infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
51,429 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

2400 Commits (54edf3c008f90895663783ce932763de81553421)

Author SHA1 Message Date
Tim W 44b1b6fe31 fix forking 2018-11-20 15:58:55 +08:00
Tim W 99ae214575 add binaries 2018-11-15 08:46:24 +08:00
Tim W 2c30459a1b add CVE-2018-4233 and CVE-2018-4404 2018-11-15 08:44:18 +08:00
bwatters-r7 b4c005c4d4
Land #10561, Add Windows local privilege escalation - CVE-2018-0824 
Merge branch 'land-10561' into upstream-master
 2018-10-25 13:22:31 -05:00
Wei Chen 6920470f99
Land #10821, Enhance windows compiler w/ new functions 2018-10-24 20:28:36 -05:00
Wei Chen 06e1d16c60 Rm _snprintf because it causes sessions to fail (due to a crash) 2018-10-24 17:50:10 -05:00
bwatters-r7 927a29530b
Remove duplicated files 2018-10-23 12:31:18 -05:00
Brent Cook b65f467ada
Land #10851, add ndkstager to data/exploits 2018-10-23 12:04:57 -05:00
Tim W 4177ff4cfc add DEBUG exploit binary 2018-10-22 19:51:21 +08:00
bwatters-r7 47353553e5 Get everything together finally (still needs cleanup) 2018-10-19 18:15:44 -05:00
Wei Chen 3cee96d8ed
Land #10664, add Windows SetImeInfoEx Win32k NULL Pointer Dereference 2018-10-18 14:42:14 -05:00
bwatters-r7 d2c013001d
Update stuff 2018-10-17 17:17:05 -05:00
Green-m 7b1b2198cb
resolve confiict. 2018-10-17 17:33:01 +08:00
Green-m 0ccebd9916
Add some define for windows compiler. 2018-10-17 16:18:38 +08:00
Shelby Pace 26631bcfbd
addressed suggestions 2018-10-12 14:35:42 -05:00
Shelby Pace a67122aaf7
updated doc, added x86_64 binary 2018-10-11 12:37:51 -05:00
Shelby Pace cdc2918c84
removed original binary, added source 2018-10-11 11:42:51 -05:00
Shelby Pace 521b50af55
added separate binaries, extended for x86 2018-10-11 10:43:35 -05:00
amaloteaux f8ad47d475 improve windows_defender_js_hta : 
-add platform detection for jsc
-prevent cmd prompt when launching jsc
 2018-10-11 17:38:47 +02:00
Brent Cook 6293372218
Land #10762, bump version 2018-10-09 05:32:01 -05:00
Carter Brainerd b2136bd8e0
Change "4" to "5" 2018-10-07 13:35:12 -04:00
Wei Chen c7efd57144
Sync up with master 2018-10-06 08:27:01 -05:00
Tim W 4a4c759a4b add ndkstager to data/exploits 2018-10-05 15:10:21 +08:00
bwatters-r7 28fb27187a
Land #10418, Add DCOM/RPC NTLM Reflection (MS16-075) Via Reflective DLL 
Merge branch 'land-10418' into upstream-master
 2018-10-04 16:54:53 -05:00
bwatters-r7 ce59964141
Recompile binaries and prep for VS2013 compiles 2018-10-04 16:21:23 -05:00
Wei Chen 92ac5635b1 Support module documentation 2018-10-03 23:35:30 -05:00
space-r7 a0052c7f47 Add evasion module using HTA + JavaScript + C# 2018-10-01 12:57:05 -05:00
Brent Cook 1607c2b890
Land #10428, Update Windows MySQL UDF files, add docs 2018-09-24 21:11:52 -05:00
Wei Chen 02ef565730
Update evasion_module_type branch 2018-09-24 08:20:32 -05:00
7echSec cd3b139642
Adding UnmarshalPwn.exe 
Compatible with Visual Studio 2013.
