b218cc3c7f
Merge branch 'master' into hw_auto_padding_fix
2017-09-11 18:30:34 -07:00
363e11850b
Added FC to documentation
2017-09-11 18:29:27 -07:00
5ae708081d
Wording, reviewer remarks
2017-09-11 23:25:10 +02:00
fc52ef9941
Land #8942 docs for syn port scanner
2017-09-10 10:03:34 -04:00
ddfa1d722b
fixed grammar
2017-09-10 10:02:07 -04:00
861f4a6201
Changes to buildmaster_login from code review
...
Use peer property in messages instead of rhost rport combination for consistency.
Documentation updated accordingly.
2017-09-09 18:00:04 -05:00
4ec72d7091
Update syn.md
2017-09-09 20:15:13 +05:30
8138396ab5
Update syn.md
2017-09-09 13:28:18 +05:30
8f864c27e3
Land #8924 , Add Apache Struts 2 REST Plugin XStream RCE
2017-09-08 13:59:52 -05:00
54a62976f8
update versions and add quick module docs
2017-09-08 13:59:29 -05:00
c91ef1f092
Land #8768 , Add Docker Daemon TCP exploit module
2017-09-08 12:50:00 -05:00
35ecc822f1
Update syn.md
2017-09-08 13:23:30 +05:30
bead7374de
syn.md
...
documentation for syn portscan
2017-09-08 02:57:46 -04:00
a0181a4d54
Land #8831 , Add Maven post-exploitation credential extraction module
...
Merge remote-tracking branch 'upstream/pr/8831' into upstream-master
2017-09-08 00:37:03 +02:00
c67e407c9c
Land #8880 , added Cisco Smart Install (SMI) scanner
2017-09-07 08:06:03 -05:00
a304df265c
fix spelling
2017-09-07 08:02:30 -05:00
637b83a0ea
add docs for nodejs debugger eval exploit
2017-09-06 22:29:46 -07:00
be66ed8af3
Land #8788 exploits for Gh0st and PlugX malware controllers
2017-09-05 20:42:07 -04:00
d05c401866
modules cleanup and add docs
2017-09-04 20:57:23 -04:00
52c8fff3cb
Make options a list
2017-08-30 03:10:46 +01:00
42ab00fd2c
Add documentation for module
2017-08-30 03:10:46 +01:00
202c936868
Land #8826 , git submodule remote command execution
2017-08-29 18:11:32 -05:00
8928197584
rename module docs so they are viewable
2017-08-29 18:09:30 -05:00
d5124fdc94
Land #8759 , Add TeamTalk Gather Credentials auxiliary module
2017-08-29 13:17:28 -05:00
e1b38ac3a3
fix malicious typo
2017-08-29 17:52:51 +08:00
5631ddc246
add docs for the git submodule vulnerability
2017-08-29 17:06:30 +08:00
5bf1d916bc
Fix uneven quotes in various documentation files
...
Uneven quotes lead to malformed markdown, which will not render as intended.
Even out the quotes in several files.
2017-08-26 19:12:48 -05:00
f785fe63ad
Grammar fix in buildmaster_login documentation
2017-08-26 18:35:13 -05:00
2e9d7cdf0a
Documentation formatting fix for buildmaster_login
2017-08-26 18:23:00 -05:00
7dfde651ea
Add login scanner module for Inedo BuildMaster
...
This module attempts to log into BuildMaster. BuildMaster is an application release automation tool.
More information about BuildMaster:
http://inedo.com/
2017-08-26 17:56:53 -05:00
682851ac59
Edit doc
2017-08-25 18:28:24 +02:00
899c2cc6fa
Land #8866 tcp scanner docs
2017-08-23 20:23:51 -04:00
a54ef94c79
style fixes
2017-08-23 20:20:31 -04:00
0fac36c2af
Update tcp.md
2017-08-23 10:36:56 +05:30
99dfc9901c
Update tcp.md
...
