0fa63ae7b3
Update documentation and module
...
Included Super User in the documentation.
Implemented changes h00die suggested.
Modified sqli to generate strings used in regex.
2018-03-28 10:57:28 -05:00
c97743925f
jhart suggestions
2018-03-27 18:46:31 -04:00
94fd599756
Land #9684 , Adding ManageEngine Application Manager RCE
...
Land #9684
2018-03-27 15:17:20 -05:00
fb0d87163c
Update documentation for manageengine_appmanager_exec
2018-03-27 15:16:39 -05:00
0a0bef0c4f
Land #9633 , Exodus Wallet Remote Code Execution
...
Land #9633
2018-03-27 14:51:15 -05:00
a8914f2f9f
Land #9775 , module doc improvements to MS17-010
2018-03-27 14:38:20 -05:00
7e4e6e6437
Update ms17_010_{psexec,command} module docs
2018-03-27 14:32:21 -05:00
8c88c53e5d
Land #9670 , Gitstack v2.3.10 RCE
...
Land #9670
2018-03-27 13:00:47 -05:00
df49345f5d
Update gitstack_rce.md
2018-03-27 12:59:49 -05:00
e462cb49a2
updated docs
2018-03-25 14:53:30 -04:00
80c4d59560
Land #9702 exploit for clipbucket
2018-03-24 19:59:17 -04:00
0028e2c5ba
documentation update
2018-03-24 19:25:59 -04:00
d5961f277e
Add documentation
2018-03-24 23:16:51 +00:00
fdd2af2d2a
Update tested versions
2018-03-24 00:23:12 +00:00
5ece14b064
Convert SMBLoris to an external module
2018-03-23 14:55:18 -05:00
d192173792
Vulnerable application link update
2018-03-22 11:57:54 +00:00
6885f16e38
Add documentation
2018-03-22 06:27:13 +00:00
8d12118d1f
Add get_user_spns external module and documentation
2018-03-21 06:26:15 -05:00
ac9f506b45
Update tested versions
2018-03-20 02:49:56 +00:00
53eabfc1df
Update documentation and add check before exploit
2018-03-19 23:27:18 +03:00
0817e6b15f
Delete playsms_uploadcsv_exec.md
2018-03-18 13:57:04 +05:30
0e0fcdf727
PlaySMS 1.4 RCE
...
PlaySMS 1.4 Remote Code Execution using Phonebook import Function in import.php
2018-03-18 13:46:30 +05:30
44d5022380
Land #9529 , Add module for HP iLO CVE-2017-12542 authentication bypass
2018-03-16 16:50:54 -05:00
1b2f1ced02
Land #8422 , Typo3 News Module Sql Injection exploit
2018-03-15 10:55:04 -05:00
ba0d990273
Documentation added and Error Checks
2018-03-15 10:46:08 -05:00
d736a6d2ec
updated juniper docs
2018-03-14 21:02:22 -04:00
b55a750fa9
Fix typo and couple tiny nitpicks
2018-03-14 11:51:21 +03:00
889c914b3d
Updating documentation and minor code changes
2018-03-13 12:05:27 +03:00
d86dcbc237
Land #9632 , owa_login and auth_brute enhancements
2018-03-12 10:31:20 -05:00
9b0ba4a6fa
clipbucket_fileupload_exec
2018-03-12 14:17:13 +05:30
1fd0087a97
Land #7654 , varnish file read
2018-03-09 10:59:04 -06:00
37bf4d118a
Changes suggested by h00die 0803
2018-03-09 09:55:50 -05:00
ea78e21961
Documentation accuracy
2018-03-09 07:43:12 -06:00
2735ae57cb
Documentation accuracy
2018-03-09 07:31:55 -06:00
048d0d1fe4
Changes suggested by h00die
2018-03-08 20:13:01 -05:00
178fa16953
Grammar fix
2018-03-08 07:42:29 -06:00
24079c345d
Style guide and grammar fixes
2018-03-08 07:30:02 -06:00
611b208267
Adding ManageEngine Application Manager RCE
2018-03-07 23:54:01 +03:00
fb04fef3a5
added documentation.
2018-03-07 08:34:49 -08:00
81596b627d
added documentation.
