jvazquez-r7
a1c157a4db
Land #4609 , @h0ng10's module for Wordpress Pixabay Images PHP Code Upload
2015-02-03 17:01:32 -06:00
jvazquez-r7
eebee7c066
Do better session creation handling
2015-02-03 17:00:37 -06:00
jvazquez-r7
4ca4fd1be2
Allow to provide the traversal depth
2015-02-03 16:38:40 -06:00
jvazquez-r7
e62a5a4fff
Make the calling payload code easier
2015-02-03 16:23:04 -06:00
jvazquez-r7
61cdb5dfc9
Change filename
2015-02-03 16:13:10 -06:00
Christian Catalan
3deac54d3f
Convert find_or_initialize_by_X to Rails 4 compatible.
...
MSP-12018
2015-02-03 16:09:49 -06:00
jvazquez-r7
82be43ea58
Do minor cleanup
2015-02-03 16:07:27 -06:00
William Vu
8a17acf847
Land #4699 , fresh terp binaries from @bcook-r7
2015-02-03 15:46:28 -06:00
Tod Beardsley
b5794db973
Spelling
2015-02-03 14:10:47 -06:00
Tod Beardsley
edd5ec3b0d
Refactor and rename of @sgabe's module
...
Renamed because it's not just MBAM, and having malwarebytes in the name
is more memorable anyway.
This refactor's @sgabe's original module to prefer if/else over
unless/else, clearly labelling variables, and wrapping up discrete
functionality into specific methods, and adds an OSVDB and the original
discoverer's URL.
2015-02-03 14:08:25 -06:00
William Vu
07438d3ec4
Land #4704 , Asterisk 1.8 support for IAX2 stack
...
https://github.com/rapid7/warvox/issues/27
2015-02-02 23:11:06 -06:00
HD Moore
ffe0e52cb6
The iax2 stack now works properly with asterisk 1.8
...
Note that the requirecalltoken=no setting is still required in the asterisk configuration at this point.
2015-02-02 22:29:13 -06:00
William Vu
ef216059df
Land #4703 , IAX2 self.debugging for dprint
...
Needs to be set for iaxrecord.rb -d to work.
2015-02-02 21:52:24 -06:00
HD Moore
0ba34422d5
Pass the debugging option for IAX2 Client
2015-02-02 21:08:16 -06:00
joev
ee1af83cc8
Go ahead and trim whitespace on all commands coming in.
2015-02-02 16:56:22 -06:00
William Vu
54a5dd69a9
Land #4698 , WP GHOST scanner dead code removal
2015-02-02 16:54:09 -06:00
Brent Cook
8934854f4d
Land #4701 , @wvu-r7 decollides search_filter, fixing slow searches
2015-02-02 16:49:40 -06:00
William Vu
9e030143e7
Fix slow search due to method name conflict
...
Changed "search_filter" in enum_ad_users module to "query_filter" to
avoid conflicting with "search_filter" in command_dispatcher/core.rb.
2015-02-02 16:36:20 -06:00
Brent Cook
2fdeeb3b13
Rebuilt Java Payloads with the latest NDK/SDK and meterpreter-javapayload
...
Fix rapid7/meterpreter#95 , rebuilt with all outstanding PRs from
rapid7/metasploit-javapayload.
2015-02-02 13:09:15 -06:00
Christian Mehlmauer
c8864c93d7
remove unused code
2015-02-02 20:04:10 +01:00
Christian Catalan
797b5d0d55
Convert #find_or_create_by_x to #where().first_or_create
...
MSP-12016
2015-02-02 12:22:26 -06:00
Trevor Rosen
dda87667c9
Land #4688 , fix for pcap magic number on 2.x
2015-02-02 11:00:13 -06:00
William Vu
d5c61c01f5
Land #4694 , uninit Rex::OLE fix
2015-02-02 05:33:40 -06:00
sinn3r
26a836f5a2
Land #4692 - ms15_004_tswbproxy exploit
2015-02-02 01:21:19 -06:00
sinn3r
9112e70187
Fix #4693 - Uninit Rex::OLE in MS14-064 exploits
...
Fix #4693
2015-02-02 00:20:34 -06:00
jvazquez-r7
aa7f7d4d81
Add DLL source code
2015-02-01 19:59:10 -06:00
jvazquez-r7
d211488e5d
Add Initial version
2015-02-01 19:47:58 -06:00
jvazquez-r7
d0cf316758
Land #4659 , @pedrib's ManageEngine directory listing module
2015-02-01 14:19:46 -06:00
jvazquez-r7
128ca47aa7
Fix banner
2015-02-01 14:19:03 -06:00
jvazquez-r7
41232c0f91
Land #4758 , @pedrib's ManageEngine arbitrary file download module
2015-02-01 14:17:04 -06:00
jvazquez-r7
361aaa7551
Fix banner
2015-02-01 14:16:09 -06:00
wez3
904a99965d
Sleep 1 added
...
Sleep 1 added to reduce network usage
2015-02-01 11:55:01 +01:00
Pedro Ribeiro
39a25fc549
Update manageengine_file_download.rb
2015-02-01 10:49:48 +00:00
Pedro Ribeiro
e9b5aa94c3
Add OSVDB id and full disclosure URL
2015-02-01 10:49:11 +00:00
root
23af5f8c82
Nessus plugin for REST API
2015-02-01 13:54:35 +05:00
William Vu
7f0af0211d
Land #4682 , exploit/http/server.rb breakup
2015-02-01 01:44:43 -06:00
Samuel Huckins
b56f18ad0d
Land #4689
2015-02-01 01:22:44 -06:00
Samuel Huckins
9e6fd1879e
Fixing order clause
...
MSP-12011
* This was resulting in PGSyntaxError
2015-02-01 01:19:31 -06:00
Samuel Huckins
8a04e37de8
Updating to latest MDM, metasploit-credential
...
Rails 4 compatibility related
2015-02-01 00:49:12 -06:00
Christian Catalan
7d1090baca
Convert #find(:all) to #where or #all
2015-02-01 00:31:58 -06:00
Brandon Turner
ad374c2e4f
Use ASCII-8BIT for comparing pcap magic number
...
In Ruby 2, source files are read as UTF-8 by default. When comparing
PCAP headers, we should use ASCII-8BIT or else the comparison will not
work. This should be backwards compatible with Ruby 1.9.
MSP-12092
2015-01-31 23:57:49 -06:00
Samuel Huckins
00f99b917c
Updating to latest MDM
...
MSP-12014
* Updates find_all_by to where
2015-01-31 21:38:24 -06:00
Christian Catalan
8740fd9015
Convert #find_all_by_X to #where
2015-01-31 21:07:50 -06:00
Christian Mehlmauer
2c956c0a0f
add wordpress platform theme rce
2015-01-31 22:02:44 +01:00
Pedro Ribeiro
1f5535398d
Merge pull request #15 from jvazquez-r7/review_4658
...
Review 4658
2015-01-31 19:49:50 +00:00
Pedro Ribeiro
50c518d763
Merge pull request #14 from jvazquez-r7/review_4659
...
Clean OpManager directory content disclosure module
2015-01-31 19:48:20 +00:00
Bazin Danil
03fcfc496a
add a test to check if the file exist
2015-01-31 06:00:02 +01:00
Bazin Danil
fbb85c0391
using string concatenation for performence
2015-01-31 05:13:44 +01:00
Bazin Danil
2cf9a17f25
variable name clarification (file, file_path, path)
2015-01-31 05:07:07 +01:00
Bazin Danil
5d4a8e2f90
using store_loot
2015-01-31 05:01:28 +01:00