Adding documentation for tcp module
2017-08-23 10:36:08 +05:30
d254da5150
Update tcp.md
2017-08-23 10:23:28 +05:30
6fb90640b9
Update tcp.md
2017-08-23 10:02:21 +05:30
4c285c0129
Land #8827 , QNAP Transcode Server RCE
2017-08-22 23:07:01 -05:00
a0585dcb9e
Land #8872 docs for octopusdeploy_deploy
2017-08-22 21:36:44 -04:00
e4fc307ebb
Add docs
2017-08-22 15:12:02 -07:00
be2739d335
Transform loots into creds
2017-08-22 11:57:51 +02:00
7f8e6b83dc
Update documentation for exploit/windows/http/octopusdeploy_deploy
...
Remove self explanatory options.
2017-08-21 19:47:24 -05:00
60215297be
Update documentation for exploit/windows/http/octopusdeploy_deploy
...
Fix awkward wording.
2017-08-21 19:17:41 -05:00
de9392995a
Add documentation for exploit/windows/http/octopusdeploy_deploy
2017-08-21 19:11:36 -05:00
8f4fcb5094
tcp.md
...
This module does a complete full tcp scan of each port on the target host. It does a full 3 way handshake on each port.
2017-08-21 13:09:12 -04:00
eabe4001c2
Land #8492 , Add IBM OpenAdmin Tool SOAP welcomeServer PHP Code Execution module
2017-08-20 18:48:22 -05:00
cbd7790e95
Land #8751 , Add Asterisk Gather Credentials auxiliary module
2017-08-20 18:34:27 -05:00
840c0d5f56
Land #7808 , add exploit for VMware VDP with known ssh private key (CVE-2016-7456)
2017-08-20 17:36:45 -05:00
f7dc831e9a
Land #8799 , Add module to detect Docker, LXC, and systemd-nspawn containers
2017-08-20 14:45:57 -05:00
2eba188166
Land #8789 , Add COM class ID hijack method for bypassing UAC
2017-08-20 13:57:17 -05:00
cde319a5ec
Optim module and add doc
2017-08-18 19:30:41 +02:00
b0a4634b24
Update connect.md
...
Adding the command in installing gem "serialport".
2017-08-17 18:55:44 +08:00
3fcd248d3a
Add documentation
2017-08-17 09:51:09 +00:00
648dca7bdb
fix silly documentation mistake
2017-08-17 14:43:58 +08:00
1c44092ba9
Add module documentation for post/linux/gather/checkcontainer
2017-08-16 21:15:56 -05:00
408a83a36b
Added comhijack module documentation
2017-08-16 13:05:27 +10:00
6ac8ed490b
Add documentation file
2017-08-15 16:56:20 +02:00
60f7534969
Add documentation
2017-08-15 03:43:22 +00:00
68f569d8f5
Land #8809 , Add documentation for OSX meterpreter
2017-08-13 09:31:28 -04:00
4315c2d8ea
Land #8802 , single-char args for terp scripts
2017-08-10 01:29:55 -05:00
bb5fffebc4
Land #8796 , SMBLoris Denial of Service Module.
2017-08-09 16:24:55 -05:00
901a1fdd1b
Minor tweaks.
2017-08-09 15:44:32 -05:00
dd79aa3afb
Land #8627 , Add post module multi/gather/jenkins
2017-08-09 10:43:21 -05:00
9c87f5f52f
commands should be highlighted
2017-08-08 12:45:39 +08:00
eb3e07ee10
minor tweak since background is default now
2017-08-08 12:37:28 +08:00
61bb59d653
fix typos
2017-08-08 12:31:30 +08:00
0fde536691
add documentation for OSX meterpreter
2017-08-08 12:26:22 +08:00
46ca543712
add docs for Android APK injection
2017-08-07 15:56:48 +08:00
ed2286c637
Fix references to multi_console_command
2017-08-06 18:58:38 -05:00
e1576154fb
Document the new padding option.
