Commit Graph

1086 Commits (60c3882b847cdaf1a72c73a5dd4e28ce2d97ad27)

Author SHA1 Message Date
itsmeroy2012 52ff073d51 Documentation on adobe_flash_hacking_team_uaf updated 1.1 2017-03-25 03:56:19 +05:30
itsmeroy2012 4b36a42eff Documentation on adobe_flash_hacking_team_uaf 2017-03-25 03:54:17 +05:30
Carter dd974612e8 Update netgear_r7000_cgibin_exec.md 2017-03-24 15:43:06 -04:00
Pearce Barry 9db2e9fbcd
Land #8146, Add Default Secret & Deserialization Exploit for Github Enterprise 2017-03-24 14:38:47 -05:00
wchen-r7 dfaec8bf3a
Land #8148, Add module documentation for axis2_deployer 2017-03-24 11:55:51 -05:00
dmohanty-r7 92c0748447
Land #8102, Add a plugin to notify new sessions via SMS 2017-03-24 11:17:59 -05:00
itsmeroy2012 03d6e4563c Documentation on axis2_deployer updated 1.2 2017-03-24 21:14:56 +05:30
itsmeroy2012 2f1eefebc7 Documentation on axis2_deployer updated 1.1 2017-03-24 21:12:33 +05:30
itsmeroy2012 ffacac10c7 Documentation on axis2_deployer 2017-03-24 21:06:19 +05:30
wchen-r7 3b062eb8d4 Update version info 2017-03-23 13:46:09 -05:00
wchen-r7 2488100996 Add bounty info 2017-03-23 11:13:47 -05:00
wchen-r7 196a0b6ac4 Add Default Secret & Deserialization Exploit for Github Enterprise 2017-03-23 10:40:31 -05:00
Mehmet Ince c87ea2107b
Add documentation 2017-03-23 12:49:50 +03:00
bwatters-r7 a93aef8b7a
Land #8086, Add Module Logsign Remote Code Execution 2017-03-22 11:33:49 -05:00
itsmeroy2012 b06d17baa1 Documentation on ms15_034_http_sys_memory_dump updated 1.5 2017-03-22 17:37:59 +05:30
William Vu 1a8e8402ae
Land #8113, SysGauge SMTP server validation sploit 2017-03-21 16:45:42 -05:00
bwatters-r7 69769b1ca4
Land #8036, Fix run_as_psh with domain accounts
Missed a commit in this PR last time due to typo updating
the PR before merge.
2017-03-21 09:17:59 -05:00
itsmeroy2012 00359b85c5 Documentation on ms15_034_http_sys_memory_dump updated 1.4 fixing white spaces 2017-03-21 19:43:35 +05:30
itsmeroy2012 d54e35f40e Documentation on ms15_034_http_sys_memory_dump updated 1.3 fixing white spaces 2017-03-21 17:40:07 +05:30
itsmeroy2012 07d88a71cf Documentation on ms15_034_http_sys_memory_dump updated 1.2 removing show opitions 2017-03-21 17:33:27 +05:30
Louis 662673ace8 Update run_as_psh.md 2017-03-21 10:51:04 +11:00
Pearce Barry c4279a837a Minor formatting/spelling/verbiage changes. 2017-03-20 17:37:12 -05:00
Craig Smith 2fde287424 Initial patch for rftransceiver (RfCat / YardstickOne) 2017-03-20 17:36:16 -05:00
itsmeroy2012 7ffa952dbb Documentation on ms15_034_http_sys_memory_dump updated 1.1 2017-03-20 21:33:33 +05:30
Pearce Barry 06ebb22a8f
Land #8065, Zigbee Hardware Bridge Extension 2017-03-20 10:44:15 -05:00
itsmeroy2012 46d46eef77 Documentation on ms15_034_http_sys_memory_dump 2017-03-20 19:18:58 +05:30
Louis e6afd68624 Update run_as_psh.md 2017-03-20 16:17:07 +11:00
h00die 35a952490d
Land #8130 docs for winrm_script_exec 2017-03-19 14:47:41 -04:00
itsmeroy2012 18fec876ce Documentation on winrm_script_exec updated 1.4 2017-03-19 23:43:08 +05:30
itsmeroy2012 90744b0162 Documentation on winrm_script_exec updated 1.3 2017-03-19 23:31:30 +05:30
itsmeroy2012 d22e43dedd Documentation on winrm_script_exec updated 1.2 2017-03-19 23:11:23 +05:30
itsmeroy2012 02a3b172b4 Documentation on winrm_script_exec updated 1.1 2017-03-19 21:52:46 +05:30
itsmeroy2012 5ab0129f0f Documentation on winrm_script_exec 2017-03-19 18:27:00 +05:30
Javier Godinez 26d344a0ef Initial checkin of launch instances module 2017-03-18 21:52:49 -07:00
h00die 06e6a973ce
land #7944 a scanner for Carlo Gavazzi energy meters 2017-03-18 10:35:43 -04:00
William Webb 1180bd6ed7
Land #8037, priv_migrate improvements 2017-03-17 13:19:51 -05:00
Pearce Barry 095a110e65
Code and doc tweaks (minor).
Only one behavior change in the scan loop of zstumbler.rb to, when doing a scan across all the channels, keep it from retrying channel 11 again one last time just before it exits.
