Brendan Coles
|
a8c459db18
|
Update description with correct patched release
|
2018-09-13 08:22:13 +00:00 |
|
Brendan Coles
|
0db1c34c40
|
Add check for Solaris system patches
|
2018-09-12 07:36:54 +00:00 |
|
Brendan Coles
|
e75b5592f7
|
Add ForceExploit option
|
2018-09-11 09:23:50 +00:00 |
|
Brendan Coles
|
d658ccf653
|
Add Solaris libnspr NSPR_LOG_FILE Privilege Escalation module
|
2018-09-11 08:11:11 +00:00 |
h00die
|
d8f2d08058
|
finish up docs and 10 exploit
|
2018-09-10 21:08:30 -04:00 |
|
h00die
|
589fb4bf3b
|
first try at ueb mix
|
2018-09-09 22:41:01 -04:00 |
Wei Chen
|
718aaca0f4
|
Land #10546, Add Apache Struts exploit: CVE-2018-11776
|
2018-09-07 14:54:23 -05:00 |
William Vu
|
f34146b288
|
Add module doc
|
2018-09-05 19:57:15 -05:00 |
asoto-r7
|
da7a29f715
|
Documentation update
|
2018-08-31 13:57:41 -05:00 |
Jacob Robles
|
e49435a766
|
Update weblogic module docs
Update the module docs to match the new name
of the module.
|
2018-08-31 06:00:41 -05:00 |
Shelby Pace
|
6ec8522786
|
Land #10482, Add Network Manager VPNC Privesc
|
2018-08-30 10:46:54 -05:00 |
|
Jacob Robles
|
9d3e1c1942
|
Land #10540, weblogic_deserialize, add check method and linux target
|
2018-08-30 06:08:03 -05:00 |
|
Jacob Robles
|
d5ad683ba6
|
More doc updates
|
2018-08-29 10:59:36 -05:00 |
|
Jacob Robles
|
88c908665d
|
Update documentation
|
2018-08-29 06:24:30 -05:00 |
|
Jacob Robles
|
086ec5bdfb
|
Fix generated strings in pdf
|
2018-08-29 06:24:20 -05:00 |
|
asoto-r7
|
b373dcc5d4
|
First draft of module and documentation for struts_namespace_rce against CVE-2018-11776
|
2018-08-28 16:53:26 -05:00 |
|
Jacob Robles
|
94e8cdac37
|
Move files to correct location
|
2018-08-28 12:38:54 -05:00 |
|
Jacob Robles
|
49c5a91fa7
|
Add linux target to weblogic_deserialize module
|
2018-08-28 11:51:04 -05:00 |
|
William Vu
|
672dbb7acb
|
Land #9364, HP PJL/SNMP CVE-2017-2741 exploit
Finally!
|
2018-08-23 22:47:09 -05:00 |
|
h00die
|
b8ce6782d9
|
Land #10517 updated docs for CloudMe Sync
|
2018-08-23 20:54:01 -04:00 |
|
Wei Chen
|
2193dd662d
|
Land #10504, add Foxit Reader UAF Module and Docs
|
2018-08-23 18:56:07 -05:00 |
|
Shelby Pace
|
5f9432ed6a
|
added rca to cloudme doc
|
2018-08-23 16:12:13 -05:00 |
Matthew Kienow
|
ecc6c473d8
|
Add note about unauthenticated telnetd service
|
2018-08-23 15:50:41 -04:00 |
|
Matthew Kienow
|
ee6bf7a77c
|
Fix documentation markdown table format
|
2018-08-23 15:23:41 -04:00 |
|
Matthew Kienow
|
18712c25cd
|
Add uname to module documentation scenario
|
2018-08-23 15:23:41 -04:00 |
|
Matthew Kienow
|
77b77287cc
|
Add module and payload documentation
|
2018-08-23 15:23:40 -04:00 |
Mumbai
|
46b45f379b
|
Add documentation for MS16 Reflection DCOM->RPC
|
2018-08-21 11:27:07 -04:00 |
|
Jacob Robles
|
fd6880d0d0
|
Add Foxit Reader UAF Module and Docs
|
2018-08-21 08:21:51 -05:00 |
Tim W
|
b8b48fd37a
|
Land #10313, add linux autostart persistence module
|
2018-08-20 18:17:50 +08:00 |
|
Tim W
|
865898cba7
|
minor fixes
|
2018-08-20 17:51:41 +08:00 |
|
Brendan Coles
|
f09148d843
|
Add documentation
|
2018-08-19 08:20:41 +00:00 |
|
Tim W
|
ac71bc86ee
|
Land #10320, add module for persistence in /etc/rc.local
|
2018-08-19 15:30:50 +08:00 |
|
Tim W
|
e38775b504
|
minor tweaks
|
2018-08-19 15:27:04 +08:00 |
Eliott Teissonniere
|
a22acf3f3e
|
Document autostart module
|
2018-08-17 14:24:28 +08:00 |
|
Jacob Robles
|
66e5685ed2
|
Moved to exploit/windows
|
2018-08-09 11:35:14 -05:00 |
|
Jacob Robles
|
228bd4c3ab
|
Add weblogic_deserialize module CVE-2018-2628
|