2017-08-06 18:34:56 -05:00
289f03241b
add module documentation
...
add module docs for the new smbloris DoS
2017-08-04 16:10:44 -05:00
da3ca9eb90
update some documentation
2017-08-03 17:09:44 -05:00
67dddd2402
Typo reported by @nixawk
2017-08-02 15:47:21 -05:00
3229320ba9
Code review feedback from @nixawk
2017-08-02 15:46:51 -05:00
565a3355be
CVE-2017-8464 LNK Remote Code Execution Vulnerability
...
This module exploits a vulnerability in the handling of Windows
Shortcut files (.LNK) that contain a dynamic icon, loaded from a
malicious DLL.
This vulnerability is a variant of MS15-020 (CVE-2015-0096). The
created LNK file is similar except in an additional
SpecialFolderDataBlock is included. The folder ID set in this
SpecialFolderDataBlock is set to the Control Panel. This is enought to
bypass the CPL whitelist. This bypass can be used to trick Windows into
loading an arbitrary DLL file.
2017-08-02 15:46:30 -05:00
d7d64286e2
Add documentation for exploit module Rancher Server - Docker Exploit
2017-07-28 08:04:59 +02:00
798dfe0b88
Add documentation
2017-07-26 10:18:23 +00:00
dd0c78484a
Fix mistake
2017-07-26 02:17:51 +02:00
cd418559bc
Docker Daemon - Unprotected TCP Socket Exploit
2017-07-26 00:21:35 +02:00
6300758c46
use https for metaploit.com links
2017-07-24 06:26:21 -07:00
fe5c6dc28f
Orientdb 2.2.x RCE - Update documentation
2017-07-24 10:09:06 +01:00
7c55cdc1c8
fix some module documentation
...
3 modules got documentation landed in the wrong spot. This also fixes a few
typos and improves formatting.
2017-07-23 07:46:52 -07:00
6bb745744b
Land #8471 , Add VICIdial user_authorization Unauthenticated Command Execution module
2017-07-21 15:57:08 -05:00
00a817d228
Orientdb 2.2.x RCE - Add documentation
2017-07-20 09:03:26 +01:00
ffad0d1bbf
Land #8559 , Ipfire oinkcode exec
2017-07-19 14:31:18 -05:00
47f55b1c81
add documentation
2017-07-18 21:30:53 -04:00
e93e524c3b
Merge branch 'upstream-master' into feature/rdp-scanner
2017-07-17 13:46:59 -07:00
e5ef737c21
Add documentation
2017-07-17 13:45:12 -07:00
8f6cac9c37
Land #8652 , rpc console write exploit
...
lands pr for the metasploit rpc console write exploit
2017-07-14 14:47:35 -05:00
de230478eb
Land #8566 , Add ye olde NNTP Login Utility scanner module
2017-07-13 13:19:34 -05:00
59de7d3635
Land #8671 , Add a module for CVE-2017-7615
2017-07-12 14:58:02 -05:00
6cb956ea81
Update rfpwnon.md
2017-07-09 05:07:36 -04:00
f10cf75ae0
Fix some stuff
2017-07-09 10:45:15 +02:00
e1b9330136
Add some documentation
2017-07-09 02:25:11 +02:00
e3f95954ba
Minor doc update.
