bwatters-r7
28fb27187a
Land #10418 , Add DCOM/RPC NTLM Reflection (MS16-075) Via Reflective DLL
...
Merge branch 'land-10418' into upstream-master
2018-10-04 16:54:53 -05:00
bwatters-r7
ce59964141
Recompile binaries and prep for VS2013 compiles
2018-10-04 16:21:23 -05:00
Wei Chen
92ac5635b1
Support module documentation
2018-10-03 23:35:30 -05:00
space-r7
a0052c7f47
Add evasion module using HTA + JavaScript + C#
2018-10-01 12:57:05 -05:00
Brent Cook
1607c2b890
Land #10428 , Update Windows MySQL UDF files, add docs
2018-09-24 21:11:52 -05:00
Wei Chen
02ef565730
Update evasion_module_type branch
2018-09-24 08:20:32 -05:00
7echSec
cd3b139642
Adding UnmarshalPwn.exe
...
Compatible with Visual Studio 2013.
2018-09-21 17:24:50 +05:30
7echSec
545e488486
Uploading new UnmarshalPwn.exe
...
As per the bwatters-r7 comment I am uploading new UnmarshalPwn.exe complied with platform toolset 120
2018-09-21 17:18:39 +05:30
Jacob Robles
c76f095cd0
Inject Payload to Memory First
2018-09-19 21:13:49 -05:00
Jacob Robles
dfa030c2df
Use System Directory
2018-09-19 08:49:12 -05:00
William Vu
6a63feced4
Merge remote-tracking branch 'upstream/master' into pr/10418
2018-09-18 19:54:44 -05:00
Dhiraj Mishra
89b0ac6f87
Adding suport files
2018-09-18 14:59:43 +05:30
Jacob Robles
83af598e6a
Updated VS solution and module
2018-09-17 17:38:19 -05:00
bwatters-r7
f38e6f45ce
Redo dllinjection
2018-09-14 17:47:53 -05:00
asoto-r7
4cf344dd83
WIP: Initial CVE-2018-8440 / ALPC-TaskSched-LPE
2018-09-13 18:00:20 -05:00
Wei Chen
d23b252393
Land #10592 , support ERB for foxit_reader_uaf.rb
2018-09-05 21:48:52 -05:00
Wei Chen
254e8b9fd0
Cleanup for foxit_reader_uaf
2018-09-05 21:47:57 -05:00
William Vu
1491f13bd5
Add Ghostscript failed restore exploit
2018-09-05 19:56:32 -05:00
Shelby Pace
55bf6e5dd4
removed require in erb file
2018-09-05 18:09:29 -05:00
Shelby Pace
60cdd6dfe2
added erb file for foxit_reader_uaf exploit
2018-09-05 14:07:56 -05:00
Wei Chen
5c6b33bcf4
Add support for evasion targets, also module doc
2018-08-31 11:45:29 -05:00
7echSec
540e2699a6
Adding unmarshalpwn.exe
2018-08-30 21:31:14 +05:30
7echSec
8b02d2620c
Adding support files
2018-08-30 21:30:28 +05:30
7echSec
d365001ddd
Adding support files.
2018-08-30 21:29:45 +05:30
Tod Beardsley
feb4b78227
Add Lumpy Space Princess's password
...
http://adventuretime.wikia.com/wiki/Trouble_in_Lumpy_Space
2018-08-20 16:28:21 -05:00
Tod Beardsley
10d5f32b92
None of these should be executable
2018-08-20 16:25:34 -05:00
h00die
d299831efe
updated windows udf files and documentation
2018-08-07 14:50:47 -04:00
Mumbai
4a88d643ba
adding reflective Potato
2018-08-03 02:09:24 -04:00
Tim W
8785ec21b6
Land #9884 , add linux ufo priv esc module
2018-08-02 17:53:36 +08:00
bwatters-r7
d343458dc5
Update documentation with build instructions
...
