Wei Chen
847e3232ab
Land #11102 , remove old metasm remnants
2018-12-18 08:53:53 -06:00
Shelby Pace
2fc501d260
Land #11112 , Fix bpf_priv_esc exploit module
2018-12-17 10:00:50 -06:00
Jacob Robles
7839add2fd
Land #11123 , Add module windows persistent service
2018-12-17 09:07:21 -06:00
Jacob Robles
88b7b7df4a
Fix additional path space issues
2018-12-17 07:00:23 -06:00
Jacob Robles
e67eaa94c9
Move code to ERB template
2018-12-14 13:13:32 -06:00
Wei Chen
cc7cb7302e
Land #10944 , Add macOS Safari exploit from pwn2own2018
2018-12-13 13:50:19 -06:00
Brendan Coles
68d451711b
Fix bpf_priv_esc module
2018-12-12 17:23:12 +00:00
Brent Cook
bd3e474513
delete old cpuinfo code (is it used anywhere?)
2018-12-10 19:03:04 -06:00
Shreyans Devendra Doshi
45c6f1ed62
Fix #11084 Add 'chronos' to unix_users.txt
...
This commit adds the username 'chronos' to the user list as it happens
to be the default username on ChromeOS, as highlighted by @h00die in
Issue #11084 .
2018-12-09 09:58:58 -05:00
Brent Cook
66cae6240f
Land #10994 , Added exploit for CVE-2018-18955
2018-11-27 16:12:05 -06:00
Brendan Coles
5c1399daa1
Add musl-cross cross-compiled executables
2018-11-25 00:53:55 +00:00
Brendan Coles
eb17c45000
Add Linux Nested User Namespace idmap Limit Local Privilege Escalation module
2018-11-20 14:10:28 +00:00
Tim W
43c1e6308e
add binary
2018-11-20 15:59:23 +08:00
Tim W
44b1b6fe31
fix forking
2018-11-20 15:58:55 +08:00
Tim W
99ae214575
add binaries
2018-11-15 08:46:24 +08:00
Tim W
2c30459a1b
add CVE-2018-4233 and CVE-2018-4404
2018-11-15 08:44:18 +08:00
bwatters-r7
b4c005c4d4
Land #10561 , Add Windows local privilege escalation - CVE-2018-0824
...
Merge branch 'land-10561' into upstream-master
2018-10-25 13:22:31 -05:00
Wei Chen
6920470f99
Land #10821 , Enhance windows compiler w/ new functions
2018-10-24 20:28:36 -05:00
Wei Chen
06e1d16c60
Rm _snprintf because it causes sessions to fail (due to a crash)
2018-10-24 17:50:10 -05:00
bwatters-r7
927a29530b
Remove duplicated files
2018-10-23 12:31:18 -05:00
Brent Cook
b65f467ada
Land #10851 , add ndkstager to data/exploits
2018-10-23 12:04:57 -05:00
bwatters-r7
47353553e5
Get everything together finally (still needs cleanup)
2018-10-19 18:15:44 -05:00
Wei Chen
3cee96d8ed
Land #10664 , add Windows SetImeInfoEx Win32k NULL Pointer Dereference
2018-10-18 14:42:14 -05:00
bwatters-r7
d2c013001d
Update stuff
2018-10-17 17:17:05 -05:00
Green-m
7b1b2198cb
resolve confiict.
2018-10-17 17:33:01 +08:00
Green-m
0ccebd9916
Add some define for windows compiler.
2018-10-17 16:18:38 +08:00
Shelby Pace
26631bcfbd
addressed suggestions
2018-10-12 14:35:42 -05:00
Shelby Pace
a67122aaf7
updated doc, added x86_64 binary
2018-10-11 12:37:51 -05:00
Shelby Pace
cdc2918c84
removed original binary, added source
2018-10-11 11:42:51 -05:00
Shelby Pace
521b50af55
added separate binaries, extended for x86
2018-10-11 10:43:35 -05:00
amaloteaux
f8ad47d475
improve windows_defender_js_hta :
...
-add platform detection for jsc
-prevent cmd prompt when launching jsc
2018-10-11 17:38:47 +02:00
Brent Cook
6293372218
Land #10762 , bump version
2018-10-09 05:32:01 -05:00
Carter Brainerd
b2136bd8e0
Change "4" to "5"
2018-10-07 13:35:12 -04:00
Wei Chen
c7efd57144
Sync up with master
2018-10-06 08:27:01 -05:00
Tim W
4a4c759a4b
add ndkstager to data/exploits
2018-10-05 15:10:21 +08:00
bwatters-r7
28fb27187a
Land #10418 , Add DCOM/RPC NTLM Reflection (MS16-075) Via Reflective DLL
...
Merge branch 'land-10418' into upstream-master
2018-10-04 16:54:53 -05:00
bwatters-r7
ce59964141
Recompile binaries and prep for VS2013 compiles
2018-10-04 16:21:23 -05:00
Wei Chen
92ac5635b1
Support module documentation
2018-10-03 23:35:30 -05:00
space-r7
a0052c7f47
Add evasion module using HTA + JavaScript + C#
2018-10-01 12:57:05 -05:00
Brent Cook
1607c2b890
Land #10428 , Update Windows MySQL UDF files, add docs
2018-09-24 21:11:52 -05:00
Wei Chen
02ef565730
Update evasion_module_type branch
2018-09-24 08:20:32 -05:00
7echSec
cd3b139642
Adding UnmarshalPwn.exe
...
Compatible with Visual Studio 2013.
2018-09-21 17:24:50 +05:30
7echSec
545e488486
Uploading new UnmarshalPwn.exe
...
As per the bwatters-r7 comment I am uploading new UnmarshalPwn.exe complied with platform toolset 120
2018-09-21 17:18:39 +05:30
Jacob Robles
c76f095cd0
Inject Payload to Memory First
2018-09-19 21:13:49 -05:00
Jacob Robles
dfa030c2df
Use System Directory
2018-09-19 08:49:12 -05:00
William Vu
6a63feced4
Merge remote-tracking branch 'upstream/master' into pr/10418
2018-09-18 19:54:44 -05:00
Dhiraj Mishra
89b0ac6f87
Adding suport files
2018-09-18 14:59:43 +05:30
Jacob Robles
83af598e6a
Updated VS solution and module
2018-09-17 17:38:19 -05:00
bwatters-r7
f38e6f45ce
Redo dllinjection
2018-09-14 17:47:53 -05:00
asoto-r7
4cf344dd83
WIP: Initial CVE-2018-8440 / ALPC-TaskSched-LPE
2018-09-13 18:00:20 -05:00