2018-03-07 08:31:25 -08:00
15269ec3ce
Land #9678 , Add memcached UDP version scanner
2018-03-07 10:14:29 -06:00
86dd382e6a
Land #9554 , Eclipse Equinoxe OSGi console RCE
2018-03-07 08:41:31 -06:00
e8a227b1a6
Changes as requested by jhart-r7:
...
- Default Username / Password are now random
- Doc fixed
- REST typo fixed
2018-03-07 10:48:05 +01:00
7733662767
Add docs for memcached_udp_version
2018-03-06 18:12:40 -08:00
05a653b853
Add module documentation
2018-03-06 20:37:11 -05:00
d6871f5733
Land #9614 , Juniper post enum module
2018-03-06 10:29:56 -06:00
99799f1e98
Update doc
2018-03-05 13:40:37 -06:00
a4f48eb80f
Add GitStack v2.3.10 RCE
2018-03-05 13:25:41 -06:00
3028dccd7a
Land #9644 , @xistence's memcached stats amplification scanner
2018-03-05 09:02:28 -08:00
d454267ea5
update docs
2018-03-02 21:00:41 -05:00
dd2e15f959
Update doc a final time to appease the @h00die god
2018-03-02 19:40:11 -06:00
25f36fb926
Refactor code into new methods
2018-03-02 19:16:37 -06:00
c343c926cf
Add N300 version to module doc
2018-03-02 19:15:20 -06:00
0c0f00941b
Add note about directly connecting to telnetd
2018-03-02 19:15:20 -06:00
b6d563e2a3
Update doc regarding vprint
2018-03-02 19:15:19 -06:00
4b29df7ab3
Update doc for automatic targeting
2018-03-02 19:15:19 -06:00
86cd52ae4b
Update doc with real info
2018-03-02 19:15:18 -06:00
7505e0e831
updated docs
2018-03-02 19:15:18 -06:00
031b44baea
updated docs
2018-03-02 19:15:17 -06:00
a9caec5130
Add module doc
2018-03-02 19:15:17 -06:00
83430f858e
Add docs for memcached amplification scanner
2018-03-01 17:07:57 -08:00
2faa052bc0
Update Exodus Wallet Documentation
2018-02-28 10:15:54 +00:00
11881c1028
Exodus Documentation
2018-02-26 21:30:39 +00:00
0b22014306
Rename Doc
2018-02-26 06:09:15 -06:00
4e4aeb7b4d
Add GitStack v2.3.10 Unauth REST API Aux Module
2018-02-26 06:04:38 -06:00
023bf79097
Land #9310 docs for many aux scanners
2018-02-24 14:32:33 -05:00
c56d7967e7
finished cleanup
2018-02-24 14:31:52 -05:00
15a29a1994
finished up comments
2018-02-24 13:39:14 -05:00
aafd67d416
Adjust rid_hijack.md documentation file
2018-02-23 04:30:22 +01:00
c7bbc6eca4
juniper post enum module
2018-02-22 21:08:21 -05:00
5815b626d9
Dont save email addresses as valid
...
Also add module doc for owa_login module
2018-02-22 14:58:11 -06:00
d3851ed89c
Add rid_hijack module documentation.
2018-02-22 18:49:11 +01:00
4b8a8fa2b1
Land #9441 , Create exploit for AsusWRT LAN RCE
...
Merge branch 'land-9441' into upstream-master
2018-02-22 10:40:45 -06:00
a9d6845f25
Add module doc
2018-02-21 21:50:08 -06:00
bda7fefa7f
Land #9444 - `hsts_eraser` module and docs
2018-02-20 21:22:55 -06:00
b2cb4c425d
Land #9594 , CloudMe Sync v1.10.9 Buffer Overflow
2018-02-20 17:49:19 -06:00
a23240a742
Update Documentation
...
[ticket: #9594 ]
2018-02-20 17:48:21 -06:00
04882b0464
Fixed indentation
2018-02-20 22:00:36 +00:00
ff3b318abd
CloudMe Sync Client documentation
2018-02-20 21:56:31 +00:00
107a41a4ce
Land #9561 , Disk Savvy Enterprise v10.4.18 built-in server buffer overflow
2018-02-20 15:42:12 -06:00
ab6f6d75d2
Update Documentation
...
