infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
50,261 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

2369 Commits (9930edf7043528452dbb4abd4341b7c254ae6dc7)

Author SHA1 Message Date
Tim W bee3c3d4d3 add documentation 2018-11-20 16:53:34 +08:00
Tim W 0649ad9876 add documentation 2018-11-20 16:09:18 +08:00
h00die aca3f44c9b fix markdown formatting 2018-11-18 21:38:25 -05:00
h00die 4b09584047 php_imap_open_rce 2018-11-18 21:28:19 -05:00
h00die 7ecdaa09c5 start printjob docs and bug fixes 2018-11-17 21:17:12 -05:00
Carsten Maartmann-Moe eab26a04c3 Added documentation 2018-11-17 09:55:41 +01:00
Imran E. Dawoodjee 0edd3a9138
Fixed numbering error in documentation. 2018-11-16 21:34:05 +08:00
Imran E. Dawoodjee 08b3efa046
Enhanced module and added documentation. 2018-11-16 21:18:45 +08:00
h00die 189f29e534
Land #10572 eaton ssh private key scanner 2018-11-15 17:16:36 -05:00
h00die 17b37b2ad9 md syntax 2018-11-15 17:12:47 -05:00
h00die 8b4cf2c3e2 Merge branch 'master' of https://github.com/rapid7/metasploit-framework into capture_docs2 2018-11-15 17:02:50 -05:00
h00die a82d71356b more capture docs 2018-11-15 17:02:44 -05:00
Jacob Robles 795aa3c99c
Land #10828, git submodule url exec CVE-2018-17456 2018-11-14 12:39:13 -06:00
Julien Legras 5f9570cbcf Added WordPress Duplicator <= 1.2.40 and documentation 2018-11-14 16:39:42 +01:00
Aaron Ringo 4fc047db87 Added advanced option to check console lock on linux systems, default true & updated docs 2018-11-13 22:33:12 -06:00
BrianWGray f95573cf37 modify scenario content to correct example ip addresses 2018-11-13 16:24:27 -05:00
Shelby Pace ac8932c144 update 9631 to a current branch 2018-11-13 15:15:25 -06:00
Thomas Labadie bc32a16b8f
Added module documentation 2018-11-13 20:03:42 +01:00
Brent Cook f2712ecdf6
Land #10607, Add External Module: office365userenum.py 2018-11-13 10:57:05 -06:00
Green-m 7a4770790c
Land #10938, add docs for modules and fix bug. 
Add docs for auxiliary module http_basic/imap/mysql, and fix a bug
in modules/auxiliary/server/capture/mysql.rb
 2018-11-13 16:22:03 +08:00
Aaron Ringo 538055c406 Initial documentation for Xorg Privesc Module 
killed white spaces
 2018-11-12 15:44:13 -06:00
Green-m 3be917d0e4
Add doc for exploit module spark_unauth_rce. 2018-11-12 17:08:36 +08:00
BrianWGray 129feb94ff Alterations made based on requested changes 2018-11-10 15:12:47 -05:00
Brendan Coles 1f14a9846d
Land #10767, Add Cisco Prime Infrastructure remote root exploit 2018-11-10 17:08:16 +00:00
BrianWGray c7849eb37b Eaton XPert Backdoor documents 2018-11-10 10:09:43 -05:00
h00die b78e103bc0 rb to md 2018-11-09 05:18:27 -05:00
h00die 792b451f40 capture server docs and updates 2018-11-08 21:23:27 -05:00
h00die ce1f14ab91 http_basic capture docs 2018-11-07 08:32:03 -05:00
Wei Chen a32d8083f0
Land #10847 - Add blueimp's jQuery (Arbitrary) File Upload 
CVE-2018-9206
 2018-11-05 11:37:20 -06:00
Brent Cook cb229411bc
Land #10888, Fix Net::SSH::CommandStream session open failure 2018-11-05 11:15:09 -06:00
Green-m 708d067e65
Land #10919, Add doc for ftp capture module. 
And add a custom option banner for it.
