Commit Graph

1758 Commits (60becc272acb974b27cb0f57946a86f4508915af)

Author SHA1 Message Date
Carter Brainerd (thecarterb) 9e11b0629f
Fix examples section in run_as_psh 2018-02-02 20:44:46 -05:00
Carter Brainerd (thecarterb) 3733365955
Add options section to archmigrate
- Also make verification steps code instead of surrounded in quotes
2018-02-02 20:43:22 -05:00
Carter Brainerd (thecarterb) 3a764b174a
Remove unnecessary HRs in hashdump 2018-02-02 20:39:47 -05:00
Carter Brainerd (thecarterb) fb0456df01
Add intro header 2018-02-02 20:38:10 -05:00
Carter Brainerd (thecarterb) df976cf2b0
Add intro header to ad_to_sqlite 2018-02-02 20:37:29 -05:00
Carter Brainerd (thecarterb) dff7fccc02
Fix ugly header in aws_create_iam_user 2018-02-02 20:36:31 -05:00
Carter Brainerd (thecarterb) 31f69b306b
Add description to sshkey_persistence
- Also make options headers to be more consistent with module options
2018-02-02 20:35:06 -05:00
Carter Brainerd (thecarterb) 664411786c
Fix a few things in getvinfo
- Add intro header
- Change up first sentence for clarity
- Fix `CLEAR_DTCS` header
2018-02-02 20:30:40 -05:00
Carter Brainerd (thecarterb) c9d41f215d
Update allwinner_backdoor.md 2018-02-02 20:26:42 -05:00
Carter Brainerd (thecarterb) d3084638fa
Update netgear_r7000_cgibin_exec docs
- Add 'Introduction' header
- Make module name in intro into code (easier to read)
2018-02-02 20:23:43 -05:00
Carter Brainerd (thecarterb) 6f086e9110
Fix broken link 2018-02-02 20:08:38 -05:00
Adam Cammack 51e098da35
Add scanner for Bleichenbacher oracle (ROBOT) 2018-02-02 16:29:07 -06:00
Carter Brainerd (thecarterb) be01da2861
Add clarification to score range
- Also add an introduction header
2018-02-02 15:06:42 -05:00
Carter Brainerd (thecarterb) 1fb7c21cb7
Add length clarification to censys_search 2018-02-02 14:51:09 -05:00
Carter Brainerd (thecarterb) b51ecda9d6
Fix CUSTOMTEMPLATE option format 2018-02-02 14:27:09 -05:00
Carter Brainerd (thecarterb) a65604b09d
Add introduction header to web_delivery 2018-02-02 14:19:25 -05:00
Carter Brainerd (thecarterb) 2d8a249a56
Add intro header to office_ms17_11882 2018-02-02 14:12:36 -05:00
Carter Brainerd (thecarterb) a7e9772e25
A few fixes for office_word_hta
- Add introduction header
- Fix `Vulnerable Application` header and make it plural (multiple apps)
- Remove unnecessary console line for example
2018-02-02 14:11:05 -05:00
Carter Brainerd (thecarterb) daedf2a089
Fix word choice in cve_2017_8464_lnk_rce
- Also remove an unnecessary example step
2018-02-02 14:06:03 -05:00
Carter Brainerd (thecarterb) 0739fab092
Clarify testing environments for hp_dataprotector 2018-02-02 14:03:01 -05:00
Carter Brainerd (thecarterb) acf7f7747d
Fix double backslashes in panda_psevents 2018-02-02 13:32:55 -05:00
Carter Brainerd (thecarterb) 67682bd243
Make webdav.md look a little better 2018-02-02 13:31:30 -05:00
Carter Brainerd (thecarterb) d4c70a3beb
Fix md header in bypassuac_fodhelper 2018-02-02 13:28:47 -05:00
Carter Brainerd (thecarterb) 3de576a0df
Fix md header in vxsrchs_bof doc 2018-02-02 13:24:35 -05:00
Carter Brainerd (thecarterb) 9dde5ebf92
Update eternalblue docs
- Add a reference for OS protection rings
- Uncomment some windows versions
- Fix a word choice issue
2018-02-02 13:21:43 -05:00
William Vu c9473f8cbc
Land #9473, new MS17-010 aux and exploit modules 2018-02-01 23:56:29 -06:00
h00die 7cb0a118c1
Land #9399 a linux priv esc against apport and abrt 2018-02-01 21:54:54 -05:00
Brendan Coles 3c21eb8111 Update documentation 2018-02-02 02:27:13 +00:00
Jacob Robles 559b592394
Corrected Documentation 2018-02-01 13:17:02 -06:00
Jacob Robles bc18389284
Updated Document and Module
Update the documentation based on analysis of the vulnerability.
Slight modifications to the exploit module as well to reduce the
size of the generated file and reduce bad characters.
