adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
77,656 Commits 27 Branches 1,043 Tags
3ccd8e5b14fe5a63aeec0e99101fd9cbcd36189b
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
OJ Reeves 3ccd8e5b14 "Working" C2 sessions with diff GET/POST uris 
Still don't have all the fields implemented, but this at least supports
the notion of having different URIs for GET and POST.

The approach taken, to reduce the impact on how much code has to be
changed, is to extract the UUID for the connection and use that as a
resource identifier. This UUID doesn't have any slashes in it, and hence
will not collide with any URI. This means we can use the UUID as a key
in the same hash as the resource URIs knowing that a direct lookup will
find the right session, even if by some miracle the UUID collides with a
chosen/generated URI. Any URI in the resource list will be prefixed with
a forward slash.

The listener will listen on all URIs that exist for the Meterp
configuration, including LURI setting, and the `uri` values in all three
areas that it might be specified in the C2 profile.
2025-07-10 10:46:27 +10:00
.github
Pin setup ruby github action
2025-05-21 23:41:42 +01:00
app
Move folder descriptions into README.md files
2023-05-03 14:06:13 -05:00
config
Rails 7.1 upgrade
2025-04-08 12:47:31 +01:00
data
Merge pull request #19996 from hantwister/patch-1
2025-06-05 11:56:50 -04:00
db
automatic module_metadata_base.json update
2025-06-15 21:50:54 +00:00
docker
Update docker Ruby version
2024-09-25 16:30:05 +01:00
docs
Improve code quality
2025-05-27 17:27:19 -04:00
documentation
Land #20291, adds Roundcube post-authentication RCE (CVE-2025-49113)
2025-06-11 10:48:58 +02:00
external
Remove obsolete syscall logic; fix all warnings and lock in warnings as errors
2025-05-01 08:26:59 +10:00
kubernetes
Meterpreter Helm chart tweaks
2021-11-05 15:14:19 +00:00
lib
"Working" C2 sessions with diff GET/POST uris
2025-07-10 10:46:27 +10:00
modules
First pass of TLV-based configuration and MC2
2025-07-07 13:27:03 +10:00
plugins
Unnest the method and check for UNIXSocket
2024-09-19 11:18:02 -04:00
script
Move folder descriptions into README.md files
2023-05-03 14:06:13 -05:00
scripts
Improve code quality
2025-05-27 17:27:19 -04:00
spec
Merge pull request #20160 from zeroSteiner/feat/mod/payload/php-adapters
2025-06-09 07:41:50 -05:00
test
Add LAPS data for ldap_spec
2025-04-29 14:01:23 -04:00
tools
Rubocop: Resolve Rubocop Style/RedundantRegexpArgument violations
2025-05-24 13:34:32 +10:00
.dockerignore
change docker root exec
2018-10-21 22:30:01 +02:00
.git-blame-ignore-revs
Update git-blame-ignore-revs to ignore tabs to spaces commits
2022-05-04 13:15:53 +01:00
.gitignore
Ignore .solargraph.yml config file
2023-05-17 15:03:05 -05:00
.gitleaksignore
Add gitleaksignore file
2024-10-23 10:00:17 +01:00
.gitmodules
.mailmap
Added msutovsky-r7 to mail map
2024-12-04 17:54:01 +01:00
.rspec
.rubocop.yml
Rubocop: Disable Style/FormatStringToken
2025-06-15 16:31:16 +10:00
.ruby-gemset
.ruby-version
Update ruby version 3.2.8
2025-06-03 11:20:13 +01:00
.simplecov
.snyk
Update .snyk
2024-09-20 13:53:34 +02:00
.solargraph.yml
Removed lib include line as it became redundant
2023-05-16 23:02:55 -04:00
.yardopts
remove HACKING from yardopts
2017-09-07 02:35:56 -05:00
CODE_OF_CONDUCT.md
Update CODE_OF_CONDUCT.md
2022-10-29 15:56:49 +01:00
CONTRIBUTING.md
Add AI don't
2025-03-31 10:21:18 -05:00
COPYING
Update license years, remove redundant licenses
2025-03-19 11:21:31 -04:00
cortex.yaml
PD-49865 set Cortex tags to identify repo exposure (#19876)
2025-02-13 14:46:33 +00:00
CURRENT.md
add CURRENT.md to track major changes and how to migrate with them
2018-01-18 06:35:53 -06:00
docker-compose.override.yml
Update docker Ruby version
2024-09-25 16:30:05 +01:00
docker-compose.yml
Update docker Ruby version
2024-09-25 16:30:05 +01:00
Dockerfile
Update ruby version 3.2.8
2025-06-03 11:20:13 +01:00
Gemfile
Bump rubocop from 1.75.6 to 1.75.7
2025-05-22 18:45:24 +10:00
Gemfile.local.example
Add in fix to use relative paths for Gemfile.local.example, thereby fixing review comments
2020-09-24 09:25:03 -05:00
Gemfile.lock
Bump version of framework to 6.4.70
2025-06-12 04:04:12 -05:00
LICENSE
Update license years, remove redundant licenses
2025-03-19 11:21:31 -04:00
LICENSE_GEMS
Bump version of framework to 6.4.70
2025-06-12 04:04:12 -05:00
metasploit-framework.gemspec
Update metasploit-payloads gem to 2.0.221
2025-05-22 18:24:16 -04:00
msf-json-rpc.ru
Fix bootsnap warning when booting msfrpc service
2023-08-02 17:35:11 +01:00
msf-ws.ru
Fix bootsnap warning when booting msfrpc service
2023-08-02 17:35:11 +01:00
msfconsole
Revert "Replace Readline with Reline"
2024-10-02 13:15:12 +01:00
msfd
remove msf folder requires
2021-01-18 14:21:54 +00:00
msfdb
Land #18440, Add remote webservice deletion notice
2023-11-10 10:24:34 +00:00
msfrpc
Remove extra require for a now deleted file that no longer exists
2021-03-02 10:57:07 +00:00
msfrpcd
consolidate the config directory lookups
2022-07-25 15:27:21 -05:00
msfupdate
we don't need ruby-backports anymore (or maybe we can use it more conditionally on Ruby 2.6), it uses a lot of memory
2019-12-02 09:03:58 -06:00
msfvenom
Generate machine readable msfvenom output when pipes are used
2021-05-26 11:13:49 +01:00
Rakefile
Use zeitwerk for lib/msf/core folder
2020-12-07 10:31:45 +00:00
README.md
Update README file
2024-11-12 13:35:37 +00:00
Vagrantfile
moves v.gui comment to appropriate location(s)
2020-10-08 11:59:09 -05:00

