jvazquez-r7
|
2c33642de8
|
Do minor cleanup
|
2014-11-10 16:57:57 -06:00 |
|
jvazquez-r7
|
12ae8b3ec6
|
update from master
|
2014-11-10 16:19:26 -06:00 |
nullbind
|
493b81d874
|
cleanup
|
2014-11-10 15:22:21 -06:00 |
|
nullbind
|
31fa57fcb2
|
mssql_enum_sql_logins
|
2014-11-10 15:19:55 -06:00 |
|
Scott Sutherland
|
d543b16cc1
|
Added mssql_enum_sql_logins.rb
|
2014-11-10 15:02:46 -06:00 |
|
Scott Sutherland
|
ea226f7482
|
Update mssql_enum_sql_logins.rb
|
2014-11-10 15:02:14 -06:00 |
Juan Escobar
|
d4bbf0fe39
|
Fix issues reported by wchen-r7 and mmetince
|
2014-11-10 15:27:10 -05:00 |
|
nullbind
|
74344e9295
|
added mssql_enum_sql_logins
|
2014-11-10 13:42:52 -06:00 |
|
jvazquez-r7
|
4b701700c1
|
Fix banner
|
2014-11-10 12:40:53 -06:00 |
|
jvazquez-r7
|
65dbb1a83f
|
Do print_status
|
2014-11-10 11:26:53 -06:00 |
|
jvazquez-r7
|
7aed1e9581
|
Create loot_passwords method
|
2014-11-10 11:21:44 -06:00 |
|
jvazquez-r7
|
92df11baa7
|
Create report_super_admin_creds method
|
2014-11-10 11:16:25 -06:00 |
|
jvazquez-r7
|
8f17011909
|
do run clean up
* Reduce code complexity
* Don't report not valid administrator credentials
|
2014-11-10 11:12:04 -06:00 |
|
jvazquez-r7
|
635df2f233
|
Fail with NoAccess
|
2014-11-10 09:50:26 -06:00 |
|
jvazquez-r7
|
9c033492d2
|
Fix indentation
|
2014-11-10 09:48:22 -06:00 |
|
jvazquez-r7
|
2236518694
|
Check res.body before accessing #to_s
|
2014-11-10 09:47:05 -06:00 |
|
jvazquez-r7
|
8b8ab61e3d
|
Favor && over and
|
2014-11-10 09:45:12 -06:00 |
|
jvazquez-r7
|
ee4924582a
|
Use target_uri
|
2014-11-10 09:43:44 -06:00 |
|
jvazquez-r7
|
8ddd6a4655
|
Redefine RPORT having into account it is builtin
|
2014-11-10 09:42:30 -06:00 |
|
jvazquez-r7
|
eb36a36272
|
Change title
|
2014-11-10 09:40:22 -06:00 |
William Vu
|
0e772cc338
|
Land #4161, "stop" NilClass fix
|
2014-11-09 19:37:32 -06:00 |
sinn3r
|
cd0dbc0e24
|
Missed another
|
2014-11-09 14:06:39 -06:00 |
|
Juan Escobar
|
9cce7643ab
|
update description and fix typos
|
2014-11-09 09:10:01 -05:00 |
|
Juan Escobar
|
5d17637038
|
Add CVE-2014-7146 PHP Code Execution for MantisBT
|
2014-11-09 08:00:44 -05:00 |
Pedro Ribeiro
|
b3c27452cd
|
Add full disclosure URL
|
2014-11-09 10:40:41 +00:00 |
|
jvazquez-r7
|
bc5529396f
|
Land #4137, @pedrib's module for Eventlog CVE-2014-6038/6039
|
2014-11-08 08:12:11 -06:00 |
|
Pedro Ribeiro
|
f680b666c7
|
Add github adv URL
|
2014-11-08 11:29:36 +00:00 |
|
Pedro Ribeiro
|
143033f657
|
Rename manageengine_pmp_sadmin.rb to manageengine_pmp_privesc.rb
|
2014-11-08 11:28:04 +00:00 |
|
Pedro Ribeiro
|
2843437ca9
|
Create exploit for CVE-2014-8499
|
2014-11-08 11:24:50 +00:00 |
|
Pedro Ribeiro
|
e7b448537f
|
Add OSVDB ids
|
2014-11-08 11:05:34 +00:00 |
|
jvazquez-r7
|
9d6e0664a4
|
Guess service name and port
