microsoft security bulletin for ppr_flatten_rec 2014-12-22 10:40:23 +00:00
Christian Mehlmauer 2e4ac41548 Land #4437, msfvenoms new output switch 2014-12-21 20:48:33 +01:00
William Vu ded1765d73 Land #4439, rm Redmine references in code 2014-12-20 17:19:55 -06:00
Tod Beardsley 80d3c5b757 Normalize links to metakitty, unleashed, and wiki 2014-12-20 12:53:34 -06:00
Samuel Huckins 067bda43e7 Updating lockfile post MDM version bump 2014122301 2014-12-19 20:58:09 -06:00
Samuel Huckins c8d80d5de5 Lands #4436, latest version of MDM 
Fixes an issue with protocol inclusion when adding an NX console
 2014-12-19 20:56:02 -06:00
Tod Beardsley 1213aa1875 Missed one in CONTRIBUTING.md 2014-12-19 17:32:28 -06:00
Tod Beardsley d3050de862 Remove references to Redmine in code 
See #4400. This should be all of them, except for, of course, the module
that targets Redmine itself.

Note that this also updates the README.md with more current information
as well.
 2014-12-19 17:27:08 -06:00
sinn3r fb35a4574f Well, should be -1 2014-12-19 16:36:05 -06:00
sinn3r cd444ed2db No point to save if there's no payload 2014-12-19 16:35:17 -06:00
sinn3r 3c03f3697a Land #4433 - Update mailmap 2014-12-19 16:29:14 -06:00
sinn3r c2bc182db5 Fix #4430 - Add support for -o to save the payload to disk 
Fix #4430
 2014-12-19 16:14:43 -06:00
Fernando Arias 337b2d784f Land #4416, define rails version dep in one place 
* Bump rails to 3.2.21
 2014-12-19 15:17:54 -06:00
David Maloney 82e7cd99b5 pull latest mdm 2014-12-19 14:58:01 -06:00
HD Moore fffa8cfdd1 Lands #4426 by cleaning up the module description 2014-12-19 14:54:17 -06:00
HD Moore 9ede2c2ca5 Lands #4429 by fixing windows/messagebox with EXITFUNC=none 2014-12-19 14:51:57 -06:00
Brent Cook 85ec71bd1e Land #4434, fix for metasm invalid opcode 2014-12-19 14:43:55 -06:00
David Maloney 24527d7a55 Land #4427, Misfortune Cookie Scanner 
lands Jhart's scanner module for the RomPager
Misofrtune Cookie vuln.
 2014-12-19 14:03:00 -06:00
Matt Buck db0aeb2a05 Make the version constraint a range 2014-12-19 13:54:13 -06:00
Tod Beardsley 38a4776b39 Add and sort other contributors in mailmap 2014-12-19 13:41:06 -06:00
Tod Beardsley df4f86047d Add new/updated r7 employees to mailmap 2014-12-19 13:39:42 -06:00
sinn3r 650a68c994 Fix jcxz to jecxz for x86_64 in metasm 
This fixes "invalid opcode near 'jecxz'" for x64 metasm encoding.
 2014-12-19 13:34:56 -06:00
Matt Buck c493ccfc06 Define the Rails version constraint in a library constant 2014-12-19 11:46:39 -06:00
sinn3r 2c0c732967 Fix #4414 & #4415 - exitfunc and proper null-terminated string 
This patch fixes the following for messagebox.rb

Issue 1 (#4415)
When exitfunc is none, the payload will not be able to generate
due to an "invalid opcode" error.

Issue 2: (#4414)
After "user32.dll" is pushed onto the stack for the LoadLibrary
call, the payload does not actually ensure bl is a null byte, it
just assumes it is and uses it to modify the stack to get a
null-terminated string.

Fix #4414
Fix #4415
 2014-12-19 03:19:06 -06:00
Jon Hart 8d2bd74d31 Add preliminary module to cover 'Misfortune Cookie', CVE-2014-9222 2014-12-18 17:21:26 -08:00
Tod Beardsley c15bad44a6 Be clearer on backslash usage. 
See #4282
 2014-12-18 16:16:02 -06:00
William Vu 723998e1d4 Land #4425, jobs tab completion NilClass fix 2014-12-18 15:25:57 -06:00