Commit Graph

26235 Commits (master)

Author SHA1 Message Date
Shelby Pace 392078990c
added x64 arch for targets 2019-04-17 08:29:58 -05:00
Brent Cook e2b15b3d61
Land #11733, add missing osx docs and update compatibility 2019-04-17 02:48:30 -05:00
h00die 4d2962386e save creds from password prompt spoof 2019-04-16 20:44:45 -04:00
asoto-r7 06792f7cd4
Moved documentation to 'documentation' folder 2019-04-16 14:16:52 -05:00
asoto-r7 0aaae062a4
Updated RPORT to 8090, reduced timeout of final exec.vm request to 5 sec 2019-04-16 14:13:35 -05:00
asoto-r7 8b61c5edf5
Fixed target_platform_compat to support 'Windows 10', made debugging easier 2019-04-16 13:18:00 -05:00
Imran E. Dawoodjee 6676dcb2ec
Allow user to use a file of their own choosing.
Updates to documentation and some comments in the module.
2019-04-17 00:18:27 +08:00
h00die 621c7182bf osx docs and cleanup 2019-04-15 21:01:05 -04:00
Imran E. Dawoodjee 6c798221fb
Module for CVE-2018-20250 and documentation 2019-04-16 02:21:25 +08:00
Shelby Pace 8dc8a18d2b
added documentation and changes for module 2019-04-15 08:26:11 -05:00
Jacob Robles 8adecac4cf
Land #11698, Add wp-google-maps unauth SQLi 2019-04-15 07:38:31 -05:00
Jacob Robles 5559de2458
Update documentation 2019-04-15 07:06:27 -05:00
Jacob Robles 51cb4358d6
Randomize check number 2019-04-12 14:47:34 -05:00
William Vu 6326aa5dda Clean up module and randomize username 2019-04-12 14:23:57 -05:00
rrockru 2c3aec897f Refactoring 2019-04-12 22:06:56 +03:00
William Vu 2ebee1226f
Land #11613, Cisco RV130 stack BOF exploit 2019-04-12 14:06:51 -05:00
Shelby Pace 391e7cf8ef adjusted font size and color 2019-04-12 14:01:29 -05:00
Shelby Pace d7f77fdcee getting session on linux 2019-04-12 14:01:29 -05:00
Shelby Pace 700562594c getting session on windows 2019-04-12 14:01:29 -05:00
Shelby Pace 4873b7c3e6 using a path for both Windows and Linux 2019-04-12 14:01:29 -05:00
Shelby Pace 9d0c045b0d added erb file and base for module 2019-04-12 14:01:29 -05:00
rrockru 8f3bb045b9 Refactoring 2019-04-12 22:00:23 +03:00
Quentin Kaiser 5e189196de Target consolidation. 2019-04-12 10:58:56 +02:00
Quentin Kaiser dfb1ebb2e2 Remove Stance value as it is already defined by core/exploit/cmdstager/http. 2019-04-12 10:57:50 +02:00
Brent Cook e7974e4955 bump mettle and other gems 2019-04-11 17:26:15 -05:00
rrockru 5df6560b0b Refactoring 2019-04-12 01:02:16 +03:00
rrockru 84a4e6f4a6 Refactoring 2019-04-12 00:16:45 +03:00
rrockru 82def16953 Added TRIGGER_URL option 2019-04-12 00:12:27 +03:00
asoto-r7 513b939e61
Land #11690, Add overwrite_config action to cisco_upload_file 2019-04-11 16:05:44 -05:00
rrockru 91eb29b1fe Refactoring. 2019-04-12 00:02:18 +03:00
rrockru 319eb30cce Refactoring 2019-04-11 23:54:58 +03:00
rrockru 000c35a7ad Refactoring 2019-04-11 23:39:50 +03:00
William Vu db0803136a Add lost registered option DUMP_OUTPUT
Oops, I forgot this in the refactor.
