infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
48,259 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

48259 Commits (1ec1b3b493f24505c8cc9e5cb9ecb9038dda476f)

Author SHA1 Message Date
William Vu 98aba35b29 Add msfvenom -l arches like -l platforms 2018-08-23 21:54:29 -05:00
William Vu 318ff95dbd Remove trailing whitespace from netcat payloads 
This has been bugging me for so long.
 2018-08-23 21:33:58 -05:00
William Vu 4ff2c1dbe8 Add brace expansion encoder 2018-08-23 21:33:43 -05:00
William Vu eeea3356ae Update ${IFS} encoder 2018-08-23 21:33:42 -05:00
William Vu 7c0dd2a0fe Add CmdUnixBrace and update CmdUnixIfs 
Acronyms can be capitalized as per the Ruby style guide.
 2018-08-23 21:18:09 -05:00
h00die 8213c21dc9
Land #10467 documentation for postgresql hashdump 2018-08-23 21:35:05 -04:00
h00die a866bdd09d slight syntax updates to md 2018-08-23 21:34:48 -04:00
h00die 1585eff29f
Land #10466 docs for postgres_version 2018-08-23 21:10:34 -04:00
h00die 3024725122 slight syntax updates to md 2018-08-23 21:09:52 -04:00
h00die b8ce6782d9
Land #10517 updated docs for CloudMe Sync 2018-08-23 20:54:01 -04:00
Metasploit c9d7b7ac0a
automatic module_metadata_base.json update 2018-08-23 17:02:58 -07:00
Wei Chen 2193dd662d
Land #10504, add Foxit Reader UAF Module and Docs 2018-08-23 18:56:07 -05:00
Shelby Pace 5f9432ed6a
added rca to cloudme doc 2018-08-23 16:12:13 -05:00
Matthew Kienow 7a534707ab
Add note about unauthenticated telnetd service 2018-08-23 16:16:47 -04:00
Matthew Kienow ecc6c473d8
Add note about unauthenticated telnetd service 2018-08-23 15:50:41 -04:00
Jacob Robles 7ceae8df58
Remove '.exe' from share name 2018-08-23 14:38:46 -05:00
Matthew Kienow 56433c8ed2
Functional decomposition refactor and cleanup 2018-08-23 15:23:42 -04:00
Matthew Kienow 961769c346
Fix SNMP Null class comparison 2018-08-23 15:23:42 -04:00
Matthew Kienow 9c05f14a70
Modify SNMP null and error handling 2018-08-23 15:23:42 -04:00
Matthew Kienow 934bb38a44
Omit parentheses for no argument method calls 2018-08-23 15:23:41 -04:00
Matthew Kienow 81ec723f5b
Add test for PJL fsdownload from string data 2018-08-23 15:23:41 -04:00
Matthew Kienow ee6bf7a77c
Fix documentation markdown table format 2018-08-23 15:23:41 -04:00
Matthew Kienow c5958c6e38
Restore original rport value 2018-08-23 15:23:41 -04:00
Matthew Kienow 70a0b9b1be
Remove payload RequiredCmd and reformat info 2018-08-23 15:23:41 -04:00
Matthew Kienow 18712c25cd
Add uname to module documentation scenario 2018-08-23 15:23:41 -04:00
Matthew Kienow dafa62dec4
Use string interpolation over concatenation 2018-08-23 15:23:40 -04:00
Matthew Kienow 7c03454a0b
Remove unnecessary explicit msf/core require 2018-08-23 15:23:40 -04:00
Matthew Kienow 77b77287cc
Add module and payload documentation 2018-08-23 15:23:40 -04:00
Matthew Kienow b1a308f3ae
Remove final debug output 2018-08-23 15:23:40 -04:00
Matthew Kienow e21ea4180f
Clean up module and payload 
Update module info, remove intermediate ARCH_ARMLE target, simply
options and add cleanup command so that the payload kills telnetd
 2018-08-23 15:23:40 -04:00
Matthew Kienow 81f1555439
Rename module, exploits multiple printer models 2018-08-23 15:23:40 -04:00
Matthew Kienow df18e354e1
Add bind_busybox_telnetd payload, misc cleanup 2018-08-23 15:23:39 -04:00
Matthew Kienow c0c3e12c74
WIP - hp officejet pro exploit, enhance PJL lib 2018-08-23 14:53:54 -04:00
James Barnett 724e0dcaf3
Add ability to connect to saved data services 2018-08-22 17:16:27 -05:00
William Vu 9b3e0d8306 Add additional root tags for GPP XML 
Finally ran through all the samples and cross-referenced with MS14-025.

https://msdn.microsoft.com/en-us/library/cc232650.aspx
https://support.microsoft.com/en-us/help/2962486/ms14-025-vulnerability-in-group-policy-preferences-could-allow-elevati
 2018-08-22 16:48:33 -05:00
William Vu 2891255549 Clarify what is being imported currently 
Since the parser is focused on creds.
 2018-08-22 15:53:19 -05:00
Metasploit 520ed188e6
automatic module_metadata_base.json update 2018-08-22 12:58:40 -07:00
William Vu 36e35d116d
Land #10510, full disclosure for CVE-2018-15473 2018-08-22 14:51:05 -05:00
William Vu 578d2375d7 Add full disclosure for CVE-2018-15473 2018-08-22 14:49:13 -05:00
William Vu 1e4eb0eae0 Revert report_note, since it added nothing 
A bit of misunderstanding. We're in agreement that loot was enough.
 2018-08-22 14:34:09 -05:00
William Vu 6fa04950ee Store parsed GPP data as a note 
And refactor slightly.
 2018-08-22 14:19:50 -05:00
William Vu b1c633faf6 Add Group Policy Preferences support to db_import 
And take the Jaden Smith approach, as @busterb quipped to me. :)

This one's a little weird, since you normally import scans into
Metasploit, but now that creds are first-class in the database, it makes
more sense to be able to import them.

Currently, your alternatives are post/windows/gather/credentials/gpp,
which requires a session, and auxiliary/scanner/smb/smb_enum_gpp, which
requires a network scan.
 2018-08-21 23:44:39 -05:00
James Barnett 68aca395a4
Remove debug logging 2018-08-21 15:06:30 -05:00
James Barnett 57243106f7
Connect to the default database on startup 2018-08-21 14:29:20 -05:00
James Barnett b6401dbe56
Add db_save command 2018-08-21 11:10:43 -05:00
Wei Chen 080ba15179 Another boo-boo 2018-08-21 08:55:14 -05:00
Wei Chen b899839c53 Oops I made boo-boos 2018-08-21 08:53:43 -05:00
Wei Chen 2780ae6ba9 Update false negatives 2018-08-21 08:50:26 -05:00
Jacob Robles fd6880d0d0
Add Foxit Reader UAF Module and Docs 2018-08-21 08:21:51 -05:00
William Vu 682b0863be
Land #10500, stack trace fix for jobs -K 2018-08-20 22:27:31 -05:00