adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
50,629 Commits 27 Branches 1,043 Tags
c48a6ddbdfc02bf92b8d4e247dbe89bdfba4e821
Commit Graph

2090 Commits

Author SHA1 Message Date
William Vu b4ff3b544f Add CMDSTAGER::SSL datastore option 
It has come to my attention that since I added the HTTP(S) command
stagers, no one has used HTTPS. This is probably why.

The CmdStager options hash takes precedence over any datastore options.
 2018-12-21 14:51:49 -06:00
Brendan Coles 8d93812c0a Add Rex::Exploitation::CmdStagerFetch 2018-12-15 03:30:00 +00:00
Jacob Robles 88ca775fd3 Land #10952, WP GDPR Compliance plugin exploit 2018-11-29 13:31:31 -06:00
Jacob Robles 9d33891652 Update register descriptions 2018-11-28 19:37:35 -06:00
Jacob Robles c4959da77f Email validation and user registration 2018-11-28 17:56:55 -06:00
Jacob Robles 795aa3c99c Land #10828, git submodule url exec CVE-2018-17456 2018-11-14 12:39:13 -06:00
Wei Chen 2ab9a003d4 Land #10864, Add Cisco WebEx RCE Modules 2018-10-24 16:20:00 -05:00
Shelby Pace 34ae9c38f9 added WebEx modules, arch check 2018-10-23 15:51:23 -05:00
Brent Cook b65f467ada Land #10851, add ndkstager to data/exploits 2018-10-23 12:04:57 -05:00
William Vu da38dfb29a Clarify we never receive CHANNEL_OPEN_FAILURE 2018-10-19 13:25:19 -05:00
William Vu cc283d9def Add testing note about session channel opens 2018-10-19 13:13:22 -05:00
William Vu 21397330f8 Refactor fortinet_backdoor copypasta 2018-10-19 00:07:18 -05:00
William Vu d1354cc1f7 Add libssh auth bypass packet 2018-10-18 23:03:23 -05:00
Tim W 64e257649f cleanup module 2018-10-18 11:45:59 +08:00
Tim W 290d4428c1 create git mixin 2018-10-18 11:31:31 +08:00
Brent Cook 4ae45cb20b comment around why we do this, make check more explicit 2018-10-12 02:12:30 -05:00
Nate Caroe 14e87bf06f Baby come back 2018-10-11 11:10:36 -06:00
Nate Caroe e207c225a2 Remove function entirely 2018-10-11 10:41:43 -06:00
Nate Caroe 5c061c02b9 Remove peer information from the prefix 2018-10-10 16:31:48 -06:00
Tim W 4a4c759a4b add ndkstager to data/exploits 2018-10-05 15:10:21 +08:00
Kent 'picat' Gruber bcf78e6067 use tr instead of gsub 2018-09-17 09:45:52 -04:00
Brent Cook a3d74d926c Land #9897, Fix #8404 ListenerComm Support For Exploit::Remote::TcpServer 2018-09-10 16:25:55 -05:00
William Vu 35fb0d19ab Refactor SSH mixins and update modules 2018-09-05 23:53:11 -05:00
William Vu 8e6a1d203b Futureproof FingerprintCheck until we delete it 2018-07-25 21:39:02 -05:00
William Vu 25ef422168 Handle connection errors and fail_with in check 
Also fix FingerprintCheck to tell us when it doesn't receive a response.
 2018-07-25 21:11:40 -05:00
Green-m f5b8b4dd7c Update send_request_cgi/raw 2018-07-12 23:51:41 -04:00
Green-m 65627e06e2 Update send_request_cgi/raw 2018-07-12 23:51:18 -04:00
Brendan Coles df2f58fb08 Add WPCHECK (Bool) advanced option to Exploit::Remote::HTTP::Wordpress 2018-07-11 07:09:28 +00:00
Brent Cook 85dc81a58b Land #10185, add SMBv1/2 support in psexec 2018-06-29 17:49:27 -05:00
Jacob Robles 5e02e7a2c8 smb_file_exist check for rubysmb 2018-06-28 18:10:39 -05:00
William Vu 40ac79ced0 Land #10218, MS17-010 Windows Embedded Standard 7 2018-06-28 16:11:56 -05:00
Brent Cook c06f13b33e remove superfluous sleeps, simplify logic 2018-06-28 12:15:42 -05:00
Brent Cook b01bd060ee remove unneeded slashes 2018-06-28 12:15:42 -05:00
Brent Cook 055c90c076 fix filename randomization while debugging 2018-06-28 12:15:42 -05:00
zerosum0x0 f742df028b shitty typos 2018-06-27 20:34:01 -06:00
zerosum0x0 a5c0881c08 add Windows Embedded Standard 7 support 2018-06-27 19:17:18 -06:00
Jacob Robles 2fd0d797ac psexec smb2 support 2018-06-25 15:06:23 -05:00
Christian Mehlmauer f17140bdc3 fix nil error in HttpTrace 2018-05-26 10:04:26 +02:00
Brent Cook b79b53c438 Land #9962, tab-complete target options 2018-05-15 16:41:55 -05:00
Brent Cook 4cf834d670 restore a few more mixin aliases for now 2018-05-08 17:10:01 -05:00
Brent Cook 25177ef9dc add local CONST definition 2018-05-08 17:08:05 -05:00
Aaron Soto 40f1bb223d Revert deleted code from #9986. See issue #9993 2018-05-08 16:40:49 -05:00
Matthew Kienow 70be536b36 Land #9939, add remote data service rspec support 2018-05-07 18:07:02 -04:00
Brent Cook 8463d94891 remove mostly unused shortcuts 2018-05-07 00:24:38 -05:00
Jacob Robles 534d05ff44 simpleclient versions option 2018-05-07 00:24:38 -05:00
Jacob Robles ff202a5f5b Simpleclient/SMB2 support 2018-05-07 00:24:38 -05:00
Jacob Robles d54992674f Response code, Write fix 2018-05-07 00:24:38 -05:00
William Vu aed4f067ba Fix nil target_index in auto targeting 
This exists on master when DefaultTarget < 0.
 2018-05-03 21:59:24 -05:00
William Vu 88f09dc302 Update a few stragglers in Drupalgeddon 2 
1. I added a missed header and YARD to the Drupal mixin.
2. I decided to match discovered versions more liberally.
 2018-05-03 18:35:25 -05:00
William Vu 728d7bc065 Fix #9876, second round of Drupalgeddon 2 updates 
Thanks to a reviewer for noticing my drupal_unpatched? method was
tri-state because of an unrefactored return. Oops! :)
 2018-05-03 17:38:32 -05:00