2017-07-07 16:54:56 -05:00
95ba5d61ce
Move documentation to correct folder
2017-07-07 16:54:56 -05:00
8e2ff7a4c5
Add command stager and code cleanup
2017-07-07 16:54:56 -05:00
8f464e17a1
Land #8658 , Add Gather PDF Authors auxiliary module
2017-07-07 16:20:29 -05:00
afc704aea5
Ad documentation
2017-07-07 18:54:48 +00:00
f4820d24fb
add a few more AKA references
2017-07-06 22:43:46 -05:00
b0c5d734ee
s/swith/switch/ - ok @bcoles
2017-07-06 07:03:06 -05:00
baff473cae
Add Metasploit RPC Console Command Execution module
2017-07-05 08:48:35 +00:00
aa387e96a7
Land #8577 , Add SurgeNews User Credentials scanner
2017-07-03 10:14:03 -05:00
a2602bf514
Land #8600 , Add GoAutoDial 3.3 RCE Command Injection / SQL injection module
2017-06-30 17:32:51 -05:00
3d4d03c9b4
Land #8575 , Cerberus Helpdesk hash disclosure
2017-06-30 16:02:53 -05:00
71b2ddaa2c
Minor doc tweaking.
2017-06-30 15:53:27 -05:00
796fe99744
update docs to note that cluster mode is not necessary to exploit
2017-06-30 11:26:35 -04:00
40f0d36f6b
Land #8615 , add @artkond's DoS module for Cisco CVE-2017-3881
2017-06-30 11:17:09 -04:00
6349026134
Land #8442 , Exploit module for Backup Exec Windows Agent UaF
2017-06-28 10:39:28 -05:00
0d9f57ad7c
add @artkond's DoS module for Cisco CVE-2017-3881
...
This makes a few improvements, adds module docs.
2017-06-27 01:53:23 -05:00
05c72214ae
Land #8205 , Add Satel SenNet Command Exec Module
2017-06-25 18:01:44 -05:00
2918b3af13
Land #8599 , Dynamic DNS updater module
2017-06-25 15:08:22 -05:00
24fe6ac0fe
Update dns_dyn_update.md
2017-06-24 17:07:56 -05:00
cc9326d946
bcoles updates and table printing
2017-06-24 13:01:39 -04:00
18410d8230
Land #8540 , Add Symantec Messaging Gateway RCE
2017-06-22 19:00:32 -05:00
5e48a11e60
handle specific exceptions, update docs
2017-06-22 18:01:52 -05:00
6a261b172f
move from scanner to admin
2017-06-22 17:47:04 -05:00
cdf0091962
fixup docs
2017-06-22 16:07:34 -05:00
2410a3232f
Adding DNS Server Dynamic Update Record Injection module
2017-06-22 15:41:25 -05:00
4fdd77f19a
Land #8051 , Add Netgear DGN2200v1/v2/v3/v4 Command Injection Module
2017-06-22 11:46:40 -05:00
24d9bec0ae
Land #8260 , OpManager Version Check
2017-06-20 17:58:10 -05:00
700d392106
Add markdown docs.
2017-06-20 17:45:44 -05:00
3cd28b28e2
Land #8569 , Add ability to specify API token instead of password
2017-06-19 17:42:35 -05:00
58cd432120
Added docs, minor code tweak to remove duplication.
2017-06-19 17:35:41 -05:00
071dc09b1f
fix spelling
2017-06-19 10:31:24 -05:00
19ceb53304
Modified payload handling and uploaded documentation
2017-06-18 02:04:22 +10:00
b82051757d
Add SurgeNews User Credentials scanner module
2017-06-17 01:49:47 +00:00
41e96f9ff1
updated docs
2017-06-16 20:54:25 -04:00
f008f2aa8f
working code
2017-06-16 08:24:54 -04:00
414f440d62
Add documentation
2017-06-15 21:12:09 +00:00
46ffd250a0
module working and docs
2017-06-14 21:15:56 -04:00
0766f92013
Add option for workspace
2017-06-13 12:46:36 +00:00
bb9d1a6768
Land #8507 , Riverbed SteelHead VCX file read
2017-06-12 10:39:48 -05:00
6ae540d889
Adding Symantec messaging gateway rce
2017-06-10 12:23:12 +03:00
99fa52e660
Land #8434 , Add Windows 10 Bypassuac fodhelper module
2017-06-07 11:15:01 -05:00
bac17a8e80
Land #8053 , Add DC/OS Marathon UI Exploit
2017-06-06 09:29:26 -05:00
385daddb9d
Land #8499 , doc header consistency fixes
2017-06-05 17:40:15 -05:00
bc3b883758
Add docs, fix typo, add missing report mixin to avoid error.
