Joshua Drake
|
b419a40c45
|
finished periodic missing CVE reference check (hint vulns w/o CVEs here!)
also some minor cleanups here and there
git-svn-id: file:///home/svn/framework3/trunk@8762 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-03-10 05:58:01 +00:00 |
Joshua Drake
|
6414821ea8
|
add exploit modules for CVEs 2005-2877 and 2004-1037
git-svn-id: file:///home/svn/framework3/trunk@8578 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-02-21 20:31:09 +00:00 |
Joshua Drake
|
6e8eddcf5e
|
add exploit module for cve-2008-0506
git-svn-id: file:///home/svn/framework3/trunk@8562 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-02-19 07:31:12 +00:00 |
et
|
cf29ff333e
|
Added a path to prepend
git-svn-id: file:///home/svn/framework3/trunk@8514 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-02-16 05:24:31 +00:00 |
HD Moore
|
1857268af8
|
Uber-fast-get-me-a-php-shell mode :)
git-svn-id: file:///home/svn/framework3/trunk@8505 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-02-15 17:59:54 +00:00 |
Joshua Drake
|
4751d83cb8
|
some cleanups, added some CVE references
git-svn-id: file:///home/svn/framework3/trunk@8304 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-01-28 20:15:32 +00:00 |
Joshua Drake
|
310be42bfa
|
try not to repeatedly load static files - see #694
git-svn-id: file:///home/svn/framework3/trunk@8166 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-01-19 19:12:42 +00:00 |
HD Moore
|
d0969746a4
|
Mostly cosmetic changes from local tree
git-svn-id: file:///home/svn/framework3/trunk@7970 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-26 03:31:20 +00:00 |
Joshua Drake
|
5ef4545a1b
|
fd.read -> fd.read(fd.stat.size)
git-svn-id: file:///home/svn/framework3/trunk@7903 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-17 05:22:40 +00:00 |
James Lee
|
2570fcee15
|
get rid of some more ^Ms
git-svn-id: file:///home/svn/framework3/trunk@7880 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-15 18:47:29 +00:00 |
HD Moore
|
837c70715d
|
Reference updates from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@7854 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-14 20:09:46 +00:00 |
HD Moore
|
0efbe3baf9
|
Remove the debug print
git-svn-id: file:///home/svn/framework3/trunk@7852 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-14 18:56:19 +00:00 |
HD Moore
|
97757c37a0
|
Adds an exploit module for the zabbix agent command execution flaw (no cve/bid/osvdb)
git-svn-id: file:///home/svn/framework3/trunk@7851 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-14 18:24:24 +00:00 |
HD Moore
|
4fcdceccb7
|
No ruby access on the common target
git-svn-id: file:///home/svn/framework3/trunk@7776 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-09 15:13:35 +00:00 |
HD Moore
|
8a784339c4
|
Remove a debug print
git-svn-id: file:///home/svn/framework3/trunk@7774 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-09 14:00:21 +00:00 |
HD Moore
|
ba1b032207
|
Adds coverage for the QTSS metachar injection bug
git-svn-id: file:///home/svn/framework3/trunk@7772 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-09 13:23:59 +00:00 |
Joshua Drake
|
ff83f1cd2f
|
add ranking to every exploit module, pfew!
git-svn-id: file:///home/svn/framework3/trunk@7724 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-12-06 05:50:37 +00:00 |
HD Moore
|
61e233df91
|
Keywords on all modules, plugins, and scripts
git-svn-id: file:///home/svn/framework3/trunk@7550 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-17 00:05:19 +00:00 |
James Lee
|
9f134512c2
|
give up if we can't get the password hash. see #519
git-svn-id: file:///home/svn/framework3/trunk@7539 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-16 18:51:51 +00:00 |
James Lee
|
dd323e2a7b
|
don't try to run methods on an object we just confirmed was nil
git-svn-id: file:///home/svn/framework3/trunk@7538 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-16 18:48:34 +00:00 |
James Lee
|
94729103b4
|
added osvdb ref and keywords
git-svn-id: file:///home/svn/framework3/trunk@7532 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-16 16:18:51 +00:00 |
James Lee
|
7fb9c4a791
|
add coverage for cve-2009-1151
git-svn-id: file:///home/svn/framework3/trunk@7528 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-16 08:42:32 +00:00 |
James Lee
|
53640065da
|
license
git-svn-id: file:///home/svn/framework3/trunk@7522 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-15 19:53:03 +00:00 |
Mario Ceballos
|
bbfc195735
|
added patch from Steve Tornio.
git-svn-id: file:///home/svn/framework3/trunk@7514 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-14 13:26:27 +00:00 |
HD Moore
|
8b9238e33b
|
Cosmetic/reference cleanups.
