adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
77,592 Commits 27 Branches 1,043 Tags
cb9f5e8743a444221acb26d00a34f2d4e94cbeed
Commit Graph

38269 Commits

Author SHA1 Message Date
msutovsky-r7 cb9f5e8743 Update modules/exploits/multi/http/wp_tatsu_rce.rb 2025-06-12 11:35:01 +02:00
Martin Sutovsky 0b2e4bc337 Adds module for CVE-2021-25094 2025-06-11 19:03:00 +02:00
msutovsky-r7 f20e72b6c8 Land #20256, adds RCE module for Remote For Mac 2025.7 
Add Remote for Mac 2025.6 unauthenticated RCE module
 2025-06-08 16:03:58 +02:00
msutovsky-r7 3e1bca072a Land #20290, fixes space in CVE number 
Fix errant space in CVE number
 2025-06-08 15:48:58 +02:00
Martin Sutovsky 6105b99465 Fixed response parsing 2025-06-08 15:36:37 +02:00
Martin Sutovsky 16541d9f64 Fixes notes 2025-06-08 12:17:58 +02:00
Martin Sutovsky c9713a7184 Code reformat, rubocoping 2025-06-08 12:06:33 +02:00
root 8b1113d225 Update: Improved RCE detection logic and payload options for Remote for Mac 2025.6 2025-06-07 17:52:45 +01:00
bwatters-r7 8f2b364e7b Fix errant space in CVE number 2025-06-06 10:06:21 -05:00
msutovsky-r7 0f522220d4 Land #20072, adds Maldoc in PDF fileformat module 
Add Maldoc in PDF polyglot fileformat module
 2025-06-06 14:36:24 +02:00
Spencer McIntyre a1e3a23eb4 Merge pull request #20262 from bwatters-r7/fix/vcenter_vmdir_gather 
Fix references to LDAP Datastore Options
 2025-06-05 17:44:21 -04:00
bwatters-r7 02a9eb3233 Update rescue clauses and rubocop 2025-06-05 16:33:42 -05:00
Spencer McIntyre 66a9f332b1 Merge pull request #20283 from cdelafuente-r7/fix/20249/ldap/certifried 
Fix the cve_2022_26923_certifried module after the datastore option changes
 2025-06-05 13:08:06 -04:00
Brendan 19e8e6cdf8 Merge pull request #20187 from Chocapikk/wp_ottokit 
Add CVE-2025-27007 in existing `exploit(multi/http/wp_suretriggers_auth_bypass)` module
 2025-06-05 11:03:00 -05:00
Brendan cc98ef58d4 Merge pull request #20140 from h4x-x0r/CVE-2023-2915 
ThinManager Path Traversal Delete (CVE-2023-2915) Module
 2025-06-05 10:08:42 -05:00
h4x-x0r 2425eb08d2 Update thinmanager_traversal_delete.rb 2025-06-05 02:57:40 +01:00
Brendan 312d052a5c Merge pull request #20141 from h4x-x0r/CVE-2023-2917 
ThinManager Path Traversal Upload (CVE-2023-2917) Module
 2025-06-04 16:48:39 -05:00
Brendan 2a7f40dcc9 Merge pull request #20139 from h4x-x0r/CVE-2023-27856 
ThinManager Path Traversal Download (CVE-2023-27856) Module
 2025-06-04 14:03:21 -05:00
h4x-x0r 53145d7a65 Update thinmanager_traversal_download.rb 2025-06-04 19:18:43 +01:00
Brendan 10d443d5d9 Merge pull request #20138 from h4x-x0r/CVE-2023-27855 
ThinManager Path Traversal Upload (CVE-2023-27855) Module
 2025-06-04 12:41:34 -05:00
Brendan 8e4890fbc0 Merge pull request #20286 from msutovsky-r7/fix/add_priority_udev_persistence 
Adds different udev rule naming for udev persistence
 2025-06-04 09:08:49 -05:00
Brendan 26156dfac2 Merge pull request #20265 from remmons-r7/cve_2025_4427_4428 
Exploit module for CVE-2025-4427/CVE-2025-4428 - Ivanti EPMM (AKA MobileIron Core) Authentication Bypass to EL Injection
 2025-06-04 09:05:04 -05:00
Martin Sutovsky f7fd84b82d Adds different approach to udev rule naming 2025-06-04 15:24:43 +02:00
msutovsky-r7 5fbf46ba7f Land #19472, adds exploits/linux/local/udev_persistence 
Add modules/exploits/linux/local/udev_persistence.rb
 2025-06-04 13:21:04 +02:00
Martin Sutovsky 6806385292 Update 2025-06-04 12:56:51 +02:00
Martin Sutovsky 0d31440722 Update the module 2025-06-04 12:19:36 +02:00
Christophe De La Fuente b488403c73 Fix cve_2022_26923_certifried module after the datastore option changes 2025-06-04 11:22:26 +02:00
