infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
50,614 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

25774 Commits (708ae76cba41f09123c987d48e6e84fab7d023c3)

Author SHA1 Message Date
asoto-r7 a47115352a
Module to dump configuration of the Cisco RV320/RV325 2019-02-06 17:05:18 -06:00
William Vu 5e4139dcef Add notes on stability and side effects 2019-02-05 20:51:34 -06:00
William Vu 16a58ab3c3 Merge remote-tracking branch 'upstream/master' into feature/crockpot 2019-02-05 20:48:05 -06:00
Jacob Robles 15f624b745
Land #11304, Add CVE-2018-1000999 to MailCleaner module 2019-02-05 07:19:32 -06:00
Luis Rosa 39d0fff909 add support for read and write SDW and MDW operands 2019-02-04 15:56:16 +00:00
Brent Cook b13129f9fb
Land #11348, Add nil check to enum_patches 2019-02-04 05:25:42 -06:00
Brent Cook ac94557a15
Land #11347, add version check to Safari RCE exploit 2019-02-04 05:22:01 -06:00
h00die 45cb54d265 remove comment from jtr_oracle_fast 2019-02-03 14:31:58 -05:00
h00die fbd81dd6aa ipcamera password disclosures 2019-02-03 13:40:22 -05:00
h00die e93f215ac1 apply_pot delete files 2019-02-03 10:24:05 -05:00
h00die 748e1468b3 creds upgrade and apply_pot 2019-02-03 10:17:25 -05:00
Brendan Coles 6f31b1a110 Change default payload to reverse_bash 2019-02-03 06:18:31 +00:00
Brendan Coles 9c3368f325 Add Evince CBT File Command Injection module 2019-02-03 05:38:56 +00:00
Brendan Coles 28283809f9 Add nil check to enum_patches 2019-02-02 15:33:48 +00:00
Brendan Coles 787c4400e4 Add Solaris pfexec Upgrade Shell module 2019-02-01 22:58:21 +00:00
bwatters 239cce53ea
Land #11039, Add linux x64 ipv6 reverse shell 
Merge branch 'land-11039' into upstream-master
 2019-02-01 16:21:24 -06:00
William Vu 61b468ac7d Add URL reference to blog post 2019-02-01 14:49:33 -06:00
William Vu 7b88277c6f Prefer case statement over long if block 2019-02-01 14:40:09 -06:00
bwatters 2640ecb4c4
Land #11338, Add module to discover Ubiquiti devices 
Merge branch 'land-11338' into upstream-master
 2019-02-01 11:40:52 -06:00
Wei Chen ba69a0b26a
Land #11310, MSF API to zip instead of relying on system() 2019-02-01 11:32:20 -06:00
Jon Hart f0519a5af5
Minor syntax; add logging for unhandled fields 2019-01-31 18:41:27 -08:00
Jeffrey Martin 5a63e629e4
update payload sizes for mettle 0.5.4 2019-01-31 00:12:45 -06:00
h00die 0ac3004fe1 fix review comments 2019-01-30 20:27:19 -05:00
h00die 9f6b9d586b updating jtr formats in hashdumpers 2019-01-30 20:16:08 -05:00
Jon Hart 4681ed9669
Update docs, strip empty essid 2019-01-30 14:31:20 -08:00
Jon Hart 603d2a0c04
Add docs 2019-01-30 14:26:15 -08:00
Jon Hart 96d612fb40
WIP commit on module to disover Ubiquiti devices on 10001/UDP 2019-01-30 14:19:02 -08:00
h00die da27c3eeae centralize hash to jtr formatting 2019-01-30 16:24:05 -05:00
h00die e2c1d0d7fa Merge branch 'master' of https://github.com/rapid7/metasploit-framework into c2password 2019-01-29 16:37:39 -05:00
h00die febb049668 more info for c2s 2019-01-29 16:36:06 -05:00
h00die 95ae4996eb spelling and spacing 2019-01-29 16:24:35 -05:00
h00die 4c14815343 c2s dvr password disclosure 2019-01-29 16:18:30 -05:00
William Vu b7bc52d20b Fix HTTP/SMB mixin order to restore SSL option 
Mixin order matters. Mixins kinda suck.