2018-02-01 10:05:50 -06:00
Brendan Coles 0d80ca6f79 Change documentation extension from rb to md 2018-01-31 23:26:30 +00:00
Brent Cook beb4d56f7d
Land #9354, Debut embedded httpd server (Brother printers) DoS 2018-01-31 17:03:13 -06:00
bwatters-r7 8be2b1f59e
Land # 9407, Add BMC Server Automation RSCD Agent RCE exploit module
Merge branch 'land-9407' into upstream-master
2018-01-31 13:35:29 -06:00
zerosum0x0 92915ebb69
Update ms17_010_command.md 2018-01-29 11:17:44 -07:00
Jacob Robles d4a0372238
Land #9457, Dup Scout Enterprise v10.4.16 - Import Command Buffer Overflow 2018-01-29 11:40:54 -06:00
zerosum0x0 5529bc10b3 fix docs 2018-01-29 10:20:57 -07:00
zerosum0x0 8627f6b834 added docs 2018-01-29 01:34:25 -07:00
Brendan Coles 23f4bf1583 Add documentation 2018-01-27 03:15:06 +00:00
Aaron Soto c390696ddf
Land #9379, Oracle Weblogic RCE exploit and documentation 2018-01-25 21:47:18 -06:00
h00die 4be0e7f9ef final fixes for brother debut dos 2018-01-24 20:53:08 -05:00
Daniel Teixeira c1ff0c1e00
Dup Scout XML documentation 2018-01-24 20:47:02 +00:00
Kevin Kirsche 7b01785347
Add documentation to pull request
Added credit to @asoto-r7 for the documentation
2018-01-24 14:36:16 -05:00
Pearce Barry eb572a3ef5
Land #8632, colorado ftp fixes 2018-01-23 17:45:07 -06:00
bwatters-r7 a27cfeaea9
Land #9416, Sync Breeze Enterprise 9.5.16 Import Command buffer overflow
Merge branch 'land-9416' into upstream-master
2018-01-23 16:35:51 -06:00
Adam Cammack d81d50b491
Land #9430, Improve Hyper-V checkvm checks 2018-01-23 15:22:12 -06:00
bwatters-r7 8eb6df41e3
Land #9205, Documentation for Kaltura <= 13.1.0 RCE (CVE-2017-14143)
Merge branch 'land-9205' into upstream-master
2018-01-23 12:45:59 -06:00
bwatters-r7 04806bc84a
Updates to documentation per h00die 2018-01-23 12:44:39 -06:00
Vishal Gupta c13e02431d updated 2018-01-23 06:19:44 -05:00
Vishal Gupta a15856450a updated 2018-01-23 05:48:19 -05:00
Vishal Gupta 2110cbe466 updated 2018-01-23 05:38:24 -05:00
Vishal Gupta 61433c6d55 updated 2018-01-23 05:05:48 -05:00
Brent Cook aae77fc1a4
Land #9349, GoAhead LD_PRELOAD CGI Module 2018-01-22 23:10:36 -06:00
h00die 7175468ff7 local to remote 2018-01-21 10:00:31 -05:00
Brent Cook 7ee77a27a6
Land #9389, Update commvault_cmd_exec module documentation 2018-01-18 11:05:51 -06:00
Brendan Coles b6ea95c417 Add documentation 2018-01-18 12:42:44 +00:00
Aaron Soto fff1c16517
Created checkvm documentation 2018-01-17 16:23:18 -06:00
Daniel Teixeira 5fef8b43f6
Update and rename syncbreeze_xml.rb to syncbreeze_xml.md 2018-01-16 06:07:15 +00:00
Brady Sullivan 593813cdef Fix small grammar issues in ms08_067 and ms17_010
Also includes very small changes to improve punctuation consistency
within CONTRIBUTING.md
2018-01-15 19:32:44 -08:00
Daniel Teixeira ac724926db
Sync Breeze Import Command BOF Doc 2018-01-15 20:45:34 +00:00
Nicky Bloor 333ee893d3 Tidied up platform detection, check method, and minor typos. 2018-01-14 18:28:40 +00:00
William Vu 736d438813 Address second round of feedback
Brain fart on guard clauses when I've been using them all this time...
Updating the conditions made the ternary fall out of favor.

Changed some wording in the doc to suggest the domain name for a
particular NIS server may be different from the bootparamd client's
configuration.
2018-01-13 22:55:01 -06:00
Nicky Bloor 6568d29b67 Add BMC Server Automation RSCD Agent RCE exploit module. 2018-01-14 01:12:55 +00:00
William Vu c080329ee6 Update module after feedback
Looks like I can't decide on certain style preferences.

Not keen on using blank?, but I've used it before. Time to commit?

Also, fail_with has been fixed for aux and post since #8643. Use it!