2018-08-08 17:55:41 -05:00 |
|
h00die
|
d299831efe
|
updated windows udf files and documentation
|
2018-08-07 14:50:47 -04:00 |
|
Tim W
|
8785ec21b6
|
Land #9884, add linux ufo priv esc module
|
2018-08-02 17:53:36 +08:00 |
|
Wei Chen
|
bcfb3d099b
|
Land #10255, Adding Micro Focus Secure Messaging Gateway RCE
|
2018-07-30 21:07:02 -05:00 |
|
Wei Chen
|
7d08c71722
|
Update documentation about how to make it vulnerable again
|
2018-07-30 21:05:46 -05:00 |
|
William Vu
|
129fd44350
|
Land #10305, SonicWall XML-RPC RCE
|
2018-07-30 14:14:26 -05:00 |
|
William Vu
|
51ffe7abba
|
Add header to doc
|
2018-07-30 14:07:54 -05:00 |
|
Jacob Robles
|
952ab801e8
|
Land #10060, vTiger CRM v6.3.0 Upload RCE
|
2018-07-30 12:32:24 -05:00 |
|
Jacob Robles
|
fe9315dc89
|
Update module, Add documentation
|
2018-07-30 12:11:08 -05:00 |
|
Wei Chen
|
32384cf850
|
Land #10387, Update mov_ss and add mov_ss_dll
|
2018-07-27 14:52:21 -05:00 |
bwatters-r7
|
d343458dc5
|
Update documentation with build instructions
remove superfluous directory
|
2018-07-27 11:31:59 -05:00 |
|
bwatters-r7
|
1981c3c24b
|
Fix documentation
|
2018-07-27 11:21:06 -05:00 |
|
bwatters-r7
|
eab62c18c6
|
Update mov_ss and add mov_ss_dll
|
2018-07-27 09:40:34 -05:00 |
|
Wei Chen
|
1bcf2f9b37
|
Land #10383, Add WP Responsive Thumbnail Slider Plugin Exploit Module
|
2018-07-26 23:53:25 -05:00 |
|
Wei Chen
|
72d634b10b
|
Update module and its documentation
|
2018-07-26 23:08:20 -05:00 |
|
Shelby Pace
|
6accca4181
|
added documentation and check method
|
2018-07-26 15:32:37 -05:00 |
|
Wei Chen
|
6c2e8f2402
|
Land #10300, Add root exploit for Axis network cameras
|
2018-07-25 14:46:04 -05:00 |
|
Wei Chen
|
f169afff6a
|
Add documentation and a new reference
|
2018-07-25 14:44:44 -05:00 |
|
h00die
|
f1e1407901
|
add musl-cross info
|
2018-07-21 14:22:27 -04:00 |
|
h00die
|
17b94f7cf3
|
add smap disabling instructions
|
2018-07-21 14:20:24 -04:00 |
|
h00die
|
85c2e5298f
|
patch up docs
|
2018-07-21 14:06:57 -04:00 |
|
h00die
|
4a9e6fac66
|
patch up docs
|
2018-07-21 14:00:29 -04:00 |
|
Brendan Coles
|
19239c72c0
|
Update cmsms_upload_rename_rce check and docs
|
2018-07-19 18:26:42 +00:00 |
|
Wei Chen
|
28e3f3a5f0
|
Land #10327, Add CMS Made Simple Upload/Rename Authenticated RCE
|
2018-07-19 12:18:12 -05:00 |
|
Tim W
|
70a1df70a1
|
Land #9753, Linux BPF sign extension local privesc
|
2018-07-18 18:44:14 +08:00 |
|
Jacob Robles
|
1e004769ca
|
CMS Made Simple Upload/Rename Authenticated RCE
|
2018-07-17 09:00:39 -05:00 |
|
Eliott Teissonniere
|
01e6362828
|
Fix documentation wording
|
2018-07-17 13:01:49 +02:00 |
|
Brendan Coles
|
6bf184dbcf
|
Update tested versions
|
2018-07-17 06:24:16 +00:00 |
|
William Vu
|
9a7c34e6e9
|
Land #10064, Claymore Dual Miner API RCE
|
2018-07-16 18:02:20 -05:00 |
|
Eliott Teissonniere
|
bfd521f2cb
|
Small note about network not available
|
2018-07-16 11:56:55 +02:00 |
|
Eliott Teissonniere
|
aa58634b24
|
Document rc.local
|
2018-07-16 09:34:20 +02:00 |
|
Jacob Robles
|
6e450973b9
|
Land #10295, Add QNAP Q'Center change_passwd Command Execution exploit
|
2018-07-14 10:09:46 -05:00 |
|
Brendan Coles
|
9bdec97b2e
|
Fix bpf_sign_extension_priv_esc
|
2018-07-13 23:01:17 +00:00 |
|
Wei Chen
|
b40a146723
|
Land #10297, Add priv escalation mod for CVE-2018-8897
|
2018-07-13 10:54:25 -05:00 |
|
Wei Chen
|
d7a0d7ecf3
|
Add some documentation for mov_ss.md
|
2018-07-13 01:17:28 -05:00 |
|
Brendan Coles
|
1ad571f136
|
Fix password typo
|
2018-07-13 16:02:15 +10:00 |
|
Brendan Coles
|
392cf3bbe1
|
Are hosts?
