infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
45,334 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

23618 Commits (3ad5bd429a3ecfdcaf34ece925646921e25e2908)

Author SHA1 Message Date
Wei Chen fdc24fe453
Land #10327, Add CMS Made Simple Upload/Rename Authenticated RCE 2018-07-19 10:20:10 -07:00
Brent Cook 64201ad782
Land #10282, Add support for running external modules outside of msfconsole 2018-07-18 15:40:21 -07:00
Adam Cammack 6919d1a981
Land #10328, Log errors in Python ETERNALBLUE 2018-07-18 12:53:38 -07:00
Tim W 691d8f2c41
Land #9753, Linux BPF sign extension local privesc 2018-07-18 11:05:32 -07:00
William Vu ba3fa4bf91
Land #10317, nil fix for enum_dns 2018-07-17 11:04:55 -07:00
Jacob Robles 4c87d38a60
Land #10273, [clean up] iis_webdav_scstoragepathfromurl 2018-07-17 07:36:22 -07:00
William Vu 88518ec4ae
Land #10064, Claymore Dual Miner API RCE 2018-07-16 16:04:38 -07:00
Jacob Robles d138ddba8d
Land #10295, Add QNAP Q'Center change_passwd Command Execution exploit 2018-07-14 08:20:32 -07:00
Brent Cook 36f776d4a6
Land #10293, fixup php/base64 and add docs for cmd/unix/reverse_bash 2018-07-13 15:17:52 -07:00
Wei Chen 06e8cc49f5
Land #10297, Add priv escalation mod for CVE-2018-8897 2018-07-13 08:57:19 -07:00
William Vu 942befab73
Land #10302, module doc fixes 2018-07-12 21:53:05 -07:00
William Vu f6a7f19e2b
Land #10027, Hadoop unauthed command execution 2018-07-12 20:00:57 -07:00
William Vu dbd03f9914
Land #10278, gitlist_arg_injection fixes 2018-07-12 17:05:33 -07:00
Wei Chen 465dceb182
Land #10299, Add 88 CVEs to various auxiliary and exploit modules 2018-07-12 16:28:05 -07:00
William Vu 9db75849a9
Land #10298, bug fix for #10219 2018-07-12 15:51:22 -07:00
Brendan Coles 4f67361b46
Land #10238, Add ManageEngine Exchange Reporter Plus RCE exploit 2018-07-12 09:37:50 -07:00
William Vu f18fd4aca1
Land #9780, CouchDB auth bypass and RCE 2018-07-12 11:24:05 -05:00
William Vu 81ef17aa62
Land #10286, Docker server version scanner 2018-07-12 11:24:04 -05:00
Shelby Pace 8586e6fc8f
Land #10260, Add phpMyAdmin v4.8.1/4.8.0 LFI RCE 2018-07-12 11:24:03 -05:00
Erin Bleiweiss d11eaf3d74
Land #10280, Use default CheckCode in ETERNALBLUE 2018-07-12 11:24:03 -05:00
Shelby Pace 45f354e55d
Land #10231, Monstra Fileupload Exec 2018-07-12 11:24:02 -05:00
Brent Cook 3a92908e9b
Land #10108, add IBM QRadar SIEM exploit 2018-07-12 11:24:02 -05:00
Jacob Robles d480ee8e20
Land #10275, Update missing CVE references for exploit modules 2018-07-12 11:24:01 -05:00
Jacob Robles 4284ffe8a4
Land #10276, Update missing CVE references for auxiliary modules 2018-07-12 11:23:09 -05:00
Jacob Robles 9dc3e35f23
Land #10107, Add the scanner/smb/impacket/secretsdump module 2018-07-06 13:02:46 -07:00
Shelby Pace a4f0dc5ea2
Land #10133, Add HID discoveryd RCE exploit 2018-07-06 12:35:38 -07:00
Wei Chen e915bb0f66
Land #10262, Add GitList argument injection exploit module 2018-07-06 12:30:10 -07:00
Brent Cook 5d95172a81
Land #10171, Implement desktop shell and screensaver post modules 2018-07-05 15:36:46 -07:00
Brent Cook fbd68df409
Land #10263, fix double-nested array 2018-07-05 15:22:50 -07:00
Brent Cook b5981caa0b
Land #10219, Add HP VAN SDN Controller exploit 2018-07-05 12:23:50 -07:00