2018-01-13 15:40:11 -06:00
William Vu ff1c85552b Add module doc 2018-01-12 19:34:59 -06:00
Wei Chen e6c4fb1dab
Land #9269, Add a new target for Sync Breeze Enterprise GET BoF
Land #9269
2018-01-11 16:54:23 -06:00
Wei Chen f395e07fc6 Land #9269, add new target for Sync Breeze Enterprise GET BoF
Land #9269
2018-01-11 16:53:02 -06:00
William Vu 4b225c30fd
Land #9368, ye olde NIS ypserv map dumper 2018-01-10 22:02:36 -06:00
William Vu f5210ed6d6 Update module doc with missing options 2018-01-10 20:18:50 -06:00
Wei Chen 6510ee53bc
Land #9204, Add exploit for Samsung SRN-1670D (CVE-2017-16524)
Land #9204
2018-01-10 20:15:29 -06:00
Wei Chen 18c179a091 Update module and add documentation
This updates the module to pass:

* msftidy
* Ruby style guidelines
* Proper usage of Metasploit API
* Mostly other cosmetic fixes

A documentation is also added.
2018-01-10 20:13:42 -06:00
Wei Chen 7e2c7837e5
Land #9325, Add CVE-2017-6090 phpCollab 2.5.1 file upload exploit module
Land #9325
2018-01-10 17:39:50 -06:00
Wei Chen b1f3f471f3 Update phpcollab_upload_exec code (also module documentation) 2018-01-10 17:38:52 -06:00
Wei Chen 8d77f35b16
Land #9373, Add LabF nfsAxe FTP Client 3.7 Stack Buffer Overflow
Land #9373
2018-01-09 22:40:50 -06:00
Wei Chen 25280e3319 Update labf_nfsaxe and module documentation 2018-01-09 22:39:40 -06:00
Wei Chen 777e383568
Land #9377, Add HPE iMC dbman RestoreDBase Unauthenticated RCE exploit
Land #9377
2018-01-09 13:56:53 -06:00
Wei Chen a0c9cdd73d
Land #9376, Add HPE iMC dbman RestartDB Unauthenticated RCE exploit
Land #9376
2018-01-09 13:28:03 -06:00
Wei Chen b06db60a56 Fix typos 2018-01-09 11:20:02 -06:00
Wei Chen 7b6a8af387 Update commvault_cmd_exec module documentation 2018-01-08 15:42:01 -06:00
William Vu bbad416a86 Add module doc to appease the @h00die god 2018-01-08 15:02:39 -06:00
Wei Chen d138f1508c
Land #9340, Add exploit for Commvault Remote Command Injection
Land #9340
2018-01-07 12:17:26 -06:00
Brendan Coles a1a594d1f8 Add documentation 2018-01-06 05:09:24 +00:00
Brendan Coles 9ec17bdd54 Add documentation 2018-01-06 05:08:33 +00:00
Daniel Teixeira 160f960f78
Add files via upload 2018-01-04 20:25:41 +00:00
h00die 65f444ddcc
land #9362 exploit for pfsense graph injection 2018-01-04 14:35:52 -05:00
Brent Cook 520e890520
Land #8581, VMware Workstation ALSA Config File Local Privilege Escalation 2018-01-03 21:35:57 -06:00
Wei Chen b8dde2e650 Land #9360, Ayukov NFTP FTP client buffer overflow vulnerability
Land #9360
2018-01-03 20:56:12 -06:00
Wei Chen 04cf3017c0 Update ayukov_nftp exploit and module documentation 2018-01-03 20:52:57 -06:00
William Vu c3f10c1d57
Land #9336, Linksys WVBR0-25 exploit 2018-01-03 18:13:44 -06:00
headlesszeke 589de0483b Clarification in product linkage and small syntax fixup in repro steps 2018-01-03 17:00:26 -06:00
dmohanty-r7 a5fa63405f
Land #9206, Add Xplico RCE exploit module 2018-01-03 16:02:51 -06:00
headlesszeke 3b0f0aa358 Adding doc file for module linksys_wvbr0_user_agent_exec_noauth 2018-01-02 14:54:18 -06:00
wetw0rk 8f0e41e159 requested changes 2018-01-01 17:30:43 -06:00
wetw0rk bc088cb379 added md 2018-01-01 05:46:04 -06:00
Daniel Teixeira 76d345039d
Create ayukov_nftp.md 2017-12-31 15:42:32 +00:00
HD Moore 54159c29eb Add documentation line from h00die 2017-12-29 16:14:28 -06:00
h00die 3516305517
land #9191 an exploit against HP LoadRunner magentproc 2017-12-29 16:35:43 -05:00
h00die b698095c49 slight updates to magentproc docs 2017-12-29 16:30:32 -05:00
Jeffrey Martin bb97467b31
docs for auxiliary/scanner/http/directadmin_login 2017-12-29 14:43:20 -06:00
h00die 67c2119736 oh brother 2017-12-29 14:16:34 -05:00