 2019-01-29 11:09:34 -06:00
bwatters 6c9a5b3fea
Update Cache Sizes 2019-01-28 15:53:19 -06:00
h00die 9930edf704 jtr modernizations 2019-01-25 14:07:24 -05:00
William Vu c8bf8781f5 Strip e-mail 2019-01-24 13:49:22 -06:00
William Vu 156851009b Remove incorrect documentation 
The comment is a lie.
 2019-01-24 13:48:45 -06:00
William Vu 0e6fbb439f Prefer Msf::Util::EXE.to_zip over system() 2019-01-24 13:47:47 -06:00
William Vu f0aa002009
Land #10119, Linux post-exploitation metashell 2019-01-24 11:24:12 -06:00
William Vu 8cdcba81fe Fix SessionTypes 2019-01-24 11:22:19 -06:00
William Vu 006faa3d17 Fix prompt 2019-01-24 11:21:45 -06:00
Carter Brainerd 2d1cecd4d5
Fix request pattern matching 2019-01-23 13:39:52 -05:00
Tod Beardsley daa3076d42
Add CVE-2018-1000999 to MailCleaner module 
See PR #11148

This adds the new CVE assigned by DWF for this vulnerability.

Note that [CVE-2018-10933](https://www.cvedetails.com/cve/CVE-2018-10933/)
describes a vulnerability in libssh, but this one describes the issue as
it pertains to MailCleaner specifically.
 2019-01-23 09:27:12 -06:00
Carter Brainerd 47fd066a29
Msftidy 2019-01-22 21:06:11 -05:00
Carter Brainerd 1f56bccf31
Small improvements from review 2019-01-22 20:46:28 -05:00
Shelby Pace 2ae6142de7
Land #11243, Add ASan SUID Privesc 2019-01-22 15:50:53 -06:00
sinn3r fae1b52115
Land #11297, Fix a typo in auxiliary/dos/scada/allen_bradley_pccc 
typo fixed
 2019-01-22 11:41:29 -06:00
jdiog0 23e0389bf0 typo fixed 2019-01-22 13:33:24 +00:00
Tim W 5fc0c66109 add version to check to safari exploit 2019-01-22 16:10:51 +08:00
Brendan Coles 060d20694d Attribution 2019-01-20 09:18:43 +00:00
spinfoo 4ec5e7d23a msftidy cleanup 2019-01-19 18:16:26 +01:00
spinfoo 2bcdc550c6 Support to retrieve data from ListConfigFiles SAP webmethod 2019-01-19 17:36:47 +01:00
spinfoo 8dffa35f04 Support to retrieve data from ListConfigFiles webmethod 2019-01-19 14:45:34 +01:00
h00die f47060870a horde imp h3 imap_open 2019-01-18 19:43:45 -05:00
h00die 2585e4b708 horde imp h3 imap_open 2019-01-18 19:38:30 -05:00
William Vu f8af9a9e4d Merge remote-tracking branch 'upstream/master' into pr/10119 2019-01-18 10:43:34 -06:00
Carter Brainerd 1121ce1127
Change default filename to random 2019-01-17 20:12:53 -05:00
h00die 5d49f04948 not working horde imp imap_open 2019-01-17 19:55:42 -05:00
Clément Notin 31a7b13c19
ms17_010_psexec: fix RHOST in "authenticating..." message 2019-01-16 11:23:21 +01:00
Brent Cook 1947bae45b
Land #11230, add JuicyPotato local privilege escalation 2019-01-15 21:20:25 -06:00
William Vu 06de16a36f Merge remote-tracking branch 'upstream/master' into pr/10119 2019-01-15 18:33:48 -06:00
Luis Rosa ffe5db4010 new pcom client mode that allows to read and write 
several types of operands
 2019-01-16 00:16:38 +00:00
Wei Chen 27d6fffdad
Land #11125, Import/generate `ysoserial` Java serialization objects 2019-01-15 17:09:56 -06:00
h00die a73fe9433b
land #11169 blueman priv esc on linux 2019-01-15 10:32:46 -05:00
Jacob Robles 923a4ba098
