William Vu
|
9db75849a9
|
Land #10298, bug fix for #10219
|
2018-07-12 15:51:22 -07:00 |
Brendan Coles
|
4f67361b46
|
Land #10238, Add ManageEngine Exchange Reporter Plus RCE exploit
|
2018-07-12 09:37:50 -07:00 |
|
William Vu
|
f18fd4aca1
|
Land #9780, CouchDB auth bypass and RCE
|
2018-07-12 11:24:05 -05:00 |
|
William Vu
|
81ef17aa62
|
Land #10286, Docker server version scanner
|
2018-07-12 11:24:04 -05:00 |
Shelby Pace
|
8586e6fc8f
|
Land #10260, Add phpMyAdmin v4.8.1/4.8.0 LFI RCE
|
2018-07-12 11:24:03 -05:00 |
Erin Bleiweiss
|
d11eaf3d74
|
Land #10280, Use default CheckCode in ETERNALBLUE
|
2018-07-12 11:24:03 -05:00 |
|
Shelby Pace
|
45f354e55d
|
Land #10231, Monstra Fileupload Exec
|
2018-07-12 11:24:02 -05:00 |
Brent Cook
|
3a92908e9b
|
Land #10108, add IBM QRadar SIEM exploit
|
2018-07-12 11:24:02 -05:00 |
Jacob Robles
|
d480ee8e20
|
Land #10275, Update missing CVE references for exploit modules
|
2018-07-12 11:24:01 -05:00 |
|
Jacob Robles
|
4284ffe8a4
|
Land #10276, Update missing CVE references for auxiliary modules
|
2018-07-12 11:23:09 -05:00 |
|
Jacob Robles
|
9dc3e35f23
|
Land #10107, Add the scanner/smb/impacket/secretsdump module
|
2018-07-06 13:02:46 -07:00 |
|
Shelby Pace
|
a4f0dc5ea2
|
Land #10133, Add HID discoveryd RCE exploit
|
2018-07-06 12:35:38 -07:00 |
Wei Chen
|
e915bb0f66
|
Land #10262, Add GitList argument injection exploit module
|
2018-07-06 12:30:10 -07:00 |
|
Brent Cook
|
5d95172a81
|
Land #10171, Implement desktop shell and screensaver post modules
|
2018-07-05 15:36:46 -07:00 |
|
Brent Cook
|
fbd68df409
|
Land #10263, fix double-nested array
|
2018-07-05 15:22:50 -07:00 |
|
Brent Cook
|
b5981caa0b
|
Land #10219, Add HP VAN SDN Controller exploit
|
2018-07-05 12:23:50 -07:00 |
|
Jacob Robles
|
7f3dfccbfe
|
Land #10242, avoid using SMBv2 on Windows XP Native Upload targets
|
2018-07-02 15:37:11 -07:00 |
|
Wei Chen
|
144923db3a
|
Land #10237, Add Boxoft WAV to MP3 Converter exploit module
|
2018-07-02 12:03:05 -07:00 |
|
Wei Chen
|
d4054c24bd
|
Land #9896, Java JMX Package Name Randomization
Land #9896
|
2018-07-02 11:43:42 -07:00 |
|
Brent Cook
|
709630e35c
|
Land #10185, add SMBv1/2 support in psexec
|
2018-06-29 15:51:50 -07:00 |
|
Jacob Robles
|
fa95c0c2a1
|
Land #9958, Nagios xi 2 electric
|
2018-06-29 10:18:13 -07:00 |
|
Brendan Coles
|
9bed9f0797
|
Land #10213, Add FTPShell client 6.70 Stack Buffer Overflow exploit
|
2018-06-29 07:39:54 -07:00 |
|
William Vu
|
fd7ea515aa
|
Land #10218, MS17-010 Windows Embedded Standard 7
|
2018-06-28 14:14:42 -07:00 |
|
Brent Cook
|
d310659a77
|
Land #10216, add linux mic capture support for mettle
|
2018-06-28 10:58:50 -05:00 |
|
Brent Cook
|
33a909939d
|
Land #10215, add support for payload estimation for IPv6-specific modules
|
2018-06-27 14:49:00 -07:00 |
|
William Vu
|
13f981f03f
|