 2018-09-21 17:24:50 +05:30
7echSec 545e488486
Uploading new UnmarshalPwn.exe 
As per the bwatters-r7 comment I am uploading new UnmarshalPwn.exe complied with platform toolset 120
 2018-09-21 17:18:39 +05:30
Jacob Robles c76f095cd0
Inject Payload to Memory First 2018-09-19 21:13:49 -05:00
Jacob Robles dfa030c2df
Use System Directory 2018-09-19 08:49:12 -05:00
William Vu 6a63feced4 Merge remote-tracking branch 'upstream/master' into pr/10418 2018-09-18 19:54:44 -05:00
Dhiraj Mishra 89b0ac6f87
Adding suport files 2018-09-18 14:59:43 +05:30
Jacob Robles 83af598e6a
Updated VS solution and module 2018-09-17 17:38:19 -05:00
bwatters-r7 f38e6f45ce
Redo dllinjection 2018-09-14 17:47:53 -05:00
asoto-r7 4cf344dd83
WIP: Initial CVE-2018-8440 / ALPC-TaskSched-LPE 2018-09-13 18:00:20 -05:00
Wei Chen d23b252393
Land #10592, support ERB for foxit_reader_uaf.rb 2018-09-05 21:48:52 -05:00
Wei Chen 254e8b9fd0 Cleanup for foxit_reader_uaf 2018-09-05 21:47:57 -05:00
William Vu 1491f13bd5 Add Ghostscript failed restore exploit 2018-09-05 19:56:32 -05:00
Shelby Pace 55bf6e5dd4
removed require in erb file 2018-09-05 18:09:29 -05:00
Shelby Pace 60cdd6dfe2
added erb file for foxit_reader_uaf exploit 2018-09-05 14:07:56 -05:00
Wei Chen 5c6b33bcf4 Add support for evasion targets, also module doc 2018-08-31 11:45:29 -05:00
7echSec 540e2699a6
Adding unmarshalpwn.exe 2018-08-30 21:31:14 +05:30
7echSec 8b02d2620c
Adding support files 2018-08-30 21:30:28 +05:30
7echSec d365001ddd
Adding support files. 2018-08-30 21:29:45 +05:30
Tod Beardsley feb4b78227
Add Lumpy Space Princess's password 
http://adventuretime.wikia.com/wiki/Trouble_in_Lumpy_Space
 2018-08-20 16:28:21 -05:00
Tod Beardsley 10d5f32b92 None of these should be executable 2018-08-20 16:25:34 -05:00
h00die d299831efe updated windows udf files and documentation 2018-08-07 14:50:47 -04:00
Mumbai 4a88d643ba adding reflective Potato 2018-08-03 02:09:24 -04:00
Tim W 8785ec21b6
Land #9884, add linux ufo priv esc module 2018-08-02 17:53:36 +08:00
bwatters-r7 d343458dc5
Update documentation with build instructions 
remove superfluous directory
 2018-07-27 11:31:59 -05:00
bwatters-r7 b4792e08a4
Combine the modules and update the binaries 2018-07-27 11:08:04 -05:00
Wei Chen b404a5fbe4 Add a license 2018-07-19 10:04:47 -05:00
Wei Chen f2fd24780c Add support for XOR 2018-07-18 23:13:45 -05:00
Wei Chen 1534613cda Add Base64 support 2018-07-18 20:07:27 -05:00
Wei Chen 999d0e994f Add RC4 decryption 2018-07-18 19:50:46 -05:00
Tim W 70a1df70a1
Land #9753, Linux BPF sign extension local privesc 2018-07-18 18:44:14 +08:00
William Vu f93e4a24a9 Fix typo 2018-07-17 12:59:00 -05:00
Brendan Coles 6cd1593061 Add support for HTTP POST and Basic Auth to psnuffle 2018-07-15 14:16:37 +00:00
Brendan Coles 9bdec97b2e Fix bpf_sign_extension_priv_esc 2018-07-13 23:01:17 +00:00
bwatters-r7 156b822401
First stab at cve-2018-8897 2018-07-12 17:31:53 -05:00
Brendan Coles f14d06b9d1 Fix ufo_privilege_escalation 2018-07-08 11:05:30 +00:00
bwatters-r7 29f4870fa0
Land #10101, Add glibc 'realpath()' Privilege Escalation exploit 2018-06-12 16:41:07 -05:00
Jacob Robles ad249ad62b
Sort Wordlist 2018-06-07 11:34:07 -05:00
Jacob Robles cf962b28a5
Add Lync Subdomain Wordlist 2018-06-06 13:05:56 -05:00
Aaron Soto f53d2a14df
Land #10067, Added `auxiliary/fileformat/odt_badodt` 2018-06-06 11:27:23 -05:00
Chris Higgins 78bcd57694
Land #10092, Cleanup linux/local/recvmmsg_priv_esc 2018-06-04 10:32:35 -05:00
Brent Cook 61a98b94b6
Land #9528, WebKit apple safari trident exploit (CVE-2016-4657) 2018-06-02 21:52:52 -05:00
Tim W 2ec7f11b90 add binary 2018-05-30 18:02:17 +08:00
Brendan Coles 0af5d44c42 Add glibc 'realpath()' Privilege Escalation exploit 2018-05-26 21:25:59 +00:00
Brendan Coles 651fb69585 Cleanup linux/local/recvmmsg_priv_esc module 2018-05-24 17:56:07 +00:00
Wei Chen cab2daf4ed Add Winsock2 API for Metasploit::Framework::Compiler::Windows 2018-05-24 11:57:41 -05:00
rmdavy e82cb8351f
Add files via upload 
New Location for files needed to build badodt file
 2018-05-24 09:45:38 +01:00
follower 57bb7fd819
Add correct filename for `/etc/group` 
AFAICT the correct filename is the singular form `group` not `groups` (e.g. [see](https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/4/html/Introduction_To_System_Administration/s3-acctspgrps-group.html) & [see](https://linux.die.net/man/5/group)).