2019-04-11 12:21:11 -05:00
rrockru c0b4e7701f Fix docs 2019-04-11 17:54:10 +03:00
rrockru eab1f6ca54 Added Atlassian Confluence exploit documentation 2019-04-11 17:52:08 +03:00
rrockru 7881d627ca Add Atlassian Confluence RCE exploit 2019-04-11 15:55:51 +03:00
Jacob Robles 236a3ee2f5
Rename files 2019-04-11 07:04:57 -05:00
Jacob Robles 91fec97cd7
Update run logic, fix create_credential usage 2019-04-11 06:54:19 -05:00
Jacob Robles 54abfcbc2c
Update check logic 2019-04-11 06:21:40 -05:00
Jacob Robles 1b2b752bef
Remove rescue that is handled in HttpClient mixin 2019-04-11 06:20:48 -05:00
Jacob Robles 9385fbc3b7
Change date format 2019-04-11 06:18:52 -05:00
asoto-r7 b32d116e9a
Land #11669, exploit/windows/fileformat/microsoft_windows_contact 2019-04-10 17:18:33 -05:00
asoto-r7 94785dabbb
Renamed module from 'microsoft_windows_contact_remote_code_execution' to 'microsoft_windows_contact' 2019-04-10 17:17:50 -05:00
asoto-r7 62bf38d530
Simplified user options, recreated CONTACT template from a clean file 2019-04-10 17:14:04 -05:00
William Vu d72672feed
Land #11672, Zimbra XXE and SSRF exploit 2019-04-10 09:58:45 -05:00
ct5595 a8535b9b20 Merge branch 'master' of github.com:ct5595/metasploit-framework into cisco_running_config 2019-04-10 08:42:59 -04:00
Shelby Pace 4d0a41ff1a
Land #11657, add Horde form file upload 2019-04-09 13:47:59 -05:00
Shelby Pace 4018d47b65
changed if not to unless 2019-04-09 13:43:54 -05:00
ct5595 517cc36841 restore variables ciscoFlashCopyEntryStatus
and ciscoFlashCopyCommand for checking if the host is alive and
that the community is valid to prevent putting these in every action
2019-04-09 09:01:33 -04:00
Synacktiv e9dd2f4f06
Store the whole JSON response 2019-04-09 13:59:44 +02:00
Synacktiv b2422ab661
Remove use of service_details 2019-04-09 13:45:17 +02:00
Synacktiv 3d51fdb003
Improve send_sql_request 2019-04-09 13:42:43 +02:00
Quentin Kaiser 3517a4e237 Adapt ranking and mention potential stability issue. 2019-04-09 11:31:15 +02:00
RatioSec Research b56e171172 Fix extraction of session tokens 2019-04-09 09:28:52 +01:00
ct5595 56c38b8205 Merge branch 'master' of github.com:ct5595/metasploit-framework into cisco_running_config 2019-04-08 16:34:17 -04:00
ct5595 2412aa7472 fixed EOL errors from msftidy 2019-04-08 16:29:36 -04:00
ct5595 403cf825a8 modify cisco_upload_file to include actions
default action is Upload_File, which was the original function
the new action Override_Config will override the running config
2019-04-08 16:12:21 -04:00
ct5595 f34314547b update description to reflect upcoming changes and add ct5595 to list of authors 2019-04-08 13:55:13 -04:00
Brent Cook e32bb9e915
Land #11682, don't check 'localhost' unconditionally, fix headers 2019-04-08 10:39:18 -05:00
ct5595 9a7d5d96f5 remove previous changes 2019-04-08 09:39:35 -04:00
ct5595 d848361dc6 Added ct5595 to the list of authors 2019-04-08 09:19:17 -04:00
ct5595 8762bd0842 Merge branch 'master' of github.com:ct5595/metasploit-framework into cisco_running_config 2019-04-08 09:13:55 -04:00
Synacktiv ab1926b7ee
Create wp_google_maps_sql_injection.rb 2019-04-08 10:50:41 +02:00
Pearce Barry 7e62a69e16
Land #11660, Update use_single_quotes to wrap_double_quotes 2019-04-06 15:44:39 -05:00
Shelby Pace fff129ae9f
Land #11587, add Wordpress core RCE module 2019-04-04 15:22:56 -05:00
Shelby Pace 6efd80e139
added note in info 2019-04-04 15:19:58 -05:00
Shelby Pace 2884d9afcb
modified checks, added function 2019-04-04 15:09:12 -05:00
ct5595 8786150bdf Added functionality for OVERRIDE_CONFIG option 2019-04-04 10:43:08 -04:00
ct5595 b5449b7035 Added OVERRIDE_CONFIG option to cisco_upload_file.rb 2019-04-04 09:47:42 -04:00
William Vu e164c2350c Properly encode command input with XML entities
REXML would make this less ghetto.
