eeec3c115e
This is as far as I can take it for an exploit module
...
but it still does not work. Commiting for posterity.
2018-10-19 16:12:47 -05:00
abd425c863
Land #10819 , os_name population for ssh_login*
2018-10-19 15:53:38 -05:00
db7bd3d50c
Update style
2018-10-19 15:52:26 -05:00
2a1dec45ed
Land #10832 , TARGETURI for tomcat_utf8_traversal
2018-10-19 15:47:37 -05:00
e4c71265fb
Improve banner checking in libssh_auth_bypass
...
Now we do the right thing when libssh is patched.
2018-10-19 15:21:12 -05:00
3a02e9e80f
First release, messagebox payload for x64
2018-10-19 16:39:41 -03:00
65d26d3a1e
Use the DISPLAY environment variable when available
2018-10-19 14:35:35 -04:00
21397330f8
Refactor fortinet_backdoor copypasta
2018-10-19 00:07:18 -05:00
863ab3447f
Add libssh auth bypass module
2018-10-18 23:03:23 -05:00
3cee96d8ed
Land #10664 , add Windows SetImeInfoEx Win32k NULL Pointer Dereference
2018-10-18 14:42:14 -05:00
fac05db154
Update rescue statement
2018-10-18 14:30:20 -05:00
02c916b1b4
Update modules/auxiliary/admin/http/tomcat_utf8_traversal.rb
2018-10-19 04:16:26 +11:00
175e5e5adf
Added module TARGETURI support.
2018-10-19 03:55:45 +11:00
b3d45586db
feedback from code review
2018-10-18 12:30:46 +08:00
64e257649f
cleanup module
2018-10-18 11:45:59 +08:00
290d4428c1
create git mixin
2018-10-18 11:31:31 +08:00
063e477ff2
git submodule url exec (CVE-2018-17456)
2018-10-18 11:02:28 +08:00
d2c013001d
Update stuff
2018-10-17 17:17:05 -05:00
763506f28d
ssh_login now populates the os_name field
2018-10-16 22:02:44 -04:00
a14df8d86e
Move exploit/unix/misc/qnx_qconn_exec to exploit/qnx/qconn_exec
2018-10-16 16:21:28 +00:00
9e069c95f5
add auto targeting
2018-10-15 23:26:08 -07:00
6cdfe604d4
removed exception handling for reg_file_for_handle
2018-10-15 18:29:15 -07:00
a19046dedb
Land #10793 , improve windows_defender_js_hta
2018-10-15 17:42:21 -05:00
8e442cc980
Update documenation
2018-10-15 15:45:39 -05:00
b0313dd25c
Update getgodm_http_response_bof for proper auto targets
2018-10-15 15:25:55 -05:00
ff9f3ed9ff
Add support for v5
2018-10-15 15:14:12 -05:00
5433d2cca9
Sync up upstream master
2018-10-15 14:19:07 -05:00
f78ccbf995
Indentation
2018-10-15 08:32:58 +05:30
8877582086
Land #10668 rsh stack clash solaris priv esc
2018-10-14 10:34:48 -04:00
a942654515
rescue-from-method addressed
2018-10-12 14:47:05 -05:00
26631bcfbd
addressed suggestions
2018-10-12 14:35:42 -05:00
5b14d94957
Land #10671 , struts2_namespace_ognl updates
...
There are still some outstanding concerns, but I want to unblock this.
2018-10-12 11:08:33 -05:00
2989507b85
Copy check for data_header to avoid crash
...
Variable was used but out of scope.
2018-10-12 11:06:26 -05:00
96eeaf7da3
Made few changes
...
Thank you bcoles
2018-10-12 11:47:53 +05:30
a67122aaf7
updated doc, added x86_64 binary
2018-10-11 12:37:51 -05:00
521b50af55
added separate binaries, extended for x86
2018-10-11 10:43:35 -05:00
f8ad47d475
improve windows_defender_js_hta :
...
