infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
51,022 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

51022 Commits (180c395aa3f988b874227be79930e855a529d5bc)

Author SHA1 Message Date
Wei Chen 811720e85a
Land #11461, Update manageengine_deviceexpert_traversal.rb 2019-03-01 02:49:34 -06:00
Wei Chen 41a8019124 Check 404 2019-03-01 02:35:29 -06:00
Shelby Pace ca39542f7e
check res before accessing res body 2019-02-28 16:48:54 -06:00
Shelby Pace 457c740e47
added more checks for potential vulnerable devices 2019-02-28 16:25:07 -06:00
Metasploit 78605d5585
automatic module_metadata_base.json update 2019-02-28 14:21:59 -08:00
Brent Cook ca6508de67
Land #11445, always save output with winrm_cmd 2019-02-28 16:11:17 -06:00
William Vu e67e2a5477
Land #11497, file: RHOSTS fix for exploits 2019-02-28 16:03:47 -06:00
Brent Cook b22c49679b remove some extra complication 2019-02-28 15:03:04 -06:00
Metasploit 1979b18c0a
Bump version of framework to 5.0.10 2019-02-28 10:07:33 -08:00
Adam Cammack 6b4a1f60c6
Add initial docs for the `jobs` command 2019-02-28 11:06:44 -06:00
Adam Cammack 34b7d48a31
Add initial msfconsole doc with range building doc 2019-02-28 10:54:01 -06:00
Adam Cammack 3aea9bc477
Fix `check` to use all the IP addresses passed 2019-02-28 10:52:26 -06:00
Brent Cook 0c253ab085 add file: support for RHOSTS option on exploit modules 2019-02-28 06:01:30 -06:00
William Vu 14a7fbe4cc
Land #11493, file: RHOSTS fix for aux modules 2019-02-27 21:06:53 -06:00
Brent Cook 9dbbea8973 Further improve / fix RHOSTS support for aux modules 
Peleus notes that when pulling more than a few RHOSTS targets from the database, MSF writes the intermediate results to a text file instead of leaving them in memory. The aux module check of instantiating a RangeWalker for validation is necessary but insufficient for validating 'file:' RHOSTS specifications.

This clones logic used in the 'check' method in exploit modules to be able to handle file: properly. I suspect this may need to be consolidated and implemented elsewhere tool.
 2019-02-26 22:18:45 -06:00
rsp3ar b5587b926c Add ForceExploit and fix code ident 2019-02-26 19:59:31 -08:00
h00die 7394b5bf25
Land #11447 http doc fixes 2019-02-26 20:26:35 -05:00
h00die 73b743306b minor doc fix 2019-02-26 20:26:06 -05:00
h00die 146828124e
land #11455 telnet scanner doc improvements 2019-02-26 19:11:26 -05:00
rotemreiss 2c2e1f0615
Remove custom imp. in favor of library change 
Remove custom full_uri implementation in favor of a library change in #11485 which adds vhost support in the full_uri method.
 2019-02-26 13:35:32 -05:00
William Vu d11d391e17
Land #11485, VHOST support for full_uri 2019-02-26 10:35:50 -06:00
William Vu 1fca26de49
Land #11467, CMDSTAGER::TEMP with WritableDir 2019-02-26 10:34:43 -06:00
Brent Cook e2298393b3
Land #11486, fix running non-scanner aux modules 
Merge remote-tracking branch 'upstream/pr/11486' into upstream-master
 2019-02-26 09:40:53 -06:00
John Q. Public 7435913904
Fixed the if statement on line 53. 2019-02-26 09:02:08 -06:00
y_k_oo7 7624d06f83 Fixed 2019-02-26 19:55:13 +05:30
y_k_oo7 31bf6a11ad Updated Module 2019-02-26 16:18:52 +05:30
y_k_oo7 a32dda974d Fixed Docs 2019-02-26 14:18:41 +05:30
terrorbyte 24fa3a367d
Added directory creation to all the paths from systemd.unit(5) 2019-02-25 23:40:30 -06:00
Brent Cook 287667d4f7 simplify check 2019-02-25 21:59:54 -06:00
terrorbyte f6a402c999
Fix tabs in the previous commit and fix style issues. 2019-02-25 21:24:13 -06:00
Brent Cook 0b4d67a978 delete test, seems the sanity mechanism isn't ready for aux modules 2019-02-25 17:01:37 -06:00
Brent Cook 8de62af236 add tftp server test 2019-02-25 16:43:39 -06:00
rotemreiss af1f2ebed9
Add documentation in .md file 2019-02-25 17:27:45 -05:00
rotemreiss a6148f7733
Code improvements and fixes 2019-02-25 17:24:34 -05:00
Brent Cook e9e29580a7 Fix several bugs running non-scanner aux modules 
This fixes a couple of bugs in #11176:

 - RHOSTS is not always used in Aux modules, don't enforce it unless it's used.
 - Be sure to pass the action to the run stub, since it's not a standard option.
 2019-02-25 16:19:57 -06:00
William Vu d55fbdfbe5 Add VHOST support to full_uri 2019-02-25 14:45:26 -06:00
Metasploit d78a9978e0
automatic module_metadata_base.json update 2019-02-25 12:28:18 -08:00
rotemreiss edf7c41478
Code smells and documentation 2019-02-25 15:21:46 -05:00
Brent Cook bf85fd6d64
Land #11483, update various modules to reflect current best practices 
Merge remote-tracking branch 'upstream/pr/11483' into upstream-master
 2019-02-25 14:18:55 -06:00
rotemreiss 54ce49c4e6
Feedback from PR fixes 2019-02-25 14:09:07 -05:00
William Vu c769555557 Clarify why WfsDelay was repurposed 2019-02-25 12:19:03 -06:00
William Vu 5c84330c18 Clarify DUMP_OUTPUT description once more 2019-02-25 12:06:20 -06:00
William Vu b5368ed2e4 Add sleep(wfs_delay) back to drupal_drupalgeddon2 
And drop WfsDelay back down to 2. I see why I did it in the first place.
 2019-02-25 12:02:31 -06:00
William Vu cb962a22ef Add WfsDelay back to drupal_drupalgeddon2 
And bump it to 10, though 2 worked in testing.
 2019-02-25 11:44:02 -06:00
William Vu f35a13d795 Fix exploit/multi/http/oracle_ats_file_upload 2019-02-25 11:35:34 -06:00
William Vu f534fd9755 Fix exploit/multi/http/apache_jetspeed_file_upload 2019-02-25 11:32:06 -06:00
Brent Cook 8d069e4888
Land #11446, add msftidy support for SideEffects Stability Reliability check 2019-02-25 11:25:04 -06:00
Brent Cook 8cc3070cc8 don't require whitespace 2019-02-25 11:24:30 -06:00
William Vu 53bf15b184 Fix exploit/multi/http/struts2_rest_xstream 2019-02-25 11:18:27 -06:00
William Vu 6ecb4bc4a7 Fix exploit/unix/webapp/drupal_drupalgeddon2 2019-02-25 11:18:20 -06:00