Vishal Gupta b43c6078a1 updated 2017-12-28 18:24:57 -05:00
Vishal Gupta 1a7850bd51 updated 2017-12-28 18:21:55 -05:00
Vishal Gupta 2672550c62 deprecated 2017-12-28 18:19:04 -05:00
Vishal Gupta 53fc25560e updated 2017-12-28 18:13:41 -05:00
Vishal Gupta d3fdc539b7 updated 2017-12-28 18:09:27 -05:00
Vishal Gupta 6736b125f6 updated 2017-12-28 18:08:28 -05:00
Vishal Gupta 398fe3c8e8 updated 2017-12-28 18:07:04 -05:00
Vishal Gupta 59940feacc corrected grammatical error 2017-12-28 17:55:04 -05:00
Vishal Gupta 339c7b3bc2 Updated 2017-12-28 17:53:02 -05:00
HD Moore eb696ee5cf Documentation update 2017-12-28 16:30:04 -06:00
Brent Cook 5e71be7772
add ard_root_pw documentation 2017-12-28 14:37:25 -06:00
HD Moore b86fd551a3 Add a WIP of the module documentation 2017-12-28 14:00:03 -06:00
Brent Cook ae17943d4c fix documentation preformat blocks 2017-12-27 22:32:26 -06:00
Jon Hart bbed7db13c
Merge branch 'upstream-master' into feature/mqtt-login 2017-12-27 13:08:44 -08:00
Tod Beardsley e6de25d63b
Land #9316 Cambium modules and mixins, tx @juushya
These cover several of the CVEs mentioned in

https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple-vulnerabilities/
2017-12-26 12:39:51 -06:00
b0yd 7aa296577e Added readme 2017-12-22 14:34:35 -05:00
Jon Hart d4bc98c13f
Merge branch 'upstream-master' into feature/mqtt-login 2017-12-22 08:07:40 -08:00
William Vu caae33b417
Land #9170, Linux UDF for mysql_udf_payload 2017-12-21 20:48:24 -06:00
Jon Hart 917e9aa328
Doc READ_TIMEOUT 2017-12-20 19:10:49 -08:00
Jon Hart 962bc71d10
Merge branch 'feature/mqtt' into feature/mqtt-login 2017-12-20 18:58:36 -08:00
Jon Hart 9c0df54f36
syntax 2017-12-20 18:54:09 -08:00
Jon Hart fa1536209a
syntax 2017-12-20 18:52:34 -08:00
Jon Hart 508253eadc
More docs 2017-12-20 18:51:44 -08:00
Jon Hart 0f72ce1ee5
Add WIP documentation for auxiliary/scanner/mqtt/connect 2017-12-20 18:45:10 -08:00
Nick Marcoccio 86ce3c8781 Made suggested changes and added documentation 2017-12-20 15:54:16 -05:00
Brent Cook a8b845fff9
Land #9283, Add node.js ws websocket library DoS module 2017-12-20 14:20:42 -06:00
Tod Beardsley 8c1f1696af
Kill trailing whitespace in docs 2017-12-18 17:35:49 -06:00
Tod Beardsley 4aa480d655
Land #9311, docs for #9180 2017-12-18 17:34:55 -06:00
Tod Beardsley c2b8d23854
Kill trailing whitespace 2017-12-18 16:56:09 -06:00
Tod Beardsley 65da14c165
Adding docs for modules 2017-12-18 16:47:43 -06:00
Jon Hart a33ed82a40
Land #9214, @realoriginal's update to the Cisco SMI scanner to also fetch Cisco IOS configs 2017-12-18 12:22:26 -08:00
Ryan Knell 369d74cdb2 Updating documentation
Added a missing backtick
2017-12-18 10:34:00 -05:00
William Vu 76823e9fe6
Land #9183, Jenkins Groovy XStream RCE 2017-12-18 03:38:27 -06:00
Pearce Barry 880a1d4283
Land #9312, Module acting as a Pyrotechnical Device Deployment Tool (PDT) for Hardware Bridge 2017-12-17 18:32:28 -06:00
Pearce Barry 8344401484
Add docs, minor tweaks. 2017-12-17 18:15:49 -06:00
RootUp 95e2f1da95
Update samsung_browser_sop_bypass.md 2017-12-17 11:02:24 +05:30
RootUp 53a098a7f3
Update samsung_browser_sop_bypass.md 2017-12-16 22:46:29 +05:30
RootUp 6b54fe6775
Create samsung_browser_sop_bypass.md 2017-12-16 22:26:08 +05:30
Brent Cook c6a2ae2551
Land #9248, Add wd_mycloud_multiupload_upload exploit 2017-12-13 18:51:02 -06:00
h00die c0a534140d
Land #9284 a regex dos for ua_parser_js npm module 2017-12-13 19:31:49 -05:00
h00die 544e4e3d0b fix md formatting 2017-12-13 19:30:50 -05:00
Nicholas Starke dd5532c5de Addressing Formatting Issues
There were several formatting and layout issues
that are fixed in this commit.  Also changing
`RHOSTS` to `RHOST`.