-add platform detection for jsc
-prevent cmd prompt when launching jsc
2018-10-11 17:38:47 +02:00
1da99c8bd1
Fixed syntax errors
...
Corrected redundant returns and indentation errors
2018-10-11 10:01:47 -04:00
86f7c270c6
Fixed stylistic and syntax errors
2018-10-11 09:19:35 -04:00
ed2ba1cb00
add support for ProcessName option, defaults to spoolsv.exe
2018-10-11 17:23:59 +08:00
ce848712dd
add support for ProcessName option, defaults to spoolsv.exe
2018-10-11 10:56:07 +08:00
c0aff8f134
Description update / typo fix
...
fix typo in module description (added one word)
2018-10-10 17:56:17 -04:00
04cc40136f
changed formatting, deleted post, renamed files
2018-10-10 14:41:14 -05:00
76325bd21e
fixed indentation
2018-10-10 14:18:44 -05:00
fb689da24c
Land #10335 , Add vlc_mkv exploit module
2018-10-10 13:47:08 -05:00
0f3917f540
Fixed syntax errors
2018-10-10 13:26:49 -04:00
50a7ee5e6a
Minor modifications
2018-10-10 12:22:47 -05:00
ee2c6274c7
Updating description
2018-10-10 22:26:07 +05:30
4a821101ce
Fixing cmd_exec_get_pid
2018-10-10 21:59:46 +05:30
796579e265
Use fail_with
2018-10-10 11:24:16 -05:00
4beb434054
Default Payloads
...
exploit:vlc_mkv default target payloads
2018-10-10 11:23:17 -05:00
c1c07d5c8f
Updating
...
Suggestion given by Shelby
2018-10-10 21:30:12 +05:30
8826932f72
Fix syntax errors
2018-10-10 14:39:07 +00:00
15cfeb37ea
CamelCase
2018-10-10 14:35:34 +00:00
7a048afd14
Make WritableDir an advanced option
2018-10-10 14:12:29 +00:00
dbcee56995
Fixing spaces at EOL
2018-10-10 15:10:58 +05:30
619a07fc3c
Update
2018-10-10 14:21:08 +05:30
6cdfbdd281
Land #10554 , Rescue REX runtime errors in x86 encoders
2018-10-09 22:52:48 -05:00
1cb8418b2d
Filename options
...
exploit:vlc_mkv overwrite fileformat filename method
to supply options
2018-10-09 21:15:10 -05:00
94f260f289
exploit rand_text
...
exploit:vlc_mkv use rand_text functions defined in exploit.rb
2018-10-09 21:15:05 -05:00
e07da5c518
EDB Ref Fix
...
exploit:vlc_mkv
2018-10-09 20:57:44 -05:00
26482ee6d6
Fixed EOL spaces
2018-10-09 18:30:41 -04:00
9c9cd33c34
Fixed syntax errors and inconsistencies
2018-10-09 17:45:02 -04:00
af594f6744
Merge in master
2018-10-09 12:56:31 -05:00
e2f9fb5d8e
Updating Indentation
2018-10-09 12:52:34 +05:30
9bbd90f978
Style fixes and add full disc URL
2018-10-09 13:38:13 +07:00
9ec989a1bd
Address @bcoles' review in #10672
2018-10-08 14:15:21 -05:00
6e10718ed5
Format ZDI ref correctly.