2019-04-03 19:10:27 -05:00
Shelby Pace d5ac1e3a33
minor adjustments to indentation and requests 2019-04-03 19:03:47 -05:00
Javan Rasokat 8350effaa5
Fixed wrong check (did never work)
* HOST was always localhost 
* Now sends both Range and the legacy 'Request-Range'
TODO: Method HEAD is not always sufficient, should be editable
2019-04-03 16:23:58 +02:00
Ben Schmeckpeper 7d1f6afd4a Remove trailing space from CVE reference 2019-04-03 09:21:55 -05:00
todb-r7 9e3984ea51
Remove duplicate CVE for Mailcleaner module
See #11304
2019-04-02 12:51:09 -05:00
cbrnrd 18286ca2f7
Use start_with? instead of [0] 2019-04-02 13:43:30 -04:00
cbrnrd f353df952c
Use fail_with() instead of return 2019-04-02 13:42:07 -04:00
wilfried 3081b13a1f Adding payload in exploit code 2019-04-02 10:24:48 +02:00
surefire 1b6cd64016 Land #11136, exploit/multi/misc/weblogic_deserialize_unicastref 2019-04-01 18:15:26 -05:00
surefire 40191e5a01 Dissected JSOs, randomized strings, copied T3 header breakdown from @acamro 2019-04-01 18:05:45 -05:00
Jacob Robles 3d662bd962
Fix words because words... 2019-04-01 17:21:23 -05:00
Jacob Robles 69062bb220
Syntax fixes 2019-04-01 17:05:42 -05:00
William Vu 06397bb087
Land #11636, postgres_createlang version check fix 2019-04-01 15:21:57 -05:00
surefire f292befed4 Land #11134, exploit/multi/misc/weblogic_serialize_marshalledobject 2019-04-01 14:11:30 -05:00
surefire 4d0e47044b Fixed a hardcoded payload length resulting in 40% failures 2019-04-01 14:05:39 -05:00
Brendan Coles ddbd7ba080 Case insensitive match 2019-04-01 18:58:14 +00:00
William Vu 5867158238
Land #11595, can_flood post module 2019-04-01 12:38:46 -05:00
William Vu f5f4c4bec2 Clean up module 2019-04-01 12:24:35 -05:00
Jacob Robles c07b015734
File cleanup 2019-04-01 11:39:40 -05:00
Jacob Robles 51d1216953
Update module name 2019-04-01 07:48:26 -05:00
Jacob Robles 0873ba7ac1
Add Zimbra XXE to RCE module 2019-04-01 07:32:57 -05:00
cbrnrd 0069eed4e2
Add datastore option for printing results 2019-03-31 17:58:23 -04:00
Aaron Ringo 22c3fe35f7 Changed hook payload to redirect errors, to not show up on target screen 2019-03-31 12:09:40 -05:00
BrennerLittle e733d225b6
microsoft_windows_contact_remote_code_execution 2019-03-31 11:12:09 -05:00
Aaron Ringo 299334ae7f fixed bug where alphanumeric was never hit 2019-03-30 22:51:18 -05:00
Aaron Ringo 38bf99e729 Re-add of module after jacking up rebase, with new arches,conditional logic, documentation 2019-03-30 22:04:21 -05:00
PietroBiondi 2afd27a671 1)Fixed documentation format 2)Refactoring and more efficient loop 2019-03-30 17:12:15 +01:00
William Vu 496f270b30 Update use_single_quotes to wrap_double_quotes 2019-03-29 18:14:56 -05:00
Brent Cook 82b7c926fe
Land #11579, Add support for splunk 7.2.4 to splunk_upload_app_exec 2019-03-29 16:22:26 -05:00
Brent Cook 9c38d58e9f
Land #11625, add es file explorer open port CVE-2019-6447 module 2019-03-29 15:46:09 -05:00
RatioSec Research 5c84e9e61a Remove web root guessing since not reliable 2019-03-29 16:16:06 +00:00