Commit Graph

40801 Commits (441222c2b5f3d6b813bd9d50aa92e32f232ba217)

Author SHA1 Message Date
Brent Cook d85596e1f0
Land #7826, cleanup leaked constants in tests 2017-01-12 16:07:15 -06:00
David Maloney 9b9d3127a8
cleanup leaked constants
use constant cleaner
7824
2017-01-12 15:49:24 -06:00
William Vu d58db72cd0 Force unloading of already loaded plugins 2017-01-12 14:18:52 -06:00
Brent Cook 13b06db48e delete meterpreter scripts with replacement post modules 2017-01-12 14:12:16 -06:00
Brent Cook c080d78922 intercept legacy meterpreter script runs and substitute post modules 2017-01-12 14:08:43 -06:00
Brent Cook fd1c5fbce7
Land #7763, add -sl to multi_console_command to run silently 2017-01-11 21:06:54 -06:00
Brent Cook 0af363d8f6 more cleanup 2017-01-11 21:06:34 -06:00
Gabor Seljan 483865b815 Fix reference 2017-01-11 23:28:23 +01:00
Pearce Barry 899ff35780
Land #7803, Add CVE-2016-6433 - Post-auth Cisco Firepower Management Console RCE 2017-01-11 16:11:42 -06:00
wchen-r7 abab1f17c9
Merge master to cisco_cve_2016_6433 and make sure I have the latest 2017-01-11 14:39:52 -06:00
Brent Cook 24f7959805
add binary for futex_requeue 2017-01-11 13:25:30 -06:00
Brent Cook 2585c8c8b5
Land #7461, convert futex_requeue (towelroot) module to use targetting and core_loadlib 2017-01-11 13:24:25 -06:00
Brent Cook b28f600aea
Land #7584, fix apk injection into proguarded apks 2017-01-11 12:45:23 -06:00
Brent Cook c6f5690229
Land #7806, fix UDP sockets to not always bind IPv6-only 2017-01-11 12:40:33 -06:00
Brent Cook 5b2e76b981
Land #7794, Fix #7793, incorrect command name in android meterpreter extension 2017-01-11 12:38:36 -06:00
Gabor Seljan a3930d3488 Minor documentation improvements 2017-01-11 08:00:12 +01:00
Brent Cook 43493e310e
update payload sizes 2017-01-10 16:54:31 -06:00
wchen-r7 4d0549335f
Land #7812, bump mettle gem to include pivoting support 2017-01-10 16:49:34 -06:00
Spencer McIntyre 1400f6fe67
Land #7769, add docs for phpmailer_arg_injection 2017-01-10 17:46:43 -05:00
Spencer McIntyre 960c1a1434 Update docs to reflect the final phpmailer module 2017-01-10 17:44:22 -05:00
Brent Cook f11cf92040 bump mettle gem to include pivoting support 2017-01-10 16:43:49 -06:00
Metasploit f311511e6d
Bump version of framework to 4.13.14 2017-01-10 14:03:16 -08:00
Gabor Seljan 1a00ef3679 Add documentation 2017-01-10 23:00:18 +01:00
Gabor Seljan 24014d8465 Minor code formatting 2017-01-10 22:59:42 +01:00
Pearce Barry e25a8d3c2e
Land #7811, fix autotargeting failure. 2017-01-10 15:16:10 -06:00
David Maloney 4029dbd5ca
try not to forget fixing the spec... 2017-01-10 14:33:18 -06:00
David Maloney 38a4c2aa97 fix autotargeting failure
the fallback to the original default was failing because
it was assuming rhost was already set, so it would always
go back to the first default target. now the auto_target? method
only returns true if can pull an auto_target_host
2017-01-10 14:12:28 -06:00
wchen-r7 18347a8de7
Land #7774, Fix pivoting of UDP sockets in scanners 2017-01-10 13:57:28 -06:00
Brent Cook 790ebc6727 update to rex-socket 0.1.3, which includes the IPv6 bind fix 2017-01-10 09:07:43 -06:00
bwatters_r7 b3e8c3376d
Land #7788, Add ability to interact with a manually backgrouned session 2017-01-10 08:55:00 -06:00
David Maloney 8c395338af
Land #7743, wchen's digest auth nonce fix
land sinn3r's pr for fixing the Digest Auth nonce
2017-01-09 14:16:09 -06:00
wchen-r7 704604066b Update doc 2017-01-09 13:25:37 -06:00
wchen-r7 b2dc8c25f8 Update doc 2017-01-09 13:24:38 -06:00
wchen-r7 a59ca569e7 Add doc 2017-01-09 11:55:01 -06:00
wchen-r7 45c3c48b7b Patch should not be here 2017-01-09 11:40:28 -06:00
wchen-r7 74cea5dd04 Use Linux payloads instead of cmd/unix/interact
As of now, cmd/unix/interact causes msfconsole to freeze, so
we can't use this.
2017-01-09 11:11:17 -06:00
Gabor Seljan 9162374ae3 Add automatic targeting 2017-01-08 11:23:18 +01:00
William Vu 1a04691201
Fix #2504, edit command fixes I missed 3y ago
local_editor was never nil, so there was some dead code.
2017-01-08 03:02:19 -06:00
Brent Cook 31f85b905a add comments 2017-01-07 12:50:11 -06:00
Gabor Seljan d2472712f3 Add module for DiskBoss Enterprise (EDB-40869) 2017-01-07 19:44:38 +01:00
Brent Cook cdcf4cce7d improve zip module windows script fallback
- handle non-English locales
 - wait more reliably, handle network paths where FS info gets stale
 - use absolute paths correctly
2017-01-07 12:27:03 -06:00
Adam Cammack dbdc558f0b
Land #7776, don't log on harmless DB errors 2017-01-06 18:25:13 -06:00
Ubuntu 6dee63d727 Incorrect command name 2017-01-06 23:58:18 +00:00
wchen-r7 e331066d6d Add CVE-2016-6433 Cisco Firepower Management Console UserAdd Exploit 2017-01-06 17:05:25 -06:00
dmohanty-r7 5cba9b0034
Land #7747, Add LoginScanner module for BAVision IP cameras 2017-01-06 16:25:44 -06:00
Metasploit b074042b99
Bump version of framework to 4.13.13 2017-01-06 12:00:26 -08:00
dmohanty-r7 171f3b3e7d Land #7791, Fix target_host name collision 2017-01-06 13:50:52 -06:00
David Maloney 2108913e77
target_host method had a name collision
this method appears to have been accidentaly overriding another
method causing sessions to never finish being established
2017-01-06 12:44:37 -06:00
Metasploit 1ef2e54539
Bump version of framework to 4.13.12 2017-01-06 10:03:13 -08:00
William Vu 969df408c7
Land #7786, Microsoft Edge constant for HttpClient 2017-01-05 21:07:57 -06:00