adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
74,066 Commits 27 Branches 1,043 Tags
ebfbd3d3052e1c6ec21319c8bbfecfaaef576fa6
Commit Graph

6414 Commits

Author SHA1 Message Date
Jack Heysel 80ee458410 Land #19151, Add Flowmon Priv Esc Feature Module 
Privilege escalation module for Progress Flowmon unpatched feature
 2024-05-29 11:35:53 -04:00
Jack Heysel 72f332aba0 Land #19150, Add Flowmon Command Injection Module 
Unauthenticated Command Injection Module for Progress Flowmon
CVE-2024-2389
 2024-05-29 08:28:37 -04:00
Christophe De La Fuente f274c46bd2 Land #19103, jasmin ransomware sqli and dir travers (CVE-2024-30851) 2024-05-27 11:23:42 +02:00
Jack Heysel 2c6fc11639 Responded to comments, clean up /etc/sudoers file 2024-05-23 16:56:35 -04:00
Jack Heysel a0597007e4 Minor fixes, respond to comments 2024-05-23 14:02:28 -04:00
Dave Yesland 0de89d3b2d Update documentation/modules/exploit/linux/local/progress_flowmon_sudo_privesc_2024.md 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2024-05-21 13:42:52 -07:00
Jack Heysel 6e9e4a5aed Land #19102, Northstar C2 Stored XSS to Agent RCE 
Add exploit module for CVE-2024-28741, Northstar C2 Stored XSS to Agent
RCE
 2024-05-21 14:57:44 -04:00
Jack Heysel 10acd86390 Land #19071, Add AVideo RCE module 
Add module for CVE-2024-31819 which exploits an LFI in AVideo which uses
PHP Filter Chaining to turn the LFI into unauthenticated RCE
 2024-05-21 14:27:15 -04:00
cgranleese-r7 67154a12e0 Land #19104, CHAOS rat xss to rce 2024-05-21 11:10:57 +01:00
bwatters f8c69e434d Land #19173, Add CarotDAV FTP PackRat module 
Merge branch 'land-19173' into upstream-master
 2024-05-17 16:49:33 -05:00
bwatters 8a68eebbf6 Land #19171, Add Sylpheed Email PackRat module 
Merge branch 'land-19171' into upstream-master
 2024-05-17 10:39:56 -05:00
The-Pink-Panther 9294d3bf5e Added Adi IRC and Windows version to documentation scenarios 2024-05-17 09:59:20 -05:00
Jacob 704de79d73 Fixed documentation formatting 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2024-05-17 09:59:20 -05:00
Jacob 7088b39ecd Fixed rouge space 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2024-05-17 09:59:20 -05:00
-Pink-Panther 3da09a0092 Added module documentation 2024-05-17 09:58:23 -05:00
The-Pink-Panther c8ce9dc168 Added Quassel IRC and Windows version to documentation scenarios 2024-05-16 19:15:00 -05:00
Jacob 698895cf7d Fixed rouge space 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2024-05-16 19:15:00 -05:00
Jacob 7d8cd04086 Fixed documentation formatting 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2024-05-16 19:15:00 -05:00
-Pink-Panther 41643073ee Added module documentation 2024-05-16 19:12:54 -05:00
bwatters d54b3920b2 Land #19165, Add Halloy IRC PackRat module 
Merge branch 'land-19165' into upstream-master
 2024-05-16 16:59:47 -05:00
h00die a89d418725 review of northstar c2 2024-05-16 15:17:28 -04:00
Chocapikk da31761336 Lint 2024-05-15 22:13:53 +02:00
Valentin Lobstein 3560860e33 Update documentation/modules/exploit/multi/http/avideo_wwbnindex_unauth_rce.md 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2024-05-15 22:07:29 +02:00
The-Pink-Panther 22d16b91f2 Added Sylpheed and Windows version to documentation scenarios 2024-05-15 15:03:28 +01:00
Jacob e6669ea94a Fixed documentation formatting 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2024-05-15 14:58:40 +01:00
The-Pink-Panther b4d02ffe46 Added CarotDAV and Windows version to documentation scenarios 2024-05-15 14:56:24 +01:00
Jacob 4511bbfd17 Fixed documentation formatting 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2024-05-15 14:51:42 +01:00
The-Pink-Panther 5bc9dd2c5d Merge remote-tracking branch 'origin/Halloy-Packrat-Module' into Halloy-Packrat-Module 2024-05-15 14:48:44 +01:00
-Pink-Panther a250477c0e Added Halloy and Windows version to documentation scenarios 2024-05-15 14:13:58 +01:00
Jacob fb74915074 Fixed formatting issues 
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>
 2024-05-15 14:06:15 +01:00
h00die d1739f32c2 review of chaos rat 2024-05-13 16:55:43 -04:00
Spencer McIntyre 733c014223 Land #19115, read/write registry key SD 
Module to read/write registry key security descriptor remotely
 2024-05-13 15:41:54 -04:00
Spencer McIntyre 80fdde5fdc Land #19100, Add Loadmaster sudo priv esc 
Add Kemp Progress Loadmaster sudo abuse priv esc
 2024-05-10 10:21:38 -04:00
bwatters b28e263a2b Update debug statements and add protection against bad die name 2024-05-10 08:54:23 -05:00
-Pink-Panther 1326849076 Added post module & documentation for CarotDAV FTP Client 2024-05-08 10:54:33 -04:00
-Pink-Panther c5500a3337 Added post module & documentation for Sylpheed email Client 2024-05-08 10:09:49 -04:00
-Pink-Panther ec04e62cce Fixed typo in module documentation 2024-05-07 15:47:07 -04:00
-Pink-Panther ceafa3761d Added module documentation 2024-05-07 15:02:48 -04:00
Christophe De La Fuente 8c76143a9d Land #19127, Ldap signing 2024-05-07 17:28:36 +02:00
Christophe De La Fuente 946cc3baf1 Land #19147, Auxiliary module for CVE-2024-4040 - CrushFTP arbitrary file read 2024-05-07 15:44:24 +02:00
Spencer McIntyre 47c8d7252b Land #18519, Docker kernel module escape 2024-05-06 09:08:08 -04:00
h00die 9c030b027a fix tablein jasmin docs 2024-05-04 15:56:11 -04:00
h00die d18700ec3b jasmin ransomware sqli and dir travers 2024-05-04 15:56:10 -04:00
bwatters b044bcab01 Add command payloads and checks for overwritten files 2024-05-03 13:06:16 -05:00
remmons-r7 5653ea5dfb Implement peer review suggestions for documentation 
Revise 'Options' section to format each option as a level-3 heading
Update to latest module console output in 'Scenarios'
 2024-05-03 12:24:42 -05:00
Spencer McIntyre 69d603e6fc Switch to an enum option for the signing 2024-05-03 10:27:10 -04:00
Christophe De La Fuente 69cbddde92 Land #19050, Adobe ColdFusion Arbitrary File Read [CVE-2024-20767] 2024-05-03 15:15:08 +02:00
Jack Heysel e3d7dce4a9 Updated res.body parsing, responded to comments 2024-05-02 09:47:22 -07:00
remmons-r7 6c91ca37b6 Implement peer review suggestion to add CrushFTP10.zip SHA256 2024-05-02 11:42:49 -05:00
Spencer McIntyre ca669d8f08 Update docs to reflect changes 2024-05-01 13:45:20 -04:00