2018-10-08 13:48:52 -05:00
f7d2815a01
Add a ZDI reference
2018-10-08 13:23:50 -05:00
bed497c6ae
Land #10672 , Add COMMGR Buffer Overflow module
2018-10-08 10:04:52 -05:00
56a39545c6
Updating
2018-10-08 16:40:19 +05:30
097e9b8bfe
Indentation
2018-10-08 14:48:05 +05:30
b08c5ad597
Adding DefaultOptions
2018-10-08 13:24:48 +05:30
22d0325d33
Add placeholder for full disclosure URL
2018-10-08 12:33:36 +07:00
743a72dff6
Remove header from my own repo
2018-10-08 12:17:11 +07:00
f0443bbb57
Create cisco prime exploit
2018-10-08 12:16:24 +07:00
5951f5724e
Pass msftidy
2018-10-06 16:04:07 -05:00
da525db6e9
Updating
2018-10-07 01:54:20 +05:30
7c1fbf2c5a
Update description
2018-10-06 09:22:35 -05:00
a25a7086b2
Rename file
2018-10-06 09:20:15 -05:00
c7efd57144
Sync up with master
2018-10-06 08:27:01 -05:00
3d507250b0
Land #9745 , Update QNX iwatchd to use newer APIs
2018-10-06 05:06:42 -04:00
c9ebe5ae23
Land #9745 , Add ifwatchd QNX privilege escalation exploit module
2018-10-06 05:03:50 -04:00
89b6aafd85
Use register_file_for_cleanup
2018-10-06 04:37:04 +00:00
e2f97c75a0
Land #10616 , update Unitrends UEB module to support vulnerabilities in version 10
2018-10-05 16:20:38 -05:00
a51243ce91
Land #10745 , Update lastore_daemon_dbus_priv_esc tested versions
2018-10-05 11:35:31 -04:00
7bc98e0ea8
Fix formatting and convert a missed AKA reference
2018-10-05 03:22:08 -05:00
d9cb052189
Fix improper use of the Ruby shovel operator (<<)
...
junk would be modified and returned, and we just want to return the
concatenated string. Practically doesn't matter, but it's incorrect.
This was my first public module. I've been wanting to fix this since.
I'm noticing it again now as I look for how I used Ret in a target.
2018-10-05 02:18:06 -05:00
28fb27187a
Land #10418 , Add DCOM/RPC NTLM Reflection (MS16-075) Via Reflective DLL
...
Merge branch 'land-10418' into upstream-master
2018-10-04 16:54:53 -05:00
9a45c66db4
Fixed check to you know, check.
2018-10-04 16:38:35 -05:00
fe7ce02dfd
Update tested versions
2018-10-04 21:13:21 +00:00
9f30512532
Land #10707 , module traits to augment module rank
2018-10-04 13:26:14 -05:00
071aa04111
Land #10738 , Add Zahir Enterprise 6 build 10b BOF
2018-10-04 11:00:12 -05:00
fb60558777
Land #10712 , Make exploit/linux/http/axis_srv_parhand_rce more stable
2018-10-04 10:10:28 -05:00
060c68d2e0
Aligment, minor modifications
2018-10-04 10:10:09 -05:00
8b955f8ec5
Land #10704 , Navigate CMS Unauthenticated RCE
2018-10-04 06:44:21 -05:00
9f8f0b8885
Fixing carriage/spaces return at EOL
2018-10-04 15:41:46 +05:30
783789d098
Updating
2018-10-04 15:01:06 +05:30
ff0ee51da1
Land #10686 , ARGS, TIMEOUT, and output to upload_exec module
...
Merge remote-tracking branch 'upstream/pr/10686' into upstream-master
2018-10-04 04:28:02 -05:00
144c76ecd4
Latest fix based on @jrobles-r7 recommendations
...
Fixing:
- MetasploitModule class changed
- Remove the word 'exploit' from name
- Remove StackAdjustment
- Remove Privileged option
- Remove make_nops(12)
- Remove extra buffer at the end of exploit
2018-10-04 16:18:02 +07:00
991ac3c671
Fixing for msftidy
...
Fixing some format because still throw errors
2018-10-03 18:55:29 +07:00
cb5d68b641
Fixing based on msftidy.rb
...