Land #11263, uppercase KoreLogic in JTR modules 2019-01-15 08:50:11 -06:00
Jacob Robles 9616a9f79d
Land #11245, doc update for chrome_cookies 2019-01-15 07:27:35 -06:00
Jacob Robles 04363b7b7e
Doc update 
post:chrome_cookies
 2019-01-15 07:19:46 -06:00
h00die 93f66a1f22 uppercase 2019-01-15 08:04:11 -05:00
bcoles 8c636f27d5
Update check method to confirm vulnerability 2019-01-15 11:31:31 +11:00
Wei Chen 47f8738f74 Add Imran Rashid to CVE-2018-11770 credit 2019-01-14 15:28:08 -06:00
Wei Chen 52ff0a8b75 Update exploits/linux/http/spark_unauth_rce as CVE-2018-11770 2019-01-14 15:10:29 -06:00
Carter Brainerd 8cd26b74d7
Please msftidy gods 2019-01-13 19:22:51 -05:00
Carter Brainerd 171d46db9b
Add disclosure date, more references, and authors 2019-01-13 19:11:05 -05:00
Carter Brainerd 89e8ff9c80
Update office_excel_slk.rb 2019-01-13 18:08:51 -05:00
Carter Brainerd d88d1d0f1d
Create office_excel_slk.rb 2019-01-13 17:31:34 -05:00
Brendan Coles c6f4eda7f9 Add ASan SUID Executable Privilege Escalation module 2019-01-12 09:14:20 +00:00
phra e69d509bdf
chore: update description and ranking 2019-01-12 04:32:21 +01:00
phra 3a865a0c05
feat: spawn as NT AUTHORITY\SYSTEM 2019-01-12 04:03:26 +01:00
William Vu e9a8d5708a
Land #11234, @bcoles revisionism 2019-01-11 20:15:34 -06:00
Brendan Coles fe6956d7f7 Use mixins 2019-01-11 22:46:58 +00:00
Brendan Coles 20fd6b6134 Add check for writable and nosuid WritableDir 2019-01-11 22:41:14 +00:00
phra 149f895329
feat: add LOGFILE support for debug 2019-01-11 18:21:54 +01:00
phra dca99552e6
feat: pass payload length to the dll 2019-01-11 16:28:49 +01:00
phra 7653d64c4a
fix: improve exploit check 2019-01-11 15:38:57 +01:00
Brendan Coles 24f807490f revisionism 2019-01-10 19:19:14 +00:00
Brent Cook 9f8bac59f7
Land #11215, success 2019-01-10 12:57:46 -06:00
Brent Cook 86850e7062
Land #11217, fix syntax and logic errors in badpdf module 2019-01-10 12:52:08 -06:00
sinn3r 74330f87dc
Land #11223 - ueb priv esc suggestion 
ueb priv esc suggestion.
 2019-01-10 10:35:28 -06:00
phra dc2d3c5774
feat: add juicy potato post module, fixes #11229 2019-01-10 17:20:43 +01:00
Jacob Robles 2f939481e7
Land #11206, add coldfusion ckeditor file upload 2019-01-10 07:27:38 -06:00
Jacob Robles b81f59e7b1
Fix targets and syntax changes 2019-01-10 06:39:45 -06:00
h00die 799a79b715 ueb priv esc suggestion 2019-01-09 20:28:53 -05:00
Luis Rosa 4bfb90ce06 new PCOM module to send admin commands 2019-01-09 20:27:15 +00:00
William Vu 913c80c352
Land #11106, Allen-Bradley legacy protocol DoS 2019-01-09 12:12:02 -06:00
William Vu 0f156140fe Clean up module 2019-01-09 12:11:50 -06:00
Jacob Robles 307cc8c107
fix comment 2019-01-09 11:12:51 -06:00
Clément Notin cf1b4b43cb
auxiliary/fileformat/badpdf: fix syntax and logic error in options handling 2019-01-09 14:30:24 +01:00
Jacob Robles 0c984fa232
Fix messages /successfuly/successfully 2019-01-09 06:32:22 -06:00
Jacob Robles 16b8cf7059
Land #11148, Adding Module MailCleaner RCE 2019-01-08 14:10:31 -06:00
Jacob Robles a0acfa79d7
Target payloads 2019-01-08 13:27:26 -06:00