Jacob Robles 7f3dfccbfe
Land #10242, avoid using SMBv2 on Windows XP Native Upload targets 2018-07-02 15:37:11 -07:00
Wei Chen 144923db3a
Land #10237, Add Boxoft WAV to MP3 Converter exploit module 2018-07-02 12:03:05 -07:00
Wei Chen d4054c24bd
Land #9896, Java JMX Package Name Randomization 
Land #9896
 2018-07-02 11:43:42 -07:00
Brent Cook 709630e35c
Land #10185, add SMBv1/2 support in psexec 2018-06-29 15:51:50 -07:00
Jacob Robles fa95c0c2a1
Land #9958, Nagios xi 2 electric 2018-06-29 10:18:13 -07:00
Brendan Coles 9bed9f0797
Land #10213, Add FTPShell client 6.70 Stack Buffer Overflow exploit 2018-06-29 07:39:54 -07:00
William Vu fd7ea515aa
Land #10218, MS17-010 Windows Embedded Standard 7 2018-06-28 14:14:42 -07:00
Brent Cook d310659a77
Land #10216, add linux mic capture support for mettle 2018-06-28 10:58:50 -05:00
Brent Cook 33a909939d
Land #10215, add support for payload estimation for IPv6-specific modules 2018-06-27 14:49:00 -07:00
William Vu 13f981f03f
Land #9998, customizable golden ticket duration 2018-06-27 13:53:30 -07:00
Adam Cammack 165fb9dc79
Land #10109, Teradata login scanner and SQL runner 2018-06-27 13:39:02 -07:00
William Vu d4dfb98fb9
Land #10207, msftidy fixes 2018-06-26 12:40:50 -07:00
Shelby Pace f14597bcb2
Land #10199, Kace Systems Management Command Injection 2018-06-26 10:11:07 -07:00
Wei Chen 0a9dca2b5a
Land 10200, Add SickRage Password Leak Auxiliary Module 2018-06-25 15:27:22 -07:00
Brent Cook 679378d025
Land #10156, WebKit, as used in WebKitGTK+ Crash - CVE-2018-11646 2018-06-21 14:33:05 -07:00
William Vu cddb0f2b4d
Land #10195, ms17_010_eternalblue_win8 bug fixes 2018-06-21 13:38:14 -07:00
Brent Cook 5fb3ffed55
Land #10189, ETERNALBLUE updates 2018-06-20 21:55:20 -07:00
Brent Cook 0bcbcab3d8
Land #10184, Add sleepya's ETERNALBLUE exploit for Win8+ 2018-06-19 15:44:55 -07:00
Wei Chen 17c0bc1fa7
Land #10183, Add auxiliary mod to exploit httpdasm dir traversal vuln 2018-06-19 12:58:49 -07:00
Jacob Robles 95cb9f3654
Land #9825, Add 'phpMyAdmin Authenticated Remote Code Execution' 2018-06-18 06:55:53 -07:00
Wei Chen ce48ff4382
Land #10165, Fix missing RequestError in a few post modules 2018-06-15 13:40:51 -07:00
Wei Chen 95ee536705
Land #10172, Rm duplicate word in agitum_outpost_acs description 2018-06-15 13:15:37 -07:00
William Vu 94abd923f3
Land #10021, post/multi/recon/sudo_commands module 2018-06-14 14:35:32 -07:00
bwatters-r7 fff6d2ebb7
Lad #10017, D-Link DSL-2750B Unauthenticated OS Command Injection 
Merge branch 'land-10017' into upstream-master
 2018-06-14 15:09:38 -05:00
Adam Cammack e78715b073
Land #10167, Add Linux x86 IPv6 reverse shell 2018-06-13 13:35:24 -07:00
Adam Cammack 8d86ff0065
Land #10138, Update psnuffle RHOSTS and style 2018-06-13 12:47:32 -07:00
bwatters-r7 7e2c1fae2c
Land #10148, Add New Module - Badpdf 
Merge branch 'land-10148' into upstream-master
 2018-06-12 15:21:25 -07:00
bwatters-r7 0a19221af2
Land #10101, Add glibc 'realpath()' Privilege Escalation exploit 2018-06-12 14:43:57 -07:00
William Vu 7f372d178d
Land #10059, CVE-2018-1111 exploit 2018-06-12 13:04:36 -07:00
Tim W 08a6fd3b3b
Land #10066, implement AudioOutput api from channel 2018-06-11 14:41:44 -05:00
