8ab469d3bd
Update ms14-070 module information and references
2015-02-12 09:51:01 -05:00
199dca75a6
Implement db_import and finalize plugin
2015-02-12 13:32:49 +05:00
ab42bad460
Land #4751 , enable autofail on msftidy checks
...
Also, removes the datastore check from msftidy.
Fixes #3853 , finally.
2015-02-11 15:05:07 -06:00
9b2fad24e0
Add new comment about post-merge hook
2015-02-11 13:48:13 -06:00
987fdbaeec
Remove extraneous comment
2015-02-11 13:46:25 -06:00
4cd5e8f702
Reenable post-merge hook in Travis
2015-02-11 13:41:23 -06:00
2397be6e45
Land #4749
2015-02-11 13:13:05 -06:00
e0314aa727
Land #4750 , Deprecate and msftidy on pxe exploits
2015-02-11 12:57:25 -06:00
02fe57e2a1
Bump out to April, 60ish days
2015-02-11 12:56:37 -06:00
c73892b721
Nuke datastore modification check from orbit
2015-02-11 12:46:40 -06:00
fd11afff1a
Deprecate manage/pxexploit
...
modules/post/windows/manage/pxeexploit.rb
2015-02-11 12:39:10 -06:00
58b6b7519a
Deprecate server/pxexploit
...
modules/auxiliary/server/pxeexploit.rb
2015-02-11 12:38:38 -06:00
6294cbf4de
Fix manage/pxexploit datastore
2015-02-11 12:19:59 -06:00
b894050bba
Fix local/pxeexploit datastore
2015-02-11 12:19:56 -06:00
9e717084af
Fix server/pxexploit datastore
2015-02-11 12:19:39 -06:00
7c57b9fb57
Fix Master - Pro build
...
MSP-12138
* revert to previous Rails 3 syntax.
2015-02-11 12:02:34 -06:00
1ced9a2dd7
Land #4748 , msftidy fixes for futex_requeue
2015-02-11 11:36:01 -06:00
f99ef5c0f5
fix msftidy warnings about towelroot module
2015-02-11 11:17:44 -06:00
cb1efa3edd
Improved error handling, tidied up some code
2015-02-11 10:16:18 +00:00
64b69d597a
Add report_download and db_scan APIs
2015-02-11 14:11:10 +05:00
80a086d5f6
Add WordPress Photo Gallery upload module
2015-02-11 01:03:51 +00:00
d23c9b552f
Trade MS12-004 for MS13-090 against Windows XP BrowserAutoPwn
2015-02-10 18:58:56 -06:00
22811257db
Fix #4711 - Errno::EINVA (getpeername(2)) BrowserAutoPwn Fix
...
This patch fixes #4711 .
The problem here is that the browser sometimes will shutdown some of our
exploit's connections (in my testing, all Java), and that will cause Ruby
to call a rb_sys_fail with "getpeername(2)". The error goes all the
way to Rex::IO::StreamServer's monitor_listener method, which triggers a
"break" to quit monitoring. And then this causes another chain of reactions
that eventually forces BrowserAutoPwn to quit completely (while the
JavaScript on the browser is still running)
2015-02-10 18:28:02 -06:00
73435c6d1c
Land #4743 - Bump met bins, update Linux bins.
...
Includes a merge of Gemfile.lock
2015-02-11 08:21:23 +10:00
b8b5bc95db
Land #4500 , update dependencies
2015-02-10 14:15:43 -06:00
184b4e8a13
Merge branch 'master' into feature/MSP-11141/extract-cache-from-metasploit-model
...
MSP-11141
Conflicts:
Gemfile.lock
metasploit-framework-db.gemspec
2015-02-10 14:09:18 -06:00
5df13364b2
Update to latest metasploit dependencies
...
MSP-11141
2015-02-10 14:01:49 -06:00
7ab7add721
bump meterpreter_bins to 0.0.14, update Linux binaries.
...
Hopefully the last manual build before packaging the Linux bins into
meterpreter_bins as well.
This includes all of the fixes and improvements over the past month.
rapid7/meterpreter#116
rapid7/meterpreter#117
rapid7/meterpreter#121
rapid7/meterpreter#124
2015-02-10 12:43:47 -06:00
7f2add2ce3
Land #4742 , Play Store XFO + UXSS Android RCE
2015-02-10 12:24:40 -06:00
bea9e2fca6
Land #4741 , MDM and Cred gem bumps
2015-02-10 11:48:46 -06:00
1e8f98c285
Updated description, credit, and URL
2015-02-10 11:25:13 -06:00
1b89242a75
Add module for R7-2015-02
2015-02-10 11:03:46 -06:00
d3c52f35ad
Merge branch 'wchen-r7-pr4690' into nessus-rest-api
...
Merge wchen PR and updated plugin files
1. Implement additional APIs
2. Raise NotImplementedError for the remaining four reporting APIs
2015-02-10 12:41:27 +05:00
e5fd9e70eb
clean plugin/nessus.rb implement additional APIs
2015-02-10 12:40:20 +05:00
5687028f09
Land #4671 , @earthquake's exploit for achat buffer overflow
2015-02-09 17:50:09 -06:00
6165d623ff
Change module filename
2015-02-09 17:39:55 -06:00
eb0741d7a7
Modify reference
2015-02-09 17:39:18 -06:00
0a42ac947a
Land #4737 , fix Socket Context usages
2015-02-09 17:34:03 -06:00
86f3bcad11
Do minor cleanup
2015-02-09 17:33:05 -06:00
6e8b2e4ae7
Land #4738 , msftidy falses, fixed
2015-02-09 17:32:42 -06:00
7ee5fd9b32
Fix lotus_domino to use get_cookies correctly.
2015-02-09 17:29:44 -06:00
c8a687db7f
Fix false positive in cookie check
2015-02-09 17:23:59 -06:00
4014f1929f
No random names, but store in .msf4/logs
2015-02-09 16:46:02 -06:00
ac6879cfe1
proper payload encoding from now on
2015-02-09 23:36:35 +01:00
4ed3ffa0ed
Fix false positive in snake case check
2015-02-09 16:30:19 -06:00
c7880ab4e1
hex strings related explanations
2015-02-09 23:21:38 +01:00
9a445e2027
Land #4707 , updates to finder syntax
...
Updates some Rails 3 style ActiveRecord calls to use the Rails 4 Arel
syntax, in preparation for our move to Rails 4.
Fixes #4707 , also see MSP-12018
2015-02-09 16:01:38 -06:00
13e8659c45
Bump version of metasploit-credential
...
Bumped version of metasploit-credential to pull in bumped version of
MDM, which fixes some old Rails-3 style ActiveRecord calls.
MSP-12127
2015-02-09 15:46:13 -06:00
9891026d30
sleep changed to Rex::sleep
2015-02-09 22:33:41 +01:00
4822aa5159
Land #4739 , @zeroSteiner's change to prepend_sleep powershell option check
2015-02-09 15:19:39 -06:00
Spencer McIntyre
root
Tod Beardsley
William Vu
Samuel Huckins
Sonny Gonzalez
Brent Cook
rastating
sinn3r
OJ
Trevor Rosen
Luke Imhoff
jvazquez-r7
Balazs Bucsay
Matt Buck