7e91121afc
Change to Metasploit::Model::Login::Status::SUCCESSFUL
2015-06-18 23:44:45 -05:00
fb9ad663f7
Change to Metasploit::Model::Login::Status::SUCCESSFUL
2015-06-18 23:42:16 -05:00
9b5770c966
Change to Metasploit::Model::Login::Status::SUCCESSFUL
2015-06-18 23:40:51 -05:00
8656add0ad
Add uri parameter when removing http/s transports
2015-06-19 10:55:22 +10:00
308cad8c40
Fix #5565 , Fix os.js service pack detection
...
Fix #5565
2015-06-18 18:51:16 -05:00
0b55a889d3
persistence - better ruby/msf fu
2015-06-18 21:10:16 +01:00
15f0cf40d3
Land #5561 , @todb-r7's release fixes
2015-06-18 14:11:20 -05:00
afcb016814
Minor description fixups.
...
Edited modules/exploits/multi/browser/adobe_flash_pixel_bender_bof.rb
first landed in #5524 , adobe_flash_pixel_bender_bof in flash renderer .
Removed ASCII bullets since those rarely render correctly.
Edited modules/exploits/unix/webapp/wp_frontend_editor_file_upload.rb
first landed in #5252 , @espreto's module for WordPress Front-end Editor
File Upload Vuln . Fixed up some language usage, camel-cased "WordPress."
2015-06-18 13:25:39 -05:00
13a3f2781d
Change ExcellentRanking to GoodRanking for MS14-064
...
The ms14_064_ole_code_execution exploit's ranking is being lowered
to GoodRanking because of these two reasons:
1. The vulnerable component isn't in Internet Explorer. And BES can't
check it so the exploit still fires even if the target is patched.
2. Although rare, we've seen the exploit crashing IE, and since this
is a memory curruption type of bug, it should not be in Excellent
ranking anyway.
2015-06-18 13:07:44 -05:00
27a583853c
Fix one more line indentation
2015-06-18 12:40:30 -05:00
55f077fa9e
Fix indentation
2015-06-18 12:38:36 -05:00
de1542e589
Add module for CVE-2015-3090
2015-06-18 12:36:14 -05:00
7f27fd0cf2
adjust for user name size changes
2015-06-18 11:17:08 -05:00
ce9481d2b7
Inconstancy - If datastore['VERBOSE'] vs vprint
2015-06-18 09:27:01 +01:00
8ea09532c8
removed a debugging line
2015-06-17 13:13:00 -04:00
a6c7f93bbe
changed text to show support for RFB version 4.001
2015-06-17 13:09:03 -04:00
e30b0e0cda
forced client to version 3 for servers and added comments. This adds support for RFB version 4 servers. Tested on 004.001
2015-06-17 12:57:24 -04:00
772a5dd7df
Created array and added support for version 4
2015-06-17 12:31:51 -04:00
0f2897df3a
Land #5551 , Remove msfencode from the gemspec
2015-06-17 10:54:30 -05:00
a3debe1621
persistence - more options, more verbose
...
...and less bugs!
+ Able to define the EXE payload filename
+ Able to setup a handler job
+ Able to execute persistence payload after installing
+ Performs various checks (should be more stable now)
+ Will display various warnings if your doing something 'different'
+ Added various verbose messages during the process
2015-06-17 13:57:06 +01:00
dc07938668
Land #5550 , custom exe_filename for to_exe_vba
2015-06-16 19:10:49 -05:00
37546c7e18
to_exe_vbs - Allow for exe_filename to be defined
2015-06-17 01:13:33 +01:00
b40e9f6d46
util/exe - replace tabs with spaces
...
...formatting should be okay still
2015-06-17 01:10:18 +01:00
f2e2af1c42
Remove msfencode from the gemspec
2015-06-16 18:37:32 -05:00
f5b9be7814
Land #5468 , @wchen-r7's updates razorsql to use the new creds api
...
* Also fixes #5469
2015-06-16 17:51:18 -05:00
ef825fb4bf
Land #5530 , shell_to_meterpreter improvements
2015-06-16 14:29:15 -05:00
33139c4ecd
shell_to_meterpreter minor improvements
2015-06-16 20:42:47 +01:00
4fee6b291c
Land #5549 , OptEnum "accepted" capitalization
2015-06-16 14:26:04 -05:00
3410782fe9
Capitalized 'Accepted'
2015-06-16 19:42:32 +01:00
11bf416a86
Land #5548 , database.yml.example MSF-DEV ref
2015-06-16 11:12:39 -05:00
67065e104a
Update database.yml.example to ref MSF-DEV
...
We no longer rely on the Fedora Project's documentation for setting up a
PostgreSQL database. The comment doc here should reflect this change.
2015-06-16 11:05:03 -05:00
9dbdaf13ea
Add AutoVerifySessionTimeout Meterpreter advanced option
2015-06-17 00:20:59 +10:00
fcf6212d2f
Update telnet capture module to use the new creds API
2015-06-16 16:37:36 +05:00
c3d2797f10
Fixed Info fields
2015-06-16 04:22:22 -04:00
2778274e47
Added new SSL Labs API fields and fixed minor errors
2015-06-16 02:59:12 -04:00
b6379b4d24
Update drupal_views_user_enum
2015-06-16 00:02:02 -05:00
c06e16f65f
Merge pull request #30 from jvazquez-r7/review_5468
...
Fix #5469 - The decryption method for post/windows/gather/credentials/razorsql is outdated
2015-06-15 23:57:30 -05:00
eb39eaac1d
Add support to decryption v2
2015-06-15 23:28:10 -05:00
9573c7e415
Implement transport remove
2015-06-16 11:38:59 +10:00
0b88e86a49
Using the new cred API for multiple auxiliary modules
2015-06-15 16:06:57 -05:00
5ac97d1362
Lands #5538 , adds Recog to ssh_version
2015-06-15 13:24:07 -07:00
fd0b42be4a
Properly store quake service info
2015-06-15 12:45:14 -07:00
079a9d449c
Use peer
2015-06-15 11:45:55 -07:00
feb7263137
Wire in recog support for ssh_version
2015-06-15 11:42:20 -07:00
80f1173fcf
Style and scanner usability cleanup for ssh_version
2015-06-15 10:12:07 -07:00
8d640a0c8f
Land #5527 , multi/handler -> exploit/multi/handler
2015-06-15 10:23:26 -05:00
907f596de6
Land #5520 , Update titan_ftp_admin_pwd to use the new creds API
2015-06-15 03:26:19 -05:00
940d045029
Correctly report rport
2015-06-15 03:23:39 -05:00
308b1a3d7f
Don't deregister username & password
2015-06-15 03:21:09 -05:00
ebce415957
Land #5507 , Update nessus_xmlrpc_logic to use the new creds API
2015-06-15 02:59:01 -05:00
wchen-r7
OJ
g0tmi1k
William Vu
Tod Beardsley
jvazquez-r7
Brent Cook
Th3R3p0
root
Denis Kolegov
HD Moore
Jon Hart