 Takah1ro
|
2db7f4f186
|
Use BadChars and Base64Decoder
|
2025-02-11 11:25:24 +09:00 |
|
|
Takahiro Yokoyama
|
edbdb985e3
|
Apply suggestions from code review
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
|
2025-02-11 08:59:37 +09:00 |
|
|
Takah1ro
|
9f43fcc7ad
|
Update FETCH_COMMAND default to curl
|
2025-02-10 22:00:52 +09:00 |
|
|
Takah1ro
|
7149d3f332
|
Leave cleanup as an option
|
2025-02-10 21:31:50 +09:00 |
|
|
Takah1ro
|
92a73b1fed
|
Fix after applying suggestions
|
2025-02-10 21:18:19 +09:00 |
|
|
Takahiro Yokoyama
|
127adda3df
|
Update modules/exploits/linux/http/netalertx_rce_cve_2024_46506.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-02-10 21:06:50 +09:00 |
|
|
Takah1ro
|
b02838a8dd
|
NetAlertx -> NetAlertX
|
2025-02-10 12:52:26 +09:00 |
|
|
Takah1ro
|
4f584bd5a4
|
Use cron restart
|
2025-02-08 17:35:55 +09:00 |
|
|
Takah1ro
|
00f4f80530
|
Add NetAlertx rce module (CVE-2024-46506)
|
2025-02-08 14:40:31 +09:00 |
|
|
jheysel-r7
|
652fbf1a62
|
Merge pull request #19813 from h00die/local_version_patch
guard Rex::Version.new against crashes on local modules
|
2025-02-03 12:43:37 -08:00 |
|
|
Martin Sutovsky
|
34f3957aea
|
Land #19772, adding module for CraftCMS FTP template exploit
|
2025-01-23 20:21:17 +01:00 |
|
|
h00die
|
af12460274
|
wrap tomcat dpkg command and rex version
|
2025-01-22 17:06:48 -05:00 |
|
|
Takah1ro
|
393b2167cd
|
Fix after applied suggestion
|
2025-01-20 21:24:16 +09:00 |
|
|
Takahiro Yokoyama
|
39351486e9
|
Update modules/exploits/linux/http/librenms_authenticated_rce_cve_2024_51092.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-01-20 21:07:34 +09:00 |
|
|
Takah1ro
|
b0d5cf1f6a
|
Stage the command to a file if failed to limit
|
2025-01-19 10:43:20 +09:00 |
|
|
Takah1ro
|
22523badab
|
Update login check
|
2025-01-19 08:11:44 +09:00 |
|
|
Takah1ro
|
54bd55b186
|
Update vulnerable version
|
2025-01-18 10:18:10 +09:00 |
|
|
Takah1ro
|
c93609eaa7
|
Lint formatting and make payload shorter
|
2025-01-18 08:56:15 +09:00 |
|
|
Takahiro Yokoyama
|
fc005f5624
|
Update modules/exploits/linux/http/librenms_authenticated_rce_cve_2024_51092.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-01-18 08:49:13 +09:00 |
|
|
h00die
|
ae5f0e8689
|
guard Rex::Version.new against crashes on local modules
|
2025-01-17 16:10:23 -05:00 |
|
|
Takah1ro
|
70146e52d9
|
Make payload shorter
|
2025-01-17 22:11:08 +09:00 |
|
|
Takah1ro
|
ca304ae5c4
|
Avoid to split payload
|
2025-01-17 21:21:48 +09:00 |
|
|
Takah1ro
|
61b10a44a3
|
Update default wait time
|
2025-01-17 12:43:34 +09:00 |
|
|
Takah1ro
|
8978486895
|
Use retry_until_truthy
|