Makes msftidy happy
2018-10-03 17:13:24 +07:00
e0a664c0cd
Improve prints, use FileDropper, and bump TIMEOUT
2018-10-02 21:53:18 -05:00
428d368444
shut up, rubocop
2018-10-02 14:40:55 -05:00
64d53cd882
code cleanup
2018-10-02 14:06:25 -05:00
4927f96f61
Fixed small typo
2018-10-02 15:57:57 +02:00
97729727d8
Minor modifications
2018-10-02 06:57:04 -05:00
faae2ac2f9
Land #10725 , move post/android/gather/subinfo
2018-10-02 05:14:41 -05:00
2c0d4de70b
Land #10732 , add api key for android wlan_geolocate
2018-10-02 05:09:10 -05:00
6dd36bd8da
Land #10427 , add OSX VNC password gather module
2018-10-02 14:47:51 +08:00
b5cf682169
cleanup post/osx/gather/vnc_password_osx and add loot/credentials
2018-10-02 14:22:09 +08:00
b993d74f6c
minor tweak
2018-10-02 11:41:58 +08:00
5cfc19b804
fix post/multi/gather/wlan_geolocate on Android
2018-10-02 11:35:47 +08:00
6f5a8f8f42
Fix outdated metadata
2018-10-01 18:59:09 +01:00
a0052c7f47
Add evasion module using HTA + JavaScript + C#
2018-10-01 12:57:05 -05:00
37dc0ce64d
fix post/android/gather/subinfo.rb path
2018-10-01 16:54:46 +08:00
ff560ee990
Add test for Zahir 0day exploit
...
Add test for Zahir 0day exploit, need to test more e.g. VirtualBox or Physical machines.
2018-09-29 18:59:14 +07:00
ee06ec2fda
Background a subshell to continue execution
...
This provides a more stable injection. I should have tested this sooner.
2018-09-27 23:51:42 -05:00
0dab5b622f
Change default target to cmd/unix
2018-09-27 23:39:32 -05:00
e999b4d81c
Lower rank to AverageRanking
2018-09-27 23:28:13 -05:00
7a2d0acee6
Add basic check method and move rand_srv
...
The .srv can be random each request.
2018-09-27 23:28:13 -05:00
d29d936d6f
Bump WfsDelay to 10 for this slow-ass device
2018-09-27 23:28:13 -05:00
e4256f4595
Make ENABLE_STATIC an OptBool, as I should have done in the first place
2018-09-27 17:54:22 -05:00
086e2b311b
Update constants
2018-09-27 12:31:04 -05:00
342cfe4199
Refactor again
2018-09-27 12:38:05 +02:00
82b1f40925
Add cleanup code
2018-09-27 11:17:53 +02:00
2b86297138
Refactor
2018-09-27 11:16:54 +02:00
f55483d17d
Fix incorrect session_id extraction
2018-09-27 11:07:43 +02:00
9064fac1ff
Fix code based on Will's feedback
2018-09-26 21:13:37 -05:00
583874d370
Update use of reliability/side-effects/stability metadata
2018-09-26 18:54:08 -05:00
3bda794f00
Update upload_exec with chmod
2018-09-26 18:46:43 -05:00
4adca52103
create chmod helper function
2018-09-26 18:46:42 -05:00
81d020f810
Add a couple more Unix platforms
...
This is so we don't trigger the session compatibility warning. These
platforms have been worked on most recently.
2018-09-26 18:46:42 -05:00
a119465495
Tell the user when there's blank output
2018-09-26 18:46:42 -05:00
6dd6e8abcb
Change vprint to print because we test output
...
Fewer surprises this way when people don't set VERBOSE.
2018-09-26 18:46:42 -05:00
42fab6266d
Prefer vprint_line for better formatting
2018-09-26 18:46:42 -05:00
40f19efe2c
Don't use cmd.exe /c start so we can fetch output
2018-09-26 18:46:42 -05:00
dc1fddd31e
Move chmod so Windows doesn't do it
2018-09-26 18:46:42 -05:00
d5f5ef103f
Refactor everything and add command output
2018-09-26 18:46:42 -05:00
410abdca80
Tweak TIMEOUT to match cmd_exec's default
2018-09-26 18:46:42 -05:00
1df6c43b12
Add ARGS and TIMEOUT options to upload_exec
...
Credit to @bcoles for the initial patch.