README.md

Metasploit Framework

The Metasploit Framework is an open-source tool released under a BSD-style license. For detailed licensing information, refer to the COPYING file.

Latest Version

Access the latest version of Metasploit from the Nightly Installers page.

Documentation

Comprehensive documentation, including usage guides, is available at Metasploit Docs.

Development Environment

To set up a development environment, visit the Development Setup Guide.

Bug and Feature Requests

Submit bugs and feature requests via the GitHub Issues tracker. New submissions can be made through the MSF-BUGv1 form.

API Documentation

For information on writing modules, refer to the API Documentation.

Support and Communication

For questions and suggestions, join the Freenode IRC channel or contact the metasploit-hackers mailing list.

Installing Metasploit

Recommended Installation

We recommend installation with the official Metasploit installers on Linux or macOS. Metasploit is also pre-installed with Kali.

For a manual setup, consult the Dev Environment Setup guide.

Using Metasploit

To get started with Metasploit:

  1. Start msfconsole: This is the primary interface for interacting with Metasploit.
  2. Explore Resources:

Contributing

To contribute to Metasploit:

  1. Setup Development Environment: Follow the instructions in the Development Setup Guide on GitHub.
  2. Clone the Repository: Obtain the source code from the official repository.
  3. Submit a Pull Request: After making changes, submit a pull request for review. Additional details can be found in the Contributing Guide.
Reference in New Issue View Git Blame Copy Permalink
S
Description
Metasploit Framework
Readme Multiple Licenses 1.6 GiB
Languages
Ruby 95%
PowerShell 2.7%
C 1.2%
Python 0.4%
HTML 0.2%
Other 0.1%