infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
46,782 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

46782 Commits (58cc2c1ff910e74fd782a2266d233399aacf1ac8)

Author SHA1 Message Date
Metasploit f5c796e4fc
automatic module_metadata_base.pstore update 2018-05-23 15:46:55 -07:00
Brent Cook 86a5b951aa
Land #9990, add SOCKS5 proxy support 2018-05-23 17:31:09 -05:00
Matthew Kienow add51a6741
Remove OpenStruct 2018-05-23 18:05:48 -04:00
Matthew Kienow 7ec5c06738
Change kind_of? to is_a? 2018-05-23 17:40:52 -04:00
Metasploit 9c8b619548
automatic module_metadata_base.pstore update 2018-05-23 12:21:34 -07:00
Brent Cook 0d55268b57
Land #10087, remove unused option from applocker bypass 2018-05-23 14:14:40 -05:00
Matthew Kienow 2c92e85494
Fix report_session_event with remote data service 
Modify DBManager method to allow session ID retrieval from a Hash
 2018-05-23 15:05:22 -04:00
Brent Cook bc5c7a15e5 remove single-entry OptEnum from module, since there is only one possible TECHNIQUE 2018-05-23 13:44:53 -05:00
bwatters-r7 77403479f5
code cleanup 2018-05-23 12:53:48 -05:00
g0tmi1k 4189819eaf Removing "--" 2018-05-23 18:26:01 +01:00
James Barnett f782cac3ff
Require swagger-blocks in dev and test 2018-05-23 12:23:43 -05:00
James Barnett 8acc6daf9b
Add doc for running the remote data service 2018-05-23 11:54:57 -05:00
Metasploit c962ede478
automatic module_metadata_base.pstore update 2018-05-23 09:47:40 -07:00
Brent Cook 5b3cca3082
Land #10084, Mark all versions of telpho10 as vulnerable 2018-05-23 11:41:26 -05:00
James Barnett b83ee106f7 Merge branch 'master' into local_api_docs 2018-05-23 10:06:12 -05:00
gushmazuko 3ef6f82894
Update bypassuac_sluihijack.rb 2018-05-23 12:25:49 +02:00
Jan Rude 567e2dbc7e
Update telpho10_credential_dump.rb 
Current version still vulnerable, developer ignores mails. It seems like this is going to be a 'won´t fix'
 2018-05-23 09:32:41 +02:00
Aaron Soto 8a72e7181a
Added username/password-based authentication 2018-05-22 20:42:23 -05:00
Aaron Soto 72efe66403
Refactored for better logging, IPv6 support, and prep for auth 2018-05-22 18:57:00 -05:00
Brendan Coles 45481f26b6 Add Msf::Post::OSX::Priv mixin 2018-05-22 22:25:39 +00:00
William Vu 70236c6424
Land #10081, unnecessary class definition fix 2018-05-22 17:25:17 -05:00
Metasploit 111536bf49
automatic module_metadata_base.pstore update 2018-05-22 15:14:26 -07:00
James Barnett 0472b9df3f
Land #10024, Fix find_or_create_* methods for remote data service 
This PR updates the find_or_create_* methods associated with each model to
no longer just proxy to the report_* model. It now performs a lookup through
the DataProxy and returns the found object if it exists, or creates a new
record if needed.
 2018-05-22 17:08:46 -05:00
Metasploit f18df1ae32
automatic module_metadata_base.pstore update 2018-05-22 14:57:43 -07:00
Brendan Coles 15e472637a
Land #10070, Fix cleanup in exploits/osx/local/rootpipe_entitlements 2018-05-22 21:52:24 +00:00
Metasploit 791ad9feb4
automatic module_metadata_base.pstore update 2018-05-22 14:32:16 -07:00
Brendan Coles b14e354b25
Land #10048, Make shell and meterpreter sessions consistent with cmd_exec 2018-05-22 21:26:47 +00:00
James Barnett 7d7f405234
Describe ALL the attributes! 2018-05-22 14:57:21 -05:00
Matthew Kienow cf8d0bd172
Remove unnecessary class declaration 2018-05-22 12:25:04 -04:00
bwatters-r7 0fd5a8afbd
Land #10071, return PLUGIN_DESCRIPTION instead of actual string 
Merge branch 'land-10071' into upstream-master
 2018-05-22 11:09:41 -05:00
Metasploit 8ba69f2d10
automatic module_metadata_base.pstore update 2018-05-22 09:00:23 -07:00
bwatters-r7 40d5f46277
Lad #10017, D-Link DSL-2750B Unauthenticated OS Command Injection 
Merge branch 'land-10017' into upstream-master
 2018-05-22 10:54:33 -05:00
lucyoa 6cc1a8dcbd
Rubocop fixes 2018-05-22 10:34:05 -04:00
Metasploit b73947c032
automatic module_metadata_base.pstore update 2018-05-21 16:08:05 -07:00
Jeffrey Martin 07fbbca9f4
Land #10074, Fixed bug in module cache 2018-05-21 18:01:46 -05:00
Brendan Coles 47caa7dddd
Land #10073, Add /etc/group to data/wordlists/sensitive_files.txt 2018-05-21 21:39:09 +00:00
Matthew Kienow 4ecc1ff551
Modify loots, notes and services search methods 
Modify loots and services method signatures. Remove workspace as a
positional argument, move into opts hash argument and update callers.
Made host search for these models more uniform. Update find_or_create
methods to handle difference in opts between find and report
operations.
 2018-05-21 17:37:51 -04:00
bwatters-r7 75562e2bbc
Land #10044, Fix is_system? in Msf::Post::Windows::Priv for non-English 
Merge branch 'land-10044' into upstream-master
 2018-05-21 14:24:26 -05:00
christopher lee 1b7e613080 Fixed bug in module cache 2018-05-21 14:18:43 -05:00
Christopher Lee 2cbdc40f7d
Merge pull request #26 from rapid7/master 
merge master
 2018-05-21 14:16:37 -05:00
James Barnett e4038af79e Merge branch 'master' into local_api_docs 2018-05-21 13:44:34 -05:00
follower 57bb7fd819
Add correct filename for `/etc/group` 
AFAICT the correct filename is the singular form `group` not `groups` (e.g. [see](https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/4/html/Introduction_To_System_Administration/s3-acctspgrps-group.html) & [see](https://linux.die.net/man/5/group)).

