infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
45,193 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

23554 Commits (e2b91bdfc123cc1521574e07d8a9e123092ca545)

Author SHA1 Message Date
Jacob Robles 1df5b7655f
Land #10106, Add the scanner/smb/impacket/wmiexec module 2018-06-05 06:39:34 -07:00
Chris Higgins 5f469efacf
Land #10092, Cleanup linux/local/recvmmsg_priv_esc 2018-06-04 15:37:57 -07:00
Brent Cook 31ce48502c
Land #9528, WebKit apple safari trident exploit (CVE-2016-4657) 2018-06-04 15:37:57 -07:00
Brent Cook 650c5c7a93
Land #10121, finish deprecating modules 2018-06-04 15:37:56 -07:00
Aaron Soto 2a9399251c
Land #10102, SOCKS5 updates for BIND, parsing specs, refactoring 2018-06-01 07:03:23 -07:00
Adam Cammack d2523e03df
Land #9976, Store non-nil linux enum_network loot 2018-06-01 07:03:22 -07:00
bwatters-r7 e7ab118aaf
Land #9777, Slui File Handler Hijack LPE 2018-06-01 07:03:22 -07:00
Brent Cook 122af6b143
Land #10083, Add Msf::Post::OSX::Priv mixin 2018-06-01 07:03:22 -07:00
Aaron Soto c8ff6cb5a4
Land #9701, Flexense HTTP Server DoS exploit 2018-06-01 07:03:22 -07:00
Brent Cook caa8b673ed
Land #9990, add SOCKS5 proxy support 2018-05-25 15:56:23 -07:00
Brent Cook 0dc0d3c0ba
fix incorrect disclosure date 2018-05-25 03:06:42 -05:00
Brent Cook d78f2e7bbd
Land #10087, remove unused option from applocker bypass 2018-05-23 13:38:39 -07:00
Brent Cook 196b302897
Land #10084, Mark all versions of telpho10 as vulnerable 2018-05-23 13:38:39 -07:00
Brendan Coles e6a7ec3276
Land #10070, Fix cleanup in exploits/osx/local/rootpipe_entitlements 2018-05-23 13:38:39 -07:00
Brendan Coles 8243207223
Land #10048, Make shell and meterpreter sessions consistent with cmd_exec 2018-05-23 13:38:38 -07:00
bwatters-r7 984384b59d
Land #10044, Fix is_system? in Msf::Post::Windows::Priv for non-English 
Merge branch 'land-10044' into upstream-master
 2018-05-21 15:22:52 -07:00
Tim W 016ee4d460
Land #9987, AF_PACKET chocobo_root exploit 2018-05-21 15:22:51 -07:00
bwatters-r7 81368bef7a
Land #9966, Add Reliable Datagram Sockets (RDS) Privilege Escalation exploit 
Merge branch 'land-9966' into upstream-master
 2018-05-21 17:01:36 -05:00
Brent Cook 7b3169ad0a
Land #9999, Optionally test empty group in cisco_ssl_vpn 2018-05-21 17:01:35 -05:00
Brent Cook 9b152cec72
Land #10009, Add initial check support to external modules 2018-05-21 17:01:35 -05:00
Tim W a51c1209ab
Land #9956, add module to extract wireless credentials on Android 2018-05-17 08:16:35 -07:00
Brent Cook 597a64b61b
Land #10047, remove invalid timeout argument on cmd_exec 2018-05-17 08:16:35 -07:00
Tim W bacab0507b
Land #9947, AF_PACKET packet_set_ring exploit 2018-05-17 08:16:34 -07:00
Jacob Robles 6e71f5c5fd
Land #9816, Add the scanner/smb/impacket/dcomexec module 2018-05-17 08:16:34 -07:00
William Vu 9a273a2663
Land #9975, local_exploit_suggester fixes 2018-05-17 08:16:33 -07:00
William Vu 012de0f6b1
Land #10038, struts_code_exec_parameters EXE fix 2018-05-17 08:16:33 -07:00
William Vu cbac801b88
Land #8727, CVE-2017-9791 exploit 2018-05-17 08:16:33 -07:00
William Vu bbb5ff8ad4
Land #7815, CVE-2016-9299 exploit 2018-05-17 08:16:33 -07:00
William Vu f9d27aaa30
