2c7b7e8b5c
Merge pull request #20942 from rudraditya21/attack-exploit-privesc
...
Add MITRE ATT&CK mappings for exploit and privilege escalation modules
2026-02-11 15:38:59 -06:00
c48622e134
Merge pull request #20936 from rudraditya21/attack-smb-samr
...
Add MITRE ATT&CK mappings for SMB/SAMR account operations
2026-02-11 14:57:22 -05:00
498eefc881
Merge pull request #20934 from rudraditya21/attack-ldap-adcs
...
Add MITRE ATT&CK mappings for LDAP/AD CS modules
2026-02-10 17:11:56 -05:00
71dd4dae19
Merge pull request #20710 from Chocapikk/add-ghsa-reference-support
...
Add GHSA and OSV reference type support
2026-02-09 18:08:22 +00:00
8d6f775ebe
added: ATT&CK references to exploit and privilege escalation modules
2026-02-09 23:03:01 +05:30
8263d4fa95
removed: ATT&CK reference T1556.006 from shadow_credentials
2026-02-09 22:52:31 +05:30
823b4215e2
removed: ATT&CK reference T1649 from ad_cs_cert_template
2026-02-09 22:51:47 +05:30
65570a1183
removed: ATT&CK reference T1098 from samr_account
2026-02-09 22:48:42 +05:30
f41eda1128
Add GHSA and OSV reference type support
...
Add support for GHSA (GitHub Security Advisories) and OSV (Open Source
Vulnerabilities) as structured reference types in Metasploit modules.
Convert 49 hardcoded GHSA URLs to structured ['GHSA', 'GHSA-xxxx'] format
across existing modules, and add support for repository-specific GHSA
references with an optional third parameter ['GHSA', 'GHSA-xxxx', 'repo'].
Update reference validation, module validator, and info_fixups to handle
the new reference types correctly.
2026-02-09 15:17:23 +01:00
50335ddc79
updated: ATT&CK Techniques for icpr_cert.rb and esc_update_ldap_object.rb
2026-02-07 10:12:36 +05:30
9d73966976
added ATT&CK references to relay and SCCM modules
2026-02-06 11:58:08 +05:30
64f0bee6d2
added: ATT&CK references to SMB and SAMR modules
2026-02-06 11:25:47 +05:30
c138dc468d
added: ATT&CK references to LDAP and AD CS modules
2026-02-06 10:38:56 +05:30
e55d22a7cd
Merge pull request #20739 from cdelafuente-r7/add_mitre_tech_kerb_unconst_deleg
...
Add MITRE ATT&CK techniques to Kerberos and unconstrained delegation modules
2026-02-03 16:11:37 -05:00
0c0e290cc2
Code review 2
2026-02-03 21:53:05 +01:00
b187466bb0
Validates IMPERSONATE_TYPE is set when IMPERSONATE is present
2026-01-18 18:37:58 -08:00
d1daf758ea
Update bad successor description
2026-01-15 12:26:12 +00:00
658c251b66
Merge pull request #20472 from jheysel-r7/feat/mod/badsuccessor
...
Add BadSuccessor dMSA Privilege Escalation in Windows 2025
2026-01-14 15:43:35 -05:00
aa7771809c
Same error handling in #check.
...
Last minute linting
Minor author update
Update author
2026-01-14 12:40:16 -08:00
a7adf23a17
Add some option validation
2026-01-14 12:35:12 -08:00
b425559f47
Fix some names
2026-01-14 12:35:12 -08:00
c1023fd62a
Add BadSuccessor dMSA Privilege Escalation in Windows 2025
2026-01-14 12:34:45 -08:00
d66e93afc0
Merge pull request #20658 from jheysel-r7/feat/mod/cert_details_update
...
Add Updates to LDAP ESC Vulnerable Cert Finder
2025-12-05 10:55:52 -05:00
0e2af23287
Add Updates to LDAP ESC Vulnerable Cert Finder
...
Add CertificateAuthorityRhost to avoid DNS failures
2025-12-04 17:03:36 -08:00
8e51f598f3
Add MITRE ATT&CK technique for Kerberos related modules
2025-11-28 17:29:57 +01:00
e998b91aee
Merge pull request #20717 from sfewer-r7/fortiweb-exploit-rce
...
Add exploit module for Fortinet FortiWeb (CVE-2025-64446 + CVE-2025-58034)
2025-11-25 14:14:31 -06:00
aff76622fa
add in the unauth RCE exploit module for CVE-2025-64446 + CVE-2025-58034
2025-11-21 12:22:25 +00:00
bb728c44d7
Merge pull request #20560 from cdelafuente-r7/feat/mitre/T1021
...
Add T1021 "Remote Services" MITRE technique and sub-technique references
2025-11-20 11:19:31 -06:00
c1ff36668c
disclosure date
2025-11-14 17:06:30 +00:00
b1327361e9
add in new CVE ID and vendor advisory
2025-11-14 17:04:33 +00:00
06fbe46172
add in aux moduel for recent FortiWeb exploit
2025-11-14 12:02:10 +00:00
3b727fbaf2
Code review
2025-10-14 16:25:43 +02:00
0a755ea03a
Add references to MITRE ATT&CK T1021 - Remote Services
2025-10-14 16:25:30 +02:00
9dc5696cc4
Update dash characters in module references
2025-10-07 14:03:32 -04:00
fd21209e4d
Add missing CVEs from VulnCheck
2025-10-07 13:59:13 -04:00
74d229e11f
Multiple CA testing
2025-10-02 18:14:00 -07:00
7b3c82f2e6
Responded to comments
2025-09-25 13:35:41 -07:00
e9ab1d0839
Update esc_update_ldap module so shadow creds not required
2025-09-23 14:37:55 -07:00
788b9c27b4
Use sub-technique and add missing modules
2025-09-16 18:39:23 +02:00
7ce2bdc979
Add T1003 "OS credential dumping" MITRE technique
2025-09-09 10:45:46 +02:00
0557d63127
Add database ref opts for kerberos and pkcs12
2025-08-18 15:56:47 +01:00
ced20bf15a
Consolidate pkcs12 cert file reads
2025-08-11 14:28:47 +01:00
ff724d0b5c
Deregister SMBUser
2025-07-30 15:28:56 -07:00
e88883c82b
ESC9, ESC10 ESC16 exploit support
2025-07-30 15:08:14 -07:00
e328a8f8c4
Fix update action in ad_cs_cert_template
2025-07-15 17:20:36 -07:00
36675ccd9a
Merge pull request #20349 from sfewer-r7/0day-cve-2024-51978
...
Add auxiliary module for multiple Brother devices authentication bypass (CVE-2024-51978)
2025-07-09 13:07:25 -05:00
df24090fc0
fix typo in message
2025-07-09 14:59:54 +01:00
ab913b0416
make this error message not that no password may be present on the device
2025-07-09 14:58:59 +01:00
34952d73f6
display the AuthCookie if one is received
2025-07-09 10:15:30 +01:00
79d67dd1f0
Merge pull request #20345 from zeroSteiner/feat/lib/ldap-adds/1
...
Add an Active Directory LDAP Mixin
2025-07-08 14:37:23 -07:00
Brendan