74cb9c38b2
Change source for host address value in output
2018-04-16 14:09:19 -04:00
daf67999d6
Raise NotImplementedError in NoteDataService stubs
2018-04-13 12:07:35 -04:00
37479d8fd4
Modify notes search to handle serialized data
...
Initial Goliath notes search implementation attempted to use Arel and
decode base64 serialized data column, however, this was not without
issue. Updated implementation retrieves all records that match
conditions, thus data has been deserialized and then filters using
specified search term.
2018-04-12 17:37:16 -04:00
4e49b99783
Add cmd notes option to sort by column number
2018-04-12 15:56:42 -04:00
5b2bbe7432
Update test for removed make_sortable method
2018-04-12 15:23:35 -04:00
f60bbdd831
Remove cmd notes make_sortable helper method
2018-04-12 10:51:03 -04:00
518d672ad5
Update cmd_notes help message test
2018-04-11 18:09:48 -04:00
087ae447c5
Remove cmd notes sort operation
2018-04-11 17:46:13 -04:00
cb2366d2eb
Fix regex search for serialized data column
2018-03-30 19:25:38 -04:00
4c536a1819
Add optional parameter to skip columns
2018-03-30 19:23:41 -04:00
f10924a5c0
Update cmd note operations, validation and output
2018-03-29 23:15:10 -04:00
2b7c3872d4
Add proxy method for find_or_create_note
2018-03-29 18:43:34 -04:00
0b5d3d31f9
WIP remote note read, update, delete
2018-03-27 16:36:56 -04:00
991f4e35ea
Remove added regex options from search_term
2018-03-26 14:07:21 -04:00
b39e935c5b
Land #9656 , add initial Komand plugin stub for evaluation
2018-03-25 07:47:06 -05:00
4194b6d991
Land #9586 , fix #9112 , improve android screenshot error message on failure
2018-03-25 07:36:15 -05:00
1610db482a
minor style nits
2018-03-25 07:34:45 -05:00
95424b781b
update android payloads
2018-03-25 07:32:04 -05:00
7c5c5513eb
Merge remote-tracking branch 'upstream/master' into land-9586-
2018-03-25 07:29:55 -05:00
f662049b27
clarify screenshot on android scenario
2018-03-25 07:29:39 -05:00
80c4d59560
Land #9702 exploit for clipbucket
2018-03-24 19:59:17 -04:00
0028e2c5ba
documentation update
2018-03-24 19:25:59 -04:00
eb1fc949d1
Land #9747 , make notes -o status similar to hosts
2018-03-23 17:54:33 -04:00
d0ef5617fa
Merge master and resolve conflict
2018-03-23 14:25:21 -07:00
778906d836
Land #9717 , add new remote data service
2018-03-23 13:55:12 -05:00
6b3a4a56dc
Merge branch 'rapid7/master' into goliath
2018-03-23 11:26:31 -05:00
eb47962050
Land #19 , externalize db_export command
2018-03-23 10:58:21 -04:00
230c0a295f
Delete playsms_uploadcsv_exec.rb
2018-03-23 12:29:07 +05:30
b18912447f
playsms_uploadcsv_exec.rb
...
import.php (aka the Phonebook import feature) in PlaySMS 1.4 allows remote code execution via vectors involving the User-Agent HTTP header
2018-03-23 12:24:04 +05:30
ed5b22a541
Address more code review comments
2018-03-22 21:47:59 -05:00
6c5a7a663a
Merge branch 'goliath' into MS-2879_db_export
2018-03-22 21:22:23 -05:00
a1287a0776
Remove blank before services output
2018-03-22 18:26:50 -07:00
2ce8423883
Make vulns and notes with -o similar to services and hosts
...
Now all of them will simply save the requested information to an output
file if specified and will let you know where the file is when done.
Previously, notes and vulns would also print out all of the notes and
vulns, which just felt weird and inconsistent. So, I fixed it.
2018-03-22 18:18:12 -07:00
b9fc786d24
Land #9744 , Add synchronization around public module metadata cache methods
2018-03-22 17:24:39 -05:00
f5b1d27345
Merge pull request #20 from clee-r7/MS-2910-remote-vuln-read-update-delete
...
MS-2910: Remote Vuln Read Update Delete
2018-03-22 15:41:07 -05:00
880f8eee9d
Weekly dependency update
2018-03-22 10:07:18 -07:00
93d4f5cd0b
Last few review comments
2018-03-21 17:50:11 -05:00
eee24366c9
Address code review comments and bug
2018-03-21 17:42:54 -05:00
f6fddb3113
Fix indent
2018-03-21 17:16:44 -05:00
8d660084fc
Omit parentheses for no argument get_db calls
2018-03-21 18:03:27 -04:00
975948439d
Make vulns cmd option string literals consistent
2018-03-21 16:35:06 -04:00
09bea3ec39
Remove vulns cmd help short-circuit
2018-03-21 16:34:11 -04:00
bb8fd45cb2
Land #9739 , Add Python logging module support
2018-03-21 14:48:49 -05:00
68083921c2
Land #9737 , Add batch_size to external batch scanners
2018-03-21 14:27:37 -05:00
70c9a434e6
Add synchronization around public module metadata cache methods
2018-03-21 14:23:34 -05:00
3aa37eb266
Add a log handler for external python modules
2018-03-21 10:14:49 -04:00
a506efe0b6
playsms_uploadcsv_exec.rb
...
PlaySMS 1.4 Remote Code Execution using Phonebook import Function in import.php
2018-03-21 14:13:52 +05:30
553789557b
Merge branch 'goliath' into MS-2910-remote-vuln-read-update-delete
2018-03-21 01:45:58 -04:00
86266dc636
Add batch_size option for external multi_scanner
2018-03-20 14:47:46 -05:00
ced6707ba6
Fix cmd vulns and DBManager Session spec
2018-03-20 15:25:09 -04:00
Matthew Kienow
Brent Cook
h00die
Jon Hart
James Barnett
Touhid M Shaikh
Jeffrey Martin
Christopher Lee
Metasploit
Adam Cammack
Spencer McIntyre
Jacob Robles