b8b48fd37a
Land #10313 , add linux autostart persistence module
2018-08-20 18:17:50 +08:00
865898cba7
minor fixes
2018-08-20 17:51:41 +08:00
ac71bc86ee
Land #10320 , add module for persistence in /etc/rc.local
2018-08-19 15:30:50 +08:00
e38775b504
minor tweaks
2018-08-19 15:27:04 +08:00
63a58d3378
Code style random name
2018-08-17 14:24:28 +08:00
eb43e4c0bd
Rework status printing
2018-08-17 14:24:28 +08:00
fc234b09c2
Fix HEREDOC not always supported
2018-08-17 14:24:28 +08:00
e82bde993f
Cleanup indentation
2018-08-17 14:24:28 +08:00
c1d929f5fb
Use an HEREDOC for multiline string
2018-08-17 14:24:28 +08:00
e4d6eb07ca
Remove useless statement
2018-08-17 14:24:28 +08:00
9962cbebfd
Support perl payload
2018-08-17 14:24:28 +08:00
6b4870389d
Add autostart module
2018-08-17 14:24:28 +08:00
60c0272270
Make style consistent
2018-08-15 21:27:40 -05:00
cd01f11fd2
Remove verifying host keys for all exploits
2018-08-15 14:54:41 -07:00
ae48ba635a
Land #10417 , Update check method of Hadoop exploit
2018-08-04 07:28:45 -05:00
d2c53e1c88
Update the check method.
2018-08-03 01:39:37 -04:00
8785ec21b6
Land #9884 , add linux ufo priv esc module
2018-08-02 17:53:36 +08:00
ff418afd1a
add a default payload
2018-08-02 17:48:44 +08:00
cbe85acef5
fix bad link in bpf priv esc
2018-08-02 17:28:22 +08:00
1c810249b1
ufo privesc is x64 only
2018-08-02 17:24:44 +08:00
4eef9e64ea
Implement dropper target in axis_srv_parhand_rce
2018-07-31 21:43:29 -05:00
bcfb3d099b
Land #10255 , Adding Micro Focus Secure Messaging Gateway RCE
2018-07-30 21:07:02 -05:00
48a903f0b3
Fixing r and sql variables use same object issue
2018-07-31 00:57:32 +03:00
e78337d59a
Land #10374 , Net::SSH::CommandStream fixes
2018-07-25 18:21:39 -05:00
6c2e8f2402
Land #10300 , Add root exploit for Axis network cameras
2018-07-25 14:46:04 -05:00
f169afff6a
Add documentation and a new reference
2018-07-25 14:44:44 -05:00
60faddebbf
Update authors with sinn3r
2018-07-25 14:35:09 -05:00
efacaef9df
Clamp compatible payloads until we know better
2018-07-25 14:14:15 -05:00
86d634cb64
Update module for MVP
2018-07-25 12:01:36 -05:00
f5ccdcfcd2
Net SSH CommandStream fixes implemented
...
* Net::SSH::CommandStream typos fixed
* Net::SSH::CommandStream cleanup made more robust and refactored
* require 'net/ssh/command_stream' added to various modules
2018-07-25 11:22:28 -05:00
08290b81c0
Land #10282 , Add support for running external modules outside of msfconsole
2018-07-18 17:38:40 -05:00
b90583d07c
don't throw an exception in haraka checks if we cannot connect
2018-07-18 17:17:45 -05:00
70a1df70a1
Land #9753 , Linux BPF sign extension local privesc
2018-07-18 18:44:14 +08:00
703f94d981
Check that /etc/rc.local is writeable
2018-07-17 12:52:51 +02:00
97e89cf3bb
Cleanup rc_local patching code
2018-07-17 12:49:55 +02:00
df32ab674d
Fix newline bad character
2018-07-17 12:48:26 +02:00
6bf184dbcf
Update tested versions
2018-07-17 06:24:16 +00:00
7df20539af
Fix msftidy
2018-07-16 11:55:37 +02:00
c84eb9fee9
Handle file patching on framework side
2018-07-16 11:54:37 +02:00
4f137f2f3f
rc.local persistence
2018-07-16 09:34:03 +02:00
6e450973b9
Land #10295 , Add QNAP Q'Center change_passwd Command Execution exploit
2018-07-14 10:09:46 -05:00
18e65abc54
Fix link
2018-07-14 10:03:01 -05:00
9bdec97b2e
Fix bpf_sign_extension_priv_esc
2018-07-13 23:01:17 +00:00
4e72dff791
Update module references
2018-07-14 05:03:13 +10:00
c9001699cd
Land #10027 , Hadoop unauthed command execution
2018-07-12 21:58:49 -05:00
50252c75d6
Clean up module
...
With a little rubocop -a.
2018-07-12 21:58:00 -05:00
9080b38dcc
Add Axis camera exploit (VDOO research)
2018-07-12 18:46:49 -05:00
e613b2570a
Land #10299 , Add 88 CVEs to various auxiliary and exploit modules
2018-07-12 18:26:07 -05:00
3546286049
Add missed ARCH_CMD to top-level Arch array
...
It's not necessary because of targets, but it's required for printing.
2018-07-12 17:37:06 -05:00
1a3a4ef5e4
Revised 88 aux and exploit modules to add CVEs / references
2018-07-12 17:34:52 -05:00
Tim W