[ticket: #9561 ]
2018-02-20 15:37:40 -06:00
f89cebbd89
Add sploit doc
2018-02-20 19:35:10 +00:00
74c6e21f49
Lands #9504 , MagniComp SysInfo privilege escalation
2018-02-19 22:47:33 -06:00
663581fa10
Fix markdown ticks + references location.
2018-02-17 14:30:01 +01:00
a2d104313b
Add documentation file.
2018-02-17 12:31:54 +01:00
242f2d3117
Land #9512 , Add Claymore Dual GPU Miner<= 10.5 DoS module
2018-02-16 10:46:48 -06:00
b533ec6019
Land #9509 , Ulterius Server < v1.9.5.0 Directory Traversal
...
Land #9509
2018-02-15 16:34:31 -06:00
949b474a0a
Avoid target_uri.path
...
It doesn't look like target_uri.path is suitable for this scenario,
because it causes our input to be modified and hard to use.
2018-02-15 16:31:09 -06:00
630e9dd0de
Verification steps update
2018-02-14 20:40:32 +00:00
07763ccd6a
Disk Savvy Server Buffer Overflow Documentation
2018-02-14 20:35:03 +00:00
fe46f635db
Changes as requested by bcoles
2018-02-13 10:54:42 +01:00
285b329ee1
Land #9422 abrt race condition priv esc on linux
2018-02-11 11:58:39 -05:00
add7ae8fa1
Land #9536 , Add Ubuntu notes to documentation
2018-02-11 07:27:00 -06:00
321b78b0fe
Land #9408 , Add Juju-run Agent Privilege Escalation module (CVE-2017-9232)
2018-02-11 07:19:49 -06:00
4e5cbd68b9
Add Ubuntu notes to documentation
2018-02-11 06:52:36 +00:00
4b6362a37d
Minor doc tweaks.
2018-02-10 16:14:14 -06:00
1177efef89
Update tested versions
2018-02-10 16:32:20 +00:00
38252e4384
success against x64
2018-02-10 07:17:15 -05:00
9e11632608
Add documentation
2018-02-09 16:15:04 -05:00
cb1b59545b
Land #9469 linux local exploit for glibc ld audit
2018-02-09 14:00:42 -05:00
c642d420c2
Land #9489 , Add scanner for the Bleichenbacker oracle (AKA: ROBOT)
2018-02-08 12:55:02 -06:00
ca4ad1d0c4
Land #9478 , Improve Dup Scout BOF exploit
2018-02-07 23:51:14 -06:00
ab0d18669e
Doc Changes
2018-02-07 19:26:39 -06:00
e53500f397
Fixed Headings
2018-02-07 08:11:58 -06:00
1de8ec1073
Implemented Suggested Changes
...
Updated documentation headings and function/filename formatting.
Updated module options and formatting. Added check for file to parse.
2018-02-07 08:01:54 -06:00
7cbf89f055
Add documentation
2018-02-07 13:17:54 +00:00
8168e881b3
Add documentation
2018-02-07 07:49:21 +00:00
278e9a92fc
add module and documentation
2018-02-06 20:30:34 +08:00
1e9e9c9be0
Ulterius Server < v1.9.5.0 Directory Traversal
...
Adds documentation and module for Ulterius Server
directory traversal vulnerability.
2018-02-05 22:50:09 -06:00
ce6e85f64f
Add documentation
2018-02-05 13:48:41 +00:00
696817215b
Update tested versions
2018-02-05 04:48:52 +00:00
e5b490c1c0
Remove weird sentence in cve_2017_8464_lnk_rce
2018-02-04 12:57:56 -05:00
638d6ce33d
Add documentation
2018-02-04 04:47:46 +00:00
bde2884e11
Fixes from review
2018-02-03 11:23:58 -05:00
75d2b33f2e
Add intro header to ms17_010_command
2018-02-02 20:47:29 -05:00
250a2beff7
Make options a bullet list in archmigrate
2018-02-02 20:46:07 -05:00
9e11b0629f
Fix examples section in run_as_psh
2018-02-02 20:44:46 -05:00
3733365955
Add options section to archmigrate
...
- Also make verification steps code instead of surrounded in quotes
2018-02-02 20:43:22 -05:00
3a764b174a
Remove unnecessary HRs in hashdump
2018-02-02 20:39:47 -05:00
fb0456df01
Add intro header
2018-02-02 20:38:10 -05:00
df976cf2b0
Add intro header to ad_to_sqlite
2018-02-02 20:37:29 -05:00
dff7fccc02
Fix ugly header in aws_create_iam_user
2018-02-02 20:36:31 -05:00
31f69b306b
Add description to sshkey_persistence
...