Land #9998, customizable golden ticket duration
|
2018-06-27 13:53:30 -07:00 |
Adam Cammack
|
165fb9dc79
|
Land #10109, Teradata login scanner and SQL runner
|
2018-06-27 13:39:02 -07:00 |
|
William Vu
|
d4dfb98fb9
|
Land #10207, msftidy fixes
|
2018-06-26 12:40:50 -07:00 |
|
Shelby Pace
|
f14597bcb2
|
Land #10199, Kace Systems Management Command Injection
|
2018-06-26 10:11:07 -07:00 |
|
Wei Chen
|
0a9dca2b5a
|
Land 10200, Add SickRage Password Leak Auxiliary Module
|
2018-06-25 15:27:22 -07:00 |
|
Brent Cook
|
679378d025
|
Land #10156, WebKit, as used in WebKitGTK+ Crash - CVE-2018-11646
|
2018-06-21 14:33:05 -07:00 |
|
William Vu
|
cddb0f2b4d
|
Land #10195, ms17_010_eternalblue_win8 bug fixes
|
2018-06-21 13:38:14 -07:00 |
|
Brent Cook
|
5fb3ffed55
|
Land #10189, ETERNALBLUE updates
|
2018-06-20 21:55:20 -07:00 |
|
Brent Cook
|
0bcbcab3d8
|
Land #10184, Add sleepya's ETERNALBLUE exploit for Win8+
|
2018-06-19 15:44:55 -07:00 |
|
Wei Chen
|
17c0bc1fa7
|
Land #10183, Add auxiliary mod to exploit httpdasm dir traversal vuln
|
2018-06-19 12:58:49 -07:00 |
|
Jacob Robles
|
95cb9f3654
|
Land #9825, Add 'phpMyAdmin Authenticated Remote Code Execution'
|
2018-06-18 06:55:53 -07:00 |
|
Wei Chen
|
ce48ff4382
|
Land #10165, Fix missing RequestError in a few post modules
|
2018-06-15 13:40:51 -07:00 |
|
Wei Chen
|
95ee536705
|
Land #10172, Rm duplicate word in agitum_outpost_acs description
|
2018-06-15 13:15:37 -07:00 |
|
William Vu
|
94abd923f3
|
Land #10021, post/multi/recon/sudo_commands module
|
2018-06-14 14:35:32 -07:00 |
bwatters-r7
|
fff6d2ebb7
|
Lad #10017, D-Link DSL-2750B Unauthenticated OS Command Injection
Merge branch 'land-10017' into upstream-master
|
2018-06-14 15:09:38 -05:00 |
|
Adam Cammack
|
e78715b073
|
Land #10167, Add Linux x86 IPv6 reverse shell
|
2018-06-13 13:35:24 -07:00 |
|
Adam Cammack
|
8d86ff0065
|
Land #10138, Update psnuffle RHOSTS and style
|
2018-06-13 12:47:32 -07:00 |
|
bwatters-r7
|
7e2c1fae2c
|
Land #10148, Add New Module - Badpdf
Merge branch 'land-10148' into upstream-master
|
2018-06-12 15:21:25 -07:00 |
|
bwatters-r7
|
0a19221af2
|
Land #10101, Add glibc 'realpath()' Privilege Escalation exploit
|
2018-06-12 14:43:57 -07:00 |
|
William Vu
|
7f372d178d
|
Land #10059, CVE-2018-1111 exploit
|
2018-06-12 13:04:36 -07:00 |
Tim W
|
08a6fd3b3b
|
Land #10066, implement AudioOutput api from channel
|
2018-06-11 14:41:44 -05:00 |
|
Brendan Coles
|
60a9e08cdc
|
Land #10157, Add IconFile path to .URL files generated with MultiDrop
|
2018-06-10 20:07:24 -07:00 |
|
Tim W
|
e6a9421e35
|
Land #10118, cleanup OSX local exploit modules
|
2018-06-08 00:00:50 -07:00 |
Aaron Soto
|
aa5c114364
|
Land #10067, Added `auxiliary/fileformat/odt_badodt`
|
2018-06-06 09:29:34 -07:00 |
|
Aaron Soto
|
f6e0f5bd81
|
Land #10115, Added module `auxiliary/fileformat/multidrop`
|
2018-06-05 14:32:25 -07:00 |