 2018-11-05 14:15:52 +08:00
h00die f3fb1a776f fix md format 2018-11-04 21:51:04 -05:00
h00die 04218cff39 ftp capture 2018-11-04 21:46:01 -05:00
Jacob Robles 2d3403cdd2
Land #10901, Add modules for iOS images and texts 2018-11-02 13:46:58 -05:00
Brent Cook 86469cc5a0
Land #10836, Add Morris worm sendmail debug mode exploit 2018-11-02 11:17:33 -05:00
Brent Cook 1d81f3764f
Land #10700, Add Morris worm fingerd exploit and VAX reverse shell 2018-11-02 11:16:46 -05:00
William Vu e9b3502f98 Fix Net::SSH::CommandStream session open failure 
I suspected this might be a problem for libssh servers.
 2018-11-02 01:08:05 -05:00
Shelby Pace 036ac39270
added docs for the two modules 2018-11-01 15:49:44 -05:00
pkb1s 22f032da9e
Added documentation 2018-10-28 19:49:13 +00:00
pkb1s aba72ea276
Added example output to documentation 2018-10-28 18:35:20 +00:00
pkb1s 90bcfab263
Added example output to documentation 2018-10-28 18:02:07 +00:00
pkb1s 1ef9a2f901
Create ibm_mq_enum.md 2018-10-28 17:25:24 +00:00
pkb1s ba204b9854
Create ibm_mq_channel_brute.md 2018-10-28 17:13:25 +00:00
bwatters-r7 b4c005c4d4
Land #10561, Add Windows local privilege escalation - CVE-2018-0824 
Merge branch 'land-10561' into upstream-master
 2018-10-25 13:22:31 -05:00
Wei Chen 2ab9a003d4
Land #10864, Add Cisco WebEx RCE Modules 2018-10-24 16:20:00 -05:00
Shelby Pace 6f58a15e00
removed template line 2018-10-24 15:14:15 -05:00
Shelby Pace cecc7177f7
added documentation for modules 2018-10-24 09:47:05 -05:00
bwatters-r7 569c2e03c9
Fix exploit relics and documentation 2018-10-23 17:15:34 -05:00
William Vu bf5fe2864f Update module doc 2018-10-23 16:28:49 -05:00
Brent Cook 65c0573738
Land #10848, improve play_youtube post module 2018-10-23 12:26:55 -05:00
William Vu 9c7a705868 Update module doc 2018-10-23 09:53:46 -05:00
William Vu 326597e842 Update module doc with new output 2018-10-23 07:14:19 -05:00
William Vu 3d06c10ad0 Link to Apache AllowOverride directive and change 2018-10-23 03:51:16 -05:00
William Vu a55f7ff30a Clarify vuln (re)discovery vs. disclosure 
https://www.bleepingcomputer.com/news/security/jquery-file-upload-plugin-vulnerable-for-8-years-and-only-hackers-knew/
 2018-10-23 03:22:45 -05:00
William Vu df23507772 Add module doc 2018-10-22 23:35:42 -05:00
Spencer McIntyre 7c3e3da8d1 Add documentation for the play_youtube module 2018-10-22 20:50:41 -04:00
William Vu f40647b2a4 Link to Docker environment in module doc 2018-10-22 18:32:37 -05:00
William Vu 114692ee56 Add module doc and promise a Docker environment 2018-10-22 18:32:37 -05:00
Green-m 8a89e8c00c
Move doc as the module do. 2018-10-22 18:10:39 +08:00
William Vu 8a6075c882 Add module doc 2018-10-20 14:15:26 -05:00
William Vu aac4a28985 Fix git apply -p value 2018-10-19 15:41:39 -05:00
William Vu cea619aab1 Prefer Git for all the things 2018-10-19 15:40:16 -05:00
William Vu e4c71265fb Improve banner checking in libssh_auth_bypass 
Now we do the right thing when libssh is patched.