2025-01-17 08:59:06 +09:00 |
|
|
Takah1ro
|
4f4a0f9cd5
|
Add nil check
|
2025-01-17 08:48:33 +09:00 |
|
|
Takah1ro
|
9540837b37
|
Use keep_cookies
|
2025-01-17 08:46:30 +09:00 |
|
|
Takah1ro
|
f9204fe691
|
Update message about delete devices for clarity
|
2025-01-17 08:21:33 +09:00 |
|
|
Takahiro Yokoyama
|
23a9695ea5
|
Update modules/exploits/linux/http/librenms_authenticated_rce_cve_2024_51092.rb
Co-authored-by: dwelch-r7 <Dean_Welch@rapid7.com>
|
2025-01-17 08:17:49 +09:00 |
|
|
Takah1ro
|
99bfc21d5f
|
Revert
|
2025-01-16 22:06:40 +09:00 |
|
|
Takah1ro
|
5087e460b0
|
Split long line
|
2025-01-16 21:57:54 +09:00 |
|
|
Takah1ro
|
8b127d3afa
|
Add warning when all RETRY will ran out
|
2025-01-16 21:19:19 +09:00 |
|
|
Takah1ro
|
4e53c967c2
|
Update message
|
2025-01-16 12:59:18 +09:00 |
|
|
Jack Heysel
|
2254a1f213
|
Responded to comments
|
2025-01-15 09:22:44 -08:00 |
|
|
Takah1ro
|
01ea602675
|
Update version check message
|
2025-01-15 21:41:25 +09:00 |
|
|
Takah1ro
|
3298880c21
|
Add version check
|
2025-01-15 21:39:54 +09:00 |
|
|
Takah1ro
|
12a2cdf3bf
|
Remove store_valid_credential
|
2025-01-15 21:08:08 +09:00 |
|
|
Takah1ro
|
d21be52b71
|
Lint formatting
|
2025-01-15 21:07:10 +09:00 |
|
|
Takahiro Yokoyama
|
0bdee81bcc
|
Apply suggestions from code review
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-01-15 21:04:14 +09:00 |
|
|
Takah1ro
|
10be7a80cf
|
Update document
|
2025-01-13 10:56:16 +09:00 |
|
|
Takah1ro
|
2de30c3a0f
|
Minor fix
|
2025-01-12 21:35:33 +09:00 |
|
|
Takah1ro
|
0e1a22aa3b
|
Update Description and print more info
|
2025-01-12 13:06:46 +09:00 |
|
|
Takah1ro
|
93bb7fa6c5
|
Add LibreNMS Authenticated RCE (CVE-2024-51092)
|
2025-01-12 12:28:07 +09:00 |
|
|
Jack Heysel
|
d52593f231
|
Rubocop fix
|
2025-01-10 10:42:50 -08:00 |
|
|
Jack Heysel
|
928634b9fe
|
Minor fixes and improvements
|
2025-01-10 10:26:17 -08:00 |
|
|
Chocapikk
|
b7d922f471
|
Fix and enhance CraftCMS FTP exploit module
|
2025-01-10 18:16:11 +01:00 |
|
|
jheysel-r7
|
5374c7b362
|
Merge pull request #19676 from h00die/needrestart
Ubuntu needrestart LPE (CVE-2024-48990)
|
2025-01-09 17:02:54 -08:00 |
|
|
jheysel-r7
|
a6ba7bf9c2
|
Merge pull request #19734 from h00die/runc_arch
arch linux compatibility for runc priv esc
|
2025-01-09 16:45:02 -08:00 |
|
|
h00die
|
437c9fc99e
|
review of ubuntu_needrestart_lpe
|
2025-01-09 16:23:09 -05:00 |
|
|
Jack Heysel
|
23db148aa9
|
Add check for nosuid
|
2025-01-09 09:59:09 -08:00 |
|
|
Diego Ledda
|
5cfaf4871d
|
Land #19738, Pandora FMS auth RCE (CVE-2024-11320)
Land #19738, Pandora FMS auth RCE (CVE-2024-11320)
|
2025-01-09 17:16:58 +01:00 |
|