2017-06-05 13:49:59 -05:00
ea5db9a039
working module
2017-06-02 23:09:19 -04:00
24505f91de
Add documentation
2017-06-01 06:03:10 +00:00
4eb86cae99
add L3 header for version under scenarios
2017-05-31 21:22:44 -04:00
1c23be91a7
sample output to scenarios conversion in docs
2017-05-31 21:21:38 -04:00
44c9292f92
Land #8485 docs for snare_registry
2017-05-31 20:51:01 -04:00
609b131e46
Land #8482 docs for processmaker_exec
2017-05-31 20:39:43 -04:00
31975b49ec
Update docs
2017-05-31 02:04:40 +00:00
30f652eb5c
Update docs
2017-05-31 01:46:18 +00:00
bac23757a4
Updated based on busterb comments
2017-05-30 09:33:03 -04:00
5042b04ff8
Add documentation
2017-05-30 09:29:01 +00:00
475510787d
Add documentation
2017-05-30 08:40:57 +00:00
a01a2ead1a
Land #8467 , Samba CVE-2017-7494 Improvements
2017-05-30 00:15:03 -05:00
28fb5cc7da
spelling
2017-05-30 00:14:33 -05:00
5698896672
Land #8323 wordpress pre4.6 dos
2017-05-29 07:59:43 -04:00
eb87185e25
fixed up docs format
2017-05-29 07:59:06 -04:00
72a5142e37
Update directory traversal DoS module and docs
2017-05-29 00:30:23 +02:00
2c3d5bd786
Add documentation
2017-05-28 04:51:39 +00:00
dfb5806dcb
Add documentation
2017-05-28 03:08:45 +00:00
d4ba28a20b
Land #8457 , Update multi/fileformat/office_word_macro to allow custom templates
2017-05-26 15:09:23 -05:00
b3a5a8840b
added ubuntu information
2017-05-26 14:10:26 -04:00
33ddef9303
Add documentation, add configurable depth path
2017-05-26 16:14:03 +02:00
ee13195760
Update office_word_macro exploit to support template injection
2017-05-25 15:53:45 -05:00
e8a34c5797
updates to docs
2017-05-25 16:53:39 -04:00
98ad754475
updated OJ info and wvu ubuntu box
2017-05-25 08:09:37 -04:00
b1514fcbc0
docs
2017-05-24 22:18:46 -04:00
af4eafdf70
Updated module and doc
2017-05-24 06:33:08 +05:30
d530c49645
Add documentation for CVE-2017-8895 exploit module
2017-05-24 00:28:37 +12:00
b7b1995238
Land #8274 , Wordpress admin upload `check`
2017-05-22 22:08:32 -05:00
47d2917a5f
Land #8418 , Add docs for 3 smb related aux modules
2017-05-22 22:04:22 -04:00
2fbbc98b5d
document little trick for those who read :)
2017-05-22 19:50:40 +01:00
93bb47d546
msftidy fix
2017-05-22 19:27:15 +01:00
6f1f630b0e
add documentation
2017-05-22 19:17:26 +01:00
467f1ce0ca
Land #8411 , Buffer overflow in VXSearch Enterprise v9.5.12
2017-05-22 07:37:31 -05:00
ae0fd66d91
smb docs looking good
2017-05-19 16:10:22 -04:00
48b85e9ad3
added info on pr flag for nmap
2017-05-19 13:10:01 -04:00
34f724cbc1
first add
2017-05-19 12:55:04 -04:00
3203937811
Added a confirmation tip, using nmap.
2017-05-19 00:52:23 +02:00
99eaffd232
Formatting fix (my bad).
...