2017-12-13 14:26:27 -06:00
Wei Chen b99663fb6c
Bring #9282 up to date with upstream-master 2017-12-13 13:16:30 -06:00
Wei Chen 37514eec17
Land #9234, Add exploit for ClickJacking vuln for pfSense
Land #9234
2017-12-12 14:56:21 -06:00
Wei Chen 6149f51273
Land #9256, Add aux module to discover WSDD enabled devices
Land #9256
2017-12-12 11:55:42 -06:00
Matthew Kienow d79b0ad981
Land #9286, Advantech WebAccess webvrpcs BOF RCE 2017-12-12 00:25:56 -05:00
Pearce Barry 7f93cca446
Land #9288, Add Dup Scout Enterprise login buffer overflow 2017-12-11 17:12:20 -06:00
Nicholas Starke 2d23054a1f Changes as per comments
A few things were changed as per the PR comments:
1) The module title was reworded
2) The module description was multi-lined
3) Negative logic was rewritten to use 'unless'
4) Strings which did not require interpolation were rewritten
5) Documentation markdown was added.
2017-12-11 14:11:40 -06:00
Vishal Gupta da9e2a981a added auxiliary/scanner/dcerpc/tcp_dcerpc_auditor.md 2017-12-11 12:48:32 -05:00
Vishal Gupta 10cf5557c2 added auxiliary/scanner/dcerpc/management.md 2017-12-11 12:45:20 -05:00
Vishal Gupta 02e9b4cd6b added auxiliary/scanner/dcerpc/hidden.md 2017-12-11 12:38:46 -05:00
mr_me f8977ed72c added some fixes 2017-12-11 11:34:17 -06:00
Vishal Gupta c3e7d93bcb added auxiliary/scanner/dcerpc/endpoint_mapper.md 2017-12-11 12:27:04 -05:00
Vishal Gupta 4de6b4f4fa added auxiliary/scanner/discovery/udp_sweep.md 2017-12-11 12:08:18 -05:00
Vishal Gupta 5d5051d2ed added auxiliary/scanner/discovery/udp_probe.md 2017-12-11 12:04:50 -05:00
Vishal Gupta 499f2dd55d added auxiliary/scanner/discovery/ipv6_neighbor.md 2017-12-11 11:58:49 -05:00
Ryan Knell c5f218c84c Addressing comments
1. Updated documentation
2. Made the Sec-WebSocket-Key header a random value
2017-12-11 11:49:31 -05:00
Vishal Gupta 36f5ccad3d updated 2017-12-11 11:49:15 -05:00
Vishal Gupta 25235c8ca5 auxiliary/scanner/smb/smb_enumshares.md 2017-12-11 11:44:27 -05:00
Vishal Gupta c6740f88e9 auxiliary/scanner/smb/smb2.md 2017-12-11 11:39:36 -05:00
Vishal Gupta dee2137350 auxiliary/scanner/smb/pipe_dcerpc_auditor.md 2017-12-11 11:25:44 -05:00
Vishal Gupta fd775a056c auxiliary/scanner/smb/pipe_auditor.md 2017-12-11 11:22:03 -05:00
Vishal Gupta 885c61df24 auxiliary/scanner/mssql/mssql_sql.md 2017-12-11 01:39:47 -05:00
Vishal Gupta d6f6faee3a auxiliary/scanner/mssql/mssql_idf.md 2017-12-11 01:32:43 -05:00
Vishal Gupta 2757fabbfc auxiliary/scanner/mssql/mssql_ping.md 2017-12-11 01:15:44 -05:00
Vishal Gupta 282ae1509f auxiliary/scanner/mysql/mysql_version.md 2017-12-11 00:49:21 -05:00
Vishal Gupta 92053fb1da updated 2017-12-11 00:43:58 -05:00
Vishal Gupta b3f9398dbb auxiliary/scanner/mysql/mysql_login.md 2017-12-11 00:38:03 -05:00
Vishal Gupta 0929acf88c updated 2017-12-09 21:43:05 -05:00
Vishal Gupta 455b31ea05 updated 2017-12-09 21:32:23 -05:00
Vishal Gupta 5b910a2576 updated 2017-12-09 21:31:03 -05:00
Vishal Gupta 52d426d5c0 added more info 2017-12-09 21:23:17 -05:00
Vishal Gupta 76d60cb334 auxiliary/scanner/http/cert.md 2017-12-09 21:14:40 -05:00
Vishal Gupta c90a7f62fe auxiliary/scanner/http/dir_scanner.md 2017-12-09 21:07:45 -05:00
Vishal Gupta 5aa2f4a553 auxiliary/scanner/http/dir_webdav_unicode_bypass.md 2017-12-09 20:43:42 -05:00
Vishal Gupta 90ea07a7e1 auxiliary/scanner/http/ssl.md 2017-12-09 20:04:53 -05:00
Vishal Gupta ccc4cf7e13 updated 2017-12-09 19:41:52 -05:00
Vishal Gupta 464ad769ac auxiliary/scanner/http/wordpress_login_enum.md 2017-12-09 19:39:24 -05:00
Vishal Gupta acbc46768f updated 2017-12-09 19:37:59 -05:00
Vishal Gupta 34e89c6171 auxiliary/scanner/http/webdav_website_content.md 2017-12-09 19:14:15 -05:00
Vishal Gupta 3116c1041b auxiliary/scanner/http/verb_auth_bypass.md 2017-12-09 19:03:57 -05:00
Vishal Gupta 3674448b1b added webdav_scanner.md 2017-12-09 18:44:15 -05:00
Chris Higgins 3a14ac3b37 Fixed a spelling error in documentation 2017-12-09 02:30:42 -06:00
Chris Higgins e91830efe7 Add Dup Scout Enterprise login buffer overflow 2017-12-09 02:20:05 -06:00
Ryan Knell 668585a1f9 Adding documentation
Adding module documentation for ws_dos.
