80a086d5f6
Add WordPress Photo Gallery upload module
2015-02-11 01:03:51 +00:00
d23c9b552f
Trade MS12-004 for MS13-090 against Windows XP BrowserAutoPwn
2015-02-10 18:58:56 -06:00
22811257db
Fix #4711 - Errno::EINVA (getpeername(2)) BrowserAutoPwn Fix
...
This patch fixes #4711 .
The problem here is that the browser sometimes will shutdown some of our
exploit's connections (in my testing, all Java), and that will cause Ruby
to call a rb_sys_fail with "getpeername(2)". The error goes all the
way to Rex::IO::StreamServer's monitor_listener method, which triggers a
"break" to quit monitoring. And then this causes another chain of reactions
that eventually forces BrowserAutoPwn to quit completely (while the
JavaScript on the browser is still running)
2015-02-10 18:28:02 -06:00
73435c6d1c
Land #4743 - Bump met bins, update Linux bins.
...
Includes a merge of Gemfile.lock
2015-02-11 08:21:23 +10:00
b8b5bc95db
Land #4500 , update dependencies
2015-02-10 14:15:43 -06:00
184b4e8a13
Merge branch 'master' into feature/MSP-11141/extract-cache-from-metasploit-model
...
MSP-11141
Conflicts:
Gemfile.lock
metasploit-framework-db.gemspec
2015-02-10 14:09:18 -06:00
5df13364b2
Update to latest metasploit dependencies
...
MSP-11141
2015-02-10 14:01:49 -06:00
b07ef333e9
Fix java_rmi_server include
2015-02-10 12:52:19 -06:00
7ab7add721
bump meterpreter_bins to 0.0.14, update Linux binaries.
...
Hopefully the last manual build before packaging the Linux bins into
meterpreter_bins as well.
This includes all of the fixes and improvements over the past month.
rapid7/meterpreter#116
rapid7/meterpreter#117
rapid7/meterpreter#121
rapid7/meterpreter#124
2015-02-10 12:43:47 -06:00
7f2add2ce3
Land #4742 , Play Store XFO + UXSS Android RCE
2015-02-10 12:24:40 -06:00
b8f614ef59
Fix namespaces in specs
2015-02-10 12:00:04 -06:00
8222dc9302
Reorganize specs
2015-02-10 11:57:09 -06:00
29c68ef1ec
End fixing namespaces
2015-02-10 11:55:14 -06:00
bea9e2fca6
Land #4741 , MDM and Cred gem bumps
2015-02-10 11:48:46 -06:00
1e8f98c285
Updated description, credit, and URL
2015-02-10 11:25:13 -06:00
1b89242a75
Add module for R7-2015-02
2015-02-10 11:03:46 -06:00
6e635211b3
Modify include
2015-02-10 10:59:56 -06:00
dba67bd1ee
Do more code reorganization
2015-02-10 10:58:57 -06:00
aa9e686965
Reorganize Java related mixin code
2015-02-10 10:52:44 -06:00
1f4fdb5d18
Update from master
2015-02-10 10:47:17 -06:00
d3c52f35ad
Merge branch 'wchen-r7-pr4690' into nessus-rest-api
...
Merge wchen PR and updated plugin files
1. Implement additional APIs
2. Raise NotImplementedError for the remaining four reporting APIs
2015-02-10 12:41:27 +05:00
e5fd9e70eb
clean plugin/nessus.rb implement additional APIs
2015-02-10 12:40:20 +05:00
5687028f09
Land #4671 , @earthquake's exploit for achat buffer overflow
2015-02-09 17:50:09 -06:00
6165d623ff
Change module filename
2015-02-09 17:39:55 -06:00
eb0741d7a7
Modify reference
2015-02-09 17:39:18 -06:00
0a42ac947a
Land #4737 , fix Socket Context usages
2015-02-09 17:34:03 -06:00
86f3bcad11
Do minor cleanup
2015-02-09 17:33:05 -06:00
6e8b2e4ae7
Land #4738 , msftidy falses, fixed
2015-02-09 17:32:42 -06:00
7ee5fd9b32
Fix lotus_domino to use get_cookies correctly.
2015-02-09 17:29:44 -06:00
c8a687db7f
Fix false positive in cookie check
2015-02-09 17:23:59 -06:00
4014f1929f
No random names, but store in .msf4/logs
2015-02-09 16:46:02 -06:00
ac6879cfe1
proper payload encoding from now on
2015-02-09 23:36:35 +01:00
4ed3ffa0ed
Fix false positive in snake case check
2015-02-09 16:30:19 -06:00
c7880ab4e1
hex strings related explanations
2015-02-09 23:21:38 +01:00
9a445e2027
Land #4707 , updates to finder syntax
...
Updates some Rails 3 style ActiveRecord calls to use the Rails 4 Arel
syntax, in preparation for our move to Rails 4.
Fixes #4707 , also see MSP-12018
2015-02-09 16:01:38 -06:00
13e8659c45
Bump version of metasploit-credential
...
Bumped version of metasploit-credential to pull in bumped version of
MDM, which fixes some old Rails-3 style ActiveRecord calls.
MSP-12127
2015-02-09 15:46:13 -06:00
9891026d30
sleep changed to Rex::sleep
2015-02-09 22:33:41 +01:00
4822aa5159
Land #4739 , @zeroSteiner's change to prepend_sleep powershell option check
2015-02-09 15:19:39 -06:00
e62f44cc1a
Fix false negative in comment check
...
Adds anchor to regex.
2015-02-09 14:58:02 -06:00
511f637b31
Call CollectGarbage
2015-02-09 14:44:31 -06:00
79abb72589
Add some randomness to the /tmp filename
2015-02-09 14:34:42 -06:00
2a3855c5af
Skip the psh prepend sleep time error when it is 0
2015-02-09 14:20:04 -05:00
2d129f9163
Clean up socket_logger, record the module name
2015-02-09 12:10:07 -06:00
81cad064ea
Land #4724 , @wchen-r7's AllowWin32SEH's change on alpha encoders
2015-02-09 11:01:00 -06:00
af405eeb7d
Land #4287 , @timwr's exploit form CVS-2014-3153
2015-02-09 10:33:14 -06:00
0e4f3b0e80
added built data/exploits/CVE-2014-3153.elf
2015-02-09 09:50:31 -06:00
592fa17587
Merge pull request #26 from jvazquez-r7/review_4724
...
Make safer Change AllowWin32SEH
2015-02-09 09:48:22 -06:00
831a1494ac
Keep default behavior for modules forcing Msf::Encoder::Type::AlphanumUpper
2015-02-08 18:29:25 -06:00
3e7e9ae99b
Keep default behavior for modules forcing Msf::Encoder::Type::AlphanumMixed
2015-02-08 18:22:11 -06:00
133ae4cd04
Land #4679 , Windows Post Gather File from raw NTFS.
2015-02-08 18:50:50 +00:00
rastating
sinn3r
OJ
Trevor Rosen
Luke Imhoff
jvazquez-r7
Brent Cook
Tod Beardsley
root
William Vu
Balazs Bucsay
Matt Buck
Spencer McIntyre
HD Moore
Meatballs