Pearce Barry
|
23c2787d57
|
Land #7795, Hardware Bridge API.
Initial bridge API that supports the HW rest protocol.
|
2017-02-02 08:47:59 -06:00 |
Pearce Barry
|
16de745437
|
Minor code cleanups/corrections.
|
2017-02-01 16:12:45 -06:00 |
Brent Cook
|
3c9b1be649
|
Land #7883, Fix cisco_firepower_download to pass the username properly
|
2017-01-27 16:31:06 -06:00 |
Brent Cook
|
4480ea7877
|
Land #7827, Cisco Firepower Management Console LoginScanner
|
2017-01-27 16:26:40 -06:00 |
Brent Cook
|
171cc7d54e
|
slight wording tweak
|
2017-01-27 16:26:23 -06:00 |
wchen-r7
|
e6de951e3e
|
Fix cisco_firepower_download to pass the username properly
|
2017-01-27 16:25:34 -06:00 |
Brent Cook
|
a4dd1fc846
|
Land #7805, Add CVE-2016-6435 - Cisco Firepower Management Console Dir Traversal
|
2017-01-27 16:09:14 -06:00 |
h00die
|
f846535d78
|
Land #7876 which adds an Advantech Webaccess credential gatherer
|
2017-01-26 19:37:36 -05:00 |
wchen-r7
|
fd6a58a348
|
URI decode users
|
2017-01-26 18:30:17 -06:00 |
wchen-r7
|
e47f38b3c9
|
Look at the right link to extract users
|
2017-01-26 18:20:06 -06:00 |
wchen-r7
|
ba50f2f88b
|
Fix nil for empty pass
|
2017-01-26 17:51:20 -06:00 |
wchen-r7
|
55b9c15d68
|
Pass should not be forced
|
2017-01-26 17:48:41 -06:00 |
wchen-r7
|
4ee0a380d1
|
Update module description
|
2017-01-26 16:35:15 -06:00 |
wchen-r7
|
72b654c9b1
|
Update description
|
2017-01-26 14:58:02 -06:00 |
wchen-r7
|
94bc44b485
|
Add Advantech WebAccess Post Auth Credential Collector
|
2017-01-26 14:53:59 -06:00 |
wchen-r7
|
781bc8420a
|
Add Advantech WebAccess LoginScanner module
|
2017-01-26 13:54:50 -06:00 |
Brent Cook
|
836da6177f
|
Cipher::Cipher is deprecated
|
2017-01-22 10:20:03 -06:00 |
Brent Cook
|
f69b4a330e
|
handle Ruby 2.4 Fixnum/Bignum -> Integer deprecations
|
2017-01-22 10:20:03 -06:00 |
Jin Qian
|
b4d3e9da8d
|
This closes #7849 on the confusing message.
Use result.proof which has the right message. Thanks to Wei for pointing it
|
2017-01-19 15:39:10 -06:00 |
wchen-r7
|
b5f41b2915
|
Update advantech_webaccess_dbvisitor_sqli name
|
2017-01-18 11:09:52 -06:00 |
wchen-r7
|
82ab4fc630
|
Update cisco_firepower_download module & documentation
|
2017-01-17 13:58:10 -06:00 |
h00die
|
c31d398549
|
more description
|
2017-01-16 09:46:56 -05:00 |
wchen-r7
|
a687073416
|
Add Cisco Firepower Management Console LoginScanner
|
2017-01-13 16:59:20 -06:00 |
wchen-r7
|
18347a8de7
|
Land #7774, Fix pivoting of UDP sockets in scanners
|
2017-01-10 13:57:28 -06:00 |
wchen-r7
|
8194603725
|
Add CVE-2016-6435 - Cisco Firepower Management Console Dir Traversal
|
2017-01-09 14:39:37 -06:00 |
Craig Smith
|
5f07bca775
|
Hardware Bridge API. Initial bridge API that supports the HW rest protocol specified here:
http://opengarages.org/hwbridge Supports an automotive extension with UDS calls for mdoule
development.