 2018-10-19 15:21:12 -05:00
William Vu ab5fccc8f6 Add module doc for great justice 2018-10-19 12:57:58 -05:00
Wei Chen 3cee96d8ed
Land #10664, add Windows SetImeInfoEx Win32k NULL Pointer Dereference 2018-10-18 14:42:14 -05:00
Tim W 1e5f3f2f7b add documentation 2018-10-18 12:45:53 +08:00
Green-m 73d3cb8c03
Fix some format errors. 2018-10-18 12:01:57 +08:00
Green-m e953a20879
Add doc for post module persistence service. 2018-10-17 18:46:25 +08:00
Wei Chen 8e442cc980 Update documenation 2018-10-15 15:45:39 -05:00
Wei Chen 5433d2cca9 Sync up upstream master 2018-10-15 14:19:07 -05:00
Pedro Ribeiro ab63044fe0
Update cisco_prime_inf_rce.md 2018-10-15 22:37:47 +07:00
Pedro Ribeiro 53f9c359e9
Update cisco_prime_inf_rce.md 2018-10-15 22:37:22 +07:00
Pedro Ribeiro 38ad735b04
Create cisco_prime_inf_rce.md 2018-10-15 22:35:26 +07:00
Brendan Coles 6660b1857b
Land #10800, Add docs for auxiliary/scanner/snmp/ Cisco modules 2018-10-15 07:13:06 +00:00
Brendan Coles 506bdd5604
Land #10797, Add docs for auxiliary/scanner/sip/options_tcp module 2018-10-15 07:08:55 +00:00
h00die 8877582086
Land #10668 rsh stack clash solaris priv esc 2018-10-14 10:34:48 -04:00
h00die f399b59ae4 Merge branch 'master' of https://github.com/rapid7/metasploit-framework into cisco_device_manager 2018-10-13 13:31:20 -04:00
h00die 90768e28ce fixed up 2018-10-13 08:51:42 -04:00
h00die 149a74d07b small fixes 2018-10-13 08:48:13 -04:00
William Vu 5b14d94957
Land #10671, struts2_namespace_ognl updates 
There are still some outstanding concerns, but I want to unblock this.
 2018-10-12 11:08:33 -05:00
h00die 55e1915725 cisco snmp docs 2018-10-11 23:12:44 -04:00
h00die e8097791fe remove spaces at eol 2018-10-11 21:46:45 -04:00
h00die e81d3c14ef add docs 2018-10-11 17:02:02 -04:00
h00die 63756bc800 add sip options_tcp docs 2018-10-11 16:17:01 -04:00
Shelby Pace a67122aaf7
updated doc, added x86_64 binary 2018-10-11 12:37:51 -05:00
Shelby Pace 04cc40136f
changed formatting, deleted post, renamed files 2018-10-10 14:41:14 -05:00
Jacob Robles 6544c6636c
Add documentation 2018-10-10 12:23:52 -05:00
Dhiraj Mishra 48432491a2
Adding documentation 
Documentation path: documentation/modules/exploit/windows/local/ms18_8120_win32k_privsec.md
 2018-10-10 22:11:05 +05:30
Dhiraj Mishra 3de0d81a44
Deleting documenation from /post/windows/escalate 2018-10-10 22:05:19 +05:30
Imran E. Dawoodjee c86f68cb60
Minor changes to module, updated documentation. 2018-10-09 20:39:00 +06:30
Imran E. Dawoodjee 78624b7020
Updated documentation and fixed the code (mostly). 2018-10-09 10:52:06 +06:30
Shelby Pace bed497c6ae
Land #10672, Add COMMGR Buffer Overflow module 2018-10-08 10:04:52 -05:00
Imran E. Dawoodjee fcb0b90d7a
Fixed numbering in the documentation steps, offed some whitespace, 
streamlined the send_request_cgi, removed the conn_check.
