adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
50,629 Commits 27 Branches 1,043 Tags
c48a6ddbdfc02bf92b8d4e247dbe89bdfba4e821
Commit Graph

623 Commits

Author SHA1 Message Date
jdiog0 23e0389bf0 typo fixed 2019-01-22 13:33:24 +00:00
William Vu 0f156140fe Clean up module 2019-01-09 12:11:50 -06:00
jdiog0 b2b410cbbe DoS Exploitation of Allen-Bradley legacy protocol (PCCC) 2018-12-18 16:49:53 +00:00
Brent Cook bccb0972cf Land #10984, don't examine a nil object in ms15_034_ulonglongadd 2018-11-20 08:37:48 -06:00
Brendan Coles 467e0877f5 res.code 2018-11-18 12:40:09 +00:00
William Vu 90b9204703 Update DisclosureDate to ISO 8601 in my modules 
Basic msftidy fixer:

diff --git a/tools/dev/msftidy.rb b/tools/dev/msftidy.rb
index 9a21b9e398..e9ff2b21e5 100755
--- a/tools/dev/msftidy.rb
+++ b/tools/dev/msftidy.rb
@@ -442,6 +442,8 @@ class Msftidy
     # Check disclosure date format
     if @source =~ /["']DisclosureDate["'].*\=\>[\x0d\x20]*['\"](.+?)['\"]/
       d = $1  #Captured date
+      File.write(@full_filepath, @source.sub(d, Date.parse(d).to_s))
+      fixed('Probably updated traditional DisclosureDate to ISO 8601')
       # Flag if overall format is wrong
       if d =~ /^... (?:\d{1,2},? )?\d{4}$/
         # Flag if month format is wrong
 2018-11-16 12:18:28 -06:00
Rob 6f5a8f8f42 Fix outdated metadata 2018-10-01 18:59:09 +01:00
Tim W 738665e56f Add documentation for #10652 2018-09-24 17:11:24 +08:00
Adam Cammack dd942ab23c Land #10652, iOS Safari blur denial of service 2018-09-19 15:12:22 -05:00
Tim W a9b9e7420b update description 2018-09-16 19:51:15 +08:00
Tim W 1d2519978d improve div tags 2018-09-16 18:57:09 +08:00
Tim W 2eb97ea07b add ios blur dos module 2018-09-16 13:44:43 +08:00
William Vu 4c036e70c1 Fix http://seclists.org links to https:// 
I have no idea how this happened in my own code. I was seeing https://.
 2018-09-15 18:54:45 -05:00
Christian Mehlmauer 14fa41a376 merge changes 2018-08-29 06:09:40 +02:00
Ben Schmeckpeper ed60b767a7 Correct claymore_dos.py's CVE reference 
The CVE reference shouldn't include the `CVE-` prefix
 2018-08-28 13:34:02 -05:00
Christian Mehlmauer 7431ae401b fix more errors 2018-08-28 13:49:31 +02:00
Christian Mehlmauer a66556b436 fix msftidy errors 2018-08-28 13:12:43 +02:00
William Vu 5096eee2ec Land #10120, npm "marked" ReDoS module 2018-08-16 15:01:12 -05:00
William Vu 3c1befdacb Clean up module 2018-08-16 15:00:56 -05:00
Brent Cook 919da41aab Land #9692, Add DoS module for Siemens Siprotec 4 2018-08-04 07:20:57 -05:00
asoto-r7 1a3a4ef5e4 Revised 88 aux and exploit modules to add CVEs / references 2018-07-12 17:34:52 -05:00
Nicholas Starke 936632f180 Minor Tweaks to Module 
This commit changes some logic around
on a few different conditional portions
of code.
 2018-06-14 10:06:42 -05:00
Dhiraj Mishra c0a5a65e0c Updated 
Suggestion's by acammack-r7
 2018-06-14 11:25:00 +05:30
Dhiraj Mishra b44265fcb2 Minor tweaks 
Suggestion's made by bcoles
 2018-06-11 13:25:02 +05:30
Dhiraj Mishra 51823b1d3d Spaces at EOL 2018-06-09 15:58:11 +05:30
