Valentin Lobstein
db3654eebf
- Fix http_send: use standalone Rex::Proto::Http::Client to avoid SMTPDeliver/HttpClient connect() method conflict - Fix cmd/dropper PHP stub: remove double $$ variable (vars[:cmd_varname] already includes $ prefix) - Fix cmd/dropper unlink: use cleanup POST param instead of inline @unlink to preserve shell across multiple stager requests - Fix wait_for_cron: use .to_i % fetch for correct modulo calculation - Fix dir_exists?: use res&.redirect? instead of res&.code == 301 - Fix docs: RHOSTS -> RHOST (SMTPDeliver registers singular RHOST) - Remove manual Date header (SMTPDeliver handles it) - Update scan_paths comment to reflect MD5 digit extraction - Replace php_exec_cmd with manual preamble + system_block stub
This is the folder where all of Metasploit's modules live. These modules are scripts in Ruby that interface with
Metasploit itself to perform some specific task. There are various types of modules, such as exploit modules to
exploit a vulnerability and gain a shell, auxiliary to perform a non-shell gaining activity, payloads for
Metasploit's various payloads (which are also modules), and post for post exploitation modules.