 2018-10-08 15:04:32 +06:30
Imran E. Dawoodjee f70aa354fc
Added documentation for 
modules/exploit/linux/http/netgear_unauth_exec.rb
 2018-10-08 11:35:33 +06:30
Wei Chen c7efd57144
Sync up with master 2018-10-06 08:27:01 -05:00
Brent Cook c9ebe5ae23
Land #9745, Add ifwatchd QNX privilege escalation exploit module 2018-10-06 05:03:50 -04:00
Brent Cook e2f97c75a0
Land #10616, update Unitrends UEB module to support vulnerabilities in version 10 2018-10-05 16:20:38 -05:00
Brent Cook a51243ce91
Land #10745, Update lastore_daemon_dbus_priv_esc tested versions 2018-10-05 11:35:31 -04:00
bwatters-r7 28fb27187a
Land #10418, Add DCOM/RPC NTLM Reflection (MS16-075) Via Reflective DLL 
Merge branch 'land-10418' into upstream-master
 2018-10-04 16:54:53 -05:00
bwatters-r7 523040e488
Add note about compiling problems 2018-10-04 16:42:23 -05:00
Brendan Coles fe7ce02dfd Update tested versions 2018-10-04 21:13:21 +00:00
Jacob Robles 071aa04111
Land #10738, Add Zahir Enterprise 6 build 10b BOF 2018-10-04 11:00:12 -05:00
Jacob Robles b5c13690c0
Add documentation for Zahir Import File Module 2018-10-04 10:12:12 -05:00
Jacob Robles 8b955f8ec5
Land #10704, Navigate CMS Unauthenticated RCE 2018-10-04 06:44:21 -05:00
Dylan Pindur 11d9b44922
Add exploit module for TeamCity Agent XMLRPC 2018-10-03 18:33:10 +08:00
Jacob Robles 97729727d8
Minor modifications 2018-10-02 06:57:04 -05:00
Brent Cook 2c0d4de70b
Land #10732, add api key for android wlan_geolocate 2018-10-02 05:09:10 -05:00
Tim W 6dd36bd8da
Land #10427, add OSX VNC password gather module 2018-10-02 14:47:51 +08:00
Tim W 488b88fe04 fix documentation 2018-10-02 14:30:56 +08:00
Tim W b5cf682169 cleanup post/osx/gather/vnc_password_osx and add loot/credentials 2018-10-02 14:22:09 +08:00
Tim W e6c041003e fix documentation 2018-10-02 11:51:29 +08:00
Tim W c1f5540e16
Land #10723, fix another typo in windows reverse_tcp docs 2018-10-01 13:52:43 +08:00
Delfan Azhar Andhika af2378d6ec
Update reverse_tcp.md 
fix typos in line 264.
 2018-10-01 03:03:50 +07:00
Delfan Azhar Andhika 0720718716
Update reverse_tcp.md 
fix typos line 33.
 2018-10-01 02:55:53 +07:00
Pyriphlegethon 2b86297138 Refactor 2018-09-27 11:16:54 +02:00
Pyriphlegethon 2d568f884e Add documentation for Navigate CMS Unauthenticated Remote Code Execution 2018-09-26 22:44:20 +02:00
Brent Cook 1607c2b890
Land #10428, Update Windows MySQL UDF files, add docs 2018-09-24 21:11:52 -05:00
asoto-r7 d981530f78
Update documentation with correct module name and detailed notes about Tomcat versions 2018-09-24 12:47:58 -05:00
Wei Chen 02ef565730
Update evasion_module_type branch 2018-09-24 08:20:32 -05:00
Tim W 888ec9430c fix typo 2018-09-24 17:37:59 +08:00
Tim W 738665e56f Add documentation for #10652 2018-09-24 17:11:24 +08:00
h00die b486708b02
Land #10663 extremeparr solaris LPE 2018-09-23 13:53:18 -04:00
Brendan Coles 7687e6e7b7 Update tested versions 2018-09-22 03:57:03 +00:00
bwatters-r7 849547793b
Land #10643, CVE-2018-8440 ALPC Scheduler 
Merge branch 'land-10643' into upstream-master
 2018-09-21 15:38:45 -05:00
Jacob Robles 47bf780b88
specify meterpreter, update documentation 
Warning is after spell...
 2018-09-21 12:31:56 -05:00
root 17c7d828c1 fixes 2018-09-21 17:16:04 +00:00
Jacob Robles 6db716d2ec
Update documentation 2018-09-21 07:15:14 -05:00
Brendan Coles a7f53b9361
Land #10628, Add Solaris srsexec Arbitrary File Reader module 2018-09-21 01:56:43 +00:00
h00die ee0776b095 print when not verbose 2018-09-20 20:54:41 -04:00
William Vu c5f6d4b8a5
Land #10670, Pimcore SQLi module 2018-09-19 20:50:21 -05:00
William Vu 5477220106 Update documentation 2018-09-19 20:48:42 -05:00
Shelby Pace 7698b7d7db
changed location of dolibarr module/documentation 2018-09-19 11:17:27 -05:00
Jacob Robles 42ccc37bca
Added description to module 2018-09-19 10:22:51 -05:00
Jacob Robles 05095c8f8d
Add documentation 2018-09-19 09:29:51 -05:00
Shelby Pace b6ca8cac7f
renamed/relocated files, changed uri 2018-09-19 08:11:45 -05:00
Hubert Lin 36fa8f2ffc
Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow. 2018-09-19 15:28:46 +08:00
Hubert Lin 827219aff3 Revert "Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow" 
This reverts commit d06587caef.