Land #10036, reverse_bash_telnet_ssl fixes 2018-05-17 08:16:32 -07:00
William Vu 06711c6da9
Land #10035, awk payload improvements 2018-05-17 08:16:32 -07:00
William Vu 2f50df7fe7
Land #10031, zsh payload improvements 2018-05-17 08:16:32 -07:00
William Vu 14ff692d12
Land #10030, reverse_ksh payload 2018-05-17 08:16:32 -07:00
Jacob Robles 72d8f5ba22
Land #10023, fix ms17-010 psexec similar to 4a56ecf3ae 2018-05-15 11:58:15 -07:00
Aaron Soto 3bc5b0bdcb
Land #9991, Remove need for temp file with xdebug_unauth_exec 2018-05-15 11:58:15 -07:00
Tim W 1de1b04c4f
Land #9919, add libuser roothelper privilege escalation exploit 2018-05-15 11:58:14 -07:00
Tim W a260716305
Land #9868, fix post/osx/capture/keylog_recorder 2018-05-10 09:27:29 -07:00
Jacob Robles b2b97db28b
Land #9878, Add MSF module for EDB 6768, Mantis <= v1.1.3 Post-auth RCE 2018-05-09 17:48:53 -07:00
William Vu 0aaae09e5c
Land #9980, PAN-OS readSessionVarsFromFile exploit 2018-05-09 17:48:53 -07:00
Brent Cook 78f546ce81
Land #9986, initial ruby_smb simple client integration 2018-05-09 17:48:52 -07:00
Jacob Robles dcbc871883
Land #9988, playsms_uploadcsv_exec 2018-05-07 09:35:08 -07:00
Jacob Robles 75196b4fc6
Land #9944, playsms_filename_exec.rb 2018-05-07 09:35:08 -07:00
Tim W 9785ace675
Land #9977, fix crash during x64 linux reverse_tcp stager retry 2018-05-07 09:35:07 -07:00
William Vu a74b2b5716
Land #9970, final update to Drupalgeddon 2 2018-05-04 09:40:31 -05:00
William Vu 935fa6414e
Land #9968, second round of Drupalgeddon 2 updates 2018-05-04 09:38:34 -05:00
bwatters-r7 38465e69a8
Land #8795, Added CVE-2016-0040 Windows Privilege Escalation 
Merge branch 'land-8795' into upstream-master
 2018-05-04 09:38:28 -05:00
Tim W e0317671fe
Land #9965, add author name to wlan_probe_request module 2018-05-03 09:21:02 -07:00
Jacob Robles 8739befa70
Land #9821, osCommerce 2.3.4.1 - Remote Code Execution 2018-05-03 09:21:02 -07:00
Jacob Robles d6cea3523a
Land #9960, fix continuation warnings in payloads 2018-05-03 09:21:02 -07:00
Jeffrey Martin ad33d72e6e
Land #9961, psexec native upload argument 2018-05-01 14:51:21 -07:00
Jeffrey Martin 635f483b42
Land #9881, cleanup psexec code 2018-05-01 14:51:20 -07:00
Brent Cook 37767e9d4c
Land #9951, Update linux/gather/enum_protections module 2018-05-01 14:51:20 -07:00
Brent Cook 9f2a442d9b
Land #9942, IPv6 channel fixes 2018-05-01 16:46:37 -05:00
Brent Cook a14892774f
Land #9942, IPv6 channel fixes for Python and Linux/macOS Meterpreters 2018-05-01 16:45:16 -05:00
Aaron Soto c38bca1799
Land #9908, msfd_rce_remote and msfd_rce_browser 2018-04-30 09:49:50 -05:00
Aaron Soto 3b8280c33f
Land #9918, XDebug Unauthenticated OS command execution 2018-04-30 09:42:26 -05:00
Brent Cook 009e643ae3
autofilter = false means skip, which is reverse of intuition 2018-04-26 18:08:05 -05:00
Jeffrey Martin 188b02d1f5
Land #9937, enable autofilter on tp-link camera exploit 2018-04-26 16:06:10 -07:00
Brent Cook 3b7d2c8177
Land #9853, Update Linux sock_sendpage local exploit module 2018-04-26 16:06:10 -07:00
William Vu 492b6003b5
Land #9931, minor fixes for #9876 (Drupalgeddon 2) 2018-04-26 08:29:59 -07:00
Brent Cook d340ef2632