|
2017-01-06 19:51:41 -08:00 |
dmohanty-r7
|
5cba9b0034
|
Land #7747, Add LoginScanner module for BAVision IP cameras
|
2017-01-06 16:25:44 -06:00 |
Brent Cook
|
04a026e786
|
remove lies from module, this is a bound socket
|
2017-01-02 09:47:18 -06:00 |
Brent Cook
|
fdca963b61
|
check if the socket exists before closing
|
2016-12-30 14:59:31 -06:00 |
William Vu
|
a7debd09fd
|
Fix broken YouTube link in firetv_youtube
Guess it's back to Epic Sax Guy. :-)
|
2016-12-25 20:22:07 -06:00 |
William Vu
|
6bb0f3207d
|
Add reboot action to chromecast_reset
|
2016-12-25 15:20:46 -06:00 |
wchen-r7
|
144f886e8b
|
Add LoginScanner module for BAVision IP cameras
|
2016-12-23 16:22:17 -06:00 |
William Vu
|
0589948a73
|
Remove other rhost (oops) and fail_with
|
2016-12-23 16:10:21 -06:00 |
Jon Hart
|
b4235835c8
|
rhost -> ip
|
2016-12-23 13:20:24 -08:00 |
Jon Hart
|
60e602c371
|
Update chromecast wifi gather module to use Scanner for scanning in bulk
|
2016-12-23 11:34:19 -08:00 |
Jin Qian
|
da9ea0b85c
|
Change the PCRE.
|
2016-12-16 15:41:10 -06:00 |
dmohanty-r7
|
f74fd9e5dd
|
Land #7672, support LOCKED_OUT and DISABLED login status
|
2016-12-16 15:11:05 -06:00 |
jinq102030
|
378d8aea36
|
Merge pull request #7697 from h00die/fix_colorado
Fix ftp traversal error conditions
|
2016-12-16 13:51:15 -06:00 |
h00die
|
b5beb2eb93
|
throw errors
|
2016-12-12 21:48:08 -05:00 |
h00die
|
2dca7c871b
|
applying #7582 to all ftp aux traversals
|
2016-12-10 16:05:09 -05:00 |
William Vu
|
f0dca7abbf
|
Land #7692, print_error for error_sql_injection
|
2016-12-09 17:09:52 -06:00 |
William Vu
|
2b0bce6459
|
Land #7690, drupal_views_user_enum user count fix
|
2016-12-09 16:55:01 -06:00 |
William Vu
|
4e235be484
|
Ensure a trailing slash for base_uri
Technically, the GET parameters should be in vars_get, but we don't want
to refactor the entire module right now.
|
2016-12-09 16:53:58 -06:00 |
Jin Qian
|
8780c325a7
|
Fixed issues #7691, silent exit.
Add a print statement to alert user what is missing, user could be confused that "show missing" is empty yet something is missing.
|
2016-12-09 16:20:44 -06:00 |
dmohanty-r7
|
77dd952370
|
Land #7592, check nil return value when using redis_command
|
2016-12-09 16:07:12 -06:00 |
Jin Qian
|
17c12a78f5
|
Fixed issue #7689, count of found users not accurate
In module drupal_views_user_enum, the count of found users is not accurate.
Fixed it by doing flatten before doing counting.
|
2016-12-09 15:19:43 -06:00 |
wchen-r7
|
7e0b224eb2
|
Make ABORT_ON_LOCKOUT non default
|
2016-12-08 15:07:53 -06:00 |
wchen-r7
|
0110b97fa2
|
Fix #7671, support LOCKED_OUT and DISABLED login status
This allows login scanner modules to skip a user if it is
locked out, or disabled.
Fix #7671
|
2016-12-07 16:49:16 -06:00 |
Rich Whitcroft
|
d3a8409a49
|
prevent further lockouts in smb_login
|
2016-12-06 21:53:08 -05:00 |
Jin Qian
|
4a35f8449a
|
Fixed issue #7650 by matching Server header using regex as Wei suggested
The suggestion by Wei is simpler than the one I checked in which checks for presence of Server header before calling include method.
|
2016-12-02 20:26:38 -06:00 |