infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
49,010 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

49010 Commits (37dbdbf58f8d2c25cbc1899df9e7aa3c575ce8d0)

Author SHA1 Message Date
William Vu 37dbdbf58f Update project URL to PR 2018-10-22 23:35:42 -05:00
William Vu 41721c31fb Add blueimp's jQuery (Arbitrary) File Upload 2018-10-22 23:35:42 -05:00
Metasploit 9b01f3deaf
automatic module_metadata_base.json update 2018-10-22 14:26:09 -07:00
asoto-r7 f742d3bd9a
Land #10450, Implementation of CTRL+Z in reverse shell session 
Additionally, a check was added to disable this new functionality on
Windows command shell payloads.
 2018-10-22 15:50:41 -05:00
William Vu e6bbc6dbd6
Land #10845, glassfish_traversal typo fix 2018-10-22 15:32:14 -05:00
blue-bird1 6125ef06ad fix small typo 2018-10-23 00:01:13 +08:00
William Vu c6cb6ce2f3
Land #10837, QNX qconn module rename (redux) 2018-10-20 13:10:36 -05:00
Brendan Coles 7a36056713 Move exploit/qnx/qconn_exec to exploit/qnx/qconn/qconn_exec 2018-10-20 18:16:59 +00:00
William Vu aae74472d2
Land #10817, QNX qconn module rename 2018-10-20 03:10:22 -05:00
Brent Cook accf9edf89
Land #10835, libssh fingerprint improvements 2018-10-19 19:48:23 -05:00
Metasploit a3e3e6b88b
automatic module_metadata_base.json update 2018-10-19 14:01:49 -07:00
William Vu abd425c863
Land #10819, os_name population for ssh_login* 2018-10-19 15:53:38 -05:00
William Vu db7bd3d50c Update style 2018-10-19 15:52:26 -05:00
William Vu 2a1dec45ed
Land #10832, TARGETURI for tomcat_utf8_traversal 2018-10-19 15:47:37 -05:00
William Vu aac4a28985 Fix git apply -p value 2018-10-19 15:41:39 -05:00
William Vu cea619aab1 Prefer Git for all the things 2018-10-19 15:40:16 -05:00
William Vu e4c71265fb Improve banner checking in libssh_auth_bypass 
Now we do the right thing when libssh is patched.
 2018-10-19 15:21:12 -05:00
Brent Cook d65cba685f
Land #10826, Update ruby version 2018-10-19 14:16:28 -05:00
Metasploit e8377251c2
automatic module_metadata_base.json update 2018-10-19 12:08:58 -07:00
Brent Cook c8a554f84a
Land #10820, Add libssh authentication bypass scanner/"exploit" 2018-10-19 13:57:28 -05:00
William Vu da38dfb29a Clarify we never receive CHANNEL_OPEN_FAILURE 2018-10-19 13:25:19 -05:00
William Vu cc283d9def Add testing note about session channel opens 2018-10-19 13:13:22 -05:00
William Vu ab5fccc8f6 Add module doc for great justice 2018-10-19 12:57:58 -05:00
William Vu 713f44204d Add PTY-less support to shell_request in patch 2018-10-19 00:47:44 -05:00
William Vu 009980f8ca Add ssh_server_fork.patch to get RCE out of libssh 2018-10-19 00:40:08 -05:00
William Vu 21397330f8 Refactor fortinet_backdoor copypasta 2018-10-19 00:07:18 -05:00
Metasploit af63663779
automatic module_metadata_base.json update 2018-10-18 21:08:13 -07:00
William Vu 863ab3447f Add libssh auth bypass module 2018-10-18 23:03:23 -05:00
William Vu d1354cc1f7 Add libssh auth bypass packet 2018-10-18 23:03:23 -05:00
William Vu c26d1c93e4
Land #10833, Net::SSH::CommandStream fixes 2018-10-18 23:00:42 -05:00
William Vu cf00f20e11 Update Net::SSH::CommandStream exception handling 2018-10-18 22:45:16 -05:00
Christian Mehlmauer db6cfb65d3
new ruby 2018-10-19 02:57:20 +02:00
Wei Chen 3cee96d8ed
Land #10664, add Windows SetImeInfoEx Win32k NULL Pointer Dereference 2018-10-18 14:42:14 -05:00
Wei Chen fac05db154 Update rescue statement 2018-10-18 14:30:20 -05:00
Brendan Coles 02c916b1b4 Update modules/auxiliary/admin/http/tomcat_utf8_traversal.rb 2018-10-19 04:16:26 +11:00
Metasploit af61e07536
Weekly dependency update 2018-10-18 10:08:53 -07:00
Patrick Webster 175e5e5adf Added module TARGETURI support. 2018-10-19 03:55:45 +11:00
Christian Mehlmauer 8bc92c060e
ruby update 2018-10-18 00:51:29 +02:00
Brent Cook 390e0e86f7
Land #10824, add PTY option to Net::SSH::CommandStream 2018-10-17 15:46:59 -05:00
William Vu 6fd53fcb6a Fix whitespace further 2018-10-17 15:45:02 -05:00
William Vu 1e1950c83d Prefer keyword args after all 
SINCE we've been using only the first two params, we're fine!
 2018-10-17 15:41:19 -05:00
William Vu a453760aa4 Add PTY option to Net::SSH::CommandStream 
This allows us to spawn a PTY for our shell session. Note that this will
write us to {u,w}tmp and lastlog, so use this option with care.

And yes, I did change the API, but up until now, we've been using only
the first two parameters. We should be using keyword args. /shrug
 2018-10-17 15:40:13 -05:00
h00die 763506f28d ssh_login now populates the os_name field 2018-10-16 22:02:44 -04:00
Jacob Robles 786629afc9
Land #10818, Disable ERB templating for Metasploit::Framework::Compiler::Utils 2018-10-16 14:18:50 -05:00
Wei Chen 69cd0a5ddc Disable ERB templating for Metasploit::Framework::Compiler::Utils 2018-10-16 14:02:13 -05:00
Brendan Coles a14df8d86e Move exploit/unix/misc/qnx_qconn_exec to exploit/qnx/qconn_exec 2018-10-16 16:21:28 +00:00
Brendan Coles 89a4beacc9
Land #10816, Add a `bg` alias for `background` command 2018-10-16 16:14:01 +00:00
Rich Whitcroft 854485a016 add bg command to meterpreter 2018-10-16 14:01:50 +00:00
Shelby Pace 9e069c95f5
add auto targeting 2018-10-15 23:26:08 -07:00
Shelby Pace 6cdfe604d4
removed exception handling for reg_file_for_handle 2018-10-15 18:29:15 -07:00