2018-09-26 18:46:42 -05:00
04ff0931d7
Add metadata place holders for reliability/side-effects/stability
2018-09-26 17:42:54 -05:00
f882c3aec2
Add Navigate CMS Unauthenticated Remote Code Execution
2018-09-26 21:39:15 +02:00
f08cb18afd
Land #10594 , Fix hashdump and user enumeration on new macOS versions
2018-09-24 22:18:24 -05:00
3e61a98f25
use non-system users for hashdump
2018-09-24 22:17:58 -05:00
02ef565730
Update evasion_module_type branch
2018-09-24 08:20:32 -05:00
738665e56f
Add documentation for #10652
2018-09-24 17:11:24 +08:00
b486708b02
Land #10663 extremeparr solaris LPE
2018-09-23 13:53:18 -04:00
db15340306
Fixing
2018-09-22 15:30:51 +05:30
25ed5dc3a6
Moving to exploits/windows/local
2018-09-22 15:22:30 +05:30
6967f461f1
Fixes
2018-09-22 10:04:59 +05:30
56b01dcf00
Land #10534 , Add FrontPage Credential Dump Module
...
This module downloads and parses the '_vti_pvt/service.pwd',
'_vti_pvt/administrators.pwd', and '_vti_pvt/authors.pwd' files
used by FrontPage to find credentials.
2018-09-22 04:13:24 +00:00
7687e6e7b7
Update tested versions
2018-09-22 03:57:03 +00:00
849547793b
Land #10643 , CVE-2018-8440 ALPC Scheduler
...
Merge branch 'land-10643' into upstream-master
2018-09-21 15:38:45 -05:00
4116e8e205
Fixing
2018-09-22 01:00:44 +05:30
47bf780b88
specify meterpreter, update documentation
...
Warning is after spell...
2018-09-21 12:31:56 -05:00
132008cd0e
fixes
2018-09-21 17:31:26 +00:00
17c7d828c1
fixes
2018-09-21 17:16:04 +00:00
02b2559953
Update documentation to match new output.
2018-09-21 12:50:13 -04:00
0746ab5847
Create credential table.
2018-09-21 12:44:10 -04:00
a603c04da5
Create credential table.
2018-09-21 12:42:32 -04:00
c9de43c8d0
Code cleanup, feedback from bcoles
2018-09-21 10:11:26 -05:00
5842f0c012
Msftidy
2018-09-21 10:15:31 -04:00
8a0f5c12f2
Move setup info, remove accessors
2018-09-21 07:47:22 -05:00
60fcca63b7
Spaces at EOL
2018-09-21 17:04:31 +05:30
9aa746abee
Adding rank to the module
2018-09-21 16:15:43 +05:30
1b5186b112
Midified
2018-09-21 15:53:26 +05:30
d6bd0bea02
Updating unmarshal.rb
...
I have moved unmarshal.rb from '/post/windows/escalate' to '/exploit/windows/local'
2018-09-21 15:38:55 +05:30
02f4fc1876
Prefer to_s.empty?
...
Oh, hell, do it here, too.
2018-09-20 21:26:41 -05:00
c875f66154
Prefer to_s over || ''
...
Oops, I wasn't thinking clearly. to_s is cleaner.
2018-09-20 21:26:41 -05:00
a7f53b9361
Land #10628 , Add Solaris srsexec Arbitrary File Reader module
2018-09-21 01:56:43 +00:00
ee0776b095
print when not verbose
2018-09-20 20:54:41 -04:00
9da87a600f
Add LEAK_COUNT option to Heartbleed
...
I should have done this in 2014, but I'm a slacker.
