adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
3f2e32ef6a5f0ec003acef910e25eebbf85ed270
metasploit-gs/lib/msf/core/exploit
T
History
Jack Heysel 31cf0e2633 Land #18764, Add unauth Jenkins file read module 
This PR adds a new module to exploit CVE-2024-23897, an unauth arbitrary
(first 2 lines) file read on Jenkins.
2024-03-28 13:29:39 -07:00
..
cmd_stager
Fix missing return in HTTP CmdStagers
2023-05-25 22:22:23 -05:00
format
added MIME, added break in mixin and added link with installation instructions
2023-03-09 09:28:46 -06:00
git
Add in additional YARD documentation fixes
2023-03-05 20:56:54 -06:00
local
Land #18626, SaltStack Minion Deployer
2024-01-23 11:58:38 -05:00
powershell
code spell for a bunch of modules
2023-09-24 17:42:00 -04:00
remote
Land #18764, Add unauth Jenkins file read module
2024-03-28 13:29:39 -07:00
smb
sqli
code spell for a bunch of modules
2023-09-24 17:42:00 -04:00
android.rb
auto_target.rb
brute_targets.rb
brute.rb
code spell for a bunch of modules
2023-09-24 17:42:00 -04:00
capture.rb
code spell for a bunch of modules
2023-09-24 17:42:00 -04:00
cmd_stager.rb
code spell for a bunch of modules
2023-09-24 17:42:00 -04:00
dect_coa.rb
dhcp_server.rb
egghunter.rb
exe.rb
file_dropper.rb
file_dropper_exist? needs to test if teh path if either a file or a directory, the logic for shell sessions on wqindows is testing if a path if a file and not a directory. this is wrong. Origionally FileDropper only supported cleaningup files, so this logic made sense (it was copied over from teh File post moduile) but FileDropper has since supported directories so teh logic here neds to reflect that.
2024-02-19 09:12:17 +00:00
fileformat.rb
format_string.rb
git.rb
http.rb
java_deserialization.rb
code spell for a bunch of modules
2023-09-24 17:42:00 -04:00
java.rb
jsobfu.rb
kernel_mode.rb
local.rb
ntlm.rb
omelet.rb
oracle.rb
pdf_parse.rb
pdf.rb
php_exe.rb
powershell.rb
code spell for a bunch of modules
2023-09-24 17:42:00 -04:00
remote.rb
retry.rb
Rename the function to emphasize truthy
2022-05-13 09:16:01 -04:00
riff.rb
rop_db.rb
ruby_deserialization.rb
It made the gadgets being used more readable
2022-12-06 17:47:49 +01:00
seh.rb
sqli.rb
tftp_server.rb
view_state.rb
Move viewstate signing logic into Rex
2024-02-27 14:37:55 -05:00
wbem_exec.rb
windows_constants.rb