77b77287cc
Add module and payload documentation
2018-08-23 15:23:40 -04:00
b1a308f3ae
Remove final debug output
2018-08-23 15:23:40 -04:00
e21ea4180f
Clean up module and payload
...
Update module info, remove intermediate ARCH_ARMLE target, simply
options and add cleanup command so that the payload kills telnetd
2018-08-23 15:23:40 -04:00
81f1555439
Rename module, exploits multiple printer models
2018-08-23 15:23:40 -04:00
df18e354e1
Add bind_busybox_telnetd payload, misc cleanup
2018-08-23 15:23:39 -04:00
c0c3e12c74
WIP - hp officejet pro exploit, enhance PJL lib
2018-08-23 14:53:54 -04:00
9b3e0d8306
Add additional root tags for GPP XML
...
Finally ran through all the samples and cross-referenced with MS14-025.
https://msdn.microsoft.com/en-us/library/cc232650.aspx
https://support.microsoft.com/en-us/help/2962486/ms14-025-vulnerability-in-group-policy-preferences-could-allow-elevati
2018-08-22 16:48:33 -05:00
2891255549
Clarify what is being imported currently
...
Since the parser is focused on creds.
2018-08-22 15:53:19 -05:00
520ed188e6
automatic module_metadata_base.json update
2018-08-22 12:58:40 -07:00
36e35d116d
Land #10510 , full disclosure for CVE-2018-15473
2018-08-22 14:51:05 -05:00
578d2375d7
Add full disclosure for CVE-2018-15473
2018-08-22 14:49:13 -05:00
1e4eb0eae0
Revert report_note, since it added nothing
...
A bit of misunderstanding. We're in agreement that loot was enough.
2018-08-22 14:34:09 -05:00
6fa04950ee
Store parsed GPP data as a note
...
And refactor slightly.
2018-08-22 14:19:50 -05:00
b1c633faf6
Add Group Policy Preferences support to db_import
...
And take the Jaden Smith approach, as @busterb quipped to me. :)
This one's a little weird, since you normally import scans into
Metasploit, but now that creds are first-class in the database, it makes
more sense to be able to import them.
Currently, your alternatives are post/windows/gather/credentials/gpp,
which requires a session, and auxiliary/scanner/smb/smb_enum_gpp, which
requires a network scan.
2018-08-21 23:44:39 -05:00
080ba15179
Another boo-boo
2018-08-21 08:55:14 -05:00
b899839c53
Oops I made boo-boos
2018-08-21 08:53:43 -05:00
2780ae6ba9
Update false negatives
2018-08-21 08:50:26 -05:00
fd6880d0d0
Add Foxit Reader UAF Module and Docs
2018-08-21 08:21:51 -05:00
682b0863be
Land #10500 , stack trace fix for jobs -K
2018-08-20 22:27:31 -05:00
321f2b8746
Improve file operations
...
Hmm, why did I not use File.write before? Oh well, fixed.
2018-08-20 22:25:19 -05:00
808e2f2e25
Fix issue #10499
2018-08-21 03:08:14 +00:00
edb85614ff
Make code cleaner
2018-08-21 03:05:44 +00:00
230433cf79
automatic module_metadata_base.json update
2018-08-20 17:36:50 -07:00
2fe6bd0e98
Land #10498 , module doc for ssh_enumusers
2018-08-20 19:30:29 -05:00
06582a00a0
Add module doc for ssh_enumusers
...
And update description in module.
2018-08-20 19:26:51 -05:00
bc3b317963
Land #10449 , Implementation of download/upload file in reverse shell
2018-08-20 19:10:26 -05:00
4aee3a4ae2
Land #10448 , Implementation of CTRL+C to send SIGINT signal
2018-08-20 18:14:29 -05:00
ad0291e552
Update false negatives
2018-08-20 18:08:19 -05:00
b003fc0273
automatic module_metadata_base.json update
2018-08-20 15:37:28 -07:00
11fee8fa2c
Land #10471 , Import target DefaultOptions into the datastore
2018-08-20 17:30:27 -05:00
4dac915a35
automatic module_metadata_base.json update
2018-08-20 15:29:45 -07:00
9ba40cdc9e
Land #10497 , Add Lumpy Space password, whatever.
2018-08-20 17:19:02 -05:00
d1b8846f12
Land #10479 , Add CVE-2018-15473 to ssh_enumusers
2018-08-20 17:14:58 -05:00
819b8504e2
Add a little better randomization
2018-08-20 17:10:14 -05:00
feb4b78227
Add Lumpy Space Princess's password
...
http://adventuretime.wikia.com/wiki/Trouble_in_Lumpy_Space
2018-08-20 16:28:21 -05:00
10d5f32b92
None of these should be executable
2018-08-20 16:25:34 -05:00
b38a442bb0
Refactor once more with feeling
...
Also flesh out malformed-packet auth method. Let's not be lazy here. :-)
2018-08-20 16:25:32 -05:00
01ad152067
Update false negatives on post auth information
2018-08-20 16:05:58 -05:00
bf94a33a7b
automatic module_metadata_base.json update
2018-08-20 14:01:33 -07:00
484c340520
Land #10491 , fix error generating PPC NOPS
2018-08-20 15:54:17 -05:00
e8af2dd67c
bool params are truthy, don't cast to a string
2018-08-20 15:53:49 -05:00
fb2d3bfd4a
Land #10492 , show help when no argument is provided to `show`
2018-08-20 15:46:29 -05:00
627fa786a5
Land #10493 , update help for show and search commands
2018-08-20 15:45:22 -05:00
3d0d8f7773
Update false negatives on post auth information
2018-08-20 15:43:07 -05:00
8869604143
update help for show and search
2018-08-21 00:17:57 +05:30
e8c0638092
Update modules.rb
2018-08-20 23:36:57 +05:30
0e594266e9
show help when no argument is provided to `show`
2018-08-20 23:32:34 +05:30
7c3810bbff
fix match error in ppc simple nop generator
...
before changes:
```
msf5 nop(ppc/simple) > generate 10
[-] Sled generation failed: undefined method `match' for true:TrueClass.
```
After changes
```
msf5 nop(ppc/simple) > generate 10
buf =
"\x7c\xf6\xc2\x15\x7c\xf6\xc2\x15"
```
2018-08-20 23:16:32 +05:30
280c3c9825
Land #10488 , msfdb - Improve usage help
2018-08-20 12:21:54 -05:00
6dbf93b9d2
Land #10476 , add automation test for smb_ms17_010 scanner module
...
Merge branch 'land-10476' into upstream-master
2018-08-20 11:51:52 -05:00
Matthew Kienow
William Vu
Metasploit
Wei Chen
Jacob Robles
Green-m
asoto-r7
Brent Cook
Tod Beardsley
Auxilus
Jeffrey Martin
bwatters-r7