2018-09-20 19:49:07 -05:00
e32abe9d45
Update Payload cached sizes
2018-09-20 17:26:15 -05:00
185931ca91
Land #10625 , repeat command to repeat commands
2018-09-20 15:24:03 -05:00
4fea65170c
Updating
2018-09-20 22:50:31 +05:30
428e1594d5
Updating
2018-09-20 22:31:10 +05:30
981fb38d52
Remove additional unused code
2018-09-20 07:04:41 -05:00
ee604e1d23
Remove unused code
2018-09-20 07:01:58 -05:00
6e51eb6c53
Rename Pimcore and Dolibarr SQLi modules
2018-09-19 22:15:14 -05:00
f99df75719
Remove uploading payload dll to disk
2018-09-19 21:24:22 -05:00
c76f095cd0
Inject Payload to Memory First
2018-09-19 21:13:49 -05:00
c5f6d4b8a5
Land #10670 , Pimcore SQLi module
2018-09-19 20:50:21 -05:00
5477220106
Update documentation
2018-09-19 20:48:42 -05:00
53f78cb7c3
Land #10673 , dolibarr_list_creds{,_sqli} rename
2018-09-19 18:55:05 -05:00
dd942ab23c
Land #10652 , iOS Safari blur denial of service
2018-09-19 15:12:22 -05:00
7698b7d7db
changed location of dolibarr module/documentation
2018-09-19 11:17:27 -05:00
42ccc37bca
Added description to module
2018-09-19 10:22:51 -05:00
8a20e0e702
Specific target, add process option
2018-09-19 08:49:54 -05:00
b6ca8cac7f
renamed/relocated files, changed uri
2018-09-19 08:11:45 -05:00
22c57d1bf0
chmod 644
2018-09-19 18:19:12 +08:00
36fa8f2ffc
Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow.
2018-09-19 15:28:46 +08:00
827219aff3
Revert "Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow"
...
This reverts commit d06587caef
2018-09-19 15:22:12 +08:00
d06587caef
Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow
2018-09-19 15:09:40 +08:00
5b6938e942
Revert "Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Buffer Overflow"
...
This reverts commit 1a9aa8ac3b
2018-09-19 13:20:00 +08:00
1d091408f7
Make msftidy happy
2018-09-18 20:00:08 -05:00
6a63feced4
Merge remote-tracking branch 'upstream/master' into pr/10418
2018-09-18 19:54:44 -05:00
c68f900330
Update module
2018-09-18 18:28:23 -05:00
0c842b852b
changed available? expression
2018-09-18 15:47:25 -05:00
fd8ad6f4d8
struts2_namespace_ognl: Added verbose messages for errors with Tomcat >= 7.0.88
2018-09-18 15:26:28 -05:00
e9faf305b2
randomize number, use vars_get
2018-09-18 15:03:32 -05:00
4933f47ac5
struts2_namespace_ognl: Remove debugging code
2018-09-18 14:46:41 -05:00
a9e6257891
struts2_namespace_ognl multishot OGNL payloads for Windows Meterpreter support
2018-09-18 14:27:47 -05:00
d83e108e74
added check for valid apikey, changed available?
2018-09-18 14:19:16 -05:00
2cf1fbcb2c
storing user credentials
2018-09-18 13:27:46 -05:00
4fb223b293
Add Solaris RSH Stack Clash Privilege Escalation module
2018-09-18 17:38:59 +00:00
ad59a52298
Updating
2018-09-18 22:56:45 +05:30
8e0d104925
Spaces at EOL
2018-09-18 19:39:52 +05:30
1b220514bb
Updating
2018-09-18 19:23:39 +05:30
07b79936b9
Fixing spaces at EOL
2018-09-18 15:28:00 +05:30
882d182fdb
WIP: Updating
...