RAMELLA Sébastien 144cfd2d42 Update maldoc_in_pdf_polyglot.rb 2025-06-04 12:33:22 +04:00
RAMELLA Sébastien b9731f8907 Update modules/auxiliary/fileformat/maldoc_in_pdf_polyglot.rb 
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
 2025-06-04 12:30:09 +04:00
Spencer McIntyre da97d5c2b3 Merge pull request #20281 from JohannesLks/fix(post/windows/manage/remove_host--hard-coded-hosts-file-path-causes-failure-when-%SystemRoot%-=!-C--Windows) 
post/windows/manage/remove_host: resolve hosts-file path dynamically instead of hard-coded C:\Windows
 2025-06-03 16:34:23 -04:00
bwatters-r7 17bf77fca1 Switch to in-memory python over fetch payloads 2025-06-03 13:39:01 -05:00
Lukas Johannes Möller 39bbf4ba05 fix #20280 2025-06-03 19:51:16 +02:00
Simon Janusz 1e98d3ffca Merge pull request #20218 from jheysel-r7/fix/crawler_canonicalize_method 
Improve canonicalize method in msfcrawler.rb
 2025-06-03 18:07:07 +01:00
Simon Janusz d497156f84 Merge pull request #20258 from zeroSteiner/fix/issue/20251 
Update the ldap options for shadow credentials
 2025-06-03 17:45:18 +01:00
Simon Janusz 043f8cb6b4 Merge pull request #20260 from zeroSteiner/fix/issue/20252 
Update the ldap/change_password module
 2025-06-03 17:44:26 +01:00
Spencer McIntyre 3057f80a1b Update the ldap options for shadow credentials 2025-06-03 12:29:04 -04:00
Spencer McIntyre 2476ce52d8 Merge pull request #20273 from JohannesLks/fix/post-windows-manage-remove-host-20157 
fix(post/windows/manage/remove_host): handle whitespace parsing robustly
 2025-06-03 09:55:06 -04:00
Lukas Johannes Möller d9e96f91ca see https://github.com/rapid7/metasploit-framework/pull/20273#issuecomment-2932671250 2025-06-03 11:21:07 +02:00
cgranleese-r7 d8c7c5049d Merge pull request #19900 from jvoisin/aka_equationgroup 
Add Notes->AKA for EquationGroup codenames
 2025-06-03 08:45:54 +01:00
Spencer McIntyre 18fbf3d656 Merge pull request #20275 from msutovsky-r7/fix/sap_router_info_failure 
Fixes bug in auxiliary/scanner/sap/sap_router_info_request
 2025-06-02 17:57:39 -04:00
Julien Voisin 486390d881 Update ms10_061_spoolss.rb 2025-06-02 20:45:44 +02:00
Julien Voisin e39b400bb8 Update modules/auxiliary/dos/smtp/sendmail_prescan.rb 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-06-02 16:05:31 +02:00
Julien Voisin 97b9b80b26 Update modules/auxiliary/dos/windows/smb/ms09_050_smb2_negotiate_pidhigh.rb 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-06-02 16:05:19 +02:00
Julien Voisin 08c5654ef2 Update modules/exploits/freebsd/samba/trans2open.rb 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-06-02 16:05:12 +02:00
Julien Voisin 7738d146b9 Update modules/exploits/solaris/samba/trans2open.rb 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-06-02 16:05:06 +02:00
Julien Voisin 54c5e7df18 Update modules/exploits/windows/smb/ms10_061_spoolss.rb 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-06-02 16:04:59 +02:00
Julien Voisin af57c9ba77 Update modules/auxiliary/dos/windows/smb/ms09_050_smb2_session_logoff.rb 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-06-02 16:04:51 +02:00
Julien Voisin ea7d88d8be Update modules/auxiliary/admin/kerberos/ms14_068_kerberos_checksum.rb 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2025-06-02 16:04:42 +02:00
cgranleese-r7 4238fd6bab Merge pull request #20272 from zeroSteiner/fix/mod/add-esc-refs 
Add missing references for AD CS modules
 2025-06-02 11:38:13 +01:00
msutovsky-r7 d118b34823 Merge branch 'rapid7:master' into fix/sap_router_info_failure 2025-06-02 11:25:08 +02:00