Brendan Coles 60a9e08cdc
Land #10157, Add IconFile path to .URL files generated with MultiDrop 2018-06-10 20:07:24 -07:00
Tim W e6a9421e35
Land #10118, cleanup OSX local exploit modules 2018-06-08 00:00:50 -07:00
Aaron Soto aa5c114364
Land #10067, Added `auxiliary/fileformat/odt_badodt` 2018-06-06 09:29:34 -07:00
Aaron Soto f6e0f5bd81
Land #10115, Added module `auxiliary/fileformat/multidrop` 2018-06-05 14:32:25 -07:00
Jacob Robles 1df5b7655f
Land #10106, Add the scanner/smb/impacket/wmiexec module 2018-06-05 06:39:34 -07:00
Chris Higgins 5f469efacf
Land #10092, Cleanup linux/local/recvmmsg_priv_esc 2018-06-04 15:37:57 -07:00
Brent Cook 31ce48502c
Land #9528, WebKit apple safari trident exploit (CVE-2016-4657) 2018-06-04 15:37:57 -07:00
Brent Cook 650c5c7a93
Land #10121, finish deprecating modules 2018-06-04 15:37:56 -07:00
Aaron Soto 2a9399251c
Land #10102, SOCKS5 updates for BIND, parsing specs, refactoring 2018-06-01 07:03:23 -07:00
Adam Cammack d2523e03df
Land #9976, Store non-nil linux enum_network loot 2018-06-01 07:03:22 -07:00
bwatters-r7 e7ab118aaf
Land #9777, Slui File Handler Hijack LPE 2018-06-01 07:03:22 -07:00
Brent Cook 122af6b143
Land #10083, Add Msf::Post::OSX::Priv mixin 2018-06-01 07:03:22 -07:00
Aaron Soto c8ff6cb5a4
Land #9701, Flexense HTTP Server DoS exploit 2018-06-01 07:03:22 -07:00
Brent Cook caa8b673ed
Land #9990, add SOCKS5 proxy support 2018-05-25 15:56:23 -07:00
Brent Cook 0dc0d3c0ba
fix incorrect disclosure date 2018-05-25 03:06:42 -05:00
Brent Cook d78f2e7bbd
Land #10087, remove unused option from applocker bypass 2018-05-23 13:38:39 -07:00
Brent Cook 196b302897
Land #10084, Mark all versions of telpho10 as vulnerable 2018-05-23 13:38:39 -07:00
Brendan Coles e6a7ec3276
Land #10070, Fix cleanup in exploits/osx/local/rootpipe_entitlements 2018-05-23 13:38:39 -07:00
Brendan Coles 8243207223
Land #10048, Make shell and meterpreter sessions consistent with cmd_exec 2018-05-23 13:38:38 -07:00
bwatters-r7 984384b59d
Land #10044, Fix is_system? in Msf::Post::Windows::Priv for non-English 
Merge branch 'land-10044' into upstream-master
 2018-05-21 15:22:52 -07:00
Tim W 016ee4d460
Land #9987, AF_PACKET chocobo_root exploit 2018-05-21 15:22:51 -07:00
bwatters-r7 81368bef7a
Land #9966, Add Reliable Datagram Sockets (RDS) Privilege Escalation exploit 
Merge branch 'land-9966' into upstream-master
 2018-05-21 17:01:36 -05:00
Brent Cook 7b3169ad0a
Land #9999, Optionally test empty group in cisco_ssl_vpn 2018-05-21 17:01:35 -05:00
Brent Cook 9b152cec72
Land #10009, Add initial check support to external modules 2018-05-21 17:01:35 -05:00
Tim W a51c1209ab
Land #9956, add module to extract wireless credentials on Android 2018-05-17 08:16:35 -07:00
Brent Cook 597a64b61b
Land #10047, remove invalid timeout argument on cmd_exec 2018-05-17 08:16:35 -07:00
Tim W bacab0507b
Land #9947, AF_PACKET packet_set_ring exploit 2018-05-17 08:16:34 -07:00
Jacob Robles 6e71f5c5fd
Land #9816, Add the scanner/smb/impacket/dcomexec module 2018-05-17 08:16:34 -07:00
William Vu 9a273a2663
Land #9975, local_exploit_suggester fixes 2018-05-17 08:16:33 -07:00
William Vu 012de0f6b1
Land #10038, struts_code_exec_parameters EXE fix 2018-05-17 08:16:33 -07:00
William Vu cbac801b88