Rather than just correcting the filename in place I'm adding the correct form because when even [official Red Hat documentation](https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.3_release_notes/bug_fixes_authentication_and_interoperability#idm140113937457168) sometimes gets it wrong, maybe one day someone will get lucky with the misspelling.
 2018-05-22 00:12:20 +12:00
Tim W 88ab836e15
Land #9987, AF_PACKET chocobo_root exploit 2018-05-21 17:05:53 +08:00
Brent Cook db0f30d375
Land #10072, update kiwi plugin, add dcsync, dcshadow, and powershell streaming support 2018-05-21 04:03:36 -05:00
Brendan Coles 12002a4a2a
Merge pull request #6 from timwr/pr-9987 
Fix gcc path and file cleanup
 2018-05-21 18:51:26 +10:00
Tim W 9e9dff8b6a fix file cleanup on failed exploitation 2018-05-21 16:47:09 +08:00
Tim W cd0161ada2 fix gcc for shell_reverse_tcp payloads on ubuntu 2018-05-21 16:46:42 +08:00
Brent Cook 134ed389a9 update kiwi plugin, add dcshadow and powershell streaming support 
This does a few things:

 1. Updates the kiwi plugin to mimikatz 2.1.1 20180502
 2. Adds ability to dcsync & hashdump via Powershell
 3. Adds streaming support to powershell commands (no more timeouts)

It also adds the following powershell functions to make things more
convenient:

 * Invoke-DcSync
 * Invoke-DcSyncAll
 * Invoke-DcSyncHashDump

See https://github.com/rapid7/metasploit-payloads/pull/284 for details
 2018-05-21 03:22:05 -05:00
Auxilus 95ad075d97
Update nessus.rb 2018-05-21 09:08:17 +05:30
Auxilus d0941e847b
return PLUGIN_DESCRIPTION instead of actual string 2018-05-21 09:06:00 +05:30