Pedro Ribeiro
|
2827a7ea1a
|
add 660v2 sploit
|
2017-01-12 17:50:57 +00:00 |
William Vu
|
1d6ee7192a
|
Land #7427, new options for nagios_xi_chained_rce
|
2016-11-30 17:11:02 -06:00 |
William Vu
|
3e8cdd1f36
|
Polish up USER_ID and API_TOKEN options
|
2016-11-30 17:10:52 -06:00 |
Brent Cook
|
59f3c9e769
|
Land #7579, rename netfilter_priv_esc to rename netfilter_priv_esc_ipv4
|
2016-11-21 17:59:29 -06:00 |
Prateep Bandharangshi
|
8869ebfe9b
|
Fix incorrect disclosure date for OpenNMS exploit
Disclosure date was Nov 2015, not Nov 2014
|
2016-11-21 16:44:36 +00:00 |
William Webb
|
6c6221445c
|
Land #7543, Create exploit for CVE-2016-6563 / Dlink DIR HNAP Login
|
2016-11-21 09:59:50 -06:00 |
Brent Cook
|
005d34991b
|
update architecture
|
2016-11-20 19:09:33 -06:00 |
Brent Cook
|
f313389be4
|
Merge remote-tracking branch 'upstream/master' into land-7507-uuid-arch
|
2016-11-20 19:08:56 -06:00 |
h00die
|
cfd31e32c6
|
renaming per @bwatters-r7 comment in #7491
|
2016-11-18 13:52:09 -05:00 |
wchen-r7
|
4596785217
|
Land #7450, PowerShellEmpire Arbitrary File Upload
|
2016-11-17 17:47:15 -06:00 |
Brendan
|
18bafaa2e7
|
Land #7531, Fix drb_remote_codeexec and create targets
|
2016-11-16 12:58:22 -06:00 |
Brent Cook
|
b56b6a49ac
|
Land #7328, Extend lsa_transname_heap exploit to MIPS
|
2016-11-15 07:37:19 -06:00 |
Jeffrey Martin
|
c458d662ed
|
report correct credential status as successful
|
2016-11-14 12:27:22 -06:00 |
Jeffrey Martin
|
4ae90cbbef
|
Land #7191, Add exploit for CVE-2016-6267 - Trend Micro Smart Protection Server authenticated RCE.
|
2016-11-14 12:06:02 -06:00 |
Pedro Ribeiro
|
908713ce68
|
remove whitespace at end of module name
|
2016-11-14 08:35:34 +00:00 |
Pearce Barry
|
9eb9d612ca
|
Minor typo fixups.
|
2016-11-11 16:54:16 -06:00 |
Pearce Barry
|
1dae206fde
|
Land #7379, Linux Kernel BPF Priv Esc (CVE-2016-4557)
|
2016-11-11 16:50:20 -06:00 |
Pedro Ribeiro
|
50f578ba79
|
Add full disclosure link
|
2016-11-08 22:15:19 +00:00 |
Pedro Ribeiro
|
95bd950133
|
Point to proper link on github
|
2016-11-07 17:59:29 +00:00 |
Pedro Ribeiro
|
f268c28415
|
Create dlink_hnap_login_bof.rb
|
2016-11-07 17:45:37 +00:00 |
William Vu
|
da356e7d62
|
Remove Compat hash to allow more payloads
|
2016-11-04 13:57:05 -05:00 |
William Vu
|
f0c89ffb56
|
Refactor module and use FileDropper
|
2016-11-04 13:57:05 -05:00 |
William Vu
|
6d7cf81429
|
Update references
|
2016-11-04 13:57:05 -05:00 |
William Vu
|
009d6a45aa
|
Update description
|
2016-11-04 13:57:05 -05:00 |
William Vu
|
bf7936adf5
|
Add instance_eval and syscall targets
|
2016-11-04 13:57:05 -05:00 |
Brendan
|
dae1f26313
|
Land #7521, Modernize TLS protocol configuration for SMTP / SQL Server
|
2016-11-03 12:56:50 -05:00 |
William Vu
|
eca4b73aab
|
Land #7499, check method for pkexec exploit
|
2016-11-03 10:59:06 -05:00 |
William Vu
|
1c746c0f93
|
Prefer CheckCode::Detected
|
2016-11-03 11:14:48 +01:00 |
William Vu
|
2cdff0f414
|
Fix check method
|
2016-11-03 11:14:48 +01:00 |
William Webb
|
31b593ac67
|
Land #7402, Add Linux local privilege escalation via overlayfs
|
2016-11-01 12:46:40 -05:00 |
Brent Cook
|
f8912486df
|
fix typos
|
2016-11-01 05:43:03 -05:00 |
OJ
|
3c56f1e1f7
|
Remove commented x64 arch from sock_sendpage
|
2016-11-01 01:29:11 +10:00 |
Alex Flores
|
45d6012f2d
|
fix check method
|
2016-10-30 14:57:42 -04:00 |
OJ
|
57eabda5dc
|
Merge upstream/master
|
2016-10-29 13:54:31 +10:00 |
Quentin Kaiser
|
c7b775ac1c
|
Fix detection following @bwatters-r7 recommendations. Remove safesync exploit that shouldn't be here.
|
2016-10-28 18:03:56 +00:00 |
OJ
|
1d617ae389
|
Implement first pass of architecture/platform refactor
|
2016-10-28 07:16:05 +10:00 |
Julien (jvoisin) Voisin
|
23ab4f1fc1
|
Remove one last tab
|
2016-10-27 12:32:40 +02:00 |
Julien (jvoisin) Voisin
|
d9f07183bd
|
Please h00die ;)
|
2016-10-27 12:18:33 +02:00 |
Julien (jvoisin) Voisin
|
2ac54f5028
|
Add a check for the linux pkexec module
|
2016-10-27 10:28:13 +02:00 |
wolfthefallen
|
684feb6b50
|
moved STAGE0 and STAGE1 into datastore
|
2016-10-18 11:47:38 -04:00 |
wolfthefallen
|
e806466fe3
|
correct carriage return and link issue
|
2016-10-17 10:31:39 -04:00 |
wolfthefallen
|
7e68f7d2a4
|
EmpirePowerShell Arbitrary File Upload (Skywalker)
|
2016-10-17 10:03:07 -04:00 |
h00die
|
0d1fe20ae5
|
revamped
|
2016-10-15 20:57:31 -04:00 |
William Webb
|
5e7d546fa2
|
Land #7094, OpenNMS Java Object Deserialization RCE Module
|
2016-10-14 13:19:11 -05:00 |
Brent Cook
|
cfddc734a8
|
Land #7286, WiFi pineapple preconfig command injection module
|
2016-10-14 12:57:42 -05:00 |
Brent Cook
|
e05a325786
|
Land #7285, WiFi pineapple command injection via authentication bypass
|
2016-10-14 12:57:05 -05:00 |
h00die
|
12493d5c06
|
moved c code to external sources
|
2016-10-13 20:37:03 -04:00 |
h00die
|
9d2355d128
|
removed debug line
|
2016-10-10 10:23:51 -04:00 |
h00die
|
2ad82ff8e3
|
more nagios versatility
|
2016-10-10 10:21:49 -04:00 |
Pearce Barry
|
7b84e961ed
|
Minor output correction.
|
2016-10-09 19:01:06 -05:00 |