adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
32,797 Commits 27 Branches 1,043 Tags
e6ea5511ca3a992efeac4d66eb2ba15bf4dfd192
Commit Graph

1775 Commits

Author SHA1 Message Date
jvazquez-r7 4f59abe842 Land #5203, @Meatballs1 fixes #5199 by using the correct namespace 
* Fixes web_delivery
 2015-04-20 11:20:48 -05:00
Meatballs eb1c01417a Bogus : 2015-04-20 11:00:26 +01:00
Meatballs aa4f913800 Resolves #5199 
Fix Powershell namespace in web_delivery module
 2015-04-20 09:37:42 +01:00
wchen-r7 4f903a604c Fix #5103, Revert unwanted URI encoding 
Fix #5103. By default, Httpclient will encode the URI but
we don't necessarily want that. These modules originally
didn't use URI encoding when they were written so we should
just keep them that way.
 2015-04-17 13:59:49 -05:00
Christian Mehlmauer 352e170624 more failure reasons 2015-04-16 22:04:11 +02:00
Christian Mehlmauer 8c5890d506 more fixes 2015-04-16 21:56:42 +02:00
Christian Mehlmauer ba6548db75 be consistent about naming 2015-04-16 21:44:56 +02:00
Christian Mehlmauer 4dc402fd3c moar fail_with's 2015-04-16 21:16:52 +02:00
Jon Cave c6f062d49e Ensure that local variable upload_path is defined 
Merge `upload_payload` and `parse_upload_response` so that the
`upload_path` variable is defined for use in error messages in the event
of failure.
 2015-04-10 10:58:20 +01:00
Brent Cook e03f2df691 Land #5002, RMI/JMX improvements 2015-04-08 15:23:29 -05:00
William Vu 7a2d3f5ebd Land #5082, firefox_proxy_prototype autopwn_info 2015-04-06 13:36:03 -05:00
William Vu e1af495d21 Add extra release fixes 2015-04-06 13:08:40 -05:00
Tod Beardsley 1e6d895975 Description fixes on #4784, jboss exploit 
Also, needed to run through msftidy.

[See #4784]
 2015-04-06 12:34:49 -05:00
root cd65e6f282 Add browser_autopwn info to firefox_proxy_prototype 2015-04-06 10:42:32 +05:00
William Vu 56dc7afea6 Land #5068, @todb-r7's module author cleanup 2015-04-03 16:00:36 -05:00
jvazquez-r7 e3bbb7c297 Solve conflicts 2015-04-03 14:57:49 -05:00
scriptjunkie 0f7c644fff Land #4784, JBoss Seam 2 upload exec exploit 2015-04-02 22:32:35 -05:00
Tod Beardsley 4bbec88882 Various other one-off nonhuman author credits 
[See #5012]
 2015-04-02 15:25:47 -05:00
Tod Beardsley 6532fad579 Remove credits to Alligator Security Team 
All but one of these modules credits both a team name and individual
team members. We should just be crediting team members. The domain
persists in all the other credits.

The one that didn't was credited to dflah_ specifically, so merely
changed the author name.

Longer description, if needed, wrapped at 72 characters.

[See #5012]
 2015-04-02 15:12:22 -05:00
jvazquez-r7 02a5730d92 Use calculate_interface_hash 2015-04-01 12:09:42 -05:00
jvazquez-r7 f954ff78c0 Fix typo 2015-04-01 10:51:54 -05:00
C-P 48484c1f09 Filed vs Failed fix 2015-03-27 11:27:36 -07:00
jvazquez-r7 356e8c727c Add specs for Msf::Java::Rmi::Client::Jmx::Server 2015-03-24 18:56:58 -05:00
jvazquez-r7 39e87f927a Make code consistent 2015-03-24 11:44:26 -05:00
jvazquez-r7 04341bfc78 Support JMX_ROLE again 2015-03-23 17:32:26 -05:00
jvazquez-r7 d8d4c23d60 JMX code refactoring 2015-03-23 17:06:51 -05:00
jvazquez-r7 962bb670de Remove old JMX mixin 2015-03-23 15:48:10 -05:00
Tod Beardsley 21a97c0926 Add exploit for R7-2015-04, Firefox Proxy RCE 2015-03-23 13:44:41 -05:00
jvazquez-r7 79068c8ec2 Delete JMX discovery stream 2015-03-23 10:21:37 -05:00
jvazquez-r7 ae84c8ee30 Delete even more comments 2015-03-18 15:55:52 -05:00
jvazquez-r7 f956ba1a46 Do first JMX cleaning try 2015-03-18 15:37:07 -05:00
jvazquez-r7 14be07a2c4 Update java_rmi_server modules 2015-03-17 21:29:52 -05:00
jvazquez-r7 ebe7ad07b0 Add specs, plus modify java_rmi_server modules 2015-03-17 11:26:27 -05:00
jvazquez-r7 75b2ef81dc Land #4890, @julianvilas's improvements struts_code_exec_classloader 2015-03-12 17:25:00 -05:00
jvazquez-r7 b6146b1499 Use print_warning 2015-03-12 17:22:03 -05:00
jvazquez-r7 8a452a7cba Do somce cleanup 2015-03-10 17:10:44 -05:00
jvazquez-r7 4a84693fb0 Support windows 2015-03-10 16:58:33 -05:00
jvazquez-r7 c26bea3429 Fix credits 2015-03-10 16:27:07 -05:00
jvazquez-r7 980c83cb70 Fix metadata 2015-03-10 16:25:02 -05:00
jvazquez-r7 9e17874389 Exploit CVE-2015-1427 2015-03-10 16:17:51 -05:00
jvazquez-r7 f8f178b1db Fix script_mvel_rce check 2015-03-10 09:39:02 -05:00
jvazquez-r7 9dc99e4207 Update check 2015-03-10 09:26:22 -05:00
jvazquez-r7 fc4b312879 Add template 2015-03-09 23:04:32 -05:00
Julian Vilas fe822f8d33 Modify automatic file cleanup 2015-03-10 00:45:20 +01:00
Julian Vilas 0ef303cb6c Fix Java payload 2015-03-10 00:01:27 +01:00
William Vu 3075c56064 Fix "response HTML" message 
In modules/exploits/multi/browser/firefox_xpi_bootstrapped_addon.rb.
 2015-03-07 17:08:08 -06:00
Julian Vilas 2eb0011a99 Autotrigger JSP shell at docBase 2015-03-07 20:41:08 +01:00
Julian Vilas 3be2bde5a2 Use bypass for bulletin S2-020 2015-03-07 19:14:20 +01:00
jvazquez-r7 9f3f8bb727 Merging #3323 work 2015-03-05 15:44:15 -06:00
jvazquez-r7 c388fd49c2 Fix print message 2015-03-05 15:43:54 -06:00