2017-12-08 15:52:57 -05:00
mr_me 073ffcb3bc added some docs 2017-12-07 16:58:14 -06:00
Austin 900f7d6f69
docs on options 2017-12-07 14:47:40 -05:00
Austin 12425d962c
Rename office_dde_delivery to office_dde_delivery.md 2017-12-06 22:40:57 -05:00
Austin 1e4b707a60
MS Office DDE Documentation 2017-12-06 21:46:47 -05:00
Brent Cook ce2db3cd87
Land #9275, CVE-2017-11882 (docs fix) 2017-12-05 10:16:54 -06:00
Austin 14226c5f33
missing docs on options
Missed fixes on documentation
2017-12-04 20:58:36 -05:00
William Webb 69b01d26bb
Land #9226, Microsoft Office OLE object memory corruption 2017-12-04 16:50:27 -08:00
Austin b7f17f5519
fix documentation 2017-12-04 16:41:27 -05:00
Brent Cook f83e9815dd
Land #9210, Add a Polycom HDX RCE 2017-12-04 12:49:35 -06:00
Brendan Coles 775529277f Add documentation 2017-11-29 17:37:34 +00:00
bwatters-r7 9dc3d60fc2
Stupid Typos 2017-11-29 10:29:38 -06:00
bwatters-r7 efa8d566d7
Added documentation for iamroot 2017-11-29 10:26:06 -06:00
Zenofex d174ef3a70 Add wd_mycloud_multiupload_upload exploit 2017-11-28 07:12:00 -06:00
bwatters-r7 244acc48b6
Land #9212, pfsense group member exec module 2017-11-27 11:27:29 -06:00
Austin 43ff4f12e5
update docs 2017-11-22 06:57:35 -05:00
Yorick Koster b5994bde79
Update pfsense_clickjacking.md 2017-11-22 11:10:47 +01:00
Yorick Koster 5b5c5520e6
Update pfsense_clickjacking.md 2017-11-22 11:09:54 +01:00
Yorick Koster 916ee05cce Add exploit module for Clickjacking vulnerability in CSRF error page pfSense 2017-11-22 11:06:22 +01:00
Austin 73c692fb65
fix docs 2017-11-21 21:31:06 -05:00
Jon Hart 879db5cf38
Land #9050, @mpizala's improvements to the docker_daemon_tcp module 2017-11-21 17:13:24 -08:00
Matthew Kienow b6c81e6da0
Reimplement slowloris as external module 2017-11-21 16:21:01 -05:00
Daniel Teixeira aa16288140
Update slow_loris.md 2017-11-21 15:49:45 -05:00
Daniel Teixeira 6d2007a4db
Update slow_loris.md 2017-11-21 15:49:44 -05:00
Daniel Teixeira fbb9e9d473
Update slow_loris.md 2017-11-21 15:49:44 -05:00
Daniel Teixeira 4419c0d851
Create slow_loris.md 2017-11-21 15:49:44 -05:00
Austin fcf2cfa134
Create office_ms17_11882.md 2017-11-21 14:45:56 -05:00
Martin Pizala 90d6165e68
bypass user namespaces docs 2017-11-19 22:10:39 +01:00
h00die b7f7afb3be version detect, 2.2.6 handling 2017-11-19 08:28:07 -05:00
Austin 40bb622b7a
update docs
Updating documentation
2017-11-18 13:07:24 -05:00
Pushpam Kumar c3c8ec761d Merge remote-tracking branch 'upstream/master' 2017-11-17 00:16:43 +05:30
Austin 74a1b405c4
action addition DOWNLOAD 2017-11-16 12:46:31 -05:00
h00die f8891952c6 pfsense group member exec module 2017-11-15 21:00:58 -05:00
Adam Cammack c740f4369c
Land #9197, Cleanup Mako Server exploit 2017-11-15 15:01:31 -06:00
Austin 256bf5a5ca
Create polycom_hdx_traceroute_exec.md 2017-11-15 10:38:53 -05:00
Mehmet İnce 54936b6ac3 Updatig documentation and tweaking initiate_session 2017-11-15 01:04:06 +03:00
Mehmet İnce 86e47589b0 Add xplico remote code execution 2017-11-14 09:30:57 +03:00
Pushpam Kumar 44e69f1c5d Documentation for Kaltura <= 13.1.0 RCE (CVE-2017-14143) 2017-11-14 02:46:29 +05:30
William Vu f3e2f4d500
Land #9167, D-Link DIR-850L exploit 2017-11-10 18:15:39 -06:00