2017-03-16 21:43:36 -05:00
Chris Higgins 7a12e446a0 Updated documentation and fixed module header. Whoops, copy/paste fail. 2017-03-16 21:28:24 -05:00
bwatters-r7 ab75794cd4
Land #8071, Add API to send an MMS message to mobile devices 2017-03-16 11:57:34 -05:00
James Lee 1daee6891e
Cosmetic 2017-03-16 11:37:14 -05:00
wchen-r7 d4ee254057
Land #8076, Add Easy File Sharing FTP Server Version 3.6 traversal 2017-03-15 16:17:13 -05:00
wchen-r7 8afe6a9061 Update easy_file_sharing_ftp and add documentation 2017-03-15 16:14:41 -05:00
Brent Cook b65919e7b1
Land #7956, Add QNAP NAS/NVR administrator hash disclosure 2017-03-15 11:12:59 -05:00
William Vu 94d445ff48 Remove an old habit with curl 2017-03-15 05:18:50 -05:00
William Vu f58c6b96d8 Add addendum to module doc 2017-03-15 05:03:35 -05:00
William Vu 559e426f37 Add module doc to appease the @h00die god 2017-03-15 04:48:49 -05:00
Chris Higgins b3fbbbee34 Spelling is hard 2017-03-14 23:34:00 -05:00
Chris Higgins cc4f18e6c5 Add sysgauge_client_bof module and documentation 2017-03-14 23:29:19 -05:00
wchen-r7 1736332638
Land #8103, Add CVE-2017-5638, Struts2 Content-Type OGNL injection 2017-03-14 16:10:49 -05:00
wchen-r7 295ac63a1c Add doc for struts2_content_type_ognl 2017-03-14 16:09:44 -05:00
wchen-r7 bb4d6e17c8 Resolve #8026, Add a plugin to notify new sessions via SMS
This plugin will notify you of a new session via SMS.

It also changes the SMS text format to MIME.

Resolve #8026
2017-03-13 16:13:59 -05:00
William Vu fe4f20c0cc
Land #7968, NETGEAR R7000 exploit 2017-03-10 16:02:30 -06:00
dmohanty-r7 25bfa88c46
Land #7877, Add mDNS query spoofing service 2017-03-10 15:44:57 -06:00
dmohanty-r7 45e0a3d0f8
Add module docs for mdns_response 2017-03-10 15:42:07 -06:00
Mehmet Ince 3ed42e5937
Adding iso download link to doc 2017-03-10 17:50:21 +03:00
Mehmet Ince f6bac3ae31
Add iso link to md file and change CheckCode code 2017-03-10 13:00:49 +03:00
wchen-r7 d6bc56d665 Update doc 2017-03-08 11:49:19 -06:00
wchen-r7 ed22902fd4 Support the subject field 2017-03-08 11:40:08 -06:00
William Vu 1c9a8907b6
Land #7949, nfsmount and snmp_login docs 2017-03-08 06:37:55 -06:00
Brent Cook 419a7d991f
Land #8057, web_deliver documentation improvements 2017-03-08 05:34:30 -05:00
Brent Cook 3820de67c3 style consistency, simplifications, and clarifications 2017-03-08 05:33:44 -05:00
Brent Cook 974e351300
Land #7953, rpc_portmapper docs
Merge remote-tracking branch 'upstream/pr/7953' into upstream-master
2017-03-08 05:11:33 -05:00
wchen-r7 036a443a41 Add Google Fi gateway 2017-03-07 17:02:32 -06:00
wchen-r7 dc13b84189 Bring mms branch up to date w/ master 2017-03-07 16:13:39 -06:00
Jin Qian 7e19486a97
Merge branch 'wchen-r7-sms' into upstream-master
Merged #8047
2017-03-07 15:56:00 -06:00
wchen-r7 d32f08f969 Add doc and fix mms message class 2017-03-07 14:40:37 -06:00
wchen-r7 6c53dd5231 Fix a typo 2017-03-07 12:50:59 -06:00
Craig Smith 97ad8be7ff Added some Zigbee Documentation 2017-03-06 22:42:15 -08:00
wchen-r7 34bca9055e Update doc 2017-03-06 11:08:51 -06:00
wchen-r7 7e16fc97f5 Update doc 2017-03-06 10:47:46 -06:00
h00die dfd492611c add shell to meterpreter upgrade example 2017-03-05 20:10:26 -05:00
h00die 4317aa10e1 @hurdlecrew recommendation 2017-03-05 13:45:23 -05:00
h00die 4f61fe992b spelling, formatting 2017-03-04 15:51:11 -05:00
h00die e2468d8f1e spelling, formatting 2017-03-04 15:48:26 -05:00
h00die feaa4b08e9 include example vuln pages 2017-03-04 15:40:52 -05:00
wolfthefallen 6c69e13e00 Updated based on comments 2017-03-04 11:28:30 -05:00
wolfthefallen 3e9480ebfa Added documentation 2017-03-04 09:50:30 -05:00
h00die f02c323c7e
land #8040, docs for ms14-064 2017-03-03 21:26:35 -05:00
h00die 8486624ed1 box to boxes 2017-03-03 21:19:01 -05:00
William Webb d76e80bc44
Land #7424, Ektron Webservices XSLT Remote Code Execution 2017-03-03 12:12:21 -06:00
wchen-r7 4d44911d5c Do doc for google fi 2017-03-03 11:38:47 -06:00
wchen-r7 d9b21b16a9 Support Google Project Fi gateway 2017-03-03 11:36:13 -06:00
wchen-r7 fa43928a8e Rm Sprint from doc 2017-03-03 11:27:31 -06:00
Rok Ajdnik 354fabe123
Address pull request feedback 2017-03-03 15:37:01 +01:00
Carter 7556768dcf Update netgear_dnslookup_cmd_exec.md 2017-03-02 21:47:58 -05:00
Carter 4a974d50b5 Create netgear_dnslookup_cmd_exec.md 2017-03-02 19:43:15 -05:00