|
Jacob Robles
|
1df5b7655f
|
Land #10106, Add the scanner/smb/impacket/wmiexec module
|
2018-06-05 06:39:34 -07:00 |
Chris Higgins
|
5f469efacf
|
Land #10092, Cleanup linux/local/recvmmsg_priv_esc
|
2018-06-04 15:37:57 -07:00 |
|
Brent Cook
|
31ce48502c
|
Land #9528, WebKit apple safari trident exploit (CVE-2016-4657)
|
2018-06-04 15:37:57 -07:00 |
|
Brent Cook
|
650c5c7a93
|
Land #10121, finish deprecating modules
|
2018-06-04 15:37:56 -07:00 |
|
Aaron Soto
|
2a9399251c
|
Land #10102, SOCKS5 updates for BIND, parsing specs, refactoring
|
2018-06-01 07:03:23 -07:00 |
|
Adam Cammack
|
d2523e03df
|
Land #9976, Store non-nil linux enum_network loot
|
2018-06-01 07:03:22 -07:00 |
|
bwatters-r7
|
e7ab118aaf
|
Land #9777, Slui File Handler Hijack LPE
|
2018-06-01 07:03:22 -07:00 |
|
Brent Cook
|
122af6b143
|
Land #10083, Add Msf::Post::OSX::Priv mixin
|
2018-06-01 07:03:22 -07:00 |
|
Aaron Soto
|
c8ff6cb5a4
|
Land #9701, Flexense HTTP Server DoS exploit
|
2018-06-01 07:03:22 -07:00 |
|
Brent Cook
|
caa8b673ed
|
Land #9990, add SOCKS5 proxy support
|
2018-05-25 15:56:23 -07:00 |
|
Brent Cook
|
0dc0d3c0ba
|
fix incorrect disclosure date
|
2018-05-25 03:06:42 -05:00 |
|
Brent Cook
|
d78f2e7bbd
|
Land #10087, remove unused option from applocker bypass
|
2018-05-23 13:38:39 -07:00 |
|
Brent Cook
|
196b302897
|
Land #10084, Mark all versions of telpho10 as vulnerable
|
2018-05-23 13:38:39 -07:00 |
|
Brendan Coles
|
e6a7ec3276
|
Land #10070, Fix cleanup in exploits/osx/local/rootpipe_entitlements
|
2018-05-23 13:38:39 -07:00 |
|
Brendan Coles
|
8243207223
|
Land #10048, Make shell and meterpreter sessions consistent with cmd_exec
|
2018-05-23 13:38:38 -07:00 |
|
bwatters-r7
|
984384b59d
|
Land #10044, Fix is_system? in Msf::Post::Windows::Priv for non-English
Merge branch 'land-10044' into upstream-master
|
2018-05-21 15:22:52 -07:00 |
|
Tim W
|
016ee4d460
|
Land #9987, AF_PACKET chocobo_root exploit
|
2018-05-21 15:22:51 -07:00 |
|
bwatters-r7
|
81368bef7a
|
Land #9966, Add Reliable Datagram Sockets (RDS) Privilege Escalation exploit
Merge branch 'land-9966' into upstream-master
|
2018-05-21 17:01:36 -05:00 |
|
Brent Cook
|
7b3169ad0a
|
Land #9999, Optionally test empty group in cisco_ssl_vpn
|
2018-05-21 17:01:35 -05:00 |
|
Brent Cook
|
9b152cec72
|
Land #10009, Add initial check support to external modules
|
2018-05-21 17:01:35 -05:00 |
|
Tim W
|
a51c1209ab
|
Land #9956, add module to extract wireless credentials on Android
|
2018-05-17 08:16:35 -07:00 |
|
Brent Cook
|
597a64b61b
|
Land #10047, remove invalid timeout argument on cmd_exec
|
2018-05-17 08:16:35 -07:00 |
|
Tim W
|
bacab0507b
|
Land #9947, AF_PACKET packet_set_ring exploit
|
2018-05-17 08:16:34 -07:00 |
|
Jacob Robles
|
6e71f5c5fd
|
Land #9816, Add the scanner/smb/impacket/dcomexec module
|
2018-05-17 08:16:34 -07:00 |