William Vu 3936d3baa1 Clean up module 2017-11-10 18:15:22 -06:00
Steven Patterson df2b62dc27
Add Mako Server CMD injection Linux support, update docs, move to multi 2017-11-10 16:28:39 -05:00
h00die 52888871e3
Land #8747 RCE for Geutebrueck GCore on Windows 2017-11-08 20:22:54 -05:00
h00die 7ad151e68b gcore formatting update 2017-11-08 20:21:40 -05:00
Adam Cammack 39916ef61a
Land #9133, Command injection in Mako Server examples 2017-11-08 15:11:01 -06:00
Patrick Webster d95b333ae9 Added exploit module for HP LoadRunner command exec vuln CVE-2010-1549. 2017-11-09 03:59:18 +11:00
bwatters-r7 5a07be9b96
Land #9041, Add LPE on Windows using CVE-2017-8464 2017-11-08 10:09:03 -06:00
bwatters-r7 19e3e181c1 Fix compiling instructions 2017-11-08 09:36:32 -06:00
Spencer McIntyre fa8d017579 Change documentation from a first person context 2017-11-08 09:29:46 -05:00
bwatters-r7 11093b8393 Added documentation 2017-11-08 08:07:06 -06:00
Pearce Barry fc87ee08d9
Land #9060, IBM Lotus Notes DoS (CVE-2017-1130). 2017-11-07 11:20:12 -06:00
attackdebris d770406049 Add docs 2017-11-07 10:58:28 -05:00
RootUp 85b8b4116a
Create ibm_lotus_notes2.md 2017-11-07 12:08:08 +05:30
h00die c9e3b8816b remove old name 2017-11-04 13:53:04 -04:00
h00die 9236aff6ee forgot to add my docs 2017-11-04 13:51:41 -04:00
Austin 646c7f7c0a
update doc 2017-11-04 11:40:32 -04:00
Austin 40bcb3f0c8
update documentation 2017-11-03 09:09:51 -04:00
h00die 697031eb36 mysql UDF now multi 2017-11-03 05:26:05 -04:00
Austin caad1bbf27
Create dlink_dir850l_unauth_exec.md 2017-11-02 15:54:45 -04:00
William Vu e3ac6b8dc2
Land #9109, wp-mobile-detector upload and execute 2017-11-01 13:25:16 -05:00
Steven Patterson 8613852ee8
Add Mako Server v2.5 command injection module/docs 2017-10-26 23:29:11 -04:00
h00die cd35ae4661
Land #9106 negear dgn1000 unauth rce module 2017-10-22 22:18:53 -04:00
h00die 210f6f80b7 netgear1000dng cleanup 2017-10-22 22:17:40 -04:00
Austin e9fdb5bd94 Create netgear_dgn1000_unauth_setup_exec.md 2017-10-22 16:54:06 -04:00
h00die cfd7761818 wp_mobile_detector rce 2017-10-20 23:19:58 -04:00
Jon Hart 9658776adf
Land #9079, adding @h00die's gopher scanner 2017-10-20 17:16:08 -07:00
h00die f250e15b6e
Land #9105 rename psh to polycom for name collision 2017-10-20 20:10:57 -04:00
h00die fd028338e1 move psh to polycom so no more powershell name collision 2017-10-20 20:08:11 -04:00
h00die 5a6da487ab
Land #9043 two exploit modules for unitrends backup 2017-10-20 20:00:35 -04:00
caleBot e8de6a46d5 Update ueb9_bpserverd.md 2017-10-20 12:21:17 -06:00
Jon Hart f938a1029b
Make note about stopping container after 2017-10-20 10:30:12 -07:00
Jon Hart e82cb4577d
Show module selection + config 2017-10-20 10:12:46 -07:00
Jon Hart a8b4d4e4a2
Link to gopher container 2017-10-20 10:04:09 -07:00
Jon Hart 811bae7361
Add docker go(pher) example 2017-10-20 09:59:25 -07:00
Wei Chen c67a5872cd
Land #9055, Add exploit for Sync Breeze HTTP Server
Land #9055
2017-10-13 17:34:03 -05:00
h00die 297ca25953 fix IPs 2017-10-12 21:40:27 -04:00
h00die a63c947768 gopher proto 2017-10-12 21:32:01 -04:00
William Webb 8cfd4928ed
Land #9069, Add docs for scanner/http/open_proxy 2017-10-11 23:08:07 -05:00
Wei Chen d0e65a4177
Land #9068, add doc for auxiliary/scanner/http/files_dir