wchen-r7 6ad8afb8b3 Add API to send a text message (SMS) to mobile devices 2017-03-02 16:47:55 -06:00
juushya fafd35330d Add epmp1000 dump hashes module 2017-03-03 02:22:34 +05:30
juushya 6bd09c142f Minor edits 2017-03-03 00:53:17 +05:30
Rok Ajdnik 6dbb7a2975
Add documentation for ms14_064_ole_code_execution 2017-03-01 20:05:20 +01:00
h00die fb5e090f15 fixes from jvoisin 2017-02-28 20:09:26 -05:00
Mehmet Ince e5636d6ce1
Adding logsign rce module and doc 2017-02-28 21:04:37 +03:00
Josh Hale e05e08a54f Update module doc 2017-02-27 20:33:45 -06:00
h00die da1e58d907 updates to doc template 2017-02-27 21:08:18 -05:00
h00die a910f38a11
land #8029 syntax fixes for some docs 2017-02-27 21:01:46 -05:00
h00die 8197d14f30 fix some documentation 2017-02-27 20:58:03 -05:00
h00die a8609f5c66 ntfs-3g lpe 2017-02-25 23:09:22 -05:00
h00die 041238f77c
land #7896 Binom3 power meter scanner and brute 2017-02-23 19:49:50 -05:00
wchen-r7 6a6c8c9828
Land #7997, Add SSH login and pubkey docs 2017-02-23 13:38:10 -06:00
wchen-r7 af8e64958e Small changes 2017-02-23 13:36:39 -06:00
William Vu 236606838a
Land #7987, MVPower DVR exploit 2017-02-23 01:46:04 -06:00
Brendan Coles c9e09491dd Add documentation 2017-02-23 07:44:45 +00:00
Brendan Coles 0b34efab43 Add documentation 2017-02-23 06:59:05 +00:00
William Vu bf47ac2fa9
chmod -x a couple module docs
Hat tip @bcoles.
2017-02-22 23:43:54 -06:00
h00die 6a7dab0b1c add key explain line 2017-02-22 22:15:05 -05:00
h00die aee6707713 ssh_login docs 2017-02-22 22:13:07 -05:00
bwatters-r7 40e6413867
Land #7980, Add a sploit for CVE-2017-5982, kodi file traversal 2017-02-22 13:11:48 -06:00
wchen-r7 48f6740fee
Land #7969, Add Module Trend Micro IMSVA Remote Code Execution 2017-02-21 17:29:04 -06:00
bwatters-r7 a9b9a58d4d
Land #7893, Add Module AlienVault OSSIM/USM Remote Code Execution 2017-02-21 13:35:56 -06:00
William Webb 83cc28a091
Land #7972, Microsoft Office Word Macro Generator OS X Edition 2017-02-21 13:26:42 -06:00
jvoisin 73eed104a9 Take into account @h00die's comments. 2017-02-20 13:22:20 +01:00
jvoisin 7bd6aff1cf Add a sploit for CVE-2017-5982 2017-02-19 21:57:27 +01:00
Brent Cook 052bf7d99c
fix some module documentation formatting 2017-02-17 18:12:57 -06:00
Brent Cook 24151a9c27
Land #7753, Add auxiliary RomPager misfortune cookie authentication bypass 2017-02-17 18:07:15 -06:00
Brent Cook 2c570b6709
Land #7942, Microsoft SQL Server Clr Stored Procedure Payload Execution 2017-02-17 17:28:54 -06:00
Brent Cook 014fe2520c module docs 2017-02-17 17:28:30 -06:00
Carter 3fac632ce1 Update netgear_r7000_cgibin_exec.md 2017-02-17 16:36:45 -05:00
wchen-r7 056313e411 Update doc 2017-02-16 12:49:29 -06:00
wchen-r7 7ec5ec6442 Update doc 2017-02-16 12:39:24 -06:00
wchen-r7 34f074441d Move doc 2017-02-16 12:33:05 -06:00
Carter c9e8254611 Update netgear_r7000_cgibin_exec.md 2017-02-16 09:00:27 -05:00
Carter af62fe9f6d Update netgear_r7000_cgibin_exec.md 2017-02-16 08:58:45 -05:00
Carter d775c66adf Start docs 2017-02-16 08:44:36 -05:00
h00die 843f559069
land #7917 piwik exploit module 2017-02-14 00:52:27 -05:00
h00die 295526b876 eat your heart out @wvu-r7 2017-02-13 23:08:19 -05:00
Christian Mehlmauer d7f675534b
add documention 2017-02-13 23:11:46 +01:00
h00die 4f8e208e16 formatting 2017-02-12 23:22:13 -05:00
h00die 23ec1ab93a snmp_login docs 2017-02-12 23:10:50 -05:00
h00die d395fbaa94 nfsmount docs added blog post 2017-02-12 21:56:53 -05:00
h00die 3e75852662 nfsmount docs 2017-02-12 21:54:42 -05:00
h00die f121a64779 +1 professionalism :) 2017-02-12 17:25:56 -05:00
juushya e6bfbb7c78 Added random cookie gen, res checks, & minor updates 2017-02-12 16:55:11 +05:30
juushya 906ca6c24e Add Carlo Gavazzi module 2017-02-11 11:18:43 +05:30
bwatters-r7 272d1845fa
Land #7934, Add exploit module for OpenOffice with a malicious macro 2017-02-09 13:42:58 -06:00
wchen-r7 188f7370d4 Fix grammar issues 2017-02-09 11:53:11 -06:00
Christian Mehlmauer 8ade9b8aae
Land #7905, WordPress content injection module 2017-02-09 15:49:50 +01:00
wchen-r7 cf8aad9ee5 Add demo 2017-02-08 16:51:25 -06:00
wchen-r7 3e2e15c7b8 Add doc for openoffice_document_macro 2017-02-08 16:41:42 -06:00
William Vu e76b53c5d1 Update doc 2017-02-08 09:25:16 -06:00
William Vu 3fdd3d3651 Move .rb module doc to .md
I'm tired.
