558f810165
Land #6667 , add a dev script for finding Metasploit release notes for modules
2016-03-13 14:03:54 -05:00
23eeb76294
update php_utility_belt_rce to use MetasploitModule
2016-03-13 13:59:47 -05:00
a6316d326e
Land #6662 , update disclosure date for php_utility_belt_rce
2016-03-13 13:58:04 -05:00
c89e53d0a3
Land #6666 , fix filezilla_server display bug showing the session ID
2016-03-13 13:56:44 -05:00
dabe5c8465
Land #6655 , use MetasploitModule as module class name
2016-03-13 13:48:31 -05:00
da039e136a
update test modules to use MetasploitModule
2016-03-13 13:44:44 -05:00
e059f42094
Bump version of framework to 4.11.16
2016-03-11 14:17:28 -08:00
66849302b5
Land #6665 , truncate nexpose vuln names > 255 characters
2016-03-11 14:01:55 -06:00
69de3adf7a
Fix a typo in the file name
2016-03-11 13:50:13 -06:00
1546bf32ed
Add a dev script to find Metasploit release notes
...
This script allows you to find the release notes of a:
* Pull request number for a bug fix, or a notable change.
* A module name (preferably just use the short name)
2016-03-11 13:44:38 -06:00
8217d55e25
Fix display issue when SESSION is -1
2016-03-11 11:37:22 -06:00
6f85c82dc0
Fix Nexpose import to truncate long vuln names
...
A warning is emitted since there is a potential for data loss, but since
we reference vulns by their ID, the data-integrity risk is small.
Initially triggered by some Nexpose data, this should probably be
properly fixed by removing the length bound on the field.
MS-1184
2016-03-11 11:02:55 -06:00
8953952a8f
correction for the DisclosureDate based on Exploit-DB
2016-03-11 14:05:26 +08:00
7009682100
Landing #6659 , Fix bug in MS08-067 related to incorrect service pack identification when fingerprinting
2016-03-10 14:29:29 -06:00
f4e4bb803f
Merge pull request #6657 from dmaloney-r7/staging/rails-upgrade
...
Rails 4.0 Deprecation Warnings
2016-03-09 15:19:36 -06:00
8d22358892
Land #6624 , PHP Utility Belt exploit
2016-03-09 14:12:45 -06:00
52d12b68ae
Clean up module
2016-03-09 14:08:26 -06:00
15ba85bac2
fix missed deprecations
...
missed some deprecation warnings
2016-03-09 13:29:35 -06:00
179d38b914
Fix #6658 , MS08-067 unable to find the right target for W2k3SP0
...
Fix #6658 .
When there is no service pack, the
Msf::Exploit::Remote::SMB#smb_fingerprint_windows_sp method returns
an empty string. But in the MS08-067 exploit, instead of check an
empty string, it checks for "No Service Pack", which causes it to
never detect the right target for Windows Server 2003 SP0.
2016-03-09 11:05:34 -06:00
88697a5d3f
Merge branch 'master' into staging/rails-upgrade
2016-03-08 15:22:04 -06:00
8697798989
Land #6643 , remove reference to Pcap.lookupaddrs
2016-03-08 12:38:22 -06:00
5c770cb5ab
Land #6650 , add #strip to #empty to replace #blank
2016-03-08 11:32:02 -06:00
3123175ac7
use MetasploitModule as a class name
2016-03-08 14:02:44 +01:00
05897f59df
Revert #6648 , revert Metasploit\n->Metasploit renames for now
...
A good chunk of modules use Metasploit::, which breaks. We need a new,
nonconflicting namespace.
2016-03-07 13:25:38 -06:00
204138c7c1
changing this to postgres 9.3
...
re-ordering stuff in .travis.yml
2016-03-07 13:25:37 -06:00
f703fa21d6
Revert "change Metasploit3 class names"
...
This reverts commit 666ae14259
2016-03-07 13:19:55 -06:00
44990e9721
Revert "change Metasploit4 class names"
...
This reverts commit 3da9535e22
2016-03-07 13:19:48 -06:00
0e46cc0259
Revert "change remaining class names"
...
This reverts commit 62217fff2b
2016-03-07 13:19:42 -06:00
aa5b201427
Revert "revert ssl_login_pubkey for now"
...
This reverts commit 7d773b65b6
2016-03-07 13:19:33 -06:00
3e0f8d67c9
Use #strip to more correctly simulate #blank?
...
See f900d9cf26
2016-03-07 13:14:37 -06:00
6406fa4c87
Land #6648 , change default Metasploit class name to just Metasploit
2016-03-07 07:55:18 -06:00
7d773b65b6
revert ssl_login_pubkey for now
2016-03-07 14:44:23 +01:00
289f43bb80
Land #4848 , remove some reliance on rails libraries from rex
2016-03-07 07:38:30 -06:00
62217fff2b
change remaining class names
2016-03-07 09:58:21 +01:00
3da9535e22
change Metasploit4 class names
2016-03-07 09:57:22 +01:00
666ae14259
change Metasploit3 class names
2016-03-07 09:56:58 +01:00
bb36cd016e
Fix #6643 , Pcap.lookupaddrs does not exist
2016-03-06 22:15:39 -06:00
5a0bec81cb
disable warnings for now, to be reenabled when the module base class is updated
2016-03-06 17:19:05 -06:00
659af68b16
Land #6388 , update msftidy check for new preferred Metasploit module base class
2016-03-06 17:12:20 -06:00
cc436fe438
update to new preferred base class for modules
2016-03-06 17:11:51 -06:00
a2c3b05416
Land #6405 , prefer default module base class of simply 'Metasploit'
2016-03-06 17:10:55 -06:00
e1db3ef369
Land #6388 , Update msftidy to error when module super class is incorrect
2016-03-06 16:53:11 -06:00
0fc4ebf4ab
Land #6618 , Improve Content-Length behavior in Rex HTTP
2016-03-06 16:38:44 -06:00
8faae94338
Land #6592 , make linux/x86/shell_reverse_tcp's shell path configurable and remove shell_reverse_tcp2
2016-03-06 15:33:53 -06:00
66c697d2e4
Land #6602 , update author info for dahua_dvr_auth_bypass
2016-03-06 15:13:01 -06:00
4711191def
remove non-specific URL
2016-03-06 15:12:25 -06:00
a1190f4344
Land #6598 , add post module for setting wallpaper
2016-03-06 15:00:10 -06:00
86845222ef
add meterpreter platform workaround
2016-03-06 14:51:34 -06:00
a8ac078586
Land #6636 , fix met finalizers to not double close
2016-03-06 12:55:39 -05:00
a5cdd7e17f
Bump version of framework to 4.11.15
2016-03-04 16:56:02 -08:00
Brent Cook
Metasploit
wchen-r7
James Lee
Adam Cammack
Jay Turla
James Barnett
bpatterson-r7
William Vu
David Maloney
Christian Mehlmauer
darkbushido
Spencer McIntyre