git-svn-id: file:///home/svn/framework3/trunk@7506 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-14 04:31:00 +00:00 |
James Lee
|
d90b932383
|
add a bit more entropy
git-svn-id: file:///home/svn/framework3/trunk@7504 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-14 02:09:32 +00:00 |
James Lee
|
38c0a3bd1b
|
302 is not the same as 200...
git-svn-id: file:///home/svn/framework3/trunk@7503 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-14 02:03:16 +00:00 |
James Lee
|
d2451547d6
|
add exploit module for osCommerce file upload
git-svn-id: file:///home/svn/framework3/trunk@7502 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-11-14 01:56:21 +00:00 |
HD Moore
|
5eed9deb2d
|
Adds the joomla TinyMCE file upload exploit from spinbad.
git-svn-id: file:///home/svn/framework3/trunk@7283 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-10-26 20:00:39 +00:00 |
HD Moore
|
e3f68f2639
|
Another large number of warnings fixed by Yoann Guillot
git-svn-id: file:///home/svn/framework3/trunk@7248 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-10-25 17:18:23 +00:00 |
HD Moore
|
a0fbc2914f
|
Remove the milw0rm references, as the links are no longer valid.
git-svn-id: file:///home/svn/framework3/trunk@7237 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-10-24 18:13:07 +00:00 |
Mario Ceballos
|
2b85ceb4c1
|
added exploit modules base_qry_common.rb and mambo_cache_lite.rb
git-svn-id: file:///home/svn/framework3/trunk@7210 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-10-20 15:01:10 +00:00 |
HD Moore
|
26db223636
|
OSVDB reference update from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@7149 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-10-12 14:39:51 +00:00 |
James Lee
|
9ace8f33eb
|
OSVDB references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@7030 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-09-12 04:22:58 +00:00 |
James Lee
|
85a4f1b9db
|
add a simple check for the generic php exploits
git-svn-id: file:///home/svn/framework3/trunk@7025 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-09-10 05:24:03 +00:00 |
HD Moore
|
7fb18d6e11
|
Add coverage for the new nagios3 cmd execution bug
git-svn-id: file:///home/svn/framework3/trunk@6936 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-08-04 19:27:50 +00:00 |
HD Moore
|
876a80f601
|
Updated osvdb references from Steve Tornio, updated capture/eth_spoof modules
git-svn-id: file:///home/svn/framework3/trunk@6907 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-27 14:05:23 +00:00 |
kris
|
7262621d35
|
switch 'Version' Rev to Revision since msf doesn't handle it correctly
git-svn-id: file:///home/svn/framework3/trunk@6877 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-23 03:06:01 +00:00 |
HD Moore
|
e70ac6cc19
|
Added a new set of match flags for cmd injection exploits (RequiredCmds). This reduces the number of 'bad' payloads listed for explot modules. A good example is disabling the netcat -e payloads for old Solaris exploits
git-svn-id: file:///home/svn/framework3/trunk@6854 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-21 15:20:35 +00:00 |
HD Moore
|
f8c2a203fd
|
OSVDB references updates from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6812 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-07-16 16:02:24 +00:00 |
James Lee
|
bc037bbbac
|
make php findsock work again for php_eval and php_include
git-svn-id: file:///home/svn/framework3/trunk@6678 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-20 05:50:52 +00:00 |
HD Moore
|
a5f567e76e
|
Massive OSVDB reference update from Steve Tornio.
git-svn-id: file:///home/svn/framework3/trunk@6629 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-06-07 20:20:42 +00:00 |
HD Moore
|
92d242cc2f
|
osvdb references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6568 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-19 13:20:32 +00:00 |
James Lee
|
6c8a93035f
|
make the new random header stuff work with magic_quotes
git-svn-id: file:///home/svn/framework3/trunk@6559 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-17 00:35:56 +00:00 |
HD Moore
|
9d8581a17e
|
More osvdb references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6550 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-13 17:39:42 +00:00 |
HD Moore
|
0981295879
|
More osvdb references from Steve Tornio
git-svn-id: file:///home/svn/framework3/trunk@6547 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-05-12 19:56:54 +00:00 |
James Lee
|
b31abbc6f9
|
move the payload into a random X- header so it doesn't show up in access logs
git-svn-id: file:///home/svn/framework3/trunk@6493 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-19 15:47:14 +00:00 |
kris
|
37c2e301ed
|
replacing defunct framework URL in header comments in most modules and pcap_log
git-svn-id: file:///home/svn/framework3/trunk@6479 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-04-13 14:33:26 +00:00 |
HD Moore
|
eccfcdfced
|
Sets svn keywords on modules missing it, tweaks the emailer module
git-svn-id: file:///home/svn/framework3/trunk@6407 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-28 06:03:35 +00:00 |
Patrick Webster
|
46351557bc
|
Added dogfood_spell_exec exploit module from LSO.
git-svn-id: file:///home/svn/framework3/trunk@6282 4d416f70-5f16-0410-b530-b9f4589650da
|
2009-03-03 03:32:36 +00:00 |