|
2014-11-07 20:56:01 -06:00 |
|
jvazquez-r7
|
a44640c9fc
|
Use single quotes
|
2014-11-07 20:48:04 -06:00 |
|
jvazquez-r7
|
7c1c08fc19
|
Use single quotes without interpolation
|
2014-11-07 20:46:47 -06:00 |
|
jvazquez-r7
|
0373156cce
|
Use unless over if not
|
2014-11-07 20:42:08 -06:00 |
|
jvazquez-r7
|
f5a920da99
|
Use || operator
|
2014-11-07 20:41:44 -06:00 |
|
jvazquez-r7
|
64754a5609
|
Delete unnecessary begin..end block
|
2014-11-07 20:38:36 -06:00 |
|
jvazquez-r7
|
0919f74a3d
|
Delete unused variable
|
2014-11-07 20:37:57 -06:00 |
|
jvazquez-r7
|
22b875d0f3
|
Reduce code complexity
|
2014-11-07 20:37:40 -06:00 |
|
jvazquez-r7
|
b1517e6ace
|
Delete unnecessary nil comparision
|
2014-11-07 20:34:13 -06:00 |
|
jvazquez-r7
|
aa1fec7f02
|
Use fail_with
|
2014-11-07 20:33:33 -06:00 |
|
jvazquez-r7
|
d630eac272
|
Reduce code complexity
|
2014-11-07 20:32:15 -06:00 |
|
jvazquez-r7
|
cea30b5427
|
Use built-in format for RPORT
|
2014-11-07 20:30:32 -06:00 |
|
jvazquez-r7
|
e99cc00a57
|
No more than 100 columns on description
|
2014-11-07 20:29:38 -06:00 |
Jon Hart
|
2b7d25950b
|
Land #4148, @wchen-r7 fixed #4133
|
2014-11-07 08:26:29 -08:00 |
|
sinn3r
|
0dbfecba36
|
Better method name
Should be srvhost, not lhost
|
2014-11-07 02:23:34 -06:00 |
|
Pedro Ribeiro
|
c00a3ac9cd
|
Add full disclosure URL
|
2014-11-07 08:06:21 +00:00 |
Joshua Smith
|
7b25e3be75
|
Land #4139, Visual Mining NetCharts
landed after some touch up
|
2014-11-06 22:52:41 -06:00 |
|
Joshua Smith
|
7510fb40aa
|
touch up visual_mining_netcharts_upload
|
2014-11-06 22:50:20 -06:00 |
|
Pedro Ribeiro
|
8a0249cdbf
|
Address Juan's points
|
2014-11-06 21:02:28 +00:00 |
|
sinn3r
|
579481e5f8
|
Explain why I did this
Also tagging Fix #4133
|
2014-11-06 14:25:11 -06:00 |
|
sinn3r
|
f210ade253
|
Use SRVHOST for msvidctl_mpeg2
|
2014-11-06 14:23:21 -06:00 |
|
sinn3r
|
f7e308cae8
|
Land #4110 - Citrix Netscaler BoF
|
2014-11-06 00:04:17 -06:00 |
|
jvazquez-r7
|
54c1e13a98
|
Land #4140, @wchen-r7's default template for adobe_pdf_embedded_exe
* Fixes #4134
* Adds a default PDF template
|
2014-11-05 20:21:14 -06:00 |
|
jvazquez-r7
|
adefb2326e
|
Land #4124, @wchen-r7 fixes #4115 adding HTTP auth support to iis_webdav_upload_asp
|
2014-11-05 18:14:33 -06:00 |
|
sinn3r
|
1b2554bc0d
|
Add a default template for CVE-2010-1240 PDF exploit
|
2014-11-05 17:08:38 -06:00 |
|
jvazquez-r7
|
79cabc6d68
|
Fix clean up
|
2014-11-05 15:46:33 -06:00 |
|
jvazquez-r7
|
c08993a9c0
|
Add module for ZDI-14-372
|
2014-11-05 15:31:20 -06:00 |
|
Pedro Ribeiro
|
e71ba1ad4a
|
Push exploit for CVE-2014-6038/39
|
2014-11-05 20:12:03 +00:00 |
Tod Beardsley
|
cca30b536f
|
Land #4094, fixes for OWA brute forcer
Fixes #4083
Thanks TONS to @jhart-r7 for doing most of the work on this!
