1e50ba3415
Move to Hashes module, address requested changes
...
Fix rubocop
Move identify to hashes module up one layer, use full reference to identify_hash instead of full include
Fix SMTP require
Remove hashes require statement
Remove hashes require statement
Remove hashes require statement
Remove hashes require statement
Address remaining requested changes, reference constants directly
Add all the missing direct references
Co-Authored-By: Jeffrey Martin <jeffrey_martin@rapid7.com >
2022-10-17 17:28:31 -04:00
8b5223f53b
Modularize Identify, Update referenced use cases
...
Modularize Identity.rb
Include new module style Identify
Update juniper.rb
Fix inadvertent change
Add new module to identify spec
Put the require back
Put back require line for juniper
2022-10-17 17:28:30 -04:00
06aefb630a
string true to bool true
2022-10-03 19:50:04 -04:00
5f92d9418d
Modules: Fix Stability/SideEffects/Reliability notes for several modules
2022-10-01 17:54:59 +10:00
b0e3e95439
Minor Refactor: Remove unneccessary len(cookie)
2022-09-29 01:46:07 +05:00
2958a43a6a
Update to reflect fact that bug is an improper authentication logic bug and to randomize password for auth parameter since it is ignored
2022-09-23 12:19:29 -05:00
edc37835e5
Add more nil checks in, update some of the check code to catch an edge case, update notes to account for indicators of compromise, and fix some extra issues noticed on second round of review
2022-09-23 09:38:35 -05:00
9abe1649ff
Sanitize XML data prior to adding it to the XML POST request and also change the ID option to an integer from a string to match expectations
2022-09-23 09:38:35 -05:00
3ca34568c2
Clean up some of the documentation and module code and descriptions
2022-09-23 09:38:12 -05:00
37caf6dae5
removed exploit information from info section
2022-09-23 09:38:11 -05:00
a4a12d06bc
improved error handling
2022-09-23 09:38:10 -05:00
5ed7ff7f52
init commit module and documentation
2022-09-23 09:38:05 -05:00
3f06e237b7
Correctly format the notes sections
2022-06-10 14:01:57 +01:00
53052af988
Fix login crash for pihole modules
2022-05-04 19:42:39 +01:00
94ed9ae28b
Modules: Prefer CVE references over cve.mitre.org URL references
2022-04-19 20:42:23 +00:00
bbf9e3163a
Fix file reads on Windows for binary files
2022-03-21 12:47:39 +00:00
47532bb49a
use Faker for email and user names
2022-03-07 10:57:40 -06:00
86cad29799
wp masterstudy review
2022-03-06 08:07:20 -05:00
2195edbb8d
masterstudy privesc
2022-02-25 16:36:47 -05:00
d5ba1afbec
fix URLs not resolving
...
fix URLs not resolving
add csv export to references
fix URLs not resolving
pdf not pd
missed a url change
remove extra recirectedfrom fields
remove extra file
fix ovftool url accidental replacement
2022-02-16 17:22:40 -06:00
8852eaa6b8
Land #16049 - Reference Fixes
2022-01-18 13:46:25 -06:00
09d6b1388c
fix kaseya links
2022-01-13 18:47:11 +00:00
b08e22a153
fix nvrmini reset link
2022-01-13 18:43:41 +00:00
4065e61951
fix msftidy error in pihole_domains_api_exec
2022-01-12 09:34:15 -06:00
43549488fe
peer review comments
2022-01-08 15:26:47 -05:00
990e4a1e7a
pihole new module and lib
2022-01-02 11:48:41 -05:00
c3e0f455ec
some cleanup for rubocop
2021-12-30 15:35:22 -05:00
b39196fd0f
review comments
2021-11-04 15:28:05 -04:00
1e9af10a21
pr review
2021-10-21 17:25:14 -04:00
165acca028
wp_automatic_plugin
2021-10-17 13:04:38 -04:00
43d77d63ce
ghostcat meta updates
2021-10-03 16:30:12 -04:00
756fac4921
Land #15677 , add Netgear auth bypass
2021-09-24 14:44:34 -05:00
6ed3462517
Add in public data for stolen wifi credentials and cleanup code for the file we have to write for the telnet auxiliary module to work
2021-09-24 10:44:10 -05:00
9deffb1848
Fix up a bug and resolve Christophe's review comments
2021-09-23 16:45:15 -05:00
061240367d
Push up changes to support saving WiFi credentials captured to the database, as well as to fix issues noticed during the review process
2021-09-23 13:31:27 -05:00
2ac4c71537
Add 'keep_cookies' => 'true' to requests so that we don't have to juggle cookies. Also make file write binary to comply with RuboCop
2021-09-22 17:02:24 -05:00
1ca075fb4f
Fix up RuboCop issues
2021-09-22 14:06:06 -05:00
d4474b0706
Add in refined XPATH searches to module, ability to automatically get a session, improved error handling, documenation for module, and general improvements
2021-09-22 14:01:49 -05:00
4181602047
Even more RuboCop changes, this time to add in the Notes section
2021-09-16 17:25:27 -05:00
72df696d4e
Add in method to enable telnet, further cleanup for Rubocop
2021-09-16 16:11:19 -05:00
381f561f24
Use vars_get in send_request_cgi to be more proper and comply with Rubocop rules
2021-09-16 14:51:23 -05:00
f9c683132c
Improve the password reporting code to use more updated function create_credential_login instead
2021-09-16 13:03:29 -05:00
e9bd10faef
Fix up broken module and RuboCop errors so we actually have functional code
2021-09-16 12:40:58 -05:00
810fa6be6e
Change module name to lowercase snakecase, update attribution to conform to standards, store captured creds in database
2021-09-16 12:30:08 -05:00
2e5fc391c7
Add in initial writeup of netgear_PNPX_GetShareFolderList_auth_bypass.rb
2021-09-15 15:31:47 -05:00
fcf48c5817
Fixing a problem where the module reported failure but actually
...
succeeded
2021-09-15 10:59:03 +01:00
4a9a15e638
Run Rubocop layout rules on modules
2021-08-27 17:19:43 +01:00
9934f5d5ab
Remove a useless variable assignment for rubocop
2021-07-29 08:54:07 -04:00
a518fcac98
Add in timeout to 10th and final request to prevent module from throwing errors like it isn't working when it really is
2021-07-28 11:32:47 -05:00
a13f6a35dc
Use fail_with to properly handle the case where the target isn't the one we support
2021-07-27 13:00:44 -05:00
Matthew Dunn