 2018-09-19 15:22:12 +08:00
Hubert Lin d06587caef
Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow 2018-09-19 15:09:40 +08:00
William Vu 6a63feced4 Merge remote-tracking branch 'upstream/master' into pr/10418 2018-09-18 19:54:44 -05:00
Shelby Pace b98dfe0e7f
changed wording and line numbers 2018-09-18 13:33:09 -05:00
Brendan Coles 4fb223b293 Add Solaris RSH Stack Clash Privilege Escalation module 2018-09-18 17:38:59 +00:00
Shelby Pace 269da6ac9a
removed remaining line from template 2018-09-18 12:23:13 -05:00
Shelby Pace 34f07619d5
added documentation for module 2018-09-18 12:08:31 -05:00
Dhiraj Mishra 03d50f2773
Adding documentation 2018-09-18 15:41:03 +05:30
Brendan Coles 2f5bd4b714 Add Solaris 'EXTREMEPARR' dtappgather Privilege Escalation module 2018-09-18 07:23:10 +00:00
h00die 5089c19453
Land #10620 Solaris 10 LPE for libnspr 2018-09-17 18:10:16 -04:00
Brent Cook 86f5b25d8f
Land #10563, Add 'Notes' metadata section 2018-09-17 11:18:08 -05:00
Hendrik Van Belleghem 96fd4d4525 Updated documentation for couchdb_enum 2018-09-15 23:42:20 +02:00
Hendrik Van Belleghem f5f76a609d Clean up - old couchdb module 2018-09-15 23:31:17 +02:00
Kevin Gonzalvo 5a21444d39 Fix documentation 
Added 'post' when use module.
 2018-09-15 14:27:21 +02:00
Kevin Gonzalvo 68750ca19c Added documentation 
Documentation is added for the post-exploitation modules vnc_password_osx.
 2018-09-15 12:20:01 +02:00
h00die af7d76b52d changes from first review 2018-09-14 20:10:59 -04:00
h00die 6cef61ddbc finish srsexec add docs 2018-09-13 21:20:09 -04:00
Hendrik Van Belleghem d6847918af Added documentation for couchdb_2017-12635.rb 2018-09-14 00:49:17 +02:00
Brendan Coles a8c459db18 Update description with correct patched release 2018-09-13 08:22:13 +00:00
Brendan Coles 0db1c34c40 Add check for Solaris system patches 2018-09-12 07:36:54 +00:00
Brendan Coles e75b5592f7 Add ForceExploit option 2018-09-11 09:23:50 +00:00
Brendan Coles d658ccf653 Add Solaris libnspr NSPR_LOG_FILE Privilege Escalation module 2018-09-11 08:11:11 +00:00
h00die d8f2d08058 finish up docs and 10 exploit 2018-09-10 21:08:30 -04:00
Jacob Robles 3d5da50b12
Land #10598, Store Credentials Found with PhpMyAdmin Password Extractor 2018-09-10 11:49:52 -05:00
h00die 589fb4bf3b first try at ueb mix 2018-09-09 22:41:01 -04:00
Oliver Morton 7604712e04 Add Documentation for office365userenum 2018-09-07 18:22:09 -04:00
Wei Chen 718aaca0f4
Land #10546, Add Apache Struts exploit: CVE-2018-11776 2018-09-07 14:54:23 -05:00
Brent Cook 9abb6aebb3 Fixup reverse_ord_tcp docs 2018-09-07 11:47:14 -05:00
Shelby Pace 18ffd36409
storing config file, changed regex 2018-09-07 08:13:10 -05:00
Shaksham Jaiswal 8f2ab08c5e
updated docs 2018-09-07 15:06:03 +05:30
Erin Bleiweiss 41d12166fd
Use a string hash key for documentation 2018-09-06 15:57:52 -05:00
Shelby Pace 36d125e1a8
modified line in scenarios output 2018-09-06 12:15:04 -05:00
Shelby Pace 50df5e386a
