infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
51,630 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

8917 Commits (master)

Author SHA1 Message Date
cbrnrd 25d16fa6df
Merge branch 'cve_2019_5418' of https://github.com/cbrnrd/metasploit-framework into cve_2019_5418 2019-03-28 13:56:51 -06:00
cbrnrd 02671909e4
Fix review things 
Add depth option, fix style things, add more references.
 2019-03-28 13:56:19 -06:00
h00die 2a311931d3 oracle hashdump cleanup 2019-03-28 10:06:56 -04:00
Carter Brainerd 07075198c3
Delete old file 2019-03-27 21:32:59 -06:00
7043mcgeep f2a19d5e32
Final revisions 2019-03-27 21:53:52 -05:00
cbrnrd 58b286c930 Add some more logging and checks 2019-03-27 19:13:25 -06:00
cbrnrd 5fc0422897 Add Rails Doubletap module 2019-03-27 11:02:08 -06:00
h00die 3f9c9341f9 add 2016 authors 2019-03-26 19:39:17 -04:00
h00die 75ec3e7df6 add date and more docs 2019-03-26 16:13:42 -04:00
7043mcgeep a8ccc7eb25
Remove tabbed indents 2019-03-25 11:13:28 -05:00
7043mcgeep b91231021a
Hashdump adheres to better coding style. Add docs 2019-03-25 02:36:34 -05:00
h00die dfa1ab3a9b es file explorer 2019-03-24 08:01:32 -04:00
7043mcgeep 170d28d46b
12c hashdump supported 2019-03-23 13:37:19 -05:00
7043mcgeep d1cad4eb21
Add 12c support for hashdump 2019-03-23 13:15:38 -05:00
Brent Cook 712cbecab3
Land #11570, Add option to keep temp files with JTR modules 2019-03-22 05:16:56 -05:00
h00die 49b936f0d5 fix case of variable 2019-03-21 20:54:32 -04:00
Jacob Robles a8095b8784
Additional Options 2019-03-19 12:53:27 -05:00
Jacob Robles 65fab88a2e
Add IBM BigFix Sites Packages Enum 2019-03-19 08:51:00 -05:00
h00die 14febf69aa add no cleanup to jtr modules 2019-03-16 11:39:59 -04:00
Wei Chen 926d5842a2
Land #11547, Add Total.js Directory Traversal module 2019-03-12 16:31:21 -05:00
Fabio Cogno e906ecb163 Add a function to check extensions 2019-03-11 22:23:11 +01:00
Fabio Cogno 8822b82a28 Refactory and fix 2019-03-10 22:39:27 +01:00
Fabio Cogno 14e0643962 Refactory and fix 2019-03-10 19:33:08 +01:00
Fabio Cogno 0a5964d2a4 Add Total.js Directory Traversal module 2019-03-10 18:47:53 +01:00
Fabio Cogno eb6f0d5620 Add Total.js Directory Traversal module 2019-03-10 17:57:24 +01:00
Brent Cook 172a984d60 add deregister_tcp/udp_options 2019-03-08 16:04:32 -06:00
Brent Cook 7c97ca6a8e
Land #11535, add deregister_http_client_options 2019-03-07 18:16:14 -06:00
Wei Chen cf19a711fd
Land #11427, Add Fortinet SSL VPN Bruteforce Login Utility 2019-03-07 12:25:41 -06:00
Brent Cook 433af12942 add deregister_http_client_options 2019-03-06 19:37:56 -06:00
Brent Cook eb15c457fe
Land #11524, remove some unused bits from modules 2019-03-06 17:43:20 -06:00
Brent Cook 8b251934ab remove mixin, just register the options 2019-03-06 17:42:27 -06:00
Brent Cook d923e1fb84
Land #11523, remove unneded RHOST reregister in scanners 2019-03-06 17:35:54 -06:00
William Vu 108e90ca38
Land #11527, .rubocop.yml TargetRubyVersion update 
And TrailingCommaInArrayLiteral fixes in my modules. :(
 2019-03-05 21:29:47 -06:00
William Vu 6ff18828c0
Land #11481, Drupal SA-CORE-2019-003/CVE-2019-6340 2019-03-05 21:09:06 -06:00
William Vu 1f5695de07 Fix TrailingCommaInArrayLiteral in my modules 2019-03-05 21:02:39 -06:00
William Vu c7f12b2594 Sneak in a change to libssh_auth_bypass 2019-03-05 17:21:11 -06:00
Brent Cook b402ce628a use the correct mixin 2019-03-05 13:13:54 -06:00
Brent Cook 566060c97b remove deregistation of non-existent options 2019-03-05 13:13:54 -06:00
Brent Cook ddef5b4961 MSF5: Remove unneeded RHOST deregister in scanners 
With Metasploit 5, RHOST and RHOSTS are aliases, so no need to
deregister one or the other, as they are the same option. Deregistering
one deregisters both.
