c7e63c3452
Land #6694 , Add Apache Jetspeed exploit
...
CVE-2016-0710
CVE-2016-0709
2016-03-30 11:17:21 -05:00
74f25f04bd
Make sure to always print the target IP:Port
2016-03-30 11:16:41 -05:00
7d6033fcb9
Land #6023 , Enable/Disable WDigest port module
2016-03-30 12:13:30 -04:00
797acd625d
Land #6714 , Kill defanged mode
2016-03-30 10:54:56 -05:00
22831695dd
Land #6721 , Add additional SOLMAN default creds
2016-03-30 10:48:53 -05:00
397d5580be
Use MetasploitModule convention
2016-03-30 15:44:37 +01:00
f8628e3438
Merge remote-tracking branch 'upstream/master' into wdigest_enable
2016-03-30 15:44:21 +01:00
9e45f0c104
Minor tidies
2016-03-30 15:29:03 +01:00
bc48ebd43b
Use patch_finder for msu_finder
2016-03-29 23:21:01 -05:00
7fc2c860e9
remove comment
2016-03-29 21:26:36 -04:00
d35b5e9c2a
First add of CVE-2015-7755
2016-03-29 21:20:12 -04:00
1bcd3fac25
Land #6724 , Import workspace IP validation from Mdm
...
MS-902
2016-03-29 18:31:47 -05:00
3b0170e87d
Import workspace IP validation from Mdm
...
This allows us to actually test the validations, since the code calls
out to Rex::Socket::RangeWalker.
MS-902
2016-03-29 17:56:22 -05:00
b8d53dde4a
Merge branch 'upstream-master' into staging/rails-upgrade
2016-03-29 15:56:50 -05:00
85ab9d38f7
Land #6698 , Add ATutor 2.2.1 Directory Traversal Exploit
2016-03-29 15:42:58 -05:00
b41ac10fe8
Bump version of framework to 4.11.20
2016-03-29 12:43:20 -07:00
d182441b86
Land #6722 Call super in #set_sane_defaults for caidao login scanner
2016-03-29 14:05:15 -05:00
faaaf6b765
MS10-58 Call super in #set_sane_defaults for caidao login scanner
...
MS10-58
2016-03-29 13:40:51 -05:00
b84bf2290f
Land #6707 Print Response fix for HTTP NTLM
2016-03-29 13:35:49 -05:00
587f1ee7b3
Land #6708 , module documentation for msfconsole
2016-03-29 11:30:55 -07:00
824a7837a2
LAND #6707 , Print Response Fix for HTTP NTLM
2016-03-29 13:08:43 -05:00
4f84c5a3b7
Add additional SOLMAN default creds
2016-03-29 15:53:15 +01:00
3d624c0ebe
Land #6719 , datastore validation fix for file:
2016-03-28 23:38:16 -05:00
e25525b4a7
avoid validating file-based datastore options on assignment
...
file:/ strings are special with some datastore options, causing them to read a
file rather than emitting the exact string. This causes a couple of problems.
1. the valid? check needs to be special on assignment, since normalization
really means normalizing the path, not playing with the value as we would do
for other types
2. there are races or simply out-of-order assignments when running commands
like 'services -p 80 -R', where the datastore option is assigned before the
file is actually written.
This is the 'easy' fix of disabling assignment validation (which we didn't have
before anyway) for types that can expect a file:/ prefix.
2016-03-28 23:03:17 -05:00
a6518b5273
Add generic JCL cmd payload for z/OS (mainframe)
...
This payload does nothing but return successfully. It can be used to
test exploits and as a basis for other JCL cmd payloads.
2016-03-28 21:01:39 -05:00
6523600952
Add a rescue to catch method missing for stage_payload
...
This allows us to provide a friendlier message to users when they are
using a stageless listener with a staged payload.
2016-03-29 09:46:09 +10:00
f1857d6350
Kill defanged mode
2016-03-28 09:02:07 -05:00
976932ed43
Initial commit
2016-03-26 12:00:25 +01:00
72bde63397
Bump version of framework to 4.11.19
2016-03-25 13:03:35 -07:00
9d86a49c51
Land #6692 , udp socket abstraction
2016-03-25 13:05:10 -05:00
cadf66fc4b
Land #6691 , initial meterpreter powershell extension support
2016-03-24 22:33:26 -05:00
1fe40d9f2d
update to metasploit-payloads 1.1.4
2016-03-24 22:32:55 -05:00
242ea8d9cd
Merge branch 'master' into land-6691-
2016-03-24 22:19:57 -05:00
ce8a6f57a0
Added powershell_import support
2016-03-25 12:17:03 +10:00
c4735bd72a
Fix rspec pull_request_finder_spec.rb
2016-03-24 20:56:46 -05:00
c3ce621d04
Fix gemfile
2016-03-24 20:43:51 -05:00
18604c3d44
Land #6705 , Rectify MSF_CFGROOT_CONFIG comment
2016-03-24 18:21:05 -05:00
57984706b8
Resolve merge conflict with Gemfile
2016-03-24 18:13:31 -05:00
76c6f8c19d
Move module_doc_template
2016-03-24 17:07:19 -05:00
d8ca5a01d5
Merge pull request #41 from tdoan-r7/mod_doc_cmd
...
Adding docs for Lester MS-1193
2016-03-24 17:01:23 -05:00
925cc3b56f
Adding docs for Lester https://issues.corp.rapid7.com/browse/MS-1193
2016-03-24 16:51:02 -05:00
dfa518b492
Whitespace
2016-03-24 15:21:03 -05:00
0073a8f40e
Wrap comments at 78, style
2016-03-24 15:20:43 -05:00
324a41e650
Merge pull request #40 from tdoan-r7/mod_doc_cmd
...
Minor edits for module docs
2016-03-24 13:52:51 -05:00
7bd6d0c696
Merge branch 'master' into staging/rails-upgrade
2016-03-24 12:55:05 -05:00
0852973b18
Minor edits for the following:
...
https://issues.corp.rapid7.com/browse/MS-1197
https://issues.corp.rapid7.com/browse/MS-1198
https://issues.corp.rapid7.com/browse/MS-1199
https://issues.corp.rapid7.com/browse/MS-1200
https://issues.corp.rapid7.com/browse/MS-1201
2016-03-24 12:13:03 -05:00
2b90846268
Add Apache Jetspeed exploit
2016-03-23 19:22:32 -05:00
6b4b523521
Land #6699 , Update mailmap for Steven Seeley
2016-03-23 17:48:17 -05:00
7f002128ad
Rectify MSF_CFGROOT_CONFIG comment
...
Also remove reference to feature request that does not seem to be
available anymore.
2016-03-23 22:23:30 +01:00
6388578ee6
Style fixes
2016-03-23 16:15:46 -05:00
wchen-r7
Spencer McIntyre
Meatballs
h00die
Adam Cammack
Brent Cook
Metasploit
Gregory Mikeska
Brendan Watters
thao doan
William Vu
Bigendian Smalls
OJ
James Lee
Hans-Martin Münch (h0ng10)
Till Maas