2017-02-08 06:21:43 -06:00
William Vu 8493a734cb Add module doc to appease the @h00die god
Straight rip of the PR description, yo.
2017-02-08 05:35:52 -06:00
William Webb badca287dd
Land #7906, Add Microsoft Word malicious macro document generator 2017-02-06 14:44:09 -06:00
h00die f531366d89
Land #7790 an aux module to extract Meteocontrol Weblog admin password 2017-02-06 15:23:06 -05:00
Mehmet Ince fdbed0f6db
Updating documentation with a new download page url 2017-02-03 23:39:43 +03:00
wchen-r7 e891063b74 Update doc 2017-02-03 14:29:29 -06:00
wchen-r7 5db1d958b0 Update doc 2017-02-03 14:08:28 -06:00
wchen-r7 6e692b1a1c Update doc 2017-02-03 14:03:48 -06:00
wchen-r7 f3f774b9c7 Add demo 2017-02-03 12:01:51 -06:00
wchen-r7 92e065c21b Update doc 2017-02-03 11:48:18 -06:00
wchen-r7 2457968a24 Update doc 2017-02-03 11:45:34 -06:00
wchen-r7 e9ba6fe7fd Add doc 2017-02-02 20:42:46 -06:00
Pearce Barry 23c2787d57
Land #7795, Hardware Bridge API.
Initial bridge API that supports the HW rest protocol.
2017-02-02 08:47:59 -06:00
Pearce Barry 16de745437
Minor code cleanups/corrections. 2017-02-01 16:12:45 -06:00
Craig Smith f4a720acd5 Merge branch 'hwbridge' of https://github.com/OpenGarages/metasploit-framework into hwbridge 2017-02-01 09:55:57 -08:00
Craig Smith 25f6717417 Updated documentation to discuss supported hardware. 2017-02-01 09:55:25 -08:00
h00die f114d36218 add ebay device to docs 2017-02-01 05:20:47 -05:00
h00die c0f1c554cc add ebay device to docs 2017-02-01 05:19:39 -05:00
h00die f224038cd3 docs formatting 2017-01-31 22:01:14 -05:00
h00die 76ea5bc20a docs update 2017-01-31 21:56:05 -05:00
juushya 58a50d7dd1 Minor edits 2017-02-01 04:46:05 +05:30
juushya 6d6db2f40f Add epmp1000 dump config module 2017-02-01 04:42:47 +05:30
juushya 423648e347 Minor edits 2017-02-01 03:53:14 +05:30
juushya 59e31e26f2 Add Binom3 module 2017-02-01 03:35:35 +05:30
Mehmet Ince 40108c2374
first commit 2017-01-31 14:15:46 +03:00
Mark Bergman (aka xychix) eef61cb3a4 Update harakiri.md
Based on review from @h00die
2017-01-29 18:02:12 +01:00
William Webb dd60fc3598
move cisco_webex_ext to exploits/windows/browser/ 2017-01-27 16:59:20 -06:00
Brent Cook 4480ea7877
Land #7827, Cisco Firepower Management Console LoginScanner 2017-01-27 16:26:40 -06:00
Brent Cook a4dd1fc846
Land #7805, Add CVE-2016-6435 - Cisco Firepower Management Console Dir Traversal 2017-01-27 16:09:14 -06:00
wchen-r7 38ea62f311
Land #7871, Add Cisco WebEx Extension 1.0.1 Remote Code Execution 2017-01-27 15:37:27 -06:00
wchen-r7 6a58a3d8e5 Update cisco_webex_ext doc 2017-01-27 15:36:57 -06:00
Mark Bergman (aka xychix) a2eb380fd9 Update harakiri.md 2017-01-27 10:32:43 +01:00
Mark Bergman (aka xychix) 651f1a0870 Create harakiri.md 2017-01-27 10:31:12 +01:00
h00die f846535d78
Land #7876 which adds an Advantech Webaccess credential gatherer 2017-01-26 19:37:36 -05:00
wchen-r7 7151930dec Update md doc 2017-01-26 16:34:09 -06:00
wchen-r7 b989675762 Update advantech_webaccess_login.md 2017-01-26 16:06:30 -06:00
wchen-r7 94bc44b485 Add Advantech WebAccess Post Auth Credential Collector 2017-01-26 14:53:59 -06:00
wchen-r7 781bc8420a Add Advantech WebAccess LoginScanner module 2017-01-26 13:54:50 -06:00
William Webb cc9ecf34c9
remove mention of hp dataprotector from module doc 2017-01-26 13:42:34 -06:00
William Webb 94f9971300
add module doc and remove the word EXPLOIT from document title 2017-01-26 13:36:18 -06:00
Craig Smith 754ea84d65 Fixed spelling of the word session 2017-01-25 17:43:49 -08:00
wchen-r7 f4db90edeb
Land #7852, Firefox nsSMILTimeContainer::NotifyTimeChange() rce 2017-01-23 11:56:01 -06:00
Brent Cook ff2b8dcf99
Revert "Land #7605, Mysql privilege escalation, CVE-2016-6664" - premature merge
This reverts commit 92a1c1ece4, reversing
changes made to 9b16cdf602.
