Commit Graph

2362 Commits (cfec99b1a82bcfa476ce7f6797188012087911be)

Author SHA1 Message Date
Wei Chen 847e3232ab
Land #11102, remove old metasm remnants 2018-12-18 08:53:53 -06:00
Shelby Pace 2fc501d260
Land #11112, Fix bpf_priv_esc exploit module 2018-12-17 10:00:50 -06:00
Jacob Robles 7839add2fd
Land #11123, Add module windows persistent service 2018-12-17 09:07:21 -06:00
Jacob Robles 88b7b7df4a
Fix additional path space issues 2018-12-17 07:00:23 -06:00
Jacob Robles e67eaa94c9
Move code to ERB template 2018-12-14 13:13:32 -06:00
Wei Chen cc7cb7302e
Land #10944, Add macOS Safari exploit from pwn2own2018 2018-12-13 13:50:19 -06:00
Brendan Coles 68d451711b Fix bpf_priv_esc module 2018-12-12 17:23:12 +00:00
Brent Cook bd3e474513 delete old cpuinfo code (is it used anywhere?) 2018-12-10 19:03:04 -06:00
Shreyans Devendra Doshi 45c6f1ed62 Fix #11084 Add 'chronos' to unix_users.txt
This commit adds the username 'chronos' to the user list as it happens
to be the default username on ChromeOS, as highlighted by @h00die in
Issue #11084.
2018-12-09 09:58:58 -05:00
Brent Cook 66cae6240f
Land #10994, Added exploit for CVE-2018-18955 2018-11-27 16:12:05 -06:00
Brendan Coles 5c1399daa1 Add musl-cross cross-compiled executables 2018-11-25 00:53:55 +00:00
Brendan Coles eb17c45000 Add Linux Nested User Namespace idmap Limit Local Privilege Escalation module 2018-11-20 14:10:28 +00:00
Tim W 43c1e6308e add binary 2018-11-20 15:59:23 +08:00
Tim W 44b1b6fe31 fix forking 2018-11-20 15:58:55 +08:00
Tim W 99ae214575 add binaries 2018-11-15 08:46:24 +08:00
Tim W 2c30459a1b add CVE-2018-4233 and CVE-2018-4404 2018-11-15 08:44:18 +08:00
bwatters-r7 b4c005c4d4
Land #10561, Add Windows local privilege escalation - CVE-2018-0824
Merge branch 'land-10561' into upstream-master
2018-10-25 13:22:31 -05:00
Wei Chen 6920470f99
Land #10821, Enhance windows compiler w/ new functions 2018-10-24 20:28:36 -05:00
Wei Chen 06e1d16c60 Rm _snprintf because it causes sessions to fail (due to a crash) 2018-10-24 17:50:10 -05:00
bwatters-r7 927a29530b
Remove duplicated files 2018-10-23 12:31:18 -05:00
Brent Cook b65f467ada
Land #10851, add ndkstager to data/exploits 2018-10-23 12:04:57 -05:00
bwatters-r7 47353553e5 Get everything together finally (still needs cleanup) 2018-10-19 18:15:44 -05:00
Wei Chen 3cee96d8ed
Land #10664, add Windows SetImeInfoEx Win32k NULL Pointer Dereference 2018-10-18 14:42:14 -05:00
bwatters-r7 d2c013001d
Update stuff 2018-10-17 17:17:05 -05:00
Green-m 7b1b2198cb
resolve confiict. 2018-10-17 17:33:01 +08:00
Green-m 0ccebd9916
Add some define for windows compiler. 2018-10-17 16:18:38 +08:00
Shelby Pace 26631bcfbd
addressed suggestions 2018-10-12 14:35:42 -05:00
Shelby Pace a67122aaf7
updated doc, added x86_64 binary 2018-10-11 12:37:51 -05:00
Shelby Pace cdc2918c84
removed original binary, added source 2018-10-11 11:42:51 -05:00
Shelby Pace 521b50af55
added separate binaries, extended for x86 2018-10-11 10:43:35 -05:00
amaloteaux f8ad47d475 improve windows_defender_js_hta :
-add platform detection for jsc
-prevent cmd prompt when launching jsc
2018-10-11 17:38:47 +02:00
Brent Cook 6293372218
Land #10762, bump version 2018-10-09 05:32:01 -05:00
Carter Brainerd b2136bd8e0
Change "4" to "5" 2018-10-07 13:35:12 -04:00
Wei Chen c7efd57144
Sync up with master 2018-10-06 08:27:01 -05:00
Tim W 4a4c759a4b add ndkstager to data/exploits 2018-10-05 15:10:21 +08:00
bwatters-r7 28fb27187a
Land #10418, Add DCOM/RPC NTLM Reflection (MS16-075) Via Reflective DLL
Merge branch 'land-10418' into upstream-master
2018-10-04 16:54:53 -05:00
bwatters-r7 ce59964141
Recompile binaries and prep for VS2013 compiles 2018-10-04 16:21:23 -05:00
Wei Chen 92ac5635b1 Support module documentation 2018-10-03 23:35:30 -05:00
space-r7 a0052c7f47 Add evasion module using HTA + JavaScript + C# 2018-10-01 12:57:05 -05:00
Brent Cook 1607c2b890
Land #10428, Update Windows MySQL UDF files, add docs 2018-09-24 21:11:52 -05:00
Wei Chen 02ef565730
Update evasion_module_type branch 2018-09-24 08:20:32 -05:00
7echSec cd3b139642
Adding UnmarshalPwn.exe
Compatible with Visual Studio 2013.
2018-09-21 17:24:50 +05:30
7echSec 545e488486
Uploading new UnmarshalPwn.exe
As per the bwatters-r7 comment I am uploading new UnmarshalPwn.exe complied with platform toolset 120
2018-09-21 17:18:39 +05:30
Jacob Robles c76f095cd0
Inject Payload to Memory First 2018-09-19 21:13:49 -05:00
Jacob Robles dfa030c2df
Use System Directory 2018-09-19 08:49:12 -05:00
William Vu 6a63feced4 Merge remote-tracking branch 'upstream/master' into pr/10418 2018-09-18 19:54:44 -05:00
Dhiraj Mishra 89b0ac6f87
Adding suport files 2018-09-18 14:59:43 +05:30
Jacob Robles 83af598e6a
Updated VS solution and module 2018-09-17 17:38:19 -05:00
bwatters-r7 f38e6f45ce
Redo dllinjection 2018-09-14 17:47:53 -05:00
asoto-r7 4cf344dd83
WIP: Initial CVE-2018-8440 / ALPC-TaskSched-LPE 2018-09-13 18:00:20 -05:00