adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
79,806 Commits 27 Branches 1,043 Tags
ce2e23cceffd9cbfd3ec3cf6bf252a17ba0ea032
Commit Graph

22026 Commits

Author SHA1 Message Date
Nayeraneru ce2e23ccef add OptTimedelta datastore option and remove Kerberos-specific clock skew parsing 2026-02-20 22:28:05 +02:00
cgranleese-r7 2289e889be Merge pull request #20903 from jheysel-r7/fix/enum_user_directories 
Fix enum_user_directories Duplicate Directories
 2026-02-06 14:34:40 +00:00
Simon Janusz db064a4f49 Merge pull request #20895 from rudraditya21/fixed/ldap-entry-cache-misses 
added: negative caching for LDAP lookup misses
 2026-02-06 13:15:57 +00:00
jenkins-metasploit b92da7cc23 Bump version of framework to 6.4.113 2026-02-05 15:22:41 +00:00
cgranleese-r7 e69d72dcc1 Merge pull request #20680 from cdelafuente-r7/fix_rpc 
A few fixes and enhancement for API RPC
 2026-02-04 16:18:39 +00:00
Valentin Lobstein 005fbb17a1 Address PR #20768 review feedback 
- Fix machineKey extraction regex to handle decryption attribute
- Replace Base64.strict_encode64 with Rex::Text.encode_base64
- Add READ_FILE and EXTRACT_MACHINEKEY actions
- Add PRODUCT option for CentreStack/Triofox support
- Use different storage endpoints per product type
- Update documentation with new options and actions
 2026-02-04 08:38:35 +01:00
Valentin Lobstein 7776588577 Address PR #20768 review feedback 
- gladinet.rb: Fix machineKey regex to match decryptionKey then validationKey explicitly
- gladinet.rb: Remove DEFAULT_WEB_CONFIG_PATH constant, inline in each module's datastore option
- gladinet_storage_access_ticket_forge.rb: Inline version check
- gladinet_storage_access_ticket_forge.rb: Inline FILEPATH default value (with C:\ for absolute path)
- gladinet_storage_lfi_cve_2025_11371.rb: Inline version check
- gladinet_storage_lfi_cve_2025_11371.rb: Inline valid_response? method (removed)
- gladinet_storage_lfi_cve_2025_11371.rb: Inline FILEPATH default value (without C:\, stripped by build_lfi_path)
- gladinet_storage_lfi_cve_2025_11371.rb: Use vars_get with encode_params instead of manual URL building
- gladinet_viewstate_deserialization: Remove nil fallback (mandatory option with default)
- gladinet_viewstate_deserialization: Remove DEFAULT_MACHINE_KEY constant, inline in datastore option
- gladinet_viewstate_deserialization: Remove duplicate detect_app_type/extract_build_version (already in shared lib)

Note: Suggestion to rename gladinet? to is_gladinet? was NOT applied.
msftidy enforces Naming/PredicatePrefix convention which requires predicate
methods to NOT have 'is_' prefix (gladinet? is correct, is_gladinet? is not).

Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
 2026-02-04 08:38:35 +01:00
Valentin Lobstein b1adc514d1 Apply suggestions 
Co-authored-by: jheysel-r7 <jheysel-r7@users.noreply.github.com>
 2026-02-04 08:38:35 +01:00
Valentin Lobstein 3cffeda00e Fix machineKey extraction regex and add reviewer credit 
- Fix regex in gladinet mixin to handle machineKey with decryption attribute
- Add Julien Voisin as reviewer in auxiliary modules

Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2026-02-04 08:38:34 +01:00
Valentin Lobstein 1c929ae5b6 Update lib/msf/core/auxiliary/gladinet.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2026-02-04 08:38:33 +01:00
Valentin Lobstein 38efe8264d Improve Gladinet detection: check for y-glad cookies and branding in addition to ViewState 2026-02-04 08:38:32 +01:00
Valentin Lobstein 628c5ee7af Update Gladinet modules: fix AutoCheck in auxiliary modules and update documentation with real outputs 2026-02-04 08:38:32 +01:00
Valentin Lobstein 478345506e Add Gladinet CentreStack/Triofox auxiliary modules and exploit 2026-02-04 08:38:31 +01:00
Rudraditya Thakur 366bc5335b updated: ldap_entry_cache var with max_size argument 2026-02-04 11:22:36 +05:30
Spencer McIntyre 5e43beca60 Merge pull request #20920 from rudraditya21/fix/cracker-auto-action 
Handle ACTION=auto with CRACKER_PATH in password crackers
 2026-02-03 17:23:49 -05:00
Spencer McIntyre e55d22a7cd Merge pull request #20739 from cdelafuente-r7/add_mitre_tech_kerb_unconst_deleg 
Add MITRE ATT&CK techniques to Kerberos and unconstrained delegation modules
 2026-02-03 16:11:37 -05:00
cgranleese-r7 89ebdeacef Renames Windows file system namespaces 2026-02-03 11:23:04 +00:00
Christophe De La Fuente b85b2d4528 Add comments and remove T1077_WINDOWS_ADMIN_SHARES (deprecated) 2026-02-02 12:03:17 +01:00
Rudraditya Thakur a3dd697f6e fixed: auto cracker selection with CRACKER_PATH 2026-02-01 21:59:31 +05:30
Brendan e7f8b07476 Merge pull request #20882 from karanabe/icpr_cert-rsa-keysize 
Add RSAKeySize option to satisfy AD CS template minimums
 2026-01-30 15:56:58 -06:00
Rudraditya Thakur 0dcebd7ef3 added: max_size as word argument 2026-01-30 21:29:30 +05:30
jenkins-metasploit 3e630ac7b9 Bump version of framework to 6.4.112 2026-01-29 15:50:00 +00:00
dwelch-r7 6fedaeefc6 Merge pull request #20909 from adfoster-r7/align-login-scanner-apis 
Align login scanner APIs
 2026-01-29 15:29:12 +00:00
adfoster-r7 e70483b785 Rubocop 2026-01-29 14:13:18 +00:00
adfoster-r7 7d81b1aecb Align login scanner APIs 2026-01-28 16:56:52 +00:00
Spencer McIntyre 518d1c8538 Merge pull request #20897 from h00die/fix_john_cracker 
fix jtr cracking
 2026-01-28 09:31:13 -05:00
h00die 04be22dc1a john formatter review 2026-01-28 07:44:50 -05:00
h00die 6d53d73758 debugging 2026-01-27 10:01:37 -05:00
Jack Heysel f4427a3c04 Fix enum_user_directories duplicate dirs 2026-01-26 12:16:44 -07:00
Rudraditya Thakur 93b0c3004f removed: the mixin's String16 class to stop BinData registry collisions and reverted: MsTdsLogin7 to its original :string16 2026-01-26 23:00:52 +05:30
h00die 582d5ea230 fix jtr cracking 2026-01-25 11:16:32 -05:00
Rudraditya Thakur 82bae54abe ensured: MsTdsLogin7 UTF-18 fields use RubySMB String16 2026-01-25 10:59:02 +05:30
Rudraditya Thakur 7134f7ab06 added: negative caching for LDAP lookup misses 2026-01-25 10:13:32 +05:30
karanabe 2e1d688659 Use OptEnum for RSA key size options 2026-01-23 16:22:13 +09:00
Spencer McIntyre c0e9288ac5 Merge pull request #20799 from jheysel-r7/feat/cacti_graph_template_rce 
Cacti Graph Template Authenticated RCE [CVE-2025-24367]
 2026-01-22 14:26:38 -05:00
Spencer McIntyre 18a4cf8c00 Use the ssl setting for HttpServer#start_service 2026-01-22 13:49:28 -05:00
Jack Heysel 34cebd1453 Update CheckCode messaging 2026-01-22 15:03:32 +01:00
Jack Heysel 99e032f4af SmarterTools SmarterMail Unauth File Upload RCE [CVE-2025-52691] 2026-01-22 15:03:30 +01:00
jenkins-metasploit fd79b33758 Bump version of framework to 6.4.111 2026-01-22 03:35:53 +00:00
adfoster-r7 5ba95b5def Merge pull request #20888 from jheysel-r7/fix/bad_successor_service_auth_fix_2 
Fixes the base service authenticator for BadSuccessor
 2026-01-21 11:37:28 +00:00
jheysel-r7 c47a74d0dd Merge pull request #20770 from vognik/Splunk_2022-43571_CVE-2024-36985 
Add Splunk RCE Exploits (CVE-2022-43571 & CVE-2024-36985)
 2026-01-20 12:36:51 -08:00
Jack Heysel e3e388d57d Fixes the base service authenticator for BadSuccessor 2026-01-20 09:24:36 -08:00
vognik 9e320dd168 add suggestions from @jheysel-r7 2026-01-19 18:45:01 -08:00
jenkins-metasploit 3d18f613ba Bump version of framework to 6.4.110 2026-01-19 23:24:55 +00:00
jheysel-r7 eb49dade6f Merge pull request #20755 from rudraditya21/feature/kerberos-clock-skew 
Added: Option to adjust kerberos clock
 2026-01-19 10:00:54 -08:00
karanabe 61c1b8280f Add configurable RSA key size for ICPR 2026-01-18 20:21:55 +09:00
adfoster-r7 bb07207b9b Merge pull request #20861 from bcoles/post-linux-system-get_hostname 
Post::Linux::System.get_hostname: Use session sysinfo if available
 2026-01-17 19:38:21 +00:00
jenkins-metasploit a1eb2e224c Bump version of framework to 6.4.109 2026-01-16 23:18:09 +00:00
Jack Heysel 4b610957ce Fix Kerberos Base Service Authenticator 2026-01-16 12:31:34 -08:00
adfoster-r7 8a129bfc92 Merge pull request #20873 from zeroSteiner/fix/issue/socket-channels-udp-flakies 
Add more specific error messages
 2026-01-15 23:44:05 +00:00