adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
47,482 Commits 27 Branches 1,043 Tags
ffe4dbcc19def7a2e5e6140b83b514b1f30ded98
Commit Graph

11544 Commits

Author SHA1 Message Date
Wei Chen 28e3f3a5f0 Land #10327, Add CMS Made Simple Upload/Rename Authenticated RCE 2018-07-19 12:18:12 -05:00
Wei Chen c5ac4c791f Make changes based on community feedback 2018-07-19 12:17:02 -05:00
Brent Cook 08290b81c0 Land #10282, Add support for running external modules outside of msfconsole 2018-07-18 17:38:40 -05:00
Brent Cook b90583d07c don't throw an exception in haraka checks if we cannot connect 2018-07-18 17:17:45 -05:00
Adam Cammack 0024cca3bf Land #10328, Log errors in Python ETERNALBLUE 2018-07-18 14:50:40 -05:00
Tim W 70a1df70a1 Land #9753, Linux BPF sign extension local privesc 2018-07-18 18:44:14 +08:00
Jacob Robles 08e33cad0c Spelling fix 2018-07-17 20:12:37 -05:00
William Vu e5efa4faac Make failures consistent 2018-07-17 17:35:52 -05:00
William Vu 96f9e60e84 Swap return for sys.exit(1) 2018-07-17 17:25:38 -05:00
William Vu 09d347ca33 Add missed sys.exit(1) 2018-07-17 16:31:57 -05:00
William Vu e1be94e568 Pass RPORT to sess_port in Impacket 2018-07-17 13:49:38 -05:00
William Vu 0bdaa0e23a Catch connection errors and module.log them 2018-07-17 13:49:34 -05:00
Jacob Robles 677b22698d Land #10273, [clean up] iis_webdav_scstoragepathfromurl 2018-07-17 09:33:32 -05:00
Jacob Robles 1e004769ca CMS Made Simple Upload/Rename Authenticated RCE 2018-07-17 09:00:39 -05:00
Brendan Coles 6bf184dbcf Update tested versions 2018-07-17 06:24:16 +00:00
William Vu 9a7c34e6e9 Land #10064, Claymore Dual Miner API RCE 2018-07-16 18:02:20 -05:00
Jacob Robles 134417b598 Account for nil 2018-07-14 10:44:09 -05:00
Jacob Robles 6e450973b9 Land #10295, Add QNAP Q'Center change_passwd Command Execution exploit 2018-07-14 10:09:46 -05:00
Jacob Robles 18e65abc54 Fix link 2018-07-14 10:03:01 -05:00
Brendan Coles 9bdec97b2e Fix bpf_sign_extension_priv_esc 2018-07-13 23:01:17 +00:00
Brendan Coles 4e72dff791 Update module references 2018-07-14 05:03:13 +10:00
Wei Chen b40a146723 Land #10297, Add priv escalation mod for CVE-2018-8897 2018-07-13 10:54:25 -05:00
bwatters-r7 f33d12676f Added License, make msftidy happy, and include original cve project 
readme document.
 2018-07-13 10:19:41 -05:00
bwatters-r7 4fa2a4775d Update the target check and added cleanup 2018-07-13 09:27:41 -05:00
Wei Chen 9ba0a72ea1 Rename file 2018-07-13 01:11:37 -05:00
Wei Chen e1e8444188 Clean up ruby code for CVE-2018-8897 2018-07-13 01:06:21 -05:00
Brendan Coles a020d48caf Move module documentation to documentation directory 2018-07-13 04:46:25 +00:00
Wei Chen f02c05e530 This one is the same as cve_2018_8897_exe.rb 2018-07-12 22:09:44 -05:00
William Vu c9001699cd Land #10027, Hadoop unauthed command execution 2018-07-12 21:58:49 -05:00
William Vu 50252c75d6 Clean up module 
With a little rubocop -a.
 2018-07-12 21:58:00 -05:00
William Vu 2f37482535 Land #10278, gitlist_arg_injection fixes 2018-07-12 19:03:52 -05:00
Wei Chen e613b2570a Land #10299, Add 88 CVEs to various auxiliary and exploit modules 2018-07-12 18:26:07 -05:00
bwatters-r7 cfcb77afd0 Rename to please msftidy 2018-07-12 17:41:06 -05:00
William Vu 3546286049 Add missed ARCH_CMD to top-level Arch array 
It's not necessary because of targets, but it's required for printing.
 2018-07-12 17:37:06 -05:00
asoto-r7 1a3a4ef5e4 Revised 88 aux and exploit modules to add CVEs / references 2018-07-12 17:34:52 -05:00
bwatters-r7 156b822401 First stab at cve-2018-8897 2018-07-12 17:31:53 -05:00
Brendan Coles 4b62f41369 Add QNAP Q'Center change_passwd Command Execution exploit 2018-07-12 20:00:17 +00:00
Brendan Coles 904de2dd09 Land #10238, Add ManageEngine Exchange Reporter Plus RCE exploit 2018-07-12 16:07:32 +00:00
Kacper Szurek 486225c2a8 Code review changes 
Use target_uri, split url inside normalize function, replace print with vprint, return CheckCode::Appears
 2018-07-12 14:27:28 +02:00
William Vu acb20e5a29 Land #9780, CouchDB auth bypass and RCE 2018-07-12 03:36:17 -05:00
William Vu f53080ee60 Fix exploit and do final cleanup 2018-07-12 02:13:30 -05:00
William Vu 167745c124 Selectively add RuboCop fixes 2018-07-11 22:49:46 -05:00
William Vu ccc3267166 Correct rubocop -a 
We'll update .rubocop.yml later.
 2018-07-11 22:49:46 -05:00
William Vu ca5e496b8f Run rubocop -a 2018-07-11 21:40:19 -05:00
Shelby Pace 1ded8ffb29 Land #10260, Add phpMyAdmin v4.8.1/4.8.0 LFI RCE 2018-07-11 11:10:52 -05:00
Erin Bleiweiss ef3ea2dd44 Land #10280, Use default CheckCode in ETERNALBLUE 2018-07-10 17:39:42 -05:00
Shelby Pace 10cd6c99d9 Land #10231, Monstra Fileupload Exec 2018-07-10 14:23:15 -05:00
Shelby Pace 07dca243ff changed grammar, removed redundant code 2018-07-10 14:13:57 -05:00
Brent Cook 1af360d7e0 Land #10108, add IBM QRadar SIEM exploit 2018-07-10 11:52:32 -05:00
Shelby Pace 171fa562a3 added parsing for repos in Gitlist source 2018-07-10 11:32:46 -05:00