- Also make options headers to be more consistent with module options
2018-02-02 20:35:06 -05:00
664411786c
Fix a few things in getvinfo
...
- Add intro header
- Change up first sentence for clarity
- Fix `CLEAR_DTCS` header
2018-02-02 20:30:40 -05:00
c9d41f215d
Update allwinner_backdoor.md
2018-02-02 20:26:42 -05:00
d3084638fa
Update netgear_r7000_cgibin_exec docs
...
- Add 'Introduction' header
- Make module name in intro into code (easier to read)
2018-02-02 20:23:43 -05:00
6f086e9110
Fix broken link
2018-02-02 20:08:38 -05:00
51e098da35
Add scanner for Bleichenbacher oracle (ROBOT)
2018-02-02 16:29:07 -06:00
be01da2861
Add clarification to score range
...
- Also add an introduction header
2018-02-02 15:06:42 -05:00
1fb7c21cb7
Add length clarification to censys_search
2018-02-02 14:51:09 -05:00
b51ecda9d6
Fix CUSTOMTEMPLATE option format
2018-02-02 14:27:09 -05:00
a65604b09d
Add introduction header to web_delivery
2018-02-02 14:19:25 -05:00
2d8a249a56
Add intro header to office_ms17_11882
2018-02-02 14:12:36 -05:00
a7e9772e25
A few fixes for office_word_hta
...
- Add introduction header
- Fix `Vulnerable Application` header and make it plural (multiple apps)
- Remove unnecessary console line for example
2018-02-02 14:11:05 -05:00
daedf2a089
Fix word choice in cve_2017_8464_lnk_rce
...
- Also remove an unnecessary example step
2018-02-02 14:06:03 -05:00
0739fab092
Clarify testing environments for hp_dataprotector
2018-02-02 14:03:01 -05:00
acf7f7747d
Fix double backslashes in panda_psevents
2018-02-02 13:32:55 -05:00
67682bd243
Make webdav.md look a little better
2018-02-02 13:31:30 -05:00
d4c70a3beb
Fix md header in bypassuac_fodhelper
2018-02-02 13:28:47 -05:00
3de576a0df
Fix md header in vxsrchs_bof doc
2018-02-02 13:24:35 -05:00
9dde5ebf92
Update eternalblue docs
...
- Add a reference for OS protection rings
- Uncomment some windows versions
- Fix a word choice issue
2018-02-02 13:21:43 -05:00
c9473f8cbc
Land #9473 , new MS17-010 aux and exploit modules
2018-02-01 23:56:29 -06:00
7cb0a118c1
Land #9399 a linux priv esc against apport and abrt
2018-02-01 21:54:54 -05:00
3c21eb8111
Update documentation
2018-02-02 02:27:13 +00:00
559b592394
Corrected Documentation
2018-02-01 13:17:02 -06:00
bc18389284
Updated Document and Module
...
Update the documentation based on analysis of the vulnerability.
Slight modifications to the exploit module as well to reduce the
size of the generated file and reduce bad characters.
2018-02-01 10:05:50 -06:00
0d80ca6f79
Change documentation extension from rb to md
2018-01-31 23:26:30 +00:00
beb4d56f7d
Land #9354 , Debut embedded httpd server (Brother printers) DoS
2018-01-31 17:03:13 -06:00
8be2b1f59e
Land # 9407, Add BMC Server Automation RSCD Agent RCE exploit module
...
Merge branch 'land-9407' into upstream-master
2018-01-31 13:35:29 -06:00
92915ebb69
Update ms17_010_command.md
2018-01-29 11:17:44 -07:00
Jacob Robles
h00die
Wei Chen
William Vu
Brendan Coles
Adam Cammack
Daniel Teixeira
Mehmet İnce
Touhid M Shaikh
Brent Cook
Luis Hernandez
Kirk Swidowski
Fab
Jon Hart
r4wd3r
James Barnett
bwatters-r7
Aaron Soto
Pedro Ribeiro
Chris Higgins
Quentin Kaiser
Pearce Barry
bluebird
Carter Brainerd (thecarterb)
zerosum0x0