Land #9876, Drupalgeddon 2 2018-04-26 08:29:59 -07:00
Brent Cook c23cbde8a1
Land #9900, add base64 encoder for ruby 2018-04-26 08:29:59 -07:00
Brent Cook ab12eb8c50
Land #9924, Improve debug output in ETERNALBLUE's verify_arch 2018-04-26 08:29:58 -07:00
Wei Chen 0949bedf67
Land #9628, Add GitStack v2.3.10 Unauth REST API Aux Module 
Land #9628
 2018-04-23 11:21:11 -07:00
bwatters-r7 a44bcff2d8
Land #9756, Add lastore-daemon D-Bus Privilege Escalation exploit 
Merge branch 'land-9756' into upstream-master
 2018-04-23 11:21:10 -07:00
bwatters-r7 6cbd7ba895
Land #9862, Post-exploitation module for meterpreter (Windows) to send wireless probe requests 
Merge branch 'land-9862' into upstream-master
 2018-04-23 11:21:10 -07:00
bwatters-r7 d2a43d934d
Land # 9247, Add ASUS infosvr Auth Bypass Command Execution exploit 
Merge branch 'land-9247' into upstream-master
 2018-04-23 11:21:10 -07:00
Tim W b958526b6a
Land #9784, add osx high sierra APFS password disclosure post module 2018-04-18 15:31:20 -07:00
Adam Cammack 5b42a81d3a
Land #9823, Private IP leak via WebRTC 2018-04-12 09:27:21 -07:00
Aaron Soto d394146339
Land #9845 Remove temp file after cmd execution 2018-04-10 06:55:59 -07:00
h00die 084e6b1db3
Land #9813, Add etcd library and version scanner 2018-04-10 06:55:58 -07:00
Brent Cook c5db4c5021 Land #9834, add Python UDP channel support 2018-04-10 08:41:41 -05:00
Brent Cook 62c6340d70
Land #9794, Added support for regional dialects 2018-04-06 14:20:42 -07:00
Chris Higgins ded6a50883
Land #8539, ProcessMaker Plugin Upload exploit 2018-04-04 19:06:18 -07:00
bwatters-r7 8707047f41
Land # 8007, Added NTDSgrab module to metasploit. 
Merge branch 'land-8007' into upstream-master
 2018-04-04 19:06:18 -07:00
bwatters-r7 914f8ba872
Land #9734, Remove unwanted 'pop RAX' from windows/x64/reverse_(win)http 2018-04-04 19:06:17 -07:00
bwatters-r7 4765ffc05a
Land #9595, Add post module RID Hijacking on Windows 2018-04-04 19:06:17 -07:00
Brent Cook ef4fd1dc75
Land #9742, QNX exploit improvements 2018-04-03 09:13:57 -05:00
Brent Cook 9d5ab1dedf
Land #9726, add simple Rex::Tar wrapper for consistency with other archive types 2018-04-03 09:13:56 -05:00
Brent Cook c2bf848ba9
Land #9748, Convert the smbloris DoS into an external module 
Help reliability and performance. This some Ruby-specific external module
tooling as a result as well.
 2018-04-03 09:13:56 -05:00
Brent Cook 1557540b08
Land #9774, use correct whitespace when patching python meterpreter 2018-04-03 09:13:55 -05:00
Brent Cook d6f23071ca
Land #9718, Add get_user_spns 'kerberoasting' module 2018-04-03 09:13:29 -05:00
William Vu 10ed6637ed
Land #9782, CheckCode::Safe for ms_ndproxy 2018-03-30 08:34:52 -07:00
Brent Cook 9d076f6842
Land #9776, if data is nil, stop reading the heartbleed socket 2018-03-29 09:42:03 -07:00
Jon Hart 36ba1468e8
Land #9760, @h00die's etcd scanner 2018-03-29 09:17:54 -07:00
Jacob Robles 3b87bf5a03
Land #9666, Add 2017-8917 RCE for Joomla 3.7.0 2018-03-29 09:17:54 -07:00
Wei Chen 6108d79dcd
Land #9684, Adding ManageEngine Application Manager RCE 
Land #9684
 2018-03-27 15:44:50 -07:00
Wei Chen 409ae22a7e
Land #9633, Exodus Wallet Remote Code Execution 
Land #9633