|
William Vu
|
9a273a2663
|
Land #9975, local_exploit_suggester fixes
|
2018-05-17 08:16:33 -07:00 |
|
William Vu
|
012de0f6b1
|
Land #10038, struts_code_exec_parameters EXE fix
|
2018-05-17 08:16:33 -07:00 |
|
William Vu
|
cbac801b88
|
Land #8727, CVE-2017-9791 exploit
|
2018-05-17 08:16:33 -07:00 |
|
William Vu
|
bbb5ff8ad4
|
Land #7815, CVE-2016-9299 exploit
|
2018-05-17 08:16:33 -07:00 |
|
William Vu
|
f9d27aaa30
|
Land #10036, reverse_bash_telnet_ssl fixes
|
2018-05-17 08:16:32 -07:00 |
|
William Vu
|
06711c6da9
|
Land #10035, awk payload improvements
|
2018-05-17 08:16:32 -07:00 |
|
William Vu
|
2f50df7fe7
|
Land #10031, zsh payload improvements
|
2018-05-17 08:16:32 -07:00 |
|
William Vu
|
14ff692d12
|
Land #10030, reverse_ksh payload
|
2018-05-17 08:16:32 -07:00 |
|
Jacob Robles
|
72d8f5ba22
|
Land #10023, fix ms17-010 psexec similar to 4a56ecf3ae
|
2018-05-15 11:58:15 -07:00 |
|
Aaron Soto
|
3bc5b0bdcb
|
Land #9991, Remove need for temp file with xdebug_unauth_exec
|
2018-05-15 11:58:15 -07:00 |
|
Tim W
|
1de1b04c4f
|
Land #9919, add libuser roothelper privilege escalation exploit
|
2018-05-15 11:58:14 -07:00 |
|
Tim W
|
a260716305
|
Land #9868, fix post/osx/capture/keylog_recorder
|
2018-05-10 09:27:29 -07:00 |
|
Jacob Robles
|
b2b97db28b
|
Land #9878, Add MSF module for EDB 6768, Mantis <= v1.1.3 Post-auth RCE
|
2018-05-09 17:48:53 -07:00 |
|
William Vu
|
0aaae09e5c
|
Land #9980, PAN-OS readSessionVarsFromFile exploit
|
2018-05-09 17:48:53 -07:00 |
|
Brent Cook
|
78f546ce81
|
Land #9986, initial ruby_smb simple client integration
|
2018-05-09 17:48:52 -07:00 |
|
Jacob Robles
|
dcbc871883
|
Land #9988, playsms_uploadcsv_exec
|
2018-05-07 09:35:08 -07:00 |
|
Jacob Robles
|
75196b4fc6
|
Land #9944, playsms_filename_exec.rb
|
2018-05-07 09:35:08 -07:00 |
|
Tim W
|
9785ace675
|
Land #9977, fix crash during x64 linux reverse_tcp stager retry
|
2018-05-07 09:35:07 -07:00 |
|
William Vu
|
a74b2b5716
|
Land #9970, final update to Drupalgeddon 2
|
2018-05-04 09:40:31 -05:00 |
|
William Vu
|
935fa6414e
|
Land #9968, second round of Drupalgeddon 2 updates
|
2018-05-04 09:38:34 -05:00 |
|
bwatters-r7
|
38465e69a8
|
Land #8795, Added CVE-2016-0040 Windows Privilege Escalation
Merge branch 'land-8795' into upstream-master
|
2018-05-04 09:38:28 -05:00 |
|
Tim W
|
e0317671fe
|
Land #9965, add author name to wlan_probe_request module
|
2018-05-03 09:21:02 -07:00 |
|
Jacob Robles
|
8739befa70
|
Land #9821, osCommerce 2.3.4.1 - Remote Code Execution
|
2018-05-03 09:21:02 -07:00 |
|
Jacob Robles
|
d6cea3523a
|
Land #9960, fix continuation warnings in payloads
|
2018-05-03 09:21:02 -07:00 |
Jeffrey Martin
|
ad33d72e6e
|
Land #9961, psexec native upload argument
|
2018-05-01 14:51:21 -07:00 |
|
Jeffrey Martin
|
635f483b42
|
Land #9881, cleanup psexec code
|
2018-05-01 14:51:20 -07:00 |