2017-01-22 19:16:33 -06:00
Brent Cook 92a1c1ece4
Land #7605, Mysql privilege escalation, CVE-2016-6664 2017-01-22 17:17:28 -06:00
Brent Cook 19f485b0ef
Land #7830, Added docs for tomcat_mgr_deploy and tomcat_mgr_upload 2017-01-22 11:04:13 -06:00
Brent Cook b493ee98b6
Land #7857, added apache_commons_fileupload_dos docs 2017-01-22 10:54:32 -06:00
Mehmet Ince 58c1f6f67d Merge branch 'master' of https://github.com/rapid7/metasploit-framework into trend_micro_imsva_exec 2017-01-22 11:18:34 +03:00
h00die 103bc8e8f0 doc fixes 2017-01-20 19:04:57 -05:00
h00die 15591aff83 apache_commons_fileupload_dos docs 2017-01-20 19:01:27 -05:00
William Webb b6d93c05c8
actually save the correct module doc 2017-01-20 12:15:59 -06:00
William Webb 2513b5bbe5
add inital module documentation 2017-01-20 11:52:09 -06:00
Gabor Seljan 905213cc41 Add module for DiskSavvy Enterprise (EDB-40854) 2017-01-19 20:34:00 +01:00
Mehmet Ince c2c352c2ac
Adding Trend Micro IMSVA module 2017-01-18 11:34:16 +03:00
wchen-r7 82ab4fc630 Update cisco_firepower_download module & documentation 2017-01-17 13:58:10 -06:00
wchen-r7 dd60e1a113
Land #7833, update tomcat_administration module documentation 2017-01-17 13:46:37 -06:00
wchen-r7 b53ee1390c Fix cosmetic issues with info -d 2017-01-17 13:46:12 -06:00
wchen-r7 26b6ae0ba3 Fix cosmetic issues when using info -d 2017-01-17 13:39:54 -06:00
juushya 7791c58d5c rubocop check & msftidy run clean. Minor updates. 2017-01-17 01:10:39 +05:30
juushya 657c7444bf rubocop check & msftidy clean. Few updates. 2017-01-17 00:17:57 +05:30
h00die 553221aaca markdown docs 2017-01-16 13:34:22 -05:00
h00die 1ec45b1356 markdown docs 2017-01-16 13:30:41 -05:00
h00die ad43f94e57 added scenarios for docs 2017-01-16 12:45:15 -05:00
h00die 4c5e046146 fixes deploy and upload 2017-01-15 20:31:33 -05:00
h00die 32271318e5 removed gui stuff since it should be in tomcat_mgr_upload 2017-01-15 19:11:58 -05:00
h00die b61ca669cf more fixes 2017-01-15 13:13:18 -05:00
h00die 8e988460b5 more fixes with check 2017-01-15 13:10:49 -05:00
h00die f7276a6a39 more cleanup 2017-01-15 11:56:11 -05:00
h00die bed08db43c more to edit 2017-01-14 19:17:37 -05:00
h00die 1615df92ef first add still incomplete 2017-01-14 13:31:39 -05:00
h00die b4c8a50c00 first add still incomplete 2017-01-14 13:26:02 -05:00
wchen-r7 9983a7d531 Update documentation 2017-01-13 17:01:47 -06:00
wchen-r7 a687073416 Add Cisco Firepower Management Console LoginScanner 2017-01-13 16:59:20 -06:00
bwatters_r7 64550a188a
Land #7797, Add module for DiskBoss Enterprise (EDB-40869) 2017-01-13 08:55:24 -06:00
wchen-r7 abab1f17c9
Merge master to cisco_cve_2016_6433 and make sure I have the latest 2017-01-11 14:39:52 -06:00
Gabor Seljan a3930d3488 Minor documentation improvements 2017-01-11 08:00:12 +01:00
Spencer McIntyre 1400f6fe67
Land #7769, add docs for phpmailer_arg_injection 2017-01-10 17:46:43 -05:00
Spencer McIntyre 960c1a1434 Update docs to reflect the final phpmailer module 2017-01-10 17:44:22 -05:00
Gabor Seljan 1a00ef3679 Add documentation 2017-01-10 23:00:18 +01:00
wchen-r7 8194603725 Add CVE-2016-6435 - Cisco Firepower Management Console Dir Traversal 2017-01-09 14:39:37 -06:00
wchen-r7 704604066b Update doc 2017-01-09 13:25:37 -06:00
wchen-r7 b2dc8c25f8 Update doc 2017-01-09 13:24:38 -06:00
wchen-r7 a59ca569e7 Add doc 2017-01-09 11:55:01 -06:00
juushya 1600879750 Add doc - PR #7784 2017-01-08 14:05:11 +05:30
juushya dc33d417e0 Add Meteocontrol Weblog Doc - PR #7790 2017-01-08 13:44:38 +05:30
Craig Smith 5f07bca775 Hardware Bridge API. Initial bridge API that supports the HW rest protocol specified here:
http://opengarages.org/hwbridge  Supports an automotive extension with UDS calls for mdoule
development.
