adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
49,016 Commits 27 Branches 1,043 Tags
dbc0c802d593930bb2cf809c4e9240fecbcbf800
Commit Graph

24982 Commits

Author SHA1 Message Date
William Vu dbc0c802d5 Add detection of additional paths 2018-10-22 23:35:42 -05:00
William Vu c4f8b6c937 Add rudimentary check method 2018-10-22 23:35:42 -05:00
William Vu dba7e35819 Refactor slightly with methods 
And also check upload response.
 2018-10-22 23:35:42 -05:00
William Vu e7ada1a40c Add timeout on payload request 
This ensures we don't block on execution.
 2018-10-22 23:35:42 -05:00
William Vu 15f14bb295 Add note about Apache .htaccess 2018-10-22 23:35:42 -05:00
William Vu a986a17bb0 Link to @lcashdol's PoC 2018-10-22 23:35:42 -05:00
William Vu 37dbdbf58f Update project URL to PR 2018-10-22 23:35:42 -05:00
William Vu 41721c31fb Add blueimp's jQuery (Arbitrary) File Upload 2018-10-22 23:35:42 -05:00
William Vu e6bbc6dbd6 Land #10845, glassfish_traversal typo fix 2018-10-22 15:32:14 -05:00
blue-bird1 6125ef06ad fix small typo 2018-10-23 00:01:13 +08:00
Brendan Coles 7a36056713 Move exploit/qnx/qconn_exec to exploit/qnx/qconn/qconn_exec 2018-10-20 18:16:59 +00:00
William Vu aae74472d2 Land #10817, QNX qconn module rename 2018-10-20 03:10:22 -05:00
Brent Cook accf9edf89 Land #10835, libssh fingerprint improvements 2018-10-19 19:48:23 -05:00
William Vu abd425c863 Land #10819, os_name population for ssh_login* 2018-10-19 15:53:38 -05:00
William Vu db7bd3d50c Update style 2018-10-19 15:52:26 -05:00
William Vu 2a1dec45ed Land #10832, TARGETURI for tomcat_utf8_traversal 2018-10-19 15:47:37 -05:00
William Vu e4c71265fb Improve banner checking in libssh_auth_bypass 
Now we do the right thing when libssh is patched.
 2018-10-19 15:21:12 -05:00
William Vu 21397330f8 Refactor fortinet_backdoor copypasta 2018-10-19 00:07:18 -05:00
William Vu 863ab3447f Add libssh auth bypass module 2018-10-18 23:03:23 -05:00
Wei Chen 3cee96d8ed Land #10664, add Windows SetImeInfoEx Win32k NULL Pointer Dereference 2018-10-18 14:42:14 -05:00
Wei Chen fac05db154 Update rescue statement 2018-10-18 14:30:20 -05:00
Brendan Coles 02c916b1b4 Update modules/auxiliary/admin/http/tomcat_utf8_traversal.rb 2018-10-19 04:16:26 +11:00
Patrick Webster 175e5e5adf Added module TARGETURI support. 2018-10-19 03:55:45 +11:00
h00die 763506f28d ssh_login now populates the os_name field 2018-10-16 22:02:44 -04:00
Brendan Coles a14df8d86e Move exploit/unix/misc/qnx_qconn_exec to exploit/qnx/qconn_exec 2018-10-16 16:21:28 +00:00
Shelby Pace 9e069c95f5 add auto targeting 2018-10-15 23:26:08 -07:00
Shelby Pace 6cdfe604d4 removed exception handling for reg_file_for_handle 2018-10-15 18:29:15 -07:00
Wei Chen a19046dedb Land #10793, improve windows_defender_js_hta 2018-10-15 17:42:21 -05:00
Wei Chen 8e442cc980 Update documenation 2018-10-15 15:45:39 -05:00
Wei Chen b0313dd25c Update getgodm_http_response_bof for proper auto targets 2018-10-15 15:25:55 -05:00
Wei Chen ff9f3ed9ff Add support for v5 2018-10-15 15:14:12 -05:00
Wei Chen 5433d2cca9 Sync up upstream master 2018-10-15 14:19:07 -05:00
Dhiraj Mishra f78ccbf995 Indentation 2018-10-15 08:32:58 +05:30
h00die 8877582086 Land #10668 rsh stack clash solaris priv esc 2018-10-14 10:34:48 -04:00
Shelby Pace a942654515 rescue-from-method addressed 2018-10-12 14:47:05 -05:00
Shelby Pace 26631bcfbd addressed suggestions 2018-10-12 14:35:42 -05:00
William Vu 5b14d94957 Land #10671, struts2_namespace_ognl updates 
There are still some outstanding concerns, but I want to unblock this.
 2018-10-12 11:08:33 -05:00
William Vu 2989507b85 Copy check for data_header to avoid crash 
Variable was used but out of scope.
 2018-10-12 11:06:26 -05:00
Dhiraj Mishra 96eeaf7da3 Made few changes 
Thank you bcoles
 2018-10-12 11:47:53 +05:30
Shelby Pace a67122aaf7 updated doc, added x86_64 binary 2018-10-11 12:37:51 -05:00
Shelby Pace 521b50af55 added separate binaries, extended for x86 2018-10-11 10:43:35 -05:00
amaloteaux f8ad47d475 improve windows_defender_js_hta : 
-add platform detection for jsc
-prevent cmd prompt when launching jsc
 2018-10-11 17:38:47 +02:00
Patrick DeSantis c0aff8f134 Description update / typo fix 
fix typo in module description (added one word)
 2018-10-10 17:56:17 -04:00
Shelby Pace 04cc40136f changed formatting, deleted post, renamed files 2018-10-10 14:41:14 -05:00
Shelby Pace 76325bd21e fixed indentation 2018-10-10 14:18:44 -05:00
Jacob Robles fb689da24c Land #10335, Add vlc_mkv exploit module 2018-10-10 13:47:08 -05:00
Jacob Robles 50a7ee5e6a Minor modifications 2018-10-10 12:22:47 -05:00
Dhiraj Mishra ee2c6274c7 Updating description 2018-10-10 22:26:07 +05:30
Dhiraj Mishra 4a821101ce Fixing cmd_exec_get_pid 2018-10-10 21:59:46 +05:30
Jacob Robles 796579e265 Use fail_with 2018-10-10 11:24:16 -05:00