 2019-03-05 13:04:49 -06:00
Wei Chen bc29543886
Land #11397, Add checkJNDI to jboss_vulnscan plus a basic mod doc 2019-03-05 11:22:05 -06:00
Wei Chen 027c0fc100
Land #11423, Moved bruteforce(ip) under the sys_name check 2019-03-05 11:02:33 -06:00
William Vu a9f72a39d0 Fix misplaced error check in Crock-Pot module 2019-03-04 19:26:17 -06:00
William Vu 502f63c0c4 Indent SOAP requests and prefer $() over `` 2019-03-04 19:10:33 -06:00
John Q. Public a9ba765e76
Update hp_sys_mgmt_login.rb 
Removed the tab at 175.
 2019-03-04 13:37:11 -06:00
Brendan Coles 42941cfb78
Land #11500, Add more checks to cisco_directory_traversal module 2019-03-01 20:21:25 +00:00
Wei Chen 811720e85a
Land #11461, Update manageengine_deviceexpert_traversal.rb 2019-03-01 02:49:34 -06:00
Wei Chen 41a8019124 Check 404 2019-03-01 02:35:29 -06:00
Shelby Pace ca39542f7e
check res before accessing res body 2019-02-28 16:48:54 -06:00
Shelby Pace 457c740e47
added more checks for potential vulnerable devices 2019-02-28 16:25:07 -06:00
Brent Cook ca6508de67
Land #11445, always save output with winrm_cmd 2019-02-28 16:11:17 -06:00
Brent Cook b22c49679b remove some extra complication 2019-02-28 15:03:04 -06:00
John Q. Public 7435913904
Fixed the if statement on line 53. 2019-02-26 09:02:08 -06:00
y_k_oo7 31bf6a11ad Updated Module 2019-02-26 16:18:52 +05:30
John Q. Public 1150c896d3
Removed the tab at line 59. 2019-02-25 08:48:00 -06:00
William Vu fc9245fa66 Fix author names in a couple modules 
It me.
 2019-02-22 17:02:15 -06:00
John Q. Public 1eaba65da0
Update hp_sys_mgmt_login.rb 2019-02-22 11:33:36 -06:00
John Q. Public bfbda99086
Added user notification to line 56 2019-02-22 10:36:49 -06:00
John Q. Public 339918b3ef
Update manageengine_deviceexpert_traversal.rb 
Changed print_status on line 80 to print_good and added a check for /scheduleresult.de with a return is not a 200 status code.
 2019-02-22 09:27:20 -06:00
John Q. Public 9cf8ac81e4
Changing print_line to print_good 
Changing print_line to print_good on lines 258 and 267 in iis_shortname_scanner.rb
 2019-02-22 09:01:11 -06:00
y_k_oo7 97c4d8e6d9 Enhanced winrm_cmd module 2019-02-22 00:04:03 +05:30
Jacob Robles c179e5cdad
Land #11291, Add Nuuo CMS session bruteforcing module 2019-02-20 09:13:33 -06:00
Jacob Robles 49307ae6c7
Deregister unused options 2019-02-20 08:09:06 -06:00
Jacob Robles bffacff78c
Land #11293, Add Nuuo CMS file download 2019-02-20 07:06:49 -06:00
Max Michels 40b3fbaf05
removed unused lines of code 2019-02-19 22:33:10 +00:00
Jacob Robles 6d619217c5
Land #11430, Deregister RHOSTS instead of RHOST 2019-02-19 13:10:07 -06:00
Jacob Robles ce02d98dce
Minor changes 
aux:nuuo_cms_file_download
 2019-02-19 12:33:37 -06:00
Jacob Robles e383bc2763
Minor updates 
aux:nuuo_cms_bruteforce
 2019-02-19 10:24:15 -06:00
Rob Fuller db48f4bb56
Deregister RHOSTS instead of RHOST 
Fixes this module now that the RHOSTS changes are in effect.
