infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
46,706 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

1758 Commits (60becc272acb974b27cb0f57946a86f4508915af)

Author SHA1 Message Date
bwatters-r7 37a844bef0
Land # 9247, Add ASUS infosvr Auth Bypass Command Execution exploit 
Merge branch 'land-9247' into upstream-master
 2018-04-20 11:24:47 -05:00
Tim W 1547a47026
Land #9784, add osx high sierra APFS password disclosure post module 2018-04-18 14:27:22 +08:00
Tim W 72cd97d3e4 minor documentation and comment tweaks 2018-04-18 14:22:32 +08:00
Lars Sorenson 27ded57cda Add MSF module for EDB 6768 2018-04-14 08:51:51 -04:00
Brendan Coles 760eac005f
Minor update to documentation 2018-04-12 16:48:33 +10:00
Adam Cammack 2a6acfd1d0
Land #9823, Private IP leak via WebRTC 2018-04-11 17:37:56 -05:00
Adam Cammack 7e4caa16ff
Add more example output to module doc 2018-04-11 17:29:18 -05:00
Dhiraj Mishra 8b6bfcb2f0
Added documentation 2018-04-11 11:28:50 +05:30
Brendan Coles 608e53ea89 Add documentation 2018-04-10 14:18:22 +00:00
h00die a473dd04a8
Land #9813, Add etcd library and version scanner 2018-04-08 07:05:31 -04:00
Daniel Teixeira 09bbbf82ba
Update oscommerce_installer_unauth_code_exec.md 2018-04-06 13:05:14 +01:00
Daniel Teixeira f50b42ec52
Rename osCommerce.md to oscommerce_installer_unauth_code_exec.md 2018-04-06 11:32:38 +01:00
Daniel Teixeira cb0e516ecd
Update osCommerce.md 2018-04-06 11:32:20 +01:00
Daniel Teixeira bcef50b062
osCommerce Documentation 2018-04-05 20:26:44 +01:00
Brent Cook 81c78a51c2
Land #9794, Added support for regional dialects 2018-04-05 12:56:07 -05:00
Spencer McIntyre 0a3bcf570c Add the scanner/smb/impacket/dcomexec module 2018-04-04 17:34:41 -04:00
Jon Hart b9dbf1a6f3
Fix formatting error in etcd open_key_scanner 2018-04-04 10:59:38 -07:00
Jon Hart c96bdf4ea1
Add etcd version scanner docs 2018-04-04 10:58:55 -07:00
Chris Higgins 1fa40bfe3b
Land #8539, ProcessMaker Plugin Upload exploit 2018-04-03 20:52:17 -05:00
bwatters-r7 e17be05e6a
Land #9595, Add post module RID Hijacking on Windows 2018-04-03 14:12:34 -05:00
Brent Cook 1424019411 update docs 2018-04-03 13:52:02 -05:00
Brent Cook 8f7d9f3ac8 rename module 2018-04-03 13:44:55 -05:00
Brent Cook bd80e9d0c5 documentation 2018-04-03 13:39:11 -05:00
Brent Cook 8c2138f13b
Land #9742, QNX exploit improvements 2018-04-03 07:50:29 -05:00
Brent Cook 226ef160ff
Land #9748, Convert the smbloris DoS into an external module 
Help reliability and performance. This some Ruby-specific external module
tooling as a result as well.
 2018-04-02 23:25:10 -05:00
Carter Brainerd (thecarterb) cdcbd03b3c
Create apfs_encrypted_volume_passwd.md 2018-04-02 20:48:54 -04:00
Jacob Robles 288082e68d
Update documentation for get_user_spns.py 2018-04-02 12:15:13 -05:00
Brent Cook fa34f3e0a4
Land #9718, Add get_user_spns 'kerberoasting' module 2018-04-02 10:04:44 -05:00
Jon Hart a1e83ce835
Land #9760, @h00die's etcd scanner 2018-03-28 10:41:22 -07:00
Jon Hart e01679d374
Use common path in etcd docs 2018-03-28 09:55:05 -07:00
Jon Hart e7f9d789eb
Add docker docs for etcd 2018-03-28 09:43:12 -07:00
Jacob Robles a1fff486bc
Land #9666, Add 2017-8917 RCE for Joomla 3.7.0 2018-03-28 11:08:38 -05:00
Jacob Robles 0fa63ae7b3
Update documentation and module 
Included Super User in the documentation.
Implemented changes h00die suggested.
Modified sqli to generate strings used in regex.
