Commit Graph

25409 Commits (68d451711b113c8182513ea36bdc315691d1ea50)

Author SHA1 Message Date
Brendan Coles 68d451711b Fix bpf_priv_esc module 2018-12-12 17:23:12 +00:00
William Vu aa0c206b4b
Land #11107, double negative logic cleanup 2018-12-11 20:29:53 -06:00
Shelby Pace ae089ce573
Land #10960, add wp duplicator code inject module 2018-12-11 12:02:07 -06:00
Shelby Pace b82e3469a2
renamed module and doc 2018-12-11 11:59:19 -06:00
Julien Legras 7e953e34b9 Added the clean_up function 2018-12-11 18:13:46 +01:00
bwatters b109321b44
Kill `unless not` 2018-12-11 10:16:16 -06:00
bwatters ac88c604fd Remove copy/pasta'd funtion that was never called 2018-12-11 10:02:36 -06:00
Jacob Robles 1ab69c221c
Land #11040, Add CyberLink LabelPrint Local BOF 2018-12-11 08:19:51 -06:00
Jacob Robles 165f082160
Fix syntax, minor edits 2018-12-11 07:55:20 -06:00
William Vu 3f18ffa224
Land #10318, Oracle function-based index privesc 2018-12-10 11:32:39 -06:00
William Vu d0f1f72426 Clean up module 2018-12-10 11:21:16 -06:00
Brent Cook bc6356a2cd
Land #11090, update code and style for exploit/linux/local/glibc_origin_expansion_priv_esc 2018-12-10 09:59:03 -06:00
Brendan Coles 237d3c86c4 Code cleanup and update style 2018-12-09 07:26:51 +00:00
Brendan Coles a9c0a5d53d Use ::File::binread for exploit_data file read 2018-12-09 04:09:56 +00:00
Brent Cook d3fc707c98
Land #11080, update mettle payloads 2018-12-08 09:51:37 -06:00
Brent Cook 3768f79568
Land #11085, add lkrg_installed? checks to various modules 2018-12-08 09:19:33 -06:00
Brent Cook 733c2f637d
Land #11081, Add Msf::Post::Linux::Kernel.lkrg_installed? method 2018-12-08 09:14:57 -06:00
Brendan Coles d8ab6a552b Add lkrg_installed? checks 2018-12-08 13:37:12 +00:00
Brent Cook 2e5e392085
Land #11079, add kernel configuration checks to local exploits 2018-12-08 06:58:48 -06:00
Brent Cook df76521100
Land #11066, add rpc output locking, fix logging 2018-12-07 13:49:10 -06:00
Brent Cook 7f4d97ef46 don't embed status characters in messages, use correct logging instead 2018-12-07 13:29:56 -06:00
Brendan Coles 80d83720df Add Msf::Post::Linux::Kernel.lkrg_installed? method 2018-12-07 14:42:16 +00:00
Brendan Coles 275c043cfd Add kernel_config checks 2018-12-07 03:28:17 +00:00
Brent Cook 0345c8f66c update mettle payloads
This is a large update to mettle payloads including:

 * Adds globbing support to the `ls` command (https://github.com/rapid7/mettle/pull/139)
 * Fixes crashes on iOS platforms when cryptTLV is enabled (https://github.com/rapid7/mettle/pull/142)
 * Fixes display of the OS version on macOS and iOS (https://github.com/rapid7/mettle/pull/143)
 * Fixes the local port handling for pivoted client network connections (https://github.com/rapid7/mettle/pull/144)
 * Fixes an unaligned memory access in TLV packet handling, needed for some CPUs (https://github.com/rapid7/mettle/pull/145)
 * Fixes some compatibility issues building on Solaris (https://github.com/rapid7/mettle/pull/147)
 * Updated libpcap, mbedtls, and libcurl to the latest versions (https://github.com/rapid7/mettle/pull/146)
2018-12-06 21:16:41 -06:00
Brent Cook 7d8458d8d4
Land #11076, Prevent storing empty config files as loot 2018-12-06 20:30:08 -06:00
Brent Cook 71f84fe6a7
Land #11060, Add checks to post/linux/gather/enum_protections 2018-12-06 20:17:50 -06:00
Tod Beardsley 140833215f
Add CVE as issued by DWF
See discussion on #10987.

Now that I said that out loud, I realize that the original PR for this
module is a really funny PR number.
2018-12-06 14:59:05 -06:00
Brendan Coles eecc5d60e0 Prevent storing empty config files as loot 2018-12-06 13:06:50 +00:00
Christopher Lee b0560c1ec8 Centralize logging sync, fix minor logging issues 2018-12-05 12:42:44 -06:00
Julien Legras 224e782772 Cleaned the create_wp_config_file function 2018-12-05 10:56:22 +01:00
Julien Legras 2774c17ca1 Replaced print_error and return with a fail_with 2018-12-05 10:11:09 +01:00
Thomas Gregory 1bc024eaa7 Update cyberlink_lpp_bof.rb
Update includes all suggestions and new targets (Win8.1 x64 and Win10 x64)
2018-12-05 14:53:10 +07:00
Julien Legras 2735c71bda Fixed typos, removed not working cleaning 2018-12-04 18:42:54 +01:00
Brent Cook 55a9a12670
Land #10964, add initial golang modules for enumerating owa/o365 2018-12-04 10:33:37 -06:00
Brendan Coles 40906e0b36 Add checks to post/linux/gather/enum_protections 2018-12-04 11:57:24 +00:00
Julien Legras b58342843b Refactored check 2018-12-04 12:03:49 +01:00
asoto-r7 c27c149a4d
Land #10947, HPE Intelligent Management Center Java Deserialization RCE 2018-12-03 17:07:31 -06:00
asoto-r7 0f82b207c4
hp_imc_java_deserialize: Repro steps for JSONSS ysoserial payload sections 2018-12-03 17:03:04 -06:00
asoto-r7 3f930ff141
hp_imc_java_deserialize: Default WfsDelay to 10 seconds to increase reliability 2018-12-03 16:36:37 -06:00
Brent Cook ffb57387b4
Land #11049, Add Emacs movemail local exploit 2018-12-03 12:43:56 -06:00
William Vu 4242de3468 Refactor check method 2018-12-03 12:22:40 -06:00
bwatters-r7 df9c3da47e
Land #10842, Add Windows Post Module to roll back Windows Defender signatures
Merge branch 'land-10842' into upstream-master
2018-12-03 10:57:38 -06:00
Christopher Lee b11bcd92a4 Broken into 3 modules, addressed review comments 2018-12-03 10:25:21 -06:00
Jeffrey Martin ab1bea1b22
Land #10798, Cisco device manager update 2018-12-03 01:39:19 -06:00
William Vu d1220bc170 Add Emacs movemail local exploit 2018-12-01 12:05:08 -06:00
bwatters-r7 a801d741c9
Remove old module 2018-11-30 17:28:54 -06:00
bwatters-r7 70031b6721
Shut up msftidy and document updates 2018-11-30 16:41:40 -06:00
bwatters-r7 3c992b7af1
Updated documentation and added options in the module to update or roll back
definitions
2018-11-30 16:25:33 -06:00
bwatters-r7 a41b9a77d8 Change the module name, fix cleanup, add documentation 2018-11-30 15:20:34 -06:00
Christopher Lee 5b926bcbcf Addressed feedback 2018-11-30 13:18:02 -06:00