adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
79,798 Commits 27 Branches 1,043 Tags
f632cf34bfef55fc2f602f620cda2aa70fb74c8d
Commit Graph

22018 Commits

Author SHA1 Message Date
cgranleese-r7 e69d72dcc1 Merge pull request #20680 from cdelafuente-r7/fix_rpc 
A few fixes and enhancement for API RPC
 2026-02-04 16:18:39 +00:00
Valentin Lobstein 005fbb17a1 Address PR #20768 review feedback 
- Fix machineKey extraction regex to handle decryption attribute
- Replace Base64.strict_encode64 with Rex::Text.encode_base64
- Add READ_FILE and EXTRACT_MACHINEKEY actions
- Add PRODUCT option for CentreStack/Triofox support
- Use different storage endpoints per product type
- Update documentation with new options and actions
 2026-02-04 08:38:35 +01:00
Valentin Lobstein 7776588577 Address PR #20768 review feedback 
- gladinet.rb: Fix machineKey regex to match decryptionKey then validationKey explicitly
- gladinet.rb: Remove DEFAULT_WEB_CONFIG_PATH constant, inline in each module's datastore option
- gladinet_storage_access_ticket_forge.rb: Inline version check
- gladinet_storage_access_ticket_forge.rb: Inline FILEPATH default value (with C:\ for absolute path)
- gladinet_storage_lfi_cve_2025_11371.rb: Inline version check
- gladinet_storage_lfi_cve_2025_11371.rb: Inline valid_response? method (removed)
- gladinet_storage_lfi_cve_2025_11371.rb: Inline FILEPATH default value (without C:\, stripped by build_lfi_path)
- gladinet_storage_lfi_cve_2025_11371.rb: Use vars_get with encode_params instead of manual URL building
- gladinet_viewstate_deserialization: Remove nil fallback (mandatory option with default)
- gladinet_viewstate_deserialization: Remove DEFAULT_MACHINE_KEY constant, inline in datastore option
- gladinet_viewstate_deserialization: Remove duplicate detect_app_type/extract_build_version (already in shared lib)

Note: Suggestion to rename gladinet? to is_gladinet? was NOT applied.
msftidy enforces Naming/PredicatePrefix convention which requires predicate
methods to NOT have 'is_' prefix (gladinet? is correct, is_gladinet? is not).

Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
 2026-02-04 08:38:35 +01:00
Valentin Lobstein b1adc514d1 Apply suggestions 
Co-authored-by: jheysel-r7 <jheysel-r7@users.noreply.github.com>
 2026-02-04 08:38:35 +01:00
Valentin Lobstein 3cffeda00e Fix machineKey extraction regex and add reviewer credit 
- Fix regex in gladinet mixin to handle machineKey with decryption attribute
- Add Julien Voisin as reviewer in auxiliary modules

Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2026-02-04 08:38:34 +01:00
Valentin Lobstein 1c929ae5b6 Update lib/msf/core/auxiliary/gladinet.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2026-02-04 08:38:33 +01:00
Valentin Lobstein 38efe8264d Improve Gladinet detection: check for y-glad cookies and branding in addition to ViewState 2026-02-04 08:38:32 +01:00
Valentin Lobstein 628c5ee7af Update Gladinet modules: fix AutoCheck in auxiliary modules and update documentation with real outputs 2026-02-04 08:38:32 +01:00
Valentin Lobstein 478345506e Add Gladinet CentreStack/Triofox auxiliary modules and exploit 2026-02-04 08:38:31 +01:00
Spencer McIntyre 5e43beca60 Merge pull request #20920 from rudraditya21/fix/cracker-auto-action 
Handle ACTION=auto with CRACKER_PATH in password crackers
 2026-02-03 17:23:49 -05:00
Spencer McIntyre e55d22a7cd Merge pull request #20739 from cdelafuente-r7/add_mitre_tech_kerb_unconst_deleg 
Add MITRE ATT&CK techniques to Kerberos and unconstrained delegation modules
 2026-02-03 16:11:37 -05:00
cgranleese-r7 89ebdeacef Renames Windows file system namespaces 2026-02-03 11:23:04 +00:00
Christophe De La Fuente b85b2d4528 Add comments and remove T1077_WINDOWS_ADMIN_SHARES (deprecated) 2026-02-02 12:03:17 +01:00
Rudraditya Thakur a3dd697f6e fixed: auto cracker selection with CRACKER_PATH 2026-02-01 21:59:31 +05:30
Brendan e7f8b07476 Merge pull request #20882 from karanabe/icpr_cert-rsa-keysize 
Add RSAKeySize option to satisfy AD CS template minimums
 2026-01-30 15:56:58 -06:00
jenkins-metasploit 3e630ac7b9 Bump version of framework to 6.4.112 2026-01-29 15:50:00 +00:00
dwelch-r7 6fedaeefc6 Merge pull request #20909 from adfoster-r7/align-login-scanner-apis 
Align login scanner APIs
 2026-01-29 15:29:12 +00:00
adfoster-r7 e70483b785 Rubocop 2026-01-29 14:13:18 +00:00
adfoster-r7 7d81b1aecb Align login scanner APIs 2026-01-28 16:56:52 +00:00
Spencer McIntyre 518d1c8538 Merge pull request #20897 from h00die/fix_john_cracker 
fix jtr cracking
 2026-01-28 09:31:13 -05:00
h00die 04be22dc1a john formatter review 2026-01-28 07:44:50 -05:00
h00die 6d53d73758 debugging 2026-01-27 10:01:37 -05:00
Rudraditya Thakur 93b0c3004f removed: the mixin's String16 class to stop BinData registry collisions and reverted: MsTdsLogin7 to its original :string16 2026-01-26 23:00:52 +05:30
h00die 582d5ea230 fix jtr cracking 2026-01-25 11:16:32 -05:00
Rudraditya Thakur 82bae54abe ensured: MsTdsLogin7 UTF-18 fields use RubySMB String16 2026-01-25 10:59:02 +05:30
karanabe 2e1d688659 Use OptEnum for RSA key size options 2026-01-23 16:22:13 +09:00
Spencer McIntyre c0e9288ac5 Merge pull request #20799 from jheysel-r7/feat/cacti_graph_template_rce 
Cacti Graph Template Authenticated RCE [CVE-2025-24367]
 2026-01-22 14:26:38 -05:00
Spencer McIntyre 18a4cf8c00 Use the ssl setting for HttpServer#start_service 2026-01-22 13:49:28 -05:00
Jack Heysel 34cebd1453 Update CheckCode messaging 2026-01-22 15:03:32 +01:00
Jack Heysel 99e032f4af SmarterTools SmarterMail Unauth File Upload RCE [CVE-2025-52691] 2026-01-22 15:03:30 +01:00
jenkins-metasploit fd79b33758 Bump version of framework to 6.4.111 2026-01-22 03:35:53 +00:00
adfoster-r7 5ba95b5def Merge pull request #20888 from jheysel-r7/fix/bad_successor_service_auth_fix_2 
Fixes the base service authenticator for BadSuccessor
 2026-01-21 11:37:28 +00:00
jheysel-r7 c47a74d0dd Merge pull request #20770 from vognik/Splunk_2022-43571_CVE-2024-36985 
Add Splunk RCE Exploits (CVE-2022-43571 & CVE-2024-36985)
 2026-01-20 12:36:51 -08:00
Jack Heysel e3e388d57d Fixes the base service authenticator for BadSuccessor 2026-01-20 09:24:36 -08:00
vognik 9e320dd168 add suggestions from @jheysel-r7 2026-01-19 18:45:01 -08:00
jenkins-metasploit 3d18f613ba Bump version of framework to 6.4.110 2026-01-19 23:24:55 +00:00
jheysel-r7 eb49dade6f Merge pull request #20755 from rudraditya21/feature/kerberos-clock-skew 
Added: Option to adjust kerberos clock
 2026-01-19 10:00:54 -08:00
karanabe 61c1b8280f Add configurable RSA key size for ICPR 2026-01-18 20:21:55 +09:00
adfoster-r7 bb07207b9b Merge pull request #20861 from bcoles/post-linux-system-get_hostname 
Post::Linux::System.get_hostname: Use session sysinfo if available
 2026-01-17 19:38:21 +00:00
jenkins-metasploit a1eb2e224c Bump version of framework to 6.4.109 2026-01-16 23:18:09 +00:00
Jack Heysel 4b610957ce Fix Kerberos Base Service Authenticator 2026-01-16 12:31:34 -08:00
adfoster-r7 8a129bfc92 Merge pull request #20873 from zeroSteiner/fix/issue/socket-channels-udp-flakies 
Add more specific error messages
 2026-01-15 23:44:05 +00:00
Spencer McIntyre 36827c486d Add more specific error messages 2026-01-15 18:20:36 -05:00
Spencer McIntyre 3ecd8005e4 Merge pull request #20772 from rmtsixq/master 
Fix undefined variable in Host.normalize_host causing session failures when DB is connected
 2026-01-15 10:48:28 -05:00
jenkins-metasploit 9f591ad456 Bump version of framework to 6.4.108 2026-01-15 03:35:45 +00:00
Spencer McIntyre 658c251b66 Merge pull request #20472 from jheysel-r7/feat/mod/badsuccessor 
Add BadSuccessor dMSA Privilege Escalation in Windows 2025
 2026-01-14 15:43:35 -05:00
Jack Heysel c1023fd62a Add BadSuccessor dMSA Privilege Escalation in Windows 2025 2026-01-14 12:34:45 -08:00
Martin Sutovsky dfc1adb40c Dropping support for PPC archs 2026-01-13 08:36:28 +01:00
Martin Sutovsky c925ffbfdf Fixes the Mipsbe bug 2026-01-13 08:34:33 +01:00
Martin Sutovsky b1fc76c1c6 Fixes MIPS64 2026-01-13 08:34:32 +01:00