 2018-03-27 15:44:49 -07:00
Wei Chen 5b1577e46d
Land #9670, Gitstack v2.3.10 RCE 
Land #9670
 2018-03-27 14:24:23 -05:00
Jacob Robles 71a1ad69dc
Land #9636, Improve post module persistence_exe 2018-03-27 14:21:48 -05:00
William Vu b870091380
Land #9423, PSH for jenkins_xstream_deserialize 2018-03-27 14:21:47 -05:00
William Vu c31a8ab687
Land #9618, pipe auditing improvements 2018-03-27 14:21:47 -05:00
h00die 72d2b46ac8
Land #9767 land magick number blog link update 2018-03-27 14:21:46 -05:00
h00die c56e571b18
Land #9702 exploit for clipbucket 2018-03-27 13:55:43 -05:00
Brent Cook 37576d19a1
Land #9733, rename external templates 2018-03-22 11:18:22 -07:00
Jeffrey Martin d756db4f9d
Land #9613, add bind_named_pipe x86 2018-03-17 20:33:05 -07:00
Brent Cook ef7b77ed01
Land #9529, Add module for HP iLO CVE-2017-12542 authentication bypass 2018-03-17 20:33:05 -07:00
Brent Cook dcb514e5ac
Land #9694, move ssh platforms to lib 2018-03-17 20:33:04 -07:00
Jacob Robles 715279311a
Land #8422, Typo3 News Module Sql Injection exploit 2018-03-15 09:21:14 -07:00
Tim W 8f4895c8e7
Land #9706, bump metasploit payloads to fix #9497 2018-03-13 13:33:29 -07:00
Brent Cook c5e231cfbf
Land #9686, add ipv6 to slowloris, rhost to non-scanner modules 2018-03-13 13:33:28 -07:00
Brent Cook 028d329b4d
Land #9632, owa_login and auth_brute enhancements 2018-03-12 10:14:19 -07:00
Jacob Robles 8c60a73731
varnish anonymous file read 2018-03-09 14:55:11 -06:00
Jacob Robles bcc0a2a94c
Land #7654, varnish file read 2018-03-09 12:53:20 -08:00
Jeffrey Martin 4778de053a
Land #9687, bump payloads, fix PHP meterpreter message parsing 2018-03-07 18:47:47 -08:00
Jacob Robles 49bc0024c1
Land #9678, Add memcached UDP version scanner 2018-03-07 18:47:47 -08:00
Jacob Robles fbee660136
Land #9554, Eclipse Equinoxe OSGi console RCE 2018-03-07 07:49:31 -08:00
Jon Hart 64019d3301
Land #9676, correcting CVE and adding disclosure date for memcached 
amplification
 2018-03-07 07:49:30 -08:00
Brent Cook f6223c0193
Land #9614, Juniper post enum module 2018-03-07 07:49:29 -08:00
bwatters-r7 9be7bc9b21
Land #9665, Add missing reverse_tcp_rc4 payload tests. 
Merge branch 'land-9665' into upstream-master
 2018-03-05 15:29:21 -08:00
William Vu d3b4f91b4c
Land #9671, missed code from TelnetEnable refactor 2018-03-05 15:29:21 -08:00
Jon Hart 6909c635bc
Land #9644, @xistence's memcached stats amplification scanner 2018-03-05 15:29:20 -08:00
h00die 2731b91036
Land #9658 spelling and grammar fixes 2018-03-05 07:42:48 -08:00
h00die e57a1fbd43
Land #9650 netgear telnetenable exploit 2018-03-05 07:42:48 -08:00
bwatters-r7 00d5fcfd97
ReLand #9565, Reverse TCP x64 RC4 via max3raza's rc4_x64 asm 
This reverts commit 7964868fcd.
 2018-03-02 17:46:46 -06:00
bwatters-r7 d2150c8d15
Revert "Land #9565, Reverse TCP x64 RC4 via max3raza's rc4_x64 asm" 
This reverts commit fcc579377f, reversing
changes made to 95cd149378.
 2018-03-02 17:45:58 -06:00
bwatters-r7 4841f29190
Land #9565, Reverse TCP x64 RC4 via max3raza's rc4_x64 asm 2018-03-02 16:41:33 -06:00
William Vu 3fd2862f76
Land #9639, multi/handler exit on disabled handler 
If DisablePayloadHandler is set, abort instead of hanging.