 2018-03-28 10:57:28 -05:00
h00die c97743925f jhart suggestions 2018-03-27 18:46:31 -04:00
Wei Chen 94fd599756
Land #9684, Adding ManageEngine Application Manager RCE 
Land #9684
 2018-03-27 15:17:20 -05:00
Wei Chen fb0d87163c Update documentation for manageengine_appmanager_exec 2018-03-27 15:16:39 -05:00
Wei Chen 0a0bef0c4f
Land #9633, Exodus Wallet Remote Code Execution 
Land #9633
 2018-03-27 14:51:15 -05:00
William Vu a8914f2f9f
Land #9775, module doc improvements to MS17-010 2018-03-27 14:38:20 -05:00
William Vu 7e4e6e6437 Update ms17_010_{psexec,command} module docs 2018-03-27 14:32:21 -05:00
Wei Chen 8c88c53e5d
Land #9670, Gitstack v2.3.10 RCE 
Land #9670
 2018-03-27 13:00:47 -05:00
Wei Chen df49345f5d Update gitstack_rce.md 2018-03-27 12:59:49 -05:00
h00die e462cb49a2 updated docs 2018-03-25 14:53:30 -04:00
h00die 80c4d59560
Land #9702 exploit for clipbucket 2018-03-24 19:59:17 -04:00
h00die 0028e2c5ba documentation update 2018-03-24 19:25:59 -04:00
Brendan Coles d5961f277e Add documentation 2018-03-24 23:16:51 +00:00
Brendan Coles fdd2af2d2a Update tested versions 2018-03-24 00:23:12 +00:00
Adam Cammack 5ece14b064
Convert SMBLoris to an external module 2018-03-23 14:55:18 -05:00
Daniel Teixeira d192173792
Vulnerable application link update 2018-03-22 11:57:54 +00:00
Brendan Coles 6885f16e38 Add documentation 2018-03-22 06:27:13 +00:00
Jacob Robles 8d12118d1f
Add get_user_spns external module and documentation 2018-03-21 06:26:15 -05:00
Brendan Coles ac9f506b45 Update tested versions 2018-03-20 02:49:56 +00:00
Mehmet İnce 53eabfc1df Update documentation and add check before exploit 2018-03-19 23:27:18 +03:00
Touhid M Shaikh 0817e6b15f
Delete playsms_uploadcsv_exec.md 2018-03-18 13:57:04 +05:30
Touhid M Shaikh 0e0fcdf727 PlaySMS 1.4 RCE 
PlaySMS 1.4 Remote Code Execution using Phonebook import Function in import.php
 2018-03-18 13:46:30 +05:30
Brent Cook 44d5022380
Land #9529, Add module for HP iLO CVE-2017-12542 authentication bypass 2018-03-16 16:50:54 -05:00
Jacob Robles 1b2f1ced02
Land #8422, Typo3 News Module Sql Injection exploit 2018-03-15 10:55:04 -05:00
Jacob Robles ba0d990273
Documentation added and Error Checks 2018-03-15 10:46:08 -05:00
Ege Balcı 177eca30e8
Usage instructions adjusted. 2018-03-15 12:39:22 +03:00
h00die d736a6d2ec updated juniper docs 2018-03-14 21:02:22 -04:00
Mehmet İnce b55a750fa9 Fix typo and couple tiny nitpicks 2018-03-14 11:51:21 +03:00
Mehmet İnce 889c914b3d Updating documentation and minor code changes 2018-03-13 12:05:27 +03:00
Ege Balcı b7b09c5010
Documentation added. 2018-03-12 20:30:15 +03:00
Brent Cook d86dcbc237
Land #9632, owa_login and auth_brute enhancements 2018-03-12 10:31:20 -05:00
Touhid M Shaikh 9b0ba4a6fa clipbucket_fileupload_exec 2018-03-12 14:17:13 +05:30
Jacob Robles 1fd0087a97
Land #7654, varnish file read 2018-03-09 10:59:04 -06:00
Luis Hernandez 37bf4d118a Changes suggested by h00die 0803 2018-03-09 09:55:50 -05:00
Jacob Robles ea78e21961
Documentation accuracy 2018-03-09 07:43:12 -06:00
Jacob Robles 2735ae57cb
Documentation accuracy 2018-03-09 07:31:55 -06:00
Luis Hernandez 048d0d1fe4 Changes suggested by h00die 2018-03-08 20:13:01 -05:00
Jacob Robles 178fa16953
Grammar fix 2018-03-08 07:42:29 -06:00
Jacob Robles 24079c345d
Style guide and grammar fixes 2018-03-08 07:30:02 -06:00
Mehmet İnce 611b208267 Adding ManageEngine Application Manager RCE 2018-03-07 23:54:01 +03:00
Kirk Swidowski fb04fef3a5 added documentation. 2018-03-07 08:34:49 -08:00
Kirk Swidowski 81596b627d added documentation. 2018-03-07 08:31:25 -08:00
Jacob Robles 15269ec3ce
Land #9678, Add memcached UDP version scanner 2018-03-07 10:14:29 -06:00
Jacob Robles 86dd382e6a
Land #9554, Eclipse Equinoxe OSGi console RCE 2018-03-07 08:41:31 -06:00
Fab e8a227b1a6 Changes as requested by jhart-r7: 
- Default Username / Password are now random
- Doc fixed
- REST typo fixed
 2018-03-07 10:48:05 +01:00
Jon Hart 7733662767