modified doc to reflect new output 2018-09-06 12:11:14 -05:00
root 1bee1e3861 Add IIS ShortName Scanner documentation 2018-09-06 12:02:32 +00:00
William Vu f34146b288 Add module doc 2018-09-05 19:57:15 -05:00
Brent Cook d25aad571f
Land #10474, add documention for windows/shell/reverse_ord_tcp 2018-09-05 09:04:47 -05:00
Wei Chen d0b470879b Add documentation for windows_defender_exe 2018-09-04 14:16:24 -05:00
Erin Bleiweiss b1479ec350
Update swagger docs to be compliant with new notes field 2018-08-31 16:53:59 -05:00
Wei Chen 34944ff5be
Land #10568, Update weblogic module docs 2018-08-31 14:05:46 -05:00
asoto-r7 da7a29f715
Documentation update 2018-08-31 13:57:41 -05:00
Wei Chen 0dea5fcfd9
Land #10565, Add Dolibarr ERP/CRM Auxiliary Module 2018-08-31 13:47:46 -05:00
Jacob Robles e49435a766
Update weblogic module docs 
Update the module docs to match the new name
of the module.
 2018-08-31 06:00:41 -05:00
Shelby Pace 628ea736a0
delete newline 2018-08-30 15:54:04 -05:00
Shelby Pace d0cc05b074
added documentation 2018-08-30 15:28:52 -05:00
Shelby Pace a9376266bc
Land #10484, Add PhpMyAdmin password extractor 2018-08-30 12:16:17 -05:00
Shelby Pace 6ec8522786
Land #10482, Add Network Manager VPNC Privesc 2018-08-30 10:46:54 -05:00
7echSec 9f13d0fc56
Adding documentation 
As there was no escalate folder I have created one to maintain my documentation, kindly suggest if any issues.
 2018-08-30 21:13:33 +05:30
Jacob Robles 9d3e1c1942
Land #10540, weblogic_deserialize, add check method and linux target 2018-08-30 06:08:03 -05:00
Jacob Robles 953bafc7e7
Land #10545, foxit fix generated strings, update doc 2018-08-30 05:55:44 -05:00
Jacob Robles d5ad683ba6
More doc updates 2018-08-29 10:59:36 -05:00
Jacob Robles 88c908665d
Update documentation 2018-08-29 06:24:30 -05:00
Jacob Robles 086ec5bdfb
Fix generated strings in pdf 2018-08-29 06:24:20 -05:00
asoto-r7 b373dcc5d4
First draft of module and documentation for struts_namespace_rce against CVE-2018-11776 2018-08-28 16:53:26 -05:00
bwatters-r7 f6b0e720e4
Add documentation for peinjector 2018-08-28 14:02:34 -05:00
Jacob Robles 94e8cdac37
Move files to correct location 2018-08-28 12:38:54 -05:00
Jacob Robles 49c5a91fa7
Add linux target to weblogic_deserialize module 2018-08-28 11:51:04 -05:00
William Vu 672dbb7acb
Land #9364, HP PJL/SNMP CVE-2017-2741 exploit 
Finally!
 2018-08-23 22:47:09 -05:00
h00die 8213c21dc9
Land #10467 documentation for postgresql hashdump 2018-08-23 21:35:05 -04:00
h00die a866bdd09d slight syntax updates to md 2018-08-23 21:34:48 -04:00
h00die 1585eff29f
Land #10466 docs for postgres_version 2018-08-23 21:10:34 -04:00
h00die 3024725122 slight syntax updates to md 2018-08-23 21:09:52 -04:00
h00die b8ce6782d9
Land #10517 updated docs for CloudMe Sync 2018-08-23 20:54:01 -04:00
Wei Chen 2193dd662d
Land #10504, add Foxit Reader UAF Module and Docs 2018-08-23 18:56:07 -05:00
Shelby Pace 5f9432ed6a
added rca to cloudme doc 2018-08-23 16:12:13 -05:00