Rather than just correcting the filename in place I'm adding the correct form because when even [official Red Hat documentation](https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.3_release_notes/bug_fixes_authentication_and_interoperability#idm140113937457168) sometimes gets it wrong, maybe one day someone will get lucky with the misspelling.
 2018-05-22 00:12:20 +12:00
Tim W 88ab836e15
Land #9987, AF_PACKET chocobo_root exploit 2018-05-21 17:05:53 +08:00
bwatters-r7 294b263159
Land #9966, Add Reliable Datagram Sockets (RDS) Privilege Escalation exploit 
Merge branch 'land-9966' into upstream-master
 2018-05-18 17:06:04 -05:00
Brent Cook eadb464a75 add licenses 2018-05-17 21:21:37 -05:00
Wei Chen e5c763f6bf Add support for stdio.h, stdlib.h, and String.h 2018-05-17 14:40:49 -05:00
Tim W 6594cbb5cc
Land #9947, AF_PACKET packet_set_ring exploit 2018-05-17 18:43:52 +08:00
Brendan Coles 4322e56c71 Recompile pre-compiled exploit executable (stripped, no DEBUG) 2018-05-17 09:43:07 +00:00
Brent Cook da07113194
Land #10007, add C interface for building Windows shell code (metasm-backed) 2018-05-16 22:58:32 -05:00
Tim W ce5b24eda0 fork early and cleanup files in module 2018-05-17 00:32:01 +08:00
Tim W ed5f2bffa9
Land #9919, add libuser roothelper privilege escalation exploit 2018-05-12 17:11:21 +08:00
Wei Chen 6cd59faa69 Namespace update 2018-05-11 10:27:54 -05:00
Wei Chen 76865732c8 Namespace update 2018-05-11 10:26:59 -05:00
Wei Chen 82c8138de0 Update naming and license 2018-05-11 10:08:16 -05:00
Wei Chen caf07116db Add compiler support capable of including headers. 
This is basically a wrapper for metasm, but supports built-in
headers so that as an user, I don't have manually do this
every time I compile something with metasm.
 2018-05-10 00:33:01 -05:00
Brendan Coles 5ae9b0185d Add AF_PACKET chocobo_root Privilege Escalation exploit 2018-05-07 07:11:07 +00:00
bwatters-r7 ce5be387c4
Land #8795, Added CVE-2016-0040 Windows Privilege Escalation 
Merge branch 'land-8795' into upstream-master
 2018-05-03 16:33:53 -05:00
bwatters-r7 729461e448
Re-add compiled Binary 2018-05-03 15:50:15 -05:00
bwatters-r7 16432efd8f
Remove binary file 2018-05-03 14:45:58 -05:00
Brendan Coles 3a688451b6 Add Reliable Datagram Sockets (RDS) Privilege Escalation 2018-05-03 12:51:21 +00:00
Brendan Coles f7504dd9d5 Add AF_PACKET packet_set_ring Privilege Escalation exploit 2018-04-28 01:40:17 +00:00
Brendan Coles 00583caadf Add Libuser roothelper Privilege Escalation exploit 2018-04-23 17:49:11 +00:00
h00die 2914ebf631 lpe ufo 2018-04-17 20:39:59 -04:00
bwatters-r7 0faf2f4e04
Land # 8007, Added NTDSgrab module to metasploit. 
Merge branch 'land-8007' into upstream-master
 2018-04-03 15:56:37 -05:00
Tim W c5039251a2 add CVE-2016-4655 
rebase
 2018-04-03 14:58:57 +08:00
William Vu 862a3ff74d
Land #9618, pipe auditing improvements 2018-03-26 17:01:48 -05:00