2017-01-06 19:51:41 -08:00
dmohanty-r7 5cba9b0034
Land #7747, Add LoginScanner module for BAVision IP cameras 2017-01-06 16:25:44 -06:00
j91321 3125dc2fe9 Change typo in docs 2016-12-30 23:53:48 +01:00
j91321 6c9e43f2ad Add fingerprinting of devices, change documentation 2016-12-30 23:52:29 +01:00
h00die 6584da718a got docs 2016-12-30 15:16:08 -05:00
bwatters_r7 a580055491
Land #7730, add module to run exe as another user via powershell 2016-12-27 08:13:48 -06:00
j91321 1609213dc2 Add documentation fro module 2016-12-26 15:40:08 +01:00
William Vu ac4eae2e0f
Land #7752, moar Chromecast docs 2016-12-25 20:36:39 -06:00
William Vu 85912be7a3
Fix missing word in chromecast_wifi.md 2016-12-25 20:24:36 -06:00
h00die 78dc2b0f5e more chromecast documentation 2016-12-25 20:50:06 -05:00
William Vu f345dbb78d
Land #7750, module docs for chromecast_wifi 2016-12-25 14:50:34 -06:00
William Vu 931c052399 Move to chromecast_wifi.md to match module name
We're already in aux/scanner, so the meat of the module name is there.
2016-12-25 14:49:16 -06:00
h00die 8cfcbac2fc docs for shromecast_wifi_scan 2016-12-25 11:47:49 -05:00
Brent Cook 10e419e979
Land #7454, add CVE-2013-6282, put_user/get_user exploit for Android 2016-12-24 14:46:54 -06:00
Tim de9b8da12e
add device information to documentation 2016-12-24 15:34:02 +05:30
wchen-r7 144f886e8b Add LoginScanner module for BAVision IP cameras 2016-12-23 16:22:17 -06:00
Tim 16f2dc43e0
add documentation for put_user_vroot 2016-12-24 00:33:48 +08:00
William Vu c5d7fba3bf
Fix missing space 2016-12-22 03:36:58 -06:00
William Vu 934b05e736
Land #7310, at(1) persistence module 2016-12-22 03:33:58 -06:00
William Vu b65a62ba93 Clean up module 2016-12-22 03:33:08 -06:00
p3nt4 7093fa3af0 Update run_as_psh.md 2016-12-21 09:14:52 +11:00
p3nt4 50fde4849a Update run_as_psh.md 2016-12-20 15:17:43 +11:00
p3nt4 c8ba07b426 Update run_as_psh.md 2016-12-20 15:17:30 +11:00
p3nt4 b57677b362 Added docs 2016-12-20 14:48:29 +11:00
Brendan 9b678c2bdd
Land #7685, Add mosule to change user passwords by editing SAM registry 2016-12-16 13:11:40 -06:00
p3nt4 a3d13d2870 Update doc 2016-12-16 15:09:34 +11:00
p3nt4 4bfbd0134d Added Documentation 2016-12-16 15:08:39 +11:00
wchen-r7 511e421b9c Move doc to the correct directory 2016-12-15 15:16:11 -06:00
Carter f377774de0 Create reverse_tcp.md 2016-12-14 11:45:16 -05:00
Jon Hart 446cb02ebc
Document IAM_PASSWORD option 2016-12-12 10:43:27 -08:00
Javier Godinez e9ce622db7 Updated README 2016-12-08 16:39:28 -08:00
Javier Godinez e0a06bb315 Updated README 2016-12-08 16:31:37 -08:00
Jon Hart 4614b7023d
Land #7604, @godinezj's post module for creating AWS IAM accounts 2016-12-08 14:26:22 -08:00
Jon Hart aa29fcad80
Update docs and pretty print the loot 2016-12-08 14:25:07 -08:00
Jon Hart 3e412a8de3
Start documenting api/console create options 2016-12-08 12:59:54 -08:00
Javier Godinez ee0e5e8681 Updated README 2016-12-07 11:22:47 -08:00
h00die 3d09e283cf module ready 2016-12-02 22:03:23 -05:00
wchen-r7 9325ef8d8f
Land #7573, Add WP Symposium Plugin SQLI aux mod to steal credentials 2016-12-01 14:56:30 -06:00
William Vu 1d6ee7192a
Land #7427, new options for nagios_xi_chained_rce 2016-11-30 17:11:02 -06:00
William Vu b0cd28ef4c Update module docs 2016-11-30 17:10:57 -06:00
Javier Godinez a49a983079 Removed reference to not yet existing module 2016-11-28 16:31:51 -08:00
x2020 6f70323460 Minor misspelling mistakes and corrected the check of the mysqld process 2016-11-25 19:03:23 +00:00
Cantoni Matteo ceb7419714 wp_symposium_sql_injection Module Documentation 2016-11-24 10:41:50 +01:00
Javier Godinez c48587066d Added reference and minor fixes 2016-11-23 10:58:37 -08:00
Javier Godinez 43e1b5bdd1 Adds module to create an AWS IAM user from a pwned AWS host 2016-11-22 14:55:03 -08:00
h00die 05e59bbe19 non-working copy of varnish 2016-11-19 22:09:19 -05:00
x2020 acfd214195 Mysql privilege escalation
Documentation, compiled binary and final implementation.
