fdd7a863c8
Land #16736 , fix confluence_widget_connector crash
...
This change fixes a bug in the confluence_widget_connector
exploit module to prevent it from crashing when the HTTP
response body received in the get_java_property method is
empty or does not match expected regex.
2022-07-12 12:27:40 -04:00
52fd45b7ab
Land #16744 Jboss EAP/AS RCE module
...
This module exploits a Java deserialization vulnerability
in JBOSS EAP/AS Remoting Unified Invoker interface for
versions 6.1.0 and prior.
2022-07-12 10:49:22 -04:00
7df6d73741
Added new line to end of file
2022-07-12 09:08:19 -04:00
44abcfcb28
Added flavour to fix linux_dropper
2022-07-12 09:06:06 -04:00
3e66fc8f4e
Fix crash in ms04-007-killbill
2022-07-10 00:07:26 +01:00
781597bc0e
Land #16617 , fix race condition in short ranges
2022-07-08 09:56:51 -04:00
728cf97f6e
Land #16718 , Fix run_as module on x64 systems
2022-07-08 09:22:22 -04:00
2f7cf90b7f
mixin didn't work with linux_dropper payload
...
- Fixed exception handling variable attribution
- Tried to change JavaDeserialization Util to JavaDeserialization mixin
instead
- Changed the fail reason when the connection is unsuccessful
2022-07-08 02:30:26 +02:00
f958b0a053
Land #16738 , correct CVE/lint for weblogic module
2022-07-07 18:08:13 -05:00
52ac281991
change wording in fail_with()
2022-07-07 18:05:56 -05:00
4da72a9b01
Land #16735 , Fix defaults for aerohive module
...
This change sets the MeterpreterTryToFork advanced
payload option to true by default for the Linux target
in the aerohive_netconfig_lfi_log_poison_rce module.
2022-07-07 16:21:56 -04:00
6db340508f
Land #16703 , add Censys API v2 functionality
...
This PR updates the censys_search.rb module to also
make use of the v2 API functionality
2022-07-07 13:09:31 -04:00
7d32338702
remove ARTIFACTS_ON_DISK from weblogic_deserialize_asyncresponseservice notes
2022-07-07 05:26:59 -07:00
debf619968
Land #16733 , add dfscoerce scanner module
2022-07-06 18:18:00 -05:00
f7209bfc75
Land #16724 , Modernize ms01_026_dbldecode
...
Use HttpClient; remove meterpreter code; fix stager
2022-07-05 09:36:58 -04:00
50ca5f0ce2
Add description
2022-07-05 00:25:07 +02:00
066d01b7b2
Rework censys_search module to use Censys Search API v2
2022-07-04 17:19:16 +02:00
04aa05faa2
ms01_026_dbldecode: Use HttpClient; remove meterpreter code; fix stager
2022-07-03 18:22:55 +10:00
8bd0be9837
msftidy pass.
2022-07-02 19:43:41 +02:00
f2419785ba
implemented certificates search as an option.
2022-07-02 19:02:25 +02:00
0ea033be55
Add module for jboss remoting unified invoker RCE
2022-07-01 21:39:42 +02:00
b40dd95d4f
Land #16723 , Add FreeSwitch Login auxiliary module
2022-07-01 16:57:34 +02:00
9de7411723
Land #16704 , Fix bad loop terminator checks and data checks in memcached_extractor.rb
2022-07-01 16:36:56 +02:00
48598b8c5b
correct CVE and add linting for weblogic_deserialize_asyncresponseservice
2022-07-01 10:27:51 -04:00
17f82a900e
linting for confluence_widget_connecter and add catch for all scenarios where clear_response returns nil
2022-07-01 08:43:47 -04:00
f6b6ad4bf1
prevent confluence_widget_connector from crashing when the response body in get_java_property is empty
2022-07-01 07:37:54 -04:00
b56242c7a2
enable MeterpreterTryToFork by default for aerohive_netconfig_lfi_log_poison_rce
2022-07-01 06:15:13 -04:00
2e63a5b48c
setting stop_on_success attribute to true
...
this attribute is needed by LoginScanner module but will have no effect
2022-07-01 12:22:31 +07:00
cdc6fe471f
Use safe navigation operator instead of rescue
2022-07-01 12:06:38 +07:00
1856baf4b9
censys host search will output certificates to be used with certificates search.
2022-07-01 06:35:09 +02:00
60da336ad4
Fix a silly typo
2022-06-30 17:38:30 -04:00
7e35f42eeb
Finish up error handling for dfscoerce
2022-06-30 17:15:21 -04:00
7a982a2c83
Report ACCESS_DENIED as success
...
If the listener that handles the incoming connection request replies
with STATUS_ACCESS_DENIED, the API will return ERROR_ACCESS_DENIED to
the caller. This is the behavior of Metasploit's capture module as well
as Responder.
2022-06-30 15:16:11 -04:00
81ab873d6c
Add petitpotam error handling
2022-06-30 15:12:23 -04:00
43629a3960
Add the initial dfscoerce module
2022-06-30 15:00:52 -04:00
0d19e47b8d
Land #16677 , Add module for adding/deleting computers via MS-SAMR
2022-06-30 12:12:26 +02:00
738aa7ac0a
Deregister STOP_ON_SUCCESS
2022-06-30 11:42:50 +07:00
f81e4d5dde
use autocheck module and rescue in case the user use ForceExploit against unknown service
2022-06-30 11:38:20 +07:00
9b909131ff
added datastore[TIMEOUT] options to line 77
2022-06-29 21:02:26 +03:00
0e3fdd0799
Fix from code review
2022-06-29 19:18:47 +02:00
2d6e910078
Land #16721 , Phpmailer arg injection update
2022-06-29 13:00:48 -04:00
1b7d8f1e74
Fix a whitespace issue, restore option naming
2022-06-29 12:24:29 -04:00
695e1243b8
Update modules/exploits/multi/http/phpmailer_arg_injection.rb
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
2022-06-28 23:08:20 -10:00
d14e610230
forgot to push this
2022-06-28 19:38:47 +02:00
41ba2d263b
Address PR feedback
...
Simplify the application_key usage, update docs and catch another
exception.
2022-06-28 11:53:05 -04:00
da63fbbad4
Add FreeSwitch Login auxiliary module
2022-06-28 20:13:24 +07:00
6b17905790
Land #16722 , Fix notes for SideEffects and Reliability
2022-06-28 10:15:04 +01:00
9087f86cce
exploit/multi/misc/nomad_exec: Fix notes for SideEffects and Reliability
2022-06-28 17:02:51 +10:00
a89e88c462
Merge branch 'rapid7:master' into phpmailer_arg_injection_update
2022-06-27 11:05:41 -10:00
22a1e06f02
Land #16702 , Fix reference URL link in hikvision_rtsp_bof.rb
2022-06-27 12:23:04 +01:00
Jack Heysel