45808a3a44
Added module for ZDI-11-350
2013-01-03 19:17:45 +01:00
06b937ec11
Implements WTFUzz's no-spray technique
...
Do not try to bend the spoon, that is impossible. Instead, only
try to realize the truth: there is no spoon.
2013-01-03 11:57:47 -06:00
fedd9f29a0
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2013-01-03 11:56:56 -06:00
1406f7cb0a
Msftidy on sap_router_info_request
2013-01-03 10:55:11 -06:00
508876be6a
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2013-01-03 10:02:28 -06:00
8ae70c1fa6
Merge pull request #1226 from todb-r7/third-party
2013-01-03 09:17:40 -06:00
8cada447b2
msftidy: remove $Id$
2013-01-03 10:21:10 +01:00
d9947a1515
Add a mixin for marking deprecated modules
...
* This mixin standardizes the previously ad-hoc deprecation warnings on
modules that have been moved.
* Uses the mixin in 3 existing modules that already have (or should have
had) deprecation warnings.
2013-01-02 19:14:44 -06:00
e4a6669927
msftidy: remove $Revision$
2013-01-03 01:05:45 +01:00
4d8a2a0885
msftidy: remove $Revision$
2013-01-03 01:01:18 +01:00
95948b9d7c
msftidy: remove $Revision$
2013-01-03 00:58:09 +01:00
ca890369b1
msftidy: remove $Id$
2013-01-03 00:54:48 +01:00
c86c6f1ba0
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2013-01-02 17:26:42 -06:00
5548234469
Adding msgpack, windows gems, with new licenses
...
Included Apache and Artistic license texts.
2013-01-02 17:04:18 -06:00
758edd7aed
make msftidy happy
2013-01-03 00:02:03 +01:00
f4e9e83e48
Add nokogiri and thin
2013-01-02 16:56:56 -06:00
d74490a6d5
Updating COPYING with new year
...
I am pretty sure this is incorrect, but at least it should be consistent
with the calendar if it's going to be incorrect.
2013-01-02 15:29:15 -06:00
b78d565379
More touchups on THIRD-PARTY.md
...
Adding missing copyright statements on included gems. Thanks to
@bturner-r7 for noticing.
2013-01-02 15:22:36 -06:00
97253d46a1
Multiple change for Juan
...
Incooperated changes as per Juan's suggestions.
- Removed redundant space option for the payload
- Doing the uri more intelligently
- Detecting allow_url_include being disabled and reporting it
- Moved to unix/webapp
- Removed redundant handler call
- Adding to description that this requires allow_url_include to be
enabled
2013-01-02 21:19:06 +00:00
78c6d04b31
Fixing from crlf to lf
...
By accident the line endings changed to crlf.
Mihi pointed out that the last diff was funky because the commit by
accident had crlf rather than the lf from the initial commits.
Also adding an email, as per the HACKING guide and since hdm pointed out
the usefulness of it.
2013-01-02 20:14:09 +00:00
ef3f15e881
Adding a PLUGINSPATH option
...
Adding a PUGINSPATH option as per FireFart's comment.
Because the path to plugins(and wp-content) can be changed, I've added a
PLUGINSPATH options.
This allows for targeting of sites where either folder has been moved,
by specifying the relative path to where all plugins are stored.
2013-01-02 18:56:49 +00:00
88d12da3db
hilight positive results in WebDAV scanner
...
As suggested by Lee Baird
2013-01-02 13:27:25 -05:00
5777968c19
Set GEM_PATH when using built-in gemcache
...
This allows rubygems to work with gems loaded from lib/gemcache.
2013-01-01 21:25:24 -06:00
6fb2130265
Adding a damn space
...
It suddenly jumped at me that there was a missing space in the module
info. Couldn't unsee.
2013-01-01 23:40:01 +00:00
4ba5b45ad3
Fixed the check
...
Turns out the export returns a 500 by default. Fixing.
2013-01-01 23:15:10 +00:00
dd0482cb9d
Code style fix!
...
Now variable names are in-line with the coding guidelines!
2013-01-01 23:01:14 +00:00
2fe2d5d3dd
Adding exploit for OSVDB 87353
...
Adding an exploit for OSVDB 87353, which allows for a remote file
inclusion in the Advanced Custom Fields plugin for Wordpress. and shell
given that url include is enabled in the php installation.
2013-01-01 22:52:55 +00:00
b05d6cf835
Tidying psexec
2012-12-31 15:11:20 -06:00
a3b7318aa6
Ignoring files that end in tilde
2012-12-31 14:51:04 -06:00
38157b86a9
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2012-12-31 11:15:44 -06:00
2c411e3355
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-12-31 11:02:12 -06:00
f7543e18fe
Your def of commit apparently is a little different than mine, git.
2012-12-31 00:35:13 -06:00
2b3f7c4430
Module rename
...
Sorry, Tod, this must be done.
2012-12-31 00:29:19 -06:00
5703274bc4
Merge branch 'master' of git://github.com/rapid7/metasploit-framework
2012-12-30 20:34:57 -06:00
1084334d5e
Randomness
2012-12-30 20:34:14 -06:00
7cb42a5eb4
Add BID ref
2012-12-30 18:14:22 -06:00
dfa2bbc49a
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-12-30 17:35:36 -06:00
cc52e2c533
Where's Juan's name?
2012-12-30 12:58:16 -06:00
14f21c0a29
using the rop as expected
2012-12-30 16:13:48 +01:00
eed5a74f32
description updated and reference added
2012-12-30 16:08:01 +01:00
8e543cf5f5
Add eXtplorer v2.1 auth bypass exploit module
2012-12-30 23:51:41 +10:30
f7d6594314
re-deleted comma
2012-12-30 13:39:14 +01:00
a46d5539ec
Merge pull request #1 from jvazquez-r7/ie_w2003
...
fixed rop chain for w2003
2012-12-30 04:32:33 -08:00
6be8ed6168
readd fix for #1219
2012-12-30 13:25:42 +01:00
cd58cc73d9
fixed rop chain for w2003
2012-12-30 13:12:55 +01:00
cab84b5c27
Fix for issue #1219
2012-12-30 13:02:13 +01:00
dcf018c339
Comma
2012-12-30 12:54:44 +01:00
14d197eeb2
Added Windows Server 2003
2012-12-30 11:35:29 +01:00
d603f9a444
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-12-30 01:08:01 -06:00
6cb9106218
Added module for CVE-2012-4792
2012-12-30 01:46:56 +01:00
jvazquez-r7
sinn3r
Tod Beardsley
Brandon Turner
Christian Mehlmauer
James Lee
Charlie Eriksen
Rob Fuller
Joshua J. Drake
bcoles