Land #8727, CVE-2017-9791 exploit 2018-05-17 08:16:33 -07:00
William Vu bbb5ff8ad4
Land #7815, CVE-2016-9299 exploit 2018-05-17 08:16:33 -07:00
William Vu f9d27aaa30
Land #10036, reverse_bash_telnet_ssl fixes 2018-05-17 08:16:32 -07:00
William Vu 06711c6da9
Land #10035, awk payload improvements 2018-05-17 08:16:32 -07:00
William Vu 2f50df7fe7
Land #10031, zsh payload improvements 2018-05-17 08:16:32 -07:00
William Vu 14ff692d12
Land #10030, reverse_ksh payload 2018-05-17 08:16:32 -07:00
Jacob Robles 72d8f5ba22
Land #10023, fix ms17-010 psexec similar to 4a56ecf3ae 2018-05-15 11:58:15 -07:00
Aaron Soto 3bc5b0bdcb
Land #9991, Remove need for temp file with xdebug_unauth_exec 2018-05-15 11:58:15 -07:00
Tim W 1de1b04c4f
Land #9919, add libuser roothelper privilege escalation exploit 2018-05-15 11:58:14 -07:00
Tim W a260716305
Land #9868, fix post/osx/capture/keylog_recorder 2018-05-10 09:27:29 -07:00
Jacob Robles b2b97db28b
Land #9878, Add MSF module for EDB 6768, Mantis <= v1.1.3 Post-auth RCE 2018-05-09 17:48:53 -07:00
William Vu 0aaae09e5c
Land #9980, PAN-OS readSessionVarsFromFile exploit 2018-05-09 17:48:53 -07:00
Brent Cook 78f546ce81
Land #9986, initial ruby_smb simple client integration 2018-05-09 17:48:52 -07:00
Jacob Robles dcbc871883
Land #9988, playsms_uploadcsv_exec 2018-05-07 09:35:08 -07:00
Jacob Robles 75196b4fc6
Land #9944, playsms_filename_exec.rb 2018-05-07 09:35:08 -07:00
Tim W 9785ace675
Land #9977, fix crash during x64 linux reverse_tcp stager retry 2018-05-07 09:35:07 -07:00
William Vu a74b2b5716
Land #9970, final update to Drupalgeddon 2 2018-05-04 09:40:31 -05:00
William Vu 935fa6414e
Land #9968, second round of Drupalgeddon 2 updates 2018-05-04 09:38:34 -05:00
bwatters-r7 38465e69a8
Land #8795, Added CVE-2016-0040 Windows Privilege Escalation 
Merge branch 'land-8795' into upstream-master
 2018-05-04 09:38:28 -05:00
Tim W e0317671fe
Land #9965, add author name to wlan_probe_request module 2018-05-03 09:21:02 -07:00
Jacob Robles 8739befa70
Land #9821, osCommerce 2.3.4.1 - Remote Code Execution 2018-05-03 09:21:02 -07:00
Jacob Robles d6cea3523a
Land #9960, fix continuation warnings in payloads 2018-05-03 09:21:02 -07:00
Jeffrey Martin ad33d72e6e
Land #9961, psexec native upload argument 2018-05-01 14:51:21 -07:00
Jeffrey Martin 635f483b42
Land #9881, cleanup psexec code 2018-05-01 14:51:20 -07:00
Brent Cook 37767e9d4c
Land #9951, Update linux/gather/enum_protections module 2018-05-01 14:51:20 -07:00
Brent Cook 9f2a442d9b
Land #9942, IPv6 channel fixes 2018-05-01 16:46:37 -05:00
Brent Cook a14892774f
Land #9942, IPv6 channel fixes for Python and Linux/macOS Meterpreters 2018-05-01 16:45:16 -05:00
Aaron Soto c38bca1799
Land #9908, msfd_rce_remote and msfd_rce_browser 2018-04-30 09:49:50 -05:00
Aaron Soto 3b8280c33f
Land #9918, XDebug Unauthenticated OS command execution 2018-04-30 09:42:26 -05:00
Brent Cook 009e643ae3
autofilter = false means skip, which is reverse of intuition 2018-04-26 18:08:05 -05:00
Jeffrey Martin 188b02d1f5
Land #9937, enable autofilter on tp-link camera exploit 2018-04-26 16:06:10 -07:00
Brent Cook 3b7d2c8177
Land #9853, Update Linux sock_sendpage local exploit module 2018-04-26 16:06:10 -07:00
William Vu 492b6003b5
