adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
64,053 Commits 27 Branches 1,043 Tags
ec9f0b524229ecfbebc4e76c57fa53ebec504afd
Commit Graph

4865 Commits

Author SHA1 Message Date
Spencer McIntyre c994f8e933 Land #16507, Add WSO2 file upload RCE module 2022-04-29 09:58:55 -04:00
Spencer McIntyre 21f8494366 Land #16509, Ensure HTML is escaped in markdown codeblocks 2022-04-27 15:18:50 -04:00
adfoster-r7 9f6950c6c8 Ensure HTML is escaped in markdown codeblocks 2022-04-27 19:51:05 +01:00
Jack Heysel 253cb8580a Responded to comments added retry_until_true 2022-04-27 09:45:18 -07:00
jheysel-r7 266d3bb9ca Apply suggestions from @bcoles code review 
Co-authored-by: bcoles <bcoles@gmail.com>
 2022-04-26 13:40:25 -07:00
Jack Heysel ca0be9c145 Add WSO2 file upload RCE module 2022-04-26 12:29:12 -07:00
Jake Baines de453b8970 Update documentation/modules/exploit/linux/redis/redis_debian_sandbox_escape.md 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2022-04-26 14:42:57 -04:00
Jake Baines d20fd996bd Fix spelling mistakes 2022-04-26 03:38:23 -07:00
Jake Baines 71a4023c0d Initial commit of Redis sandbox escape CVE-2022-0543 2022-04-26 03:32:11 -07:00
Jack Heysel 140c3bfd50 Land #16432 Enumerate Windows AV module 
Post module that will query WMI via shell
or meterpreter session for deployed AV products
from the root\SecurityCenter2 namespace
 2022-04-21 13:07:56 -07:00
Jack Heysel 7be74eca8b Updated spacing 2022-04-21 11:52:27 -07:00
Jack Heysel f011e923e2 Fixed docs 2022-04-21 11:45:26 -07:00
Jack Heysel d8542ad2b5 Changed vprint to print update docs 2022-04-21 11:35:33 -07:00
Jack Heysel 5411b6b909 Added docs 2022-04-21 09:24:13 -07:00
Grant Willcox e2c6c36b2b Land #1642, Add module for cve-2022-0995 2022-04-21 09:12:47 -05:00
adfoster-r7 104071e816 Land #16483, fix typo 'MetaSploit' in readme and comment 2022-04-21 10:13:14 +01:00
Jack Heysel d3c9648af0 Land #16438, Fix smtp server auth prompt 
Some smtp servers only give out creds when promted.
Now there exists a mondule option 'AUTHPROMPT' to indicate
whether or not the auth prompt is required by the server.
 2022-04-20 22:21:55 -07:00
Anton Panteleev 9297c0e058 FIX: typo 'MetaSploit' in readme and comment 2022-04-21 14:44:57 +10:00
Grant Willcox 78d4ac8592 Update module reliability and also fix issues from bcoles's review 2022-04-20 19:04:27 -05:00
bwatters d9a241defb Fix overzealous source code edit and some version copy/pasta errors 2022-04-20 14:31:32 -05:00
Jake Baines aba48a6905 Improve JSON cleanup, fix jjs specific wording, and moved JJS_PATH to defaultoptions 2022-04-20 06:27:43 -07:00
Jake Baines ae54c8c3d9 Initial implementation of authenticated RCE against ManageEngine ADSelfService Plus (CVE-2022-28810) 2022-04-19 10:33:54 -07:00
h00die e927da2ffa land #16359, docs for ipidseq aux module 2022-04-17 08:35:20 -04:00
h00die 079794c2de doc cleanup for ipidseq 2022-04-17 08:34:53 -04:00
Brendan Coles 66fe338297 Move getsimplecms_unauth_code_exec.md documentation to http dir 2022-04-16 16:53:34 +00:00
Grant Willcox b83a4b2a7a Add in fixes to module and documentation from final review 2022-04-14 12:45:15 -05:00
bwatters 83f4473c2a Correct Ubuntu target version 2022-04-14 12:01:38 -05:00
bwatters 03d01d2f72 Remove stray markup 2022-04-14 10:29:54 -05:00
bwatters f32443b477 Update with debug source code and options, cleanup module code per gwillcox-r7 2022-04-14 10:25:55 -05:00
bwatters 147d6e1df7 Added docs, reverted strip_comments, rubocop'd 2022-04-12 21:14:11 -05:00
h00die ab382cddf0 change requireauth to authprompt 2022-04-11 14:26:25 -04:00
h00die f7b58e243c smtp server can prompt for auth 2022-04-10 11:55:07 -04:00
Spencer McIntyre 5de966cfb1 Land #16382, CVE-2022-26904 SuperProfile LPE 2022-04-07 12:52:39 -04:00
space-r7 1fd779c52c Land #15972, add LEAK_PARAMS option log4shell scan 2022-04-06 11:17:44 -05:00
Spencer McIntyre 70b1da6df4 Fix a misspelling 2022-04-06 09:04:26 -04:00
Spencer McIntyre 04ac668e21 Update the docs for readability 2022-04-06 08:58:09 -04:00
Christophe De La Fuente 94e0eec249 Land #16082, Add ShadowMitmDispatcher to the smb_shadow module 2022-04-06 11:45:59 +02:00
Tim W d60754ea37 Land #16401, add CVE-2022-22616 to osx_gatekeeper_bypass 2022-04-06 07:57:32 +01:00
usiegl00 8495bff61c Merge master and update the smb_shadow module 
Add comments detailing the technique used to attack SMBv3. Remove some
comments that are no longer needed. Fix Gemfile.lock conflict.
 2022-04-06 07:06:45 +09:00
Spencer McIntyre 05f6de65df Update the docs to include LEAK_PARAMS 2022-04-05 17:52:11 -04:00
space-r7 4c8c32b3ff set file header to Contents dir, check safari vers 2022-04-05 10:16:59 -05:00
Grant Willcox e800dcb597 Add in documentation file 2022-04-04 12:05:28 -05:00
usiegl00 7e010cbde2 Merge master and update smb_shadow + dispatcher 
The smb_shadow module can confirm the server smb version supported with
the ConfirmServerDialect option. The shadow_mitm_dispatcher closes each
stream before opening a new one to prevent leaking file descriptors.
 2022-04-02 10:39:02 +09:00
space-r7 0505dff7e3 add option in verification steps 2022-04-01 18:03:49 -05:00
space-r7 e9e1e26def add support for CVE-2022-22616, update docs 2022-04-01 17:50:33 -05:00
space-r7 fc1809370d Land #16381, add chocolatey enumerator module 2022-04-01 11:16:28 -05:00
Florian Griesser 8fd0b11a8b Requested changes pull request in documentation ipidseq.md 2022-03-31 15:58:07 +02:00
Spencer McIntyre 211626e7ce Fix the check method, add docs 2022-03-31 09:01:08 -04:00
space-r7 cc6eb75cd7 Land #16364, use dnsruby api for native_spoofer 2022-03-29 09:44:31 -05:00
RadioLogic e8d18a65dd Updated module documentation using msftidy 2022-03-29 08:36:36 -04:00