remove superfluous directory
2018-07-27 11:31:59 -05:00
bwatters-r7
b4792e08a4
Combine the modules and update the binaries
2018-07-27 11:08:04 -05:00
Wei Chen
b404a5fbe4
Add a license
2018-07-19 10:04:47 -05:00
Wei Chen
f2fd24780c
Add support for XOR
2018-07-18 23:13:45 -05:00
Wei Chen
1534613cda
Add Base64 support
2018-07-18 20:07:27 -05:00
Wei Chen
999d0e994f
Add RC4 decryption
2018-07-18 19:50:46 -05:00
Tim W
70a1df70a1
Land #9753 , Linux BPF sign extension local privesc
2018-07-18 18:44:14 +08:00
William Vu
f93e4a24a9
Fix typo
2018-07-17 12:59:00 -05:00
Brendan Coles
6cd1593061
Add support for HTTP POST and Basic Auth to psnuffle
2018-07-15 14:16:37 +00:00
Brendan Coles
9bdec97b2e
Fix bpf_sign_extension_priv_esc
2018-07-13 23:01:17 +00:00
bwatters-r7
156b822401
First stab at cve-2018-8897
2018-07-12 17:31:53 -05:00
Brendan Coles
f14d06b9d1
Fix ufo_privilege_escalation
2018-07-08 11:05:30 +00:00
bwatters-r7
29f4870fa0
Land #10101 , Add glibc 'realpath()' Privilege Escalation exploit
2018-06-12 16:41:07 -05:00
Jacob Robles
ad249ad62b
Sort Wordlist
2018-06-07 11:34:07 -05:00
Jacob Robles
cf962b28a5
Add Lync Subdomain Wordlist
2018-06-06 13:05:56 -05:00
Aaron Soto
f53d2a14df
Land #10067 , Added `auxiliary/fileformat/odt_badodt`
2018-06-06 11:27:23 -05:00
Chris Higgins
78bcd57694
Land #10092 , Cleanup linux/local/recvmmsg_priv_esc
2018-06-04 10:32:35 -05:00
Brent Cook
61a98b94b6
Land #9528 , WebKit apple safari trident exploit (CVE-2016-4657)
2018-06-02 21:52:52 -05:00
Tim W
2ec7f11b90
add binary
2018-05-30 18:02:17 +08:00
Brendan Coles
0af5d44c42
Add glibc 'realpath()' Privilege Escalation exploit
2018-05-26 21:25:59 +00:00
Brendan Coles
651fb69585
Cleanup linux/local/recvmmsg_priv_esc module
2018-05-24 17:56:07 +00:00
Wei Chen
cab2daf4ed
Add Winsock2 API for Metasploit::Framework::Compiler::Windows
2018-05-24 11:57:41 -05:00
rmdavy
e82cb8351f
Add files via upload
...
New Location for files needed to build badodt file
2018-05-24 09:45:38 +01:00
follower
57bb7fd819
Add correct filename for `/etc/group`
...
AFAICT the correct filename is the singular form `group` not `groups` (e.g. [see](https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/4/html/Introduction_To_System_Administration/s3-acctspgrps-group.html ) & [see](https://linux.die.net/man/5/group )).
Rather than just correcting the filename in place I'm adding the correct form because when even [official Red Hat documentation](https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.3_release_notes/bug_fixes_authentication_and_interoperability#idm140113937457168 ) sometimes gets it wrong, maybe one day someone will get lucky with the misspelling.
2018-05-22 00:12:20 +12:00
Tim W
88ab836e15
Land #9987 , AF_PACKET chocobo_root exploit
2018-05-21 17:05:53 +08:00
bwatters-r7
294b263159
Land #9966 , Add Reliable Datagram Sockets (RDS) Privilege Escalation exploit
...
Merge branch 'land-9966' into upstream-master
2018-05-18 17:06:04 -05:00
Brent Cook
eadb464a75
add licenses
2018-05-17 21:21:37 -05:00
Wei Chen
e5c763f6bf
Add support for stdio.h, stdlib.h, and String.h
2018-05-17 14:40:49 -05:00
Tim W
6594cbb5cc
Land #9947 , AF_PACKET packet_set_ring exploit
2018-05-17 18:43:52 +08:00
Brendan Coles
4322e56c71
Recompile pre-compiled exploit executable (stripped, no DEBUG)
2018-05-17 09:43:07 +00:00
Brent Cook
da07113194
Land #10007 , add C interface for building Windows shell code (metasm-backed)
2018-05-16 22:58:32 -05:00
Tim W
ce5b24eda0
fork early and cleanup files in module
2018-05-17 00:32:01 +08:00
Tim W
ed5f2bffa9
Land #9919 , add libuser roothelper privilege escalation exploit
2018-05-12 17:11:21 +08:00
Wei Chen
6cd59faa69
Namespace update
2018-05-11 10:27:54 -05:00
Wei Chen
76865732c8
Namespace update
2018-05-11 10:26:59 -05:00
Wei Chen
82c8138de0
Update naming and license
2018-05-11 10:08:16 -05:00
Wei Chen
caf07116db
Add compiler support capable of including headers.
...
