6323f7f872
Fix a couple overlooked issues
2016-03-13 23:35:05 -05:00
df0ff30468
Land #6642 , make ipv6_neighbor_router_advertisement discovery smarter
2016-03-13 16:53:11 -05:00
635e31961a
generate valid prefixes
2016-03-13 16:44:57 -05:00
d20731ca74
Land #6600 , add first pass at PR and Issue templates
2016-03-13 15:16:29 -05:00
cd84ac37d6
Land #6569 , check if USERNAME env var exists before using in enum_chrome post module
2016-03-13 15:12:51 -05:00
eb18b091ec
Land #6672 , check if there is a module before checking type in PAYLOAD set callback
2016-03-13 15:10:14 -05:00
42689df6b3
Fix a stack trace with ``set PAYLOAD`` in ``msf>`` context
2016-03-13 14:56:54 -05:00
a50b21238e
Land #6669 , remove debug code from apache_roller_ognl_injection that breaks Windows
2016-03-13 14:14:10 -05:00
b60ca0d481
Land #6671 , Enable loader warnings for modules using class Metasploit3/4
2016-03-13 14:10:05 -05:00
4f09246c78
reenable module loader warnings
2016-03-13 20:04:05 +01:00
558f810165
Land #6667 , add a dev script for finding Metasploit release notes for modules
2016-03-13 14:03:54 -05:00
23eeb76294
update php_utility_belt_rce to use MetasploitModule
2016-03-13 13:59:47 -05:00
a6316d326e
Land #6662 , update disclosure date for php_utility_belt_rce
2016-03-13 13:58:04 -05:00
c89e53d0a3
Land #6666 , fix filezilla_server display bug showing the session ID
2016-03-13 13:56:44 -05:00
dabe5c8465
Land #6655 , use MetasploitModule as module class name
2016-03-13 13:48:31 -05:00
da039e136a
update test modules to use MetasploitModule
2016-03-13 13:44:44 -05:00
eec950801e
Merge pull request #3 from zeroSteiner/pr/6401
...
Add get_file method and parse the server response
2016-03-13 18:28:31 +11:00
b22a057165
Fix #6554 , hardcoded File.open path in apache_roller_ognl_injection
...
The hardcoded File.open path was meant for debugging purposes during
development, but apparently we forgot to remove it. This line causes
the exploit to be unusable on Windows platform.
Fix #6554
2016-03-11 18:48:17 -06:00
e059f42094
Bump version of framework to 4.11.16
2016-03-11 14:17:28 -08:00
51cdb57d42
Fix #6569 , Add a check for USERNAME env var in enum_chrome post mod
...
Fix #6569
Depending on the context, the USERNAME environment variable might
not always be there.
2016-03-11 15:36:44 -06:00
66849302b5
Land #6665 , truncate nexpose vuln names > 255 characters
2016-03-11 14:01:55 -06:00
69de3adf7a
Fix a typo in the file name
2016-03-11 13:50:13 -06:00
1546bf32ed
Add a dev script to find Metasploit release notes
...
This script allows you to find the release notes of a:
* Pull request number for a bug fix, or a notable change.
* A module name (preferably just use the short name)
2016-03-11 13:44:38 -06:00
8217d55e25
Fix display issue when SESSION is -1
2016-03-11 11:37:22 -06:00
6f85c82dc0
Fix Nexpose import to truncate long vuln names
...
A warning is emitted since there is a potential for data loss, but since
we reference vulns by their ID, the data-integrity risk is small.
Initially triggered by some Nexpose data, this should probably be
properly fixed by removing the length bound on the field.
MS-1184
2016-03-11 11:02:55 -06:00
8953952a8f
correction for the DisclosureDate based on Exploit-DB
2016-03-11 14:05:26 +08:00
7009682100
Landing #6659 , Fix bug in MS08-067 related to incorrect service pack identification when fingerprinting
2016-03-10 14:29:29 -06:00
dfd51a7032
Merge branch 'master' into android_sqlite_read
2016-03-10 01:46:30 +00:00
f4e4bb803f
Merge pull request #6657 from dmaloney-r7/staging/rails-upgrade
...
Rails 4.0 Deprecation Warnings
2016-03-09 15:19:36 -06:00
8d22358892
Land #6624 , PHP Utility Belt exploit
2016-03-09 14:12:45 -06:00
52d12b68ae
Clean up module
2016-03-09 14:08:26 -06:00
15ba85bac2
fix missed deprecations
...
missed some deprecation warnings
2016-03-09 13:29:35 -06:00
179d38b914
Fix #6658 , MS08-067 unable to find the right target for W2k3SP0
...
Fix #6658 .
When there is no service pack, the
Msf::Exploit::Remote::SMB#smb_fingerprint_windows_sp method returns
an empty string. But in the MS08-067 exploit, instead of check an
empty string, it checks for "No Service Pack", which causes it to
never detect the right target for Windows Server 2003 SP0.
2016-03-09 11:05:34 -06:00
45c7e4b6ae
Update ipv6_neighbor_router_advertisement.rb
2016-03-09 11:21:24 +08:00
e417909111
Update ipv6_neighbor_router_advertisement.rb
2016-03-09 11:21:07 +08:00
88697a5d3f
Merge branch 'master' into staging/rails-upgrade
2016-03-08 15:22:04 -06:00
8697798989
Land #6643 , remove reference to Pcap.lookupaddrs
2016-03-08 12:38:22 -06:00
5c770cb5ab
Land #6650 , add #strip to #empty to replace #blank
2016-03-08 11:32:02 -06:00
3123175ac7
use MetasploitModule as a class name
2016-03-08 14:02:44 +01:00
5e83b2de51
remove extra new line
2016-03-07 23:17:45 +00:00
f6c06bedfe
fix e.g output
2016-03-07 23:15:05 +00:00
05897f59df
Revert #6648 , revert Metasploit\n->Metasploit renames for now
...
A good chunk of modules use Metasploit::, which breaks. We need a new,
nonconflicting namespace.
2016-03-07 13:25:38 -06:00
204138c7c1
changing this to postgres 9.3
...
re-ordering stuff in .travis.yml
2016-03-07 13:25:37 -06:00
f703fa21d6
Revert "change Metasploit3 class names"
...
This reverts commit 666ae14259
2016-03-07 13:19:55 -06:00
44990e9721
Revert "change Metasploit4 class names"
...
This reverts commit 3da9535e22
2016-03-07 13:19:48 -06:00
0e46cc0259
Revert "change remaining class names"
...
This reverts commit 62217fff2b
2016-03-07 13:19:42 -06:00
aa5b201427
Revert "revert ssl_login_pubkey for now"
...
This reverts commit 7d773b65b6
2016-03-07 13:19:33 -06:00
3e0f8d67c9
Use #strip to more correctly simulate #blank?
...
See f900d9cf26
2016-03-07 13:14:37 -06:00
6406fa4c87
Land #6648 , change default Metasploit class name to just Metasploit
2016-03-07 07:55:18 -06:00
7d773b65b6
revert ssl_login_pubkey for now
2016-03-07 14:44:23 +01:00
William Vu
Brent Cook
HD Moore
Christian Mehlmauer
Brendan Coles
wchen-r7
Metasploit
James Lee
Adam Cammack
Jay Turla
James Barnett
Tim
bpatterson-r7
David Maloney
Fakhri Zulkifli
darkbushido