Commit Graph

37080 Commits (2171c344e5324165957d78acf245517984a79f37)

Author SHA1 Message Date
KING SABRI c89c0c39b8 Merge pull request #7 from wchen-r7/pr6226_2
Fix rspec... really. For wordpress_multicall_spec.rb
2016-01-23 05:45:16 +03:00
wchen-r7 781ff4bb7d Rspec is deprecated. Use RSpec instead. 2016-01-22 20:39:40 -06:00
KING SABRI 1c5655d7d1 Merge pull request #6 from wchen-r7/pr6226
Fix rspec
2016-01-23 05:30:53 +03:00
wchen-r7 6bbfc5a869 Fix rspec 2016-01-22 20:27:45 -06:00
KING SABRI 7562ff474b Merge pull request #5 from wchen-r7/pr6226
Add wordpress_multicall_creds as a new module, and keep wordpress_xmlrpc_login
2016-01-23 04:30:42 +03:00
wchen-r7 53e9bd7f51 This line does nothing 2016-01-22 18:55:45 -06:00
wchen-r7 0f9cf812b7 Bring wordpress_xmlrpc_login back, make wordpress_multicall as new 2016-01-22 18:54:20 -06:00
Brent Cook b3e76f7793
Land #6484, handle rspec failures gracefully if there is no database 2016-01-22 17:28:49 -06:00
Joe Vennix d0c22a5ba4 Merge pull request #3 from wvu-r7/pr/6421
Add targets to avoid ARCH_ALL payload confusion
2016-01-22 17:13:42 -06:00
Brent Cook 9327a2f1dc
Land #6498, incorporate latest PHP meterpreter fix 2016-01-22 16:57:58 -06:00
William Vu 1b386fa7f1 Add targets to avoid ARCH_ALL payload confusion 2016-01-22 16:45:10 -06:00
wchen-r7 a3cafc3bae Update PHP meterpreter size 2016-01-22 15:14:18 -06:00
KING SABRI 0f4304ab09 Merge pull request #4 from wchen-r7/pr6226
Do API documentation, rspec, and other small changes for wordpress_xmlrpc_login
2016-01-23 00:11:09 +03:00
Brent Cook 91700f17e3 tidy up the ruby style while we're in here testing 2016-01-22 14:43:19 -06:00
wchen-r7 67c35d5177 Bump metasploit-payloads to 1.0.22 2016-01-22 14:07:40 -06:00
Brent Cook ac8b483d32 don't break the accept loop just because we got a client connection that closed early 2016-01-22 13:52:00 -06:00
wchen-r7 eb73612a5f
Land #5938, add auxiliary/scanner/http/jenkins_command 2016-01-22 11:30:04 -06:00
wchen-r7 91db2597c7 normalize URIs 2016-01-22 11:27:26 -06:00
wchen-r7 475d8c2829
Merge ZeroSteiner's changes to HD's pull request 2016-01-22 10:18:55 -06:00
wchen-r7 b02c762b93 Grab zeroSteiner's module/jenkins-cmd branch 2016-01-22 10:17:32 -06:00
Lutz Wolf 99de466a4d Bugfix: specify scripting language 2016-01-22 15:00:10 +01:00
Christian Mehlmauer 484d57614a
remove re-registered ssl options 2016-01-22 09:54:52 +01:00
Christian Mehlmauer 0871fe25e8
change text 2016-01-22 07:38:44 +01:00
Christian Mehlmauer e0de78280d
move SSL to the default options 2016-01-22 07:05:23 +01:00
wchen-r7 5cc6a22922
Land #6482, Fix problem causing upload to fail on versions 1.2 and 1.3 2016-01-21 22:59:11 -06:00
Brent Cook dc6dd55fe4 Shrink the size of ms08_067 so that it again works with bind_tcp
In #6283, we discovered that ms08_067 was busted with reverse_tcp. The
solution was to bump the amount of space needed to help with encoding.
However, we flew a little too close to the sun, and introduced a
regression with bind_tcp on Windows XP SP2 EN where the payload stages
but does not run.

This shrinks the payload just enough to make bind_tcp work again, but
reverse_tcp also continues to work as expected.
2016-01-21 19:37:09 -06:00
wchen-r7 216986f7af Do API documentation, rspec, and other small changes 2016-01-21 17:22:14 -06:00
Christian Mehlmauer 478cd2ed5c
check database.yml path 2016-01-21 20:32:32 +01:00
wvu-r7 ceb2eb7ffe Fix msftidy location
See #6052.
2016-01-21 13:30:55 -06:00
Christian Mehlmauer 5a0e11fb72
revert file check 2016-01-21 20:21:41 +01:00
KINGSABRI a8feb8cad5 make passwords faster for reading huge wordlest files 2016-01-21 03:32:50 +03:00
KINGSABRI 4cb19c75a6 Enhance the module and add version check 2016-01-21 03:19:31 +03:00
KING SABRI bb4db6b501 Merge pull request #3 from wchen-r7/pr6226
Do a version check for wordpress_xmlrpc_login
2016-01-21 02:49:20 +03:00
wchen-r7 fcaef76215 Do a version check
This attack is not suitable for newer versions due to the
mitigation in place.
2016-01-20 17:14:44 -06:00
Adam Cammack d544488409
Land #6461, backport net-ssh ECDH kex algorithms 2016-01-20 14:05:39 -06:00
William Vu 765d7fac37
Land #6485, sweet retro mainframe banners 2016-01-20 07:24:34 -06:00
Bigendian Smalls 90e37ea749
Added three cool new mainframe themed screens
Thanks to *Solider of Fortran* @mainframed for his amazing original artwork!
These set of 3 limited edition, original, one-of-a-kind screens will modernize
your msf installation to the 1960s and beyond.  No seriously they are super cool
and now that metasploit-framework supports System Z - it seemed only fitting.
2016-01-20 06:10:51 -06:00
KING SABRI 911bcc7792 Merge pull request #2 from wchen-r7/pr6226
Don't name the method #send
2016-01-20 05:37:40 +03:00
wchen-r7 d46ab29186 Don't name the method #send 2016-01-19 20:03:02 -06:00
Christian Mehlmauer 390b46dd25
also check file for existance 2016-01-19 23:55:49 +01:00
Christian Mehlmauer f68b2b56fa
use hardcoded path 2016-01-19 23:51:28 +01:00
Christian Mehlmauer b45e22b64d
use .any? 2016-01-19 23:16:10 +01:00
Christian Mehlmauer aaa1174ca5
fix rspec errors without database 2016-01-19 20:28:58 +01:00
rastating a7cd5991ac Add encoding of the upload path into the module 2016-01-17 22:44:41 +00:00
rastating 5660c1238b Fix problem causing upload to fail on versions 1.2 and 1.3 of theme 2016-01-17 18:44:00 +00:00
Metasploit a030179577
Bump version of framework to 4.11.8 2016-01-15 15:17:13 -08:00
Brent Cook 59660dd6d0
Land #6465, remove unneeded meterpreter extension post-installation copies 2016-01-15 17:04:14 -06:00
KING SABRI aec6878b2c Merge pull request #1 from wchen-r7/update_6226
Update WordPress XMLRPC Massive Bruteforce
2016-01-16 01:21:44 +03:00
kfr-ma 3d04f405b4 Update telisca_ips_lock_control.rb
commit the changes mad by sinn3r and replace headers on lock and unlock
2016-01-15 15:05:24 +00:00
kfr-ma 8fb2e97a47 Merge pull request #2 from wchen-r7/update_6470
Update Telisca IPS Lock Control module
2016-01-15 08:41:08 +00:00