|
2018-07-13 15:00:31 +10:00 |
|
Brendan Coles
|
a020d48caf
|
Move module documentation to documentation directory
|
2018-07-13 04:46:25 +00:00 |
|
Brendan Coles
|
358347358f
|
Add documentation
|
2018-07-13 04:18:56 +00:00 |
|
William Vu
|
c9001699cd
|
Land #10027, Hadoop unauthed command execution
|
2018-07-12 21:58:49 -05:00 |
|
William Vu
|
50252c75d6
|
Clean up module
With a little rubocop -a.
|
2018-07-12 21:58:00 -05:00 |
|
William Vu
|
acb20e5a29
|
Land #9780, CouchDB auth bypass and RCE
|
2018-07-12 03:36:17 -05:00 |
|
Shelby Pace
|
1ded8ffb29
|
Land #10260, Add phpMyAdmin v4.8.1/4.8.0 LFI RCE
|
2018-07-11 11:10:52 -05:00 |
|
Shelby Pace
|
10cd6c99d9
|
Land #10231, Monstra Fileupload Exec
|
2018-07-10 14:23:15 -05:00 |
|
Shelby Pace
|
476a3a276f
|
modified capitalization and wording
|
2018-07-10 14:12:02 -05:00 |
Brent Cook
|
1af360d7e0
|
Land #10108, add IBM QRadar SIEM exploit
|
2018-07-10 11:52:32 -05:00 |
|
Brent Cook
|
625050767e
|
add module docs
|
2018-07-10 11:51:57 -05:00 |
|
Shelby Pace
|
b5fb970aec
|
Land #10133, Add HID discoveryd RCE exploit
|
2018-07-06 14:32:29 -05:00 |
|
Wei Chen
|
545e91af00
|
Land #10262, Add GitList argument injection exploit module
|
2018-07-06 14:28:20 -05:00 |
|
Jacob Robles
|
fe1b17684a
|
Add Targets and Session file inclusion
|
2018-07-06 12:17:26 -05:00 |
ReverseBrain
|
43d71cdc09
|
Initial Claymore Dual Miner RCE doc commit
|
2018-07-06 02:50:16 +02:00 |
|
Shelby Pace
|
5d0652fab1
|
changed inconsistent capitalization
|
2018-07-05 15:56:41 -05:00 |
|
Shelby Pace
|
2b452d5681
|
added documentation and check
|
2018-07-05 15:47:21 -05:00 |
|
Brent Cook
|
05a0d79be7
|
Land #10219, Add HP VAN SDN Controller exploit
|
2018-07-05 14:21:44 -05:00 |
|
William Vu
|
830c17f07e
|
Update outdated print in module doc
|
2018-07-05 14:18:33 -05:00 |
|
Jacob Robles
|
43096d9d78
|
Add phpMyAdmin v4.8.1/4.8.0 LFI RCE
Module and Doc
|
2018-07-05 13:33:35 -05:00 |
|
William Vu
|
53d5d82498
|
Rename module to match new vector
|
2018-07-05 13:31:16 -05:00 |
flandini
|
b00f0e87e0
|
Add SonicWall XML-RPC Remote Code Execution exploit module
|
2018-07-05 12:06:13 -05:00 |
Mehmet İnce
|
a272dcabd7
|
Fix typos and additional updates regarding to review
|
2018-07-05 13:33:40 +01:00 |
|
Mehmet İnce
|
4c1c2e9288
|
Adding Micro Focus Secure Messaging Gateway RCE
|
2018-07-04 17:47:13 +01:00 |
|
William Vu
|
12a0aaeaf1
|
Add module doc
|
2018-07-03 18:31:43 -05:00 |
|
Shelby Pace
|
8f8d015741
|
changed some wording
|
2018-07-02 09:57:28 -05:00 |
|
Shelby Pace
|
54fce378fa
|
added target versions to documentation
|
2018-07-02 09:20:17 -05:00 |
Green-m
|
7a966e7b9d
|
Change unauthorized to unauthenticated
|
2018-07-01 22:43:54 -04:00 |
Ishaq Mohammed
|
32db22804e
|
Docs Update
Docs Update
|
2018-06-30 12:45:43 +05:30 |