 2019-02-18 14:59:29 -05:00
Max Michels a90777303f
Debugging ci error 2019-02-17 19:05:51 +00:00
Max Michels 49975b7549
cookie not necessary 2019-02-17 18:08:30 +00:00
Max Michels e434b6a40a
make the file for tidy 2019-02-17 17:25:04 +00:00
Max Michels 8d6114498d added domain/realm support 2019-02-17 16:56:16 +00:00
Max Michels 708ae76cba change method to follow style guide 2019-02-17 16:08:58 +00:00
John Q. Public 20f208aa53
Changed print_status to print_good on line 87 
Changed print_status to print_good on line 87
 2019-02-16 14:42:12 -06:00
John Q. Public 0e300d64dc
Moved bruteforce(ip) under the sys_name check. 
Moving the bruteforce(ip) under the sys_name check stops the script from executing against the wrong systems.
 2019-02-16 14:20:51 -06:00
Max 09b0d0fa66 adding fortinet ssl vpn bruteforce 2019-02-14 09:35:02 +01:00
William Vu 3648f598c7
Land #11399, cisco_rv320_config updates 2019-02-13 17:00:35 -06:00
asoto-r7 e671fbd037
cisco_rv320_config: Updated documentation and incorporating team feedback 2019-02-13 15:45:48 -06:00
Clément Notin 2caf98c4d0
jboss_vulnscan: add app to test auth bypass 2019-02-13 16:10:32 +01:00
Brent Cook 930d1fb78a
Land #11351, many new John the Ripper module improvements 2019-02-13 03:05:14 -06:00
Wei Chen cdc0728c44
Land #10731, Add Crock-Pot slow cooker remote control 2019-02-12 15:11:01 -06:00
William Vu 1ef451c3e6 Correct cook time to minutes, not seconds 2019-02-12 13:29:52 -06:00
William Vu a2758cc187 Actually implement ForceExploit 2019-02-12 12:18:26 -06:00
William Vu 237a42b633 Refactor check method 2019-02-11 14:31:19 -06:00
Wei Chen 810592afd7
Land #11220, Add new PCOM module to send admin commands 2019-02-11 14:03:06 -06:00
Wei Chen 160856bc42 Move module 2019-02-11 13:46:00 -06:00
Wei Chen 4b177b607f Cosmetic cleanup 2019-02-11 13:44:46 -06:00
Wei Chen ab5c59f3ba
Land #11219, New PCOM client module 2019-02-08 19:26:25 -06:00
Wei Chen c9d18b1613 Make cosmetic changes 2019-02-08 19:22:48 -06:00
Wei Chen bb97a5eba0
Land #11282, Support to retrieve data from ListConfigFiles SAP webmethod 2019-02-08 18:01:29 -06:00
h00die 25af2b4a6b \s over \r\n ipcamera 2019-02-07 15:14:13 -05:00
h00die 24b899d6d2 Merge branch 'master' of https://github.com/rapid7/metasploit-framework into ipcamera 2019-02-07 14:33:39 -05:00
William Vu 9676ed17ba
Land #11366, Cisco RV320/RV325 config dumper 2019-02-07 00:01:46 -06:00
asoto-r7 35b591a4d1
Moved files to be consistent wtih other 'auxiliary/gather' modules 2019-02-06 23:36:41 -06:00
asoto-r7 ab3729cc7b
Improved string matching for patched firmwares 2019-02-06 23:33:52 -06:00
asoto-r7 1250811e38
Added disclosure date, cleaned up conditionals, fixed parsing code 2019-02-06 23:27:18 -06:00
asoto-r7 b320662751
Putting RPORT back 2019-02-06 23:14:42 -06:00
asoto-r7 3cd4dde2f0
Added disclosure date 2019-02-06 23:13:10 -06:00
asoto-r7 ba1a03dd30
Updated registered/default options 2019-02-06 22:59:42 -06:00
asoto-r7 759960cc33
Provide feedback if the device appears to be patched 2019-02-06 21:46:13 -06:00