[*] Start msfconsole
[*] use the module
[*] info -d
[ ] Verify spelling and grammar
2017-05-19 00:18:08 +02:00
dc436805bf
doc for arp_sweep aux scanner discovery mod #8296
2017-05-18 22:54:29 +02:00
ca6b00161d
VX Search Enterprise GET Buffer Overflow Doc
2017-05-18 17:12:10 +01:00
c0bf2cc6e7
Land #8401 , Buffer Overflow on Sync Breeze Enterprise 9.4.28
2017-05-17 23:39:50 -05:00
3360171977
Land #8319 , Add exploit module for Mediawiki SyntaxHighlight extension
2017-05-17 23:23:50 -05:00
1cc00b2944
Add vulnerable setup info in mediawiki_syntaxhighlight.md
2017-05-17 23:23:00 -05:00
ca1f8da7e5
Get around encoding issues in mediawiki_syntaxhighlight.md
2017-05-17 22:50:56 -05:00
b78749bc1b
Land #8221 , move autoroute
2017-05-17 15:17:45 -05:00
57eac49222
Add files via upload
2017-05-17 10:52:36 +01:00
7e2dab4ddc
Land #8303 , Buffer Overflow on Dupscout Enterprise v9.5.14
2017-05-17 01:04:59 -05:00
21e741b530
Comment out x86 targets in ms17_010_eternalblue.md
...
Still under development.
2017-05-16 19:52:44 -05:00
11da7c7c81
Land #8394 , Add Moxa Credential Recovery Module
2017-05-16 16:45:22 -05:00
77a9676efb
Land #8347 , Add Serviio Media Server checkStreamUrl Command Execution
2017-05-16 16:20:39 -05:00
e3f4cc0dfd
Land #8345 , WordPress PHPMailer Exim injection
...
CVE-2016-10033
2017-05-16 15:07:21 -05:00
e62fc3e93c
Land #8376 , Add BuilderEngine 3.5 Arbitrary file upload & exec exploit
2017-05-16 14:53:32 -05:00
3893bc4d83
Update doc with new prestager command
2017-05-16 14:48:12 -05:00
2ed8ae11b4
Add doc and make minor changes
2017-05-16 14:47:19 -05:00
eff4914240
Land #8381 , ETERNALBLUE exploit (to be continued)
2017-05-16 12:19:45 -05:00
77dd3d19b9
add moxa credentials recovery module documentation
2017-05-16 10:22:50 -04:00
4e3d5fa8a3
Added docs
2017-05-16 13:06:09 +02:00
8021b209ba
Update doc with new usage
...
Also kick version down to 4.6, since I wasn't using the tag originally.
2017-05-15 21:28:41 -05:00
2055bf8f65
Add note about PHPMailer being bundled
2017-05-15 14:29:11 -05:00
85d99d8cf1
Land #8373 , Add documentation for VMWare aux modules
2017-05-14 22:17:01 -05:00
e3dcf0ab2d
added docs
2017-05-14 19:22:26 -06:00
8be51bb56b
Land #8372 , rservice documentation
2017-05-14 19:31:55 -05:00
Craig Smith
Martin Pizala
h00die
james
Deepanshu Gajbhiye
Brent Cook
dmohanty-r7
Patrick Thomas
Calum Hutton
Pearce Barry
Tim
Erik Lenoir
William Vu
Jon Hart
Jay Turla
Brendan Coles
OJ
bwatters-r7
Josh Hale
David Maloney
Yorick Koster
Ricardo Almeida
thesubtlety
Corey Harding
jvoisin
William Webb
Rob Fuller
Rob Fuller
KINGSABRI
mccurls
Mehmet Ince
wolfthefallen
root
wchen-r7
juushya
Matthew Daley
Jeffrey Martin
amaloteaux
Renato Piccoli
Daniel Teixeira
James Lee
Patrick DeSantis
Gabriel Follon
zerosum0x0