 2018-03-01 07:48:02 -08:00
Sonny Gonzalez 667cc5bcca
Land #9653, fix Y2k38 issue (until Jan 1, 2038) 2018-03-01 09:28:11 -06:00
Wei Chen 735fbc5c9f
Land #9623, Support Win 2008/7+ for enum_ms_product_keys 
Land #9623
 2018-02-25 23:25:03 -08:00
Brent Cook bffba1e5e3
Land #9607, upgrade osx shells to osx meterpreter 2018-02-25 23:25:02 -08:00
William Vu 0a5e9d922f
Land #9601, ms17_010_eternalblue reliability fixes 2018-02-23 08:31:02 -08:00
Brent Cook 2af4f56382
Land #9611, Fix bug causing all OWA logins to appear valid 2018-02-23 08:31:01 -08:00
bwatters-r7 ac6fede928
Land #9441, Create exploit for AsusWRT LAN RCE 
Merge branch 'land-9441' into upstream-master
 2018-02-23 08:31:01 -08:00
Jacob Robles 178afdaed1
Land #9604, Fix logged errors when running without Python 3.6 / gmpy2 2018-02-22 08:27:37 -08:00
Brent Cook a189673782
Land #9584, Fix reverse_php_ssl infinite loop 2018-02-22 08:27:36 -08:00
Brent Cook 826b986018
Land #9602, Create sessions with the Fortinet SSH backdoor scanner 2018-02-22 08:27:36 -08:00
Brent Cook 4e8fe54c6c
Land #9524, prefer 'shell' channels over 'exec' channels for ssh CommandStream 2018-02-22 08:27:36 -08:00
William Vu c1d701f656
Land #9593, finger_users regex fix 2018-02-22 08:27:35 -08:00
Aaron Soto dc913b60e4
Land #9444 - `hsts_eraser` module and docs 2018-02-22 08:27:35 -08:00
Jacob Robles 40220b5ab6
Land #9594, CloudMe Sync v1.10.9 Buffer Overflow 2018-02-22 08:27:35 -08:00
Jacob Robles 72cb9f358e
Land #9561, Disk Savvy Enterprise v10.4.18 built-in server buffer overflow 2018-02-22 08:27:34 -08:00
Brent Cook 59a41f04f7 Land #9366, Add x64 staged Meterpreter for macOS 2018-02-20 09:24:41 -06:00
Brent Cook 8c2484d2da
Land #9164, add OWA 2016 support 2018-02-20 09:24:13 -06:00
Chris Higgins d2c203bcb9
Lands #9504, MagniComp SysInfo privilege escalation 2018-02-20 09:24:13 -06:00
Brent Cook d89a8c3eb9
Land #9571, specify a python encoding for the claymore DoS module 2018-02-16 15:34:49 -08:00
Brent Cook d2e71cfc8b
Land #9512, Add Claymore Dual GPU Miner<= 10.5 DoS module 2018-02-16 15:34:48 -08:00
Brent Cook 31ed50ac92
Land #9539, add bind_named_pipe transport to Windows meterpreter 2018-02-16 15:34:47 -08:00
Wei Chen 004e228a52
Land #9509, Ulterius Server < v1.9.5.0 Directory Traversal 
Land #9509
 2018-02-16 15:34:47 -08:00
Brent Cook e8ad3a98e9
Land #9558, Fix #9417, map timeout exp to a var for telnet_encrypt_overflow 2018-02-15 14:14:07 -08:00
Brent Cook 87dcb13413
update magic numbers 2018-02-15 15:25:47 -06:00
Brent Cook 0cee8485d0
Land #9557, add back udp_probe for now 2018-02-14 11:26:59 -08:00
Spencer McIntyre bdc0b47844
Land #9552, add private_type for stored tomcat pw 
Fixes #9513
 2018-02-13 19:55:54 -08:00
Jeffrey Martin aecc1f143f
Land #7699, Add UDP handlers and payloads (redux) 2018-02-13 14:46:07 -08:00
Jacob Robles f281b45384
Land #9546, Correct Typo 2018-02-13 14:46:07 -08:00
Jacob Robles e485b152e3
Land #9542, Correct Typo 2018-02-13 14:46:06 -08:00
h00die 37cb2d77e7
Land #9422 abrt race condition priv esc on linux 2018-02-12 11:55:21 -06:00
Pearce Barry 6c3168c541
Land #9536, Add Ubuntu notes to documentation 2018-02-12 11:55:19 -06:00
Pearce Barry 73bcec5d11
Land #9408, Add Juju-run Agent Privilege Escalation module (CVE-2017-9232) 2018-02-12 11:55:19 -06:00
h00die 090f7c8bd6
Land #9467 linux priv esc against glibc origin 2018-02-12 11:55:19 -06:00
h00die cd7187023c
Land #9469 linux local exploit for glibc ld audit 2018-02-12 11:55:18 -06:00