Thank you bcoles
2018-09-18 15:13:12 +05:30
1a9aa8ac3b
Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Buffer Overflow
2018-09-18 16:09:05 +08:00
0108e41b04
Move AKA reference to Notes hash
2018-09-18 08:00:44 +00:00
2f5bd4b714
Add Solaris 'EXTREMEPARR' dtappgather Privilege Escalation module
2018-09-18 07:23:10 +00:00
26ebd17954
WIP: CVE-2018-8120
2018-09-18 12:37:57 +05:30
549440595f
Land #10627 , Add SMB2 support to smb_enumshares
2018-09-17 22:34:42 -05:00
6126a627cc
Land #10570 , AKA Metadata Refactor
2018-09-17 22:29:20 -05:00
a814899dc2
Land #10660 , deregister RHOSTS as well as RHOST
2018-09-17 22:26:37 -05:00
1aabf8d83f
deregister RHOSTS as well
2018-09-17 22:26:16 -05:00
83af598e6a
Updated VS solution and module
2018-09-17 17:38:19 -05:00
5089c19453
Land #10620 Solaris 10 LPE for libnspr
2018-09-17 18:10:16 -04:00
011c25ed59
Merge changes from master (ghostscript)
2018-09-17 13:57:28 -05:00
fef728dccd
getting user credentials
2018-09-17 12:39:58 -05:00
30d8a38897
deregister_options RHOSTS
2018-09-17 16:58:57 +00:00
91edebb2ef
Add references, clean up code.
2018-09-17 10:30:54 -04:00
83039781de
Background payload execution
2018-09-17 08:42:04 +00:00
c8906f8772
Add check for Solaris system patch revision
2018-09-17 08:32:52 +00:00
ff5de7b81d
Merge branch 'master' of https://github.com/rapid7/metasploit-framework into srsexec
2018-09-16 20:11:30 -04:00
a9b9e7420b
update description
2018-09-16 19:51:15 +08:00
1d2519978d
improve div tags
2018-09-16 18:57:09 +08:00
2eb97ea07b
add ios blur dos module
2018-09-16 13:44:43 +08:00
4c036e70c1
Fix http://seclists.org links to https://
...
I have no idea how this happened in my own code. I was seeing https://.
2018-09-15 18:54:45 -05:00
1f4a1a388e
Update gcc path
2018-09-15 18:16:03 +00:00
44304d33b9
fix travis issues
2018-09-15 07:59:53 -04:00
af7d76b52d
changes from first review
2018-09-14 20:10:59 -04:00
f38e6f45ce
Redo dllinjection
2018-09-14 17:47:53 -05:00
d2f587894b
Initial metadata setup
2018-09-14 09:37:23 -05:00
900ea620c7
msftidy
2018-09-13 21:28:49 -04:00
6cef61ddbc
finish srsexec add docs
2018-09-13 21:20:09 -04:00
4cf344dd83
WIP: Initial CVE-2018-8440 / ALPC-TaskSched-LPE
2018-09-13 18:00:20 -05:00
2f53e370c9
srsexec working properly
2018-09-13 16:37:25 -04:00
e3178faa9a
Add metadata for teradata_odbc_sql.py
2018-09-13 13:09:01 -05:00
4a2f2107e5
move gather to escalate
2018-09-13 14:07:50 -04:00
4bb16f96a7
debugging srsexec
2018-09-13 14:07:50 -04:00
1af1895ac8
first attempt at srsexec
2018-09-13 14:07:50 -04:00
04cc7843a4
Typo fixes
2018-09-13 11:19:13 -05:00
2fbbf88ea9
Land #10560 , ms17_010_eternalblue: use SMBDomain value when provided
...
instead of ignoring it
Merge branch 'land-10560' into upstream-master
2018-09-13 10:08:54 -05:00
a8c459db18
Update description with correct patched release
2018-09-13 08:22:13 +00:00
5b81ebd81b
Land #10589 , multidrop support for word xml docs
2018-09-12 11:00:11 -05:00
0db1c34c40
Add check for Solaris system patches
2018-09-12 07:36:54 +00:00
bwatters-r7
William Vu
pasta
Spencer McIntyre
Wei Chen
Brendan Coles
Patrick Webster
Tim W
h00die
Shelby Pace
Dhiraj Mishra
amaloteaux
Alex Gonzalez
l9c
Patrick DeSantis
Jacob Robles
Jeffrey Martin
Pedro Ribeiro
Tod Beardsley
Brent Cook
Thomas Gregory
Fabio Poloni
Rob
space-r7
asoto-r7
Pyriphlegethon
Shaksham Jaiswal
root
AverageSecurityGuy
7echSec
Adam Cammack
Hubert Lin
Erin Bleiweiss