f7d2cdae56
Add in ability to restore settings n documentation changes.
...
Previously there was not the ability to restore the server proxy setting.
This updates the code to do so. Additionally this also updates the documentation
to note that Fetch payloads are incompatible with this module since they
use HTTP connections that will be impacted by this module changing the server's
HTTP proxy settings. There is no way around this.
2023-06-02 09:48:03 -05:00
965311d09e
Fix documentation and fix bug in creating PARMS value
2023-06-02 09:48:02 -05:00
8577f21e52
Add in documentation and updated code
2023-06-02 09:48:01 -05:00
8ed981e575
Land #18003 , Archer c7 traversal
2023-06-01 17:37:13 +02:00
8378435051
Land #17430 , Add AWS SSM Sessions
2023-06-01 11:34:40 -04:00
6756047f1f
Land #18028 , Add Apache NiFi login scanner module
2023-05-31 12:25:18 -05:00
ccbdd7870e
Update documentation
2023-05-31 11:57:42 -05:00
1fd2d41835
Fix typos and add dig for safe navigation
2023-05-31 10:34:10 -05:00
ef89219715
Land #17899 , Dolibarr 16 unauthenticated contact database dump
2023-05-30 16:41:28 +02:00
b575f92d0a
Minor fix in vsftpd docs
2023-05-29 17:55:36 -04:00
0b9aff0661
Land #18004 , VSFTPD Dos Module
...
This PR adds a dos module for cve-2011-0762
which exploits the vsftpd server
2023-05-29 17:39:02 -04:00
1018ed1aaf
Update documentation/modules/auxiliary/dos/ftp/vsftpd_232.md
2023-05-29 15:40:42 -04:00
cf2ca434a8
spelling
2023-05-26 15:53:16 -04:00
93479be5e6
review comments
2023-05-26 15:47:22 -04:00
573eb4bda4
Merge branch 'master' into archer_c7_traversal
2023-05-26 01:48:43 -04:00
250a8768e3
Updated doc to appease msftidy
2023-05-25 21:28:19 -04:00
376ef7a8bc
Made several fixes for msftidy
2023-05-25 21:16:07 -04:00
48207dd9f1
apache nifi login module
2023-05-25 16:57:32 -04:00
72ef6537ef
Added tested versions to description
2023-05-25 14:21:52 -04:00
cb8d86651d
Added build setup for arch linux
2023-05-25 14:19:44 -04:00
b11b31c9ae
Moved docker description into vulnerable application
2023-05-25 14:18:15 -04:00
1d98cb0069
Added better description to documentation
2023-05-25 13:34:04 -04:00
7c2790513d
apache nifi version scanner
2023-05-24 20:05:34 -04:00
1c57019096
Merge branch 'master' into vsftpd_232
2023-05-24 10:58:22 -04:00
9c58289b21
Added container info in documentation
2023-05-24 10:54:31 -04:00
e542c50154
Merge branch 'rapid7:master' into dolibarr_16_contact_dump
2023-05-24 09:26:03 +02:00
9e38ed4459
Land #17929 , Linux sudoedit LPE (CVE-2023-22809)
...
Linux sudoedit priv esc (CVE-2023-22809)
2023-05-23 09:30:18 -04:00
120dc877ad
Pr/collab/17430 ( #41 )
...
* Prevent using post modules with the session
It doesn't work reliably because of winpty and how the output is
mangled.
* Set the limit correctly
* Fix Linux PTY downgrade issues
* Remove filtering
The filtering implementation is incomplete and unnecessary.
Filtering is unnecessary because Linux sessions execute a stub on
session start up that uses a combiantion of stty and a fifo to emulate a
PTY-less session. Windows sessions do not need filtering because they
have been explictly marked as being incompatible with the Post API which
is confused by the extra characters.
The filtering implementation is incomplete because it does not account for
echo fragments that are split across lines. It also does not account for
all of the ANSI escape codes.
* Add module docs for enum_ssm
2023-05-22 17:11:16 -04:00
60f6574bf3
Land #17965 , add module for AD CS cert management
2023-05-22 09:50:53 -05:00
0a3247f1a7
Add documentation
2023-05-22 10:29:03 -04:00
3dc9438b3a
Added firmware version to documentation
2023-05-21 00:33:33 -04:00
6c88e85d02
Land #17993 , add invscout RPM privesc
2023-05-17 18:56:42 -05:00
62f48c5933
Updated vsftpd_232 documentation
2023-05-17 12:01:59 -04:00
0bc1fdf51d
Add invscout RPM Privilege Escalation
2023-05-17 20:17:55 +10:00
10dd1b8906
Updated scenarios for vsftpd_232
2023-05-17 00:44:46 -04:00
e1a9f61ad9
Added documentation to scanner module
2023-05-17 00:00:00 -04:00
459cf871cb
Land #17979 , Add exploit for Ivanti Avalanche file upload - CVE-2023-28128
2023-05-16 09:19:33 -05:00
ea988f0c78
Add more documentation on how to set the target up based on my own experience and so that we have a backup in case the link to external documentation breaks
2023-05-12 14:27:39 -05:00
0e9060e295
Added documentation for module
2023-05-12 14:27:12 -04:00
cf5f90ac4f
Minor updates to documentation to tidy things up a bit
2023-05-11 16:48:16 -05:00
722de33b6f
address feedback, use cleanup to restore path
...
fix bug where if config restore failed, module would
output that it was both a failure and a success
add akb topic as reference
2023-05-11 13:20:25 -05:00
020ee7ca5c
Land #17964 - Pentaho Business Server Auth Bypass and SSTI - CVE-2022-43769 and CVE-2022-43939
2023-05-11 09:28:55 -05:00
9f6a1c18a1
Minor updates to fix URLs, disclosure date, description, and minor gramatical things
2023-05-10 18:22:00 -05:00
9f0a6503b7
require.js is not the only way, account for this new discovery in code
2023-05-10 13:02:02 -05:00
5d4e68d36c
Add Metasploit payload example and remove message that may suggest successful exploitation occurred even when it didn't
2023-05-10 10:36:29 -05:00
1b8f1de7c8
Add in fixes from review, add archive of software, and use uri_encode_mode for encoding parameters.
2023-05-10 10:16:08 -05:00
cfea6530a1
Merge branch 'rapid7:master' into dolibarr_16_contact_dump
2023-05-10 11:59:46 +02:00
daee69e1d0
Fix msftidy errors
2023-05-10 11:55:50 +02:00
a485a786ef
Land #17881 , Zyxel chained RCE using LFI and weak password derivation algorithm
2023-05-10 11:49:51 +02:00
07056a74bc
Pentaho Business Server Auth Bypass and SSTI
2023-05-09 14:24:51 -05:00
Grant Willcox