2ae943d981
Use payload common case instead of general case
...
Both x86 and x64 work on x64, but we really expect x64, and there's no
migration to move us from x86 to x64.
2017-05-11 15:43:49 -05:00
0627b10996
Add Ubuntu version to module doc
2017-05-11 14:13:45 -05:00
09f6c21f94
Add note about Host header limitations
2017-05-10 15:17:20 -05:00
a1d92573fc
Add module doc to appease the @h00die god
2017-05-10 15:17:20 -05:00
b446cbcfce
Add reference to Exim string expansions
2017-05-10 15:17:20 -05:00
8842764d95
Add some comments about badchars
2017-05-10 15:17:20 -05:00
ecb79f2f85
Use reduce instead of extracting twice
2017-05-10 15:17:20 -05:00
b5f25ab7ca
Use extract instead of doubling /bin/echo
2017-05-10 15:17:20 -05:00
9a64ecc9b0
Create a pure-Exim, one-shot HTTP client
2017-05-10 15:17:20 -05:00
ee55516e06
Allow lowercase HTTP in command strings
2017-05-10 15:17:20 -05:00
0ce475dea3
Add WordPress 4.6 PHPMailer exploit
2017-05-10 15:17:20 -05:00
3a45c2f321
Allow complete override of Host header
2017-05-10 15:17:20 -05:00
638320a848
Update rex-exploitation to 0.1.13
2017-05-10 15:07:21 -05:00
b04a8821aa
Land #8366 , apache_range_dos should not be in WMAP
2017-05-10 15:03:04 -05:00
d00685a802
Don't run a DoS during wmap scans
2017-05-10 14:41:24 -05:00
faf01ed5ef
Land #8353 , add aux scanner for Intel AMT digest bypass
2017-05-09 18:45:21 -05:00
ad37f88a34
add module docs
2017-05-09 18:44:43 -05:00
72388a957f
Land #8355 , IIS ScStoragePathFromUrl
...
See #8162
2017-05-09 11:06:01 -05:00
10099e99c6
Land #8361 , update packetfu
2017-05-09 11:04:04 -05:00
fd05cea033
Update packetfu and remove version lock
2017-05-09 11:03:32 -05:00
9295a39c92
update packetfu dep now that 1.1.13 is released
...
Please use the release instead of the pre-release
2017-05-09 11:18:28 -04:00
2b4ace9960
convert to "screaming snake"
2017-05-09 09:30:45 +02:00
2207891f0a
Land #8538 bump payloads for LURI and proxy fixes
2017-05-09 09:00:04 +10:00
cf487cc90c
reverse_ncat_ssl is stable
2017-05-08 17:43:34 -05:00
7f1e2e6c71
bump metasploit-payloads
2017-05-08 17:34:55 -05:00
f70b402dd9
add comment
2017-05-09 00:17:00 +02:00
96e3d61883
Land #8297 , add docs for energizer duo scanner and exploit
2017-05-08 17:14:36 -05:00
86365c89d1
Land #8352 , style updates for lotus_domino_hashes
2017-05-08 17:11:44 -05:00
806963359f
fix fail with condition
2017-05-08 23:47:48 +02:00
630fa7cc17
Land #8356 , Windows Meterpreter bug fixes
...
Merge remote-tracking branch 'upstream/pr/8356' into upstream-master
2017-05-08 16:45:09 -05:00
68f61f32ae
revert accidental test commit
2017-05-08 23:27:40 +02:00
0bc9d9259d
meterpreter bugfixes
...
fixed stdapi_fs_mount_show to show full mapped drive path for Python
Meterpreter on Windows
Updated the Windows Meterpreter `getprivs` command to list all privileges
2017-05-08 16:26:32 -05:00
f62ac6327d
add @rwhitcroft
2017-05-08 23:20:12 +02:00
26373798fa
change rank
2017-05-08 23:07:12 +02:00
962a31f879
change minimum length
2017-05-08 23:01:17 +02:00
7dccb17834
auto extract values and implement brute forcing
2017-05-08 22:47:29 +02:00
7bac1fc421
Land #8354 , Remove `.negative?` for older Rubies
2017-05-08 15:24:50 -05:00
841f63ad20
make office_word_hta backward compat with older Rubies
2017-05-08 15:10:48 -05:00
406a7f1ae2
Merge remote-tracking branch 'dmchell/dmchell-cve-2017-7269' into iis2
2017-05-08 21:51:51 +02:00
f7ff840ef0
Add missing return, thanks bperry!
2017-05-08 14:08:59 -05:00
9392e48b72
Add a scanner for Intel AMT auth bypass (CVE-2017-5689)
2017-05-08 13:24:00 -05:00
b794bfe5db
Land #8335 , rank fixes for the msftidy god
2017-05-07 21:20:33 -05:00
88bef00f61
Add more ranks, remove module warnings
...
../vmware_mount.rb
Rank = Excellent
Exploit uses check code for target availability,
the vulnerability does not require user action,
and the exploit uses privilege escalation to run
arbitrary executables
../movabletype_upgrade_exec.rb
Rank = ExcellentRanking
Exploit utilizes code injection,
has a check for availability
../uptime_file_upload_2.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary commands,
has a check for availability
../zpanel_information_disclosure_rce.rb
Rank = ExcellentRanking
Exploit allows remote code execution,
implements version check for pChart
../spip_connect_exec.rb
Rank = ExcellentRanking
Exploit utilizes code injection,
has a check for availability
../wp_optimizepress_upload.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary code,
has a check for availability
../wing_ftp_admin_exec.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary commands,
has a check for availability
../novell_mdm_lfi.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary code,
has a check for availability
../run_as.rb
Rank = ExcellentRanking
Exploit utilizes command injection,
checks system type, and does not require user action
2017-05-07 15:41:26 -04:00
af3f1fbc37
Land #8332 , Canprobe Module
2017-05-07 12:20:27 -05:00
1c099a3d14
Minor doc tweaks.
2017-05-07 12:13:57 -05:00
c05e7b3b58
Minor corrections and a tweak to appease msftidy.
2017-05-07 11:55:20 -05:00
e3d3fa8e45
Tweak internal description formatting.
2017-05-07 11:31:36 -05:00
b965bdcdae
Appease msftidy and Travis.
2017-05-07 11:19:32 -05:00
635a7a42e6
Update style lotus_domino_hashes
2017-05-07 16:37:48 +10:00
05bf16e91e
Land #8331 , Adding module CryptoLog Remote Code Execution
2017-05-05 18:24:14 -05:00
William Vu
James Lee
Brent Cook
Zero_Chaos
Christian Mehlmauer
OJ
Adam Cammack
HD Moore
Bryan Chu
Pearce Barry
Brendan Coles
Jeffrey Martin