Dhiraj Mishra d3a18b2ce9 Some tweak 
Thanks bcloes 😎
 2018-06-09 12:15:21 +05:30
Dhiraj Mishra 76588aed09 Error at disclosure date format 2018-06-09 12:03:41 +05:30
Dhiraj Mishra f1d29e730f Spaces at EOL 2018-06-09 11:53:21 +05:30
Dhiraj Mishra 6e8412fa73 CVE-2018-11646 - Webkit+ 2018-06-09 11:43:47 +05:30
Nicholas Starke 53d9dc75d8 Adding npm component "marked" ReDoS module 
This commit adds a module for the npm component
"marked" which exploits a Regular Expression
Denial of Service (ReDoS) vulnerability in the
"heading" regular expression.  Also included
is the documentation markdown for this module.
 2018-05-31 13:33:09 -05:00
Aaron Soto c8b2fc8a35 Land #9701, Flexense HTTP Server DoS exploit 2018-05-29 16:19:59 -05:00
Aaron Soto 026b22d061 Refined packet sizes and counts, improved error messages 2018-05-29 16:09:27 -05:00
Ege Balcı 3ab7526786 Name & description Change 
Exploit::CheckCode changed to Unknown as suggested.
 2018-05-25 20:22:51 +03:00
Adam Cammack 5ece14b064 Convert SMBLoris to an external module 2018-03-23 14:55:18 -05:00
Can 28d890147b msftidy update and style changes 2018-03-13 09:30:48 +01:00
Can 1c7f1c79af Updated style 2018-03-13 09:26:34 +01:00
Ege Balcı 2950c84660 Better code. 
Added check function.
Smaller & cleaner code.
 2018-03-12 20:33:46 +03:00
Ege Balcı 420905137b CVA added. 2018-03-12 08:42:28 +03:00
Ege Balcı d71b6bdf0d Update syncbreeze_enterprise_dos.rb 
msftidy.rb adjustment.
 2018-03-11 23:27:46 +03:00
Ege Balcı 0e4e260a02 Adding Sync Breeze Enterprise 10.6.24 DOS 
This module triggers a Denial of Service vulnerability in the Sync Breeze Enterprise HTTP server. Vulnerable version of the product can be downloaded here (http://www.syncbreeze.com/setups/syncbreezeent_setup_v10.6.24.exe). After installing the software web server should be enabled via Options->Server->Enable web server on port. Module triggers a user space write access violation on syncbrs.exe memory region. Number of requests that will crash the server changes between 200-1000 depending on the OS version and system memory.
 2018-03-11 23:07:50 +03:00
Can 72160598a7 msftidy fix 
msftidy fix
 2018-03-08 20:46:30 +01:00
Can 26f023e071 updates for passing msftidy 
updates for passing msftidy
 2018-03-08 20:34:49 +01:00
Can c1dc603f0d fixed EOLs, updated license comment 
fixed EOLs, updated license comment
 2018-03-08 19:53:18 +01:00
Can 9c4ff479cf module title changed 2018-03-08 15:23:02 +01:00
Can 0503a8d3e1 init siemens_siprotec4 
init siemens_siprotec4
 2018-03-08 14:09:53 +01:00
Adam Cammack 9a8f1ace2d Add slowloris support for IPv6 and hostnames 
Replace manual socket creation with `socket.create_connection` to get
auto-detection goodness.
 2018-03-07 17:06:04 -06:00
Brent Cook ac7fe99a2b specify a python encoding for the module 2018-02-16 16:17:52 -06:00
青鸟 0abee0303f add change 2018-02-07 03:48:36 +08:00
bluebird 278e9a92fc add module and documentation 2018-02-06 20:30:34 +08:00
h00die 62573731fe remove empty line 2018-01-24 20:54:21 -05:00