|
2014-11-05 14:00:26 -06:00 |
|
Jon Hart
|
ff8d481eec
|
Update description to remove comments about defaults. Default to 2013
|
2014-11-04 21:21:19 -08:00 |
|
Jon Hart
|
2c028ca7a6
|
Move redirect check before body check -- a redirect won't have a body
|
2014-11-04 14:19:21 -08:00 |
|
Jon Hart
|
7855ede2de
|
Move userpass emptiness checking into setup
|
2014-11-04 14:07:39 -08:00 |
|
William Vu
|
ebb8b70472
|
Land #4015, another Android < 4.4 UXSS module
|
2014-11-04 15:52:29 -06:00 |
|
Tod Beardsley
|
f8593ca1b5
|
Land #4109, tnftp savefile exploit from @wvu-r7
|
2014-11-04 15:44:13 -06:00 |
|
Tod Beardsley
|
5fb268bbdf
|
Updates to better OWA fix
|
2014-11-04 14:32:54 -06:00 |
|
nullbind
|
56a02fdb4a
|
added mssql_escalate_executeas_sqli.rb
|
2014-11-04 13:38:13 -06:00 |
|
Jon Hart
|
b0e388f4c3
|
Land #3516, @midnitesnake's snmp_enumusers fix for Solaris, OS X
|
2014-11-04 08:23:16 -08:00 |
|
nullbind
|
15119d2a0f
|
comment fix-sorry
|
2014-11-04 09:07:08 -06:00 |
|
nullbind
|
f108d7b20a
|
fixed code comment
|
2014-11-04 08:51:27 -06:00 |
|
jvazquez-r7
|
400ef51897
|
Land #4076, exploit for x7chat PHP application
|
2014-11-03 18:22:04 -06:00 |
|
jvazquez-r7
|
3bf7473ac2
|
Add github pull request as reference
|
2014-11-03 18:18:42 -06:00 |
|
jvazquez-r7
|
44a2f366cf
|
Switch ranking
|
2014-11-03 18:06:09 -06:00 |
|
jvazquez-r7
|
039d3cf9ae
|
Do minor cleanup
|
2014-11-03 18:04:30 -06:00 |
|
William Vu
|
277fd5c7a1
|
Land #4123, release fixes
|
2014-11-03 16:20:00 -06:00 |
|
Juan Escobar
|
7e4248b601
|
Added compatibility with older versions, Updated descriptions and fixed issue with Ubuntu 12.04
|
2014-11-03 16:42:50 -05:00 |
|
Tod Beardsley
|
0199e4d658
|
Land #3770, resolve random stager bugs
|
2014-11-03 14:15:14 -06:00 |
|
sinn3r
|
9a27984ac1
|
switch from error to switch
|
2014-11-03 13:56:41 -06:00 |
|
sinn3r
|
a823ca6b2f
|
Add support for HTTP authentication. And more informative.
|
2014-11-03 13:46:53 -06:00 |
|
Tod Beardsley
|
51b96cb85b
|
Cosmetic title/desc updates
|
2014-11-03 13:37:45 -06:00 |
|
nullbind
|
fbe3adcb4c
|
added mssql_escalate_executeas module
|
2014-11-03 11:29:15 -06:00 |
|
Jon Hart
|
8f197d4918
|
Move to build_probe
|
2014-11-03 08:41:51 -08:00 |
|
sinn3r
|
6f013cdcaf
|
Missed these
|
2014-10-31 18:48:48 -05:00 |
|
sinn3r
|
d6a830eb6e
|
Rescue the correct exception: Rex::HostUnreachable
|
2014-10-31 16:43:33 -05:00 |
|
Jon Hart
|
121ebdfef6
|
update_info
|
2014-10-31 13:17:50 -07:00 |
|
Jon Hart
|
b99e71dcdd
|
Example UDPScanner style cleanup, move most to UDPScanner
|
2014-10-31 12:14:04 -07:00 |
|
Jon Hart
|
ff0b52cffb
|
Example per-batch vprint, a useful default
|
2014-10-31 10:31:31 -07:00 |
|
Jon Hart
|
94d4388af9
|
Improvements to example UDPScanner
|
2014-10-31 09:53:10 -07:00 |
Joe Vennix
|
1e9f9ce425
|
Handle invalid JSON errors and fix typo.
|
2014-10-31 11:01:49 -05:00 |
|
Jon Hart
|
d9f0a10737
|
Add new example template for scanning UDP services
|
2014-10-31 08:06:31 -07:00 |
|
jvazquez-r7
|
40bf44bd05
|
Don't allow 127.0.0.1 as SRVHOST
|
2014-10-31 08:19:15 -05:00 |
|
jvazquez-r7
|
7d2fa9ee94
|
Delete unnecessary to_s
|
2014-10-30 22:59:22 -05:00 |
|
William Vu
|
953a642b0e
|
Finally write a decent description
|
2014-10-30 22:51:42 -05:00 |
|
sinn3r
|
64f4777407
|
Land #4091 - Xerox DLM injection
|
2014-10-30 22:15:16 -05:00 |
|
sinn3r
|
b7a1722b46
|
Pass msftidy, more descriptive name and description
|
2014-10-30 22:14:18 -05:00 |
|
William Vu
|
e3ed7905f1
|
Add tnftp_savefile exploit
Also add URI{HOST,PORT} and {,v}print_good to HttpServer.
|
2014-10-30 20:38:16 -05:00 |
|
jvazquez-r7
|
8fdea5f74c
|
Change module filename
|
2014-10-30 20:34:24 -05:00 |
|
jvazquez-r7
|
9404e24b24
|
Update module information
|
2014-10-30 20:33:38 -05:00 |
|
Jon Hart
|
1a37a6638c
|
Fix splunk_upload_app_exec to work on new installs. Style
|
2014-10-30 18:28:56 -07:00 |
|
Jon Hart
|
55f245f20f
|
Merge #3507 into local, recently updated branch of master for landing
|
2014-10-30 17:28:20 -07:00 |
OJ
|
cc7f7c9986
|
Land #4108 - Avoid local offsets in CVE-2014-4113
|
2014-10-31 09:08:51 +10:00 |