Land #9068
2017-10-11 17:13:26 -05:00
Wei Chen eaf686f164
Fix format 2017-10-11 17:12:45 -05:00
Wei Chen 3a8a85bbe5
Land #9065, add doc for auxiliary/scanner/http/http_login
Land #9065
2017-10-11 17:09:35 -05:00
Wei Chen fc40fe0da2
Fix format 2017-10-11 17:08:49 -05:00
Wei Chen 2503d2ab2e
Land #9067, add doc for auxiliary/scanner/http/http_header
Land #9067
2017-10-11 17:03:29 -05:00
Wei Chen 17b4678998
Fix format 2017-10-11 17:02:41 -05:00
Indranil Roy 72291d31fb Update open_proxy.md 2017-10-12 03:29:49 +05:30
itsmeroy2012 17d7faa96b fixing typos 2017-10-12 03:00:09 +05:30
bwatters-r7 294230c455
Land #8509, add Winsxs bypass for UAC 2017-10-11 16:24:52 -05:00
Wei Chen 978ede363e
Land #9066, add doc for http_version
Land #9066
2017-10-11 15:39:44 -05:00
Jeffrey Martin 1786634906
Land #9059, Tomcat JSP Upload via PUT Bypass 2017-10-11 15:05:00 -05:00
Wei Chen 8b3cc2b94f Tweak format 2017-10-11 14:14:56 -05:00
root 03e7797d6c fixed msftidy errors and added documentation 2017-10-11 07:57:01 -04:00
itsmeroy2012 1c8871cbe3 Documentation on auxiliary module open_proxy 2017-10-11 16:29:56 +05:30
itsmeroy2012 579cfed5f4 Documentation on auxiliary module files_dir 2017-10-11 16:15:19 +05:30
itsmeroy2012 fcf6a1ec96 Documentation on http_header 2017-10-11 15:30:43 +05:30
itsmeroy2012 e526b37e81 Fixing whitespaces 2017-10-11 15:18:51 +05:30
itsmeroy2012 ee3b638b48 Changing description 2017-10-11 15:17:54 +05:30
itsmeroy2012 7f1f862dc2 KB for http_version 2017-10-11 15:14:22 +05:30
Ernesto Fernandez ffa29de6c9 Update bypassuac_injection_winsxs.md 2017-10-11 11:43:28 +02:00
itsmeroy2012 d64312c24f Changing description 2017-10-11 14:55:48 +05:30
itsmeroy2012 9ebf8328ee adding colon 2017-10-11 14:51:53 +05:30
itsmeroy2012 26c45f4c74 adding new sub heading 2017-10-11 14:47:19 +05:30
itsmeroy2012 3f411a5559 separating sections 2017-10-11 14:45:34 +05:30
itsmeroy2012 9ceaa39451 removing whitespaces 2017-10-11 14:44:01 +05:30
itsmeroy2012 064f4d56aa adding label 2017-10-11 14:43:06 +05:30
itsmeroy2012 d32edfd53e Documentation for http_login 2017-10-11 14:39:05 +05:30
h00die e976a91b15
land #9053 RCE for rend micro imsva 2017-10-10 19:27:06 -04:00
bwatters-r7 59d03ec4db
Added markdown doc for documentation. 2017-10-10 13:05:29 -05:00
William Vu ab63caef7b
Land #9009, Apache Optionsbleed module 2017-10-10 12:13:40 -05:00
jakxx fd0ce33341 Updated Module Documentation 2017-10-10 12:36:32 -04:00
h00die 850aeda097
land #9052 RCE of Trend Micro OfficeScan 2017-10-09 20:46:30 -04:00
Pearce Barry a3d47ea838
Land #8989, IBM Lotus Notes DoS (CVE-2017-1129) 2017-10-09 19:37:59 -05:00
h00die b796c0be16 fixing docs 2017-10-09 20:31:23 -04:00
Pearce Barry fd8b72ca66
Minor tweaks. 2017-10-09 17:02:24 -05:00
Mehmet Ince a2d32b460c
Fixing grammer issue 2017-10-09 22:31:13 +03:00
Mehmet Ince c14c93d450
Integrate OfficeScan 11 exploitation and fix grammer issues 2017-10-09 22:11:42 +03:00
Mehmet Ince 395c82050b
Adding Trend Micro IMSVA Widget RCE 2017-10-08 18:15:32 +03:00
Mehmet Ince 79c9123261
Adding Trend Micro OfficeScan widget rce module 2017-10-08 17:54:18 +03:00
Martin Pizala d8ff99b1f6
Change to ARCH_X64, remove python dependency 2017-10-08 13:51:07 +02:00