Add docs for memcached_udp_version 2018-03-06 18:12:40 -08:00
Luis Hernandez 05a653b853 Add module documentation 2018-03-06 20:37:11 -05:00
Brent Cook d6871f5733
Land #9614, Juniper post enum module 2018-03-06 10:29:56 -06:00
Jacob Robles 99799f1e98
Update doc 2018-03-05 13:40:37 -06:00
Jacob Robles a4f48eb80f
Add GitStack v2.3.10 RCE 2018-03-05 13:25:41 -06:00
Jon Hart 3028dccd7a
Land #9644, @xistence's memcached stats amplification scanner 2018-03-05 09:02:28 -08:00
h00die d454267ea5 update docs 2018-03-02 21:00:41 -05:00
William Vu dd2e15f959 Update doc a final time to appease the @h00die god 2018-03-02 19:40:11 -06:00
William Vu 25f36fb926 Refactor code into new methods 2018-03-02 19:16:37 -06:00
William Vu c343c926cf Add N300 version to module doc 2018-03-02 19:15:20 -06:00
William Vu 0c0f00941b Add note about directly connecting to telnetd 2018-03-02 19:15:20 -06:00
William Vu b6d563e2a3 Update doc regarding vprint 2018-03-02 19:15:19 -06:00
William Vu 4b29df7ab3 Update doc for automatic targeting 2018-03-02 19:15:19 -06:00
William Vu 86cd52ae4b Update doc with real info 2018-03-02 19:15:18 -06:00
h00die 7505e0e831 updated docs 2018-03-02 19:15:18 -06:00
h00die 031b44baea updated docs 2018-03-02 19:15:17 -06:00
William Vu a9caec5130 Add module doc 2018-03-02 19:15:17 -06:00
Jon Hart 83430f858e
Add docs for memcached amplification scanner 2018-03-01 17:07:57 -08:00
Daniel Teixeira 2faa052bc0
Update Exodus Wallet Documentation 2018-02-28 10:15:54 +00:00
Daniel Teixeira 11881c1028
Exodus Documentation 2018-02-26 21:30:39 +00:00
Jacob Robles 0b22014306
Rename Doc 2018-02-26 06:09:15 -06:00
Jacob Robles 4e4aeb7b4d
Add GitStack v2.3.10 Unauth REST API Aux Module 2018-02-26 06:04:38 -06:00
h00die 023bf79097
Land #9310 docs for many aux scanners 2018-02-24 14:32:33 -05:00
h00die c56d7967e7 finished cleanup 2018-02-24 14:31:52 -05:00
h00die 15a29a1994 finished up comments 2018-02-24 13:39:14 -05:00
r4wd3r aafd67d416
Adjust rid_hijack.md documentation file 2018-02-23 04:30:22 +01:00
h00die c7bbc6eca4 juniper post enum module 2018-02-22 21:08:21 -05:00
James Barnett 5815b626d9
Dont save email addresses as valid 
Also add module doc for owa_login module
 2018-02-22 14:58:11 -06:00
r4wd3r d3851ed89c
Add rid_hijack module documentation. 2018-02-22 18:49:11 +01:00
bwatters-r7 4b8a8fa2b1
Land #9441, Create exploit for AsusWRT LAN RCE 
Merge branch 'land-9441' into upstream-master
 2018-02-22 10:40:45 -06:00
William Vu a9d6845f25 Add module doc 2018-02-21 21:50:08 -06:00
Aaron Soto bda7fefa7f
Land #9444 - `hsts_eraser` module and docs 2018-02-20 21:22:55 -06:00
Jacob Robles b2cb4c425d
Land #9594, CloudMe Sync v1.10.9 Buffer Overflow 2018-02-20 17:49:19 -06:00
Jacob Robles a23240a742
Update Documentation 
[ticket: #9594]
 2018-02-20 17:48:21 -06:00
Daniel Teixeira 04882b0464
Fixed indentation 2018-02-20 22:00:36 +00:00
Daniel Teixeira ff3b318abd
CloudMe Sync Client documentation 2018-02-20 21:56:31 +00:00
Jacob Robles 107a41a4ce
Land #9561, Disk Savvy Enterprise v10.4.18 built-in server buffer overflow 2018-02-20 15:42:12 -06:00
Jacob Robles ab6f6d75d2
Update Documentation 
[ticket: #9561]
 2018-02-20 15:37:40 -06:00
Pedro Ribeiro f89cebbd89
Add sploit doc 2018-02-20 19:35:10 +00:00
Chris Higgins 74c6e21f49
Lands #9504, MagniComp SysInfo privilege escalation 2018-02-19 22:47:33 -06:00
Quentin Kaiser 663581fa10 Fix markdown ticks + references location. 2018-02-17 14:30:01 +01:00
Quentin Kaiser a2d104313b Add documentation file. 2018-02-17 12:31:54 +01:00
Brent Cook 242f2d3117
Land #9512, Add Claymore Dual GPU Miner<= 10.5 DoS module 2018-02-16 10:46:48 -06:00
Wei Chen b533ec6019
Land #9509, Ulterius Server < v1.9.5.0 Directory Traversal 
Land #9509
 2018-02-15 16:34:31 -06:00
Wei Chen 949b474a0a Avoid target_uri.path 
It doesn't look like target_uri.path is suitable for this scenario,
because it causes our input to be modified and hard to use.