This is basically a wrapper for metasm, but supports built-in
headers so that as an user, I don't have manually do this
every time I compile something with metasm.
2018-05-10 00:33:01 -05:00
Brendan Coles
5ae9b0185d
Add AF_PACKET chocobo_root Privilege Escalation exploit
2018-05-07 07:11:07 +00:00
bwatters-r7
ce5be387c4
Land #8795 , Added CVE-2016-0040 Windows Privilege Escalation
...
Merge branch 'land-8795' into upstream-master
2018-05-03 16:33:53 -05:00
bwatters-r7
729461e448
Re-add compiled Binary
2018-05-03 15:50:15 -05:00
bwatters-r7
16432efd8f
Remove binary file
2018-05-03 14:45:58 -05:00
Brendan Coles
3a688451b6
Add Reliable Datagram Sockets (RDS) Privilege Escalation
2018-05-03 12:51:21 +00:00
Brendan Coles
f7504dd9d5
Add AF_PACKET packet_set_ring Privilege Escalation exploit
2018-04-28 01:40:17 +00:00
Brendan Coles
00583caadf
Add Libuser roothelper Privilege Escalation exploit
2018-04-23 17:49:11 +00:00
h00die
2914ebf631
lpe ufo
2018-04-17 20:39:59 -04:00
bwatters-r7
0faf2f4e04
Land # 8007, Added NTDSgrab module to metasploit.
...
Merge branch 'land-8007' into upstream-master
2018-04-03 15:56:37 -05:00
Tim W
c5039251a2
add CVE-2016-4655
...
rebase
2018-04-03 14:58:57 +08:00
William Vu
862a3ff74d
Land #9618 , pipe auditing improvements
2018-03-26 17:01:48 -05:00
h00die
6b0691a91a
cve-2017-16995
2018-03-23 21:09:56 -04:00
Auxilus
6e9a4916f5
scanner update
2018-03-13 00:23:18 +05:30
Auxilus
2b7364a637
Add wordlist
2018-03-09 21:46:07 +05:30
Auxilus
1342284dc9
Add wordlist
2018-03-09 21:38:59 +05:30
Matthew Kienow
8453bc7f01
Correct metasploit heart banner filename
2018-03-02 17:23:34 -05:00
Matthew Kienow
952c112f4a
Add metasploit heart banners
2018-03-01 15:18:58 -05:00
Tim W
a01f0f3023
fix #9366 , fix osx x64 stage location
2018-02-20 13:50:44 +08:00
h00die
285b329ee1
Land #9422 abrt race condition priv esc on linux
2018-02-11 11:58:39 -05:00
Matthew Kienow
2eca3b925b
Land #9491 , remove extra HTML from doc templates
2018-02-02 18:15:02 -05:00
Brent Cook
955bb5e38a
remove extra HTML from doc markdown templates
2018-02-02 17:02:23 -06:00
Brent Cook
0a3fe0c608
fix html escaping for UTF-8 module metadata
2018-02-02 16:35:50 -06:00
h00die
7cb0a118c1
Land #9399 a linux priv esc against apport and abrt
2018-02-01 21:54:54 -05:00
Brent Cook
aae77fc1a4
Land #9349 , GoAhead LD_PRELOAD CGI Module
2018-01-22 23:10:36 -06:00
Matthew Kienow
035cdb1bca
Add v5 under construction banner
2018-01-17 17:24:28 -06:00
Brendan Coles
5e11d36351
Add ABRT raceabrt Privilege Escalation module
2018-01-16 14:52:33 +00:00
Brendan Coles
2f3e3b486a
Use cross-compiled exploit
2018-01-13 05:44:42 +00:00
Brendan Coles
8bbffd20cd
Add Apport chroot Privilege Escalation exploit
2018-01-12 07:25:35 +00:00
dmohanty-r7
a5fa63405f
Land #9206 , Add Xplico RCE exploit module
2018-01-03 16:02:51 -06:00
HD Moore
0b9fbe5a63
Resolve a bug in reverse_tcp and segfaults across payloads
2017-12-29 14:18:55 -06:00
HD Moore
ab8886e25c
Updated payloads and addition of payload stubs
2017-12-28 16:21:37 -06:00
Jon Hart
d4bc98c13f
Merge branch 'upstream-master' into feature/mqtt-login
2017-12-22 08:07:40 -08:00
William Vu
caae33b417
Land #9170 , Linux UDF for mysql_udf_payload
2017-12-21 20:48:24 -06:00
Jon Hart
37ae5e1303
Add admin as a default unix passwd
2017-12-20 18:44:21 -08:00