Completed the documentation, added the missing compiled binary and a
final and tested implementation of the module.
2016-11-19 11:24:29 +00:00
h00die 0182594fb0 fix docs to reflect name change 2016-11-18 13:55:29 -05:00
h00die cfd31e32c6 renaming per @bwatters-r7 comment in #7491 2016-11-18 13:52:09 -05:00
Brian Patterson abddeb5cd2 Land 7473, add censys search module 2016-11-17 13:44:00 -06:00
Brent Cook b6f097c035
Correct a few misspellings 2016-11-15 08:08:20 -06:00
Brent Cook b56b6a49ac
Land #7328, Extend lsa_transname_heap exploit to MIPS 2016-11-15 07:37:19 -06:00
Brent Cook 312f33afa3 minor formatting updates 2016-11-15 07:36:54 -06:00
Pearce Barry 1dae206fde
Land #7379, Linux Kernel BPF Priv Esc (CVE-2016-4557) 2016-11-11 16:50:20 -06:00
dmohanty-r7 2b5517f597
Land #7506, Add gather AWS keys post module 2016-11-11 13:56:12 -06:00
dmohanty-r7 3ae021faba
Update aws gather key docs 2016-11-11 13:50:24 -06:00
h00die 1cb68c6f28
Land #7515, docs for enum_ie
Adds markdown docs for postwindows/gather/enum_ie. Thanks @daniel-wer

Fixes #7146
2016-11-01 20:11:32 -04:00
Brendan 05e2aad837
Land #7497, Add Kerberos domain user enumeration module 2016-11-01 14:34:47 -05:00
William Webb 31b593ac67
Land #7402, Add Linux local privilege escalation via overlayfs 2016-11-01 12:46:40 -05:00
Daniel Werner 1760cc9877 Add an IE7+ run to the post/windows/gather/enum_ie KB. 2016-10-31 20:30:22 +01:00
Daniel Werner a487d9e92a Add KB for post/windows/gather/enum_ie. 2016-10-31 16:19:06 +01:00
Jan Mitchell 97b7819a08 Adding documentation for lsatransnames_heap 2016-10-31 14:47:19 +00:00
Catatonic Prime c38281706d h00die's suggested changes 2016-10-30 23:22:09 +00:00
Catatonic Prime efc65dbb0c Language 2016-10-30 04:59:40 +00:00
Catatonic Prime 48e585b66c Removing sample documentation lines. 2016-10-30 04:58:02 +00:00
Catatonic Prime 1ddd31029e Adding documentation for ektron_xslt_exec_ws exploit module. 2016-10-30 04:52:36 +00:00
Spencer McIntyre f9041bc89a Address pull request feedback for module docs 2016-10-29 18:50:16 -04:00
Spencer McIntyre 89376102db Add documentation for jenkins_script_console 2016-10-29 16:50:47 -04:00
Pearce Barry 0b23365881
Minor addition to the telpho10_credential_dump docs. 2016-10-28 17:52:49 -05:00
Pearce Barry 5c12d55c84
Land #7484, Add Telpho10 Credentials Dump Exploit 2016-10-28 17:41:46 -05:00
Pearce Barry 991a3fe448
Markdown docs added. 2016-10-28 17:38:00 -05:00
Jon Hart 74baffd463
Rename doc 2016-10-28 15:31:12 -07:00
Jon Hart 96c204d1ea
Add aws_keys docs; correct description 2016-10-28 15:27:47 -07:00
dmohanty-r7 d918e25bde
Land #7439, Add Ghostscript support to ImageMagick Exploit 2016-10-28 17:07:13 -05:00
dmohanty-r7 d6785a437e
Add module docs for imagemagick_delegate 2016-10-28 17:02:09 -05:00
attackdebris c2af2ab214 Move kerberos_enumusers module to aux/gather & add documentation 2016-10-27 19:11:22 +01:00
nixawk 98afd0f18d add censys_search doc 2016-10-25 22:40:25 -05:00
Jon Hart a61e6bc11b Correct formatting. really. 2016-10-25 15:58:46 -05:00
Jon Hart 252b604999 Correct formatting 2016-10-25 15:58:46 -05:00
Jon Hart b7dba76089 Add module documentation for udp_amplifcation 2016-10-25 15:58:46 -05:00
Pearce Barry 9a0307b0c0
Land #7369, Panda Antivirus Priv Esc 2016-10-21 13:20:41 -05:00
h00die 40054a6c01 docs table 2016-10-20 20:54:35 -04:00
h00die 12e4fe1c5c updated dlls and docs 2016-10-20 20:45:50 -04:00
h00die 0d1fe20ae5 revamped 2016-10-15 20:57:31 -04:00
Brent Cook dd1e8ff964
fix a few typos in KB 2016-10-14 13:01:51 -05:00
Brent Cook cfddc734a8