Land #9931, minor fixes for #9876 (Drupalgeddon 2) 2018-04-26 08:29:59 -07:00
Brent Cook d340ef2632
Land #9876, Drupalgeddon 2 2018-04-26 08:29:59 -07:00
Brent Cook c23cbde8a1
Land #9900, add base64 encoder for ruby 2018-04-26 08:29:59 -07:00
Brent Cook ab12eb8c50
Land #9924, Improve debug output in ETERNALBLUE's verify_arch 2018-04-26 08:29:58 -07:00
Wei Chen 0949bedf67
Land #9628, Add GitStack v2.3.10 Unauth REST API Aux Module 
Land #9628
 2018-04-23 11:21:11 -07:00
bwatters-r7 a44bcff2d8
Land #9756, Add lastore-daemon D-Bus Privilege Escalation exploit 
Merge branch 'land-9756' into upstream-master
 2018-04-23 11:21:10 -07:00
bwatters-r7 6cbd7ba895
Land #9862, Post-exploitation module for meterpreter (Windows) to send wireless probe requests 
Merge branch 'land-9862' into upstream-master
 2018-04-23 11:21:10 -07:00
bwatters-r7 d2a43d934d
Land # 9247, Add ASUS infosvr Auth Bypass Command Execution exploit 
Merge branch 'land-9247' into upstream-master
 2018-04-23 11:21:10 -07:00
Tim W b958526b6a
Land #9784, add osx high sierra APFS password disclosure post module 2018-04-18 15:31:20 -07:00
Adam Cammack 5b42a81d3a
Land #9823, Private IP leak via WebRTC 2018-04-12 09:27:21 -07:00
Aaron Soto d394146339
Land #9845 Remove temp file after cmd execution 2018-04-10 06:55:59 -07:00
h00die 084e6b1db3
Land #9813, Add etcd library and version scanner 2018-04-10 06:55:58 -07:00
Brent Cook c5db4c5021 Land #9834, add Python UDP channel support 2018-04-10 08:41:41 -05:00
Brent Cook 62c6340d70
Land #9794, Added support for regional dialects 2018-04-06 14:20:42 -07:00
Chris Higgins ded6a50883
Land #8539, ProcessMaker Plugin Upload exploit 2018-04-04 19:06:18 -07:00
bwatters-r7 8707047f41
Land # 8007, Added NTDSgrab module to metasploit. 
Merge branch 'land-8007' into upstream-master
 2018-04-04 19:06:18 -07:00
bwatters-r7 914f8ba872
Land #9734, Remove unwanted 'pop RAX' from windows/x64/reverse_(win)http 2018-04-04 19:06:17 -07:00
bwatters-r7 4765ffc05a
Land #9595, Add post module RID Hijacking on Windows 2018-04-04 19:06:17 -07:00
Brent Cook ef4fd1dc75
Land #9742, QNX exploit improvements 2018-04-03 09:13:57 -05:00
Brent Cook 9d5ab1dedf
Land #9726, add simple Rex::Tar wrapper for consistency with other archive types 2018-04-03 09:13:56 -05:00
Brent Cook c2bf848ba9
Land #9748, Convert the smbloris DoS into an external module 
Help reliability and performance. This some Ruby-specific external module
tooling as a result as well.
 2018-04-03 09:13:56 -05:00
Brent Cook 1557540b08
Land #9774, use correct whitespace when patching python meterpreter 2018-04-03 09:13:55 -05:00
Brent Cook d6f23071ca
Land #9718, Add get_user_spns 'kerberoasting' module 2018-04-03 09:13:29 -05:00
William Vu 10ed6637ed
Land #9782, CheckCode::Safe for ms_ndproxy 2018-03-30 08:34:52 -07:00
Brent Cook 9d076f6842
Land #9776, if data is nil, stop reading the heartbleed socket 2018-03-29 09:42:03 -07:00
Jon Hart 36ba1468e8
Land #9760, @h00die's etcd scanner 2018-03-29 09:17:54 -07:00
Jacob Robles 3b87bf5a03
Land #9666, Add 2017-8917 RCE for Joomla 3.7.0 2018-03-29 09:17:54 -07:00
Wei Chen 6108d79dcd
Land #9684, Adding ManageEngine Application Manager RCE 
Land #9684
 2018-03-27 15:44:50 -07:00