 2018-02-15 16:31:09 -06:00
Daniel Teixeira 630e9dd0de
Verification steps update 2018-02-14 20:40:32 +00:00
Daniel Teixeira 07763ccd6a
Disk Savvy Server Buffer Overflow Documentation 2018-02-14 20:35:03 +00:00
Fab fe46f635db Changes as requested by bcoles 2018-02-13 10:54:42 +01:00
h00die 285b329ee1
Land #9422 abrt race condition priv esc on linux 2018-02-11 11:58:39 -05:00
Pearce Barry add7ae8fa1
Land #9536, Add Ubuntu notes to documentation 2018-02-11 07:27:00 -06:00
Pearce Barry 321b78b0fe
Land #9408, Add Juju-run Agent Privilege Escalation module (CVE-2017-9232) 2018-02-11 07:19:49 -06:00
Brendan Coles 4e5cbd68b9 Add Ubuntu notes to documentation 2018-02-11 06:52:36 +00:00
Pearce Barry 4b6362a37d
Minor doc tweaks. 2018-02-10 16:14:14 -06:00
Brendan Coles 1177efef89 Update tested versions 2018-02-10 16:32:20 +00:00
h00die 38252e4384 success against x64 2018-02-10 07:17:15 -05:00
Brendan Coles 9e11632608 Add documentation 2018-02-09 16:15:04 -05:00
h00die cb1b59545b
Land #9469 linux local exploit for glibc ld audit 2018-02-09 14:00:42 -05:00
Jacob Robles c642d420c2
Land #9489, Add scanner for the Bleichenbacker oracle (AKA: ROBOT) 2018-02-08 12:55:02 -06:00
Brent Cook ca4ad1d0c4
Land #9478, Improve Dup Scout BOF exploit 2018-02-07 23:51:14 -06:00
Jacob Robles ab0d18669e
Doc Changes 2018-02-07 19:26:39 -06:00
Jacob Robles e53500f397
Fixed Headings 2018-02-07 08:11:58 -06:00
Jacob Robles 1de8ec1073
Implemented Suggested Changes 
Updated documentation headings and function/filename formatting.
Updated module options and formatting. Added check for file to parse.
 2018-02-07 08:01:54 -06:00
Brendan Coles 7cbf89f055 Add documentation 2018-02-07 13:17:54 +00:00
Brendan Coles 8168e881b3 Add documentation 2018-02-07 07:49:21 +00:00
bluebird 278e9a92fc add module and documentation 2018-02-06 20:30:34 +08:00
Jacob Robles 1e9e9c9be0
Ulterius Server < v1.9.5.0 Directory Traversal 
Adds documentation and module for Ulterius Server
directory traversal vulnerability.
 2018-02-05 22:50:09 -06:00
Brendan Coles ce6e85f64f Add documentation 2018-02-05 13:48:41 +00:00
Brendan Coles 696817215b Update tested versions 2018-02-05 04:48:52 +00:00
Carter Brainerd (thecarterb) e5b490c1c0
Remove weird sentence in cve_2017_8464_lnk_rce 2018-02-04 12:57:56 -05:00
Brendan Coles 638d6ce33d Add documentation 2018-02-04 04:47:46 +00:00
thecarterb bde2884e11 Fixes from review 2018-02-03 11:23:58 -05:00
Carter Brainerd (thecarterb) 75d2b33f2e
Add intro header to ms17_010_command 2018-02-02 20:47:29 -05:00
Carter Brainerd (thecarterb) 250a2beff7
Make options a bullet list in archmigrate 2018-02-02 20:46:07 -05:00