Land #7286, WiFi pineapple preconfig command injection module 2016-10-14 12:57:42 -05:00
Brent Cook e05a325786
Land #7285, WiFi pineapple command injection via authentication bypass 2016-10-14 12:57:05 -05:00
Brent Cook 1c9914acb1 add module doc 2016-10-14 12:46:19 -05:00
Brent Cook d36940260f add module doc 2016-10-14 12:44:17 -05:00
Thao Doan 9111d8598c
Land #7440, Add docs for Chrome User Data Enum 2016-10-14 10:39:53 -07:00
Brent Cook 9fbe1ddd9d
Land #7384, CVE-2016-6415 - Cisco IKE Information Disclosure 2016-10-14 08:41:34 -05:00
Daniel Werner 8adcb96435 Add KB for post/windows/gather/enum_chrome. 2016-10-13 23:23:21 +02:00
nixawk 884a8b29e7 add doc for auxiliary/scanner/ike/cisco_ike_benigncertain.rb 2016-10-12 03:33:22 -05:00
mr_me 2a308f76b1 Update rails_dynamic_render_code_exec.md 2016-10-10 22:43:24 -05:00
mr_me f2252bb179 fixed a few things, thanks @h00die 2016-10-10 22:30:01 -05:00
h00die 2ad82ff8e3 more nagios versatility 2016-10-10 10:21:49 -04:00
Pearce Barry d1a11f46e8
Land #7418, Linux recvmmsg Priv Esc (CVE-2014-0038) 2016-10-09 18:37:52 -05:00
h00die f9060b0ac7 fixed doc numbering 2016-10-09 00:02:18 -04:00
h00die 2dfebe586e working cve-2014-0038 2016-10-08 23:58:09 -04:00
Brent Cook b77a910205
Land #7355, allwinner post to local exploit conversion 2016-10-08 21:38:54 -05:00
Brent Cook e074669406
Land #7296, Added a SCADA module for detecting Profinet devices, e.g. Siemens controllers 2016-10-08 21:34:40 -05:00
Brent Cook 7e2e98f96c
Land #7413, Add KB for post/firefox/gather/passwords 2016-10-08 21:31:27 -05:00
Brent Cook bd24e7eba0 more cleanups and print output on auto-run 2016-10-08 21:14:26 -05:00
Brent Cook df597a7bb7 add module documentation 2016-10-08 20:17:54 -05:00
Daniel Werner 86465710e2 Add KB for post/firefox/gather/passwords. 2016-10-08 01:19:26 +02:00
h00die 27cf5c65c4 working module 2016-10-04 23:21:53 -04:00
Jon Hart cf20ccaccd
Add kb for aws_ec2_instance_metadata 2016-09-30 07:02:33 -07:00
h00die 7b0a8784aa additional doc updates 2016-09-29 19:02:16 -04:00
h00die c036c258a9 cve-2016-4557 2016-09-29 05:23:12 -04:00
h00die 7a108e2102 updated docs w/ error codes on failed attempts 2016-09-27 20:26:04 -04:00
h00die 35a2b3e59d working panda 2016-09-27 20:15:17 -04:00
William Vu b87911bd0b
Land #7340, auxiliary/server/socks4a docs 2016-09-26 17:34:45 -05:00
Brendan b9de73e803
Land #7334, Add aux module to exploit WINDOWS based (java) Colorado
FTP server directory traversal
2016-09-26 14:15:23 -05:00
Pearce Barry 6382fffc75
Land #7326, Linux Kernel Netfilter Privesc 2016-09-26 12:38:50 -05:00
h00die 23e5556a4c binary drops work! 2016-09-24 21:31:00 -04:00
Brent Cook 6f4c9435be Add module documentation 2016-09-24 05:48:18 -04:00
h00die cba297644e post to local conversion 2016-09-22 22:08:24 -04:00
h00die 3dff41c833 documentation update 2016-09-22 21:06:31 -04:00
Brendan 04f8f7a0ea
Land #7266, Add Kaltura Remote PHP Code Execution 2016-09-21 17:14:49 -05:00
Oliver Rumbelow d1bf7d94bc auxilary/server/socks4a documentation 2016-09-20 20:08:16 +01:00
Mehmet Ince fb00d1c556
Another minor grammer changes 2016-09-20 19:23:28 +03:00
Brendan 513d8a8163 Edit fail 2016-09-20 10:51:12 -05:00
Brendan e1155fed77 Minor changes to grammar 2016-09-20 10:34:03 -05:00
Mehmet Ince 385428684f
Move module and docs under the exploit/linux/http folder 2016-09-20 12:45:23 +03:00
Mehmet Ince 0a58ada1da
Add missing steps and cite original wiki URL 2016-09-20 01:38:46 +03:00
Oliver Rumbelow e05cac15c6 auxilary/server/socks4a documentation 2016-09-19 21:37:35 +01:00
h00die 9c922d111f colorado ftp 2016-09-18 20:03:16 -04:00